Envois de mail à l'ensemble de mes contacts .
Fermé
silk
-
23 avril 2011 à 08:03
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 - 23 avril 2011 à 13:49
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 - 23 avril 2011 à 13:49
A voir également:
- Envois de mail à l'ensemble de mes contacts .
- Yahoo mail - Guide
- Publipostage mail - Guide
- Thunderbird mail - Télécharger - Mail
- Windows live mail - Télécharger - Mail
- Outlook.fr mail - Forum Hotmail / Outlook.com
7 réponses
Utilisateur anonyme
23 avril 2011 à 08:30
23 avril 2011 à 08:30
Bonjour,
1/
* Telecharge et install UsbFix par El Desaparecido , C_XX & Chimay8
(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
- Double clique sur le raccourci UsbFix sur ton Bureau (clique droit avec la souris
:exécuter en tant qu'administrateur pour vista/seven), l'installation se fera
automatiquement
-Clique sur "Recherche"
- Laisse travailler l'outil
- A la fin, le rapport va s'afficher : poste le dans ta prochaine réponse (il est aussi
sauvegardé a la racine du disque dur)
2/
Nous allons effectuer un diagnostic de ton PC:
*Télécharge ZHPDiag sur ton bureau :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
* Laisse toi guider lors de l'installation,coche "Ajouter une icône sur le bureau" et décoche la case "Exécuter ZHPDiag"
/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur un des sites ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
http://pjjoint.malekal.com/
Si indisponible:
http://www.cijoint.fr/
* Tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Hébergement de rapport sur pjjoint.malekal.com
* Rends toi sur http://pjjoint.malekal.com/
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux heberger et clique sur Ouvrir
*Clique sur le bouton Envoyer
* Un message de confirmation s'affiche, copie le lien dans ta prochaine réponse.
1/
* Telecharge et install UsbFix par El Desaparecido , C_XX & Chimay8
(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
- Double clique sur le raccourci UsbFix sur ton Bureau (clique droit avec la souris
:exécuter en tant qu'administrateur pour vista/seven), l'installation se fera
automatiquement
-Clique sur "Recherche"
- Laisse travailler l'outil
- A la fin, le rapport va s'afficher : poste le dans ta prochaine réponse (il est aussi
sauvegardé a la racine du disque dur)
2/
Nous allons effectuer un diagnostic de ton PC:
*Télécharge ZHPDiag sur ton bureau :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
* Laisse toi guider lors de l'installation,coche "Ajouter une icône sur le bureau" et décoche la case "Exécuter ZHPDiag"
/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur un des sites ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
http://pjjoint.malekal.com/
Si indisponible:
http://www.cijoint.fr/
* Tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Hébergement de rapport sur pjjoint.malekal.com
* Rends toi sur http://pjjoint.malekal.com/
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux heberger et clique sur Ouvrir
*Clique sur le bouton Envoyer
* Un message de confirmation s'affiche, copie le lien dans ta prochaine réponse.
Utilisateur anonyme
23 avril 2011 à 09:14
23 avril 2011 à 09:14
Le rapport n'est pas complet, stp refais ce qui est demandé dès le début comme indiqué ICI.
le rapport USBFix tu le postes ici et on hèberge le rapport ZHPDiag comme tu as fait maintenant
le rapport USBFix tu le postes ici et on hèberge le rapport ZHPDiag comme tu as fait maintenant
1) normalement aucune source de données externe sauf il est vrai un disque dur externe, sauvegarde de l'ancien pc qui à ...cramé..
2) c'est en cours.je poste le rapport dès que c'est fait.
2) c'est en cours.je poste le rapport dès que c'est fait.
Rapport de ZHPFix 1.12.3278 par Nicolas Coolman, Update du 21/04/2011
Fichier d'export Registre :
Run by bibi at 23/04/2011 08:49:29
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
========== Logiciel(s) ==========
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 => Logiciel déjà supprimé
O63 - Logiciel: RSIT - (random/random) => Logiciel supprimé avec succès
========== Dossier(s) ==========
C:\rsit => Supprimé et mis en quarantaine
========== Récapitulatif ==========
1 : Dossier(s)
2 : Logiciel(s)
End of the scan
Fichier d'export Registre :
Run by bibi at 23/04/2011 08:49:29
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
========== Logiciel(s) ==========
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 => Logiciel déjà supprimé
O63 - Logiciel: RSIT - (random/random) => Logiciel supprimé avec succès
========== Dossier(s) ==========
C:\rsit => Supprimé et mis en quarantaine
========== Récapitulatif ==========
1 : Dossier(s)
2 : Logiciel(s)
End of the scan
Utilisateur anonyme
23 avril 2011 à 08:54
23 avril 2011 à 08:54
Re,
Non, ce n'est pas ZHPFix mais USBFix.
On reprend, stp fais CECI
@+
Non, ce n'est pas ZHPFix mais USBFix.
On reprend, stp fais CECI
@+
désolé..j'ai vu ça après voila :
Rapport de ZHPDiag v1.27.1906 par Nicolas Coolman, Update du 21/04/2011
Run by bibi at 23/04/2011 08:54:23
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox 4.0 v4.0 (Defaut)
MFIE: Mozilla Firefox 4.0b12 v4.0 (Defaut)
---\\ System Information
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3839 MB (33% free)
System Restore: Activé (Enable)
System drive C: has 232 GB (79%) free of 291 GB
---\\ Logged in mode
Computer Name: BIBI-PC
User Name: bibi
All Users Names: HomeGroupUser$, bibi, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
%AppData%=C:\Users\bibi\AppData\Roaming
%LocalAppData%=C:\Users\bibi\AppData\Local
%StartMenu%=C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 232 Go of 291 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 291 Go of 291 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Hard drive, Flash drive, Thumb drive (Free 95 Go of 225 Go)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
---\\ Recherche particulière de fichiers génériques
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 07:34:59.) -- C:\Windows\Explorer.exe [2870272]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.214605C48AE416BC067C39D227CFCC57] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.24/02/2011 06:32:44.) -- C:\Windows\system32\wininet.dll [981504]
---\\ Processus lancés
[MD5.2DC64A3446C8C6E020E781456B46573D] - (.Microsoft Corporation - Tablet PC Input Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [10240]
[MD5.326A4422C8421A143C3087F41B7A2EFC] - (.Acer Corp. - Acer Touch Portal Button Monitor.) -- C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [153416]
[MD5.65A75E4C90DFA630AA9DC1E7B58BFD92] - (.Acer Corp. - TouchPortal.) -- C:\Program Files (x86)\Packard Bell\Packard Bell Touch Suite\TouchPortal.exe [6314016]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.44A7D7BA01F438714EAFB84684D2A99A] - (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe [328568]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688]
[MD5.AD16557CECFB17CF7393D28DC40F6D09] - (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [563744]
[MD5.6B95289B9BDDE92E03A894FD00664FA9] - (.Creative Technology Ltd - THXAudio.) -- C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe [1346048]
[MD5.F660B9A931D289BF62239008F206BE5B] - (.CyberLink Corp. - CyberLink YouCam Tray.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [171104]
[MD5.7B878518590E826F1F3A5B1D61D405F8] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3396624]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064]
[MD5.8812D95B449763B7C610917950DCC371] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [917504]
[MD5.FD2DAF33D43F30084A9E58B4476CFA83] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [9728]
[MD5.948F85EDC14CC6CD7A94195376DF202C] - (...) -- C:\UsbFix\UsbFix.exe [530373]
[MD5.2753FA95AF1BF1A64B8BB6AD3BEFBBD7] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [643584]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.0.1.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.PopCap Games - PopCap Games Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppopcaploader.dll
P2 - FPN: [HKLM] [@microsoft.com/VirtualEarth3D,version=4.0] - (.Pas de propriétaire - Pas de description.) -- (.not file.)
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
M0 - MFSP: prefs.js [bibi - lxugv1x7.default] http://fr.yahoo.com/
M2 - MFEP: prefs.js [bibi - lxugv1x7.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.3.6.20110307083656 (.Yahoo!.)
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: uTorrentBar Toolbar [64Bits] - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.7.3) -- C:\Program Files (x86)\uTorrentBar\tbuTo1.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg64.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [TouchORB] . (.Acer Corp. - Acer Touch Portal Button Monitor.) -- C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [THXCfg64] C:\Windows\system32\THXCfg64.dll (.not file.)
