Sujet Précédent Sujet Suivant

Ecran Bleu au demarrage

Fermé
Nixxx Messages postés 9 Date d'inscription mardi 28 juin 2011 Statut Membre Dernière intervention 29 juin 2011 - Modifié par irongege le 28/06/2011 à 22:33
 Utilisateur anonyme - 28 juin 2011 à 23:08
Bonjour à tous,

Après installation de COMODO,Malware, et AVIRA j'ai redemarré mon ordinateur comme demandé.
Mais, lorsqu'il arrive sur la page du mot de passe, un ecran bleu apparait et l'ordinateur émet de nombreux "bips" successifs et rapides. J'ai juste eu le temps de lire le mot "driver".
Il démarre bien en mode sans echec. Je ne sais pas quoi faire. Un de ses antivérolles m'a t-il supprimer un fichier système ? Ou ai-je attraper un virus en téléchargeant tout ces logiciels ?
Merci par avance de votre aide précieuse.. :/

Config : ordinateur portable, HP Pavillion - Windows 7 32bits.
A voir également:

4 réponses

Réponse 1 / 4
Utilisateur anonyme
28 juin 2011 à 22:37
Bonsoir

Dans ce mode sans échec avec prise en charge réseau;

Pour de plus amples informations, fait ceci stp

Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html

Ou

https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/

Serveur N°2

Ou

http://www.premiumorange.com/zeb-help-process/zhpdiag.html
en bas de la page ZHP avec un numéro de version.

Une fois le téléchargement achevé, dé zippe le fichier obtenu et place ZHPDiag.exe sur ton Bureau.

Double-clique sur l'icône pour lancer le programme. Sous Vista ou Seven clic droit « exécuter en tant que administrateur »


Clique sur la loupe pour lancer l'analyse.

Laisse l'outil travailler, il peut être assez long.

Ferme ZHPDiag en fin d'analyse.


Pour transmettre le rapport clique sur ce lien :

http://www.cijoint.fr/index.php

http://pjjoint.malekal.com/

Clique sur Parcourir et cherche le répertoire où est installé ZHPDiag (en général C:\Program Files\ZHPDiag).

Sélectionne le fichier ZHPDiag.txt.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.

Merci

A+
1
Réponse 2 / 4
Nixxx Messages postés 9 Date d'inscription mardi 28 juin 2011 Statut Membre Dernière intervention 29 juin 2011
28 juin 2011 à 22:45
Ok je fais ca et je poste. Merci beaucoup pour ton aide
0
Réponse 3 / 4
Nixxx Messages postés 9 Date d'inscription mardi 28 juin 2011 Statut Membre Dernière intervention 29 juin 2011
28 juin 2011 à 22:51
C'est en cours. Par contre je le fais sans la prise en charge réseau j espere que ça va pas fausser le rapport..
0
Utilisateur anonyme
28 juin 2011 à 22:54
Re

La prise en charge réseau te permettais de télécharger à partir de ce PC à problèmes.

@+
0
Réponse 4 / 4
Nixxx Messages postés 9 Date d'inscription mardi 28 juin 2011 Statut Membre Dernière intervention 29 juin 2011
28 juin 2011 à 22:56
Voilà c est terminé je te copie colle le .txt :

Rapport de ZHPDiag v1.27.2353 par Nicolas Coolman, Update du 28/06/2011
Run by Nixxx at 28/06/2011 22:50:54
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox v (Defaut)

---\\ System Information
Windows 7 Ultimate Edition, 32-bit (Build 7600)
Processor: x86 Family 16 Model 6 Stepping 2, AuthenticAMD
Operating System: 32 Bits
Boot mode: Sans Èchec (Fail-safe boot)
Total RAM: 3580 MB (89% free)
System Restore: ActivÈ (Enable)
System drive C: has 65 GB (21%) free of 298 GB

---\\ Logged in mode
Computer Name: NIXXX-PC
User Name: Nixxx
All Users Names: Nixxx, HomeGroupUser$, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=C:\Users\Nixxx\AppData\Roaming
%LocalAppData%=C:\Users\Nixxx\AppData\Local
%StartMenu%=C:\Users\Nixxx\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 65 Go of 298 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 138 Go of 298 Go)
E:\ CD-ROM drive (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Free 4 Go of 4 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK



---\\ Recherche particuliËre de fichiers gÈnÈriques
[MD5.15BC38A7492BEFE831966ADB477CF76F] - (.Microsoft Corporation - Explorateur Windows.) (.14/07/2009 - 02:14:20.) -- C:\Windows\Explorer.exe [2613248]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de dÈmarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.0D874F3BC751CC2198AF2E6783FB8B35] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/07/2009 - 02:16:19.) -- C:\Windows\system32\wininet.dll [977920]
[MD5.8EC6A4AB12B8F3759E21F8E3A388F2CF] - (.Microsoft Corporation - Application díouverture de session Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Winlogon.exe [285696]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
[MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du systËme de fichiers NT.) (.14/07/2009 - 02:20:44.) -- C:\Windows\system32\drivers\ntfs.sys [1210432]



---\\ Etat des fichiers cachÈs (CachÈ/Total)
~ Mes images (My Pictures) : 23/399
~ Mes musiques (My Musics) : 1025/3606
~ Mes Videos (My Videos) : 1/342
~ Mes Favoris (My Favorites) : 3/27
~ Mes Documents (My Documents) : 446/19612
~ Mon Bureau (My Desktop) : 943/17129
~ Menu demarrer (Programs) : 2/16



---\\ Processus lancÈs
[MD5.F4D4114BE9AF05AFA3C904A21DE95D9D] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\Security\ZHPDiag\ZHPDiag.exe [656896]



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Nixxx\AppData\Roaming\Mozilla\Firefox\Profiles\pzwvd6yf.default\prefs.js
M3 - MFPP: Plugins - [Nixxx] -- C:\Users\Nixxx\AppData\Roaming\Mozilla\Firefox\Profiles\pzwvd6yf.default\searchplugins\webster.xml
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.69] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.69] - (.RealNetworks, Inc. - 6.0.12.69.) -- C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll
M2 - MFEP: prefs.js [Nixxx - pzwvd6yf.default\{a3a5c777-f583-4fef-9380-ab4add1bc2a8}] [] v (.CuevanapageURL>http://www.cuevana.com</em:homepageURL><em:targetApplication><Description><em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id><em:minVersion>2.0



