PC très lent accose de VIRUS svp !

Ali -
Utilisateur anonyme - 8 mai 2011 à 23:17

Bonjour,

Voila mon pc est devenu très lent accose d'un virus qui est sur le pc (même plusieurs virus :a ). On ma conseiller un diagnostic du pc avec ZHPDiag de Nicolas Coolman . Voici le diagnostic . Merci infiniment de m'aider ^^ .

http://www.cijoint.fr/cjlink.php?file=cj201105/cijt1SzcjM.txt

Afficher la suite

A voir également:

PC très lent accose de VIRUS svp !
Pc tres lent - Guide
Reinitialiser pc - Guide
Downloader for pc - Télécharger - Téléchargement & Transfert
Test performance pc - Guide
Double ecran pc - Guide

4 réponses

Réponse 1 / 4

Utilisateur anonyme

Salut,

Ton PC est très infecté !!

1/ * Télécharge de AD-Remover sur ton Bureau.
http://www.teamxscript.org/adremoverTelechargement.html

/!\ Ferme toutes applications en cours /!\

- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « Nettoyer »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour c

2/

combien d'antivirus tu as installé ?

AVG9, Avira antivir, Nod32 !

-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Membre, Contributeur

H.F. : Fish66
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*

ali

http://www.cijoint.fr/cjlink.php?file=cj201105/cijec3K8a5.txt ( voila le diagnostic )
et pour les anti-virus , bah enfaite j'avais que AVG9 y a 2semaines , mais on ma dit que fallais télécharger Avira c'est mieux , des autres mon dit avec NOD32 tes sur a 100% toras rien :a . Qu'en pensez - vous ? je garde AVG9 et suprimme les 2 autres ou autrement ? Merci bien

ali

personne :'( ??

ali

de plus voici un autre diagnostic :a .

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6533

Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

8/05/2011 20:10:09
mbam-log-2011-05-08 (20-10-09).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 136798
Temps écoulé: 13 minute(s), 20 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 6
Elément(s) de données du Registre infecté(s): 5
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Value: {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Value: {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{EB620C54-E229-4942-87CE-E717109FC8C6} (Adware.ShoppingReport2) -> Value: {EB620C54-E229-4942-87CE-E717109FC8C6} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{EB620C54-E229-4942-87CE-E717109FC8C6} (Adware.ShoppingReport2) -> Value: {EB620C54-E229-4942-87CE-E717109FC8C6} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{DB38E21A-0133-419d-92AD-ECDFD5244D6D} (Adware.ShoppingReport2) -> Value: {DB38E21A-0133-419d-92AD-ECDFD5244D6D} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{DB38E21A-0133-419d-92AD-ECDFD5244D6D} (Adware.ShoppingReport2) -> Value: {DB38E21A-0133-419d-92AD-ECDFD5244D6D} -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: ("regedit.exe" "%1") Good: (regedit.exe "%1") -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Réponse 2 / 4

Utilisateur anonyme

Re,

Ou est le rapport Ad-Remover ?

Le lien que tu as donné n'ai pas fonctionnel

N'ai pas peur, surement je te répond un peu de patience c'est tout :)

@+
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Membre, Contributeur

H.F. : Fish66
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*

ali

le voila

http://www.cijoint.fr/cjlink.php?file=cj201105/cijec3K8a5.txt

ali

ah le site bug je pense ^^'

ali

ah voila !! :D

normalment ses bon ^^ .

http://www.cijoint.fr/cjlink.php?file=cj201105/cijxqDzGaU.txt

merci encore

Réponse 3 / 4

Utilisateur anonyme

Re,

1/

Maintenant un nouveau rapport ZHPDiag

2/
On va désinstaller Nod32 et AVG9

*Pour Nod 32 :

-Télécharge Cet utilitaire de désinstallation

- Exécute le puis redémarrer ton PC

*Pour AVG9 :

- Télécharge Cet utilitaire dedésinstallation

- Exécute le

- Redémarrer ton PC

-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Membre, Contributeur

H.F. : Fish66
-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*

ali

Rapport de ZHPDiag v1.27.201 par Nicolas Coolman, Update du 08/05/2011
Run by Abdou at 8/05/2011 21:30:55
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

---\\ Web Browser
MSIE: Internet Explorer v6.0.2900.2180
GCIE: Google Chrome (Defaut)

---\\ System Information
Windows XP Professional Service Pack 2 (Build 2600)
Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2038 MB (53% free)
System Restore: Désactivé (Disabled)
System drive C: has 363 GB (97%) free of 373 GB

