Scan ad -remover / validation ?

Fermé

marcelloD - 7 mai 2011 à 21:48
pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 - 17 mai 2011 à 21:17

Bonjour,

voivi mopn rapport de scan de ad- remover

merci de me dire si je peux lancer la fonction "nettoyer" en toute sécurité

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 21:36:01 le 07/05/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
Marcello@MARCELLO-TOSH (TOSHIBA Satellite L655)

============== RECHERCHE ==============

Dossier trouvé: C:\Users\Marcello\AppData\Roaming\EoRezo
Dossier trouvé: C:\Users\Rosemonde\AppData\Roaming\EoRezo
Dossier trouvé: C:\Program Files (x86)\EoRezo

Clé trouvée: HKLM\Software\EoRezo
Clé trouvée: HKCU\Software\EoRezo
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1

Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eoengine
Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eoweather
Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eorezo

============== SCAN ADDITIONNEL ==============

**** Internet Explorer Version [8.0.7601.17514] ****

HKCU_Main|Default_Page_URL - hxxp://toshiba.msn.com
HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKCU_Main|Start Page - hxxp://www.google.fr/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157
AboutUrls|Tabs - hxxp://y.lo.st
HKCU_SearchScopes\{2C33843B-5ED2-4D76-8204-8A7561CD4BA6} - "?" (?)
HKCU_SearchScopes\{394FF984-A39D-490E-B05C-A01923507598} - "eBay" (hxxp://rover.ebay.com/rover/1/709-44555-9400-8/4?satitle={searchTerms})
HKCU_SearchScopes\{D67E9076-59EE-432D-897B-83B6BF8CF230} - "?" (?)
HKLM_Toolbar|{381FFDE8-2394-4F90-B10D-FC6124A40F8C} (C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll)
HKCU_ElevationPolicy\{1F102A6F-495A-4BCD-9FC9-7BD658CA47E4} - C:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe (OpenOffice.org)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{80B84A0A-EDA4-47FD-8BE1-6B49F4197BE6} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\about.exe\about.ex (x)
HKLM_ElevationPolicy\{B2321D2F-1154-4d97-AD3E-2FE0BAE2897B} - C:\Program Files (x86)\SFR\Kit\9launch.exe (SFR)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{EE0DF950-5C7F-4261-8CFA-AE01D71FD9BD} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\SetupUtility.exe (<TOSHIBA>)
HKLM_ElevationPolicy\{F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\MTSProc.exe (<TOSHIBA>)
BHO\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - "Objet d'aide à la navigation SFR" (C:\Program Files (x86)\SFR\Kit\SFRNavErrorHelper.dll)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll)
BHO\{F3C88694-EFFA-4d78-B409-54B7B2535B14} - "TOSHIBA Media Controller Plug-in" (C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 1 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 07/05/2011 21:36:10 (3790 Octet(s))

Fin à: 21:36:46, 07/05/2011

============== E.O.F ==============

A voir également:

Scan ad -remover / validation ?
Pdf watermark remover - Télécharger - PDF
Scan qr code pc - Guide
Scan now - Guide
Trojan remover - Télécharger - Antivirus & Antimalwares
Ad remover - Télécharger - Antivirus & Antimalwares

2 réponses

Réponse 1 / 2

pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
7 mai 2011 à 21:53

Bonsoir,

Nettoyage:

/!\ Ferme toutes tes applications ouvertes. /!\

▶ Double-clique sur l'icône Ad-remover située sur ton Bureau.

▶ Sur la page, clique sur le bouton « Nettoyer »

▶ Confirme l'opération

▶ Laisse travailler l'outil.

▶ Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report.

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Tuto

Ensuite :

Nous allons faire un petit diagnostic de ton PC pour cela :

==> Télécharge ZHPDiag (de Nicolas Coolman)

==> si ça ne marche pas, essaye de la télécharger ici

==> Enregistre le sur ton Bureau.

Une fois le téléchargement achevé,

==> Si vous êtes sous Vista/Seven pensez à faire clique droit éxécuter en tant qu'administrateur.
clique sur suivant pour lancer l'installation dans la fenêtre qui s'ouvre.

==> Pour XP lancer ZHPDiag.exe et clique sur suivant pour lancer l'installation dans la fenêtre qui s'ouvre.

==> Clique sur le tournevis en haut à droite (option) puis cocher toutes les cases des options.

==> Clique sur la loupe pour lancer l'analyse.

A la fin de l'analyse,

==> Clique sur l'appareil photo où disquette et enregistre le rapport sur ton Bureau.

Pour me le transmettre clique sur ce lien :

http://www.cijoint.fr/

==> Clique sur Parcourir et cherche le fichier ZHPDiag.txt

==> Clique sur Ouvrir.

==> Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt

est ajouté dans la page.

==> Copie ce lien dans ta réponse.

marcelloD
7 mai 2011 à 22:33

bonsoir pimprenelle 27

je viens de terminer le nettoyage, voici le rapport

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 22:17:21 le 07/05/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
Marcello@MARCELLO-TOSH (TOSHIBA Satellite L655)

============== ACTION(S) ==============

Dossier supprimé: C:\Users\Marcello\AppData\Roaming\EoRezo
Dossier supprimé: C:\Users\Rosemonde\AppData\Roaming\EoRezo
Dossier supprimé: C:\Program Files (x86)\EoRezo

(!) -- Fichiers temporaires supprimés.

