Plantage vista +

loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention   -  
Valuu Messages postés 2258 Statut Contributeur -
Bonjour,

Je viens demander l'aide des spécialistes du domaine informatique pour m'aider !

voici mon problème :

- depuis quelques temps je n'arrive plus à démarrer vista normalement : il plante à l'ouverture (sauf deux fois où j'ai réussi à passer tout celà).
Une fenetre bleue s'ouvre alors expliquant qu'un problème a été détecté et que windows a dû fermer.
L'appareil ne fonctionne plus qu'en mode sans échec. Pas de probleme en mode sans échec.

- j'ai essayé de regarder ce que j'avais modifié ces derniers temps : fin janvier j'ai installé pdfcreator et je viens de remarquer que pdfforge s'est installé en même temps ... et est impossible à désinstaller (et apparition de pages publicitaires lors de recherches sur google).

Que dois-je faire ?

Vous remerciant pour votre aide !

24 réponses

  • 1
  • 2
  1. Valuu Messages postés 2258 Statut Contributeur 201
     
    Bonjour bonjour,
    Démarre en mode sans échec avec prise en charge Réseau et fais les procédures.

    * Télécharge AD-Remover(de la TeamXscript) sur ton Bureau.
    Déconnecte toi et ferme toutes les applications en cours
    * Double-clique sur l'icône AD-Remover
    * Au menu principal, clique sur Nettoyer
    * Confirme le lancement de l'analyse et laisse l'outil travailler
    * Poste le rapport qui apparait à la fin (il est aussi sauvegardé sous C:\Ad-report-CLEAN.txt )

    Utilise ce logiciel de diagnostic :

    * Télécharge ZHPDiag (de Nicolas Coolman)
    * Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
    * Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
    * Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
    * Héberge le rapport ZHPDiag.txt sur ce site, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum.
    0
  2. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    Merci beaucoup !

    voici la première partie du travail :

    ======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======

    Mis à jour par TeamXscript le 01/03/11
    Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
    Site web: http://www.teamxscript.org

    C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 23:05:14 le 06/03/2011, Mode sans echec

    Microsoft® Windows Vista(TM) Édition Familiale Premium (X86)
    Corinne@PC-DE-CORINNE (Hewlett-Packard HP Pavilion dv6000 (GH906EA#ABF))

    ============== ACTION(S) ==============

    Service: "Application Updater" Stoppé et supprimé
    Service: "ResultBar Service" Stoppé et supprimé

    Dossier supprimé: C:\Program Files\Mozilla FireFox\extensions\{34EFA911-B536-4C08-BECE-CD5E55C875B0}
    Fichier supprimé: C:\Program Files\Mozilla FireFox\extensions\pdfforge@mybrowserbar.com
    Fichier supprimé: C:\Users\Corinne\AppData\Roaming\Mozilla\FireFox\Profiles\shwhs0yn.default\searchplugins\cherche.xml
    Fichier supprimé: C:\Users\Corinne\scriptjava.html
    Dossier supprimé: C:\Program Files\Application Updater
    Dossier supprimé: C:\Users\Corinne\AppData\LocalLow\pdfforge
    Dossier supprimé: C:\Program Files\pdfforge Toolbar
    Dossier supprimé: C:\ProgramData\ResultBar
    Dossier supprimé: C:\Program Files\ResultBar
    Dossier supprimé: C:\Users\Corinne\AppData\LocalLow\Search Settings
    Dossier supprimé: C:\Program Files\Common Files\Spigot

    (!) -- Fichiers temporaires supprimés.

    -- Fichier ouvert: C:\Users\Corinne\AppData\Roaming\Mozilla\FireFox\Profiles\shwhs0yn.default\Prefs.js --
    Ligne supprimée: user_pref("browser.startup.homepage", "hxxp://www.cherche.us/");
    Ligne supprimée: user_pref("keyword.URL", "hxxp://www.cherche.us/Result.php?cx=partner-pub-0420647136319153%3A5n6ugpj...
    -- Fichier Fermé --

    Clé supprimée: HKLM\Software\Classes\CLSID\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402}
    Clé supprimée: HKLM\Software\Classes\ShopperReports.Reporter
    Clé supprimée: HKLM\Software\Classes\ShopperReports.Reporter.1
    Clé supprimée: HKLM\Software\ResultBar
    Clé supprimée: HKLM\Software\Application Updater
    Clé supprimée: HKLM\Software\pdfforge
    Clé supprimée: HKLM\Software\Search Settings
    Clé supprimée: HKCU\Software\AppDataLow\Software\pdfforge
    Clé supprimée: HKCU\Software\AppDataLow\Software\Search Settings
    Clé supprimée: HKLM\Software\Classes\Installer\Products\B6FDFB1B30C3ef645B7DABBB00368D0E
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Products\B6FDFB1B30C3ef645B7DABBB00368D0E
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}
    Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}
    Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\MenuExt\Recherche avec cherche.us
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{100EB1FD-D03E-47FD-81F3-EE91287F9465}
    Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7CDDCDC-BEEB-4685-A062-978F5E07CEEE}
    Clé supprimée: HKLM\Software\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
    Clé supprimée: HKLM\Software\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
    Clé supprimée: HKLM\Software\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
    Clé supprimée: HKLM\Software\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}

    Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E8790476BD765B5533AD96
    Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|SearchSettings
    Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{B922D405-6D13-4A2B-AE89-08A030DA4402}

    ============== SCAN ADDITIONNEL ==============

    **** Mozilla Firefox Version [3.6.15 (fr)] ****

    Plugins\npdivx32.dll (DivX,Inc.)
    Extensions\divx@partners.mozilla.com (DivX Settings)
    HKLM_Extensions|{3112ca9c-de6d-4884-a869-9855de68056c} - C:\ProgramData\Mozilla\Firefox Extensions\{3112ca9c-de6d-4884-a869-9855de68056c}

    -- C:\Users\Corinne\AppData\Roaming\Mozilla\FireFox\Profiles\shwhs0yn.default --
    Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} (Google Toolbar for Firefox)
    Prefs.js - browser.download.lastDir, C:\\Users\\Corinne\\Desktop
    Prefs.js - browser.search.defaultenginename, Live Search
    Prefs.js - browser.search.defaulturl, hxxp://search.live.com/results.aspx?FORM=IEFM1&q=
    Prefs.js - browser.search.selectedEngine, Live Search
    Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.15

    ========================================

    **** Internet Explorer Version [8.0.6001.18904] ****

    HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
    HKCU_Main|Start Page - hxxp://fr.msn.com/
    HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
    HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
    HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM_Main|Start Page - hxxp://fr.msn.com/
    HKCU_URLSearchHooks|{B922D405-6D13-4A2B-AE89-08A030DA4402} (x)
    HKCU_SearchScopes\{557C21FE-7274-410D-853E-9ED4471BF193} - "cherche.us" (hxxp://www.cherche.us/Result.php?cx=partner-pub-0420647136319153%3A5n6ugpjrdrh&c...)
    HKLM_ElevationPolicy\{4426E0F4-D71B-11DA-8750-001185653D78} - c:\program files\google\googletoolbar1user.exe (x)
    HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
    HKLM_Extensions\{85d1f590-48f4-11d9-9669-0800200c9a66} - "?" (?)
    HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?)
    HKLM_Extensions\{E023F504-0C5A-4750-A1E7-A9046DEA8A21} - "MoneySide" (C:\Program Files\Microsoft Money\System\mnyside.dll,209)
    BHO\{243B17DE-77C7-46BF-B94B-0B5F309A0E64} - "?" (C:\Program Files\Microsoft Money\System\mnyside.dll)
    BHO\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - "Windows Live Family Safety Browser Helper Class" (C:\Program Files\Windows Live\Family Safety\fssbho.dll)
    BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
    BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll)
    BHO\{FDD3B846-8D59-4ffb-8758-209B6AD74ACC} (?)

    ========================================

    C:\Program Files\Ad-Remover\Quarantine: 80 Fichier(s)
    C:\Program Files\Ad-Remover\Backup: 10 Fichier(s)

    C:\Ad-Report-CLEAN[1].txt - 06/03/2011 23:05:24 (0 Octet(s))

    Fin à: 23:07:32, 06/03/2011

    ============== E.O.F ==============
    0
  3. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    Deuxième partie :

    j'ai du mal à m'y retrouver avec l'enregistrement sur le poste de travail, j'ai fait un copié collé :

    Rapport de ZHPDiag v1.27.1628 par Nicolas Coolman, Update du 05/03/2011
    Run by Corinne at 06/03/2011 23:30:11
    Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
    Contact : nicolascoolman@yahoo.fr

    ---\\ Web Browser
    MSIE: Internet Explorer v8.0.6001.18904
    MFIE: Mozilla Firefox v3.6.15 (fr) (Defaut)

    ---\\ System Information
    Windows Vista Home Premium Edition, 32-bit (Build 6000)
    Processor: x86 Family 6 Model 14 Stepping 12, GenuineIntel
    Operating System: 32 Bits
    Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
    Total RAM: 2037 MB (69% free)
    System Restore: Activé (Enable)
    System drive C: has 58 GB (41%) free of 142 GB

    ---\\ Logged in mode
    Computer Name: PC-DE-CORINNE
    User Name: Corinne
    All Users Names: Corinne, Administrateur,
    Unselected Option: O45,O61,O62,O65,O66,O82
    Logged in as Administrator

    ---\\ Environnement Variables
    %AppData%=C:\Users\Corinne\AppData\Roaming
    %LocalAppData%=C:\Users\Corinne\AppData\Local
    %StartMenu%=C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu

    ---\\ DOS/Devices
    C:\ Hard drive, Flash drive, Thumb drive (Free 58 Go of 142 Go)
    D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 7 Go)
    E:\ CD-ROM drive (Not Inserted)

    ---\\ Security Center & Tools Informations
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

    ---\\ Recherche particulière de fichiers génériques
    [MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - (.Microsoft Corporation - Explorateur Windows.) (.29/10/2008 07:20:29.) -- C:\Windows\Explorer.exe [2923520]
    [MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] - (.Microsoft Corporation - Application de démarrage de Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Wininit.exe [95744]
    [MD5.EC3B3E6071E3FCD4290BFD42676EE064] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.23/02/2010 07:39:13.) -- C:\Windows\System32\wininet.dll [916480]
    [MD5.9F75392B9128A91ABAFB044EA350BAAD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Winlogon.exe [308224]
    [MD5.B35CFCEF838382AB6490B321C87EDF17] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/02/2008 01:06:34.) -- C:\Windows\System32\drivers\atapi.sys [21560]
    [MD5.37430AA7A66D7A63407ADC2C0D05E9F6] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.16/12/2007 23:50:41.) -- C:\Windows\System32\drivers\ntfs.sys [1060920]

    ---\\ Processus lancés
    [MD5.14667B73AF7D2B0E51DD15216571A97C] - (.Microsoft Corporation - Aide et support Microsoft®.) -- C:\Windows\helppane.exe [497152]
    [MD5.FF7F14FDA901090E337488A1900E3660] - (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\NOTEPAD.EXE [151040]
    [MD5.2F881390B9BBD912D790A4875CB33A34] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]
    [MD5.0AF80338BAD26049974531322857A42E] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856]
    [MD5.EF2CB30A6C64A0CEAF60839C531A2207] - (.ALWIL Software - Virus scanner.) -- C:\Program Files\Alwil Software\Avast4\ashSimpl.exe [155832]
    [MD5.0FCC61B73DC2E0C9177C929E19E8DB73] - (.IZSoftware - IZArc Archiver.) -- C:\PROGRA~1\IZArc\IZArc.exe [759808]
    [MD5.903E617600010767AE394F8083C9B1A7] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [632320]

    ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
    M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\shwhs0yn.default\searchplugins\live-search.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo.xml
    P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
    P2 - FPN:Firefox Plugin Navigator . (.DivX,Inc. - DivX® Web Player.) -- C:\Program Files\Mozilla Firefox\Plugins\npdivx32.dll
    P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
    P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.3.2".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
    P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
    P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Web Player.) -- C:\Program Files\DivX\DivX Web Player\npdivx32.dll
    P2 - FPN: [HKLM] [@divx.com/DivX Content Upload Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Content Upload Plugin.) -- C:\Program Files\DivX\DivX Content Uploader\npUpload.dll
    P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.51204.0.) -- c:\Program Files\Microsoft Silverlight\4.0.51204.0\npctrl.dll
    P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
    P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
    P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
    P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2571] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
    P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1739] - (.RealNetworks, Inc. - 6.0.12.1739.) -- C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
    P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
    M2 - MFEP: prefs.js [Corinne - shwhs0yn.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
    M2 - MFEP: prefs.js [Corinne - shwhs0yn.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v6.1.20091119W (.Google Inc..)

    ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com
    R0 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
    R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll
    R3 - URLSearchHook: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Pas de propriétaire - Pas de description.) (No version) -- C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll

    ---\\ Internet Explorer, Proxy Management (R5)
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
    R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
    R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

    ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
    F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
    F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

    ---\\ Browser Helper Objects de navigateur (O2)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} . (.Microsoft Corporation - MoneySide Controls.) -- C:\Program Files\Microsoft Money\System\mnyside.dll
    O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} . (.Microsoft Corporation - Family Safety Browser Helper Object Library.) -- C:\Program Files\Windows Live\Family Safety\fssbho.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (...) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (.not file.)
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (...) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (.not file.)
    O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (...) -- C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (.not file.)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} Clé orpheline

    ---\\ Internet Explorer Toolbars (O3)
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

    ---\\ Applications démarrées par registre & par dossier (O4)
    O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
    O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
    O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe
    O4 - HKLM\..\Run: [QlbCtrl] . (. Hewlett-Packard Development Company, L.P. - QLB Controller.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    O4 - HKLM\..\Run: [HP Health Check Scheduler] . (.Hewlett-Packard - HP Health Check Scheduler.) -- C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
    O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    O4 - HKLM\..\Run: [WAWifiMessage] . (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
    O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] . (.Google Inc. - Gmail Notifier.) -- C:\Program Files\Google\Gmail Notifier\gnotify.exe
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exetEng.dll (.not file.)
    O4 - HKLM\..\Run: [avast!] . (.ALWIL Software - avast! service GUI component.) -- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
    O4 - HKLM\..\Run: [fssui] . (.Microsoft Corporation - Windows Live Family Safety Filter.) -- C:\Program Files\Windows Live\Family Safety\fsui.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (.not file.)
    O4 - HKLM\..\Run: [MRT] . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\system32\MRT.exe
    O4 - HKLM\..\RunOnce: [Launcher] . (.soft thinks - Launcher.) -- C:\Windows\SMINST\launcher.exe
    O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKCU\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [Skype] . (...) -- C:\Program Files\Skype\Phone\Skype.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [Skype] . (...) -- C:\Program Files\Skype\Phone\Skype.exe
    O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.3.lnk . (...) -- C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe

    ---\\ Autres liens utilisateurs (O4)
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\1. Windows Live Messenger.lnk . (.Microsoft Corporation.) -- C:\Users\Corinne\AppData\Roaming\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\AD-R.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\Internet Explorer (2).lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\Microsoft Works.LNK . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\MSWorks.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\Windows Live Messenger.lnk - Clé orpheline
    O4 - Global Startup: C:\Users\Corinne\Desktop\ZX1 Mode d'emploi.lnk . (...) -- C:\Program Files\Panasonic\Lumix\ZX1\guideFRE.pdf
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Démarrer Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office10\OUTLOOK.EXE
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk . (...) -- C:\Windows\Installer\{8DC42D05-680B-41B0-8878-6C14D24602DB}\QTPlayer.ico
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Ultrasonography.lnk . (.Macromedia, Inc..) -- C:\Program Files\Ultrasonography\Ultrasonography.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

    ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
    O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~3\Office10\EXCEL.exe
    O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll

    ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
    O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO
    O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO
    O9 - Extra button: Spybot - Search & Destroy Configuration - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} . (.Microsoft Corporation - MoneySide Controls.) -- C:\Program Files\Microsoft Money\System\mnyside.dll

    ---\\ Winsock hijacker (Layered Service Provider) (O10)
    O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
    O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
    O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
    O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
    O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

    ---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
    O15 - Trusted Zone: [HKCU\...\Domains] *.chat-land.org
    O15 - Trusted Zone: [HKCU\...\Domains\www] *.chat-land.org

    ---\\ Objets ActiveX (Downloaded Program Files)(O16)
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

    ---\\ Modification Domaine/Adresses DNS (O17)
    O17 - HKLM\System\CCS\Services\Tcpip\..\{3A49B50F-48D7-421C-AB05-387BFFC718D2}: DhcpNameServer = 10.188.0.1
    O17 - HKLM\System\CCS\Services\Tcpip\..\{8DF881F2-3418-4C7C-97AD-39281A71565A}: DhcpNameServer = 86.64.145.144 84.103.237.144
    O17 - HKLM\System\CS1\Services\Tcpip\..\{3A49B50F-48D7-421C-AB05-387BFFC718D2}: DhcpNameServer = 10.188.0.1
    O17 - HKLM\System\CS1\Services\Tcpip\..\{8DF881F2-3418-4C7C-97AD-39281A71565A}: DhcpNameServer = 86.64.145.144 84.103.237.144
    O17 - HKLM\System\CS3\Services\Tcpip\..\{3A49B50F-48D7-421C-AB05-387BFFC718D2}: DhcpNameServer = 10.188.0.1
    O17 - HKLM\System\CS3\Services\Tcpip\..\{8DF881F2-3418-4C7C-97AD-39281A71565A}: DhcpNameServer = 86.64.145.144 84.103.237.144
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.188.0.1

    ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll

    ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll

    ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

    ---\\ Liste des services NT non Microsoft et non désactivés (O23)
    O23 - Service: (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: (Application Updater) - Clé orpheline
    O23 - Service: (aswUpdSv) . (.ALWIL Software - avast! Antivirus updating service.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: (avast! Antivirus) . (.ALWIL Software - avast! antivirus service.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: (avast! Mail Scanner) . (.ALWIL Software - avast! e-Mail Scanner Service.) - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: (avast! Web Scanner) . (.ALWIL Software - avast! Web Scanner.) - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: (CLCapSvc) . (.Pas de propriétaire - CLCapSvc Module.) - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
    O23 - Service: (CLSched) . (.Pas de propriétaire - CLSched Module.) - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
    O23 - Service: (Com4Qlb) . (.Hewlett-Packard Development Company, L.P. - Com for QLB software.) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
    O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: (gusvc) - Clé orpheline
    O23 - Service: (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    O23 - Service: (hpqwmiex) . (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: (LiveUpdate) . (.Symantec Corporation - LiveUpdate Engine COM Module.) - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe
    O23 - Service: (LiveUpdate Notice Ex) - Clé orpheline
    O23 - Service: (LiveUpdate Notice Service) . (.Symantec Corporation - LiveUpdate Notice Service.) - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: (Planificateur LiveUpdate automatique) . (.Symantec Corporation - Automatic LiveUpdate Scheduler Service.) - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: (ResultBar Service) - Clé orpheline
    O23 - Service: (RoxMediaDB9) . (.Sonic Solutions - RoxMediaDB9 Module.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: (stllssvr) . (.MicroVision Development, Inc. - SureThing Labelflash Disc Printer Service M.) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    O23 - Service: (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\system32\DRIVERS\xaudio.exe