---\\ Internet Explorer, DÈmarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKUS\S-1-5-21-2374920021-2482103409-2968200569-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-2374920021-2482103409-2968200569-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = search-web.net
R1 - HKUS\S-1-5-21-2374920021-2482103409-2968200569-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search-web.net3a%23fffff0%3b&ie=iso-8859-1&oe=iso-8859-1&sa=rechercher&lang=en&q={searchterms}
R1 - HKUS\S-1-5-21-2374920021-2482103409-2968200569-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://ww38.search-web.net/?subid1=20200207-1536-5282-b382-404527b40094
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll



---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\Security\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} ClÈ orpheline
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll



---\\ ---\\ Applications dÈmarrÈes par registre & par dossier (O4)
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SmartMenu] . (.Pas de propriÈtaire - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\Media\Quick Time\QTTask.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Security\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [COMODO] . (.COMODO - COMODO GeekBuddy.) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe
O4 - HKLM\..\Run: [CPA] . (.COMODO - COMODO livePCsupport.) -- C:\Program Files\COMODO\COMODO GeekBuddy\VALA.exe
O4 - HKLM\..\Run: [COMODO Internet Security] . (.COMODO - COMODO Internet Security.) -- C:\Program Files\Security\COMODO\COMODO Internet Security\cfp.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Security\Malwarebytes' Anti-Malware\mbam.exe
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Security\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Security\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2374920021-2482103409-2968200569-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-2374920021-2482103409-2968200569-1000\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Security\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-2374920021-2482103409-2968200569-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe



---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haihaisoft Universal Player.lnk . (.Haihaisoft.) -- C:\Program Files\Media\Haihaisoft Universal Player\hmplayer.exe
O4 - Global Startup: C:\Users\Nixxx\Desktop\AusLogics Disk Defrag.lnk . (.Auslogics.) -- C:\Program Files\Auslogics\AusLogics Disk Defrag\diskdefrag.exe
O4 - Global Startup: C:\Users\Nixxx\Desktop\DexXx.lnk . (...) -- D:\
O4 - Global Startup: C:\Users\Nixxx\Desktop\MusiK.lnk . (...) -- D:\MUSIK\MusiK
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\COMODO GeekBuddy.lnk . (.COMODO.) -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DVD Shrink 3.1.lnk . (.DVD Shrink.) -- C:\Program Files\Media\DVD Shrink\DVD Shrink 3.1.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2003.lnk . (...) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Internet\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\notepad.exe - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\notepad.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Picasa 3.lnk . (.Google Inc..) -- C:\Program Files\Google\Picasa3\Picasa3.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Skype.lnk . (...) -- C:\Windows\Installer\{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}\SkypeIcon.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Soulseek.lnk . (...) -- C:\Program Files\Internet\Soulseek\slsk.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Internet\Vuze\Azureus.exe
O4 - Global Startup: C:\Users\Nixxx\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk . (.Nullsoft.) -- C:\Program Files\MusiK\Winamp\winamp.exe



---\\ Lignes supplÈmentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
O8 - Extra context menu item: Recherche avec search-web . (...) -- C:\Users\Nixxx\scriptjava.html



---\\ Boutons situÈs sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim díaffectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur díespace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur díespace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Computer, Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {A86FEA6F-95C0-4190-A622-C5C02739CBE3} (WebTransfer Control) - http://snl.bydeluxe.com/SOLASP/FileUD/WebTranU.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0A51E341-CDD8-405D-A412-6E006FEC86BA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{0A51E341-CDD8-405D-A412-6E006FEC86BA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{0A51E341-CDD8-405D-A412-6E006FEC86BA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{20E15324-0963-4D2B-B016-88755759505C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1



---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL



---\\ Valeur de Registre AppInit_DLLs et sous-clÈs Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.COMODO - COMODO Internet Security.) - C:\Windows\system32\guard32.dll



---\\ ClÈ de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.



---\\ Liste des services NT non Microsoft et non dÈsactivÈs (O23)
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Security\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Security\Avira\AntiVir Desktop\avguard.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) . (.Apple Computer, Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: COMODO livePCsupport Service (CLPSLS) . (.COMODO - COMODO livePCsupport Service.) - C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe
O23 - Service: COMODO Internet Security Helper Service (cmdagent) . (.COMODO - COMODO Internet Security.) - C:\Program Files\Security\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Service Ithea (itheaService) . (.ACTiKEY - iTHEA Service ACTiKEY for iTHEA Key.) - C:\Windows\system32\itheaSvc.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) . (.Validity Sensors, Inc. - VFS101 VCS API Library.) - C:\Windows\system32\vcsFPService.exe



---\\ EnumÈration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)



---\\ Pilotes lancÈs au dÈmarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (cmdGuard) . (.COMODO - COMODO Internet Security Sandbox Driver.) - C:\Windows\System32\DRIVERS\cmdguard.sys
O41 - Driver: (cmdHlp) . (.COMODO - COMODO Internet Security Helper Driver.) - C:\Windows\System32\DRIVERS\cmdhlp.sys
O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (inspect) . (.COMODO - COMODO Internet Security Firewall Driver.) - C:\Windows\System32\DRIVERS\inspect.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-systËme de mise en mÈmoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: (CSVirtualDiskDrv) . (.Infowatch - Virtual Volume Container Driver (wxp).) - C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys
O41 - Driver: (kl1) . (. - .) - C:\Windows\System32\DRIVERS\kl1.sys (.not file.)
O41 - Driver: (KLIF) . (. - .) - C:\Windows\System32\DRIVERS\klif.sys (.not file.)
O41 - Driver: (KLIM6) . (. - .) - C:\Windows\System32\DRIVERS\klim6.sys (.not file.)