Clé supprimée: HKLM\Software\EoRezo
Clé supprimée: HKCU\Software\EoRezo
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1

Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eoengine
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eoweather
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Eorezo

============== SCAN ADDITIONNEL ==============

**** Internet Explorer Version [8.0.7601.17514] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_SearchScopes\{2C33843B-5ED2-4D76-8204-8A7561CD4BA6} - "?" (?)
HKCU_SearchScopes\{394FF984-A39D-490E-B05C-A01923507598} - "eBay" (hxxp://rover.ebay.com/rover/1/709-44555-9400-8/4?satitle={searchTerms})
HKCU_SearchScopes\{D67E9076-59EE-432D-897B-83B6BF8CF230} - "?" (?)
HKLM_Toolbar|{381FFDE8-2394-4F90-B10D-FC6124A40F8C} (C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll)
HKCU_ElevationPolicy\{1F102A6F-495A-4BCD-9FC9-7BD658CA47E4} - C:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe (OpenOffice.org)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{80B84A0A-EDA4-47FD-8BE1-6B49F4197BE6} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\about.exe\about.ex (x)
HKLM_ElevationPolicy\{B2321D2F-1154-4d97-AD3E-2FE0BAE2897B} - C:\Program Files (x86)\SFR\Kit\9launch.exe (SFR)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{EE0DF950-5C7F-4261-8CFA-AE01D71FD9BD} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\SetupUtility.exe (<TOSHIBA>)
HKLM_ElevationPolicy\{F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\MTSProc.exe (<TOSHIBA>)
BHO\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - "Objet d'aide à la navigation SFR" (C:\Program Files (x86)\SFR\Kit\SFRNavErrorHelper.dll)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll)
BHO\{F3C88694-EFFA-4d78-B409-54B7B2535B14} - "TOSHIBA Media Controller Plug-in" (C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 196 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 15 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 07/05/2011 22:17:25 (4016 Octet(s))
C:\Ad-Report-SCAN[1].txt - 07/05/2011 21:36:10 (3928 Octet(s))

Fin à: 22:18:21, 07/05/2011

============== E.O.F ==============

est il nécessaire de continuer la procédure que tu m'as indiqué ??

il est tard ... ;-(( ...

merci de ta réponse et de tes conseils

M

pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
7 mai 2011 à 22:46

oui il est nécessaire de continuer la procédure afin de vérifier s'il n'y a rien d'autres qui traine de voir si ton pc est à jour et de faire un peu d'optimisation je pense.

marcelloD
7 mai 2011 à 22:54

bon ben voilà :

http://www.cijoint.fr/cjlink.php?file=cj201105/cijwC8rMII.txt

marcelloD
7 mai 2011 à 22:54

bon ben voilà :

http://www.cijoint.fr/cjlink.php?file=cj201105/cijwC8rMII.txt

marcelloD
7 mai 2011 à 22:55

et merci encore de tes conseils !!

tout va bien dans mon PC ???

;-)

Réponse 2 / 2

pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
9 mai 2011 à 10:18

Bonjour,

C'est bon,

Pensez à mettre à jour Malwarebyte's Anti-Malware si vous l'avez déjà sur votre bureau.

▶ Télécharge https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/

▶ Fais la mise à jour du logiciel (elle se fait normalement à l'installation)

▶ Lance une analyse complète en cliquant sur "Exécuter un examen complet"

▶ Sélectionnes les disques que tu veux analyser et cliques sur "Lancer l'examen"

▶ L'analyse peut durer un bon moment.....

▶ Une fois l'analyse terminée, cliques sur "OK" puis sur "Afficher les résultats"

▶ Vérifies que tout est bien coché et cliques sur "Supprimer la sélection" => et ensuite sur "OK"

▶ Un rapport va s'ouvrir dans le bloc note... Fais un copié/collé du rapport dans ta prochaine réponse sur le forum

* Il se pourrait que certains fichiers devront être supprimés au redémarrage du PC... Faites le en cliquant sur "oui" à la question posée

marcelloD
10 mai 2011 à 22:12

bonjour,

j'ai lancé Malwarebyte's Anti-Malware .... infection détectée ( toujours eorezo !!!)

voici le rapport après suppression :

Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org

Version de la base de données: 6548

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

10/05/2011 22:01:22
mbam-log-2011-05-10 (22-01-22).txt

Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 305752
Temps écoulé: 36 minute(s), 53 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 3

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\program files (x86)\ad-remover\quarantine\C\program files (x86)\EoRezo\eorezobho.dll.vir (Rogue.Eorezo) -> Quarantined and deleted successfully.
c:\program files (x86)\ad-remover\quarantine\C\Users\Marcello\AppData\Roaming\EoRezo\softwareupdate\softwareupdate.exe.vir (Rogue.Eorezo) -> Quarantined and deleted successfully.
c:\program files (x86)\ad-remover\quarantine\C\Users\Marcello\AppData\Roaming\EoRezo\softwareupdate\softwareupdatehp.exe.vir (Rogue.Eorezo) -> Quarantined and deleted successfully.

===================================================================

je pense qu on en a fini avec cette saloperie !

Merci chaleureusement de votre aide. je ne pense pas qu il reste a faire qq chose non ?

M.

pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
11 mai 2011 à 11:31

Bonjour,

Si si il reste encore des choses à faire le nettoyage et optimisation de fin peux tu me refaire un rapport ZHP afin d'être sur que EOREZO soit partit.

marcelloD
14 mai 2011 à 12:50

voici le rapport

Rapport de ZHPDiag v1.27.200 par Nicolas Coolman, Update du 04/05/2011
Run by Marcello at 14/05/2011 12:46:01
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421 (Defaut)

---\\ System Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3958 MB (49% free)
System Restore: Activé (Enable)
System drive C: has 240 GB (80%) free of 298 GB

---\\ Logged in mode
Computer Name: MARCELLO-TOSH
User Name: Marcello
All Users Names: Rosemonde, Marcello, HomeGroupUser$, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=C:\Users\Marcello\AppData\Roaming
%LocalAppData%=C:\Users\Marcello\AppData\Local
%StartMenu%=C:\Users\Marcello\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 240 Go of 298 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 289 Go of 298 Go)
E:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/05/2011 20:04:15.) -- C:\Windows\system32\wininet.dll [1126912]

