PC infecté par conduit.com

Résolu
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   -  
twister2 Messages postés 218 Date d'inscription   Statut Membre Dernière intervention   - 28 oct. 2011 à 20:18
Bonjour
J'ai téléchargé un logiciel pour transformer mes cassettes VHS en DVD. Il s'appelle Evidon.inc. Je me suis retrouvé avec la toolbar de conduit.com. J'ai réussi à la désinstaller avec Ad-remover. Pourtant il doit rester quelquechose. Ma boite mail a changé. je ne retrouve plus la forme d'avant. dansd la barre d'adresse je trouve http:// du 101 w.d et après 14c74&wlrefapp=2. je crois que je n'ai pas pu tout enlever.
Je vous envoie un scan hijacthis. Si vous pouviez voir ce qui ne va pas. merci d'avance

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:27:37, on 19/10/2011
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\USB_video_device\Driver\Driver32\emmon.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\BitDefender\BitDefender 2011\antispam32\bdimguiaux.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.leprogres.fr/ain
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: NCH EN Toolbar - {37483b40-c254-4a72-bda4-22ee90182c1e} - C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: NCH EN - {37483b40-c254-4a72-bda4-22ee90182c1e} - C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - (no file)
O3 - Toolbar: Bitdefender Toolbar - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: NCH EN Toolbar - {37483b40-c254-4a72-bda4-22ee90182c1e} - C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Vidéo Futur] "C:\Program Files (x86)\Vidéo Futur\Vidéo Futur.exe" /check
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11b_ActiveX.exe -update activex
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: emMon.lnk = C:\Program Files (x86)\USB_video_device\Driver\Driver32\emmon.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O16 - DPF: {10000000-1000-1000-1000-100000000000} - http://cdn.betteradvertising.com/ghostery/addons/ie/2.4.2.0/ghostery.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\DRIVERS\o2flash.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
O23 - Service: BitDefender Desktop Update Service (Updatesrv) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
A voir également:

15 réponses

Réponse 1 / 15
twister2 Messages postés 218 Date d'inscription   Statut Membre Dernière intervention   43
 
bonsoir blocage

hi-jack est null fait ceci ces mieux

Télécharge ZHPDiag sur ton bureau :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html

Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.

Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »

Clique sur l'icône représentant une loupe en haut à gauche (« Lancer le diagnostic »)
Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
Héberge le rapport ZHPDiag.txt (qui se trouve sur ton bureau) sur Cjoint, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :

https://www.cjoint.com/

tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html


@+twister2
0
Réponse 2 / 15
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
bonjour
Ci-joint le diagnostic demandé :Rapport de ZHPDiag v1.28.2131 par Nicolas Coolman, Update du 18/10/2011
Run by SURGIT at 20/10/2011 08:01:13
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
State : Version à jour.


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome
OPIE: Opera v11.51 (Defaut)
OPIE: Opera vv11.51 (Defaut)

---\\ Windows Product Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : RMV82
Windows License : OK
~ Windows Remaining Initializations Number : 5
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6004 MB (65% free)
System Restore: Activé (Enable)
System drive C: has 230 GB (65%) free of 351 GB

---\\ Logged in mode
~ Computer Name: SURGIT-PC
~ User Name: SURGIT
~ All Users Names: SURGIT, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\SURGIT\AppData\Roaming\
~ %Desktop% : C:\Users\SURGIT\Desktop\
~ %Favorites% : C:\Users\SURGIT\Favorites\
~ %LocalAppData% : C:\Users\SURGIT\AppData\Local\
~ %StartMenu% : C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 230 Go of 351 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 100 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 10 Go of 15 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.271E8FB1354AA205A214F280A6766E30] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/10/2011 - 06:17:57.) -- C:\Windows\system32\wininet.dll [1389056]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.06/03/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.06/03/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.06/03/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/06/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200] *1908
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128] *1828
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160] *1828
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.06/03/2011 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456] *1820
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2011 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400] *1884
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.06/03/2011 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368] *1908
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472] *1892
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224] *1860
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.17/06/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208] *1852
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.06/03/2011 - 10:23:20.) -- C:\Windows\system32\drivers\netBT.sys [261632] *1828
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776] *1908
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280] *1892
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.06/03/2011 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536] *1916
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\drivers\smb.sys [93184] #0,1796
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.06/03/2011 - 10:21:56.) -- C:\Windows\system32\drivers\tdx.sys [119296] *1820
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/236
~ Mes Videos (My Videos) : 1/4
~ Mes Favoris (My Favorites) : 4/170
~ Mes Documents (My Documents) : 4/140
~ Mon Bureau (My Desktop) : 1/30
~ Menu demarrer (Programs) : 7/41
~ Scan Hidden Files in 00mn 00s



---\\ Processus lancés
[MD5.0DB4212A8020067A08A7032DC662A7B5] - (.BitDefender S.R.L. - Pas de description.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe [64048] [PID.3124]
[MD5.67384147DD005E54D2C0A20408E28579] - (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe [1242448] [PID.3480]
[MD5.9ABF368A2DA03C6852C353D837D374AB] - (.eMPIA Technology, Inc. - BDA Monitor Application.) -- C:\Program Files (x86)\USB_video_device\Driver\Driver32\emmon.exe [81408] [PID.3680]
[MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840] [PID.3708]
[MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [275768] [PID.3732]
[MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.3916]
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.3932]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.4012]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.4068]
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.1820]
[MD5.437A4767F00EBC5E8643E77808ACC01F] - (.BitDefender S.R.L. - BitDefender IMGUI Aux.) -- C:\Program Files\BitDefender\BitDefender 2011\antispam32\bdimguiaux.exe [42400] [PID.4276]
[MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.4900]
[MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.4956]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.5020]
[MD5.B114DB354D13A21C1AC2B1807EE2F500] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- c:\program files (x86)\real\realplayer\update\realsched.exe [273544] [PID.5876]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [PID.4520]
[MD5.1BCF3DD5C66A2F9909BCB133987B6B69] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [696832] [PID.1176]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.]
[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952] [PID.]
[MD5.D955D5DE998DB2476BF0892BE3A96C26] - (.O2Micro International - O2 Flash Memory Service.) -- C:\Windows\system32\DRIVERS\o2flash.exe [65536] [PID.]
[MD5.3A2BDD76E7D2A5F40A7174793D1BA794] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [75136] [PID.]
~ Scan Processes Running in 00mn 01s