O4 - HKLM\..\Run: [TouchPortal] . (.Acer Corp. - TouchPortal.) -- C:\Program Files (x86)\Packard Bell\Packard Bell Touch Suite\TouchPortal.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [EPSON SX410 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [EPSON SX410 Series (Copie 1)] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.exe
O4 - HKLM\..\Wow6432Node\Run: [Hotkey Utility] . (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Wow6432Node\Run: [OOTag] . (.Microsoft - OOTag.) -- C:\Program Files (x86)\Packard Bell\OOBEOffer\OOTag.exe
O4 - HKLM\..\Wow6432Node\Run: [THX Audio Control Panel] . (.Creative Technology Ltd - THXAudio.) -- C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdReg] . (.Creative Technology Ltd. - Creative UpdReg.) -- C:\Windows\UpdReg.exe
O4 - HKLM\..\Wow6432Node\Run: [UCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [YouCam Mirror Tray icon] . (.CyberLink Corp. - CyberLink YouCam Tray.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe
O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [EPSON SX410 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [EPSON SX410 Series (Copie 1)] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Moovida.lnk . (.Fluendo Embedded.) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe
O4 - Global Startup: C:\Users\bibi\Desktop\CyberLink YouCam.lnk . (.CyberLink Corp..) -- C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Départ Ski Challenge 11 (TSR).lnk . (...) -- C:\Games\Ski Challenge 11 (TSR)\Updater.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Easy Audio Cutter.lnk . (.Koyote Soft.) -- C:\Program Files (x86)\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Free CD Ripper.lnk . (.Koyote Soft.) -- C:\Program Files (x86)\Free Audio Pack\Free CD Ripper\FreeCDRipper.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Free Mp3 Wma Converter.lnk . (.Koyote Soft.) -- C:\Program Files (x86)\Free Audio Pack\FreeConverter\FreeConverter.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Microsoft Word Starter 2010.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
O4 - Global Startup: C:\Users\bibi\Desktop\Moovida.lnk . (.Fluendo Embedded.) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Messaging.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - hp.lnk . (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{5B019628-652C-4D3D-9921-D6AADF51D430}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{5B019628-652C-4D3D-9921-D6AADF51D430}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{5B019628-652C-4D3D-9921-D6AADF51D430}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.exe
O23 - Service: (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.exe
O23 - Service: (FLEXnet Licensing Service) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: (ForceWare Intelligent Application Manager (IAM)) . (.Pas de propriétaire - app_filter Module.) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: (GamesAppService) . (.WildTangent, Inc. - GamesAppService.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: (MEMSWEEP2) . (.Sophos Plc - Memsweep kernel driver.) - C:\Windows\system32\7FA8.tmp
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: (nSvcIp) . (.Pas de propriétaire - NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 196.6.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8C99FCBE6BBCC428B7AF807B643DD86E] [APT] [Burn Notification] (.Acer.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\NotificationCenter\Notification.exe
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ALTools Update - (.ESTsoft Corp..) [HKLM][64Bits] -- ALUpdate_is1
O42 - Logiciel: ALZip - (.ESTsoft Corp..) [HKLM][64Bits] -- ALZip_is1
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 8.0
O42 - Logiciel: Adobe Reader X (10.0.1) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA0000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: AirRivals_FR 1.0.0.1 - (.Pas de propriétaire.) [HKLM][64Bits] -- AirRivals_FR_is1
O42 - Logiciel: Bejeweled - (.WildTangent.) [HKLM][64Bits] -- WTA-da066c3a-4657-4635-baff-c0a9ca096398
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-360f49ee-b3ef-4771-981e-f4649c1b36fc
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT078960
O42 - Logiciel: Bob the Builder Can-Do-Zoo - (.WildTangent.) [HKLM][64Bits] -- WT078964
O42 - Logiciel: Build-a-lot 2 - (.WildTangent.) [HKLM][64Bits] -- WT079363
O42 - Logiciel: CANAL+ pour Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2A6B1A0-C1E3-4311-BF86-EAF18841FD67}
O42 - Logiciel: Chicken Invaders 3 - Revenge of the Yolk - (.WildTangent.) [HKLM][64Bits] -- WT079366
O42 - Logiciel: Conduit Engin - (.Conduit Ltd.) [HKLM][64Bits] -- conduitEngine
O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}
O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- {80E158EA-7181-40FE-A701-301CE6BE64AB}
O42 - Logiciel: CyberLink Touch Browser - (.CyberLink Corp..) [HKLM][64Bits] -- {74D911AE-4A04-4481-902F-7B496E721F7F}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Désinstaller l'imprimante EPSON SX410 Series - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX410 Series
O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {87C2248A-C7DD-49ED-9BCD-B312A9D0819E}
O42 - Logiciel: Escape Rosecliff Island - (.WildTangent.) [HKLM][64Bits] -- WT079395
O42 - Logiciel: FATE - The Traitor Soul - (.WildTangent.) [HKLM][64Bits] -- WT079024
O42 - Logiciel: Faerie Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT079020
O42 - Logiciel: Free Mp3 Wma Converter V 1.95 - (.Koyote Soft.) [HKLM][64Bits] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Free TV Radio - (.Secure Digital Services.) [HKLM][64Bits] -- {38470B46-9BF1-40AE-A588-F6AD6D1C2D42}
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Geonaute Software - (.Geonaute.) [HKLM][64Bits] -- {548CBD79-054A-42F1-A1DA-B4F3FEF490ED}_is1
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {FB4F9000-04FC-11E0-85D2-001AA037B01E}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: Hotkey Utility - (.Packard Bell.) [HKLM][64Bits] -- Hotkey Utility
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078806
O42 - Logiciel: Internet TV pour Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D318C86-AF4C-409F-A6AC-7183FF4CF424}
O42 - Logiciel: Java(TM) 6 Update 24 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216022FF}
O42 - Logiciel: Jewel Quest - (.WildTangent.) [HKLM][64Bits] -- WT079064
O42 - Logiciel: Jewel Quest Solitaire 3 - (.WildTangent.) [HKLM][64Bits] -- WT079068
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {918A9082-6287-4D25-9002-5E5D5E4971CB}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT079397
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Starter 2010 - Français - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140011-0066-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office « Démarrer en un clic » 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006D-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Office « Démarrer en un clic » 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.Click2Run
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Touch Pack for Windows 7 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FF90DB8-6DED-44A3-B182-244FEC09012F}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3898934B-05AE-41CD-96BE-70DA9BFBCE1F}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Moovida - (.Fluendo.) [HKLM][64Bits] -- Moovida
O42 - Logiciel: Mozilla Firefox 4.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 4.0 (x86 fr)
O42 - Logiciel: Mozilla Firefox 4.0b12 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 4.0b12 (x86 fr)
O42 - Logiciel: Mozilla Thunderbird (3.1.8) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird (3.1.8)
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM] -- {7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM][64Bits] -- InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {f6cebfb7-5071-4a0b-9603-d37be1ffb4fb}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348B586-C9AE-46CE-936C-A68E9426E214}
O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM][64Bits] -- {4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: Nostale(FR) - (.Gameforge 4D GmbH.) [HKLM][64Bits] -- NosTale(FR)_is1
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {05653DE1-6567-40C6-B930-39D399B64369}
O42 - Logiciel: PL-2303 USB-to-Serial - (.Prolific Technology INC.) [HKLM][64Bits] -- {ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}
O42 - Logiciel: Packard Bell Game Console - (.WildTangent.) [HKLM][64Bits] -- Packard Bell Game Console
O42 - Logiciel: Packard Bell Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent packardbell Master Uninstall
O42 - Logiciel: Packard Bell InfoCentre - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell InfoCentre
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Registration
O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell .) [HKLM][64Bits] -- Packard Bell Screensaver
O42 - Logiciel: Packard Bell Software Suite SE - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Software Suite SE