---\\ Processus lancés
[MD5.2723464509882A9CA0B94E6B3929FC13] - (.BitDefender S.R.L. - Pas de description.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe [64048]
[MD5.86E69581356CA45167EA6986B6E29087] - (.TOSHIBA CORPORATION - ConfigFree Task Tray Menu.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [304560]
[MD5.CFCB4F1C6DBE8A5DC0B8DBF058E2586A] - (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe [976192]
[MD5.FA1E9F362E4E5F194E3256BA79936170] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216]
[MD5.F7E0783DA9043BC131BB37C77EDB04DF] - (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880]
[MD5.8A07221789D46B2EA7DFCA2BC807572A] - (.TOSHIBA CORPORATION - ConfigFree Switch Manager Process.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe [62848]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688]
[MD5.98D1E0D79612EDB5AE2C3B6F6E6D23AD] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10p_ActiveX.exe [235168]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336]
[MD5.57AC9224296DF9CB7ACD5921D52C35D2] - (.Microsoft Corporation - Microsoft Search Client Server.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe [311168]
[MD5.ADE63CBD832A9BDD96DCF013496312C5] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [645120]

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKUS\S-1-5-21-270467662-3968827973-2619572007-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-270467662-3968827973-2619572007-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: BitDefender Toolbar [64Bits] - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} . (.BitDefender S.R.L. - BitDefender Antiphishing Toolbar.) -- C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll

---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [TosReelTimeMonitor] . (.TOSHIBA Corporation - Monitor of TOSHIBA ReelTime.) -- C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
O4 - HKLM\..\Run: [TosNC] . (.TOSHIBA Corporation - Message Center.) -- C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TosSENotify] . (.TOSHIBA Corporation - Pas de description.) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
O4 - HKLM\..\Run: [Toshiba TEMPRO] . (.Toshiba Europe GmbH - Toshiba TEMPRO.) -- C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
O4 - HKLM\..\Run: [TPwrMain] . (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
O4 - HKLM\..\Run: [HSON] . (.TOSHIBA Corporation - HotStartOn.) -- C:\Program Files\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] . (.TOSHIBA Corporation - TOSHIBA Flash Cards.) -- C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [SmartAudio] . (.Pas de propriétaire - SAIICpl MFC Application.) -- C:\Program Files\CONEXANT\SAII\SAIICpl.exe
O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
O4 - HKLM\..\Run: [SmartFaceVWatcher] . (.TOSHIBA Corporation - SmartFaceVWatcher.) -- C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe
O4 - HKLM\..\Run: [Teco] . (.TOSHIBA Corporation - TOSHIBA eco Utility.) -- C:\Program Files\TOSHIBA\TECO\Teco.exe
O4 - HKLM\..\Run: [TosWaitSrv] . (.TOSHIBA Corporation - Pas de description.) -- C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe
O4 - HKLM\..\Run: [TosVolRegulator] . (.TOSHIBA Corporation - Toshiba Volume Regulator.) -- C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe
O4 - HKLM\..\Run: [BDAgent] . (.BitDefender S.R.L. - BitDefender Agent.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [EPSON Stylus DX8400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICEE.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [Microsoft Default Manager] . (.Microsoft Corporation - Microsoft Default Manager.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
O4 - HKLM\..\Wow6432Node\Run: [NBAgent] . (.Nero AG - Nero BackItUp.) -- c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [ToshibaServiceStation] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [TWebCamera] . (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
O4 - HKLM\..\Wow6432Node\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-270467662-3968827973-2619572007-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe
O4 - HKUS\S-1-5-21-270467662-3968827973-2619572007-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-270467662-3968827973-2619572007-1000\..\Run: [EPSON Stylus DX8400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATICEE.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - Global Startup: C:\Users\Marcello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: C:\Users\Marcello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk . (.TOSHIBA Europe.) -- C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe

---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Marcello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Marcello\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Marcello\Desktop\Cheminee Screensaver.lnk . (.Axialis Software.) -- C:\Windows\SysWOW64\Cheminee.scr
O4 - Global Startup: C:\Users\Marcello\Desktop\Tableau de Bord Pack Fnac 2011.LNK . (...) -- C:\Program Files (x86)\Fnac\TBPackFnac2011\tbpackfnac2011.exe
O4 - Global Startup: C:\Users\Marcello\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7F129501-B9A4-4AB3-9169-B91C5B025EE5}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{83D20C40-EF60-483B-917B-266909C849AE}: DhcpNameServer = 10.5.1.9
O17 - HKLM\System\CS1\Services\Tcpip\..\{7F129501-B9A4-4AB3-9169-B91C5B025EE5}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{83D20C40-EF60-483B-917B-266909C849AE}: DhcpNameServer = 10.5.1.9
O17 - HKLM\System\CS2\Services\Tcpip\..\{7F129501-B9A4-4AB3-9169-B91C5B025EE5}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{83D20C40-EF60-483B-917B-266909C849AE}: DhcpNameServer = 10.5.1.9
O17 - HKLM\System\CCS\Services\Tcpip\..\{83D20C40-EF60-483B-917B-266909C849AE}: DhcpDomain = NonHp
O17 - HKLM\System\CS1\Services\Tcpip\..\{83D20C40-EF60-483B-917B-266909C849AE}: DhcpDomain = NonHp
O17 - HKLM\System\CS2\Services\Tcpip\..\{83D20C40-EF60-483B-917B-266909C849AE}: DhcpDomain = NonHp
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: C:\Windows\system32\Alg.exe (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: (cfWiMAXService) . (.TOSHIBA CORPORATION - ConfigFree Service Process.) - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: (ConfigFree Service) . (.TOSHIBA CORPORATION - ConfigFree Service Process.) - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: (GameConsoleService) . (.WildTangent, Inc. - GameConsoleService.) - C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
O23 - Service: (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: c:\Program Files (x86)\Nero\Update\NASvc.exe (NAUpdate) . (.Nero AG - NeroUpdate.) - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: (TemproMonitoringService) . (.Toshiba Europe GmbH - Toshiba TEMPRO.) - C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
O23 - Service: (TMachInfo) . (.TOSHIBA Corporation - TSS TMachInfo Service.) - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
O23 - Service: (TODDSrv) . (.TOSHIBA Corporation - TDCSrv Application.) - C:\Windows\system32\TODDSrv.exe
O23 - Service: (TosCoSrv) . (.TOSHIBA Corporation - TOSHIBA Power Saver.) - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: (TOSHIBA eco Utility Service) . (.TOSHIBA Corporation - TOSHIBA eco Utility Service.) - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: (TOSHIBA HDD SSD Alert Service) . (.TOSHIBA Corporation - TosSmartSrv.exe.) - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: (TPCHSrv) . (.TOSHIBA Corporation - TOSHIBA PC Health Monitor.) - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (Update Server) . (.BitDefender - Bitdefender Web Server.) - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: (Updatesrv) . (.BitDefender S.R.L. - BitDefender Update Service.) - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
O23 - Service: (VSSERV) . (.BitDefender S.R.L. - BitDefender Security Service.) - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
O23 - Service: (WebSynchroWindowsService) . (.Oodrive - WS.WindowsService.) - C:\Program Files (x86)\Oodrive\WebSynchro\WS.WindowsService.exe
O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)