---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1)
B1 - OSP: search.ini [SURGIT] URL=http://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q=%s
~ Scan Opera Browser in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\SURGIT\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Oracle Corporation - Next Generation Java Plug-in 10.0.0 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/GENUINE] - (.Microsoft Corporation - Windows Activation Technologies Plugin for Mozilla.) -- C:\Windows\system32\Wat\npWatWeb.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.leprogres.fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: NCH EN Toolbar [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
R3 - URLSearchHook: NCH EN Toolbar [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugi
O2 - BHO: NCH EN [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Windows Live Messenger Companion Helper [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (.not file.)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} Clé orpheline
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Bitdefender Toolbar [64Bits] - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} . (.BitDefender S.R.L. - BitDefender Antiphishing Toolbar.) -- C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe
O4 - HKLM\..\Run: [BDAgent] . (.BitDefender S.R.L. - BitDefender Agent.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKLM\..\Wow6432Node\Run: [ATICustomerCare] . (.Advanced Micro Devices, Inc. - ATI Customer Care.) -- C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe
O4 - HKLM\..\Wow6432Node\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [Vidéo Futur] . (.Glowria - Glowria Video Manager.) -- C:\Program Files (x86)\Vidéo Futur\Vidéo Futur.exe
O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- c:\program files (x86)\real\realplayer\update\realsched.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2878523808-3310033709-2021528728-1001\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKUS\S-1-5-21-2878523808-3310033709-2021528728-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\East-Tec Eraser 2011.lnk . (.EAST Technologies.) -- C:\Program Files (x86)\East-Tec Eraser 2011\eteraser.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\flashplayer11_rc1_install_win_ax32_090611.exe - Raccourci.lnk . (.Adobe Systems, Inc..) -- C:\Users\SURGIT\Downloads\flashplayer11_rc1_install_win_ax32_090611.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\SURGIT\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Internet Explorer (2).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Maxi Puzzles.lnk . (...) -- C:\Program Files (x86)\Micro Application\Maxi Puzzles\jpuzzle.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Microsoft Silverlight.lnk . (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
O4 - Global Startup: C:\Users\SURGIT\Desktop\OLYMPUS Digital Camera Updater.lnk . (.OLYMPUS IMAGING CORP..) -- C:\Program Files (x86)\OLYMPUS\CameraUpdateTool\CameraUpdate.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\OLYMPUS Viewer 2.lnk . (.OLYMPUS IMAGING CORP..) -- C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 2\OLYMPUS Viewer 2.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\OpenOffice.org 3.3.lnk . (.OpenOffice.org.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\SIW.lnk . (.Topala Software Solutions.) -- C:\Program Files (x86)\SIW\siw.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Vidéo Futur Video Manager.lnk . (.Glowria.) -- C:\Program Files (x86)\Vidéo Futur\Vidéo Futur.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit Reader 5.0.lnk . (...) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
~ Scan Global Startup in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: (bdfsfltr) - Clé orpheline
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: O2FLASH (O2FLASH) . (.O2Micro International - O2 Flash Memory Service.) - C:\Windows\system32\DRIVERS\o2flash.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
~ Scan Services in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D] [APT] [RealUpgradeLogonTaskS-1-5-21-2878523808-3310033709-2021528728-1001] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
[MD5.FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D] [APT] [RealUpgradeScheduledTaskS-1-5-21-2878523808-3310033709-2021528728-1001] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
[MD5.00000000000000000000000000000000] [APT] [Start Registry Reviver] (...) -- C:\Program Files (x86)\Reviversoft\Registry Reviver\RegistryReviver.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{042F02D5-15C6-4139-9253-A84FCB25520A}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{196FDFEF-D688-4412-A49F-B7BCE2676F18}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.00000000000000000000000000000000] [APT] [{2E74FDCE-7C20-468C-82E7-BC62080CFE7F}] (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{31F20D86-C9CE-47D8-8C8E-121D93F048B1}] (...) -- C:\PROGRA~2\Steam\UNWISE.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{3A215C4A-B97E-4E67-82DA-3D10BF5215F4}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{71F57512-1412-41CE-859B-2F7F13977269}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{7EF89E08-C69A-474D-A69D-972C25A15824}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{8862360D-B878-49DA-8707-F54488F4A0A7}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.00000000000000000000000000000000] [APT] [{8AF56D60-BDEA-464D-A424-60F009388760}] (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{95A6677D-DFC6-41BB-B41C-5494823A9C67}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{AA5D5C37-970B-4FB7-B37C-2396424AF4BB}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{CFE70205-8B44-43E5-977C-FC0F967A69F9}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.05D64D3F1883C03D09EFE15D68299FBA] [APT] [{D5EFB3AD-9444-45A7-8E06-5D0C312EB726}] (.Adobe Systems, Inc..) -- C:\Users\SURGIT\Downloads\flashplayer11_rc1_install_win_ax32_090611.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{D9580165-7BC8-45AF-82F9-C5FC41856ED3}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\Steam.exe
~ Scan Scheduled Task in 00mn 06s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (Bdfndisf) . (.BitDefender - BitDefender Firewall NDIS6 Filter Driver.) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
O41 - Driver: (bdfwfpf) . (.BitDefender - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys
O41 - Driver: (begwjdga) . (. - .) - C:\Windows\system32\drivers\begwjdga.sys (.not file.)
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (fjgjvucj) . (. - .) - C:\Windows\system32\drivers\fjgjvucj.sys (.not file.)
O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\Windows\system32\DRIVERS\MpFilter.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {54A0FF28-05C4-81E3-3CC1-13D0C2519EFF}
O42 - Logiciel: ATI Catalyst Registration - (.ATI Technologies Inc..) [HKLM] -- {11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}
O42 - Logiciel: ATI Problem Report Wizard - (.ATI Technologies.) [HKLM] -- {A9C6CA47-D937-D61D-4BD3-7CFAB7A5BA56}
O42 - Logiciel: ATI Stream SDK v2 Developer - (.ATI Technologies Inc..) [HKLM] -- {22441735-5983-AD2A-5CC5-FA2CCD7EF732}
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Flash Player 11 ActiveX 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader X (10.1.1) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: ArcSoft ShowBiz DVD 2 - (.ArcSoft.) [HKLM] -- {ED3DE33F-B1C5-47BE-97B5-159F8C344092}
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
O42 - Logiciel: BitDefender Internet Security 2011 - (.BitDefender.) [HKLM] -- BitDefender
O42 - Logiciel: BitDefender Internet Security 2011 - (.BitDefender.) [HKLM] -- {340A2AD6-0679-46DA-9180-DABBD5B36FD1}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Decoder Pak for Windows XP - (.roddy2000@hotbox.ru.) [HKLM] -- {92C5DB3D-9D6F-4324-BB11-57825F4C2635}