O42 - Logiciel: Packard Bell Touch Suite - (.Packard Bell.) [HKLM][64Bits] -- {C652F86F-348A-4A65-8BE8-A3F7A6370D98}
O42 - Logiciel: Packard Bell Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM][64Bits] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT079108
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT079116
O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM][64Bits] -- WT079120
O42 - Logiciel: Polar Pool - (.WildTangent.) [HKLM][64Bits] -- WT079124
O42 - Logiciel: PopCap Browser Plugin - (.Pas de propriétaire.) [HKLM][64Bits] -- Plugin de navigateur PopCap
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Ski Challenge 11 (TSR) - (.Pas de propriétaire.) [HKCU] -- sc11-CH_TSR
O42 - Logiciel: Sophos Anti-Rootkit 1.5.4 - (.Sophos Plc.) [HKLM][64Bits] -- Sophos-AntiRootkit
O42 - Logiciel: THX TruStudio PRO - (.Creative Technology Limited.) [HKLM][64Bits] -- {97BE901A-9940-4ACF-9921-A6FAA284AC03}
O42 - Logiciel: TouchSettings - (.Packard Bell.) [HKLM][64Bits] -- {75880CD4-9436-4EDD-B7E7-400EBFD60B2C}
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VLC media player 1.1.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Virtual Earth 3D (Beta) - (.Microsoft Corporation.) [HKLM] -- {6ACE7F46-FACE-4125-AE86-672F4F2A6A28}
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WT079421
O42 - Logiciel: Virtual Villagers - A New Home - (.WildTangent.) [HKLM][64Bits] -- WT079177
O42 - Logiciel: Welcome Center - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Welcome Center
O42 - Logiciel: WildTangent Games App (HP Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp
O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: Windows Media Center Add-in for Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EDBEB2B-7C8D-42E6-8312-0F84394A3223}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Yahtzee - (.WildTangent.) [HKLM][64Bits] -- WT079184
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078833
O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM][64Bits] -- avast5
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {E0B19DF7-B1C7-4937-82C4-0E4B1E346965}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: uTorrentBar Toolbar - (.uTorrentBar.) [HKLM][64Bits] -- uTorrentBar Toolbar
O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM][64Bits] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AhnLab]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\AppDataLow\Software\conduitEngine]
[HKCU\Software\AppDataLow\Software\uTorrentBar]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\BitTorrent]
[HKCU\Software\Bugsplat]
[HKCU\Software\ClassesB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Tech]
[HKCU\Software\CyberLink]
[HKCU\Software\EPSON]
[HKCU\Software\ESTsoft]
[HKCU\Software\FissaSearch]
[HKCU\Software\FreeCDRIP]
[HKCU\Software\Gameforge4d]
[HKCU\Software\Google]
[HKCU\Software\Greentube]
[HKCU\Software\HipSoft]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\MainConcept (Adobe2)]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Marseillesoft]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\OEM]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Pando Networks]
[HKCU\Software\Policies]
[HKCU\Software\PopCap]
[HKCU\Software\Realtek]
[HKCU\Software\Spointer]
[HKCU\Software\SuperSoftwarePackage]
[HKCU\Software\Trolltech]
[HKCU\Software\Usbfix]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\freeTVRadio]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AcerUtil]
[HKLM\Software\Acer]
[HKLM\Software\Adobe]
[HKLM\Software\AirRivalsFR]
[HKLM\Software\AirRivals_FR]
[HKLM\Software\Audible]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Creative Tech]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\Debug]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EPSON]
[HKLM\Software\ESTsoft]
[HKLM\Software\Geonaute]
[HKLM\Software\Google]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OemSetup]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Packard Bell]
[HKLM\Software\Pando Networks]
[HKLM\Software\Policies]
[HKLM\Software\PopCap]
[HKLM\Software\Prolific Technology INC]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Riot Games]
[HKLM\Software\SRS Labs]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\TrendMicro]
[HKLM\Software\VideoLAN]
[HKLM\Software\Waves Audio]
[HKLM\Software\WildTangent]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\freeTVRadio]
[HKLM\Software\mozilla.org]
[HKLM\Software\uTorrentBar]
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/11/2010 - 16:49:56 - [160438749] ----D- C:\Program Files\Alwil Software
O43 - CFD: 25/03/2011 - 21:51:12 - [0] ----D- C:\Program Files\Babylon
O43 - CFD: 14/11/2010 - 21:05:48 - [83510531] ----D- C:\Program Files\Common Files
O43 - CFD: 07/07/2009 - 10:53:34 - [90257428] ----D- C:\Program Files\DVD Maker
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 13/05/2010 - 04:57:04 - [1292368] ----D- C:\Program Files\Google
O43 - CFD: 15/04/2011 - 03:22:44 - [5174813] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/07/2009 - 09:45:56 - [148930098] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 13/11/2010 - 14:18:06 - [1584815] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 07/07/2009 - 01:13:24 - [78892958] ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 13/05/2010 - 05:10:32 - [17577906] ----D- C:\Program Files\Packard Bell
O43 - CFD: 10/11/2010 - 15:31:52 - [252321] ----D- C:\Program Files\PB Accessory Store
O43 - CFD: 13/05/2010 - 04:53:40 - [1825075] ----D- C:\Program Files\Preload
O43 - CFD: 07/07/2009 - 01:06:06 - [14548512] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [36253865] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 07/07/2009 - 10:53:34 - [4039168] ----D- C:\Program Files\Windows Defender
O43 - CFD: 07/07/2009 - 10:53:34 - [9224824] ----D- C:\Program Files\Windows Journal
O43 - CFD: 12/11/2010 - 18:29:42 - [43896] ----D- C:\Program Files\Windows Live
O43 - CFD: 17/12/2010 - 04:18:26 - [6667264] ----D- C:\Program Files\Windows Mail
O43 - CFD: 11/11/2010 - 12:52:34 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 10/11/2010 - 15:31:30 - [12627124] ----D- C:\Program Files\Windows NT
O43 - CFD: 07/07/2009 - 10:53:34 - [5516568] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 07:32:40 - [235008] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 07/07/2009 - 10:53:34 - [7044255] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 07/03/2011 - 22:12:24 - [70889090] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 07/07/2009 - 10:53:34 - [12009971] ----D- C:\Program Files\Common Files\System
O43 - CFD: 13/05/2010 - 04:53:40 - [160] ----D- C:\ProgramData\Acer
O43 - CFD: 22/11/2010 - 08:06:22 - [681795260] ----D- C:\ProgramData\Adobe
O43 - CFD: 10/11/2010 - 16:49:56 - [36383061] ----D- C:\ProgramData\Alwil Software
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 13/05/2010 - 04:46:34 - [216597504] ----D- C:\ProgramData\Applications
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 10/11/2010 - 17:31:38 - [11841] ----D- C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 12/12/2010 - 13:34:22 - [144] ----D- C:\ProgramData\Driver Mender
O43 - CFD: 12/12/2010 - 11:50:48 - [0] ----D- C:\ProgramData\eMule
O43 - CFD: 12/12/2010 - 14:24:28 - [8844777] ----D- C:\ProgramData\EPSON
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 21/11/2010 - 19:01:32 - [43883] ----D- C:\ProgramData\FLEXnet
O43 - CFD: 29/12/2010 - 16:04:56 - [427404] ----D- C:\ProgramData\Geonaute
O43 - CFD: 13/05/2010 - 04:57:06 - [1045699] ----D- C:\ProgramData\Google
O43 - CFD: 20/03/2011 - 18:43:04 - [193964] ----D- C:\ProgramData\HipSoft
O43 - CFD: 27/03/2011 - 14:03:44 - [110736] ----D- C:\ProgramData\InterAction studios
O43 - CFD: 16/04/2011 - 21:25:04 - [6569514] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 21/11/2010 - 17:59:48 - [1082] ----D- C:\ProgramData\McAfee
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 23/04/2011 - 08:39:36 - [2262133492] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 13/05/2010 - 04:59:08 - [11106138] ----D- C:\ProgramData\Nero
O43 - CFD: 14/11/2010 - 21:12:30 - [13216] ----D- C:\ProgramData\Norton
O43 - CFD: 13/05/2010 - 05:07:32 - [6698810] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 07/07/2009 - 01:04:32 - [273405] ----D- C:\ProgramData\NVIDIA
O43 - CFD: 12/11/2010 - 09:06:14 - [144] ----D- C:\ProgramData\OEM
O43 - CFD: 13/05/2010 - 04:55:36 - [960203] ----D- C:\ProgramData\Packard Bell
O43 - CFD: 18/12/2010 - 23:42:32 - [1030] ----D- C:\ProgramData\Partner
O43 - CFD: 01/02/2011 - 18:56:00 - [432] ----D- C:\ProgramData\PMB Files
O43 - CFD: 13/11/2010 - 10:23:36 - [5916421] ----D- C:\ProgramData\PopCap
O43 - CFD: 21/11/2010 - 22:54:20 - [2316513] ----D- C:\ProgramData\PopCap Games
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 07/03/2011 - 22:13:36 - [154] ----D- C:\ProgramData\Sun
O43 - CFD: 07/07/2009 - 01:18:18 - [110592] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 12/12/2010 - 14:18:12 - [3498] ----D- C:\ProgramData\UDL