    ---\\ Enumération Active Desktop & MHTML Editor (O24)
    O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

    ---\\ Tâches planifiées en automatique (O39)
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{857D7660-3DAD-4905-AB23-DA98EED67887}.job

    ---\\ Pilotes lancés au démarrage (O41)
    O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
    O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
    O41 - Driver: (DfsC) . (.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - C:\Windows\System32\Drivers\dfsc.sys
    O41 - Driver: (eabfiltr) . (.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) - C:\Windows\System32\DRIVERS\eabfiltr.sys
    O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
    O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
    O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
    O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
    O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
    O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
    O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
    O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
    O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
    O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
    O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
    O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
    O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
    O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys
    O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
    O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
    O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
    O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

    ---\\ Logiciels installés (O42)
    O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites - (.Microsoft Corporation.) [HKLM] -- Activation Assistant for the 2007 Microsoft Office suites
    O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
    O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
    O42 - Logiciel: Adobe Illustrator 10 - (.Adobe Systems, Inc..) [HKLM] -- {412033BC-44CF-48D9-B813-4B835101F4D3}
    O42 - Logiciel: Adobe Photoshop 6.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop 6.0
    O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}
    O42 - Logiciel: Adobe SVG Viewer - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer
    O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {976C2B2A-CE59-4AB3-83FB-BF895E28F2E6}
    O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {07287123-B8AC-41CE-8346-3D777245C35B}
    O42 - Logiciel: Complément Microsoft Word pour Microsoft Works Suite - (.Microsoft Corporation.) [HKLM] -- {F6B1CD0F-DB2D-4666-A168-C46390AD8C4A}
    O42 - Logiciel: Conexant HD Audio - (.Pas de propriétaire.) [HKLM] -- CNXT_HDAUDIO
    O42 - Logiciel: DivX Content Uploader - (.DivX, Inc..) [HKLM] -- {D050D7362D214723AD585B541FFB6C11}
    O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM] -- {B7050CBDB2504B34BC2A9CA0A692CC29}
    O42 - Logiciel: ESU for Microsoft Vista - (.Hewlett-Packard.) [HKLM] -- {39523EA4-F914-4447-A551-2513766095F5}
    O42 - Logiciel: Encyclopédie Microsoft Encarta 2003 - (.Microsoft Corporation.) [HKLM] -- {03460014-3975-4267-9F39-1DC4745090B7}
    O42 - Logiciel: Extension Système de Microsoft Money - (.Microsoft.) [HKLM] -- {02CA7E66-1AD1-4DE9-BA9E-86A0EEB019C7}
    O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}
    O42 - Logiciel: Google Gmail Notifier - (.Google Inc..) [HKLM] -- {0228e555-4f9c-4e35-a3ec-b109a192b4c2}
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
    O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5045&SUBSYS_103C30B7
    O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {290B83AA-093A-45BF-A917-D1C4A1E8D917}
    O42 - Logiciel: HP Active Support Library 32 bit components - (.Hewlett-Packard.) [HKLM] -- {FAB0C302-CB18-4A7A-BA03-C3DC23101A68}
    O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {AB5E289E-76BF-4251-9F3F-9B763F681AE0}
    O42 - Logiciel: HP Doc Viewer - (.Hewlett-Packard.) [HKLM] -- {082702D5-5DD8-4600-BCE5-48B15174687F}
    O42 - Logiciel: HP Easy Setup - Frontend - (.Hewlett-Packard.) [HKLM] -- {40F7AED3-0C7D-4582-99F6-484A515C73F2}
    O42 - Logiciel: HP Help and Support - (.Hewlett-Packard.) [HKLM] -- {9061CEF2-51F5-42C9-8A70-9ED351C6597A}
    O42 - Logiciel: HP Pavilion Webcam Driver for Vista v061.001.00005 - (.Chicony.) [HKLM] -- {5CA81D12-9EC2-4082-972B-43ECA63F41F2}
    O42 - Logiciel: HP Photosmart Essential 2.0 - (.HP.) [HKLM] -- HP Photosmart Essential
    O42 - Logiciel: HP Quick Launch Buttons 6.20 B1 - (.Hewlett-Packard.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
    O42 - Logiciel: HP QuickPlay 3.2 - (.Pas de propriétaire.) [HKLM] -- {45D707E9-F3C4-11D9-A373-0050BAE317E1}
    O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {8C6027FD-53DC-446D-BB75-CACD7028A134}
    O42 - Logiciel: HP User Guides 0082 - (.Hewlett-Packard.) [HKLM] -- {FCCC555E-166C-426A-A98C-39C80AE7C081}
    O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {D32067CD-7409-4792-BFA0-1469BCD8F0C8}
    O42 - Logiciel: Hewlett-Packard Active Check - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}
    O42 - Logiciel: Hewlett-Packard Asset Agent - (.HP.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
    O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
    O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
    O42 - Logiciel: IZArc 3.6 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1
    O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
    O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
    O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Pas de propriétaire.) [HKLM] -- HDMI
    O42 - Logiciel: Java(TM) 6 Update 13 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216013FF}
    O42 - Logiciel: Java(TM) 6 Update 2 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160020}
    O42 - Logiciel: Java(TM) SE Runtime Environment 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160000}
    O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
    O42 - Logiciel: LiveUpdate 3.2 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveUpdate
    O42 - Logiciel: LiveUpdate Notice (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- {DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
    O42 - Logiciel: MSCU for Microsoft Vista - (.Hewlett-Packard.) [HKLM] -- {336A609A-6ECC-4E05-B320-CCC085BF7EA7}
    O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
    O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}
    O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
    O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
    O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
    O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    O42 - Logiciel: Microsoft AutoRoute 2002 - (.Microsoft.) [HKLM] -- {F7F2DC0A-C22E-49AD-AD37-797309A54E7B}
    O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
    O42 - Logiciel: Microsoft Money - (.Microsoft.) [HKLM] -- {01A2E33A-8ADA-42D1-9173-8F65149E952F}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
    O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR
    O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
    O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}
    O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM] -- {9028040C-6000-11D3-8CFE-0050048383C9}
    O42 - Logiciel: Microsoft Picture It! Photo 7.0 - (.Microsoft Corporation.) [HKLM] -- {369B36BE-3D64-4641-9AEA-808D436FE132}
    O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
    O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
    O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
    O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
    O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}
    O42 - Logiciel: Microsoft Word 2002 - (.Microsoft Corporation.) [HKLM] -- {911B040C-6000-11D3-8CFE-0050048383C9}
    O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
    O42 - Logiciel: Microsoft Works 7.0 - (.Microsoft Corporation.) [HKLM] -- {64D114CE-4234-45C2-B60A-2B07D5A48F72}
    O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
    O42 - Logiciel: Mozilla Firefox (3.6.15) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.15)
    O42 - Logiciel: OpenOffice.org 2.3 - (.OpenOffice.org.) [HKLM] -- {FADB55D0-403F-4413-A268-CF0A6F1185C2}
    O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
    O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
    O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {8DC42D05-680B-41B0-8878-6C14D24602DB}
    O42 - Logiciel: R for Windows 2.6.0 - (.R Development Core Team.) [HKLM] -- R for Windows_is1
    O42 - Logiciel: Real Alternative 1.60 Lite - (.Pas de propriétaire.) [HKLM] -- RealAlt_is1
    O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM] -- {35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
    O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM] -- {83FFCFC7-88C6-41c6-8752-958A45325C82}
    O42 - Logiciel: Roxio Creator Basic v9 - (.Roxio.) [HKLM] -- {C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
    O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM] -- {619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
    O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM] -- {0D397393-9B50-4c52-84D5-77E344289F87}
    O42 - Logiciel: Roxio Creator EasyArchive - (.Roxio.) [HKLM] -- {11F93B4B-48F0-4A4E-AE77-DFA96A99664B}
    O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM] -- {0394CDC8-FABD-4ed8-B104-03393876DFDF}
    O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
    O42 - Logiciel: Roxio MyDVD Basic v9 - (.Roxio.) [HKLM] -- {33C65B6A-5D73-4E3E-A1F9-127C27BD3F72}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337-C8AC-46DB-A7DC-643E50089263}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{210B16C0-CEBD-4DE9-B474-04A7E8735E16}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A}
    O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
    O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B23002DD-34EC-4988-B810-A5E2A0BF04F1}
    O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
    O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}
    O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3DED0A62-44C8-4E00-A785-5212F297A9D9}
    O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
    O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}
    O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}
    O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}
    O42 - Logiciel: Shockwave - (.Pas de propriétaire.) [HKLM] -- Shockwave
    O42 - Logiciel: Skype 2.5 - (.Skype Technologies S.A..) [HKLM] -- Skype_is1
    O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-5464-3428-900000000004}
    O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
    O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
    O42 - Logiciel: Sélecteur d'installation de Microsoft Works Suite 2003 - (.Pas de propriétaire.) [HKLM] -- Works2003Setup
    O42 - Logiciel: Ultrasonography 2.0 - (.Pas de propriétaire.) [HKLM] -- Ultrasonography
    O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
    O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
    O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}
    O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
    O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
    O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}
    O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}
    O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
    O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
    O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {230B83A5-7D88-4B95-B71E-F44C0C78B002}
    O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM] -- Windows Live OneCare safety scanner
    O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM] -- {FE0646A7-19D0-41B4-A2BB-2C35D644270D}
    O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1}
    O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}
    O42 - Logiciel: avast! Antivirus - (.Alwil Software.) [HKLM] -- avast!
    O42 - Logiciel: muvee autoProducer 6.0 - (.muvee Technologies.) [HKLM] -- {0BFC200F-C45D-4271-AF34-4CA969225DEB}
    O42 - Logiciel: pdfforge Toolbar v4.1 - (.Spigot, Inc..) [HKLM] -- {B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}

    ---\\ HKCU & HKLM Software Keys
    [HKCU\Software\ALWIL Software]
    [HKCU\Software\Ad-Remover]
    [HKCU\Software\Adobe]
    [HKCU\Software\AppDataLow\Software\Google]
    [HKCU\Software\AppDataLow\Software\Microsoft]
    [HKCU\Software\AppDataLow\Software]
    [HKCU\Software\AppDataLow]
    [HKCU\Software\Apple Computer, Inc.]
    [HKCU\Software\CDDB]
    [HKCU\Software\Classes]
    [HKCU\Software\Clients]
    [HKCU\Software\Cyberlink]
    [HKCU\Software\DivXNetworks]
    [HKCU\Software\EasyBits]
    [HKCU\Software\Google]
    [HKCU\Software\Hewlett-Packard]
    [HKCU\Software\IM Providers]
    [HKCU\Software\IZSoftware]
    [HKCU\Software\Intel]
    [HKCU\Software\JavaSoft]
    [HKCU\Software\Local AppWizard-Generated Applications]
    [HKCU\Software\Macromedia]
    [HKCU\Software\MainConcept]
    [HKCU\Software\Mozilla]
    [HKCU\Software\Netscape]
    [HKCU\Software\ODBC]
    [HKCU\Software\Policies]
    [HKCU\Software\RealNetworks]
    [HKCU\Software\Roxio]
    [HKCU\Software\Safer Networking Limited]
    [HKCU\Software\Skype]
    [HKCU\Software\Softthinks]
    [HKCU\Software\Symantec]
    [HKCU\Software\Synaptics]
    [HKCU\Software\VB and VBA Program Settings]
    [HKCU\Software\YahooPartnerToolbar]
    [HKCU\Software\fAfvfSfP [fVf#f" fEfBfU [fh'Å ¶ ¬'³'ê'½f [fJf< fAfvfSfP [fVf#f"]
    [HKLM\Software\ALWIL Software]
    [HKLM\Software\Adobe]
    [HKLM\Software\Apple Computer, Inc.]
    [HKLM\Software\Apple Inc.]
    [HKLM\Software\Application Updater]
    [HKLM\Software\Broadcom]
    [HKLM\Software\BrowserChoice]
    [HKLM\Software\CXT]
    [HKLM\Software\Chicony]
    [HKLM\Software\Classes]
    [HKLM\Software\Clients]
    [HKLM\Software\Conexant Systems Inc ]
    [HKLM\Software\Conexant]
    [HKLM\Software\CyberLink]
    [HKLM\Software\Debug]
    [HKLM\Software\DivXNetworks]
    [HKLM\Software\Google]
    [HKLM\Software\HPQ]
    [HKLM\Software\HP]
    [HKLM\Software\Hewlett-Packard]
    [HKLM\Software\InstallShield]
    [HKLM\Software\InstalledOptions]
    [HKLM\Software\Intel]
    [HKLM\Software\JavaSoft]
    [HKLM\Software\Kodak]
    [HKLM\Software\LightScribe]
    [HKLM\Software\Macromedia]
    [HKLM\Software\MicroVision]
    [HKLM\Software\MimarSinan]
    [HKLM\Software\MozillaPlugins]
    [HKLM\Software\Mozilla]
    [HKLM\Software\ODBC]
    [HKLM\Software\OpenOffice.org]
    [HKLM\Software\PDFCreator]
    [HKLM\Software\Policies]
    [HKLM\Software\R-core]
    [HKLM\Software\RealAlternative]
    [HKLM\Software\RealNetworks]
    [HKLM\Software\RegisteredApplications]
    [HKLM\Software\ResultBar]
    [HKLM\Software\Roxio]
    [HKLM\Software\Safer Networking Limited]
    [HKLM\Software\Search Settings]
    [HKLM\Software\Skype]
    [HKLM\Software\Sonic]
    [HKLM\Software\Sun Microsystems]
    [HKLM\Software\SymDebug]
    [HKLM\Software\Symantec]
    [HKLM\Software\Synaptics]
    [HKLM\Software\Volatile]
    [HKLM\Software\WholeSecurity]
    [HKLM\Software\Wow6432Node]
    [HKLM\Software\Yuan High-Tech]
    [HKLM\Software\illiminable]
    [HKLM\Software\mozilla.org]
    [HKLM\Software\muvee Technologies]
    [HKLM\Software\pdfforge]

    ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 - CFD: 22/04/2007 - 02:32:34 - [12164052] ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
    O43 - CFD: 06/03/2011 - 23:05:16 - [14711858] ----D- C:\Program Files\Ad-Remover
    O43 - CFD: 29/10/2009 - 11:07:12 - [433624067] ----D- C:\Program Files\Adobe
    O43 - CFD: 01/11/2007 - 21:33:14 - [151972962] ----D- C:\Program Files\Alwil Software
    O43 - CFD: 13/11/2008 - 18:42:26 - [2221118] ----D- C:\Program Files\Apple Software Update
    O43 - CFD: 04/12/2010 - 17:22:58 - [392881] ----D- C:\Program Files\Bonjour
    O43 - CFD: 06/03/2011 - 23:06:02 - [1457012246] ----D- C:\Program Files\Common Files
    O43 - CFD: 22/04/2007 - 01:47:40 - [1786336] ----D- C:\Program Files\CONEXANT
    O43 - CFD: 17/10/2007 - 20:03:08 - [7388658] ----D- C:\Program Files\DivX
    O43 - CFD: 22/04/2007 - 02:49:26 - [51506213] ----D- C:\Program Files\Ea
    0
  4. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    \\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 - CFD: 22/04/2007 - 02:32:34 - [12164052] ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
    O43 - CFD: 06/03/2011 - 23:05:16 - [14711858] ----D- C:\Program Files\Ad-Remover
    O43 - CFD: 29/10/2009 - 11:07:12 - [433624067] ----D- C:\Program Files\Adobe
    O43 - CFD: 01/11/2007 - 21:33:14 - [151972962] ----D- C:\Program Files\Alwil Software
    O43 - CFD: 13/11/2008 - 18:42:26 - [2221118] ----D- C:\Program Files\Apple Software Update
    O43 - CFD: 04/12/2010 - 17:22:58 - [392881] ----D- C:\Program Files\Bonjour
    O43 - CFD: 06/03/2011 - 23:06:02 - [1457012246] ----D- C:\Program Files\Common Files
    O43 - CFD: 22/04/2007 - 01:47:40 - [1786336] ----D- C:\Program Files\CONEXANT
    O43 - CFD: 17/10/2007 - 20:03:08 - [7388658] ----D- C:\Program Files\DivX
    O43 - CFD: 22/04/2007 - 02:49:26 - [51506213] ----D- C:\Program Files\EasyBits
    O43 - CFD: 01/09/2007 - 20:58:26 - [0] -SH-D- C:\Program Files\Fichiers communs
    O43 - CFD: 06/03/2011 - 19:54:22 - [4531767] ----D- C:\Program Files\Google
    O43 - CFD: 22/04/2007 - 03:10:06 - [277941379] ----D- C:\Program Files\Hewlett-Packard
    O43 - CFD: 22/04/2007 - 02:33:04 - [135793428] ----D- C:\Program Files\Hp
    O43 - CFD: 22/04/2007 - 02:59:42 - [43762] ----D- C:\Program Files\HPQ
    O43 - CFD: 05/09/2010 - 11:53:24 - [56638903] --H-D- C:\Program Files\InstallShield Installation Information
    O43 - CFD: 03/04/2010 - 18:40:28 - [5741296] ----D- C:\Program Files\Internet Explorer
    O43 - CFD: 14/03/2008 - 00:40:28 - [8631842] ----D- C:\Program Files\IZArc
    O43 - CFD: 06/05/2009 - 18:36:06 - [249653022] ----D- C:\Program Files\Java
    O43 - CFD: 16/12/2008 - 19:27:08 - [1544075] ----D- C:\Program Files\Microsoft
    O43 - CFD: 07/10/2007 - 12:02:54 - [201401496] ----D- C:\Program Files\Microsoft AutoRoute
    O43 - CFD: 08/09/2007 - 23:59:48 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
    O43 - CFD: 07/10/2007 - 12:10:24 - [91693159] ----D- C:\Program Files\Microsoft Encarta
    O43 - CFD: 02/11/2006 - 13:37:36 - [92804023] ----D- C:\Program Files\Microsoft Games
    O43 - CFD: 07/10/2007 - 12:01:16 - [44964731] ----D- C:\Program Files\Microsoft Money
    O43 - CFD: 25/01/2008 - 18:00:16 - [595214889] ----D- C:\Program Files\Microsoft Office
    O43 - CFD: 07/10/2007 - 12:08:46 - [99671902] ----D- C:\Program Files\Microsoft Picture It! 7
    O43 - CFD: 06/02/2011 - 19:59:02 - [38361211] ----D- C:\Program Files\Microsoft Silverlight
    O43 - CFD: 16/12/2008 - 19:22:08 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
    O43 - CFD: 16/12/2008 - 19:24:50 - [2188837] ----D- C:\Program Files\Microsoft Sync Framework
    O43 - CFD: 25/01/2008 - 18:00:58 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
    O43 - CFD: 21/01/2010 - 03:08:08 - [253712979] ----D- C:\Program Files\Microsoft Works
    O43 - CFD: 07/10/2007 - 11:48:16 - [6922959] ----D- C:\Program Files\Microsoft Works Suite 2003
    O43 - CFD: 22/04/2007 - 02:30:20 - [8152064] ----D- C:\Program Files\Microsoft.NET
    O43 - CFD: 11/03/2010 - 03:28:04 - [99153006] ----D- C:\Program Files\Movie Maker
    O43 - CFD: 05/03/2011 - 23:03:58 - [33810663] ----D- C:\Program Files\Mozilla Firefox
    O43 - CFD: 02/11/2006 - 13:37:36 - [25757] ----D- C:\Program Files\MSBuild
    O43 - CFD: 02/11/2006 - 13:37:36 - [3272760] ----D- C:\Program Files\MSN
    O43 - CFD: 08/09/2007 - 23:52:26 - [0] ----D- C:\Program Files\MSXML 4.0
    O43 - CFD: 22/04/2007 - 02:55:06 - [162155701] ----D- C:\Program Files\muvee Technologies
    O43 - CFD: 31/10/2007 - 20:27:30 - [319687453] ----D- C:\Program Files\OpenOffice.org 2.3
    O43 - CFD: 04/09/2010 - 18:18:36 - [11533573] ----D- C:\Program Files\Panasonic
    O43 - CFD: 13/11/2008 - 18:44:52 - [77211909] ----D- C:\Program Files\QuickTime
    O43 - CFD: 28/10/2007 - 18:06:44 - [47871635] ----D- C:\Program Files\R
    O43 - CFD: 30/09/2007 - 20:58:54 - [15296645] ----D- C:\Program Files\Real Alternative
    O43 - CFD: 02/11/2006 - 13:37:36 - [38637313] ----D- C:\Program Files\Reference Assemblies
    O43 - CFD: 22/04/2007 - 02:11:10 - [208764100] ----D- C:\Program Files\Roxio
    O43 - CFD: 22/04/2007 - 02:50:54 - [26246001] ----D- C:\Program Files\Services en ligne
    O43 - CFD: 01/03/2010 - 20:03:10 - [21421897] ----D- C:\Program Files\Skype
    O43 - CFD: 17/06/2008 - 11:45:50 - [39251773] ----D- C:\Program Files\Spybot - Search & Destroy
    O43 - CFD: 01/11/2007 - 21:41:08 - [20249710] ----D- C:\Program Files\Symantec
    O43 - CFD: 22/04/2007 - 01:44:08 - [13435165] ----D- C:\Program Files\Synaptics
    O43 - CFD: 17/06/2008 - 11:39:38 - [396288] ----D- C:\Program Files\Trend Micro
    O43 - CFD: 23/11/2010 - 15:40:10 - [671989542] ----D- C:\Program Files\Ultrasonography
    O43 - CFD: 02/11/2006 - 14:01:56 - [0] --H-D- C:\Program Files\Uninstall Information
    O43 - CFD: 09/09/2007 - 13:41:04 - [1016832] ----D- C:\Program Files\Windows Calendar
    O43 - CFD: 02/11/2006 - 13:42:34 - [2761216] ----D- C:\Program Files\Windows Collaboration
    O43 - CFD: 09/09/2007 - 13:40:58 - [4486592] ----D- C:\Program Files\Windows Defender
    O43 - CFD: 02/11/2006 - 13:42:34 - [7078008] ----D- C:\Program Files\Windows Journal
    O43 - CFD: 09/12/2010 - 11:30:04 - [156211900] ----D- C:\Program Files\Windows Live
    O43 - CFD: 07/11/2007 - 20:49:04 - [22443902] ----D- C:\Program Files\Windows Live Safety Center
    O43 - CFD: 16/12/2008 - 19:18:16 - [245112] ----D- C:\Program Files\Windows Live SkyDrive
    O43 - CFD: 22/04/2010 - 02:21:40 - [9071240] ----D- C:\Program Files\Windows Mail
    O43 - CFD: 29/10/2009 - 03:21:06 - [4496487] ----D- C:\Program Files\Windows Media Player
    O43 - CFD: 01/09/2007 - 20:58:26 - [7940176] ----D- C:\Program Files\Windows NT
    O43 - CFD: 02/11/2006 - 13:42:34 - [13463714] ----D- C:\Program Files\Windows Photo Gallery
    O43 - CFD: 09/01/2008 - 22:23:18 - [6503190] ----D- C:\Program Files\Windows Sidebar
    O43 - CFD: 06/03/2011 - 23:30:16 - [3455024] ----D- C:\Program Files\ZHPDiag
    O43 - CFD: 06/02/2010 - 14:05:26 - [35207242] ----D- C:\Program Files\Common Files\Adobe
    O43 - CFD: 13/11/2008 - 18:44:06 - [49591976] ----D- C:\Program Files\Common Files\Apple
    O43 - CFD: 22/04/2007 - 02:30:40 - [92976] ----D- C:\Program Files\Common Files\DESIGNER
    O43 - CFD: 22/04/2007 - 02:47:08 - [3391664] ----D- C:\Program Files\Common Files\HP
    O43 - CFD: 22/04/2007 - 02:58:20 - [9991191] ----D- C:\Program Files\Common Files\InstallShield
    O43 - CFD: 22/04/2007 - 03:14:10 - [35279774] ----D- C:\Program Files\Common Files\Java
    O43 - CFD: 22/04/2007 - 02:59:38 - [7995006] ----D- C:\Program Files\Common Files\LightScribe
    O43 - CFD: 21/01/2010 - 03:09:02 - [584864376] ----D- C:\Program Files\Common Files\microsoft shared
    O43 - CFD: 22/04/2007 - 02:55:22 - [37787938] ----D- C:\Program Files\Common Files\muvee Technologies
    O43 - CFD: 22/04/2007 - 02:09:50 - [114476265] ----D- C:\Program Files\Common Files\Roxio Shared
    O43 - CFD: 02/11/2006 - 12:18:34 - [2702] ----D- C:\Program Files\Common Files\Services
    O43 - CFD: 22/04/2007 - 02:09:26 - [4795128] ----D- C:\Program Files\Common Files\Sonic Shared
    O43 - CFD: 02/11/2006 - 12:18:34 - [41100711] ----D- C:\Program Files\Common Files\SpeechEngines
    O43 - CFD: 22/04/2007 - 02:11:10 - [730752] ----D- C:\Program Files\Common Files\SureThing Shared
    O43 - CFD: 01/11/2007 - 22:17:10 - [7209482] ----D- C:\Program Files\Common Files\Symantec Shared
    O43 - CFD: 25/01/2008 - 18:00:06 - [50003136] ----D- C:\Program Files\Common Files\System
    O43 - CFD: 16/12/2008 - 18:51:14 - [474491927] ----D- C:\Program Files\Common Files\Windows Live
    O43 - CFD: 06/02/2010 - 14:05:26 - [63248319] ----D- C:\ProgramData\Adobe
    O43 - CFD: 13/11/2008 - 18:41:10 - [17873408] ----D- C:\ProgramData\Apple
    O43 - CFD: 13/11/2008 - 18:43:54 - [33387520] ----D- C:\ProgramData\Apple Computer
    O43 - CFD: 01/09/2007 - 20:58:24 - [0] -SH-D- C:\ProgramData\Application Data
    O43 - CFD: 01/09/2007 - 20:58:24 - [0] -SH-D- C:\ProgramData\Bureau
    O43 - CFD: 02/06/2007 - 01:03:46 - [34404] ----D- C:\ProgramData\CyberLink
    O43 - CFD: 01/09/2007 - 20:58:24 - [0] -SH-D- C:\ProgramData\Documents
    O43 - CFD: 01/09/2007 - 20:58:24 - [0] -SH-D- C:\ProgramData\Favoris
    O43 - CFD: 25/02/2009 - 22:12:32 - [530137] ----D- C:\ProgramData\Google
    O43 - CFD: 22/04/2007 - 03:14:44 - [417317] ----D- C:\ProgramData\Hewlett-Packard
    O43 - CFD: 01/09/2007 - 23:31:16 - [38927] ----D- C:\ProgramData\HP
    O43 - CFD: 01/09/2007 - 20:58:24 - [0] -SH-D- C:\ProgramData\Menu Démarrer
    O43 - CFD: 05/06/2010 - 02:03:22 - [214046595] -S--D- C:\ProgramData\Microsoft
    O43 - CFD: 16/12/2010 - 03:04:56 - [57040] ----D- C:\ProgramData\Microsoft Help
    O43 - CFD: 01/09/2007 - 20:58:24 - [0] -SH-D- C:\ProgramData\Modèles
    O43 - CFD: 17/10/2007 - 20:03:38 - [1252659] ----D- C:\ProgramData\Mozilla
    O43 - CFD: 30/09/2007 - 20:58:52 - [0] ----D- C:\ProgramData\Real
    O43 - CFD: 22/04/2007 - 02:10:28 - [17129687] ----D- C:\ProgramData\Roxio
    O43 - CFD: 01/03/2010 - 20:03:22 - [0] ----D- C:\ProgramData\Skype
    O43 - CFD: 04/09/2010 - 18:14:06 - [1305] ----D- C:\ProgramData\Sonic
    O43 - CFD: 06/03/2011 - 14:22:08 - [74142508] ----D- C:\ProgramData\Spybot - Search & Destroy
    O43 - CFD: 01/11/2007 - 22:17:10 - [22511405] ----D- C:\ProgramData\Symantec
    O43 - CFD: 04/06/2008 - 21:25:04 - [218180] ----D- C:\ProgramData\WLInstaller
    O43 - CFD: 06/02/2008 - 10:33:58 - [6625098] ----D- C:\Users\Corinne\AppData\Roaming\Adobe
    O43 - CFD: 01/09/2007 - 23:31:50 - [0] ----D- C:\Users\Corinne\AppData\Roaming\CyberLink
    O43 - CFD: 08/09/2007 - 19:08:40 - [0] ----D- C:\Users\Corinne\AppData\Roaming\Google
    O43 - CFD: 01/09/2007 - 21:01:18 - [0] ----D- C:\Users\Corinne\AppData\Roaming\Hewlett-Packard
    O43 - CFD: 01/09/2007 - 23:31:16 - [0] ----D- C:\Users\Corinne\AppData\Roaming\HP
    O43 - CFD: 01/09/2007 - 21:09:20 - [0] ----D- C:\Users\Corinne\AppData\Roaming\Identities
    O43 - CFD: 06/03/2011 - 12:58:56 - [19494] -SH-D- C:\Users\Corinne\AppData\Roaming\lowsec
    O43 - CFD: 01/09/2007 - 21:01:56 - [1924413] ----D- C:\Users\Corinne\AppData\Roaming\Macromedia
    O43 - CFD: 02/11/2006 - 13:37:36 - [0] ----D- C:\Users\Corinne\AppData\Roaming\Media Center Programs
    O43 - CFD: 06/03/2011 - 13:44:42 - [55115217] -S--D- C:\Users\Corinne\AppData\Roaming\Microsoft
    O43 - CFD: 03/04/2010 - 18:20:04 - [39854738] ----D- C:\Users\Corinne\AppData\Roaming\Mozilla
    O43 - CFD: 24/02/2011 - 17:22:48 - [1965992] ----D- C:\Users\Corinne\AppData\Roaming\OpenOffice.org2
    O43 - CFD: 29/09/2009 - 22:30:14 - [412] ----D- C:\Users\Corinne\AppData\Roaming\Real
    O43 - CFD: 04/09/2010 - 18:14:24 - [1063728] ----D- C:\Users\Corinne\AppData\Roaming\Roxio
    O43 - CFD: 24/02/2011 - 19:07:18 - [8793] ----D- C:\Users\Corinne\AppData\Roaming\Skype
    O43 - CFD: 17/10/2007 - 20:04:14 - [7729] ----D- C:\Users\Corinne\AppData\Roaming\Talkback
    O43 - CFD: 26/09/2007 - 15:53:56 - [8704] ----D- C:\Users\Corinne\AppData\Roaming\Template

    ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
    O44 - LFC:[MD5.4BD926DF006DF76173DC3830267E31E0] - 06/03/2011 - 23:10:43 ---A- . (...) -- C:\Windows\ntbtlog.txt [1213410]
    O44 - LFC:[MD5.16315A8F75074DAFF0E56F7C04C162C9] - 06/03/2011 - 23:10:12 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
    O44 - LFC:[MD5.5C0F25ECEC17FC74E291551D6AADF236] - 06/03/2011 - 23:07:33 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [7259]
    O44 - LFC:[MD5.25BFD372F112CA0633884D67B0D6F804] - 06/03/2011 - 13:33:48 -SHA- . (...) -- C:\pagefile.sys [2450980864]
    O44 - LFC:[MD5.65104FDF713F3591478EC4C3FF6157D0] - 06/03/2011 - 13:33:47 ---A- . (...) -- C:\Windows\MEMORY.DMP [178583769]
    O44 - LFC:[MD5.2BE243A63A82077632667D7D62E17C4F] - 06/03/2011 - 13:30:03 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [3072]
    O44 - LFC:[MD5.2BE243A63A82077632667D7D62E17C4F] - 06/03/2011 - 13:30:02 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [3072]
    O44 - LFC:[MD5.90F718ACC498FC5C52BDC218FA8D1FD1] - 06/03/2011 - 13:09:58 ---A- . (...) -- C:\Windows\PFRO.log [64414]
    O44 - LFC:[MD5.E5E264E7CD5F9029A0EFFA6C7CCF87EE] - 06/03/2011 - 12:48:20 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1779280]
    O44 - LFC:[MD5.6CBACA685A4221B59F8D4B519FAF3FD8] - 05/03/2011 - 14:03:16 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1512256]
    O44 - LFC:[MD5.804E1719ED5B679523D1FF2AC0F79BEA] - 05/03/2011 - 14:03:16 ---A- . (...) -- C:\Windows\System32\perfc009.dat [103924]
    O44 - LFC:[MD5.FB485590099151791690AB183505681E] - 05/03/2011 - 14:03:16 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [117572]
    O44 - LFC:[MD5.13D5D823B4CEC9B854787886898B0F11] - 05/03/2011 - 14:03:16 ---A- . (...) -- C:\Windows\System32\perfh009.dat [610142]
    O44 - LFC:[MD5.3993D97449584894FC310269C22338A6] - 05/03/2011 - 14:03:16 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [690832]
    O44 - LFC:[MD5.7BF48071B9B18945C460A981BF36DF6F] - 26/02/2011 - 20:09:45 ---A- . (...) -- C:\Windows\System32\MRT.INI [118]

    ---\\ MountPoints2 Shell Key (O51)
    O51 - MPSK:{014b548e-8632-11dc-87d8-001b24481c31}\AutoRun\command. (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\system32\wscript.exe
    O51 - MPSK:{c5c8b728-93be-11dd-a443-001b24481c31}\AutoRun\command. (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\system32\wscript.exe
    O51 - MPSK:{d8eaf6fe-a25d-11de-904c-001b24481c31}\AutoRun\command - Clé orpheline

    ---\\ Trojan Driver Search Data (HKLM) (O52)
    O52 - TDSD: \Drivers32\"msacm.l3acm"="L3CODECA.ACM" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\L3CODECA.ACM
    O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
    O52 - TDSD: \Drivers32\"msacm.l3codecp"="" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
    O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\Windows\System32\sl_anet.acm
    O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
    O52 - TDSD: \drivers.desc\"l3codecp.acm"="" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\l3codecp.acm
    O52 - TDSD: \drivers.desc\"L3CODECA.ACM"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\L3CODECA.ACM
    O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\Windows\System32\sl_anet.acm

    ---\\ Microsoft Control Security Providers (O54)
    O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll
    O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

    ---\\ Microsoft Windows Policies System (O55)
    O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
    O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
    O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
    O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
    O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
    O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
    O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
    O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

    ---\\ Liste des Drivers Système (O58)
    O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [420968]
    O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297576]
    O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [98408]
    O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [147048]
    O58 - SDL:[MD5.90395B64600EBB4552E26E178C94B2E4] - 02/11/2006 - 10:49:20 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14952]
    O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [67688]
    O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [67688]
    O58 - SDL:[MD5.976E2AD5A62044629C2DE2CA8563722A] - 19/07/2008 - 15:37:42 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [20560]
    O58 - SDL:[MD5.5C3C0DA947798C99D8C094BF3DCC03A8] - 19/07/2008 - 15:36:03 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [51280]
    O58 - SDL:[MD5.D78653E357BFADB9A432AA1F66D50269] - 19/07/2008 - 15:33:42 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [23152]
    O58 - SDL:[MD5.17C4F06944B90944291CF7FB18D630C2] - 19/07/2008 - 15:35:18 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [78416]
    O58 - SDL:[MD5.C33510A1866806FD9C17F5D36B4DB6A6] - 19/07/2008 - 15:32:36 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [42912]
    O58 - SDL:[MD5.746F59822A5187510471FC46889B8CC9] - 03/01/2007 - 16:43:12 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL6.SYS [534016]
    O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]
    O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]
    O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]
    O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]
    O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]
    O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]
    O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 18/10/2006 - 02:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdr4_xp.sys [2432]
    O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 18/10/2006 - 02:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdralw2k.sys [2560]
    O58 - SDL:[MD5.3AEEE05BB25B8CC72B6E9AEC0E6F394B] - 12/12/2006 - 16:06:40 ---A- . (.Conexant Systems Inc. - High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\CHDART.sys [148992]
    O58 - SDL:[MD5.45201046C776FFDAF3FC8A0029C581C8] - 02/11/2006 - 10:49:28 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [16488]
    O58 - SDL:[MD5.DE15777902A5D9121857D155873A1D1B] - 28/06/2006 - 08:54:00 ---A- . (.Hewlett-Packard Development Company, L.P. - HP Tablet PC Key Button HID Driver.) -- C:\Windows\system32\drivers\CPQBttn.sys [9472]
    O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]
    O58 - SDL:[MD5.C0B00E55CF82D122D25983C7A6A53DEA] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Pilote NDIS 5.1 de la carte Intel(R) PRO/100.) -- C:\Windows\system32\drivers\e100b325.sys [163328]
    O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel(R) PRO/1000.) -- C:\Windows\system32\drivers\E1G60I32.sys [117760]
    O58 - SDL:[MD5.E88B0CFCECF745211BBA87F44F85D0DD] - 30/11/2006 - 09:24:58 ---A- . (.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) -- C:\Windows\system32\drivers\eabfiltr.sys [8192]
    O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [316520]
    O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [37480]
    O58 - SDL:[MD5.BCC074692882C056B0E1AC97F3331A02] - 07/12/2006 - 16:04:36 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\HSXHWAZL.sys [207360]
    O58 - SDL:[MD5.3B4522D0E750BAC8FE7AE61622A57014] - 07/12/2006 - 16:04:26 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\HSX_CNXT.sys [659968]
    O58 - SDL:[MD5.0D7A055A840C3099C37D576573A42CD5] - 07/12/2006 - 16:05:58 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\HSX_DPV.sys [985600]
    O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [232040]
    O58 - SDL:[MD5.DBB0588936E43C5F16B643F90F53C06D] - 22/02/2007 - 10:47:54 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd32.sys [1662464]
    O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]
    O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]
    O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]
    O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [65640]
    O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [65640]
    O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [65640]
    O58 - SDL:[MD5.0CEA2D0D3FA284B85ED5B68365114F76] - 19/06/2006 - 15:26:58 ---A- . (.Conexant - Diagnostic Interface x86 Driver.) -- C:\Windows\system32\drivers\mdmxsdk.sys [12672]
    O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [28776]
    O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]
    O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]
    O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]
    O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [88680]
    O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [40040]
    O58 - SDL:[MD5.D86B4A68565E444D76457F14172C875A] - 02/02/2007 - 02:00:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\system32\drivers\pxhelp20.sys [43528]
    O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [900712]
    O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]
    O58 - SDL:[MD5.D85E3FA9F5B1F29BB4ED185C450D1470] - 16/11/2006 - 10:16:24 ---A- . (.REDC - RICOH MMC Driver.) -- C:\Windows\system32\drivers\rimmptsk.sys [32256]
    O58 - SDL:[MD5.DB8EB01C58C9FADA00C70B1775278AE0] - 16/11/2006 - 05:42:46 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\system32\drivers\rimsptsk.sys [43520]
    O58 - SDL:[MD5.6C1F93C0760C9F79A1869D07233DF39D] - 16/11/2006 - 03:35:20 ---A- . (.REDC - RICOH XD SM Driver.) -- C:\Windows\system32\drivers\rixdptsk.sys [37376]
    O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]
    O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [38504]
    O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [71784]
    O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]
    O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]
    O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]
    O58 - SDL:[MD5.8327106D1C93E9A7B98E63B9FCC24BB7] - 13/01/2007 - 04:59:02 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [181432]
    O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [235112]
    O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]
    O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]
    O58 - SDL:[MD5.FD2E3175FCADA350C7AB4521DCA187EC] - 02/11/2006 - 10:49:30 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17512]
    O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys [112232]
    O58 - SDL:[MD5.46D67209550973257601A533E2AC5785] - 02/11/2006 - 08:41:49 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL3.SYS [200704]
    O58 - SDL:[MD5.5C7BDCF5864DB00323FE2D90FA26A8A2] - 02/11/2006 - 08:41:48 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT3.SYS [654336]
    O58 - SDL:[MD5.EC36F1D542ED4252390D446BF6D4DFD0] - 02/11/2006 - 08:41:50 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV3.SYS [987648]
    O58 - SDL:[MD5.88AF537264F2B818DA15479CEEAF5D7C] - 28/11/2006 - 17:44:52 ---A- . (.Conexant Systems, Inc. - Modem Audio Device Driver.) -- C:\Windows\system32\drivers\XAudio.sys [8192]
    O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]
    O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]
    O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]
    O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]
    O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]
    O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]
    O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]
    O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]
    O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]
    O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]
    O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]
    O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]
    O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]
    O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]
    O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]