O42 - Logiciel: Dell Driver Download Manager - 1 - (.Dell Inc..) [HKCU] -- f031ef6ac137efc5
O42 - Logiciel: Désinstallation du Vidéo Futur Video Manager - (.Pas de propriétaire.) [HKLM] -- Vidéo Futur
O42 - Logiciel: East-Tec Eraser 2011 Version 9.9 - (.EAST Technologies.) [HKLM] -- East-Tec Eraser 2011_is1
O42 - Logiciel: Foxit Reader 5.0 - (.Foxit Corporation.) [HKLM] -- Foxit Reader_is1
O42 - Logiciel: GIMP 2.6.11 - (.The GIMP Team.) [HKLM] -- WinGimp-2.0_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities
O42 - Logiciel: HP Deskjet F2400 All-In-One Driver Software 13.0 Rel .6 - (.HP.) [HKLM] -- {CDBF8C2D-04B0-4F9B-9AE1-7422F7F0EC94}
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM] -- HP Print Projects
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM] -- {58A6AA51-DA03-4C75-ADE9-7C0D67D77066}
O42 - Logiciel: Internet TV pour Windows Media Center - (.Microsoft Corporation.) [HKLM] -- {9D318C86-AF4C-409F-A6AC-7183FF4CF424}
O42 - Logiciel: Java(TM) 6 Update 27 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216027FF}
O42 - Logiciel: Java(TM) 7 (64-bit) - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86417000FF}
O42 - Logiciel: Java(TM) SE Development Kit 7 (64-bit) - (.Oracle.) [HKLM] -- {64A3A4F4-B792-11D6-A78A-00B0D0170000}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Maxi Puzzles - (.Pas de propriétaire.) [HKLM] -- Maxi Puzzles_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -- {05BFB060-4F22-4710-B0A2-2801A1B606C5}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}
O42 - Logiciel: Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) - (.Microsoft Corporation.) [HKLM] -- {41785C66-90F2-40CE-8CB5-1C94BFC97280}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {42738DB0-FC3E-4672-A99B-9372F5696E30}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {aac9fcc4-dd9e-4add-901c-b5496a07ab2e}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {EE936C7A-EA40-31D5-9B65-8E3E089C3828}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {8338783A-0968-3B85-AFC7-BAAE0A63DC50}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: NAVIGON Fresh 3.3.2 - (.NAVIGON.) [HKLM] -- NAVIGON Fresh
O42 - Logiciel: NCH EN Toolbar - (.NCH EN.) [HKLM] -- NCH_EN Toolbar
O42 - Logiciel: OLYMPUS Digital Camera Updater - (.OLYMPUS IMAGING CORP..) [HKLM] -- {7CC978FD-AE31-419D-A7AB-2A137689AE1F}
O42 - Logiciel: OLYMPUS Viewer 2 - (.OLYMPUS IMAGING CORP..) [HKLM] -- {5E761524-063C-46E4-822A-0166102F3DA3}
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A}
O42 - Logiciel: Opera 11.51 - (.Opera Software ASA.) [HKLM] -- Opera 11.51.1087
O42 - Logiciel: Package de pilotes Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) - (.OLYMPUS IMAGING CORP..) [HKLM] -- 2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB
O42 - Logiciel: PunkBuster Services - (.Pas de propriétaire.) [HKLM] -- PunkBusterSvc
O42 - Logiciel: RealNetworks - Microsoft Visual C++ 2008 Runtime - (.RealNetworks, Inc.) [HKLM] -- {7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: Red Orchestra - (.Mac.) [HKLM] -- {69997863-7239-4E5C-833C-EAC2F0116EB3}
O42 - Logiciel: Red Orchestra 2: Heroes of Stalingrad - (.Tripwire.) [HKLM] -- Steam App 35450
O42 - Logiciel: Red Orchestra: Ostfront 41-45 - (.Tripwire Interactive.) [HKLM] -- Steam App 1200
O42 - Logiciel: SIW version 2010.07.14 - (.Topala Software Solutions.) [HKLM] -- {AB67580-257C-45FF-B8F4-C8C30682091A}_is1
O42 - Logiciel: Sauvez Vos K7 Vidéos - (.Micro Application.) [HKLM] -- {9516572F-3CA4-4DA6-B1C7-E47FF8016D7E}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572078
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: The Lord of the Rings FREE Trial - (.ATI Technologies Inc..) [HKLM] -- {8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}
O42 - Logiciel: USB TV Device Driver - (.Nom de votre société.) [HKLM] -- {3717C4F2-7412-4793-9BB8-D73D2817B3D6}
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {CEA21F20-DBF4-464C-8B81-28B8508AFDDD}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {E01819BD-709F-43A1-9600-6F5E4C584C37}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {180C8888-50F1-426B-A9DC-AB83A1989C65}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {E5B21F11-6933-4E0B-A25C-7963E3C07D11}
O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM] -- {78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {DF6D988A-EEA0-4277-AAB8-158E086E439B}
O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}
O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {E02A6548-6FDE-40E2-8ED9-119D7D7E641F}
O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {5E2CD4FB-4538-4831-8176-05D653C3E6D4}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: livebox - (.Pas de propriétaire.) [HKLM] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\NCH_EN]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\ArcSoft]
[HKCU\Software\Avanquest]
[HKCU\Software\BitDefender]
[HKCU\Software\BrowserChoice]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\EAST Technologies]
[HKCU\Software\Foxit Software]
[HKCU\Software\Ghostery]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\LowRegistry]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Netscape]
[HKCU\Software\OLYMPUS]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Opera Software]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Reviversoft]
[HKCU\Software\Softonic]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\Valve]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\honestech]
[HKCU\Software\videofutur]
[HKLM\Software\AMD]
[HKLM\Software\ASDMA]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVC3]
[HKLM\Software\Adobe]
[HKLM\Software\ArcSoft]
[HKLM\Software\Avanquest]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\EAST_Technologies]
[HKLM\Software\Even Balance]
[HKLM\Software\FRANCE TELECOM]
[HKLM\Software\Foxit Software]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstallationKit]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Mac]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\Micro Application]
[HKLM\Software\MidasHeurScanner]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NAVIGON]
[HKLM\Software\NCH Software]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\NCH_EN]
[HKLM\Software\Netscape]
[HKLM\Software\Nom de votre société]
[HKLM\Software\ODBC]
[HKLM\Software\OLYMPUS]
[HKLM\Software\Opera Software]
[HKLM\Software\Piriform]
[HKLM\Software\PoINT]
[HKLM\Software\Policies]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Reviversoft]
[HKLM\Software\Sagem]
[HKLM\Software\Sonic]
[HKLM\Software\TrendMicro]
[HKLM\Software\USB2800]
[HKLM\Software\Valve]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\Yahoo]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/12/2010 - 07:37:06 - [23421515] ----D- C:\Program Files\ATI
O43 - CFD: 19/12/2010 - 07:37:12 - [0] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 19/12/2010 - 18:43:00 - [213648959] ----D- C:\Program Files\BitDefender
O43 - CFD: 09/09/2011 - 07:07:48 - [8458144] ----D- C:\Program Files\CCleaner
O43 - CFD: 19/12/2010 - 18:43:08 - [1565767597] ----D- C:\Program Files\Common Files
O43 - CFD: 18/06/2011 - 17:16:32 - [1047632] ----D- C:\Program Files\DIFX
O43 - CFD: 06/03/2011 - 12:17:50 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 15/12/2010 - 12:47:34 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 06/10/2011 - 05:44:00 - [0] ----D- C:\Program Files\Google
O43 - CFD: 17/12/2010 - 18:30:50 - [4499093] ----D- C:\Program Files\HP
O43 - CFD: 13/10/2011 - 07:01:12 - [6201856] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 27/09/2011 - 07:12:16 - [317409820] ----D- C:\Program Files\Java
O43 - CFD: 14/07/2009 - 09:45:56
0
Réponse 3 / 15
twister2 Messages postés 218 Date d'inscription   Statut Membre Dernière intervention   43
 