---\\ Logiciels installÈs (O42)
O42 - Logiciel: AC3Filter (remove only) - (.Pas de propriÈtaire.) [HKLM] -- AC3Filter
O42 - Logiciel: AHV content for Acrobat and Flash - (.Adobe Systems Incorporated.) [HKLM] -- {6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}
O42 - Logiciel: Adobe After Effects CS3 Presets - (.Adobe Systems Incorporated.) [HKLM] -- {193EAFD0-1BAF-4FB4-B18F-79D5D6A4B285}
O42 - Logiciel: Adobe Anchor Service CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {90176341-0A8B-4CCC-A78D-F862228A6B95}
O42 - Logiciel: Adobe Asset Services CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
O42 - Logiciel: Adobe Bridge CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {9C9824D9-9000-4373-A6A5-D0E5D4831394}
O42 - Logiciel: Adobe Bridge Start Meeting - (.Adobe Systems Incorporated.) [HKLM] -- {08B32819-6EEF-4057-AEDA-5AB681A36A23}
O42 - Logiciel: Adobe BridgeTalk Plugin CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}
O42 - Logiciel: Adobe CMaps - (.Adobe Systems Incorporated.) [HKLM] -- {A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
O42 - Logiciel: Adobe Camera Raw 4.0 - (.Adobe Systems Incorporated.) [HKLM] -- {B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
O42 - Logiciel: Adobe Color - Photoshop Specific - (.Adobe Systems Incorporated.) [HKLM] -- {A2D81E70-2A98-4A08-A628-94388B063C5E}
O42 - Logiciel: Adobe Color Common Settings - (.Adobe Systems Incorporated.) [HKLM] -- {DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}
O42 - Logiciel: Adobe Color EU Recommended Settings - (.Adobe Systems Incorporated.) [HKLM] -- {73B5D990-04EA-4751-B10F-5534770B91F2}
O42 - Logiciel: Adobe Color JA Extra Settings - (.Adobe Systems Incorporated.) [HKLM] -- {DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
O42 - Logiciel: Adobe Color NA Extra Settings - (.Adobe Systems Incorporated.) [HKLM] -- {FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}
O42 - Logiciel: Adobe Creative Suite 3 Master Collection - (.Adobe Systems Incorporated.) [HKLM] -- {5D2398DF-3022-4820-93BA-F1175FBEA9CA}
O42 - Logiciel: Adobe Default Language CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
O42 - Logiciel: Adobe Device Central CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM] -- {C2D69781-F392-4118-A5A7-C7E9C38DBFC2}
O42 - Logiciel: Adobe Extension Manager CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {BE5F3842-8309-4754-92D5-83E02E6077A3}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Flash Player 9 ActiveX - (.Adobe Systems, Inc..) [HKLM] -- {BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}
O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM] -- {6ABE0BEE-D572-4FE8-B434-9E72A289431B}
O42 - Logiciel: Adobe Help Viewer CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {7ACFB90E-8FD0-4397-AD3A-5195412623A3}
O42 - Logiciel: Adobe Illustrator CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {6E08CE13-C2AB-4749-9335-5900B958929E}
O42 - Logiciel: Adobe InDesign CS3 Icon Handler - (.Adobe Systems Incorporated.) [HKLM] -- {EA7B3CC4-366D-4CF6-8350-FD7A7034116E}
O42 - Logiciel: Adobe Linguistics CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {54793AA1-5001-42F4-ABB6-C364617C6078}
O42 - Logiciel: Adobe MotionPicture Color Files - (.Adobe Systems Incorporated.) [HKLM] -- {6B708481-748A-4EB4-97C1-CD386244FF77}
O42 - Logiciel: Adobe PDF Library Files - (.Adobe Systems Incorporated.) [HKLM] -- {D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC}
O42 - Logiciel: Adobe Reader 9.3.2 - FranÁais - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}
O42 - Logiciel: Adobe SING CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {B671CBFD-4109-4D35-9252-3062D3CCB7B2}
O42 - Logiciel: Adobe SVG Viewer 3.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer
O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM] -- {1628F6BD-5ED1-4FD1-B90F-C106AF4E00F0}
O42 - Logiciel: Adobe Stock Photos CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {29E5EA97-5F74-4A57-B8B2-D4F169117183}
O42 - Logiciel: Adobe Type Support - (.Adobe Systems Incorporated.) [HKLM] -- {8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
O42 - Logiciel: Adobe Update Manager CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {E69AE897-9E0B-485C-8552-7841F48D42D8}
O42 - Logiciel: Adobe Version Cue CS3 Client - (.Adobe Systems Incorporated.) [HKLM] -- {D0DFF92A-492E-4C40-B862-A74A173C25C5}
O42 - Logiciel: Adobe Video Profiles - (.Adobe Systems Incorporated.) [HKLM] -- {845A8DB9-8802-4FD3-9FE3-938A6C46A2EC}
O42 - Logiciel: Adobe WAS CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {C5BD220A-EFE8-48A5-B70E-9503D535FACE}
O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM] -- {184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
O42 - Logiciel: Adobe XMP DVA Panels CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {0224CACC-994D-45F8-B973-D65056EA9C2F}
O42 - Logiciel: Adobe XMP Panels CS3 - (.Adobe Systems Incorporated.) [HKLM] -- {D5A31AB1-345D-47C7-A87B-036A669F6DF1}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d}
O42 - Logiciel: Ajouter ou supprimer Adobe Creative Suite 3 Master Collection - (.Adobe Systems Incorporated.) [HKLM] -- Adobe_b5d5789539ea1f004a4defceea74312
O42 - Logiciel: AnyDVD - (.SlySoft.) [HKLM] -- AnyDVD
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Audacity 1.2.6 - (.Pas de propriÈtaire.) [HKLM] -- Audacity_is1
O42 - Logiciel: AusLogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: Ayato 3 version 1.1.4.682 - (.Ninsight Broadcast.) [HKLM] -- Ayato 2.0_is1