    ---\\ Liste des outils de nettoyage (O63)
    O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

    ---\\ Liste des services Legacy (O64)
    O64 - Services: CurCS - (.not file.) - 2af7aa80 (2af7aa80) .(...) - LEGACY_2AF7AA80
    O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys - Ancilliary Function Driver for Winsock (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\aswFsBlk.sys - aswFsBlk (aswFsBlk) .(.ALWIL Software - avast! File System Access Blocking Driver.) - LEGACY_ASWFSBLK
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.ALWIL Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
    O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR
    O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSP.sys - (.not file.) - avast! Self Protection (aswSP) .(...) - LEGACY_ASWSP
    O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI
    O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\bowser.sys - Bowser (bowser) .(.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) - LEGACY_BOWSER
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
    O64 - Services: CurCS - C:\Windows\System32\CLFS.sys - Common Log (CLFS) (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
    O64 - Services: CurCS - C:\Windows\System32\drivers\crcdisk.sys - Crcdisk Filter Driver (crcdisk) .(.Microsoft Corporation - Disk Block Verification Filter Driver.) - LEGACY_CRCDISK
    O64 - Services: CurCS - C:\Windows\System32\Drivers\dfsc.sys - Dfs Client Driver (DfsC) .(.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - LEGACY_DFSC
    O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\eabfiltr.sys - eabfiltr (eabfiltr) .(.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) - LEGACY_EABFILTR
    O64 - Services: CurCS - C:\Windows\System32\drivers\ecache.sys - ReadyBoost Caching Driver (Ecache) .(.Microsoft Corporation - Special Memory Device Cache.) - LEGACY_ECACHE
    O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT
    O64 - Services: CurCS - C:\Windows\System32\drivers\fileinfo.sys - File Information FS MiniFilter (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
    O64 - Services: CurCS - C:\Windows\System32\drivers\fltmgr.sys - FltMgr (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\fssfltr.sys - FssFltr (fssfltr) .(.Microsoft Corporation - Family Safety Filter Driver (WFP Callout).) - LEGACY_FSSFLTR
    O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC
    O64 - Services: CurCS - C:\Windows\System32\drivers\HTTP.sys - HTTP (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
    O64 - Services: CurCS - (.not file.) - Symantec Intrusion Prevention Driver (IDSvix86) .(...) - LEGACY_IDSVIX86
    O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
    O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys - UAC File Virtualization (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
    O64 - Services: CurCS - C:\Windows\System32\drivers\mountmgr.sys - Mount Point Manager (MountMgr) .(.Microsoft Corporation - Mount Point Manager.) - LEGACY_MOUNTMGR
    O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
    O64 - Services: CurCS - C:\Windows\system32\drivers\mrxdav.sys - WebDav Client Redirector Driver (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb.sys - SMB MiniRedirector Wrapper and Engine (mrxsmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb10.sys - SMB 1.x MiniRedirector (mrxsmb10) .(.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) - LEGACY_MRXSMB10
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb20.sys - SMB 2.0 MiniRedirector (mrxsmb20) .(.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) - LEGACY_MRXSMB20
    O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS
    O64 - Services: CurCS - C:\Windows\System32\drivers\msisadrv.sys - Pilote de classe ISA/EISA (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
    O64 - Services: CurCS - C:\Windows\System32\Drivers\mup.sys - Mup (Mup) .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Microsoft Corporation - NativeWiFi Miniport Driver.) - LEGACY_NATIVEWIFIP
    O64 - Services: CurCS - C:\Windows\System32\drivers\ndis.sys - NDIS System Driver (NDIS) .(.Microsoft Corporation - NDIS 6.0 wrapper driver.) - LEGACY_NDIS
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Microsoft Corporation - NDIS User mode I/O driver.) - LEGACY_NDISUIO
    O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbt.sys - NETBT (netbt) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
    O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS
    O64 - Services: CurCS - C:\Windows\System32\drivers\nsiproxy.sys - NSI proxy service (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
    O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS
    O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL
    O64 - Services: CurCS - C:\Windows\System32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
    O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (PSched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rasacd.sys - Remote Access Auto Connection Driver (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rdbss.sys - Redirected Buffering Sub Sysytem (rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\RDPCDD.sys - RDPCDD (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
    O64 - Services: CurCS - C:\Windows\System32\drivers\rdpencdd.sys - RDP Encoder Mirror Driver (RDPENCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPENCDD
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
    O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV
    O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Smb) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_SMB
    O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srv.sys - srv (srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srv2.sys - srv2 (srv2) .(.Microsoft Corporation - Smb 2.0 Server driver.) - LEGACY_SRV2
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
    O64 - Services: CurCS - (.not file.) - SYMTDI (SYMTDI) .(...) - LEGACY_SYMTDI
    O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
    O64 - Services: CurCS - C:\Windows\System32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
    O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\udfs.sys - udfs (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
    O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
    O64 - Services: CurCS - C:\Windows\System32\drivers\volmgrx.sys - Dynamic Volume Manager (volmgrx) .(.Microsoft Corporation - Volume Manager Extension Driver.) - LEGACY_VOLMGRX
    O64 - Services: CurCS - C:\Windows\System32\drivers\volsnap.sys - Volumes de stockage (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wanarp.sys - Remote Access IPv6 ARP Driver (Wanarpv6) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARPV6
    O64 - Services: CurCS - C:\Windows\System32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - WDF dynamique.) - LEGACY_WDF01000
    O64 - Services: CurCS - C:\Windows\System32\DRIVERS\xaudio.sys - XAudio (XAudio) .(.Conexant Systems, Inc. - Modem Audio Device Driver.) - LEGACY_XAUDIO

    ---\\ File Associations Shell Spawning (O67)
    O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
    O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
    O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
    O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
    O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)
    O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
    O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

    ---\\ Start Menu Internet (O68)
    O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

    ---\\ Search Browser Infection (O69)
    O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
    O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
    O69 - SBI: SearchScopes [HKCU] {557C21FE-7274-410D-853E-9ED4471BF193} - (cherche.us) - http://www.cherche.usA%23FFFFF0%3B&q={searchTerms}
    O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - https://www.google.fr/?gws_rd=ssl
    O69 - SBI: SearchScopes [HKCU] {7D07AD17-9A0D-45B5-9E5A-078483FB9F6F} - (Yahoo! Search) - https://fr.search.yahoo.com/
    O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Live Search) - https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
    O69 - SBI: SearchScopes [HKCU] {A8E6ADBB-2087-47D7-B9CF-4D096BA5F7C6} - (Yahoo! France) - https://fr.search.yahoo.com/

    ---\\ Internet Feature Controls (O81)
    O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe
    O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe

    ---\\ Recherche particuliere à la racine de certains dossiers (O84)
    [MD5.6CAEAEC1962BC87071FBC7A2ABD4D4C3] [SPRF] (.Pas de propriétaire - Pas de description.) -- C:\Users\Corinne\AppData\Local\etubeqix.dll [7894]

    ---\\ Firewall Active Exception List (FirewallRules) (O87)
    O87 - FAEL: "MCX-Prov-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
    O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Distributed File System Replication.) -- C:\Windows\system32\dfsr.exe
    O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Distributed File System Replication.) -- C:\Windows\system32\dfsr.exe
    O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
    O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
    O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
    O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
    O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
    O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
    O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
    O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
    O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
    O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
    O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
    O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
    O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
    O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
    O87 - FAEL: "{8DF41FA1-EE8A-49A0-A0BB-E7398819232A}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
    O87 - FAEL: "{8890AAEA-6265-4CB1-8365-FED25F455988}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
    O87 - FAEL: "{29C0724B-4383-49E0-A73B-E9D91BD9B0AC}" | In - None - P17 - TRUE | .(.CyberLink Corp. - HP QuickPlay.) -- C:\Program Files\HP\QuickPlay\QP.exe
    O87 - FAEL: "{88CAC299-04F1-4C72-909F-EA9F14BCE056}" | In - None - P17 - TRUE | .(.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe
    O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l'autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe
    O87 - FAEL: "TCP Query User{35E555BD-3F3E-4F22-BEF5-8460A090265A}C:\program files\internet explorer\iexplore.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe
    O87 - FAEL: "UDP Query User{7BD73212-3B94-4A24-9D64-990DDC0868DA}C:\program files\internet explorer\iexplore.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe
    O87 - FAEL: "TCP Query User{543E1E14-8717-4E69-9724-0E1891EA1E26}C:\program files\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe
    O87 - FAEL: "UDP Query User{1F71E8A9-99BF-4886-B28E-628BBAD92FBD}C:\program files\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe
    O87 - FAEL: "{292AFA40-7DB1-4009-AF5D-D413EDC3DF86}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Skype\Phone\Skype.exe
    O87 - FAEL: "{1D0792FF-7F5A-40A1-9E47-AE3494C28AFB}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Skype\Phone\Skype.exe
    O87 - FAEL: "{AE54069A-5777-44FF-83BB-092ACF44C815}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
    O87 - FAEL: "{7BC5EFB5-1651-4708-A620-0A752DBDE81F}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
    O87 - FAEL: "{7D70C357-5F3C-4E64-95AD-0F46767105C7}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    O87 - FAEL: "{2DF5D0DA-B962-4ADE-9594-2A10D009A44D}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
    O87 - FAEL: "TCP Query User{59D92E91-CFB4-4CF4-B0AE-6BE55B4732E5}C:\windows\explorer.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Explorateur Windows.) -- C:\windows\explorer.exe
    O87 - FAEL: "UDP Query User{D399AB73-BE8A-4440-91D7-C67F560D0244}C:\windows\explorer.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Explorateur Windows.) -- C:\windows\explorer.exe

    ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
    SS - | Auto 01/10/2008 116040 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    SS - | Auto 01/10/2008 0 | (Application Updater) . (.Pas de propriétaire.) - C:\Program Files\Application Updater\ApplicationUpdater.exe
    SS - | Auto 19/07/2008 16056 | (aswUpdSv) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    SS - | Auto 19/07/2008 147640 | (avast! Antivirus) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    SS - | Demand 19/07/2008 250040 | (avast! Mail Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    SS - | Demand 23/07/2008 348344 | (avast! Web Scanner) . (.ALWIL Software.) - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    SS - | Auto 12/12/2008 238888 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
    SS - | Auto 28/03/2007 270431 | (CLCapSvc) . (.Pas de propriétaire.) - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
    SS - | Auto 28/03/2007 118877 | (CLSched) . (.Pas de propriétaire.) - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
    SS - | Demand 09/01/2007 110592 | (Com4Qlb) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
    SS - | Auto 05/02/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
    SS - | Demand 05/02/2010 0 | (gusvc) . (.Pas de propriétaire.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    SS - | Auto 14/03/2007 62984 | (HP Health Check Service) . (.Hewlett-Packard.) - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    SS - | Auto 02/05/2006 135168 | (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    SS - | Auto 14/12/2006 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    SS - | Demand 26/09/2007 2999664 | (LiveUpdate) . (.Symantec Corporation.) - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe
    SS - | Auto 26/09/2007 0 | (LiveUpdate Notice Ex) . (.Pas de propriétaire.) - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    SS - | Auto 12/03/2007 517768 | (LiveUpdate Notice Service) . (.Symantec Corporation.) - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    SS - | Auto 26/09/2007 554352 | (Planificateur LiveUpdate automatique) . (.Symantec Corporation.) - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    SS - | Auto 26/09/2007 0 | (ResultBar Service) . (.Pas de propriétaire.) - C:\ProgramData\ResultBar\resultbar113.exe
    SS - | Demand 12/02/2007 880640 | (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    SS - | Auto 28/01/2008 810320 | (SBSDWSCService) . (.Safer Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    SS - | Demand 17/02/2007 74656 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    SS - | Auto 02/11/2006 22016 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe
    SS - | Auto 28/11/2006 386560 | (XAudioService) . (.Conexant Systems, Inc..) - C:\Windows\system32\DRIVERS\xaudio.exe

    ---\\ Recherche Master Boot Record Infection (MBR)(O80)
    Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, http://www.gmer.net
    Run by Corinne at 06/03/2011 23:33:13

    device: opened successfully
    user: MBR read successfully

    Disk trace:
    called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys tcpip.sys NETIO.SYS
    1 ntkrnlpa!IofCallDriver[0x81C27F3B] -> \Device\Harddisk0\DR0[0x844B3030]
    3 ntkrnlpa[0x81CB07E2] -> ntkrnlpa!IofCallDriver[0x81C27F3B] -> \Device\Ide\IdeDeviceP1T0L0-2[0x843E0BB0]
    kernel: MBR read successfully
    user & kernel MBR OK

    ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
    Written by ad13, http://ad13.geekstog
    Run by Corinne at 06/03/2011 23:33:13
    Use the desktop link 'MBRCheck' to have full report
    Dump file Name : C:\PhysicalDisk0_MBR.bin

    ---\\ Infection BT - BHO/Toolbar (Possible)
    O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (.not file.)
    [HKLM\Software\Search Settings]

    End of the scan (1096 lines in 03mn 02s)(0)
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. Valuu Messages postés 2258 Statut Contributeur 201
     
    Hello,
    Le prochain ZHPDiag, il faudra vraiment que tu l'héberges, c'est peu lisible ici.

    * Télécharge UsbFix (créé par El Desaparecido & C_XX) sur ton Bureau. Si ton antivirus affiche une alerte, ignore le et désactive le temporairement.
    * Branche tes sources de données externes à ton PC (clé USB, disque dur externe, etc...) sans les ouvrir
    * Double clique sur le raccourci UsbFix sur ton Bureau, l'installation se fera automatiquement
    * Clique sur "Recherche"
    * Laisse travailler l'outil
    * A la fin, le rapport va s'afficher : poste le dans ta prochaine réponse (il est aussi sauvegardé a la racine du disque dur)

    Aide en images : Tutoriel "Recherche"

    Le suite demain pour moi.
    Tchou
    0
  7. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    bonsoir !

    merci beaucoup pour cette aide. Voilà les dernières données :

    Un fichier non reconnu ? : http://www.teamxscript.org/Upload.php
    Contact: TeamXscript.ElDesaparecido@gmail.com

    CPU: Genuine Intel(R) CPU T2130 @ 1.86GHz
    CPU 2: Genuine Intel(R) CPU T2130 @ 1.86GHz
    Microsoft® Windows Vista(TM) Édition Familiale Premium (6.0.6000 32-Bit) #
    Internet Explorer 8.0.6001.18904

    Pare-feu Windows: Activé
    Antivirus: avast! antivirus 4.8.1229 [VPS 110306-0] 4.8.1229 [Enabled | Updated]
    RAM -> 2037 Mo
    C:\ (%systemdrive%) -> Disque fixe # 142 Go (58 Go libre(s) - 41%) [] # NTFS
    D:\ -> Disque fixe # 7 Go (2 Go libre(s) - 30%) [HP_RECOVERY] # NTFS
    E:\ -> CD-ROM
    G:\ -> Disque amovible # 4 Go (3 Go libre(s) - 77%) [CLEF 4G] # FAT32

    ################## | Éléments infectieux |

    Présent! C:\Users\Corinne\AppData\Roaming\lowsec
    Présent! C:\Users\Corinne\AppData\Roaming\lowsec\local.ds
    Présent! C:\Users\Corinne\AppData\Roaming\lowsec\user.ds

    ################## | Registre |

    ################## | Mountpoints2 |

    HKCU\.\.\.\.\Explorer\MountPoints2\{014b548e-8632-11dc-87d8-001b24481c31}
    Shell\AutoRun\Command = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe WIN31.dll.vbs

    HKCU\.\.\.\.\Explorer\MountPoints2\{c5c8b728-93be-11dd-a443-001b24481c31}
    Shell\AutoRun\Command = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe pagefile.sys.vbs

    HKCU\.\.\.\.\Explorer\MountPoints2\{d8eaf6fe-a25d-11de-904c-001b24481c31}
    Shell\AutoRun\Command = k1d.exe
    Shell\open\Command = k1d.exe

    ################## | Vaccin |

    (!) Cet ordinateur n'est pas vacciné!