re blocage

1 ton raport est incomplet

2 tu doit Héberge le rapport ZHPDiag.txt (qui se trouve sur ton bureau) sur https://www.cjoint.com/ (car le rapport est trop lourd )
puis copie/colle le lien fourni dans ta prochaine réponse sur le forum

@+
0
Réponse 4 / 15
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
bonjour,
voici le rapport dRapport de ZHPDiag v1.28.2131 par Nicolas Coolman, Update du 18/10/2011
Run by SURGIT at 20/10/2011 08:01:13
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
State : Version à jour.


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome
OPIE: Opera v11.51 (Defaut)
OPIE: Opera vv11.51 (Defaut)

---\\ Windows Product Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : RMV82
Windows License : OK
~ Windows Remaining Initializations Number : 5
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6004 MB (65% free)
System Restore: Activé (Enable)
System drive C: has 230 GB (65%) free of 351 GB

---\\ Logged in mode
~ Computer Name: SURGIT-PC
~ User Name: SURGIT
~ All Users Names: SURGIT, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\SURGIT\AppData\Roaming\
~ %Desktop% : C:\Users\SURGIT\Desktop\
~ %Favorites% : C:\Users\SURGIT\Favorites\
~ %LocalAppData% : C:\Users\SURGIT\AppData\Local\
~ %StartMenu% : C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 230 Go of 351 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 100 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 10 Go of 15 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.271E8FB1354AA205A214F280A6766E30] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/10/2011 - 06:17:57.) -- C:\Windows\system32\wininet.dll [1389056]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.06/03/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.06/03/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.06/03/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/06/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200] *1908
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128] *1828
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160] *1828
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.06/03/2011 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456] *1820
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2011 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400] *1884
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.06/03/2011 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368] *1908
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472] *1892
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224] *1860
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.17/06/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208] *1852
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.06/03/2011 - 10:23:20.) -- C:\Windows\system32\drivers\netBT.sys [261632] *1828
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776] *1908
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280] *1892
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.06/03/2011 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536] *1916
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\drivers\smb.sys [93184] #0,1796
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.06/03/2011 - 10:21:56.) -- C:\Windows\system32\drivers\tdx.sys [119296] *1820
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/236
~ Mes Videos (My Videos) : 1/4
~ Mes Favoris (My Favorites) : 4/170
~ Mes Documents (My Documents) : 4/140
~ Mon Bureau (My Desktop) : 1/30
~ Menu demarrer (Programs) : 7/41
~ Scan Hidden Files in 00mn 00s



---\\ Processus lancés
[MD5.0DB4212A8020067A08A7032DC662A7B5] - (.BitDefender S.R.L. - Pas de description.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe [64048] [PID.3124]
[MD5.67384147DD005E54D2C0A20408E28579] - (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe [1242448] [PID.3480]
[MD5.9ABF368A2DA03C6852C353D837D374AB] - (.eMPIA Technology, Inc. - BDA Monitor Application.) -- C:\Program Files (x86)\USB_video_device\Driver\Driver32\emmon.exe [81408] [PID.3680]
[MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840] [PID.3708]
[MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [275768] [PID.3732]
[MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.3916]
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.3932]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.4012]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.4068]
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.1820]
[MD5.437A4767F00EBC5E8643E77808ACC01F] - (.BitDefender S.R.L. - BitDefender IMGUI Aux.) -- C:\Program Files\BitDefender\BitDefender 2011\antispam32\bdimguiaux.exe [42400] [PID.4276]
[MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.4900]
[MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.4956]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.5020]
[MD5.B114DB354D13A21C1AC2B1807EE2F500] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- c:\program files (x86)\real\realplayer\update\realsched.exe [273544] [PID.5876]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [PID.4520]
[MD5.1BCF3DD5C66A2F9909BCB133987B6B69] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [696832] [PID.1176]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.]
[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952] [PID.]
[MD5.D955D5DE998DB2476BF0892BE3A96C26] - (.O2Micro International - O2 Flash Memory Service.) -- C:\Windows\system32\DRIVERS\o2flash.exe [65536] [PID.]
[MD5.3A2BDD76E7D2A5F40A7174793D1BA794] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [75136] [PID.]
~ Scan Processes Running in 00mn 01s