---\\ Logged in mode
Computer Name: XPSP2-D2A2D311F
User Name: Abdou
All Users Names: SUPPORT_388945a0, HelpAssistant, Administrateur, Abdou,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=C:\Documents and Settings\Abdou\Application Data
%LocalAppData%=C:\Documents and Settings\Abdou\Local Settings\Application Data
%StartMenu%=C:\Documents and Settings\Abdou\Menu Démarrer

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 363 Go of 373 Go)
D:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

---\\ Recherche particulière de fichiers génériques
[MD5.2A7BD330924252A2FD80344FC949BB72] - (.Microsoft Corporation - Explorateur Windows.) (.19/08/2004 15:09:54.) -- C:\WINDOWS\Explorer.exe [1036288]
[MD5.B8B6F05885A6F42724E8D6BFEDE6BD3F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/09/2006 9:38:07.) -- C:\WINDOWS\system32\wininet.dll [668672]
[MD5.123EEA158F74D0F67A51DCDF065D1091] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.19/08/2004 15:10:06.) -- C:\WINDOWS\system32\Winlogon.exe [506368]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.3/08/2004 21:59:44.) -- C:\WINDOWS\system32\drivers\atapi.sys [95360]
[MD5.B78BE402C3F63DD55521F73876951CDD] - (.Microsoft Corporation - NT File System Driver.) (.3/08/2004 22:15:10.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574592]

---\\ Processus lancés
[MD5.031DD8DBD4B958B5765C8C111CB1EA03] - (.AVG Technologies CZ, s.r.o. - AVG Cache Server.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe [1101152]
[MD5.5654DB4719A3C52684A20C1CA443BF8F] - (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) -- C:\Program Files\AVG\AVG9\avgrsx.exe [515424]
[MD5.737A5253008BE7F12ACEDD6876F24B4B] - (.AVG Technologies CZ, s.r.o. - AVG Scanning Core Module - Server Part.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe [725344]
[MD5.ABC81401A433F90414168E027AA6CC48] - (.AVG Technologies CZ, s.r.o. - AVG IDS application.) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe [5897808]
[MD5.B4837FE56D76B2E9EA90E5365CF6A2BE] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360]
[MD5.F5B4C2F35A9D78EABF83978217C421A2] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480]
[MD5.C4D15594DB5BE042D3346EA58DF87D89] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe [308136]
[MD5.8C91BD35AE9AA8B628EEC5E637BB1D0F] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968]
[MD5.0F38E92D794DF187BA060939C552484F] - (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) -- C:\Program Files\AVG\AVG9\avgfws9.exe [2331544]
[MD5.191D8ECCC40F05B52FAC0513F35BA01D] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [810144]
[MD5.035A4DC0EA6506F422EBF388DE9EE720] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\PROGRA~1\AVG\AVG9\avgtray.exe [2071904]
[MD5.35DCD380D4D579D8B8EA91D5D8AE444C] - (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [33648]
[MD5.263A715660C2624F75AE5D7365C04FF6] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe [141848]
[MD5.4AA4DEB55D61BEB851D5A12089E990D3] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [166424]
[MD5.30854A339582C70B522FB46B1AF62800] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [137752]
[MD5.2CC9A09302592884E442C9D6D4B306CA] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE [17881600]
[MD5.869513CA8428F231C7CAC62A6F9B974A] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\update\realsched.exe [274608]
[MD5.BCC4348A76435AC7A2AF6E824DCB02A8] - (.Intel Corporation - igfxsrvc Module.) -- C:\WINDOWS\system32\igfxsrvc.exe [256536]
[MD5.C983E62B6FB74457D173BA93F66F6068] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768]
[MD5.6163A64C97ED1F2D9FCF7DEBCD774501] - (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2219184]
[MD5.7AEA4DF1CA68FD45DD4BBE1F0243CE7F] - (...) -- C:\Program Files\CDBurnerXP\NMSAccessU.exe [71096]
[MD5.AA054CD537357F03D5BA6ABA7562B35F] - (.AVG Technologies CZ, s.r.o. - AVG E-Mail Scanner.) -- C:\Program Files\AVG\AVG9\avgemc.exe [921952]
[MD5.3C23AE0B05DF45CE256E94D6F5CEDF50] - (.AVG Technologies CZ, s.r.o. - AVG Alert Manager.) -- C:\Program Files\AVG\AVG9\avgam.exe [842592]
[MD5.4728D3BC556D677591797D600C47467C] - (.AVG Technologies CZ, s.r.o. - AVG Network scanner Service.) -- C:\Program Files\AVG\AVG9\avgnsx.exe [621920]
[MD5.AFBFD84BBD80D72C7EE9CA874003C1F2] - (.AVG Technologies CZ, s.r.o. - AVG IDS application.) -- C:\Program Files\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe [596560]
[MD5.11C3EFB4BAC41175D03B1595DB1A4A4F] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.5DD44F27BBC1EF834145F109F154ECC7] - (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Abdou\Local Settings\Application Data\Google\Chrome\Application\chrome.exe [1010232]
[MD5.5375A0D0CEE1C942047367E72A4E750A] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [645632]
[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_25 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=12.0.1.609] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=12.0.1.609] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=12.0.1.609] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videos
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=12.0.1.609] - (.RealNetworks, Inc. - 12.0.1.609.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [@rim.com/npappworld] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Research In Motion Limited\Plug-in du navigateur BlackBerry App World\npappworld.dll
P2 - FPN: [HKLM] [@RIM.com/WebSLLauncher,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Fichiers communs\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
P2 - FPN: [HKLM] [@veetle.com/veetleCorePlugin,version=0.9.18] - (.Veetle Inc - Version 0.9.18, Copyright 2006-2009 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\plugins\npVeetle.dll
P2 - FPN: [HKLM] [@veetle.com/veetlePlayerPlugin,version=0.9.18] - (.Veetle Inc - Version 0.9.18, copyright 2006-2010 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\Player\npvlc.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\Abdou\Local Settings\Application Data\Google\Update\1.3.21.53\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\Abdou\Local Settings\Application Data\Google\Update\1.3.21.53\npGoogleUpdate3.dll