---\\ Tâches planifiées en automatique (O39)
[MD5.86E69581356CA45167EA6986B6E29087] [APT] [ConfigFree Startup Programs] (.TOSHIBA CORPORATION.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
[MD5.F3DE53CC70A3BF6FE38AF2E9F80B3E7D] [APT] [Marcello Local Autobackup 5 4] (.Nero AG.) -- C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBCore.exe

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (Bdfndisf) . (.BitDefender - BitDefender Firewall NDIS6 Filter Driver.) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
O41 - Driver: (bdfwfpf) . (.BitDefender - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys
O41 - Driver: (Bdvedisk) . (.BitDefender - FileVault Disk Driver.) - C:\Windows\System32\DRIVERS\bdvedisk.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

---\\ Logiciels installés (O42)
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {61D4B846-49F8-2639-A4EB-977875265F37}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9.4.4 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Barre d'outils Bing - (.Microsoft Corporation.) [HKLM][64Bits] -- {08234a0d-cf39-4dca-99f0-0c5cb496da81}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT088682
O42 - Logiciel: BitDefender Total Security 2011 - (.BitDefender.) [HKLM] -- BitDefender
O42 - Logiciel: BitDefender Total Security 2011 - (.BitDefender.) [HKLM] -- {8679822F-D7A6-490C-BAD6-F910AA09C061}
O42 - Logiciel: CANON iMAGE GATEWAY Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- CANON iMAGE GATEWAY Task
O42 - Logiciel: Canon Internet Library for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- Canon Internet Library for ZoomBrowser EX
O42 - Logiciel: Canon MOV Decoder - (.Canon Inc..) [HKLM][64Bits] -- Canon MOV Decoder
O42 - Logiciel: Canon MOV Encoder - (.Canon Inc..) [HKLM][64Bits] -- Canon MOV Encoder
O42 - Logiciel: Canon MovieEdit Task for ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- MovieEditTask
O42 - Logiciel: Canon Utilities Digital Photo Professional 3.8 - (.Canon Inc..) [HKLM][64Bits] -- DPP
O42 - Logiciel: Canon Utilities EOS Utility - (.Canon Inc..) [HKLM][64Bits] -- EOS Utility
O42 - Logiciel: Canon Utilities PhotoStitch - (.Canon Inc..) [HKLM][64Bits] -- PhotoStitch
O42 - Logiciel: Canon Utilities Picture Style Editor - (.Canon Inc..) [HKLM][64Bits] -- Picture Style Editor
O42 - Logiciel: Canon Utilities WFT Utility - (.Canon Inc..) [HKLM][64Bits] -- WFTK
O42 - Logiciel: Canon Utilities ZoomBrowser EX - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX
O42 - Logiciel: Canon ZoomBrowser EX Memory Card Utility - (.Canon Inc..) [HKLM][64Bits] -- ZoomBrowser EX Memory Card Utility
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {8BD785CF-30C7-4182-B250-0D5FCE78D4DD}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT088696
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Conexant Audio Driver For AMD HDMI Codec - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA_HDMI
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM][64Bits] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: EPSON Logiciel imprimante - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: Farm Mania 2 - (.WildTangent.) [HKLM][64Bits] -- WT089367
O42 - Logiciel: Fishdom - (.WildTangent.) [HKLM][64Bits] -- WT089404
O42 - Logiciel: FnacSynchro - (.Oodrive.) [HKLM][64Bits] -- WebSynchro
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM][64Bits] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}
O42 - Logiciel: Java(TM) 6 Update 24 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216022FF}
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM][64Bits] -- WildTangent toshiba Master Uninstall
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WT089378
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Default Manager - (.Microsoft Corporation.) [HKLM][64Bits] -- {B95B1BA9-F887-4B3C-8D3A-CCD4C4675120}
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {5E4B86E5-CD0E-4D3D-BE21-45A30326850A}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Nero 10 Movie ThemePack Basic - (.Nero AG.) [HKLM][64Bits] -- {F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}
O42 - Logiciel: Nero BackItUp 10 - (.Nero AG.) [HKLM][64Bits] -- {68AB6930-5BFF-4FF6-923B-516A91984FE6}
O42 - Logiciel: Nero BackItUp 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {08C8666B-C502-4AB3-B4CB-D74AC42D14FE}
O42 - Logiciel: Nero BurnRights 10 - (.Nero AG.) [HKLM][64Bits] -- {943CFD7D-5336-47AF-9418-E02473A5A517}
O42 - Logiciel: Nero BurnRights 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {555868C6-49FB-484F-BB43-8980651A1B00}
O42 - Logiciel: Nero Control Center 10 - (.Nero AG.) [HKLM][64Bits] -- {6DFB899F-17A2-48F0-A533-ED8D6866CF38}
O42 - Logiciel: Nero ControlCenter 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {523B2B1B-D8DB-4B41-90FF-C4D799E2758A}
O42 - Logiciel: Nero Core Components 10 - (.Nero AG.) [HKLM][64Bits] -- {2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}
O42 - Logiciel: Nero Express 10 - (.Nero AG.) [HKLM][64Bits] -- {70550193-1C22-445C-8FA4-564E155DB1A7}
O42 - Logiciel: Nero Express 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {33643918-7957-4839-92C7-EA96CB621A98}
O42 - Logiciel: Nero InfoTool 10 - (.Nero AG.) [HKLM][64Bits] -- {F412B4AF-388C-4FF5-9B2F-33DB1C536953}