---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1)
B1 - OSP: search.ini [SURGIT] URL=http://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q=%s
~ Scan Opera Browser in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\SURGIT\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Oracle Corporation - Next Generation Java Plug-in 10.0.0 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/GENUINE] - (.Microsoft Corporation - Windows Activation Technologies Plugin for Mozilla.) -- C:\Windows\system32\Wat\npWatWeb.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.leprogres.fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: NCH EN Toolbar [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
R3 - URLSearchHook: NCH EN Toolbar [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugi
O2 - BHO: NCH EN [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Windows Live Messenger Companion Helper [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (.not file.)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} Clé orpheline
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Bitdefender Toolbar [64Bits] - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} . (.BitDefender S.R.L. - BitDefender Antiphishing Toolbar.) -- C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe
O4 - HKLM\..\Run: [BDAgent] . (.BitDefender S.R.L. - BitDefender Agent.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKLM\..\Wow6432Node\Run: [ATICustomerCare] . (.Advanced Micro Devices, Inc. - ATI Customer Care.) -- C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe
O4 - HKLM\..\Wow6432Node\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [Vidéo Futur] . (.Glowria - Glowria Video Manager.) -- C:\Program Files (x86)\Vidéo Futur\Vidéo Futur.exe
O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- c:\program files (x86)\real\realplayer\update\realsched.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2878523808-3310033709-2021528728-1001\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKUS\S-1-5-21-2878523808-3310033709-2021528728-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\East-Tec Eraser 2011.lnk . (.EAST Technologies.) -- C:\Program Files (x86)\East-Tec Eraser 2011\eteraser.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\flashplayer11_rc1_install_win_ax32_090611.exe - Raccourci.lnk . (.Adobe Systems, Inc..) -- C:\Users\SURGIT\Downloads\flashplayer11_rc1_install_win_ax32_090611.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\SURGIT\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Internet Explorer (2).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Maxi Puzzles.lnk . (...) -- C:\Program Files (x86)\Micro Application\Maxi Puzzles\jpuzzle.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Microsoft Silverlight.lnk . (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
O4 - Global Startup: C:\Users\SURGIT\Desktop\OLYMPUS Digital Camera Updater.lnk . (.OLYMPUS IMAGING CORP..) -- C:\Program Files (x86)\OLYMPUS\CameraUpdateTool\CameraUpdate.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\OLYMPUS Viewer 2.lnk . (.OLYMPUS IMAGING CORP..) -- C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 2\OLYMPUS Viewer 2.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\OpenOffice.org 3.3.lnk . (.OpenOffice.org.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\SIW.lnk . (.Topala Software Solutions.) -- C:\Program Files (x86)\SIW\siw.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Vidéo Futur Video Manager.lnk . (.Glowria.) -- C:\Program Files (x86)\Vidéo Futur\Vidéo Futur.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit Reader 5.0.lnk . (...) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
~ Scan Global Startup in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: (bdfsfltr) - Clé orpheline
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: O2FLASH (O2FLASH) . (.O2Micro International - O2 Flash Memory Service.) - C:\Windows\system32\DRIVERS\o2flash.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
~ Scan Services in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D] [APT] [RealUpgradeLogonTaskS-1-5-21-2878523808-3310033709-2021528728-1001] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
[MD5.FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D] [APT] [RealUpgradeScheduledTaskS-1-5-21-2878523808-3310033709-2021528728-1001] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
[MD5.00000000000000000000000000000000] [APT] [Start Registry Reviver] (...) -- C:\Program Files (x86)\Reviversoft\Registry Reviver\RegistryReviver.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{042F02D5-15C6-4139-9253-A84FCB25520A}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{196FDFEF-D688-4412-A49F-B7BCE2676F18}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.00000000000000000000000000000000] [APT] [{2E74FDCE-7C20-468C-82E7-BC62080CFE7F}] (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{31F20D86-C9CE-47D8-8C8E-121D93F048B1}] (...) -- C:\PROGRA~2\Steam\UNWISE.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{3A215C4A-B97E-4E67-82DA-3D10BF5215F4}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{71F57512-1412-41CE-859B-2F7F13977269}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{7EF89E08-C69A-474D-A69D-972C25A15824}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{8862360D-B878-49DA-8707-F54488F4A0A7}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.00000000000000000000000000000000] [APT] [{8AF56D60-BDEA-464D-A424-60F009388760}] (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{95A6677D-DFC6-41BB-B41C-5494823A9C67}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{AA5D5C37-970B-4FB7-B37C-2396424AF4BB}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{CFE70205-8B44-43E5-977C-FC0F967A69F9}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.05D64D3F1883C03D09EFE15D68299FBA] [APT] [{D5EFB3AD-9444-45A7-8E06-5D0C312EB726}] (.Adobe Systems, Inc..) -- C:\Users\SURGIT\Downloads\flashplayer11_rc1_install_win_ax32_090611.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{D9580165-7BC8-45AF-82F9-C5FC41856ED3}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\Steam.exe
~ Scan Scheduled Task in 00mn 06s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (Bdfndisf) . (.BitDefender - BitDefender Firewall NDIS6 Filter Driver.) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
O41 - Driver: (bdfwfpf) . (.BitDefender - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys
O41 - Driver: (begwjdga) . (. - .) - C:\Windows\system32\drivers\begwjdga.sys (.not file.)
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (fjgjvucj) . (. - .) - C:\Windows\system32\drivers\fjgjvucj.sys (.not file.)
O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\Windows\system32\DRIVERS\MpFilter.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {54A0FF28-05C4-81E3-3CC1-13D0C2519EFF}
O42 - Logiciel: ATI Catalyst Registration - (.ATI Technologies Inc..) [HKLM] -- {11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}
O42 - Logiciel: ATI Problem Report Wizard - (.ATI Technologies.) [HKLM] -- {A9C6CA47-D937-D61D-4BD3-7CFAB7A5BA56}
O42 - Logiciel: ATI Stream SDK v2 Developer - (.ATI Technologies Inc..) [HKLM] -- {22441735-5983-AD2A-5CC5-FA2CCD7EF732}
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Flash Player 11 ActiveX 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader X (10.1.1) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: ArcSoft ShowBiz DVD 2 - (.ArcSoft.) [HKLM] -- {ED3DE33F-B1C5-47BE-97B5-159F8C344092}
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
O42 - Logiciel: BitDefender Internet Security 2011 - (.BitDefender.) [HKLM] -- BitDefender
O42 - Logiciel: BitDefender Internet Security 2011 - (.BitDefender.) [HKLM] -- {340A2AD6-0679-46DA-9180-DABBD5B36FD1}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Decoder Pak for Windows XP - (.roddy2000@hotbox.ru.) [HKLM] -- {92C5DB3D-9D6F-4324-BB11-57825F4C2635}
O42 - Logiciel: Dell Driver Download Manager - 1 - (.Dell Inc..) [HKCU] -- f031ef6ac137efc5