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G1 - GCS: Preference [User Data\Default] http://search.imesh.com
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.imesh.com
G2 - GCE: Preference [User Data\Default] [gkclphmapdcppbmekmbkcjfanpmoidpg] AT_Porsche v.3 (Activé)
G2 - GCE: Preference [User Data\Default] [lncjcfkpannmofmpgdfoonkniofdnaba] Chrome PDF Viewer v. (Désactivé)

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKUS\S-1-5-21-842925246-527237240-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Pas de propriétaire - AVG Security Toolbar.) (6.011.025.001) -- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Bibliothèque d'objets et de contrôles de do.) (No version) -- %SystemRoot%\system32\shdocvw.dll
R3 - URLSearchHook: Eazel-FR Toolbar - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files\Eazel-FR\prxtbEaz2.dll

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordP
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Eazel-FR - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Eazel-FR\prxtbEaz2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O3 - Toolbar: Eazel-FR Toolbar - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Eazel-FR\prxtbEaz2.dll

---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [AVG9_TRAY] . (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\update\realsched.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKCU\..\Run: [MsnMsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\MsnMsgr.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Abdou\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [Registry Reviver] C:\Program Files\Reviversoft\Registry Reviver\RegistryReviver.exe (.not file.)
O4 - HKCU\..\Run: [ISUSPM] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (.not file.)
O4 - HKUS\S-1-5-21-842925246-527237240-1801674531-1003\..\Run: [MsnMsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\MsnMsgr.exe
O4 - HKUS\S-1-5-21-842925246-527237240-1801674531-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-842925246-527237240-1801674531-1003\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Abdou\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-842925246-527237240-1801674531-1003\..\Run: [Registry Reviver] C:\Program Files\Reviversoft\Registry Reviver\RegistryReviver.exe (.not file.)
O4 - HKUS\S-1-5-21-842925246-527237240-1801674531-1003\..\Run: [ISUSPM] C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe (.not file.)
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] . (...) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] . (...) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] . (...) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide1] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide2] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] . (...) -- C:\WINDOWS\system32\run.cmd
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] . (.Microsoft Corporation - DLL d'action personnalisée d'installation.) -- C:\WINDOWS\system32\tscupgrd.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide1] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide2] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe
O4 - Global Startup: C:\Documents And Settings\Abdou\Menu Démarrer\Programmes\Démarrage\LimeWire On Startup.lnk . (.Lime Wire, LLC.) -- C:\Program Files\LimeWire\LimeWire.exe