O42 - Logiciel: BSPlayer - (.Pas de propriÈtaire.) [HKLM] -- BSPlayer1
O42 - Logiciel: CDex extraction audio - (.Pas de propriÈtaire.) [HKLM] -- CDex
O42 - Logiciel: COMODO GeekBuddy - (.COMODO.) [HKLM] -- COMODO GeekBuddy
O42 - Logiciel: COMODO Internet Security - (.COMODO Security Solutions Inc..) [HKLM] -- {FD8E178D-8B4E-42DA-B434-EFF270329B1C}
O42 - Logiciel: Cakewalk VST Adapter 4 - (.Pas de propriÈtaire.) [HKLM] -- Cakewalk VST Adapter 4
O42 - Logiciel: CamStudio 2.0 Fr - (.Pas de propriÈtaire.) [HKLM] -- CamStudio 2.0 Fr_is1
O42 - Logiciel: Canon MP640 series MP Drivers - (.Pas de propriÈtaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP640_series
O42 - Logiciel: Capture NX 2 - (.NIKON CORPORATION.) [HKLM] -- Capture NX 2
O42 - Logiciel: DVD Region-Free 3.10 - (.Fengtao Software.) [HKLM] -- DVD Region-Free_is1
O42 - Logiciel: DVD Shrink 3.1.4 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1
O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM] -- {b1adf008-e898-4fe2-8a1f-690d9a06acaf}
O42 - Logiciel: DreamStation DXi2 - (.Pas de propriÈtaire.) [HKLM] -- DreamStation DXi2
O42 - Logiciel: Drumaxx - (.Image-Line.) [HKLM] -- Drumaxx
O42 - Logiciel: DÈtection de l'application Winamp - (.Nullsoft, Inc.) [HKCU] -- Winamp Detect
O42 - Logiciel: EVEREST Ultimate Edition v4.00 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1
O42 - Logiciel: FileZilla (remove only) - (.Pas de propriÈtaire.) [HKLM] -- FileZilla
O42 - Logiciel: Guitar Pro 4 - (.Arobas Music.) [HKLM] -- {54A2CFDE-DC70-46E0-92AC-DC88F6303D39}
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM] -- {5C3E7880-7F8B-4A06-A3C3-95509F092161}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: Haihaisoft Universal Player - (.Haihaisoft.) [HKLM] -- Haihaisoft Universal Player
O42 - Logiciel: Hardcore - (.Image-Line.) [HKLM] -- Hardcore
O42 - Logiciel: IL Download Manager - (.Image-Line.) [HKLM] -- IL Download Manager
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
O42 - Logiciel: Internet 3G+ Bouygues Telecom - (.Bouygues.) [HKLM] -- {FCC77FD5-764E-40C9-98A1-1B5A4B6F80D1}
O42 - Logiciel: Ithea Version 1.1.6.4 - (.ACTIKEY.) [HKLM] -- {8F3287F4-5E4A-4E6E-9FC6-9DFAF1E99D15}_is1
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216014FF}
O42 - Logiciel: KaraFun 1.18 - (.Recisio.) [HKLM] -- KaraFun_is1
O42 - Logiciel: Livre photo Pixum - (.Pas de propriÈtaire.) [HKLM] -- Livre photo Pixum
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {18754BA4-4F0C-4E6E-888B-9496AFA05F43}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Menu Templates - Starter Kit - (.Nero AG.) [HKLM] -- {b78120a0-cf84-4366-a393-4d0a59bc546c}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 - (.Microsoft Corporation.) [HKLM] -- {6AFCA4E1-9B78-3640-8F72-A7BF33448200}
O42 - Logiciel: Mozilla Firefox (3.6.18) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.18)
O42 - Logiciel: Nero 9 - (.Nero AG.) [HKLM] -- {1e36b424-27d4-421c-ade7-2bd88d67cd7e}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM] -- {bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM] -- {e8a80433-302b-4ff1-815d-fcc8eac482ff}
O42 - Logiciel: NeroBurningROM - (.Nero AG.) [HKLM] -- {d025a639-b9c9-417d-8531-208859000af8}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM] -- {595a3116-40bb-4e0f-a2e8-d7951da56270}
O42 - Logiciel: Nikon Message Center - (.Nikon.) [HKLM] -- {D2FCC1AE-6311-47C5-8130-C6C66D77DD71}
O42 - Logiciel: Outil de tÈlÈchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: PDF Settings - (.Adobe Systems Incorporated.) [HKLM] -- {AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
O42 - Logiciel: PDFCreator - (.Frank Heind^rfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: Picture Control Utility - (.Nikon.) [HKLM] -- {87441A59-5E64-4096-A170-14EFE67200C3}
O42 - Logiciel: PoiZone - (.Image-Line.) [HKLM] -- PoiZone
O42 - Logiciel: PowerArchiver - (.Pas de propriÈtaire.) [HKLM] -- PowerArchiver
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: SNLClient 1.1.9 - (.Pas de propriÈtaire.) [HKLM] -- SNLCLIENT_is1
O42 - Logiciel: SONAR 4 Producer Edition - (.Pas de propriÈtaire.) [HKLM] -- SONAR 4 Producer Edition
O42 - Logiciel: Sakura - (.Image-Line.) [HKLM] -- Sakura
O42 - Logiciel: Sawer - (.Image-Line.) [HKLM] -- Sawer
O42 - Logiciel: Skypeô 5.0 - (.Skype Technologies S.A..) [HKLM] -- {E633D396-5188-4E9D-8F6B-BFB8BF3467E8}
O42 - Logiciel: SoulSeek Client 156c - (.Pas de propriÈtaire.) [HKLM] -- Soulseek
O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-5464-3428-900000000004}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Toxic Biohazard - (.Image-Line.) [HKLM] -- Toxic Biohazard
O42 - Logiciel: VSO Image Resizer 1.0.9 - (.VSO-Software.) [HKLM] -- VSO Image Resizer_is1
O42 - Logiciel: VSO Image Resizer 3.0.1.2 - (.VSO-Software.) [HKLM] -- {3EE51BAD-9916-49C7-90BA-3D500B031E0C}_is1
O42 - Logiciel: Validity Sensors DDK - (.Validity Sensors, Inc..) [HKLM] -- {62A20ECA-920E-4052-BF77-88C78DD20FAA}
O42 - Logiciel: VideoLAN VLC media player 0.8.5 - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Vista Codec Package - (..) [HKLM] -- {F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM] -- 8461-7759-5462-8226
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM] -- Winamp
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Windows Movie Maker 2.6 - (.Microsoft Corporation.) [HKLM] -- {B3DAF54F-DB25-4586-9EF1-96D24BB14088}
O42 - Logiciel: dBpoweramp Music Converter - (.Illustrate.) [HKLM] -- dBpoweramp Music Converter
O42 - Logiciel: dBpoweramp m4a Codec - (.Illustrate.) [HKLM] -- dBpoweramp m4a Codec