O42 - Logiciel: Désinstallation du Vidéo Futur Video Manager - (.Pas de propriétaire.) [HKLM] -- Vidéo Futur
O42 - Logiciel: East-Tec Eraser 2011 Version 9.9 - (.EAST Technologies.) [HKLM] -- East-Tec Eraser 2011_is1
O42 - Logiciel: Foxit Reader 5.0 - (.Foxit Corporation.) [HKLM] -- Foxit Reader_is1
O42 - Logiciel: GIMP 2.6.11 - (.The GIMP Team.) [HKLM] -- WinGimp-2.0_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities
O42 - Logiciel: HP Deskjet F2400 All-In-One Driver Software 13.0 Rel .6 - (.HP.) [HKLM] -- {CDBF8C2D-04B0-4F9B-9AE1-7422F7F0EC94}
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM] -- HP Print Projects
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM] -- {58A6AA51-DA03-4C75-ADE9-7C0D67D77066}
O42 - Logiciel: Internet TV pour Windows Media Center - (.Microsoft Corporation.) [HKLM] -- {9D318C86-AF4C-409F-A6AC-7183FF4CF424}
O42 - Logiciel: Java(TM) 6 Update 27 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216027FF}
O42 - Logiciel: Java(TM) 7 (64-bit) - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86417000FF}
O42 - Logiciel: Java(TM) SE Development Kit 7 (64-bit) - (.Oracle.) [HKLM] -- {64A3A4F4-B792-11D6-A78A-00B0D0170000}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Maxi Puzzles - (.Pas de propriétaire.) [HKLM] -- Maxi Puzzles_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -- {05BFB060-4F22-4710-B0A2-2801A1B606C5}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}
O42 - Logiciel: Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) - (.Microsoft Corporation.) [HKLM] -- {41785C66-90F2-40CE-8CB5-1C94BFC97280}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {42738DB0-FC3E-4672-A99B-9372F5696E30}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {aac9fcc4-dd9e-4add-901c-b5496a07ab2e}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {EE936C7A-EA40-31D5-9B65-8E3E089C3828}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {8338783A-0968-3B85-AFC7-BAAE0A63DC50}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: NAVIGON Fresh 3.3.2 - (.NAVIGON.) [HKLM] -- NAVIGON Fresh
O42 - Logiciel: NCH EN Toolbar - (.NCH EN.) [HKLM] -- NCH_EN Toolbar
O42 - Logiciel: OLYMPUS Digital Camera Updater - (.OLYMPUS IMAGING CORP..) [HKLM] -- {7CC978FD-AE31-419D-A7AB-2A137689AE1F}
O42 - Logiciel: OLYMPUS Viewer 2 - (.OLYMPUS IMAGING CORP..) [HKLM] -- {5E761524-063C-46E4-822A-0166102F3DA3}
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A}
O42 - Logiciel: Opera 11.51 - (.Opera Software ASA.) [HKLM] -- Opera 11.51.1087
O42 - Logiciel: Package de pilotes Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) - (.OLYMPUS IMAGING CORP..) [HKLM] -- 2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB
O42 - Logiciel: PunkBuster Services - (.Pas de propriétaire.) [HKLM] -- PunkBusterSvc
O42 - Logiciel: RealNetworks - Microsoft Visual C++ 2008 Runtime - (.RealNetworks, Inc.) [HKLM] -- {7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: Red Orchestra - (.Mac.) [HKLM] -- {69997863-7239-4E5C-833C-EAC2F0116EB3}
O42 - Logiciel: Red Orchestra 2: Heroes of Stalingrad - (.Tripwire.) [HKLM] -- Steam App 35450
O42 - Logiciel: Red Orchestra: Ostfront 41-45 - (.Tripwire Interactive.) [HKLM] -- Steam App 1200
O42 - Logiciel: SIW version 2010.07.14 - (.Topala Software Solutions.) [HKLM] -- {AB67580-257C-45FF-B8F4-C8C30682091A}_is1
O42 - Logiciel: Sauvez Vos K7 Vidéos - (.Micro Application.) [HKLM] -- {9516572F-3CA4-4DA6-B1C7-E47FF8016D7E}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572078
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: The Lord of the Rings FREE Trial - (.ATI Technologies Inc..) [HKLM] -- {8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}
O42 - Logiciel: USB TV Device Driver - (.Nom de votre société.) [HKLM] -- {3717C4F2-7412-4793-9BB8-D73D2817B3D6}
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {CEA21F20-DBF4-464C-8B81-28B8508AFDDD}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {E01819BD-709F-43A1-9600-6F5E4C584C37}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {180C8888-50F1-426B-A9DC-AB83A1989C65}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {E5B21F11-6933-4E0B-A25C-7963E3C07D11}
O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM] -- {78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {DF6D988A-EEA0-4277-AAB8-158E086E439B}
O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}
O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {E02A6548-6FDE-40E2-8ED9-119D7D7E641F}
O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {5E2CD4FB-4538-4831-8176-05D653C3E6D4}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: livebox - (.Pas de propriétaire.) [HKLM] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\NCH_EN]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\ArcSoft]
[HKCU\Software\Avanquest]
[HKCU\Software\BitDefender]
[HKCU\Software\BrowserChoice]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\EAST Technologies]
[HKCU\Software\Foxit Software]
[HKCU\Software\Ghostery]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\LowRegistry]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Netscape]
[HKCU\Software\OLYMPUS]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Opera Software]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Reviversoft]
[HKCU\Software\Softonic]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\Valve]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\honestech]
[HKCU\Software\videofutur]
[HKLM\Software\AMD]
[HKLM\Software\ASDMA]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVC3]
[HKLM\Software\Adobe]
[HKLM\Software\ArcSoft]
[HKLM\Software\Avanquest]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\EAST_Technologies]
[HKLM\Software\Even Balance]
[HKLM\Software\FRANCE TELECOM]
[HKLM\Software\Foxit Software]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstallationKit]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Mac]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\Micro Application]
[HKLM\Software\MidasHeurScanner]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NAVIGON]
[HKLM\Software\NCH Software]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\NCH_EN]
[HKLM\Software\Netscape]
[HKLM\Software\Nom de votre société]
[HKLM\Software\ODBC]
[HKLM\Software\OLYMPUS]
[HKLM\Software\Opera Software]
[HKLM\Software\Piriform]
[HKLM\Software\PoINT]
[HKLM\Software\Policies]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Reviversoft]
[HKLM\Software\Sagem]
[HKLM\Software\Sonic]
[HKLM\Software\TrendMicro]
[HKLM\Software\USB2800]
[HKLM\Software\Valve]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\Yahoo]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/12/2010 - 07:37:06 - [23421515] ----D- C:\Program Files\ATI
O43 - CFD: 19/12/2010 - 07:37:12 - [0] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 19/12/2010 - 18:43:00 - [213648959] ----D- C:\Program Files\BitDefender
O43 - CFD: 09/09/2011 - 07:07:48 - [8458144] ----D- C:\Program Files\CCleaner
O43 - CFD: 19/12/2010 - 18:43:08 - [1565767597] ----D- C:\Program Files\Common Files
O43 - CFD: 18/06/2011 - 17:16:32 - [1047632] ----D- C:\Program Files\DIFX
O43 - CFD: 06/03/2011 - 12:17:50 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 15/12/2010 - 12:47:34 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 06/10/2011 - 05:44:00 - [0] ----D- C:\Program Files\Google
O43 - CFD: 17/12/2010 - 18:30:50 - [4499093] ----D- C:\Program Files\HP
O43 - CFD: 13/10/2011 - 07:01:12 - [6201856] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 27/09/2011 - 07:12:16 - [317409820] ----D- C:\Program Files\Java
O43 - CFD: 14/07/2009 - 09:45:56 - [149237810]
0
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
En regardant ce que j'ai envoyé, je m'aperçois que le rapport n'est pas complet. J'ai un problème avec cjoint.J'ai enregistré le lien mais après il ne se passe rien. comment faire ?
0
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
Qu'est-ce-qu'on fait ? On arrête ?
0
jacques.gache Messages postés 33461 Date d'inscription   Statut Contributeur sécurité Dernière intervention   1 616
 