---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\SC_Reader.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\CDBurnerXP.lnk . (.Canneverbe Limited.) -- C:\Program Files\CDBurnerXP\cdbxpp.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Abdou\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Abdou\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE
O4 - Global Startup: C:\Documents And Settings\Abdou\Menu Démarrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Abdou\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: &Envoyer à OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://www.ma-config.com/plugins/MaConfig_4_6_0_1.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{D8B64357-D698-4FD4-B8AC-D372C133BAFF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{D8B64357-D698-4FD4-B8AC-D372C133BAFF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{D8B64357-D698-4FD4-B8AC-D372C133BAFF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{D8B64357-D698-4FD4-B8AC-D372C133BAFF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} . (.Pas de propriétaire - AVG Security Toolbar.) -- C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (.AVG Technologies CZ, s.r.o. - Safe Search pluggable protocol.) -- C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: avgrsstarter . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Starter.) -- C:\Windows\System32\avgrsstx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: (AVG Security Toolbar Service) . (.Pas de propriétaire - AVG Security Toolbar.) - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
O23 - Service: (avg9emc) . (.AVG Technologies CZ, s.r.o. - AVG E-Mail Scanner.) - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: (avg9wd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: (avgfws9) . (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) - C:\Program Files\AVG\AVG9\avgfws9.exe
O23 - Service: (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG IDS application.) - C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: (EhttpSrv) . (.ESET - ESET HTTP Server Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: (maconfservice) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: (NMSAccess) . (...) - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: (RoxLiveShare9) - Clé orpheline

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-842925246-527237240-1801674531-1003Core.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-842925246-527237240-1801674531-1003UA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Install_NSS.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-842925246-527237240-1801674531-1003.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-842925246-527237240-1801674531-1003.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\RegistryBooster.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-842925246-527237240-1801674531-1003Core] (.Google Inc..) -- C:\Documents and Settings\Abdou\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-842925246-527237240-1801674531-1003UA] (.Google Inc..) -- C:\Documents and Settings\Abdou\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
[MD5.E67BA625D75BB170FAE16970822CF4C1] [APT] [Install_NSS] (.Symantec Corporation.) -- C:\Program Files\DivX\Symantec\scstubinstaller.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeLogonTaskS-1-5-21-842925246-527237240-1801674531-1003] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\realupgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeScheduledTaskS-1-5-21-842925246-527237240-1801674531-1003] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\realupgrade.exe
[MD5.00000000000000000000000000000000] [APT] [RegistryBooster] (.Pas de propriétaire.) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe (.not file.)

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys
O41 - Driver: (AvgLdx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\WINDOWS\system32\Drivers\avgldx86.sys
O41 - Driver: (AvgMfx86) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\WINDOWS\system32\Drivers\avgmfx86.sys
O41 - Driver: (AvgTdiX) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\WINDOWS\system32\Drivers\avgtdix.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys
O41 - Driver: (epfwtdir) . (.ESET - ESET Antivirus Network Redirector.) - C:\Windows\System32\DRIVERS\epfwtdir.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys

---\\ Logiciels installés (O42)
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISE_{5A2F65A4-808F-4A1E-973E-92E17824982D}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{3EC77D26-799B-4CD8-914F-C1565E796173}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{430971B1-C31E-45DA-81E0-72C095BAB72C}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISE_{B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISE_{EC50B538-CBE1-42E6-B7FE-87AA540AADFB}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISE_{A0353900-21A2-42CF-B973-883500A027F7}
O42 - Logiciel: AVG 9.0 - (.AVG Technologies.) [HKLM] -- AVG9Uninstall
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems, Inc..) [HKLM] -- {AF36CE1D-FD2C-4BA0-93FA-1196785DD610}
O42 - Logiciel: Adobe Reader 9 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A90000000001}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: BlackBerry Desktop Software 6.0.1 - (.Research In Motion Ltd..) [HKLM] -- BlackBerry_Desktop
O42 - Logiciel: BlackBerry Desktop Software 6.0.1 - (.Research In Motion Ltd..) [HKLM] -- {84A78614-0E4B-4A4E-BA8C-2B0A05A08E4E}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: Driver Genius Professional Edition - (.Driver-Soft Inc..) [HKLM] -- Driver Genius Professional Edition_is1
O42 - Logiciel: Drumaxx - (.Image-Line.) [HKLM] -- Drumaxx
O42 - Logiciel: Eazel-FR Toolbar - (.Eazel-FR.) [HKLM] -- Eazel-FR Toolbar
O42 - Logiciel: FL Studio 9 - (.Image-Line.) [HKLM] -- FL Studio 9
O42 - Logiciel: Frets On Fire - (.Pas de propriétaire.) [HKLM] -- Frets on Fire
O42 - Logiciel: FrostWire 4.21.5 - (.FrostWire Team.) [HKLM] -- FrostWire
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: High Definition Audio Driver Package - KB888111 - (.Microsoft Corporation.) [HKLM] -- KB888111WXPSP2
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: IL Download Manager - (.Image-Line.) [HKLM] -- IL Download Manager
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Pas de propriétaire.) [HKLM] -- HDMI
O42 - Logiciel: Java(TM) 6 Update 25 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216018FF}
O42 - Logiciel: LimeWire 5.6.2 - (.Lime Wire, LLC.) [HKLM] -- LimeWire
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 6.0 Parser (KB933579) - (.Microsoft Corporation.) [HKLM] -- {0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 - (.Microsoft Corporation.) [HKLM] -- Wdf01009
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- ENTERPRISE
O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2003 - (.Microsoft Corporation.) [HKLM] -- {90AF040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: Plug-in du navigateur BlackBerry App World - (.Research In Motion Limited.) [HKLM] -- {8DD6892C-C9A8-404B-95ED-1CCE15324178}
O42 - Logiciel: PoiZone - (.Image-Line.) [HKLM] -- PoiZone
O42 - Logiciel: REALTEK GbE & FE Ethernet PCI-E NIC Driver - (.Realtek.) [HKLM] -- {C9BED750-1211-4480-B1A5-718A3BE15525}
O42 - Logiciel: RealNetworks - Microsoft Visual C++ 2008 Runtime - (.RealNetworks, Inc.) [HKLM] -- {7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Sakura - (.Image-Line.) [HKLM] -- Sakura
O42 - Logiciel: Sawer - (.Image-Line.) [HKLM] -- Sawer
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB951596) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{1AFF2298-CC00-4A3B-866A-C62B8373794E}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB951944) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{797AE457-BA17-4BBC-B501-25FB3A0103C7}
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB951546) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{7399DD71-8E24-4E60-B6A8-6CED89C0AC26}
O42 - Logiciel: Security Update for Microsoft Office OneNote 2007 (KB950130) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB951338) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{558B709B-821B-4FC5-90FC-9A8890641E77}
O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB950114) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB950113) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{AD72BABE-C733-4FCF-9674-4314466191B9}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB951808) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{8F375E11-4FD6-4B89-9E2B-A76D48B51E00}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB954326) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5F7F6FFF-395D-480E-8450-64F385D82C5F}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Skype(TM) 4.2 - (.Skype Technologies S.A..) [HKLM] -- {D103C4BA-F905-437A-8049-DB24763BBE36}