O42 - Logiciel: Nero InfoTool 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {66049135-9659-4AAD-9169-9CCA269EBB3E}
O42 - Logiciel: Nero MediaHub 10 - (.Nero AG.) [HKLM][64Bits] -- {1F7FB68F-52F6-46A3-B42F-38CE46295AE5}
O42 - Logiciel: Nero MediaHub 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {F467862A-D9CA-47ED-8D81-B4B3C9399272}
O42 - Logiciel: Nero Multimedia Suite 10 Essentials - (.Nero AG.) [HKLM][64Bits] -- {0FF68F26-416C-4954-ACA5-6AD5F9DE99C1}
O42 - Logiciel: Nero RescueAgent 10 - (.Nero AG.) [HKLM][64Bits] -- {E337E787-CF61-4B7B-B84F-509202A54023}
O42 - Logiciel: Nero RescueAgent 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {92E25238-61A3-4ACD-A407-3C480EEF47A7}
O42 - Logiciel: Nero StartSmart 10 - (.Nero AG.) [HKLM][64Bits] -- {F61D489E-6C44-49AC-AD02-7DA8ACA73A65}
O42 - Logiciel: Nero StartSmart 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {F6117F9C-ADB5-4590-9BE4-12C7BEC28702}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {05653DE1-6567-40C6-B930-39D399B64369}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT089380
O42 - Logiciel: Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM][64Bits] -- eu.myphotobook.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1
O42 - Logiciel: Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM][64Bits] -- {3D047C6C-19EE-46E3-C14B-9FA84260DF9B}
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WT089395
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT088759
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Realtek WLAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9D3D8C60-A55F-4fed-B2B9-173001290E16}
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM][64Bits] -- SFR_Kit
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM][64Bits] -- {981029E0-7FC9-4CF3-AB39-6F133621921A}
O42 - Logiciel: Skype(TM) 4.2 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {D103C4BA-F905-437A-8049-DB24763BBE36}
O42 - Logiciel: Slingo Supreme - (.WildTangent.) [HKLM][64Bits] -- WT089381
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM] -- {C14518AF-1A0F-4D39-8011-69BAA01CD380}
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{C14518AF-1A0F-4D39-8011-69BAA01CD380}
O42 - Logiciel: TOSHIBA ConfigFree - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {E0FAA369-B0E3-48B8-9447-4873103B0012}
O42 - Logiciel: TOSHIBA Disc Creator - (.TOSHIBA Corporation.) [HKLM] -- {5DA0E02F-970B-424B-BF41-513A5018E4C0}
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM] -- {F67FA545-D8E5-4209-86B1-AEE045D1003F}
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}
O42 - Logiciel: TOSHIBA HDD/SSD Alert - (.TOSHIBA Corporation.) [HKLM] -- {D4322448-B6AF-4316-B859-D8A0E84DCB38}
O42 - Logiciel: TOSHIBA HDD/SSD Alert - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}
O42 - Logiciel: TOSHIBA Hardware Setup - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {8E9CEA3B-EBD1-439C-A01D-830CB39613C6}
O42 - Logiciel: TOSHIBA Media Controller - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {983CD6FE-8320-4B80-A8F6-0D0366E0AA22}
O42 - Logiciel: TOSHIBA Media Controller Plug-in - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}
O42 - Logiciel: TOSHIBA Online Product Information - (.TOSHIBA.) [HKLM][64Bits] -- {2290A680-4083-410A-ADCC-7092C67FC052}
O42 - Logiciel: TOSHIBA PC Health Monitor - (.TOSHIBA Corporation.) [HKLM] -- {9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}
O42 - Logiciel: TOSHIBA Recovery Media Creator - (.TOSHIBA Corporation.) [HKLM] -- {B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}
O42 - Logiciel: TOSHIBA Recovery Media Creator Reminder - (.TOSHIBA.) [HKLM][64Bits] -- InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM] -- {24811C12-F4A9-4D0F-8494-A7B8FE46123C}
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C}
O42 - Logiciel: TOSHIBA Service Station - (.TOSHIBA.) [HKLM][64Bits] -- {AC6569FA-6919-442A-8552-073BE69E247A}
O42 - Logiciel: TOSHIBA Supervisor Password - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {073B89C3-BA88-41B5-965F-B35A88EAE838}
O42 - Logiciel: TOSHIBA Value Added Package - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}
O42 - Logiciel: TOSHIBA Web Camera Application - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {5E6F6CF3-BACC-4144-868C-E14622C658F3}
O42 - Logiciel: TOSHIBA eco Utility - (.TOSHIBA Corporation.) [HKLM] -- {B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}
O42 - Logiciel: TOSHIBA eco Utility - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}
O42 - Logiciel: TOSHIBA eco Utility - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}
O42 - Logiciel: TRORMCLauncher - (.Pas de propriétaire.) [HKLM][64Bits] -- InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}
O42 - Logiciel: Tableau de Bord Pack Fnac 2011 - (.Pas de propriétaire.) [HKLM][64Bits] -- Tableau de Bord Pack Fnac 2011
O42 - Logiciel: Toshiba Assist - (.TOSHIBA.) [HKLM][64Bits] -- {1B87C40B-A60B-4EF3-9A68-706CF4B69978}
O42 - Logiciel: Toshiba Manuals - (.TOSHIBA.) [HKLM][64Bits] -- {90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}
O42 - Logiciel: Toshiba TEMPRO - (.Toshiba Europe GmbH.) [HKLM][64Bits] -- {DBB7021A-3437-446F-ACE5-7261644A972C}