---\\ HKCU & HKLM Software Keys
[HKCU\Software\AC3Filter]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Monitored]
[HKCU\Software\AppDataLow\Software\settings]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Arobas Music]
[HKCU\Software\Audacity]
[HKCU\Software\Audio Simulation]
[HKCU\Software\AusLogics]
[HKCU\Software\Avira]
[HKCU\Software\Azureus]
[HKCU\Software\BST]
[HKCU\Software\Bouygues]
[HKCU\Software\CDDB]
[HKCU\Software\Cakewalk Music Software]
[HKCU\Software\CeWe Color]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\ComodoGroup]
[HKCU\Software\Conduit]
[HKCU\Software\CoreVorbis]
[HKCU\Software\CyberLink]
[HKCU\Software\DVD Region-Free]
[HKCU\Software\DVD Shrink]
[HKCU\Software\David Cornish]
[HKCU\Software\FileZilla]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\Haihaisoft Universal Player ActiveX OCX]
[HKCU\Software\Haihaisoft Universal Player]
[HKCU\Software\Haihaisoft]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Illustrate]
[HKCU\Software\Image-Line]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Lavalys]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaLooks]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Nikon]
[HKCU\Software\Ninsight]
[HKCU\Software\ODBC]
[HKCU\Software\PDFCreator]
[HKCU\Software\PPM]
[HKCU\Software\Perl]
[HKCU\Software\Piano Hard]
[HKCU\Software\Policies]
[HKCU\Software\PowerArchiver]
[HKCU\Software\RECISIO]
[HKCU\Software\RealNetworks]
[HKCU\Software\SCC]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\SkypeApps]
[HKCU\Software\Skype]
[HKCU\Software\SlySoft]
[HKCU\Software\SoftVTU]
[HKCU\Software\SoftVoice]
[HKCU\Software\Softonic]
[HKCU\Software\Soulseek]
[HKCU\Software\SpoonInstall]
[HKCU\Software\Synaptics]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSO]
[HKCU\Software\Winamp]
[HKCU\Software\Xobni]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\cybelsoft]
[HKCU\Software\ej-technologies]
[HKCU\Software\madFlac]
[HKLM\Software\<company>]
[HKLM\Software\ACTIKEY]
[HKLM\Software\AMD]
[HKLM\Software\ASIO]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe Systems]
[HKLM\Software\Adobe]
[HKLM\Software\Alien Connections]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Audible]
[HKLM\Software\Avira]
[HKLM\Software\Azureus]
[HKLM\Software\Bouygues]
[HKLM\Software\CDDB]
[HKLM\Software\Cakewalk Music Software]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\ComodoGroup]
[HKLM\Software\Conduit]
[HKLM\Software\CoreCodec]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EDIROL]
[HKLM\Software\GNU]
[HKLM\Software\GeekBuddy]
[HKLM\Software\Google]
[HKLM\Software\HPS]
[HKLM\Software\HP]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Haihaisoft]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Huawei technologies]
[HKLM\Software\Image-Line]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MediaLooks]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nero]
[HKLM\Software\Nikon]
[HKLM\Software\Ninsight]
[HKLM\Software\Nullsoft]
[HKLM\Software\ODBC]
[HKLM\Software\Outsim]
[HKLM\Software\PctelEapPeer Authentication]
[HKLM\Software\Podcasting]
[HKLM\Software\Policies]
[HKLM\Software\PreferencePane]
[HKLM\Software\Preview Systems]
[HKLM\Software\Propellerhead Software]
[HKLM\Software\RECISIO]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Skype]
[HKLM\Software\SlySoft]
[HKLM\Software\SmithMicro]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\VST]
[HKLM\Software\Validity]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\X-AVCSD]
[HKLM\Software\cybelsoft]
[HKLM\Software\ej-technologies]
[HKLM\Software\illiminable]
[HKLM\Software\magnet]
[HKLM\Software\mozilla.org]
[HKLM\Software\vso]