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM] -- {AB49B509-8FCA-45E6-9FB9-9E4AEEB8F148}
O42 - Logiciel: Uniblue RegistryBooster - (.Uniblue Systems Ltd.) [HKLM] -- Uniblue RegistryBooster
O42 - Logiciel: Uniblue RegistryBooster - (.Uniblue Systems Ltd.) [HKLM] -- {09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA}
O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB952142) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{4AD3A076-427C-491F-A5B7-7D1DE788A756}
O42 - Logiciel: Update for Office 2007 (KB946691) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A420F522-7395-4872-9882-C591B4B92278}
O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (kb956080) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{96CC215F-3F22-4E1E-A101-F0041934A456}
O42 - Logiciel: VLC media player 1.1.5 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Veetle TV 0.9.18 - (.Veetle, Inc.) [HKLM] -- Veetle TV
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Imaging Component - (.Microsoft Corporation.) [HKLM] -- WIC
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
O42 - Logiciel: Windows Media Format Runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASUS]
[HKCU\Software\AVG Security Toolbar]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Eazel-FR]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avg]
[HKCU\Software\Avira]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DivXNetworks]
[HKCU\Software\ESET]
[HKCU\Software\Eazel-FR]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Image-Line]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\Realtek]
[HKCU\Software\Research In Motion]
[HKCU\Software\Roxio]
[HKCU\Software\Skype]
[HKCU\Software\SoftVoice]
[HKCU\Software\Sonic Solutions]
[HKCU\Software\Sonic]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\Trolltech]
[HKCU\Software\Veetle]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\cybelsoft]
[HKCU\Software\imeshmediabartb]
[HKLM\Software\ASUS]
[HKLM\Software\AVG Security Toolbar]
[HKLM\Software\Adobe]
[HKLM\Software\Avg]
[HKLM\Software\Avira]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\DivXNetworks]
[HKLM\Software\DivX]
[HKLM\Software\Dofus 2]
[HKLM\Software\Driver-Soft]
[HKLM\Software\ESET]
[HKLM\Software\Eazel-FR]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\Image-Line]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\MusicNet]
[HKLM\Software\ODBC]
[HKLM\Software\Outsim]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\Propellerhead Software]
[HKLM\Software\RTLSetup]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Research In Motion]
[HKLM\Software\Reviversoft]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Skype]
[HKLM\Software\Symantec]
[HKLM\Software\Uniblue]
[HKLM\Software\VST]
[HKLM\Software\Veetle]
[HKLM\Software\VideoLAN]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\cybelsoft]
[HKLM\Software\iMeshMediabarTb]
[HKLM\Software\mozilla.org]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 8/05/2011 - 19:21:36 - [114716694] ----D- C:\Program Files\Ad-Remover
O43 - CFD: 13/02/2011 - 21:45:48 - [236517388] ----D- C:\Program Files\Adobe
O43 - CFD: 19/09/2010 - 13:28:12 - [116892943] ----D- C:\Program Files\AVG
O43 - CFD: 7/05/2011 - 12:38:14 - [116951473] ----D- C:\Program Files\Avira
O43 - CFD: 8/05/2011 - 19:04:00 - [3704864] ----D- C:\Program Files\CCleaner
O43 - CFD: 15/04/2011 - 1:14:02 - [12522419] ----D- C:\Program Files\CDBurnerXP
O43 - CFD: 19/09/2010 - 18:48:28 - [0] ----D- C:\Program Files\ComPlus Applications
O43 - CFD: 22/01/2011 - 11:54:22 - [1576397] ----D- C:\Program Files\DivX
O43 - CFD: 12/10/2010 - 17:01:36 - [6943292] ----D- C:\Program Files\Driver Whiz
O43 - CFD: 19/09/2010 - 13:39:02 - [17043666] ----D- C:\Program Files\Driver-Soft
O43 - CFD: 19/04/2011 - 22:23:08 - [15803150] ----D- C:\Program Files\Eazel-FR
O43 - CFD: 7/05/2011 - 13:15:54 - [53045386] ----D- C:\Program Files\ESET
O43 - CFD: 8/05/2011 - 20:39:26 - [505209832] ----D- C:\Program Files\Fichiers communs
O43 - CFD: 12/01/2011 - 17:58:30 - [29626204] ----D- C:\Program Files\Frets on Fire
O43 - CFD: 30/04/2011 - 14:20:30 - [35082508] ----D- C:\Program Files\FrostWire
O43 - CFD: 22/01/2011 - 11:56:30 - [54371249] ----D- C:\Program Files\Image-Line