O42 - Logiciel: Visionneuse Microsoft PowerPoint - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: WildTangent ORB Game Console - (.WildTangent.) [HKLM][64Bits] -- TOSHIBA Game Console
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM][64Bits] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM][64Bits] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM][64Bits] -- {78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {DF6D988A-EEA0-4277-AAB8-158E086E439B}
O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}
O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {E02A6548-6FDE-40E2-8ED9-119D7D7E641F}
O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {5E2CD4FB-4538-4831-8176-05D653C3E6D4}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT089388
O42 - Logiciel: eBay - (.eBay Inc..) [HKLM][64Bits] -- {FDE58148-57E7-43BF-879A-29CCE818C078}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\BitDefender]
[HKCU\Software\Canon]
[HKCU\Software\Canon_Inc_IC]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\EPSON]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\JavaSoft]
[HKCU\Software\LowRegistry]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Neuf]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Policies]
[HKCU\Software\Skype]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\TOSHIBA]
[HKCU\Software\Wow6432Node]
[HKCU\Software\http://www.ecran-de-veille.com]
[HKCU\Software\yahooinstall]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVC3]
[HKLM\Software\Adobe]
[HKLM\Software\Atheros Communications Inc.]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Canon]
[HKLM\Software\Canon_Inc_IC]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conexant]
[HKLM\Software\Cyberlink]
[HKLM\Software\DoesntExist]
[HKLM\Software\EPSON]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfeeInstaller]
[HKLM\Software\McAfee]
[HKLM\Software\MidasHeurScanner]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nero]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\Oodrive]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RtWLan]
[HKLM\Software\SOFTWARE]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\TOSHIBA Corporation]
[HKLM\Software\TOSHIBA]
[HKLM\Software\Toshiba Tempro]
[HKLM\Software\WildTangent]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/03/2011 - 11:07:10 - [23255333] ----D- C:\Program Files\ATI
O43 - CFD: 18/04/2011 - 21:47:14 - [231831684] ----D- C:\Program Files\BitDefender
O43 - CFD: 18/04/2011 - 21:46:20 - [1056864865] ----D- C:\Program Files\Common Files
O43 - CFD: 10/03/2011 - 11:16:04 - [37353825] ----D- C:\Program Files\CONEXANT
O43 - CFD: 28/04/2011 - 01:01:08 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 17/04/2011 - 11:38:38 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 08/05/2011 - 22:59:20 - [7502] ----D- C:\Program Files\HP
O43 - CFD: 13/05/2011 - 23:57:26 - [6201724] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 09/11/2010 - 14:40:12 - [148931122] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 09/11/2010 - 14:13:12 - [2178436] ----D- C:\Program Files\PlayReady
O43 - CFD: 14/07/2009 - 07:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 09/11/2010 - 14:19:54 - [31323877] ----D- C:\Program Files\Synaptics
O43 - CFD: 21/04/2011 - 22:06:52 - [430854879] ----D- C:\Program Files\TOSHIBA
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 28/04/2011 - 01:01:02 - [4039680] ----D- C:\Program Files\Windows Defender
O43 - CFD: 28/04/2011 - 01:01:06 - [9224824] ----D- C:\Program Files\Windows Journal
O43 - CFD: 09/11/2010 - 14:42:34 - [7755583] ----D- C:\Program Files\Windows Live
O43 - CFD: 28/04/2011 - 01:01:08 - [6667776] ----D- C:\Program Files\Windows Mail
O43 - CFD: 28/04/2011 - 01:01:06 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 17/04/2011 - 11:38:38 - [12627636] ----D- C:\Program Files\Windows NT
O43 - CFD: 28/04/2011 - 01:01:06 - [5516056] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 28/04/2011 - 01:01:06 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 28/04/2011 - 01:01:08 - [8908168] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 18/04/2011 - 21:46:10 - [983990946] ----D- C:\Program Files\Common Files\BitDefender
O43 - CFD: 27/04/2011 - 22:36:48 - [59966614] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 14/07/2009 - 17:24:10 - [12194291] ----D- C:\Program Files\Common Files\System
O43 - CFD: 18/04/2011 - 20:02:10 - [26275585] ----D- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 10/03/2011 - 11:08:18 - [1258142] ----D- C:\ProgramData\ATI
O43 - CFD: 20/04/2011 - 23:05:08 - [72] ----D- C:\ProgramData\bdch
O43 - CFD: 20/04/2011 - 10:04:32 - [7053522] ----D- C:\ProgramData\BitDefender
O43 - CFD: 17/04/2011 - 11:38:38 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 08/05/2011 - 22:30:34 - [498191] ----D- C:\ProgramData\EPSON
O43 - CFD: 17/04/2011 - 11:38:38 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 08/05/2011 - 22:57:36 - [210946] ----D- C:\ProgramData\HP
O43 - CFD: 20/04/2011 - 23:01:56 - [9090] ----D- C:\ProgramData\IsolatedStorage
O43 - CFD: 10/05/2011 - 21:22:14 - [6664352] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 18/04/2011 - 21:36:18 - [6102] ----D- C:\ProgramData\McAfee