O43 - CFD: 13/11/2010 - 16:34:22 - [0] ----D- C:\ProgramData\VirtualizedApplications
O43 - CFD: 10/11/2010 - 21:54:46 - [8331120] ----D- C:\ProgramData\Wild Tangent
O43 - CFD: 01/04/2011 - 20:08:08 - [1141817931] ----D- C:\ProgramData\WildTangent
O43 - CFD: 02/01/2011 - 16:25:02 - [21100536] ----D- C:\Users\bibi\AppData\Roaming\Adobe
O43 - CFD: 02/01/2011 - 16:25:02 - [59] ----D- C:\Users\bibi\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 10/11/2010 - 17:31:28 - [1675098] ----D- C:\Users\bibi\AppData\Roaming\CyberLink
O43 - CFD: 12/12/2010 - 20:41:36 - [889] ----D- C:\Users\bibi\AppData\Roaming\EPSON
O43 - CFD: 13/11/2010 - 10:28:50 - [1392978] ----D- C:\Users\bibi\AppData\Roaming\ESTsoft
O43 - CFD: 20/03/2011 - 18:40:58 - [1165] ----D- C:\Users\bibi\AppData\Roaming\Faerie Solitaire
O43 - CFD: 20/04/2011 - 17:42:20 - [259] ----D- C:\Users\bibi\AppData\Roaming\FreeAudioPack
O43 - CFD: 20/04/2011 - 17:44:34 - [478] ----D- C:\Users\bibi\AppData\Roaming\FreeCDRipper
O43 - CFD: 20/11/2010 - 22:07:28 - [677] ----D- C:\Users\bibi\AppData\Roaming\freeTVRadio
O43 - CFD: 10/11/2010 - 15:37:38 - [48] ----D- C:\Users\bibi\AppData\Roaming\Google
O43 - CFD: 10/11/2010 - 15:34:52 - [0] ----D- C:\Users\bibi\AppData\Roaming\Identities
O43 - CFD: 12/12/2010 - 14:17:58 - [0] ----D- C:\Users\bibi\AppData\Roaming\InstallShield
O43 - CFD: 02/02/2011 - 18:27:58 - [0] ----D- C:\Users\bibi\AppData\Roaming\LolClient
O43 - CFD: 10/11/2010 - 15:35:20 - [108480] ----D- C:\Users\bibi\AppData\Roaming\Macromedia
O43 - CFD: 16/04/2011 - 21:25:28 - [6749235] ----D- C:\Users\bibi\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:44:40 - [0] ----D- C:\Users\bibi\AppData\Roaming\Media Center Programs
O43 - CFD: 10/02/2011 - 19:05:40 - [18894044] -S--D- C:\Users\bibi\AppData\Roaming\Microsoft
O43 - CFD: 21/11/2010 - 19:11:28 - [596017] ----D- C:\Users\bibi\AppData\Roaming\moovida-1
O43 - CFD: 10/11/2010 - 16:53:16 - [71402973] ----D- C:\Users\bibi\AppData\Roaming\Mozilla
O43 - CFD: 22/12/2010 - 18:28:42 - [240] ----D- C:\Users\bibi\AppData\Roaming\Nero
O43 - CFD: 10/11/2010 - 15:35:24 - [0] ----D- C:\Users\bibi\AppData\Roaming\OEM
O43 - CFD: 08/03/2011 - 09:46:40 - [2057790] ----D- C:\Users\bibi\AppData\Roaming\OpenOffice.org
O43 - CFD: 10/11/2010 - 18:38:20 - [2003466] ----D- C:\Users\bibi\AppData\Roaming\PowerCinema
O43 - CFD: 10/02/2011 - 20:00:14 - [93218] ----D- C:\Users\bibi\AppData\Roaming\Shareaza
O43 - CFD: 16/04/2011 - 22:41:58 - [6454795] ----D- C:\Users\bibi\AppData\Roaming\SoftGrid Client
O43 - CFD: 04/03/2011 - 08:58:06 - [18356833] ----D- C:\Users\bibi\AppData\Roaming\Thunderbird
O43 - CFD: 19/12/2010 - 16:55:42 - [4349803] ----D- C:\Users\bibi\AppData\Roaming\TouchGadget
O43 - CFD: 13/11/2010 - 14:19:02 - [0] ----D- C:\Users\bibi\AppData\Roaming\TP
O43 - CFD: 23/04/2011 - 08:47:06 - [677437] ----D- C:\Users\bibi\AppData\Roaming\uTorrent
O43 - CFD: 08/03/2011 - 21:28:34 - [1103578] ----D- C:\Users\bibi\AppData\Roaming\vlc
O43 - CFD: 19/12/2010 - 16:24:18 - [671] ----D- C:\Users\bibi\AppData\Roaming\WildTangent
O43 - CFD: 27/11/2010 - 20:36:18 - [0] ----D- C:\Users\bibi\AppData\Roaming\Windows Live Writer
O43 - CFD: 13/11/2010 - 10:29:20 - [12] ----D- C:\Users\bibi\AppData\Roaming\WinRAR
O43 - CFD: 21/11/2010 - 19:04:16 - [15230130] ----D- C:\Users\bibi\Appdata\Local\Adobe
O43 - CFD: 10/11/2010 - 15:31:40 - [0] -SH-D- C:\Users\bibi\Appdata\Local\Application Data
O43 - CFD: 10/11/2010 - 17:56:28 - [98876] ----D- C:\Users\bibi\Appdata\Local\assembly
O43 - CFD: 04/03/2011 - 11:42:06 - [13883509] ----D- C:\Users\bibi\Appdata\Local\CrashDumps
O43 - CFD: 10/11/2010 - 17:24:50 - [48959] ----D- C:\Users\bibi\Appdata\Local\CyberLink
O43 - CFD: 23/01/2011 - 02:00:18 - [0] ----D- C:\Users\bibi\Appdata\Local\Diagnostics
O43 - CFD: 12/12/2010 - 11:50:48 - [11990] ----D- C:\Users\bibi\Appdata\Local\eMule
O43 - CFD: 14/04/2011 - 19:24:00 - [554498] ----D- C:\Users\bibi\Appdata\Local\freetvradio Air
O43 - CFD: 29/12/2010 - 16:25:14 - [11946] ----D- C:\Users\bibi\Appdata\Local\Geonaute
O43 - CFD: 18/12/2010 - 23:50:42 - [163842914] ----D- C:\Users\bibi\Appdata\Local\Google
O43 - CFD: 10/11/2010 - 15:31:40 - [0] -SH-D- C:\Users\bibi\Appdata\Local\Historique
O43 - CFD: 10/11/2010 - 17:56:22 - [706414] ----D- C:\Users\bibi\Appdata\Local\IsolatedStorage
O43 - CFD: 22/12/2010 - 18:27:42 - [374974883] ----D- C:\Users\bibi\Appdata\Local\Microsoft
O43 - CFD: 14/11/2010 - 15:27:36 - [1264683] ----D- C:\Users\bibi\Appdata\Local\Microsoft Games
O43 - CFD: 26/03/2011 - 09:04:44 - [551628] ----D- C:\Users\bibi\Appdata\Local\moovida Air
O43 - CFD: 10/11/2010 - 16:53:02 - [467172046] ----D- C:\Users\bibi\Appdata\Local\Mozilla
O43 - CFD: 10/02/2011 - 04:17:48 - [201544] ----D- C:\Users\bibi\Appdata\Local\PMB Files
O43 - CFD: 14/11/2010 - 20:27:18 - [195251] ----D- C:\Users\bibi\Appdata\Local\Shareaza
O43 - CFD: 13/11/2010 - 14:18:54 - [5734400] ----D- C:\Users\bibi\Appdata\Local\SoftGrid Client
O43 - CFD: 23/04/2011 - 08:53:56 - [184837485] ----D- C:\Users\bibi\Appdata\Local\Temp
O43 - CFD: 10/11/2010 - 15:31:40 - [0] -SH-D- C:\Users\bibi\Appdata\Local\Temporary Internet Files
O43 - CFD: 04/03/2011 - 08:58:06 - [5736763] ----D- C:\Users\bibi\Appdata\Local\Thunderbird
O43 - CFD: 29/12/2010 - 16:31:30 - [14514442] ----D- C:\Users\bibi\Appdata\Local\VirtualStore
O43 - CFD: 15/04/2011 - 05:34:04 - [86016] ----D- C:\Users\bibi\Appdata\Local\Windows Live
O43 - CFD: 27/11/2010 - 20:36:26 - [372494] ----D- C:\Users\bibi\Appdata\Local\Windows Live Writer
O43 - CFD: 21/11/2010 - 18:03:48 - [890977283] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 25/03/2011 - 21:46:12 - [0] ----D- C:\Program Files (x86)\Babylon
O43 - CFD: 10/04/2011 - 09:53:12 - [516135758]
Rapport de ZHPDiag v1.27.1906 par Nicolas Coolman, Update du 21/04/2011
Run by bibi at 23/04/2011 08:54:23
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox 4.0 v4.0 (Defaut)
MFIE: Mozilla Firefox 4.0b12 v4.0 (Defaut)
---\\ System Information
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3839 MB (33% free)
System Restore: Activé (Enable)
System drive C: has 232 GB (79%) free of 291 GB
---\\ Logged in mode
Computer Name: BIBI-PC
User Name: bibi
All Users Names: HomeGroupUser$, bibi, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
%AppData%=C:\Users\bibi\AppData\Roaming
%LocalAppData%=C:\Users\bibi\AppData\Local
%StartMenu%=C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 232 Go of 291 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 291 Go of 291 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Hard drive, Flash drive, Thumb drive (Free 95 Go of 225 Go)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
---\\ Recherche particulière de fichiers génériques
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 07:34:59.) -- C:\Windows\Explorer.exe [2870272]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.214605C48AE416BC067C39D227CFCC57] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.24/02/2011 06:32:44.) -- C:\Windows\system32\wininet.dll [981504]
---\\ Processus lancés
[MD5.2DC64A3446C8C6E020E781456B46573D] - (.Microsoft Corporation - Tablet PC Input Panel Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe [10240]
[MD5.326A4422C8421A143C3087F41B7A2EFC] - (.Acer Corp. - Acer Touch Portal Button Monitor.) -- C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [153416]
[MD5.65A75E4C90DFA630AA9DC1E7B58BFD92] - (.Acer Corp. - TouchPortal.) -- C:\Program Files (x86)\Packard Bell\Packard Bell Touch Suite\TouchPortal.exe [6314016]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.44A7D7BA01F438714EAFB84684D2A99A] - (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe [328568]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688]
[MD5.AD16557CECFB17CF7393D28DC40F6D09] - (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [563744]
[MD5.6B95289B9BDDE92E03A894FD00664FA9] - (.Creative Technology Ltd - THXAudio.) -- C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe [1346048]
[MD5.F660B9A931D289BF62239008F206BE5B] - (.CyberLink Corp. - CyberLink YouCam Tray.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [171104]
[MD5.7B878518590E826F1F3A5B1D61D405F8] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3396624]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064]
[MD5.8812D95B449763B7C610917950DCC371] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [917504]
[MD5.FD2DAF33D43F30084A9E58B4476CFA83] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [9728]
[MD5.948F85EDC14CC6CD7A94195376DF202C] - (...) -- C:\UsbFix\UsbFix.exe [530373]
[MD5.2753FA95AF1BF1A64B8BB6AD3BEFBBD7] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [643584]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [bibi] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.0.1.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.PopCap Games - PopCap Games Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppopcaploader.dll
P2 - FPN: [HKLM] [@microsoft.com/VirtualEarth3D,version=4.0] - (.Pas de propriétaire - Pas de description.) -- (.not file.)