O43 - CFD: 19/09/2010 - 15:05:18 - [9768918] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 19/09/2010 - 15:00:08 - [64806] ----D- C:\Program Files\Intel
O43 - CFD: 12/03/2011 - 19:29:04 - [1297013] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 8/05/2011 - 20:38:58 - [80951576] ----D- C:\Program Files\Java
O43 - CFD: 18/02/2011 - 23:21:52 - [85767031] ----D- C:\Program Files\LimeWire
O43 - CFD: 19/09/2010 - 15:08:38 - [5253635] ----D- C:\Program Files\ma-config.com
O43 - CFD: 8/05/2011 - 19:55:28 - [4932352] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 19/09/2010 - 14:02:18 - [226432] ----D- C:\Program Files\Microsoft
O43 - CFD: 19/09/2010 - 18:51:30 - [0] ----D- C:\Program Files\microsoft frontpage
O43 - CFD: 27/09/2010 - 22:12:28 - [676294550] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 19/09/2010 - 13:31:32 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 19/09/2010 - 13:32:36 - [3178824] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 19/09/2010 - 18:49:12 - [10371290] ----D- C:\Program Files\Movie Maker
O43 - CFD: 5/03/2011 - 23:11:56 - [26521] ----D- C:\Program Files\MSBuild
O43 - CFD: 19/09/2010 - 18:51:30 - [0] ----D- C:\Program Files\msn gaming zone
O43 - CFD: 3/02/2011 - 22:49:30 - [6849] ----D- C:\Program Files\MSXML 6.0
O43 - CFD: 19/09/2010 - 18:51:30 - [0] ----D- C:\Program Files\netmeeting
O43 - CFD: 19/09/2010 - 18:49:20 - [4376249] ----D- C:\Program Files\Outlook Express
O43 - CFD: 31/12/2010 - 18:36:50 - [3620877] ----D- C:\Program Files\Outsim
O43 - CFD: 13/11/2010 - 20:39:42 - [91639899] ----D- C:\Program Files\Real
O43 - CFD: 19/09/2010 - 15:05:18 - [65201963] ----D- C:\Program Files\Realtek
O43 - CFD: 5/03/2011 - 23:11:48 - [36347649] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 5/03/2011 - 23:15:42 - [97577397] ----D- C:\Program Files\Research In Motion
O43 - CFD: 6/02/2011 - 21:38:26 - [668336] ----D- C:\Program Files\Research In Motion Limited
O43 - CFD: 19/09/2010 - 18:49:56 - [1025] ----D- C:\Program Files\Services en ligne
O43 - CFD: 22/01/2011 - 11:56:02 - [17468271] R---D- C:\Program Files\Skype
O43 - CFD: 13/10/2010 - 14:57:32 - [545792] ----D- C:\Program Files\SystemRequirementsLab
O43 - CFD: 10/03/2011 - 16:28:24 - [18699875] ----D- C:\Program Files\Uniblue
O43 - CFD: 19/09/2010 - 19:19:10 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 17/11/2010 - 23:06:54 - [10428379] ----D- C:\Program Files\Veetle
O43 - CFD: 19/09/2010 - 13:37:34 - [25231897] ----D- C:\Program Files\VideoLAN
O43 - CFD: 7/04/2011 - 19:04:14 - [84245360] ----D- C:\Program Files\VstPlugins
O43 - CFD: 19/09/2010 - 14:01:36 - [45772325] ----D- C:\Program Files\Windows Live
O43 - CFD: 19/09/2010 - 14:01:58 - [245112] ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD: 3/02/2011 - 22:54:06 - [4100973] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 19/09/2010 - 18:51:30 - [777728] ----D- C:\Program Files\Windows NT
O43 - CFD: 19/09/2010 - 18:49:58 - [0] --H-D- C:\Program Files\WindowsUpdate
O43 - CFD: 19/09/2010 - 13:30:16 - [3718034] ----D- C:\Program Files\WinRAR
O43 - CFD: 19/09/2010 - 18:51:30 - [0] ----D- C:\Program Files\xerox
O43 - CFD: 8/05/2011 - 21:31:22 - [3940154] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 19/09/2010 - 19:25:30 - [4600350] ----D- C:\Program Files\Fichiers Communs\Adobe
O43 - CFD: 13/02/2011 - 21:45:46 - [30826314] ----D- C:\Program Files\Fichiers Communs\Adobe AIR
O43 - CFD: 19/09/2010 - 13:31:32 - [92976] ----D- C:\Program Files\Fichiers Communs\DESIGNER
O43 - CFD: 3/02/2011 - 22:56:48 - [5302214] ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD: 8/05/2011 - 20:39:26 - [1252295] ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD: 19/09/2010 - 14:02:04 - [229302950] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD: 19/09/2010 - 18:49:20 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD: 19/09/2010 - 20:45:08 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD: 5/03/2011 - 23:15:12 - [47980062] ----D- C:\Program Files\Fichiers Communs\Research In Motion
O43 - CFD: 5/03/2011 - 23:19:54 - [0] ----D- C:\Program Files\Fichiers Communs\Roxio Shared
O43 - CFD: 19/09/2010 - 18:49:22 - [8106] ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD: 29/09/2010 - 15:20:52 - [2135336] ----D- C:\Program Files\Fichiers Communs\Skype