O43 - CFD: 17/04/2011 - 11:38:38 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 18/04/2011 - 19:41:36 - [1308481836] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 17/04/2011 - 11:38:38 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 09/11/2010 - 14:35:56 - [2446773] ----D- C:\ProgramData\Nero
O43 - CFD: 18/04/2011 - 19:54:38 - [1130341] ----D- C:\ProgramData\Oodrive
O43 - CFD: 09/11/2010 - 14:36:46 - [19883946] ----D- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 27/04/2011 - 22:38:24 - [154] ----D- C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 10/03/2011 - 11:23:22 - [33983232] ----D- C:\ProgramData\TOSHIBA
O43 - CFD: 20/04/2011 - 23:01:56 - [2940] ----D- C:\ProgramData\TOSHIBA Tempro
O43 - CFD: 17/04/2011 - 11:39:08 - [1774] ----D- C:\ProgramData\ToshibaEurope
O43 - CFD: 09/11/2010 - 14:39:58 - [1076708706] ----D- C:\ProgramData\WildTangent
O43 - CFD: 10/05/2011 - 22:59:06 - [0] ----D- C:\ProgramData\ZoomBrowser
O43 - CFD: 18/04/2011 - 20:01:30 - [146228] ----D- C:\Users\Marcello\AppData\Roaming\Adobe
O43 - CFD: 17/04/2011 - 11:42:34 - [0] ----D- C:\Users\Marcello\AppData\Roaming\ATI
O43 - CFD: 18/04/2011 - 21:46:18 - [60340] ----D- C:\Users\Marcello\AppData\Roaming\BitDefender
O43 - CFD: 17/04/2011 - 11:42:00 - [0] ----D- C:\Users\Marcello\AppData\Roaming\Identities
O43 - CFD: 21/04/2011 - 22:03:10 - [0] ----D- C:\Users\Marcello\AppData\Roaming\InstallShield
O43 - CFD: 09/11/2010 - 14:36:30 - [60523] ----D- C:\Users\Marcello\AppData\Roaming\Macromedia
O43 - CFD: 10/05/2011 - 21:22:24 - [1054604] ----D- C:\Users\Marcello\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 17:35:06 - [0] ----D- C:\Users\Marcello\AppData\Roaming\Media Center Programs
O43 - CFD: 28/04/2011 - 00:33:20 - [3678993] -S--D- C:\Users\Marcello\AppData\Roaming\Microsoft
O43 - CFD: 17/04/2011 - 11:42:34 - [178789] ----D- C:\Users\Marcello\AppData\Roaming\Nero
O43 - CFD: 18/04/2011 - 19:54:38 - [630570] ----D- C:\Users\Marcello\AppData\Roaming\Oodrive
O43 - CFD: 27/04/2011 - 22:39:44 - [1562785] ----D- C:\Users\Marcello\AppData\Roaming\OpenOffice.org
O43 - CFD: 18/04/2011 - 21:30:32 - [0] ----D- C:\Users\Marcello\AppData\Roaming\QuickScan
O43 - CFD: 27/04/2011 - 21:44:08 - [4012367] ----D- C:\Users\Marcello\AppData\Roaming\Toshiba
O43 - CFD: 21/04/2011 - 22:03:08 - [0] ----D- C:\Users\Marcello\AppData\Roaming\WinBatch
O43 - CFD: 10/05/2011 - 23:00:42 - [90026] ----D- C:\Users\Marcello\AppData\Roaming\ZoomBrowser EX
O43 - CFD: 18/04/2011 - 20:03:24 - [79131] ----D- C:\Users\Marcello\Appdata\Local\Adobe
O43 - CFD: 17/04/2011 - 11:38:54 - [0] -SH-D- C:\Users\Marcello\Appdata\Local\Application Data
O43 - CFD: 17/04/2011 - 11:42:34 - [62543] ----D- C:\Users\Marcello\Appdata\Local\ATI
O43 - CFD: 28/04/2011 - 00:54:12 - [0] ----D- C:\Users\Marcello\Appdata\Local\Axialis
O43 - CFD: 10/05/2011 - 22:51:40 - [5241] ----D- C:\Users\Marcello\Appdata\Local\CANON_INC
O43 - CFD: 25/04/2011 - 20:57:38 - [802291] ----D- C:\Users\Marcello\Appdata\Local\Diagnostics
O43 - CFD: 17/04/2011 - 11:38:54 - [0] -SH-D- C:\Users\Marcello\Appdata\Local\Historique
O43 - CFD: 25/04/2011 - 20:57:32 - [224302074] ----D- C:\Users\Marcello\Appdata\Local\Microsoft
O43 - CFD: 21/04/2011 - 22:33:40 - [1076] ----D- C:\Users\Marcello\Appdata\Local\Nero_AG
O43 - CFD: 14/05/2011 - 12:45:22 - [3490482873] ----D- C:\Users\Marcello\Appdata\Local\Temp
O43 - CFD: 17/04/2011 - 11:38:54 - [0] -SH-D- C:\Users\Marcello\Appdata\Local\Temporary Internet Files
O43 - CFD: 20/04/2011 - 23:00:44 - [1235] ----D- C:\Users\Marcello\Appdata\Local\Toshiba
O43 - CFD: 17/04/2011 - 12:08:00 - [620] ----D- C:\Users\Marcello\Appdata\Local\TOSHIBA_Corporation
O43 - CFD: 30/04/2011 - 13:03:02 - [64577] ----D- C:\Users\Marcello\Appdata\Local\VirtualStore
O43 - CFD: 07/05/2011 - 21:36:02 - [77061398] ----D- C:\Program Files (x86)\Ad-Remover
O43 - CFD: 09/11/2010 - 14:36:30 - [244720800] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 10/03/2011 - 11:08:08 - [90843279] ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 09/11/2010 - 14:25:48 - [569669] ----D- C:\Program Files (x86)\Bing Bar Installer
O43 - CFD: 10/05/2011 - 22:39:24 - [255318302] ----D- C:\Program Files (x86)\Canon
O43 - CFD: 13/05/2011 - 19:38:16 - [468539753] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 09/11/2010 - 14:25:58 - [220807] ----D- C:\Program Files (x86)\eBay
O43 - CFD: 18/04/2011 - 19:53:34 - [501651] ----D- C:\Program Files (x86)\Fnac
O43 - CFD: 10/03/2011 - 11:25:18 - [129276601] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 10/03/2011 - 11:10:12 - [20441960] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 13/05/2011 - 23:57:26 - [5491852] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 13/05/2011 - 19:37:50 - [90595922] ----D- C:\Program Files (x86)\Java
O43 - CFD: 10/05/2011 - 21:22:16 - [4934092] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 09/11/2010 - 14:25:44 - [2980283] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 21/04/2011 - 22:15:26 - [40628974] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 09/11/2010 - 14:45:40 - [38271979] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 09/11/2010 - 14:43:30 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 19/04/2011 - 10:05:20 - [15715] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 21/04/2011 - 22:15:02 - [66546585] ----D- C:\Program Files (x86)\MSECache