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 31/05/2010 - 19:46:00 - [1070231949] ----D- C:\Program Files\Adobe
O43 - CFD: 05/02/2011 - 23:51:22 - [2221118] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 25/12/2009 - 18:08:38 - [4390945] ----D- C:\Program Files\Auslogics
O43 - CFD: 25/03/2010 - 10:40:12 - [41944358] ----D- C:\Program Files\Ayato 3
O43 - CFD: 25/02/2010 - 18:10:02 - [323584] ----D- C:\Program Files\Bonjour
O43 - CFD: 26/02/2010 - 21:34:42 - [870675] ----D- C:\Program Files\Cakewalk
O43 - CFD: 23/03/2010 - 02:02:38 - [15972910] --H-D- C:\Program Files\CanonBJ
O43 - CFD: 22/06/2011 - 14:53:46 - [1194687764] ----D- C:\Program Files\Common Files
O43 - CFD: 22/06/2011 - 15:59:00 - [18462554] ----D- C:\Program Files\COMODO
O43 - CFD: 03/02/2010 - 11:51:14 - [520728] ----D- C:\Program Files\Conduit
O43 - CFD: 27/12/2009 - 18:32:52 - [870856] ----D- C:\Program Files\Deluxe Digital Studios
O43 - CFD: 14/07/2009 - 11:01:32 - [83226132] ----D- C:\Program Files\DVD Maker
O43 - CFD: 25/12/2009 - 17:41:28 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 26/12/2009 - 18:42:02 - [78052338] ----D- C:\Program Files\Google
O43 - CFD: 01/02/2010 - 14:32:56 - [214628312] ----D- C:\Program Files\GraphiK
O43 - CFD: 31/05/2010 - 20:15:52 - [136326681] ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 23/01/2011 - 03:59:54 - [67283842] ----D- C:\Program Files\Image-Line
O43 - CFD: 31/05/2010 - 20:17:00 - [19753527] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 01/09/2010 - 12:33:12 - [122706187] ----D- C:\Program Files\Internet
O43 - CFD: 05/02/2011 - 23:52:30 - [5611809] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 25/03/2010 - 10:40:46 - [1409315] ----D- C:\Program Files\ithea
O43 - CFD: 18/04/2010 - 20:44:58 - [88678599] ----D- C:\Program Files\Java
O43 - CFD: 27/05/2010 - 20:22:24 - [4302221] ----D- C:\Program Files\ma-config.com
O43 - CFD: 05/02/2011 - 23:52:08 - [277018839] ----D- C:\Program Files\Media
O43 - CFD: 27/12/2009 - 13:51:52 - [226432] ----D- C:\Program Files\Microsoft
O43 - CFD: 14/07/2009 - 11:01:22 - [147812402] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 25/12/2009 - 18:56:10 - [207471298] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 25/12/2009 - 18:54:56 - [131072] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 13/11/2010 - 23:33:22 - [307200] ----D- C:\Program Files\MIKSOFT
O43 - CFD: 30/05/2010 - 20:19:56 - [9336778] ----D- C:\Program Files\Movie Maker 2.6
O43 - CFD: 29/12/2009 - 12:39:32 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 22/06/2011 - 16:33:24 - [203980897] ----D- C:\Program Files\MusiK
O43 - CFD: 15/01/2010 - 21:05:10 - [332684908] ----D- C:\Program Files\Nero
O43 - CFD: 25/03/2010 - 10:37:44 - [109029944] ----D- C:\Program Files\Ninsight
O43 - CFD: 23/01/2011 - 03:59:18 - [3632870] ----D- C:\Program Files\Outsim
O43 - CFD: 13/01/2010 - 14:14:26 - [855695] ----D- C:\Program Files\RdDrv001
O43 - CFD: 29/12/2009 - 12:39:32 - [38593281] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 28/06/2011 - 22:47:18 - [338016240] ----D- C:\Program Files\Security
O43 - CFD: 12/12/2010 - 01:22:18 - [19057007] R---D- C:\Program Files\Skype
O43 - CFD: 29/12/2009 - 13:39:34 - [31537471] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/07/2009 - 06:53:24 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 11/01/2011 - 04:11:02 - [117164452] ----D- C:\Program Files\Utiles
O43 - CFD: 29/12/2009 - 13:37:46 - [11711887] ----D- C:\Program Files\Validity Sensors
O43 - CFD: 25/12/2009 - 18:40:50 - [26936399] ----D- C:\Program Files\VideoLAN
O43 - CFD: 25/12/2009 - 18:42:06 - [52058766] ----D- C:\Program Files\VistaCodecPack
O43 - CFD: 14/07/2009 - 10:39:40 - [3049984] ----D- C:\Program Files\Windows Defender
O43 - CFD: 14/07/2009 - 11:01:30 - [7013496] ----D- C:\Program Files\Windows Journal
O43 - CFD: 27/12/2009 - 13:51:46 - [45806173] ----D- C:\Program Files\Windows Live
O43 - CFD: 27/12/2009 - 13:51:28 - [245112] ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD: 14/07/2009 - 10:39:40 - [6180864] ----D- C:\Program Files\Windows Mail
O43 - CFD: 14/07/2009 - 10:39:40 - [6607787] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 25/12/2009 - 17:41:28 - [12194484] ----D- C:\Program Files\Windows NT
O43 - CFD: 14/07/2009 - 10:39:40 - [4417800] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:52:34 - [189440] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 14/07/2009 - 10:39:40 - [6683295] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 18/06/2010 - 22:12:26 - [610515094] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 26/12/2009 - 18:50:40 - [68096] ----D- C:\Program Files\Common Files\Adobe Systems Shared
O43 - CFD: 05/02/2011 - 23:51:32 - [54774793] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 25/12/2009 - 18:56:10 - [86016] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 25/02/2010 - 17:48:06 - [5032265] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 18/04/2010 - 20:47:22 - [1231815] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 25/02/2010 - 18:06:30 - [655109] ----D- C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 01/02/2010 - 14:32:12 - [136553570] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 15/01/2010 - 21:05:34 - [108915793] ----D- C:\Program Files\Common Files\Nero
O43 - CFD: 01/02/2010 - 14:34:30 - [58646905] ----D- C:\Program Files\Common Files\Nikon
O43 - CFD: 01/09/2010 - 12:33:12 - [1459562] ----D- C:\Program Files\Common Files\PctelEapPeer Authentication
O43 - CFD: 05/03/2010 - 12:06:48 - [4167008] ----D- C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 04:37:06 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 12/12/2010 - 01:22:18 - [2164104] ----D- C:\Program Files\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:37:06 - [41103783] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 25/12/2009 - 18:56:06 - [23713069] ----D- C:\Program Files\Common Files\System
O43 - CFD: 25/02/2010 - 11:53:46 - [1917285] ----D- C:\Program Files\Common Files\Vbox
O43 - CFD: 27/12/2009 - 13:48:56 - [143680795] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 15/05/2011 - 13:42:48 - [104880982] ----D- C:\ProgramData\Adobe
O43 - CFD: 25/02/2010 - 18:15:58 - [0] ----D- C:\ProgramData\ALM
O43 - CFD: 05/02/2011 - 23:51:20 - [20614656] ----D- C:\ProgramData\Apple
O43 - CFD: 05/02/2011 - 23:52:08 - [26896384] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 22/06/2011 - 14:44:50 - [161431885] ----D- C:\ProgramData\Avira
O43 - CFD: 03/02/2010 - 11:51:50 - [20] ----D- C:\ProgramData\Azureus
O43 - CFD: 01/09/2010 - 12:33:12 - [349702] ----D- C:\ProgramData\Bouygues Telecom
O43 - CFD: 25/12/2009 - 17:41:28 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 26/02/2010 - 21:33:48 - [298082] ----D- C:\ProgramData\Cakewalk
O43 - CFD: 23/03/2010 - 02:03:16 - [21334717] --H-D- C:\ProgramData\CanonBJ
O43 - CFD: 22/06/2011 - 16:01:48 - [29612476] ----D- C:\ProgramData\Comodo
O43 - CFD: 31/05/2010 - 20:22:22 - [992] ----D- C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 19/09/2010 - 14:23:04 - [115284] ----D- C:\ProgramData\DVD Shrink