O43 - CFD: 19/09/2010 - 20:45:06 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD: 19/09/2010 - 19:26:42 - [41357049] ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD: 19/09/2010 - 14:00:38 - [118752875] ----D- C:\Program Files\Fichiers Communs\Windows Live
O43 - CFD: 19/09/2010 - 13:55:32 - [19175660] -SH-D- C:\Program Files\Fichiers Communs\WindowsLiveInstaller
O43 - CFD: 13/11/2010 - 20:39:38 - [352256] ----D- C:\Program Files\Fichiers Communs\xing shared
O43 - CFD: 13/02/2011 - 21:45:48 - [16980048] ----D- C:\Documents and Settings\Abdou\Application Data\Adobe
O43 - CFD: 13/02/2011 - 22:18:00 - [4504] ----D- C:\Documents and Settings\Abdou\Application Data\app
O43 - CFD: 15/04/2011 - 1:14:14 - [1618] ----D- C:\Documents and Settings\Abdou\Application Data\Canneverbe Limited
O43 - CFD: 26/10/2010 - 22:01:40 - [130048] ----D- C:\Documents and Settings\Abdou\Application Data\DivX
O43 - CFD: 2/05/2011 - 18:45:32 - [1519585] ----D- C:\Documents and Settings\Abdou\Application Data\Dofus 2
O43 - CFD: 13/02/2011 - 22:18:00 - [0] ----D- C:\Documents and Settings\Abdou\Application Data\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 13/02/2011 - 23:28:00 - [0] ----D- C:\Documents and Settings\Abdou\Application Data\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 3/04/2011 - 0:05:44 - [0] ----D- C:\Documents and Settings\Abdou\Application Data\dvdcss
O43 - CFD: 12/01/2011 - 17:58:42 - [71] ----D- C:\Documents and Settings\Abdou\Application Data\fretsonfire
O43 - CFD: 8/05/2011 - 19:18:58 - [33556914] ----D- C:\Documents and Settings\Abdou\Application Data\FrostWire
O43 - CFD: 19/09/2010 - 19:19:10 - [0] ----D- C:\Documents and Settings\Abdou\Application Data\Identities
O43 - CFD: 3/02/2011 - 22:58:46 - [293] ----D- C:\Documents and Settings\Abdou\Application Data\InstallShield
O43 - CFD: 8/05/2011 - 20:21:00 - [23782856] ----D- C:\Documents and Settings\Abdou\Application Data\LimeWire
O43 - CFD: 26/09/2010 - 21:43:54 - [61114] ----D- C:\Documents and Settings\Abdou\Application Data\Macromedia
O43 - CFD: 8/05/2011 - 19:53:54 - [3231] ----D- C:\Documents and Settings\Abdou\Application Data\Malwarebytes
O43 - CFD: 24/03/2011 - 22:05:08 - [4982896] -S--D- C:\Documents and Settings\Abdou\Application Data\Microsoft
O43 - CFD: 26/09/2010 - 21:55:24 - [0] ----D- C:\Documents and Settings\Abdou\Application Data\Mozilla
O43 - CFD: 13/11/2010 - 20:41:18 - [1224360] ----D- C:\Documents and Settings\Abdou\Application Data\Real
O43 - CFD: 13/02/2011 - 22:18:00 - [0] ----D- C:\Documents and Settings\Abdou\Application Data\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 3/02/2011 - 23:00:18 - [228595965] ----D- C:\Documents and Settings\Abdou\Application Data\Research In Motion
O43 - CFD: 18/01/2011 - 15:42:52 - [354455] ----D- C:\Documents and Settings\Abdou\Application Data\Reviversoft
O43 - CFD: 3/02/2011 - 23:01:46 - [3627763] ----D- C:\Documents and Settings\Abdou\Application Data\Roxio
O43 - CFD: 5/02/2011 - 15:34:30 - [7061768] ----D- C:\Documents and Settings\Abdou\Application Data\Skype
O43 - CFD: 5/02/2011 - 13:07:50 - [68032] ----D- C:\Documents and Settings\Abdou\Application Data\skypePM
O43 - CFD: 26/09/2010 - 21:53:52 - [10198478] ----D- C:\Documents and Settings\Abdou\Application Data\Sun
O43 - CFD: 13/10/2010 - 14:57:24 - [337016] ----D- C:\Documents and Settings\Abdou\Application Data\SystemRequirementsLab
O43 - CFD: 10/03/2011 - 16:28:40 - [821960] ----D- C:\Documents and Settings\Abdou\Application Data\Uniblue
O43 - CFD: 8/04/2011 - 17:50:22 - [1514954] ----D- C:\Documents and Settings\Abdou\Application Data\vlc
O43 - CFD: 13/02/2011 - 21:45:44 - [47726084] ----D- C:\Documents and Settings\Abdou\Local Settings\Application Data\Adobe
O43 - CFD: 7/05/2011 - 0:46:08 - [6765553] ----D- C:\Documents and Settings\Abdou\Local Settings\Application Data

Réponse 4 / 4

Utilisateur anonyme

Re,

1/
Rapport incomplet, pour cela :

Hébergement de rapport sur pjjoint.malekal.com

* Rends toi sur http://pjjoint.malekal.com/
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux heberger et clique sur Ouvrir
*Clique sur le bouton Envoyer
* Un message de confirmation s'affiche, copie le lien dans ta prochaine réponse.

2/
Fais la désinstallation de Nod32 et AVG9 comme déja expliqué ICI

@+

ali

donc AVIRA est le meilleur ?

Utilisateur anonyme

Je te conseille avira, mais c'est pas obligatoire :)

C'est toi qui décide

On va continuer demain

bonne nuit

PC très lent accose de VIRUS svp !

4 réponses

Votre réponse

Newsletters