bonjour, si problème avec cijoint essais avec un autre hébergeur comme celui ci http://pjjoint.malekal.com/
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 15
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
https://pjjoint.malekal.com/files.php?id=ZHPDiag_e13p6q5r10z15b10k6o15t7b11v10g9g6j11b15i13f8b5c6q12Bonjour et merci de continuer. Voici le lien
0
Réponse 6 / 15
twister2 Messages postés 218 Date d'inscription   Statut Membre Dernière intervention   43
 
re blocage

Aucun fichier correspondant à ce lien
ok exceptionnellement je vais te demandé de me collé la partie manquante du raport a ta prochaine reponse ;)

bonsoir jacques.gache il y a longtemps qu'on ses croiser j espere que tu va bien et merci pour le lien :) salutation

tout mes excuse pour le contre temps (mauvaise grippe)

@+
0
Réponse 7 / 15
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
Bonjour et ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/12/2010 - 07:37:06 - [23421515] ----D- C:\Program Files\ATI
O43 - CFD: 19/12/2010 - 07:37:12 - [0] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 19/12/2010 - 18:43:00 - [213648959] ----D- C:\Program Files\BitDefender
O43 - CFD: 09/09/2011 - 07:07:48 - [8458144] ----D- C:\Program Files\CCleaner
O43 - CFD: 19/12/2010 - 18:43:08 - [1565767597] ----D- C:\Program Files\Common Files
O43 - CFD: 18/06/2011 - 17:16:32 - [1047632] ----D- C:\Program Files\DIFX
O43 - CFD: 06/03/2011 - 12:17:50 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 15/12/2010 - 12:47:34 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 06/10/2011 - 05:44:00 - [0] ----D- C:\Program Files\Google
O43 - CFD: 17/12/2010 - 18:30:50 - [4499093] ----D- C:\Program Files\HP
O43 - CFD: 13/10/2011 - 07:01:12 - [6201856] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 27/09/2011 - 07:12:16 - [317409820] ----D- C:\Program Files\Java
O43 - CFD: 14/07/2009 - 09:45:56 - [149237810] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 05/07/2011 - 05:41:02 - [23595127] ----D- C:\Program Files\Microsoft Security Client
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 14/07/2009 - 07:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 28/12/2010 - 12:22:46 - [0] ----D- C:\Program Files\ReviverSoft
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 06/03/2011 - 12:17:46 - [4039680] ----D- C:\Program Files\Windows Defender
O43 - CFD: 06/03/2011 - 12:17:50 - [9224824] ----D- C:\Program Files\Windows Journal
O43 - CFD: 05/08/2011 - 07:52:06 - [7987385] ----D- C:\Program Files\Windows Live
O43 - CFD: 06/03/2011 - 12:17:50 - [6667776] ----D- C:\Program Files\Windows Mail
O43 - CFD: 06/03/2011 - 12:17:50 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 15/12/2010 - 12:47:34 - [12627636] ----D- C:\Program Files\Windows NT
O43 - CFD: 06/03/2011 - 12:17:50 - [5516056] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 06/03/2011 - 12:17:50 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 06/03/2011 - 12:17:50 - [7044767] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 19/12/2010 - 18:37:48 - [1492872262] ----D- C:\Program Files\Common Files\BitDefender
O43 - CFD: 05/08/2011 - 07:51:38 - [59988030] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 15/12/2010 - 15:21:54 - [12194291] ----D- C:\Program Files\Common Files\System
O43 - CFD: 26/09/2011 - 11:02:30 - [283579861] ----D- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 18/10/2011 - 17:30:56 - [10819] ----D- C:\ProgramData\ArcSoft
O43 - CFD: 27/08/2011 - 11:24:22 - [2527] ----D- C:\ProgramData\Avanquest
O43 - CFD: 27/08/2011 - 14:48:08 - [0] ----D- C:\ProgramData\Avanquest Software
O43 - CFD: 30/12/2010 - 09:48:44 - [154] ----D- C:\ProgramData\bdch
O43 - CFD: 19/12/2010 - 18:51:34 - [14041940] ----D- C:\ProgramData\BitDefender
O43 - CFD: 25/08/2011 - 18:15:42 - [0] ----D- C:\ProgramData\boost_interprocess
O43 - CFD: 15/12/2010 - 12:47:34 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 15/12/2010 - 12:47:34 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 27/04/2011 - 18:21:34 - [25581964] ----D- C:\ProgramData\HP
O43 - CFD: 26/12/2010 - 07:36:44 - [8988] ----D- C:\ProgramData\HP Product Assistant
O43 - CFD: 06/10/2011 - 09:19:42 - [264] ----D- C:\ProgramData\HPSSUPPLY
O43 - CFD: 17/12/2010 - 07:20:58 - [17123476] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 15/12/2010 - 12:47:34 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 09/03/2011 - 21:13:56 - [582642093] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 15/12/2010 - 12:47:34 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 18/10/2011 - 06:56:14 - [0] ----D- C:\ProgramData\NCH Software
O43 - CFD: 21/06/2011 - 13:45:52 - [1523662] ----D- C:\ProgramData\Real
O43 - CFD: 28/12/2010 - 08:17:16 - [5456635] ----D- C:\ProgramData\ReviverSoft
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 27/09/2011 - 09:11:44 - [119] ----D- C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 17/12/2010 - 18:39:56 - [206] ----D- C:\ProgramData\WEBREG
O43 - CFD: 19/12/2010 - 08:10:34 - [7452200] ----D- C:\Users\SURGIT\AppData\Roaming\Adobe
O43 - CFD: 18/10/2011 - 18:01:08 - [1559] ----D- C:\Users\SURGIT\AppData\Roaming\ArcSoft
O43 - CFD: 19/12/2010 - 18:43:08 - [54453] ----D- C:\Users\SURGIT\AppData\Roaming\BitDefender
O43 - CFD: 28/12/2010 - 15:39:24 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\Dell
O43 - CFD: 21/04/2011 - 07:43:58 - [2165941] ----D- C:\Users\SURGIT\AppData\Roaming\EAST Technologies
O43 - CFD: 17/06/2011 - 07:16:20 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\enchant
O43 - CFD: 06/10/2011 - 14:40:40 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\Foxit Software
O43 - CFD: 27/07/2011 - 15:39:06 - [169] ----D- C:\Users\SURGIT\AppData\Roaming\gtk-2.0
O43 - CFD: 17/12/2010 - 18:39:56 - [109420] ----D- C:\Users\SURGIT\AppData\Roaming\HP
O43 - CFD: 15/12/2010 - 12:48:08 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\Identities
O43 - CFD: 03/08/2011 - 16:37:50 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\InstallShield
O43 - CFD: 17/12/2010 - 08:18:28 - [504] ----D- C:\Users\SURGIT\AppData\Roaming\Macromedia
O43 - CFD: 17/12/2010 - 07:21:12 - [25790] ----D- C:\Users\SURGIT\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:44:40 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\Media Center Programs
O43 - CFD: 28/09/2011 - 10:23:02 - [4816681] -S--D- C:\Users\SURGIT\AppData\Roaming\Microsoft