O43 - CFD: 18/04/2011 - 22:42:30 - [0] ----D- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 09/11/2010 - 14:35:54 - [653572400] ----D- C:\Program Files (x86)\Nero
O43 - CFD: 18/04/2011 - 19:54:38 - [11083776] ----D- C:\Program Files (x86)\Oodrive
O43 - CFD: 27/04/2011 - 22:38:50 - [370627138] ----D- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 09/11/2010 - 14:36:32 - [31296334] ----D- C:\Program Files (x86)\Photo-Service
O43 - CFD: 09/11/2010 - 14:20:08 - [8537986] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 10/03/2011 - 11:17:22 - [5710668] ----D- C:\Program Files (x86)\Realtek WLAN Driver
O43 - CFD: 14/07/2009 - 07:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 18/04/2011 - 19:36:18 - [14912306] ----D- C:\Program Files (x86)\SFR
O43 - CFD: 09/11/2010 - 14:36:52 - [25537329] R---D- C:\Program Files (x86)\Skype
O43 - CFD: 10/03/2011 - 11:25:30 - [325740932] ----D- C:\Program Files (x86)\TOSHIBA
O43 - CFD: 09/11/2010 - 14:40:00 - [237916359] ----D- C:\Program Files (x86)\TOSHIBA Games
O43 - CFD: 09/11/2010 - 14:37:14 - [11424156] ----D- C:\Program Files (x86)\Toshiba TEMPRO
O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 14/07/2009 - 17:24:10 - [524800] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 09/11/2010 - 14:44:18 - [177421107] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 28/04/2011 - 01:01:10 - [6181376] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 28/04/2011 - 01:01:10 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 28/04/2011 - 01:01:10 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 28/04/2011 - 01:01:10 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 28/04/2011 - 01:01:10 - [7116975] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 14/05/2011 - 12:46:08 - [3952806] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 09/11/2010 - 14:24:24 - [6281214] ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 09/11/2010 - 14:36:30 - [30516688] ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 10/05/2011 - 22:36:36 - [1337700] ----D- C:\Program Files (x86)\Common Files\Canon
O43 - CFD: 09/11/2010 - 14:20:22 - [1929309] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 13/05/2011 - 19:38:16 - [1247175] ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 21/04/2011 - 22:15:26 - [129779010] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 09/11/2010 - 14:34:18 - [10211515] ----D- C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 10/03/2011 - 11:05:28 - [166332] ----D- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 09/11/2010 - 14:36:48 - [2135336] ----D- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 05:20:10 - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 14/07/2009 - 17:24:10 - [10245619] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 09/11/2010 - 14:40:34 - [224545546] ----D- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 09/11/2010 - 14:37:08 - [9037824] ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.16EF712D2A2BFC294775C8CF384F018E] - 14/05/2011 - 11:19:17 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [16304]
O44 - LFC:[MD5.16EF712D2A2BFC294775C8CF384F018E] - 14/05/2011 - 11:19:17 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [16304]
O44 - LFC:[MD5.3C0000000000000000000000D4EE1800] - 14/05/2011 - 11:14:49 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1882836]
O44 - LFC:[MD5.307F8F380558C6CCB9619F5873EBEA3C] - 14/05/2011 - 11:11:49 ---A- . (...) -- C:\Windows\setupact.log [32184]
O44 - LFC:[MD5.457CDBA246E19FAE40A6442E217C26A5] - 14/05/2011 - 11:11:45 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.41483838838ABB9B21976C4AABE532D7] - 14/05/2011 - 05:00:09 ---A- . (...) -- C:\bdlog.txt [69523]
O44 - LFC:[MD5.C1B826DFB947BF6B10142624EF37D1D9] - 13/05/2011 - 20:05:02 ---A- . (...) -- C:\Windows\IE9_main.log [6864]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 13/05/2011 - 20:04:15 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 13/05/2011 - 20:04:14 ---A- . (...) -- C:\Windows\SysNative\ieuinit.inf [72822]
O44 - LFC:[MD5.EF55C8C45587D911B2A7B8C325D39BB8] - 13/05/2011 - 19:22:47 ---A- . (...) -- C:\last.txt [6032]
O44 - LFC:[MD5.1CC55E7449527695B695E8CD176A094B] - 10/05/2011 - 21:42:57 ---A- . (...) -- C:\Windows\PFRO.log [757974]
O44 - LFC:[MD5.D357275AC0686CBDCB9C86046748F689] - 08/05/2011 - 21:31:51 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.6F6609BF7FC6DF41A2DD813A6619B463] - 08/05/2011 - 21:31:51 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106388]
O44 - LFC:[MD5.DF65E287562B8335086EADF45474D836] - 08/05/2011 - 21:31:51 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130754]
O44 - LFC:[MD5.A50BFF48C7591D9965F700EE8B81D877] - 08/05/2011 - 2

pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
17 mai 2011 à 21:17

Bonsoir,

Le rapport n'est pas complet tu peux me le joindre avec ci-joint.

Discussions similaires

comment lire des bd gratuitement en ligne sur internet ?

Impossible d'utiliser ce numéro de téléphone pour la validat

Problème lecture Scan manga

scan comics

télécharger router scan v2.6 ou v3.6