    ################## | E.O.F |
    0
  8. Valuu Messages postés 2258 Statut Contributeur 201
     
    Yop;

    * Branche tes sources de données externes à ton PC (clé USB, disque dur externe, etc...) sans les ouvrir
    * Double clique sur le raccourci UsbFix sur ton Bureau
    * Clique sur "Suppression"
    * Laisse travailler l'outil
    * Ton Bureau va disparaitre puis l'ordinateur va redémarrer : c'est normal
    * A la fin, le rapport va s'afficher : poste le dans ta prochaine réponse (il est aussi sauvegardé a la racine du disque dur)

    :!: UsbFix te proposera d'envoyer un dossier compressé à cette adresse. Ce dossier a été créé par UsbFix sur ton Bureau. Merci de l'envoyer à l'adresse indiquée afin d'aider l'auteur de UsbFix dans ses recherches. Une fois sur le site, il faut sélectionner "UsbFix" dans le menu déroulant. Merci d'avance pour ta contribution !

    Aide en images : Tutoriel "Nettoyage"
    0
  9. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    ############################## | UsbFix 7.041 | [Suppression]

    Utilisateur: Corinne (Administrateur) # PC-DE-CORINNE [Hewlett-Packard HP Pavilion dv6000 (GH906EA#ABF)]
    Mis à jour le 24/02/2011 par TeamXscript
    Lancé à 21:45:43 | 07/03/2011
    Site Web: http://www.teamxscript.org
    Un fichier non reconnu ? : http://www.teamxscript.org/Upload.php
    Contact: TeamXscript.ElDesaparecido@gmail.com

    CPU: Genuine Intel(R) CPU T2130 @ 1.86GHz
    CPU 2: Genuine Intel(R) CPU T2130 @ 1.86GHz
    Microsoft® Windows Vista(TM) Édition Familiale Premium (6.0.6000 32-Bit) #
    Internet Explorer 8.0.6001.18904

    Pare-feu Windows: Activé
    Antivirus: avast! antivirus 4.8.1229 [VPS 110306-0] 4.8.1229 [Enabled | Updated]
    RAM -> 2037 Mo
    C:\ (%systemdrive%) -> Disque fixe # 142 Go (58 Go libre(s) - 41%) [] # NTFS
    D:\ -> Disque fixe # 7 Go (2 Go libre(s) - 30%) [HP_RECOVERY] # NTFS
    E:\ -> CD-ROM
    G:\ -> Disque amovible # 4 Go (3 Go libre(s) - 77%) [CLEF 4G] # FAT32

    ################## | Éléments infectieux |

    Supprimé! C:\Users\Corinne\AppData\Roaming\lowsec
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-3487562114-251277531-102361288-1000
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-3487562114-251277531-102361288-500
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-413226321-3452886260-426709285-500
    Supprimé! D:\$RECYCLE.BIN\S-1-5-21-3487562114-251277531-102361288-1000

    ################## | Registre |

    ################## | Mountpoints2 |

    Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{014b548e-8632-11dc-87d8-001b24481c31}
    Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{c5c8b728-93be-11dd-a443-001b24481c31}
    Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{d8eaf6fe-a25d-11de-904c-001b24481c31}

    ################## | Listing |

    [07/03/2011 - 21:46:13 | SHD ] C:\$RECYCLE.BIN
    [06/03/2011 - 23:07:33 | N | 7259] C:\Ad-Report-CLEAN[1].txt
    [07/03/2011 - 00:13:54 | N | 5565] C:\Ad-Report-CLEAN[2].txt
    [22/04/2007 - 02:55:46 | N | 74] C:\autoexec.bat
    [24/11/2005 - 21:25:22 | D ] C:\boot
    [02/11/2006 - 10:53:57 | RASH | 438840] C:\bootmgr
    [18/09/2006 - 22:43:37 | N | 10] C:\config.sys
    [01/09/2007 - 20:58:23 | SHD ] C:\Documents and Settings
    [06/10/2007 - 20:23:53 | N | 4460] C:\ffastun.ffa
    [06/10/2007 - 20:23:51 | N | 3702784] C:\ffastun.ffl
    [06/10/2007 - 20:23:53 | N | 884736] C:\ffastun.ffo
    [06/10/2007 - 20:23:51 | N | 10063872] C:\ffastun0.ffx
    [22/04/2007 - 03:14:51 | D ] C:\HP
    [06/10/2007 - 20:05:52 | N | 0] C:\IO.SYS
    [06/10/2007 - 20:05:52 | N | 0] C:\MSDOS.SYS
    [22/04/2007 - 02:27:25 | RHD ] C:\MSOCache
    [06/03/2011 - 13:33:48 | N | 2450980864] C:\pagefile.sys
    [06/03/2011 - 23:33:13 | N | 512] C:\PhysicalDisk0_MBR.bin
    [06/03/2011 - 23:29:58 | D ] C:\Program Files
    [06/03/2011 - 23:06:01 | HD ] C:\ProgramData
    [22/04/2007 - 03:17:45 | N | 268] C:\sqmdata00.sqm
    [22/04/2007 - 03:17:45 | N | 244] C:\sqmnoopt00.sqm
    [15/09/2007 - 21:41:17 | D ] C:\SwSetup
    [12/02/2011 - 21:40:50 | SHD ] C:\System Volume Information
    [01/09/2007 - 21:09:02 | D ] C:\System.sav
    [06/12/2010 - 19:19:14 | D ] C:\Temp
    [07/03/2011 - 21:46:13 | D ] C:\UsbFix
    [07/03/2011 - 21:45:43 | A | 1005] C:\UsbFix.txt
    [01/09/2007 - 20:59:06 | D ] C:\Users
    [06/03/2011 - 13:33:47 | D ] C:\Windows
    [07/03/2011 - 21:46:13 | SHD ] D:\$RECYCLE.BIN
    [11/09/2005 - 16:18:54 | N | 340] D:\AUTOMODE
    [01/09/2007 - 21:05:56 | N | 13] D:\BLOCK.RIN
    [02/06/2007 - 02:54:02 | D ] D:\boot
    [04/10/2006 - 00:02:44 | SH | 438328] D:\bootmgr
    [03/11/2006 - 20:43:28 | SH | 117] D:\Desktop.ini
    [06/10/2007 - 20:08:23 | N | 4109] D:\ffastun.ffa
    [06/10/2007 - 20:08:23 | N | 8192] D:\ffastun.ffl
    [06/10/2007 - 20:08:23 | N | 4096] D:\ffastun.ffo
    [06/10/2007 - 20:08:23 | N | 4096] D:\ffastun0.ffx
    [10/09/2002 - 17:14:28 | N | 8134] D:\Folder.htt
    [01/09/2007 - 22:06:59 | D ] D:\HP
    [02/09/2007 - 16:45:05 | N | 22] D:\HPCD.sys
    [02/09/2007 - 16:29:16 | N | 760] D:\MASTER.LOG
    [02/09/2007 - 16:45:05 | D ] D:\preload
    [03/11/2005 - 16:19:52 | N | 181736] D:\protect.ed
    [01/09/2007 - 22:07:04 | N | 26] D:\RCBoot.sys
    [02/06/2007 - 02:54:02 | RD ] D:\RECOVERY
    [02/06/2007 - 02:54:02 | D ] D:\SOURCES
    [02/06/2007 - 02:54:02 | SHD ] D:\System Volume Information
    [02/06/2007 - 02:54:03 | D ] D:\Tools
    [01/09/2007 - 21:46:10 | N | 14] D:\USER
    [02/06/2007 - 02:54:02 | D ] D:\WINDOWS
    [22/02/2011 - 14:58:28 | N | 696298] G:\seminairepascal mod.pdf
    [11/01/2007 - 11:15:18 | N | 3350321] G:\IMG_0274.jpg
    [27/10/2010 - 10:36:42 | N | 6295032] G:\P1000412.JPG
    [21/02/2011 - 23:03:30 | N | 1267415] G:\Les_myosites-2_Mode_de_compatibilite_-1.pdf
    [26/11/2010 - 13:44:42 | N | 374347] G:\Article prise de sang cheval.pdf
    [07/04/2008 - 15:29:28 | N | 364469] G:\EPSM.pdf
    [25/10/2010 - 14:15:26 | N | 7100842] G:\P1000363.JPG
    [25/10/2010 - 14:15:32 | N | 6955577] G:\P1000364.JPG
    [21/02/2011 - 23:04:08 | N | 8961121] G:\2004lyon150.pdf
    [22/02/2011 - 14:52:28 | N | 189915] G:\CR médecine 22-01-10 - Paprika.pdf
    [22/02/2011 - 17:11:12 | N | 1435623] G:\Cours_muscle_Mode_de_compatibilite_.pdf
    [22/02/2011 - 17:11:40 | N | 112236] G:\Article_Muscle_AVEF_2008.pdf
    [27/10/2010 - 10:26:32 | N | 6274611] G:\P1000405.JPG
    [27/10/2010 - 10:27:32 | N | 6603198] G:\P1000406.JPG
    [27/10/2010 - 10:27:40 | N | 6311436] G:\P1000407.JPG
    [27/10/2010 - 10:31:38 | N | 7018617] G:\P1000408.JPG
    [27/10/2010 - 10:33:32 | N | 5580544] G:\P1000409.JPG
    [27/10/2010 - 10:33:44 | N | 6038841] G:\P1000410.JPG
    [27/10/2010 - 10:36:32 | N | 6372996] G:\P1000411.JPG
    [10/01/2007 - 18:20:34 | N | 1909397] G:\10-01 Délivrance.jpg
    [01/11/2010 - 19:26:58 | N | 296] G:\WMPInfo.xml
    [01/11/2010 - 19:26:58 | D ] G:\Music
    [01/11/2010 - 22:39:58 | N | 2223104] G:\ehthumbs_vista.db
    [09/01/2007 - 09:06:00 | N | 1712697] G:\09-01 Amputation 1.jpg
    [27/05/2006 - 08:45:22 | N | 14833] G:\cliniq_coursp.jpg
    [13/03/2008 - 09:19:52 | D ] G:\Estive Beille
    [22/02/2011 - 15:09:34 | N | 144384] G:\CR biopsie musculaire 18-02 unik du landreau.doc
    [02/11/2010 - 23:06:08 | N | 45008384] G:\PRE-TROUPEAU ALLAITANT.ppt
    [02/11/2010 - 21:35:42 | N | 65557504] G:\GAEC DU LINTIN LAIT.ppt
    [01/04/2008 - 18:10:40 | N | 258166] G:\how to do muscle biopsy.pdf
    [03/11/2010 - 10:07:36 | N | 628736] G:\CR_lait_gaec du Lintin_FB.doc
    [03/11/2010 - 10:22:48 | N | 254976] G:\PROTOCOLE_DE_SOINS_DES_VEAUXmise en page.doc
    [23/11/2010 - 22:51:24 | N | 26624] G:\Evaluation des performances de reproduction d.doc
    [10/04/2009 - 12:52:20 | D ] G:\photos biopsie
    [24/11/2010 - 12:32:00 | N | 121344] G:\Audit_de_reproduction.doc
    [03/12/2010 - 12:09:10 | N | 29696] G:\Cas clinique CAPA.doc
    [24/02/2011 - 22:26:28 | N | 8261120] G:\Affections musculaires FINAL.ppt
    [25/02/2011 - 10:55:48 | N | 6712832] G:\Affections musculaires.ppt
    [05/03/2011 - 14:00:00 | N | 91822080] G:\rapport stages 2010.ppt
    [05/03/2011 - 20:52:28 | N | 18827619] G:\Filiere_5A_3mars2011.pdf

    ################## | Vaccin |

    C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)
    D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)
    G:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)

    ################## | E.O.F |
    0
  10. Valuu Messages postés 2258 Statut Contributeur 201
     
    Bien, reposte un ZHPDiag en l'hébergeant bien ce coucp ci :
    Utilise ce logiciel de diagnostic :

    * Télécharge ZHPDiag (de Nicolas Coolman)
    * Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
    * Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
    * Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
    * Héberge le rapport ZHPDiag.txt sur ce site, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum.
    0
  11. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    Je n'arrive pas à enregistrer le dossier, malgré de multiples essais !

    Je le remets en brut, désolé !

    Pour l'instant à quoi penses tu ?
    A quoi serait du le plantage ?

    Rapport de ZHPDiag v1.27.1628 par Nicolas Coolman, Update du 05/03/2011
    Run by Corinne at 08/03/2011 20:36:12
    Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
    Contact : nicolascoolman@yahoo.fr

    ---\\ Web Browser
    MSIE: Internet Explorer v8.0.6001.18904
    MFIE: Mozilla Firefox v3.6.15 (fr) (Defaut)

    ---\\ System Information
    Windows Vista Home Premium Edition, 32-bit (Build 6000)
    Processor: x86 Family 6 Model 14 Stepping 12, GenuineIntel
    Operating System: 32 Bits
    Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
    Total RAM: 2037 MB (76% free)
    System Restore: Activé (Enable)
    System drive C: has 58 GB (41%) free of 142 GB

    ---\\ Logged in mode
    Computer Name: PC-DE-CORINNE
    User Name: Corinne
    All Users Names: Corinne, Administrateur,
    Unselected Option: O45,O61,O62,O65,O66,O82
    Logged in as Administrator

    ---\\ Environnement Variables
    %AppData%=C:\Users\Corinne\AppData\Roaming
    %LocalAppData%=C:\Users\Corinne\AppData\Local
    %StartMenu%=C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu

    ---\\ DOS/Devices
    C:\ Hard drive, Flash drive, Thumb drive (Free 58 Go of 142 Go)
    D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 7 Go)
    E:\ CD-ROM drive (Not Inserted)

    ---\\ Security Center & Tools Informations
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

    ---\\ Recherche particulière de fichiers génériques
    [MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - (.Microsoft Corporation - Explorateur Windows.) (.29/10/2008 07:20:29.) -- C:\Windows\Explorer.exe [2923520]
    [MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] - (.Microsoft Corporation - Application de démarrage de Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Wininit.exe [95744]
    [MD5.EC3B3E6071E3FCD4290BFD42676EE064] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.23/02/2010 07:39:13.) -- C:\Windows\System32\wininet.dll [916480]
    [MD5.9F75392B9128A91ABAFB044EA350BAAD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Winlogon.exe [308224]
    [MD5.B35CFCEF838382AB6490B321C87EDF17] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/02/2008 01:06:34.) -- C:\Windows\System32\drivers\atapi.sys [21560]
    [MD5.37430AA7A66D7A63407ADC2C0D05E9F6] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.16/12/2007 23:50:41.) -- C:\Windows\System32\drivers\ntfs.sys [1060920]

    ---\\ Processus lancés
    [MD5.14667B73AF7D2B0E51DD15216571A97C] - (.Microsoft Corporation - Aide et support Microsoft®.) -- C:\Windows\helppane.exe [497152]
    [MD5.2F881390B9BBD912D790A4875CB33A34] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [912344]
    [MD5.903E617600010767AE394F8083C9B1A7] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [632320]
    [MD5.EF2CB30A6C64A0CEAF60839C531A2207] - (.ALWIL Software - Virus scanner.) -- C:\Program Files\Alwil Software\Avast4\ashSimpl.exe [155832]

    ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
    M3 - MFPP: Plugins - [Corinne] -- C:\Users\Corinne\AppData\Roaming\Mozilla\Firefox\Profiles\shwhs0yn.default\searchplugins\live-search.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
    M3 - MFPP: Plugins - [Corinne] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo.xml
    P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
    P2 - FPN:Firefox Plugin Navigator . (.DivX,Inc. - DivX® Web Player.) -- C:\Program Files\Mozilla Firefox\Plugins\npdivx32.dll
    P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
    P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.3.2".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
    P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
    P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
    P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Web Player.) -- C:\Program Files\DivX\DivX Web Player\npdivx32.dll
    P2 - FPN: [HKLM] [@divx.com/DivX Content Upload Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Content Upload Plugin.) -- C:\Program Files\DivX\DivX Content Uploader\npUpload.dll
    P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.51204.0.) -- c:\Program Files\Microsoft Silverlight\4.0.51204.0\npctrl.dll
    P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
    P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
    P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
    P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2571] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
    P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1739] - (.RealNetworks, Inc. - 6.0.12.1739.) -- C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
    P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
    M2 - MFEP: prefs.js [Corinne - shwhs0yn.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
    M2 - MFEP: prefs.js [Corinne - shwhs0yn.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v6.1.20091119W (.Google Inc..)

    ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com
    R0 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
    R1 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
    R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll
    R3 - URLSearchHook: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Pas de propriétaire - Pas de description.) (No version) -- C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll

    ---\\ Internet Explorer, Proxy Management (R5)
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
    R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
    R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

    ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
    F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
    F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

    ---\\ Browser Helper Objects de navigateur (O2)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} . (.Microsoft Corporation - MoneySide Controls.) -- C:\Program Files\Microsoft Money\System\mnyside.dll
    O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} . (.Microsoft Corporation - Family Safety Browser Helper Object Library.) -- C:\Program Files\Windows Live\Family Safety\fssbho.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (...) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (.not file.)
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (...) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll (.not file.)
    O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (...) -- C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll (.not file.)
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} Clé orpheline

    ---\\ Internet Explorer Toolbars (O3)
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\pdfforge Toolbar\IE\4.1\pdfforgeToolbarIE.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

    ---\\ Applications démarrées par registre & par dossier (O4)
    O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
    O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
    O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe
    O4 - HKLM\..\Run: [QlbCtrl] . (. Hewlett-Packard Development Company, L.P. - QLB Controller.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
    O4 - HKLM\..\Run: [HP Health Check Scheduler] . (.Hewlett-Packard - HP Health Check Scheduler.) -- C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
    O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    O4 - HKLM\..\Run: [WAWifiMessage] . (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
    O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] . (.Google Inc. - Gmail Notifier.) -- C:\Program Files\Google\Gmail Notifier\gnotify.exe
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exetEng.dll (.not file.)
    O4 - HKLM\..\Run: [avast!] . (.ALWIL Software - avast! service GUI component.) -- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
    O4 - HKLM\..\Run: [fssui] . (.Microsoft Corporation - Windows Live Family Safety Filter.) -- C:\Program Files\Windows Live\Family Safety\fsui.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (.not file.)
    O4 - HKLM\..\Run: [MRT] . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\system32\MRT.exe
    O4 - HKLM\..\RunOnce: [Launcher] . (.soft thinks - Launcher.) -- C:\Windows\SMINST\launcher.exe
    O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKCU\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [Skype] . (...) -- C:\Program Files\Skype\Phone\Skype.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [WindowsWelcomeCenter] oobefldr.dll
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKUS\S-1-5-21-3487562114-251277531-102361288-1000\..\Run: [Skype] . (...) -- C:\Program Files\Skype\Phone\Skype.exe
    O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.3.lnk . (...) -- C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe

    ---\\ Autres liens utilisateurs (O4)
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\1. Windows Live Messenger.lnk . (.Microsoft Corporation.) -- C:\Users\Corinne\AppData\Roaming\Microsoft\Services Windows Live\Raccourci Windows Live Messenger.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\AD-R.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\Internet Explorer (2).lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\Microsoft Works.LNK . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\MSWorks.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    O4 - Global Startup: C:\Users\Corinne\Desktop\Windows Live Messenger.lnk - Clé orpheline
    O4 - Global Startup: C:\Users\Corinne\Desktop\ZX1 Mode d'emploi.lnk . (...) -- C:\Program Files\Panasonic\Lumix\ZX1\guideFRE.pdf
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Démarrer Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office10\OUTLOOK.EXE
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickTime Player.lnk . (...) -- C:\Windows\Installer\{8DC42D05-680B-41B0-8878-6C14D24602DB}\QTPlayer.ico
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Ultrasonography.lnk . (.Macromedia, Inc..) -- C:\Program Files\Ultrasonography\Ultrasonography.exe
    O4 - Global Startup: C:\Users\Corinne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

    ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
    O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~1\MICROS~3\Office10\EXCEL.exe
    O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll

    ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
    O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO
    O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO
    O9 - Extra button: Spybot - Search & Destroy Configuration - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} . (.Microsoft Corporation - MoneySide Controls.) -- C:\Program Files\Microsoft Money\System\mnyside.dll

    ---\\ Winsock hijacker (Layered Service Provider) (O10)
    O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
    O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
    O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
    O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
    O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll

    ---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
    O15 - Trusted Zone: [HKCU\...\Domains] *.chat-land.org
    O15 - Trusted Zone: [HKCU\...\Domains\www] *.chat-land.org

    ---\\ Objets ActiveX (Downloaded Program Files)(O16)
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
    O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

    ---\\ Modification Domaine/Adresses DNS (O17)
    O17 - HKLM\System\CCS\Services\Tcpip\..\{3A49B50F-48D7-421C-AB05-387BFFC718D2}: DhcpNameServer = 10.188.0.1
    O17 - HKLM\System\CCS\Services\Tcpip\..\{8DF881F2-3418-4C7C-97AD-39281A71565A}: DhcpNameServer = 86.64.145.144 84.103.237.144
    O17 - HKLM\System\CS1\Services\Tcpip\..\{3A49B50F-48D7-421C-AB05-387BFFC718D2}: DhcpNameServer = 10.188.0.1
    O17 - HKLM\System\CS1\Services\Tcpip\..\{8DF881F2-3418-4C7C-97AD-39281A71565A}: DhcpNameServer = 86.64.145.144 84.103.237.144
    O17 - HKLM\System\CS3\Services\Tcpip\..\{3A49B50F-48D7-421C-AB05-387BFFC718D2}: DhcpNameServer = 10.188.0.1
    O17 - HKLM\System\CS3\Services\Tcpip\..\{8DF881F2-3418-4C7C-97AD-39281A71565A}: DhcpNameServer = 86.64.145.144 84.103.237.144
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.188.0.1

    ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll

    ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll

    ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

    ---\\ Liste des services NT non Microsoft et non désactivés (O23)
    O23 - Service: (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: (Application Updater) - Clé orpheline
    O23 - Service: (aswUpdSv) . (.ALWIL Software - avast! Antivirus updating service.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: (avast! Antivirus) . (.ALWIL Software - avast! antivirus service.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: (avast! Mail Scanner) . (.ALWIL Software - avast! e-Mail Scanner Service.) - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: (avast! Web Scanner) . (.ALWIL Software - avast! Web Scanner.) - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: (CLCapSvc) . (.Pas de propriétaire - CLCapSvc Module.) - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
    O23 - Service: (CLSched) . (.Pas de propriétaire - CLSched Module.) - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
    O23 - Service: (Com4Qlb) . (.Hewlett-Packard Development Company, L.P. - Com for QLB software.) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
    O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: (gusvc) - Clé orpheline
    O23 - Service: (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
    O23 - Service: (hpqwmiex) . (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
    O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: (LiveUpdate) . (.Symantec Corporation - LiveUpdate Engine COM Module.) - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe
    O23 - Service: (LiveUpdate Notice Ex) - Clé orpheline
    O23 - Service: (LiveUpdate Notice Service) . (.Symantec Corporation - LiveUpdate Notice Service.) - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: (Planificateur LiveUpdate automatique) . (.Symantec Corporation - Automatic LiveUpdate Scheduler Service.) - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: (ResultBar Service) - Clé orpheline
    O23 - Service: (RoxMediaDB9) . (.Sonic Solutions - RoxMediaDB9 Module.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: (stllssvr) . (.MicroVision Development, Inc. - SureThing Labelflash Disc Printer Service M.) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    O23 - Service: (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\system32\DRIVERS\xaudio.exe

    ---\\ Enumération Active Desktop & MHTML Editor (O24)
    O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

    ---\\ Tâches planifiées en automatique (O39)
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{857D7660-3DAD-4905-AB23-DA98EED67887}.job

    ---\\ Pilotes lancés au démarrage (O41)
    O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
    O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
    O41 - Driver: (DfsC) . (.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - C:\Windows\System32\Drivers\dfsc.sys
    O41 - Driver: (eabfiltr) . (.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) - C:\Windows\System32\DRIVERS\eabfiltr.sys
    O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
    O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
    O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
    O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
    O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
    O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
    O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
    O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
    O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
    O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
    O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
    O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
    O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
    O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys
    O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
    O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
    O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
    O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

    ---\\ Logiciels installés (O42)
    O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites - (.Microsoft Corporation.) [HKLM] -- Activation Assistant for the 2007 Microsoft Office suites
    O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
    O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
    O42 - Logiciel: Adobe Illustrator 10 - (.Adobe Systems, Inc..) [HKLM] -- {412033BC-44CF-48D9-B813-4B835101F4D3}
    O42 - Logiciel: Adobe Photoshop 6.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop 6.0
    O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}
    O42 - Logiciel: Adobe SVG Viewer - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer
    O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {976C2B2A-CE59-4AB3-83FB-BF895E28F2E6}
    O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
    O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
    O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {07287123-B8AC-41CE-8346-3D777245C35B}
    O42 - Logiciel: Complément Microsoft Word pour Microsoft Works Suite - (.Microsoft Corporation.) [HKLM] -- {F6B1CD0F-DB2D-4666-A168-C46390AD8C4A}
    O42 - Logiciel: Conexant HD Audio - (.Pas de propriétaire.) [HKLM] -- CNXT_HDAUDIO
    O42 - Logiciel: DivX Content Uploader - (.DivX, Inc..) [HKLM] -- {D050D7362D214723AD585B541FFB6C11}
    O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM] -- {B7050CBDB2504B34BC2A9CA0A692CC29}
    O42 - Logiciel: ESU for Microsoft Vista - (.Hewlett-Packard.) [HKLM] -- {39523EA4-F914-4447-A551-2513766095F5}
    O42 - Logiciel: Encyclopédie Microsoft Encarta 2003 - (.Microsoft Corporation.) [HKLM] -- {03460014-3975-4267-9F39-1DC4745090B7}
    O42 - Logiciel: Extension Système de Microsoft Money - (.Microsoft.) [HKLM] -- {02CA7E66-1AD1-4DE9-BA9E-86A0EEB019C7}
    O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}
    O42 - Logiciel: Google Gmail Notifier - (.Google Inc..) [HKLM] -- {0228e555-4f9c-4e35-a3ec-b109a192b4c2}
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
    O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
    O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5045&SUBSYS_103C30B7
    O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {290B83AA-093A-45BF-A917-D1C4A1E8D917}
    O42 - Logiciel: HP Active Support Library 32 bit components - (.Hewlett-Packard.) [HKLM] -- {FAB0C302-CB18-4A7A-BA03-C3DC23101A68}
    O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {AB5E289E-76BF-4251-9F3F-9B763F681AE0}
    O42 - Logiciel: HP Doc Viewer - (.Hewlett-Packard.) [HKLM] -- {082702D5-5DD8-4600-BCE5-48B15174687F}
    O42 - Logiciel: HP Easy Setup - Frontend - (.Hewlett-Packard.) [HKLM] -- {40F7AED3-0C7D-4582-99F6-484A515C73F2}
    O42 - Logiciel: HP Help and Support - (.Hewlett-Packard.) [HKLM] -- {9061CEF2-51F5-42C9-8A70-9ED351C6597A}
    O42 - Logiciel: HP Pavilion Webcam Driver for Vista v061.001.00005 - (.Chicony.) [HKLM] -- {5CA81D12-9EC2-4082-972B-43ECA63F41F2}
    O42 - Logiciel: HP Photosmart Essential 2.0 - (.HP.) [HKLM] -- HP Photosmart Essential
    O42 - Logiciel: HP Quick Launch Buttons 6.20 B1 - (.Hewlett-Packard.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
    O42 - Logiciel: HP QuickPlay 3.2 - (.Pas de propriétaire.) [HKLM] -- {45D707E9-F3C4-11D9-A373-0050BAE317E1}
    O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {8C6027FD-53DC-446D-BB75-CACD7028A134}
    O42 - Logiciel: HP User Guides 0082 - (.Hewlett-Packard.) [HKLM] -- {FCCC555E-166C-426A-A98C-39C80AE7C081}
    O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {D32067CD-7409-4792-BFA0-1469BCD8F0C8}
    O42 - Logiciel: Hewlett-Packard Active Check - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}
    O42 - Logiciel: Hewlett-Packard Asset Agent - (.HP.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
    O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
    O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
    O42 - Logiciel: IZArc 3.6 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1
    O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
    O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
    O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Pas de propriétaire.) [HKLM] -- HDMI
    O42 - Logiciel: Java(TM) 6 Update 13 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216013FF}
    O42 - Logiciel: Java(TM) 6 Update 2 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160020}
    O42 - Logiciel: Java(TM) SE Runtime Environment 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160000}
    O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
    O42 - Logiciel: LiveUpdate 3.2 (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- LiveUpdate
    O42 - Logiciel: LiveUpdate Notice (Symantec Corporation) - (.Symantec Corporation.) [HKLM] -- {DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
    O42 - Logiciel: MSCU for Microsoft Vista - (.Hewlett-Packard.) [HKLM] -- {336A609A-6ECC-4E05-B320-CCC085BF7EA7}
    O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
    O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
    O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}
    O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
    O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
    O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
    O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
    O42 - Logiciel: Microsoft AutoRoute 2002 - (.Microsoft.) [HKLM] -- {F7F2DC0A-C22E-49AD-AD37-797309A54E7B}
    O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
    O42 - Logiciel: Microsoft Money - (.Microsoft.) [HKLM] -- {01A2E33A-8ADA-42D1-9173-8F65149E952F}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
    O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
    O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR
    O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
    O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
    O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}
    O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM] -- {9028040C-6000-11D3-8CFE-0050048383C9}
    O42 - Logiciel: Microsoft Picture It! Photo 7.0 - (.Microsoft Corporation.) [HKLM] -- {369B36BE-3D64-4641-9AEA-808D436FE132}
    O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
    O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7}
    O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
    O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
    O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
    O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}
    O42 - Logiciel: Microsoft Word 2002 - (.Microsoft Corporation.) [HKLM] -- {911B040C-6000-11D3-8CFE-0050048383C9}
    O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}
    O42 - Logiciel: Microsoft Works 7.0 - (.Microsoft Corporation.) [HKLM] -- {64D114CE-4234-45C2-B60A-2B07D5A48F72}
    O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
    O42 - Logiciel: Mozilla Firefox (3.6.15) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.15)
    O42 - Logiciel: OpenOffice.org 2.3 - (.OpenOffice.org.) [HKLM] -- {FADB55D0-403F-4413-A268-CF0A6F1185C2}
    O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
    O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
    O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {8DC42D05-680B-41B0-8878-6C14D24602DB}
    O42 - Logiciel: R for Windows 2.6.0 - (.R Development Core Team.) [HKLM] -- R for Windows_is1
    O42 - Logiciel: Real Alternative 1.60 Lite - (.Pas de propriétaire.) [HKLM] -- RealAlt_is1
    O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM] -- {35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
    O42 - Logiciel: Roxio Creator Audio - (.Roxio.) [HKLM] -- {83FFCFC7-88C6-41c6-8752-958A45325C82}
    O42 - Logiciel: Roxio Creator Basic v9 - (.Roxio.) [HKLM] -- {C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
    O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM] -- {619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
    O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM] -- {0D397393-9B50-4c52-84D5-77E344289F87}
    O42 - Logiciel: Roxio Creator EasyArchive - (.Roxio.) [HKLM] -- {11F93B4B-48F0-4A4E-AE77-DFA96A99664B}
    O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM] -- {0394CDC8-FABD-4ed8-B104-03393876DFDF}
    O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
    O42 - Logiciel: Roxio MyDVD Basic v9 - (.Roxio.) [HKLM] -- {33C65B6A-5D73-4E3E-A1F9-127C27BD3F72}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337-C8AC-46DB-A7DC-643E50089263}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2289158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{210B16C0-CEBD-4DE9-B474-04A7E8735E16}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2344875) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FC5C4C1-D7AE-44C3-94B7-6424FC3E752F}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A}
    O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
    O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2345035) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{B23002DD-34EC-4988-B810-A5E2A0BF04F1}
    O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
    O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}
    O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer (KB2413381) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3DED0A62-44C8-4E00-A785-5212F297A9D9}
    O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
    O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}
    O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}
    O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}
    O42 - Logiciel: Shockwave - (.Pas de propriétaire.) [HKLM] -- Shockwave
    O42 - Logiciel: Skype 2.5 - (.Skype Technologies S.A..) [HKLM] -- Skype_is1
    O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-5464-3428-900000000004}
    O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
    O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
    O42 - Logiciel: Sélecteur d'installation de Microsoft Works Suite 2003 - (.Pas de propriétaire.) [HKLM] -- Works2003Setup
    O42 - Logiciel: Ultrasonography 2.0 - (.Pas de propriétaire.) [HKLM] -- Ultrasonography
    O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
    O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
    O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}
    O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
    O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
    O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}
    O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}
    O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
    O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
    O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {230B83A5-7D88-4B95-B71E-F44C0C78B002}
    O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM] -- Windows Live OneCare safety scanner
    O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM] -- {FE0646A7-19D0-41B4-A2BB-2C35D644270D}
    O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1}
    O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}
    O42 - Logiciel: avast! Antivirus - (.Alwil Software.) [HKLM] -- avast!
    O42 - Logiciel: muvee autoProducer 6.0 - (.muvee Technologies.) [HKLM] -- {0BFC200F-C45D-4271-AF34-4CA969225DEB}
    O42 - Logiciel: pdfforge Toolbar v4.1 - (.Spigot, Inc..) [HKLM] -- {B1BFDF6B-3C03-46fe-B5D7-BABB0063D8E0}

    ---\\ HKCU & HKLM Software Keys
    [HKCU\Software\ALWIL Software]
    [HKCU\Software\Ad-Remover]
    [HKCU\Software\Adobe]
    [HKCU\Software\AppDataLow\Software\Google]
    [HKCU\Software\AppDataLow\Software\Microsoft]
    [HKCU\Software\AppDataLow\Software]
    [HKCU\Software\AppDataLow]
    [HKCU\Software\Apple Computer, Inc.]
    [HKCU\Software\CDDB]
    [HKCU\Software\Classes]
    [HKCU\Software\Clients]
    [HKCU\Software\Cyberlink]
    [HKCU\Software\DivXNetworks]
    [HKCU\Software\EasyBits]
    [HKCU\Software\Google]
    [HKCU\Software\Hewlett-Packard]
    [HKCU\Software\IM Providers]
    [HKCU\Software\IZSoftware]
    [HKCU\Software\Intel]
    [HKCU\Software\JavaSoft]
    [HKCU\Software\Local AppWizard-Generated Applications]
    [HKCU\Software\Macromedia]
    [HKCU\Software\MainConcept]
    [HKCU\Software\Malwarebytes' Anti-Malware]
    [HKCU\Software\Mozilla]
    [HKCU\Software\Netscape]
    [HKCU\Software\ODBC]
    [HKCU\Software\Policies]
    [HKCU\Software\RealNetworks]
    [HKCU\Software\Roxio]
    [HKCU\Software\Safer Networking Limited]
    [HKCU\Software\Skype]
    [HKCU\Software\Softthinks]
    [HKCU\Software\Symantec]
    [HKCU\Software\Synaptics]
    [HKCU\Software\Usbfix]
    [HKCU\Software\VB and VBA Program Settings]
    [HKCU\Software\YahooPartnerToolbar]
    [HKCU\Software\fAfvfSfP [fVf#f" fEfBfU [fh'Å ¶ ¬'³'ê'½f [fJf< fAfvfSfP [fVf#f"]
    [HKLM\Software\ALWIL Software]
    [HKLM\Software\Adobe]
    [HKLM\Software\Apple Computer, Inc.]
    [HKLM\Software\Apple Inc.]
    [HKLM\Software\Application Updater]
    [HKLM\Software\Broadcom]
    [HKLM\Software\BrowserChoice]
    [HKLM\Software\CXT]
    [HKLM\Software\Chicony]
    [HKLM\Software\Classes]
    [HKLM\Software\Clients]
    [HKLM\Software\Conexant Systems Inc ]
    [HKLM\Software\Conexant]
    [HKLM\Software\CyberLink]
    [HKLM\Software\Debug]
    [HKLM\Software\DivXNetworks]
    [HKLM\Software\Google]
    [HKLM\Software\HPQ]
    [HKLM\Software\HP]
    [HKLM\Software\Hewlett-Packard]
    [HKLM\Software\InstallShield]
    [HKLM\Software\InstalledOptions]
    [HKLM\Software\Intel]
    [HKLM\Software\JavaSoft]
    [HKLM\Software\Kodak]
    [HKLM\Software\LightScribe]
    [HKLM\Software\Macromedia]
    [HKLM\Software\MicroVision]
    [HKLM\Software\MimarSinan]
    [HKLM\Software\MozillaPlugins]
    [HKLM\Software\Mozilla]
    [HKLM\Software\ODBC]
    [HKLM\Software\OpenOffice.org]
    [HKLM\Software\PDFCreator]
    [HKLM\Software\Policies]
    [HKLM\Software\R-core]
    [HKLM\Software\RealAlternative]
    [HKLM\Software\RealNetworks]
    [HKLM\Software\RegisteredApplications]
    [HKLM\Software\ResultBar]
    [HKLM\Software\Roxio]
    [HKLM\Software\Safer Networking Limited]
    [HKLM\Software\Search Settings]
    [HKLM\Software\Skype]
    [HKLM\Software\Sonic]
    [HKLM\Software\Sun Microsystems]
    [HKLM\Software\SymDebug]
    [HKLM\Software\Symantec]
    [HKLM\Software\Synaptics]
    [HKLM\Software\Volatile]
    [HKLM\Software\WholeSecurity]
    [HKLM\Software\Wow6432Node]
    [HKLM\Software\Yuan High-Tech]
    [HKLM\Software\illiminable]
    [HKLM\Software\mozilla.org]
    [HKLM\Software\muvee Technologies]
    [HKLM\Software\pdfforge]

    ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 - CFD: 22/04/2007 - 02:32:34 - [12164052] ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
    O43 - CFD: 06/03/2011 - 23:05:16 - [22664574] ----D- C:\Program Files\Ad-Remover
    O43 - CFD: 29/10/2009 - 11:07:12 - [433624067] ----D- C:\Program Files\Adobe
    O43 - CFD: 01/11/2007 - 21:33:14 - [152083520] ----D- C:\Program Files\Alwil Software
    O43 - CFD: 13/11/2008 - 18:42:26 - [2221118] ----D- C:\Program Files\Apple Software Update
    O43 - CFD: 04/12/2010 - 17:22:58 - [392881] ----D- C:\Program Files\Bonjour
    O43 - CFD: 06/03/2011 - 23:06:02 - [1457012246] ----D- C:\Program Files\Common Files
    O43 - CFD: 22/04/2007 - 01:47:40 - [1786336] ----D- C:\Program Files\CONEXANT
    O43 - CFD: 17/10/200
    0
  12. Valuu Messages postés 2258 Statut Contributeur 201
     
    Hello,
    Je peux pas te dire, le rapport n'est pas complet...
    Quand tu dis que ça marche pas, explique mieux stp, message d'erreur par exemple ?