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
M0 - MFSP: prefs.js [bibi - lxugv1x7.default] http://fr.yahoo.com/
M2 - MFEP: prefs.js [bibi - lxugv1x7.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.3.6.20110307083656 (.Yahoo!.)
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: uTorrentBar Toolbar [64Bits] - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.7.3) -- C:\Program Files (x86)\uTorrentBar\tbuTo1.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg64.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [TouchORB] . (.Acer Corp. - Acer Touch Portal Button Monitor.) -- C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [THXCfg64] C:\Windows\system32\THXCfg64.dll (.not file.)
O4 - HKLM\..\Run: [TouchPortal] . (.Acer Corp. - TouchPortal.) -- C:\Program Files (x86)\Packard Bell\Packard Bell Touch Suite\TouchPortal.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [EPSON SX410 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [EPSON SX410 Series (Copie 1)] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.exe
O4 - HKLM\..\Wow6432Node\Run: [Hotkey Utility] . (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Wow6432Node\Run: [OOTag] . (.Microsoft - OOTag.) -- C:\Program Files (x86)\Packard Bell\OOBEOffer\OOTag.exe
O4 - HKLM\..\Wow6432Node\Run: [THX Audio Control Panel] . (.Creative Technology Ltd - THXAudio.) -- C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdReg] . (.Creative Technology Ltd. - Creative UpdReg.) -- C:\Windows\UpdReg.exe
O4 - HKLM\..\Wow6432Node\Run: [UCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [YouCam Mirror Tray icon] . (.CyberLink Corp. - CyberLink YouCam Tray.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe
O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [EPSON SX410 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-871234975-935591473-2569821333-1001\..\Run: [EPSON SX410 Series (Copie 1)] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Moovida.lnk . (.Fluendo Embedded.) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe
O4 - Global Startup: C:\Users\bibi\Desktop\CyberLink YouCam.lnk . (.CyberLink Corp..) -- C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Départ Ski Challenge 11 (TSR).lnk . (...) -- C:\Games\Ski Challenge 11 (TSR)\Updater.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Easy Audio Cutter.lnk . (.Koyote Soft.) -- C:\Program Files (x86)\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Free CD Ripper.lnk . (.Koyote Soft.) -- C:\Program Files (x86)\Free Audio Pack\Free CD Ripper\FreeCDRipper.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Free Mp3 Wma Converter.lnk . (.Koyote Soft.) -- C:\Program Files (x86)\Free Audio Pack\FreeConverter\FreeConverter.exe
O4 - Global Startup: C:\Users\bibi\Desktop\Microsoft Word Starter 2010.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
O4 - Global Startup: C:\Users\bibi\Desktop\Moovida.lnk . (.Fluendo Embedded.) -- C:\Program Files (x86)\Fluendo\Moovida\Moovida.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Messaging.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Picasa3\Picasa3.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - hp.lnk . (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
O4 - Global Startup: C:\Users\bibi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{5B019628-652C-4D3D-9921-D6AADF51D430}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{5B019628-652C-4D3D-9921-D6AADF51D430}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{5B019628-652C-4D3D-9921-D6AADF51D430}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.exe
O23 - Service: (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.exe
O23 - Service: (FLEXnet Licensing Service) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: (ForceWare Intelligent Application Manager (IAM)) . (.Pas de propriétaire - app_filter Module.) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
O23 - Service: (GamesAppService) . (.WildTangent, Inc. - GamesAppService.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: (MEMSWEEP2) . (.Sophos Plc - Memsweep kernel driver.) - C:\Windows\system32\7FA8.tmp
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: (nSvcIp) . (.Pas de propriétaire - NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
O23 - Service: (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 196.6.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8C99FCBE6BBCC428B7AF807B643DD86E] [APT] [Burn Notification] (.Acer.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\NotificationCenter\Notification.exe
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ALTools Update - (.ESTsoft Corp..) [HKLM][64Bits] -- ALUpdate_is1
O42 - Logiciel: ALZip - (.ESTsoft Corp..) [HKLM][64Bits] -- ALZip_is1
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 8.0
O42 - Logiciel: Adobe Reader X (10.0.1) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA0000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: AirRivals_FR 1.0.0.1 - (.Pas de propriétaire.) [HKLM][64Bits] -- AirRivals_FR_is1
O42 - Logiciel: Bejeweled - (.WildTangent.) [HKLM][64Bits] -- WTA-da066c3a-4657-4635-baff-c0a9ca096398
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-360f49ee-b3ef-4771-981e-f4649c1b36fc
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT078960
O42 - Logiciel: Bob the Builder Can-Do-Zoo - (.WildTangent.) [HKLM][64Bits] -- WT078964
O42 - Logiciel: Build-a-lot 2 - (.WildTangent.) [HKLM][64Bits] -- WT079363
O42 - Logiciel: CANAL+ pour Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2A6B1A0-C1E3-4311-BF86-EAF18841FD67}
O42 - Logiciel: Chicken Invaders 3 - Revenge of the Yolk - (.WildTangent.) [HKLM][64Bits] -- WT079366
O42 - Logiciel: Conduit Engin - (.Conduit Ltd.) [HKLM][64Bits] -- conduitEngine
O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}
O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- {80E158EA-7181-40FE-A701-301CE6BE64AB}
O42 - Logiciel: CyberLink Touch Browser - (.CyberLink Corp..) [HKLM][64Bits] -- {74D911AE-4A04-4481-902F-7B496E721F7F}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Désinstaller l'imprimante EPSON SX410 Series - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX410 Series
O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {87C2248A-C7DD-49ED-9BCD-B312A9D0819E}
O42 - Logiciel: Escape Rosecliff Island - (.WildTangent.) [HKLM][64Bits] -- WT079395
O42 - Logiciel: FATE - The Traitor Soul - (.WildTangent.) [HKLM][64Bits] -- WT079024
O42 - Logiciel: Faerie Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT079020
O42 - Logiciel: Free Mp3 Wma Converter V 1.95 - (.Koyote Soft.) [HKLM][64Bits] -- Free Mp3 Wma Converter_is1
O42 - Logiciel: Free TV Radio - (.Secure Digital Services.) [HKLM][64Bits] -- {38470B46-9BF1-40AE-A588-F6AD6D1C2D42}
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Geonaute Software - (.Geonaute.) [HKLM][64Bits] -- {548CBD79-054A-42F1-A1DA-B4F3FEF490ED}_is1
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {FB4F9000-04FC-11E0-85D2-001AA037B01E}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: Hotkey Utility - (.Packard Bell.) [HKLM][64Bits] -- Hotkey Utility
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078806
O42 - Logiciel: Internet TV pour Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D318C86-AF4C-409F-A6AC-7183FF4CF424}
O42 - Logiciel: Java(TM) 6 Update 24 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216022FF}
O42 - Logiciel: Jewel Quest - (.WildTangent.) [HKLM][64Bits] -- WT079064
O42 - Logiciel: Jewel Quest Solitaire 3 - (.WildTangent.) [HKLM][64Bits] -- WT079068
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {918A9082-6287-4D25-9002-5E5D5E4971CB}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT079397
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Starter 2010 - Français - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140011-0066-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office « Démarrer en un clic » 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006D-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Office « Démarrer en un clic » 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.Click2Run