O43 - CFD: 01/02/2010 - 14:35:30 - [410] ----D- C:\ProgramData\EnterNHelp
O43 - CFD: 25/12/2009 - 17:41:28 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 25/02/2010 - 18:22:56 - [18601] ----D- C:\ProgramData\FLEXnet
O43 - CFD: 19/12/2010 - 00:34:54 - [0] ----D- C:\ProgramData\Guitar Pro 6
O43 - CFD: 05/12/2010 - 05:26:46 - [327995] ----D- C:\ProgramData\hps
O43 - CFD: 22/06/2011 - 17:56:26 - [53872] ----D- C:\ProgramData\Kaspersky Lab
O43 - CFD: 25/12/2009 - 18:04:40 - [1093768] ----D- C:\ProgramData\ma-config.com
O43 - CFD: 26/12/2009 - 18:50:44 - [7284] ----D- C:\ProgramData\Macrovision
O43 - CFD: 22/06/2011 - 16:21:48 - [6856582] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 25/12/2009 - 17:41:28 - [0] -SH-D- C:\ProgramData\Menu DÈmarrer
O43 - CFD: 01/09/2010 - 00:13:36 - [329406368] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 25/12/2009 - 17:41:28 - [0] -SH-D- C:\ProgramData\ModËles
O43 - CFD: 01/02/2010 - 14:35:30 - [12] ----D- C:\ProgramData\Multipressor
O43 - CFD: 15/01/2010 - 21:04:20 - [17310472] ----D- C:\ProgramData\Nero
O43 - CFD: 11/01/2010 - 16:10:28 - [0] ----D- C:\ProgramData\NOS
O43 - CFD: 01/02/2010 - 14:35:26 - [12] ----D- C:\ProgramData\Organs
O43 - CFD: 17/12/2010 - 02:46:04 - [21791] ----D- C:\ProgramData\Recisio
O43 - CFD: 12/12/2010 - 01:22:12 - [42766430] ----D- C:\ProgramData\Skype
O43 - CFD: 07/02/2010 - 12:01:16 - [80960] ----D- C:\ProgramData\SlySoft
O43 - CFD: 27/12/2010 - 15:36:40 - [130649] ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 18/04/2010 - 20:47:22 - [119] ----D- C:\ProgramData\Sun
O43 - CFD: 30/08/2010 - 20:42:28 - [0] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:53:56 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 13/02/2011 - 06:52:06 - [752737] ----D- C:\ProgramData\tmp
O43 - CFD: 01/02/2010 - 14:35:30 - [40] ----D- C:\ProgramData\Ultima_T15
O43 - CFD: 25/12/2009 - 18:41:08 - [21565952] ----D- C:\ProgramData\VistaCodecs
O43 - CFD: 16/09/2010 - 14:25:22 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\AccurateRip
O43 - CFD: 15/05/2011 - 13:42:48 - [51204256] ----D- C:\Users\Nixxx\AppData\Roaming\Adobe
O43 - CFD: 05/02/2011 - 23:55:56 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\Apple Computer
O43 - CFD: 05/01/2010 - 14:25:32 - [238849] ----D- C:\Users\Nixxx\AppData\Roaming\Auslogics
O43 - CFD: 22/06/2011 - 16:04:22 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\Avira
O43 - CFD: 21/06/2011 - 18:30:34 - [7063642] ----D- C:\Users\Nixxx\AppData\Roaming\Azureus
O43 - CFD: 26/02/2010 - 21:36:30 - [4] ----D- C:\Users\Nixxx\AppData\Roaming\Cakewalk
O43 - CFD: 31/05/2010 - 20:22:14 - [3831546] ----D- C:\Users\Nixxx\AppData\Roaming\CyberLink
O43 - CFD: 16/09/2010 - 14:29:58 - [2508] ----D- C:\Users\Nixxx\AppData\Roaming\dBpoweramp
O43 - CFD: 11/03/2010 - 19:43:24 - [199] ----D- C:\Users\Nixxx\AppData\Roaming\dvdcss
O43 - CFD: 22/06/2011 - 16:08:28 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\Guitar Pro 6
O43 - CFD: 13/11/2010 - 23:43:24 - [90] ----D- C:\Users\Nixxx\AppData\Roaming\Haihaisoft
O43 - CFD: 13/11/2010 - 23:43:36 - [1170] ----D- C:\Users\Nixxx\AppData\Roaming\Haihaisoft Universal Player
O43 - CFD: 25/12/2009 - 17:41:50 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\Identities
O43 - CFD: 27/12/2009 - 13:20:42 - [94235] ----D- C:\Users\Nixxx\AppData\Roaming\Macromedia
O43 - CFD: 22/06/2011 - 16:21:56 - [7561051] ----D- C:\Users\Nixxx\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 11:00:34 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\Media Center Programs
O43 - CFD: 01/03/2011 - 06:05:18 - [15064890] -S--D- C:\Users\Nixxx\AppData\Roaming\Microsoft
O43 - CFD: 14/05/2010 - 17:42:42 - [30346343] ----D- C:\Users\Nixxx\AppData\Roaming\Mozilla
O43 - CFD: 15/01/2010 - 21:26:56 - [114744] ----D- C:\Users\Nixxx\AppData\Roaming\Nero
O43 - CFD: 01/02/2010 - 14:35:32 - [1154543] ----D- C:\Users\Nixxx\AppData\Roaming\Nikon
O43 - CFD: 25/03/2010 - 10:43:12 - [8331] ----D- C:\Users\Nixxx\AppData\Roaming\Ninsight
O43 - CFD: 15/01/2010 - 21:02:16 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\Real
O43 - CFD: 22/06/2011 - 10:58:22 - [13656347] ----D- C:\Users\Nixxx\AppData\Roaming\Skype
O43 - CFD: 21/03/2011 - 01:00:56 - [30928] ----D- C:\Users\Nixxx\AppData\Roaming\skypePM
O43 - CFD: 21/06/2011 - 17:58:42 - [97763959] ----D- C:\Users\Nixxx\AppData\Roaming\T2ViewerJVM
O43 - CFD: 25/12/2009 - 18:40:58 - [340590] ----D- C:\Users\Nixxx\AppData\Roaming\vlc
O43 - CFD: 10/05/2011 - 22:53:20 - [189169] ----D- C:\Users\Nixxx\AppData\Roaming\Vso
O43 - CFD: 20/10/2010 - 07:28:26 - [757376] ----D- C:\Users\Nixxx\AppData\Roaming\Winamp
O43 - CFD: 18/06/2010 - 22:11:40 - [50975747] ----D- C:\Users\Nixxx\Appdata\Local\Adobe
O43 - CFD: 05/02/2011 - 23:51:24 - [0] ----D- C:\Users\Nixxx\Appdata\Local\Apple
O43 - CFD: 05/02/2011 - 23:55:18 - [2512] ----D- C:\Users\Nixxx\Appdata\Local\Apple Computer
O43 - CFD: 25/12/2009 - 17:41:38 - [0] -SH-D- C:\Users\Nixxx\Appdata\Local\Application Data
O43 - CFD: 05/03/2010 - 12:44:08 - [0] ----D- C:\Users\Nixxx\Appdata\Local\Apps
O43 - CFD: 01/09/2010 - 12:36:40 - [5930337] ----D- C:\Users\Nixxx\Appdata\Local\Bouygues Telecom
O43 - CFD: 27/12/2009 - 18:33:30 - [44807] ----D- C:\Users\Nixxx\Appdata\Local\Deluxe
O43 - CFD: 25/04/2010 - 20:26:00 - [0] ----D- C:\Users\Nixxx\Appdata\Local\Diagnostics
O43 - CFD: 09/05/2011 - 22:28:30 - [0] ----D- C:\Users\Nixxx\Appdata\Local\ElevatedDiagnostics
O43 - CFD: 14/05/2010 - 18:33:02 - [497274193] ----D- C:\Users\Nixxx\Appdata\Local\Google
O43 - CFD: 31/05/2010 - 20:22:14 - [4662] ----D- C:\Users\Nixxx\Appdata\Local\Hewlett-Packard
O43 - CFD: 25/12/2009 - 17:41:38 - [0] -SH-D- C:\Users\Nixxx\Appdata\Local\Historique
O43 - CFD: 01/03/2011 - 06:05:18 - [527390385] ----D- C:\Users\Nixxx\Appdata\Local\Microsoft
O43 - CFD: 26/07/2010 - 23:34:24 - [900763] ----D- C:\Users\Nixxx\Appdata\Local\Microsoft Games
O43 - CFD: 26/12/2009 - 00:00:58 - [108266783] ----D- C:\Users\Nixxx\Appdata\Local\Mozilla
O43 - CFD: 01/02/2010 - 14:35:32 - [1948571440] ----D- C:\Users\Nixxx\Appdata\Local\Nikon
O43 - CFD: 28/06/2011 - 22:50:06 - [1900181] ----D- C:\Users\Nixxx\Appdata\Local\Temp
O43 - CFD: 25/12/2009 - 17:41:38 - [0] -SH-D- C:\Users\Nixxx\Appdata\Local\Temporary Internet Files
O43 - CFD: 13/04/2010 - 14:24:36 - [14117260] ----D- C:\Users\Nixxx\Appdata\Local\VirtualStore
O43 - CFD: 03/01/2010 - 10:25:06 - [61] ----D- C:\Users\Nixxx\Appdata\Local\VSO
O43 - CFD: 30/05/2010 - 20:42:36 - [0] ----D- C:\Users\Nixxx\Appdata\Local\WMTools Downloaded Files
O43 - CFD: 10/01/2011 - 04:00:28 - [174] R---D- C:\Users\Nixxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 30/08/2010 - 17:33:46 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bureautik
O43 - CFD: 22/06/2011 - 16:33:24 - [23729] ----D- C:\Users\Nixxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
O43 - CFD: 02/12/2010 - 05:10:20 - [0] ----D- C:\Users\Nixxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusiK



---\\ Derniers fichiers modifiÈs ou crÈes sous Windows et System32 (O44)
O44 - LFC:[MD5.16B2A5D43374D642C5D4665561282103] - 28/06/2011 - 21:50:47 ---A- . (...) -- C:\Windows\ntbtlog.txt [340940]
O44 - LFC:[MD5.9B76DFFA41B0939C84587BD142E0AD51] - 28/06/2011 - 21:46:11 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1704788]
O44 - LFC:[MD5.A7D6CD6C5FEF87B9300055123DA89944] - 28/06/2011 - 21:46:11 ---A- . (...) -- C:\Windows\System32\perfc009.dat [123446]
O44 - LFC:[MD5.0AB0669DB650948233B68C603A919970] - 28/06/2011 - 21:46:11 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [153216]
O44 - LFC:[MD5.446EAAAC546B0EC548D4F499DB7F01AD] - 28/06/2011 - 21:46:11 ---A- . (...) -- C:\Windows\System32\perfh009.dat [667592]
O44 - LFC:[MD5.53B6E51C9431AA346A4A499A5CD066CE] - 28/06/2011 - 21:46:11 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [765018]
O44 - LFC:[MD5.CE86999CA37B6158FC6889F6E66771D7] - 28/06/2011 - 20:14:57 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.258C1FC0D223054F9D2675DDD9EA12A4] - 28/06/2011 - 20:14:53 ---A- . (...) -- C:\Windows\MEMORY.DMP [183520391]
O44 - LFC:[MD5.D882CA03048E4E4384D922169223B187] - 22/06/2011 - 21:29:34 ---A- . (...) -- C:\Windows\setupact.log [123862]
O44 - LFC:[MD5.D51B0DE9FE693247BEFDBFFEDDE609CF] - 22/06/2011 - 17:13:41 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1928275]
O44 - LFC:[MD5.F147E471BCAD109B6963651FC62232D2] - 22/06/2011 - 17:00:44 ---A- . (...) -- C:\Windows\PFRO.log [231668]
O44 - LFC:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 22/06/2011 - 15:21:48 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\System32\drivers\mbamswissarmy.sys [39984]
O44 - LFC:[MD5.3D2C13377763E
0
Utilisateur anonyme
28 juin 2011 à 22:58
Le rapport n'est pas complet...
Ce n'est pas pour rien que l'on mentionne des liens pour y mettre ces rapports.

@+
0
Nixxx Messages postés 9 Date d'inscription mardi 28 juin 2011 Statut Membre Dernière intervention 29 juin 2011
28 juin 2011 à 23:01
bon bon je le refais demain alors en mode prise en charge réseau (j avais peur de le faire sachant que je pouvais etre infecté).. Tu ne vois rien de spé avec ce rapport incomplet ?
0
Utilisateur anonyme
28 juin 2011 à 23:04
Le rapport de ZHPdiag est complet ;il te suffit de le poster via les liens proposés.
Il est inutile de refaire une analyse.

@+
0
Nixxx Messages postés 9 Date d'inscription mardi 28 juin 2011 Statut Membre Dernière intervention 29 juin 2011
28 juin 2011 à 23:07
Merci pour ton aide je dois rendre l ordi que j ai piqué à ma colloc, je refais la finale demain, merci encore, bonne soirée
0
Utilisateur anonyme
28 juin 2011 à 23:08
bonne soirée
0