    * Télécharge TDSSKiller (de Kaspersky Labs) sur ton Bureau.
    * Lance le (si tu utilises Windows Vista ou 7 : fais un clic-droit dessus et choisis "Exécuter en tant qu'administrateur")
    * Clique sur [Start Scan] pour démarrer l'analyse.
    * Si des éléments sont trouvés, clique sur [Continue] puis sur [Reboot Now]
    * Un rapport s'ouvrira au redémarrage de l'ordinateur.
    * Copie/colle son contenu dans ta prochaine réponse.
    Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt
    0
  13. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    il ne se passe rien quand j'appuie sur la disquette ...

    tdsskiller :

    2011/03/08 21:18:37.0649 TDSS rootkit removing tool 2.4.1.2 Aug 16 2010 09:46:23
    2011/03/08 21:18:37.0649 ================================================================================
    2011/03/08 21:18:37.0649 SystemInfo:
    2011/03/08 21:18:37.0649
    2011/03/08 21:18:37.0649 OS Version: 6.0.6000 ServicePack: 0.0
    2011/03/08 21:18:37.0650 Product type: Workstation
    2011/03/08 21:18:37.0650 ComputerName: PC-DE-CORINNE
    2011/03/08 21:18:37.0650 UserName: Corinne
    2011/03/08 21:18:37.0650 Windows directory: C:\Windows
    2011/03/08 21:18:37.0650 System windows directory: C:\Windows
    2011/03/08 21:18:37.0650 Processor architecture: Intel x86
    2011/03/08 21:18:37.0650 Number of processors: 2
    2011/03/08 21:18:37.0650 Page size: 0x1000
    2011/03/08 21:18:37.0650 Boot type: Safe boot with network
    2011/03/08 21:18:37.0650 ================================================================================
    2011/03/08 21:18:38.0215 Initialize success
    2011/03/08 21:18:44.0528 ================================================================================
    2011/03/08 21:18:44.0528 Scan started
    2011/03/08 21:18:44.0528 Mode: Manual;
    2011/03/08 21:18:44.0528 ================================================================================
    2011/03/08 21:18:45.0368 ACPI (84fc6df81212d16be5c4f441682feccc) C:\Windows\system32\drivers\acpi.sys
    2011/03/08 21:18:45.0441 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
    2011/03/08 21:18:45.0494 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
    2011/03/08 21:18:45.0534 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
    2011/03/08 21:18:45.0580 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
    2011/03/08 21:18:45.0652 AFD (5d24caf8efd924a875698ff28384db8b) C:\Windows\system32\drivers\afd.sys
    2011/03/08 21:18:45.0713 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
    2011/03/08 21:18:45.0758 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
    2011/03/08 21:18:45.0825 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
    2011/03/08 21:18:45.0893 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
    2011/03/08 21:18:45.0926 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
    2011/03/08 21:18:45.0958 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
    2011/03/08 21:18:45.0994 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
    2011/03/08 21:18:46.0102 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
    2011/03/08 21:18:46.0143 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
    2011/03/08 21:18:46.0196 aswFsBlk (976e2ad5a62044629c2de2ca8563722a) C:\Windows\system32\DRIVERS\aswFsBlk.sys
    2011/03/08 21:18:46.0287 aswMonFlt (5c3c0da947798c99d8c094bf3dcc03a8) C:\Windows\system32\DRIVERS\aswMonFlt.sys
    2011/03/08 21:18:46.0322 aswRdr (d78653e357bfadb9a432aa1f66d50269) C:\Windows\system32\drivers\aswRdr.sys
    2011/03/08 21:18:46.0387 aswSP (17c4f06944b90944291cf7fb18d630c2) C:\Windows\system32\drivers\aswSP.sys
    2011/03/08 21:18:46.0442 aswTdi (c33510a1866806fd9c17f5d36b4db6a6) C:\Windows\system32\drivers\aswTdi.sys
    2011/03/08 21:18:46.0497 AsyncMac (e86cf7ce67d5de898f27ef884dc357d8) C:\Windows\system32\DRIVERS\asyncmac.sys
    2011/03/08 21:18:46.0535 atapi (b35cfcef838382ab6490b321c87edf17) C:\Windows\system32\drivers\atapi.sys
    2011/03/08 21:18:46.0659 BCM43XV (746f59822a5187510471fc46889b8cc9) C:\Windows\system32\DRIVERS\bcmwl6.sys
    2011/03/08 21:18:46.0704 BCM43XX (746f59822a5187510471fc46889b8cc9) C:\Windows\system32\DRIVERS\bcmwl6.sys
    2011/03/08 21:18:46.0753 Beep (ac3dd1708b22761ebd7cbe14dcc3b5d7) C:\Windows\system32\drivers\Beep.sys
    2011/03/08 21:18:46.0869 bowser (913cd06fbe9105ce6077e90fd4418561) C:\Windows\system32\DRIVERS\bowser.sys
    2011/03/08 21:18:46.0923 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
    2011/03/08 21:18:46.0952 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
    2011/03/08 21:18:46.0997 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
    2011/03/08 21:18:47.0028 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
    2011/03/08 21:18:47.0067 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
    2011/03/08 21:18:47.0103 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
    2011/03/08 21:18:47.0142 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
    2011/03/08 21:18:47.0182 cdfs (6c3a437fc873c6f6a4fc620b6888cb86) C:\Windows\system32\DRIVERS\cdfs.sys
    2011/03/08 21:18:47.0220 cdrom (8d1866e61af096ae8b582454f5e4d303) C:\Windows\system32\DRIVERS\cdrom.sys
    2011/03/08 21:18:47.0266 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
    2011/03/08 21:18:47.0338 CLFS (1b84fd0937d3b99af9ba38ddff3daf54) C:\Windows\system32\CLFS.sys
    2011/03/08 21:18:47.0420 CmBatt (ed97ad3df1b9005989eaf149bf06c821) C:\Windows\system32\DRIVERS\CmBatt.sys
    2011/03/08 21:18:47.0485 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
    2011/03/08 21:18:47.0532 Compbatt (722936afb75a7f509662b69b5632f48a) C:\Windows\system32\DRIVERS\compbatt.sys
    2011/03/08 21:18:47.0565 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
    2011/03/08 21:18:47.0609 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
    2011/03/08 21:18:47.0677 DfsC (a7179de59ae269ab70345527894ccd7c) C:\Windows\system32\Drivers\dfsc.sys
    2011/03/08 21:18:47.0738 disk (841af4c4d41d3e3b2f244e976b0f7963) C:\Windows\system32\drivers\disk.sys
    2011/03/08 21:18:47.0810 drmkaud (ee472cd2c01f6f8e8aa1fa06ffef61b6) C:\Windows\system32\drivers\drmkaud.sys
    2011/03/08 21:18:47.0958 DXGKrnl (334988883de69adb27e2cf9f9715bbdb) C:\Windows\System32\drivers\dxgkrnl.sys
    2011/03/08 21:18:48.0005 E100B (c0b00e55cf82d122d25983c7a6a53dea) C:\Windows\system32\DRIVERS\e100b325.sys
    2011/03/08 21:18:48.0058 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
    2011/03/08 21:18:48.0122 eabfiltr (e88b0cfcecf745211bba87f44f85d0dd) C:\Windows\system32\DRIVERS\eabfiltr.sys
    2011/03/08 21:18:48.0185 Ecache (0efc7531b936ee57fdb4e837664c509f) C:\Windows\system32\drivers\ecache.sys
    2011/03/08 21:18:48.0262 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
    2011/03/08 21:18:48.0408 fastfat (84a317cb0b3954d3768cdcd018dbf670) C:\Windows\system32\drivers\fastfat.sys
    2011/03/08 21:18:48.0523 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
    2011/03/08 21:18:48.0580 FileInfo (65773d6115c037ffd7ef8280ae85eb9d) C:\Windows\system32\drivers\fileinfo.sys
    2011/03/08 21:18:48.0622 Filetrace (c226dd0de060745f3e042f58dcf78402) C:\Windows\system32\drivers\filetrace.sys
    2011/03/08 21:18:48.0665 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
    2011/03/08 21:18:48.0706 FltMgr (a6a8da7ae4d53394ab22ac3ab6d3f5d3) C:\Windows\system32\drivers\fltmgr.sys
    2011/03/08 21:18:48.0757 fssfltr (b74b0578fd1d3f897e95f2a2b69ea051) C:\Windows\system32\DRIVERS\fssfltr.sys
    2011/03/08 21:18:48.0819 Fs_Rec (66a078591208baa210c7634b11eb392c) C:\Windows\system32\drivers\Fs_Rec.sys
    2011/03/08 21:18:48.0867 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
    2011/03/08 21:18:48.0942 HBtnKey (de15777902a5d9121857d155873a1d1b) C:\Windows\system32\DRIVERS\cpqbttn.sys
    2011/03/08 21:18:49.0019 HdAudAddService (3aeee05bb25b8cc72b6e9aec0e6f394b) C:\Windows\system32\drivers\CHDART.sys
    2011/03/08 21:18:49.0064 HDAudBus (0db613a7e427b5663563677796fd5258) C:\Windows\system32\DRIVERS\HDAudBus.sys
    2011/03/08 21:18:49.0113 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
    2011/03/08 21:18:49.0151 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
    2011/03/08 21:18:49.0195 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\DRIVERS\hidusb.sys
    2011/03/08 21:18:49.0248 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
    2011/03/08 21:18:49.0322 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
    2011/03/08 21:18:49.0395 HSF_DPV (0d7a055a840c3099c37d576573a42cd5) C:\Windows\system32\DRIVERS\HSX_DPV.sys
    2011/03/08 21:18:49.0453 HSXHWAZL (bcc074692882c056b0e1ac97f3331a02) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
    2011/03/08 21:18:49.0522 HTTP (ea24fe637d974a8a31bc650f478e3533) C:\Windows\system32\drivers\HTTP.sys
    2011/03/08 21:18:49.0571 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
    2011/03/08 21:18:49.0647 i8042prt (1c9ee072baa3abb460b91d7ee9152660) C:\Windows\system32\DRIVERS\i8042prt.sys
    2011/03/08 21:18:49.0747 ialm (dbb0588936e43c5f16b643f90f53c06d) C:\Windows\system32\DRIVERS\igdkmd32.sys
    2011/03/08 21:18:49.0792 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
    2011/03/08 21:18:49.0924 igfx (dbb0588936e43c5f16b643f90f53c06d) C:\Windows\system32\DRIVERS\igdkmd32.sys
    2011/03/08 21:18:49.0971 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
    2011/03/08 21:18:50.0023 intelide (988981c840084f480ba9e3319cebde1b) C:\Windows\system32\drivers\intelide.sys
    2011/03/08 21:18:50.0053 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
    2011/03/08 21:18:50.0117 IpFilterDriver (880c6f86cc3f551b8fea2c11141268c0) C:\Windows\system32\DRIVERS\ipfltdrv.sys
    2011/03/08 21:18:50.0188 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
    2011/03/08 21:18:50.0230 IPNAT (10077c35845101548037df04fd1a420b) C:\Windows\system32\DRIVERS\ipnat.sys
    2011/03/08 21:18:50.0258 IRENUM (a82f328f4792304184642d6d397bb1e3) C:\Windows\system32\drivers\irenum.sys
    2011/03/08 21:18:50.0302 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
    2011/03/08 21:18:50.0347 iScsiPrt (4dca456d4d5723f8fa9c6760d240b0df) C:\Windows\system32\DRIVERS\msiscsi.sys
    2011/03/08 21:18:50.0385 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
    2011/03/08 21:18:50.0433 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
    2011/03/08 21:18:50.0497 kbdclass (b076b2ab806b3f696dab21375389101c) C:\Windows\system32\DRIVERS\kbdclass.sys
    2011/03/08 21:18:50.0546 kbdhid (ed61dbc6603f612b7338283edbacbc4b) C:\Windows\system32\DRIVERS\kbdhid.sys
    2011/03/08 21:18:50.0622 KSecDD (0a829977b078dea11641fc2af87ceade) C:\Windows\system32\Drivers\ksecdd.sys
    2011/03/08 21:18:50.0733 lltdio (fd015b4f95daa2b712f0e372a116fbad) C:\Windows\system32\DRIVERS\lltdio.sys
    2011/03/08 21:18:50.0795 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
    2011/03/08 21:18:50.0833 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
    2011/03/08 21:18:50.0887 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
    2011/03/08 21:18:50.0919 luafv (42885bb44b6e065b8575a8dd6c430c52) C:\Windows\system32\drivers\luafv.sys
    2011/03/08 21:18:50.0982 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
    2011/03/08 21:18:51.0032 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
    2011/03/08 21:18:51.0077 Modem (21755967298a46fb6adfec9db6012211) C:\Windows\system32\drivers\modem.sys
    2011/03/08 21:18:51.0133 monitor (7446e104a5fe5987ca9e4983fbac4f97) C:\Windows\system32\DRIVERS\monitor.sys
    2011/03/08 21:18:51.0185 mouclass (5fba13c1a1841b0885d316ed3589489d) C:\Windows\system32\DRIVERS\mouclass.sys
    2011/03/08 21:18:51.0242 mouhid (b569b5c5d3bde545df3a6af512cccdba) C:\Windows\system32\DRIVERS\mouhid.sys
    2011/03/08 21:18:51.0281 MountMgr (01f1e5a3e4877c931cbb31613fec16a6) C:\Windows\system32\drivers\mountmgr.sys
    2011/03/08 21:18:51.0315 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
    2011/03/08 21:18:51.0371 mpsdrv (6e7a7f0c1193ee5648443fe2d4b789ec) C:\Windows\system32\drivers\mpsdrv.sys
    2011/03/08 21:18:51.0418 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
    2011/03/08 21:18:51.0477 MRxDAV (1d8828b98ee309d65e006f0829e280e5) C:\Windows\system32\drivers\mrxdav.sys
    2011/03/08 21:18:51.0533 mrxsmb (8af705ce1bb907932157fab821170f27) C:\Windows\system32\DRIVERS\mrxsmb.sys
    2011/03/08 21:18:51.0573 mrxsmb10 (47e13ab23371be3279eef22bbfa2c1be) C:\Windows\system32\DRIVERS\mrxsmb10.sys
    2011/03/08 21:18:51.0605 mrxsmb20 (90b3fc7bd6b3d7ee7635debba2187f66) C:\Windows\system32\DRIVERS\mrxsmb20.sys
    2011/03/08 21:18:51.0671 msahci (b2efb263600314babcf9dadb1cbba994) C:\Windows\system32\drivers\msahci.sys
    2011/03/08 21:18:51.0715 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
    2011/03/08 21:18:51.0769 Msfs (729eafefd4e7417165f353a18dbe947d) C:\Windows\system32\drivers\Msfs.sys
    2011/03/08 21:18:51.0817 msisadrv (2c3f1983cd3629573cb9e9658247847a) C:\Windows\system32\drivers\msisadrv.sys
    2011/03/08 21:18:51.0872 MSKSSRV (892cedefa7e0ffe7be8da651b651d047) C:\Windows\system32\drivers\MSKSSRV.sys
    2011/03/08 21:18:51.0914 MSPCLOCK (ae2cb1da69b2676b4cee2a501af5871c) C:\Windows\system32\drivers\MSPCLOCK.sys
    2011/03/08 21:18:51.0947 MSPQM (f910da84fa90c44a3addb7cd874463fd) C:\Windows\system32\drivers\MSPQM.sys
    2011/03/08 21:18:51.0978 MsRPC (84571c0ae07647ba38d493f5f0015df7) C:\Windows\system32\drivers\MsRPC.sys
    2011/03/08 21:18:52.0021 mssmbios (1f6f7159c75e4b27d138b5225808860f) C:\Windows\system32\DRIVERS\mssmbios.sys
    2011/03/08 21:18:52.0059 MSTEE (c826dd1373f38afd9ca46ec3c436a14e) C:\Windows\system32\drivers\MSTEE.sys
    2011/03/08 21:18:52.0102 Mup (fa7aa70050cf5e2d15de00941e5665e5) C:\Windows\system32\Drivers\mup.sys
    2011/03/08 21:18:52.0183 NativeWifiP (6da4a0fc7c0e83df0cb3cfd0a514c3bc) C:\Windows\system32\DRIVERS\nwifi.sys
    2011/03/08 21:18:52.0249 NDIS (227c11e1e7cf6ef8afb2a238d209760c) C:\Windows\system32\drivers\ndis.sys
    2011/03/08 21:18:52.0296 NdisTapi (81659cdcbd0f9a9e07e6878ad8c78d3f) C:\Windows\system32\DRIVERS\ndistapi.sys
    2011/03/08 21:18:52.0340 Ndisuio (5de5ee546bf40838ebe0e01cb629df64) C:\Windows\system32\DRIVERS\ndisuio.sys
    2011/03/08 21:18:52.0375 NdisWan (397402adcbb8946223a1950101f6cd94) C:\Windows\system32\DRIVERS\ndiswan.sys
    2011/03/08 21:18:52.0426 NDProxy (1b24fa907af283199a81b3bb37e5e526) C:\Windows\system32\drivers\NDProxy.sys
    2011/03/08 21:18:52.0466 NetBIOS (356dbb9f98e8dc1028dd3092fceeb877) C:\Windows\system32\DRIVERS\netbios.sys
    2011/03/08 21:18:52.0500 netbt (e3a168912e7eefc3bd3b814720d68b41) C:\Windows\system32\DRIVERS\netbt.sys
    2011/03/08 21:18:52.0572 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
    2011/03/08 21:18:52.0615 Npfs (4f9832beb9fafd8ceb0e541f1323b26e) C:\Windows\system32\drivers\Npfs.sys
    2011/03/08 21:18:52.0662 nsiproxy (b488dfec274de1fc9d653870ef2587be) C:\Windows\system32\drivers\nsiproxy.sys
    2011/03/08 21:18:52.0760 Ntfs (37430aa7a66d7a63407adc2c0d05e9f6) C:\Windows\system32\drivers\Ntfs.sys
    2011/03/08 21:18:52.0803 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
    2011/03/08 21:18:52.0871 Null (ec5efb3c60f1b624648344a328bce596) C:\Windows\system32\drivers\Null.sys
    2011/03/08 21:18:52.0947 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
    2011/03/08 21:18:52.0982 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
    2011/03/08 21:18:53.0020 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
    2011/03/08 21:18:53.0127 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\DRIVERS\ohci1394.sys
    2011/03/08 21:18:53.0190 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
    2011/03/08 21:18:53.0225 partmgr (555a5b2c8022983bc7467bc925b222ee) C:\Windows\system32\drivers\partmgr.sys
    2011/03/08 21:18:53.0265 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
    2011/03/08 21:18:53.0325 pci (5bedd5e1416da009c4f24adf8da13773) C:\Windows\system32\drivers\pci.sys
    2011/03/08 21:18:53.0439 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
    2011/03/08 21:18:53.0510 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
    2011/03/08 21:18:53.0578 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
    2011/03/08 21:18:53.0731 PptpMiniport (c04dec5ace67c5247b150c4223970bb7) C:\Windows\system32\DRIVERS\raspptp.sys
    2011/03/08 21:18:53.0773 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
    2011/03/08 21:18:53.0836 PSched (2c8bae55247c4e09352e870292e4d1ab) C:\Windows\system32\DRIVERS\pacer.sys
    2011/03/08 21:18:53.0908 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\Windows\system32\Drivers\PxHelp20.sys
    2011/03/08 21:18:54.0006 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
    2011/03/08 21:18:54.0056 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
    2011/03/08 21:18:54.0106 QWAVEdrv (d2b3e2b7426dc23e185fbc73c8936c12) C:\Windows\system32\drivers\qwavedrv.sys
    2011/03/08 21:18:54.0137 RasAcd (bd7b30f55b3649506dd8b3d38f571d2a) C:\Windows\system32\DRIVERS\rasacd.sys
    2011/03/08 21:18:54.0205 Rasl2tp (68b0019fee429ec49d29017af937e482) C:\Windows\system32\DRIVERS\rasl2tp.sys
    2011/03/08 21:18:54.0239 RasPppoe (ccf4e9c6cbbac81437f88cb2ae0b6c96) C:\Windows\system32\DRIVERS\raspppoe.sys
    2011/03/08 21:18:54.0283 rdbss (54129c5d9581bbec8bd1ebd3ba813f47) C:\Windows\system32\DRIVERS\rdbss.sys
    2011/03/08 21:18:54.0308 RDPCDD (794585276b5d7fca9f3fc15543f9f0b9) C:\Windows\system32\DRIVERS\RDPCDD.sys
    2011/03/08 21:18:54.0363 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
    2011/03/08 21:18:54.0388 RDPENCDD (980b56e2e273e19d3a9d72d5c420f008) C:\Windows\system32\drivers\rdpencdd.sys
    2011/03/08 21:18:54.0438 RDPWD (8830e790a74a96605faba74f9665bb3c) C:\Windows\system32\drivers\RDPWD.sys
    2011/03/08 21:18:54.0507 rimmptsk (d85e3fa9f5b1f29bb4ed185c450d1470) C:\Windows\system32\DRIVERS\rimmptsk.sys
    2011/03/08 21:18:54.0550 rimsptsk (db8eb01c58c9fada00c70b1775278ae0) C:\Windows\system32\DRIVERS\rimsptsk.sys
    2011/03/08 21:18:54.0590 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
    2011/03/08 21:18:54.0647 rspndr (97e939d2128fec5d5a3e6e79b290a2f4) C:\Windows\system32\DRIVERS\rspndr.sys
    2011/03/08 21:18:54.0691 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
    2011/03/08 21:18:54.0772 sdbus (7b3973cc28b8aa3e9e2e5d53e720e2c9) C:\Windows\system32\DRIVERS\sdbus.sys
    2011/03/08 21:18:54.0826 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
    2011/03/08 21:18:54.0877 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
    2011/03/08 21:18:54.0921 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
    2011/03/08 21:18:54.0975 sermouse (450accd77ec5cea720c1cdb9e26b953b) C:\Windows\system32\drivers\sermouse.sys
    2011/03/08 21:18:55.0052 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\DRIVERS\sffdisk.sys
    2011/03/08 21:18:55.0090 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
    2011/03/08 21:18:55.0142 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\DRIVERS\sffp_sd.sys
    2011/03/08 21:18:55.0176 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
    2011/03/08 21:18:55.0237 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
    2011/03/08 21:18:55.0277 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
    2011/03/08 21:18:55.0313 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
    2011/03/08 21:18:55.0363 Smb (ac0d90738adb51a6fd12ff00874a2162) C:\Windows\system32\DRIVERS\smb.sys
    2011/03/08 21:18:55.0413 spldr (426f9b029aa9162ceccf65369457d046) C:\Windows\system32\drivers\spldr.sys
    2011/03/08 21:18:55.0493 srv (038579c35f7cad4a4bbf735dbf83277d) C:\Windows\system32\DRIVERS\srv.sys
    2011/03/08 21:18:55.0553 srv2 (6971a757af8cb5e2cbcbb76cc530db6c) C:\Windows\system32\DRIVERS\srv2.sys
    2011/03/08 21:18:55.0619 srvnet (9e1a4603b874eebce0298113951abefb) C:\Windows\system32\DRIVERS\srvnet.sys
    2011/03/08 21:18:55.0707 swenum (92894dd7fdd62af808b1409b73af9c73) C:\Windows\system32\DRIVERS\swenum.sys
    2011/03/08 21:18:55.0750 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
    2011/03/08 21:18:55.0791 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
    2011/03/08 21:18:55.0837 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
    2011/03/08 21:18:55.0904 SynTP (8327106d1c93e9a7b98e63b9fcc24bb7) C:\Windows\system32\DRIVERS\SynTP.sys
    2011/03/08 21:18:56.0001 Tcpip (4a82fa8f0df67aa354580c3faaf8bde3) C:\Windows\system32\drivers\tcpip.sys
    2011/03/08 21:18:56.0056 Tcpip6 (4a82fa8f0df67aa354580c3faaf8bde3) C:\Windows\system32\DRIVERS\tcpip.sys
    2011/03/08 21:18:56.0099 tcpipreg (5ce0c4a7b12d0067dad527d72b68c726) C:\Windows\system32\drivers\tcpipreg.sys
    2011/03/08 21:18:56.0145 TDPIPE (964248aef49c31fa6a93201a73ffaf50) C:\Windows\system32\drivers\tdpipe.sys
    2011/03/08 21:18:56.0176 TDTCP (7d2c1ae1648a60fce4aa0f7982e419d3) C:\Windows\system32\drivers\tdtcp.sys
    2011/03/08 21:18:56.0223 tdx (ab4fde8af4a0270a46a001c08cbce1c2) C:\Windows\system32\DRIVERS\tdx.sys
    2011/03/08 21:18:56.0278 TermDD (85908da29af0ab835048107ad2ad07d1) C:\Windows\system32\DRIVERS\termdd.sys
    2011/03/08 21:18:56.0360 tssecsrv (29f0eca726f0d51f7e048bdb0b372f29) C:\Windows\system32\DRIVERS\tssecsrv.sys
    2011/03/08 21:18:56.0426 tunmp (65e953bc0084d44498b51f59784d2a82) C:\Windows\system32\DRIVERS\tunmp.sys
    2011/03/08 21:18:56.0467 tunnel (4a39bda5e0fd30bdf4884f9d33ae6105) C:\Windows\system32\DRIVERS\tunnel.sys
    2011/03/08 21:18:56.0503 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
    2011/03/08 21:18:56.0551 udfs (6348da98707ceda8a0dfb05820e17732) C:\Windows\system32\DRIVERS\udfs.sys
    2011/03/08 21:18:56.0663 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
    2011/03/08 21:18:56.0708 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
    2011/03/08 21:18:56.0745 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
    2011/03/08 21:18:56.0784 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
    2011/03/08 21:18:56.0820 umbus (3fb78f1d1dd86d87bececd9dffa24dd9) C:\Windows\system32\DRIVERS\umbus.sys
    2011/03/08 21:18:56.0888 usbccgp (b0ba9caffe9b0555ec0317f30cb79cd2) C:\Windows\system32\DRIVERS\usbccgp.sys
    2011/03/08 21:18:56.0926 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
    2011/03/08 21:18:57.0000 usbehci (c9fcd05b0a80ea08c2768e5a279b14de) C:\Windows\system32\DRIVERS\usbehci.sys
    2011/03/08 21:18:57.0043 usbhub (5e44f7d957f7560da06bfe6b84b58a35) C:\Windows\system32\DRIVERS\usbhub.sys
    2011/03/08 21:18:57.0076 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
    2011/03/08 21:18:57.0122 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\DRIVERS\usbprint.sys
    2011/03/08 21:18:57.0170 USBSTOR (7887ce56934e7f104e98c975f47353c5) C:\Windows\system32\DRIVERS\USBSTOR.SYS
    2011/03/08 21:18:57.0200 usbuhci (d864735b0bfcb65440960a0b7cc1a38d) C:\Windows\system32\DRIVERS\usbuhci.sys
    2011/03/08 21:18:57.0250 usbvideo (8cffeb4af074fd3e24bad6381cc33361) C:\Windows\system32\Drivers\usbvideo.sys
    2011/03/08 21:18:57.0294 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
    2011/03/08 21:18:57.0325 VgaSave (17a8f877314e4067f8c8172cc6d9101c) C:\Windows\System32\drivers\vga.sys
    2011/03/08 21:18:57.0362 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
    2011/03/08 21:18:57.0420 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
    2011/03/08 21:18:57.0452 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
    2011/03/08 21:18:57.0503 volmgr (d9e9490c960624c416fbde080deeb7fe) C:\Windows\system32\drivers\volmgr.sys
    2011/03/08 21:18:57.0540 volmgrx (294da8d3f965f6a8db934a83c7b461ff) C:\Windows\system32\drivers\volmgrx.sys
    2011/03/08 21:18:57.0595 volsnap (80dc0c9bcb579ed9815001a4d37cbfd5) C:\Windows\system32\drivers\volsnap.sys
    2011/03/08 21:18:57.0642 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
    2011/03/08 21:18:57.0717 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
    2011/03/08 21:18:57.0767 Wanarp (6798c1209a53b5a0ded8d437c45145ff) C:\Windows\system32\DRIVERS\wanarp.sys
    2011/03/08 21:18:57.0784 Wanarpv6 (6798c1209a53b5a0ded8d437c45145ff) C:\Windows\system32\DRIVERS\wanarp.sys
    2011/03/08 21:18:57.0910 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
    2011/03/08 21:18:57.0978 Wdf01000 (7b5f66e4a2219c7d9daf9e738480e534) C:\Windows\system32\drivers\Wdf01000.sys
    2011/03/08 21:18:58.0090 winachsf (3b4522d0e750bac8fe7ae61622a57014) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
    2011/03/08 21:18:58.0212 WmiAcpi (17eac0d023a65fa9b02114cc2baacad5) C:\Windows\system32\DRIVERS\wmiacpi.sys
    2011/03/08 21:18:58.0309 WpdUsb (2d27171b16a577ef14c1273668753485) C:\Windows\system32\DRIVERS\wpdusb.sys
    2011/03/08 21:18:58.0359 ws2ifsl (84620aecdcfd2a7a14e6263927d8c0ed) C:\Windows\system32\drivers\ws2ifsl.sys
    2011/03/08 21:18:58.0425 WUDFRd (a2aafcc8a204736296d937c7c545b53f) C:\Windows\system32\DRIVERS\WUDFRd.sys
    2011/03/08 21:18:58.0475 XAudio (88af537264f2b818da15479ceeaf5d7c) C:\Windows\system32\DRIVERS\xaudio.sys
    2011/03/08 21:18:58.0545 ================================================================================
    2011/03/08 21:18:58.0545 Scan finished
    2011/03/08 21:18:58.0545 ================================================================================
    2011/03/08 21:19:20.0426 Deinitialize success
    0
  14. Valuu Messages postés 2258 Statut Contributeur 201
     