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Touch Pack for Windows 7 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FF90DB8-6DED-44A3-B182-244FEC09012F}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3898934B-05AE-41CD-96BE-70DA9BFBCE1F}
O42 - Logiciel: Microsoft XNA Framework Redistributable 3.1 - (.Microsoft Corporation.) [HKLM][64Bits] -- {19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Moovida - (.Fluendo.) [HKLM][64Bits] -- Moovida
O42 - Logiciel: Mozilla Firefox 4.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 4.0 (x86 fr)
O42 - Logiciel: Mozilla Firefox 4.0b12 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 4.0b12 (x86 fr)
O42 - Logiciel: Mozilla Thunderbird (3.1.8) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird (3.1.8)
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM] -- {7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM][64Bits] -- InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {f6cebfb7-5071-4a0b-9603-d37be1ffb4fb}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348B586-C9AE-46CE-936C-A68E9426E214}
O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM][64Bits] -- {4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: Nostale(FR) - (.Gameforge 4D GmbH.) [HKLM][64Bits] -- NosTale(FR)_is1
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {05653DE1-6567-40C6-B930-39D399B64369}
O42 - Logiciel: PL-2303 USB-to-Serial - (.Prolific Technology INC.) [HKLM][64Bits] -- {ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}
O42 - Logiciel: Packard Bell Game Console - (.WildTangent.) [HKLM][64Bits] -- Packard Bell Game Console
O42 - Logiciel: Packard Bell Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent packardbell Master Uninstall
O42 - Logiciel: Packard Bell InfoCentre - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell InfoCentre
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Registration
O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell .) [HKLM][64Bits] -- Packard Bell Screensaver
O42 - Logiciel: Packard Bell Software Suite SE - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Software Suite SE
O42 - Logiciel: Packard Bell Touch Suite - (.Packard Bell.) [HKLM][64Bits] -- {C652F86F-348A-4A65-8BE8-A3F7A6370D98}
O42 - Logiciel: Packard Bell Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM][64Bits] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT079108
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT079116
O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM][64Bits] -- WT079120
O42 - Logiciel: Polar Pool - (.WildTangent.) [HKLM][64Bits] -- WT079124
O42 - Logiciel: PopCap Browser Plugin - (.Pas de propriétaire.) [HKLM][64Bits] -- Plugin de navigateur PopCap
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Ski Challenge 11 (TSR) - (.Pas de propriétaire.) [HKCU] -- sc11-CH_TSR
O42 - Logiciel: Sophos Anti-Rootkit 1.5.4 - (.Sophos Plc.) [HKLM][64Bits] -- Sophos-AntiRootkit
O42 - Logiciel: THX TruStudio PRO - (.Creative Technology Limited.) [HKLM][64Bits] -- {97BE901A-9940-4ACF-9921-A6FAA284AC03}
O42 - Logiciel: TouchSettings - (.Packard Bell.) [HKLM][64Bits] -- {75880CD4-9436-4EDD-B7E7-400EBFD60B2C}
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VLC media player 1.1.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Virtual Earth 3D (Beta) - (.Microsoft Corporation.) [HKLM] -- {6ACE7F46-FACE-4125-AE86-672F4F2A6A28}
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WT079421
O42 - Logiciel: Virtual Villagers - A New Home - (.WildTangent.) [HKLM][64Bits] -- WT079177
O42 - Logiciel: Welcome Center - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Welcome Center
O42 - Logiciel: WildTangent Games App (HP Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp
O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: Windows Media Center Add-in for Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EDBEB2B-7C8D-42E6-8312-0F84394A3223}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Yahtzee - (.WildTangent.) [HKLM][64Bits] -- WT079184
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078833
O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM][64Bits] -- avast5
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {E0B19DF7-B1C7-4937-82C4-0E4B1E346965}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: uTorrentBar Toolbar - (.uTorrentBar.) [HKLM][64Bits] -- uTorrentBar Toolbar
O42 - Logiciel: µTorrent - (.Pas de propriétaire.) [HKLM][64Bits] -- uTorrent
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AhnLab]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\AppDataLow\Software\conduitEngine]
[HKCU\Software\AppDataLow\Software\uTorrentBar]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\BitTorrent]
[HKCU\Software\Bugsplat]
[HKCU\Software\ClassesB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Creative Tech]
[HKCU\Software\CyberLink]
[HKCU\Software\EPSON]
[HKCU\Software\ESTsoft]
[HKCU\Software\FissaSearch]
[HKCU\Software\FreeCDRIP]
[HKCU\Software\Gameforge4d]
[HKCU\Software\Google]
[HKCU\Software\Greentube]
[HKCU\Software\HipSoft]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\MainConcept (Adobe2)]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Marseillesoft]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\OEM]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Pando Networks]
[HKCU\Software\Policies]
[HKCU\Software\PopCap]
[HKCU\Software\Realtek]
[HKCU\Software\Spointer]
[HKCU\Software\SuperSoftwarePackage]
[HKCU\Software\Trolltech]
[HKCU\Software\Usbfix]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\freeTVRadio]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AcerUtil]
[HKLM\Software\Acer]
[HKLM\Software\Adobe]
[HKLM\Software\AirRivalsFR]
[HKLM\Software\AirRivals_FR]
[HKLM\Software\Audible]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Creative Tech]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\Debug]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EPSON]
[HKLM\Software\ESTsoft]
[HKLM\Software\Geonaute]
[HKLM\Software\Google]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OemSetup]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Packard Bell]
[HKLM\Software\Pando Networks]
[HKLM\Software\Policies]
[HKLM\Software\PopCap]
[HKLM\Software\Prolific Technology INC]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Riot Games]
[HKLM\Software\SRS Labs]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\TrendMicro]
[HKLM\Software\VideoLAN]
[HKLM\Software\Waves Audio]
[HKLM\Software\WildTangent]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\freeTVRadio]
[HKLM\Software\mozilla.org]
[HKLM\Software\uTorrentBar]
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/11/2010 - 16:49:56 - [160438749] ----D- C:\Program Files\Alwil Software
O43 - CFD: 25/03/2011 - 21:51:12 - [0] ----D- C:\Program Files\Babylon
O43 - CFD: 14/11/2010 - 21:05:48 - [83510531] ----D- C:\Program Files\Common Files
O43 - CFD: 07/07/2009 - 10:53:34 - [90257428] ----D- C:\Program Files\DVD Maker
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 13/05/2010 - 04:57:04 - [1292368] ----D- C:\Program Files\Google
O43 - CFD: 15/04/2011 - 03:22:44 - [5174813] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/07/2009 - 09:45:56 - [148930098] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 13/11/2010 - 14:18:06 - [1584815] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 07/07/2009 - 01:13:24 - [78892958] ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 13/05/2010 - 05:10:32 - [17577906] ----D- C:\Program Files\Packard Bell
O43 - CFD: 10/11/2010 - 15:31:52 - [252321] ----D- C:\Program Files\PB Accessory Store
O43 - CFD: 13/05/2010 - 04:53:40 - [1825075] ----D- C:\Program Files\Preload
O43 - CFD: 07/07/2009 - 01:06:06 - [14548512] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [36253865] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 07/07/2009 - 10:53:34 - [4039168] ----D- C:\Program Files\Windows Defender
O43 - CFD: 07/07/2009 - 10:53:34 - [9224824] ----D- C:\Program Files\Windows Journal
O43 - CFD: 12/11/2010 - 18:29:42 - [43896] ----D- C:\Program Files\Windows Live
O43 - CFD: 17/12/2010 - 04:18:26 - [6667264] ----D- C:\Program Files\Windows Mail
O43 - CFD: 11/11/2010 - 12:52:34 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 10/11/2010 - 15:31:30 - [12627124] ----D- C:\Program Files\Windows NT
O43 - CFD: 07/07/2009 - 10:53:34 - [5516568] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 07:32:40 - [235008] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 07/07/2009 - 10:53:34 - [7044255] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 07/03/2011 - 22:12:24 - [70889090] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 07/07/2009 - 10:53:34 - [12009971] ----D- C:\Program Files\Common Files\System
O43 - CFD: 13/05/2010 - 04:53:40 - [160] ----D- C:\ProgramData\Acer
O43 - CFD: 22/11/2010 - 08:06:22 - [681795260] ----D- C:\ProgramData\Adobe
O43 - CFD: 10/11/2010 - 16:49:56 - [36383061] ----D- C:\ProgramData\Alwil Software
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 13/05/2010 - 04:46:34 - [216597504] ----D- C:\ProgramData\Applications
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 10/11/2010 - 17:31:38 - [11841] ----D- C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 12/12/2010 - 13:34:22 - [144] ----D- C:\ProgramData\Driver Mender
O43 - CFD: 12/12/2010 - 11:50:48 - [0] ----D- C:\ProgramData\eMule
O43 - CFD: 12/12/2010 - 14:24:28 - [8844777] ----D- C:\ProgramData\EPSON
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 21/11/2010 - 19:01:32 - [43883] ----D- C:\ProgramData\FLEXnet
O43 - CFD: 29/12/2010 - 16:04:56 - [427404] ----D- C:\ProgramData\Geonaute
O43 - CFD: 13/05/2010 - 04:57:06 - [1045699] ----D- C:\ProgramData\Google
O43 - CFD: 20/03/2011 - 18:43:04 - [193964] ----D- C:\ProgramData\HipSoft
O43 - CFD: 27/03/2011 - 14:03:44 - [110736] ----D- C:\ProgramData\InterAction studios
O43 - CFD: 16/04/2011 - 21:25:04 - [6569514] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 21/11/2010 - 17:59:48 - [1082] ----D- C:\ProgramData\McAfee
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 23/04/2011 - 08:39:36 - [2262133492] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 10/11/2010 - 15:31:30 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 13/05/2010 - 04:59:08 - [11106138] ----D- C:\ProgramData\Nero
O43 - CFD: 14/11/2010 - 21:12:30 - [13216] ----D- C:\ProgramData\Norton
O43 - CFD: 13/05/2010 - 05:07:32 - [6698810] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 07/07/2009 - 01:04:32 - [273405] ----D- C:\ProgramData\NVIDIA
O43 - CFD: 12/11/2010 - 09:06:14 - [144] ----D- C:\ProgramData\OEM
O43 - CFD: 13/05/2010 - 04:55:36 - [960203] ----D- C:\ProgramData\Packard Bell
O43 - CFD: 18/12/2010 - 23:42:32 - [1030] ----D- C:\ProgramData\Partner
O43 - CFD: 01/02/2011 - 18:56:00 - [432] ----D- C:\ProgramData\PMB Files
O43 - CFD: 13/11/2010 - 10:23:36 - [5916421] ----D- C:\ProgramData\PopCap
O43 - CFD: 21/11/2010 - 22:54:20 - [2316513] ----D- C:\ProgramData\PopCap Games
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 07/03/2011 - 22:13:36 - [154] ----D- C:\ProgramData\Sun
O43 - CFD: 07/07/2009 - 01:18:18 - [110592] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 12/12/2010 - 14:18:12 - [3498] ----D- C:\ProgramData\UDL
O43 - CFD: 13/11/2010 - 16:34:22 - [0] ----D- C:\ProgramData\VirtualizedApplications
O43 - CFD: 10/11/2010 - 21:54:46 - [8331120] ----D- C:\ProgramData\Wild Tangent
O43 - CFD: 01/04/2011 - 20:08:08 - [1141817931] ----D- C:\ProgramData\WildTangent
O43 - CFD: 02/01/2011 - 16:25:02 - [21100536] ----D- C:\Users\bibi\AppData\Roaming\Adobe
O43 - CFD: 02/01/2011 - 16:25:02 - [59] ----D- C:\Users\bibi\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 10/11/2010 - 17:31:28 - [1675098] ----D- C:\Users\bibi\AppData\Roaming\CyberLink
O43 - CFD: 12/12/2010 - 20:41:36 - [889] ----D- C:\Users\bibi\AppData\Roaming\EPSON
O43 - CFD: 13/11/2010 - 10:28:50 - [1392978] ----D- C:\Users\bibi\AppData\Roaming\ESTsoft
O43 - CFD: 20/03/2011 - 18:40:58 - [1165] ----D- C:\Users\bibi\AppData\Roaming\Faerie Solitaire
O43 - CFD: 20/04/2011 - 17:42:20 - [259] ----D- C:\Users\bibi\AppData\Roaming\FreeAudioPack
O43 - CFD: 20/04/2011 - 17:44:34 - [478] ----D- C:\Users\bibi\AppData\Roaming\FreeCDRipper
O43 - CFD: 20/11/2010 - 22:07:28 - [677] ----D- C:\Users\bibi\AppData\Roaming\freeTVRadio
O43 - CFD: 10/11/2010 - 15:37:38 - [48] ----D- C:\Users\bibi\AppData\Roaming\Google
O43 - CFD: 10/11/2010 - 15:34:52 - [0] ----D- C:\Users\bibi\AppData\Roaming\Identities
O43 - CFD: 12/12/2010 - 14:17:58 - [0] ----D- C:\Users\bibi\AppData\Roaming\InstallShield
O43 - CFD: 02/02/2011 - 18:27:58 - [0] ----D- C:\Users\bibi\AppData\Roaming\LolClient
O43 - CFD: 10/11/2010 - 15:35:20 - [108480] ----D- C:\Users\bibi\AppData\Roaming\Macromedia
O43 - CFD: 16/04/2011 - 21:25:28 - [6749235] ----D- C:\Users\bibi\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:44:40 - [0] ----D- C:\Users\bibi\AppData\Roaming\Media Center Programs
O43 - CFD: 10/02/2011 - 19:05:40 - [18894044] -S--D- C:\Users\bibi\AppData\Roaming\Microsoft
O43 - CFD: 21/11/2010 - 19:11:28 - [596017] ----D- C:\Users\bibi\AppData\Roaming\moovida-1
O43 - CFD: 10/11/2010 - 16:53:16 - [71402973] ----D- C:\Users\bibi\AppData\Roaming\Mozilla
O43 - CFD: 22/12/2010 - 18:28:42 - [240] ----D- C:\Users\bibi\AppData\Roaming\Nero
O43 - CFD: 10/11/2010 - 15:35:24 - [0] ----D- C:\Users\bibi\AppData\Roaming\OEM
O43 - CFD: 08/03/2011 - 09:46:40 - [2057790] ----D- C:\Users\bibi\AppData\Roaming\OpenOffice.org
O43 - CFD: 10/11/2010 - 18:38:20 - [2003466] ----D- C:\Users\bibi\AppData\Roaming\PowerCinema
O43 - CFD: 10/02/2011 - 20:00:14 - [93218] ----D- C:\Users\bibi\AppData\Roaming\Shareaza
O43 - CFD: 16/04/2011 - 22:41:58 - [6454795] ----D- C:\Users\bibi\AppData\Roaming\SoftGrid Client
O43 - CFD: 04/03/2011 - 08:58:06 - [18356833] ----D- C:\Users\bibi\AppData\Roaming\Thunderbird
O43 - CFD: 19/12/2010 - 16:55:42 - [4349803] ----D- C:\Users\bibi\AppData\Roaming\TouchGadget
O43 - CFD: 13/11/2010 - 14:19:02 - [0] ----D- C:\Users\bibi\AppData\Roaming\TP
O43 - CFD: 23/04/2011 - 08:47:06 - [677437] ----D- C:\Users\bibi\AppData\Roaming\uTorrent
O43 - CFD: 08/03/2011 - 21:28:34 - [1103578] ----D- C:\Users\bibi\AppData\Roaming\vlc
O43 - CFD: 19/12/2010 - 16:24:18 - [671] ----D- C:\Users\bibi\AppData\Roaming\WildTangent
O43 - CFD: 27/11/2010 - 20:36:18 - [0] ----D- C:\Users\bibi\AppData\Roaming\Windows Live Writer
O43 - CFD: 13/11/2010 - 10:29:20 - [12] ----D- C:\Users\bibi\AppData\Roaming\WinRAR
O43 - CFD: 21/11/2010 - 19:04:16 - [15230130] ----D- C:\Users\bibi\Appdata\Local\Adobe
O43 - CFD: 10/11/2010 - 15:31:40 - [0] -SH-D- C:\Users\bibi\Appdata\Local\Application Data
O43 - CFD: 10/11/2010 - 17:56:28 - [98876] ----D- C:\Users\bibi\Appdata\Local\assembly
O43 - CFD: 04/03/2011 - 11:42:06 - [13883509] ----D- C:\Users\bibi\Appdata\Local\CrashDumps
O43 - CFD: 10/11/2010 - 17:24:50 - [48959] ----D- C:\Users\bibi\Appdata\Local\CyberLink
O43 - CFD: 23/01/2011 - 02:00:18 - [0] ----D- C:\Users\bibi\Appdata\Local\Diagnostics
O43 - CFD: 12/12/2010 - 11:50:48 - [11990] ----D- C:\Users\bibi\Appdata\Local\eMule
O43 - CFD: 14/04/2011 - 19:24:00 - [554498] ----D- C:\Users\bibi\Appdata\Local\freetvradio Air
O43 - CFD: 29/12/2010 - 16:25:14 - [11946] ----D- C:\Users\bibi\Appdata\Local\Geonaute
O43 - CFD: 18/12/2010 - 23:50:42 - [163842914] ----D- C:\Users\bibi\Appdata\Local\Google
O43 - CFD: 10/11/2010 - 15:31:40 - [0] -SH-D- C:\Users\bibi\Appdata\Local\Historique
O43 - CFD: 10/11/2010 - 17:56:22 - [706414] ----D- C:\Users\bibi\Appdata\Local\IsolatedStorage
O43 - CFD: 22/12/2010 - 18:27:42 - [374974883] ----D- C:\Users\bibi\Appdata\Local\Microsoft
O43 - CFD: 14/11/2010 - 15:27:36 - [1264683] ----D- C:\Users\bibi\Appdata\Local\Microsoft Games
O43 - CFD: 26/03/2011 - 09:04:44 - [551628] ----D- C:\Users\bibi\Appdata\Local\moovida Air
O43 - CFD: 10/11/2010 - 16:53:02 - [467172046] ----D- C:\Users\bibi\Appdata\Local\Mozilla
O43 - CFD: 10/02/2011 - 04:17:48 - [201544] ----D- C:\Users\bibi\Appdata\Local\PMB Files
O43 - CFD: 14/11/2010 - 20:27:18 - [195251] ----D- C:\Users\bibi\Appdata\Local\Shareaza
O43 - CFD: 13/11/2010 - 14:18:54 - [5734400] ----D- C:\Users\bibi\Appdata\Local\SoftGrid Client