    Aaaah mais faut expliquer ! :)

    Supprimes le rapport ZHPDiag.txt que tu as sur ton bureau, refais un scan, un nouveau devrait apparaitre.
    Celui là tu l'héberge sur ce site, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum.
    0
  15. Valuu Messages postés 2258 Statut Contributeur 201
     
    Re,

    1 ) Bizarre des trucs sont pas partis avec AD-R...

    * Télécharge AD-Remover(de la TeamXscript) sur ton Bureau.
    Déconnecte toi et ferme toutes les applications en cours
    * Double-clique sur l'icône AD-Remover
    * Au menu principal, clique sur Nettoyer
    * Confirme le lancement de l'analyse et laisse l'outil travailler
    * Poste le rapport qui apparait à la fin (il est aussi sauvegardé sous C:\Ad-report-CLEAN.txt )

    2 ) Je te conseille de désinstaller Spybot... il est lourd et pas vraiment utile de plus...

    3 ) Va faire un tour sur Windows Update et suis les instructions pour mettre ton système à jour.

    4 ) Met Avast! à jour ! Tu as la version 4, la version 6 est déjà sortie, c'est important un antivirus à jour...

    5 ) Fais attention avec Chat-Land.org, c'est un vecteur à infection.

    6 ) Met Adobe Reader à jour :
    * Désinstalle toutes les versions de Adobe Reader présentes dans l'ajout/suppression de programme
    * Télécharge la nouvelle version ici en prenant soin de décocher la case du téléchargement de McAfee ou d'une barre d'outil google.
    * Installe là

    7 ) Met Java à jour :
    * Télécharge la dernière version de Java : https://www.java.com/fr/download/
    *Puis télécharge JavaRa.zip
    * Décompresse le fichier sur ton bureau (clique droit > Extraire tout.)
    * Double-clique sur le répertoire JavaRa obtenu.
    * Si tu es sous Vista/Seven, Exécute le avec un clic droit / Exécuter en tant qu'administrateur
    * Puis double-clique sur le fichier JavaRa.exe (le .exe peut ne pas s'afficher)
    * Clique sur Remove Older Versions.
    * Clique sur Oui pour confirmer. L'outil va travailler, clique ensuite sur Ok, puis une deuxième fois sur Ok.
    * Un rapport va s'ouvrir, copie-colle le dans ta prochaine réponse. (Note : le rapport se trouve aussi là : ( C:\JavaRa.log ))

    8 ) Une fois tout ça fait, on passera autre chose.
    0
  16. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    pour avast : bizarre , toutes les mises à jour sont faites régulièrement a priori !

    chat land : je n'ai jamais touché à ca , et je ne vois pas où c'est, comment éliminer cela ?

    AD rmover : il demande de redémarrer le système pour continuer ... sauf que qd ca redémarre , évidement ca repart sur la version windows classique (pas en mode sans échec quoi) et ca replante !!!
    0
  17. Valuu Messages postés 2258 Statut Contributeur 201
     
    Pour chat-land c'est censé partir avec Ad-Remover, mais on s'en occupera après. Il devrait virer Pdfforge aussi normalement.

    ça plante direct au démarrage ? t'as le temps de rien faire du tout ?

    Télécharge Blue Screen View
    Copie colle moi le texte des 2 erreurs les plus récentes.
    0
  18. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    salut !

    non je ne peux rien faire en redémarrage direct ... seul moyen de relancer la machine c'est d'attendre la proposition "sans échec". Donc je ne suis pas sure que les processus de nettoyages soient réellement effectifs.

    C'est cela pour BS View ?

    Il y en a 6 du 06/03

    1)

    Mini030611-06.dmp 06/03/2011 13:29:42 IRQL_NOT_LESS_OR_EQUAL 0x0000000a 0x0000006c 0x0000001b 0x00000001 0x81cb3809 aswSP.SYS aswSP.SYS+11810 avast! self protection module avast! Antivirus System ALWIL Software 4.8.1227.0 32-bit C:\Windows\Minidump\Mini030611-06.dmp 2 15 6000 138 272

    2)

    Mini030611-05.dmp 06/03/2011 13:23:28 SYSTEM_THREAD_EXCEPTION_NOT_HANDLED 0x1000007e 0xc0000005 0x00000000 0xae0a4c80 0xae0a497c 32-bit C:\Windows\Minidump\Mini030611-05.dmp 2 15 6000 138 272

    et je t'en mets du 23/02 et 22/02

    1)

    Mini022311-05.dmp 23/02/2011 22:32:51 KERNEL_MODE_EXCEPTION_NOT_HANDLED 0x1000008e 0xc0000005 0x81e7d54b 0x883af934 0x00000000 ntkrnlpa.exe ntkrnlpa.exe+27d54b NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.0.6000.17021 (vista_gdr.100218-0019) 32-bit C:\Windows\Minidump\Mini022311-05.dmp 2 15 6000 138 272

    2)

    Mini022211-07.dmp 22/02/2011 22:24:10 DRIVER_CORRUPTED_EXPOOL 0x000000c5 0x002e0064 0x00000002 0x00000001 0x81ce892e ntkrnlpa.exe ntkrnlpa.exe+8fe14 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.0.6000.17021 (vista_gdr.100218-0019) 32-bit C:\Windows\Minidump\Mini022211-07.dmp 2 15 6000 138 272

    3)

    Mini022211-05.dmp 22/02/2011 19:30:53 INVALID_WORK_QUEUE_ITEM 0x00000096 0x8427dbb8 0x81cfde7c 0x81cfde40 0x00000000 ntkrnlpa.exe ntkrnlpa.exe+d8781 NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.0.6000.17021 (vista_gdr.100218-0019) 32-bit C:\Windows\Minidump\Mini022211-05.dmp 2 15 6000 138 272
    0
  19. loulou1515 Messages postés 14 Date d'inscription   Statut Membre Dernière intervention  
     
    ... et pour windows up date, pas moyen de le lancer.

    Je me suis aussi intéressée à la restauration pour voir si j'avais des points de restauration possibles : j'obtiens un message d'erreur "pour effectuer une restau du systeme hors connexion vous devez spécifier l'installation de windows à restaurer. ...". Quand au centre de restauration lui même, une fois de plus il ne se passe rien quand je veux le lancer !
    0
  20. Valuu Messages postés 2258 Statut Contributeur 201
     
    Hello,

    Essaie de mettre tes drivers à jours pour voir :
    * Va sur touslesdrivers Puis clique sur Lancer la détection
    * Installe le logiciel MaConfig comme ça va te le proposer.
    * Dans la liste, certaines lignes seront différentes, tu pourras installer certains drivers qui ne sont pas à jour sur ton ordinateur.
    * Clique sur le plus récent en date de chaque catégorie pour les télécharger et les installer.
    * Redémarre ton ordinateur lorsque tu les as installés, puis retourne sur le site pour voir si tu en a d'autres à mettre à jour.
    * Recommence jusqu'à ce que toutes les lignes soient pareilles.
    0
  • 1
  • 2