O43 - CFD: 23/04/2011 - 08:53:56 - [184837485] ----D- C:\Users\bibi\Appdata\Local\Temp
O43 - CFD: 10/11/2010 - 15:31:40 - [0] -SH-D- C:\Users\bibi\Appdata\Local\Temporary Internet Files
O43 - CFD: 04/03/2011 - 08:58:06 - [5736763] ----D- C:\Users\bibi\Appdata\Local\Thunderbird
O43 - CFD: 29/12/2010 - 16:31:30 - [14514442] ----D- C:\Users\bibi\Appdata\Local\VirtualStore
O43 - CFD: 15/04/2011 - 05:34:04 - [86016] ----D- C:\Users\bibi\Appdata\Local\Windows Live
O43 - CFD: 27/11/2010 - 20:36:26 - [372494] ----D- C:\Users\bibi\Appdata\Local\Windows Live Writer
O43 - CFD: 21/11/2010 - 18:03:48 - [890977283] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 25/03/2011 - 21:46:12 - [0] ----D- C:\Program Files (x86)\Babylon
O43 - CFD: 10/04/2011 - 09:53:12 - [516135758]
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Utilisateur anonyme
23 avril 2011 à 09:03
23 avril 2011 à 09:03
Re,
Stp refais ce qui j'ai dit en haut et poste le rapport de ZHPDiag comme suit :
Hébergement de rapport sur pjjoint.malekal.com
* Rends toi sur http://pjjoint.malekal.com/
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux heberger et clique sur Ouvrir
*Clique sur le bouton Envoyer
* Un message de confirmation s'affiche, copie le lien dans ta prochaine réponse.
@+
Stp refais ce qui j'ai dit en haut et poste le rapport de ZHPDiag comme suit :
Hébergement de rapport sur pjjoint.malekal.com
* Rends toi sur http://pjjoint.malekal.com/
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux heberger et clique sur Ouvrir
*Clique sur le bouton Envoyer
* Un message de confirmation s'affiche, copie le lien dans ta prochaine réponse.
@+
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 294
Modifié par Destrio5 le 23/04/2011 à 13:50
Modifié par Destrio5 le 23/04/2011 à 13:50
Bonjour à vous deux,
Voici les rapports UsbFix et ZHPDiag de silk :
############################## | UsbFix 7.044 | [Recherche]
Utilisateur: bibi (Administrateur) # BIBI-PC [Packard Bell oneTwo M3351]
Mis à jour le 21/04/2011 par TeamXscript
Lancé à 11:11:20 | 23/04/2011
Site Web: http://www.teamxscript.org
Submit your sample: http://www.teamxscript.org/Upload.php
Contact: TeamXscript.ElDesaparecido@gmail.com
CPU: AMD Athlon(tm) II X2 215 Processor
CPU 2: AMD Athlon(tm) II X2 215 Processor
Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit) #
Internet Explorer 8.0.7600.16385
Pare-feu Windows: Activé
RAM -> 3839 Mo
C:\ (%systemdrive%) -> Disque fixe # 291 Go (233 Go libre(s) - 80%) [Packard Bell] # NTFS
D:\ -> Disque fixe # 291 Go (291 Go libre(s) - 100%) [Data] # NTFS
E:\ -> CD-ROM
################## | Éléments infectieux |
Présent! C:\Users\bibi\AppData\Local\Temp\TCD61ED.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD620E.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD6461.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD64D0.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD687A.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD6B2A.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD6B6B.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD6DEC.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD74F0.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD787B.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD7A32.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD7CD3.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD7D32.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD8060.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD838D.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD8479.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD865E.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD94C2.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9763.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD98BC.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9A34.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9B4F.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9BBE.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9E5F.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9FA9.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDA20B.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDA20D.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDA5B7.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDBCC2.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDBEF6.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDC05E.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDC1E6.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDC2D2.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDC351.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\Update.exe
################## | Registre |
Présent! HKLM\software\microsoft\windows nt\currentversion\winlogon|Taskman
################## | Mountpoints2 |
################## | Vaccin |
(!) Cet ordinateur n'est pas vacciné!
################## | E.O.F |
https://pjjoint.malekal.com/files.php?id=00f67dfc93141013
Voici les rapports UsbFix et ZHPDiag de silk :
############################## | UsbFix 7.044 | [Recherche]
Utilisateur: bibi (Administrateur) # BIBI-PC [Packard Bell oneTwo M3351]
Mis à jour le 21/04/2011 par TeamXscript
Lancé à 11:11:20 | 23/04/2011
Site Web: http://www.teamxscript.org
Submit your sample: http://www.teamxscript.org/Upload.php
Contact: TeamXscript.ElDesaparecido@gmail.com
CPU: AMD Athlon(tm) II X2 215 Processor
CPU 2: AMD Athlon(tm) II X2 215 Processor
Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit) #
Internet Explorer 8.0.7600.16385
Pare-feu Windows: Activé
RAM -> 3839 Mo
C:\ (%systemdrive%) -> Disque fixe # 291 Go (233 Go libre(s) - 80%) [Packard Bell] # NTFS
D:\ -> Disque fixe # 291 Go (291 Go libre(s) - 100%) [Data] # NTFS
E:\ -> CD-ROM
################## | Éléments infectieux |
Présent! C:\Users\bibi\AppData\Local\Temp\TCD61ED.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD620E.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD6461.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD64D0.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD687A.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD6B2A.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD6B6B.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD6DEC.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD74F0.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD787B.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD7A32.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD7CD3.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD7D32.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD8060.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD838D.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD8479.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD865E.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD94C2.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9763.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD98BC.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9A34.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9B4F.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9BBE.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9E5F.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCD9FA9.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDA20B.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDA20D.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDA5B7.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDBCC2.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDBEF6.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDC05E.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDC1E6.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDC2D2.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\TCDC351.tmp
Présent! C:\Users\bibi\AppData\Local\Temp\Update.exe
################## | Registre |
Présent! HKLM\software\microsoft\windows nt\currentversion\winlogon|Taskman
################## | Mountpoints2 |
################## | Vaccin |
(!) Cet ordinateur n'est pas vacciné!
################## | E.O.F |
https://pjjoint.malekal.com/files.php?id=00f67dfc93141013