O43 - CFD: 25/08/2011 - 18:15:42 - [510] ----D- C:\Users\SURGIT\AppData\Roaming\NAVIGON Fresh
O43 - CFD: 18/10/2011 - 06:55:48 - [4133] ----D- C:\Users\SURGIT\AppData\Roaming\NCH Software
O43 - CFD: 25/02/2011 - 08:51:12 - [1580711] ----D- C:\Users\SURGIT\AppData\Roaming\OpenOffice.org
O43 - CFD: 28/09/2011 - 09:59:44 - [1508304] ----D- C:\Users\SURGIT\AppData\Roaming\Opera
O43 - CFD: 19/12/2010 - 18:37:58 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\QuickScan
O43 - CFD: 18/06/2011 - 06:25:14 - [4165540] ----D- C:\Users\SURGIT\AppData\Roaming\Real
O43 - CFD: 01/09/2011 - 11:50:46 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\Reviversoft
O43 - CFD: 02/10/2011 - 16:40:42 - [1190400] ----D- C:\Users\SURGIT\AppData\Roaming\vlc
O43 - CFD: 17/12/2010 - 20:52:30 - [295] ----D- C:\Users\SURGIT\AppData\Roaming\Windows Live Writer
O43 - CFD: 17/12/2010 - 18:37:20 - [0] ----D- C:\Users\SURGIT\AppData\Roaming\Yahoo!
O43 - CFD: 19/12/2010 - 08:10:34 - [15900564] ----D- C:\Users\SURGIT\AppData\Local\Adobe
O43 - CFD: 15/12/2010 - 12:47:52 - [0] -SH-D- C:\Users\SURGIT\AppData\Local\Application Data
O43 - CFD: 28/12/2010 - 15:37:42 - [3623588] ----D- C:\Users\SURGIT\AppData\Local\Apps
O43 - CFD: 17/10/2011 - 16:00:10 - [856] ----D- C:\Users\SURGIT\AppData\Local\ArcSoft
O43 - CFD: 08/02/2011 - 08:56:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\Deployment
O43 - CFD: 13/04/2011 - 18:15:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\Diagnostics
O43 - CFD: 17/10/2011 - 18:56:22 - [168692] ----D- C:\Users\SURGIT\AppData\Local\ElevatedDiagnostics
O43 - CFD: 14/02/2011 - 18:23:30 - [38] ----D- C:\Users\SURGIT\AppData\Local\Glowria
O43 - CFD: 05/10/2011 - 16:18:48 - [192126724] ----D- C:\Users\SURGIT\AppData\Local\Google
O43 - CFD: 15/12/2010 - 12:47:52 - [0] -SH-D- C:\Users\SURGIT\AppData\Local\Historique
O43 - CFD: 17/12/2010 - 18:39:20 - [52] ----D- C:\Users\SURGIT\AppData\Local\HP
O43 - CFD: 27/08/2011 - 14:47:38 - [22933226] ----D- C:\Users\SURGIT\AppData\Local\Micro Application
O43 - CFD: 23/07/2011 - 17:26:12 - [515713168] ----D- C:\Users\SURGIT\AppData\Local\Microsoft
O43 - CFD: 15/09/2011 - 08:16:22 - [319585] ----D- C:\Users\SURGIT\AppData\Local\Microsoft Games
O43 - CFD: 27/08/2011 - 15:20:00 - [3698] ----D- C:\Users\SURGIT\AppData\Local\Micro_Application
O43 - CFD: 26/12/2010 - 18:01:40 - [177306] ----D- C:\Users\SURGIT\AppData\Local\MigWiz
O43 - CFD: 18/06/2011 - 17:49:50 - [5494431] ----D- C:\Users\SURGIT\AppData\Local\OLYMPUS
O43 - CFD: 28/09/2011 - 09:59:44 - [951510] ----D- C:\Users\SURGIT\AppData\Local\Opera
O43 - CFD: 21/09/2011 - 14:22:40 - [420432] ----D- C:\Users\SURGIT\AppData\Local\PunkBuster
O43 - CFD: 20/10/2011 - 07:17:26 - [8430551] ----D- C:\Users\SURGIT\AppData\Local\Temp
O43 - CFD: 15/12/2010 - 12:47:52 - [0] -SH-D- C:\Users\SURGIT\AppData\Local\Temporary Internet Files
O43 - CFD: 16/12/2010 - 17:31:36 - [6463248] ----D- C:\Users\SURGIT\AppData\Local\VirtualStore
O43 - CFD: 20/10/2011 - 06:38:38 - [561152] ----D- C:\Users\SURGIT\AppData\Local\Windows Live
O43 - CFD: 03/03/2011 - 16:10:34 - [650841] ----D- C:\Users\SURGIT\AppData\Local\Windows Live Writer
O43 - CFD: 10/01/2011 - 06:49:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{000BD5B9-8743-4C52-AC9F-32F765C29361}
O43 - CFD: 27/05/2011 - 17:59:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{005588C0-D7D7-4711-91C4-225AAABD1780}
O43 - CFD: 08/04/2011 - 07:31:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{00E035FE-4000-41DE-8828-476740688BE6}
O43 - CFD: 16/02/2011 - 18:56:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0140745F-4141-498A-95F0-7A16D0C42FF0}
O43 - CFD: 17/02/2011 - 18:57:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{01B8C376-4CA1-4693-A9D5-4BC697B769E9}
O43 - CFD: 26/01/2011 - 06:32:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{022F91BE-76AE-464E-9C67-0E2027D832DB}
O43 - CFD: 25/05/2011 - 05:54:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{02650C25-EF2B-4DEE-A9EA-3C0650161F03}
O43 - CFD: 06/09/2011 - 17:38:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0278DB5B-73DD-4AA1-B7DD-FC5F382CCC9F}
O43 - CFD: 09/03/2011 - 07:09:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{02A943EA-5F77-4D2E-9E5F-CDC1B6872347}
O43 - CFD: 25/04/2011 - 05:39:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{03CD4F08-57DC-4309-A58B-2C32C62681B3}
O43 - CFD: 05/08/2011 - 06:11:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{03ED441E-475B-4555-9C79-D91C05B937D9}
O43 - CFD: 26/05/2011 - 17:58:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{040F08BC-3CBC-4290-A5C4-F59E7103D253}
O43 - CFD: 12/03/2011 - 06:45:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{046E128B-1ABA-4286-8F77-D3E43A29B163}
O43 - CFD: 15/09/2011 - 05:55:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0483AA44-62CC-42FD-8308-6FB8B4DC6901}
O43 - CFD: 20/03/2011 - 06:45:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{04A9061F-A549-4D31-999D-18873C5C9DA0}
O43 - CFD: 18/02/2011 - 19:19:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{04D3D62C-4186-4267-9F34-B73FA3480AD0}
O43 - CFD: 12/08/2011 - 18:22:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{04DAD597-56C3-4EB5-9CAE-8FF80F7065F0}
O43 - CFD: 08/03/2011 - 06:50:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{058FF034-ED18-4295-980F-AE3A99D714DF}
O43 - CFD: 24/08/2011 - 05:22:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{059458FB-9B69-4F27-9059-E3BF22A6C0D5}
O43 - CFD: 01/09/2011 - 18:07:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{059E7309-4DEF-4C00-87F8-F439E1BB0FFC}
O43 - CFD: 13/04/2011 - 05:47:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{05A1BB8D-324D-44C2-A0A7-45C18EEC4A85}
O43 - CFD: 20/06/2011 - 14:16:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{05B14CBF-3181-47FE-B8CA-037923D8845F}
O43 - CFD: 09/04/2011 - 05:41:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{05F8C51F-4492-4F65-9F79-048875B24644}
O43 - CFD: 20/02/2011 - 12:35:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{05FE629F-0816-4199-9588-CF3BC2E8DF28}
O43 - CFD: 29/01/2011 - 07:04:32 - [0] ----D- C:\Users\SURGIT\AppData\Local\{063723DE-3498-4143-8D13-0F28CB5302A1}
O43 - CFD: 13/09/2011 - 05:52:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0640D90C-3DB3-48F9-B22D-5ADDC9FDABD2}
O43 - CFD: 11/05/2011 - 06:14:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{07292C4F-FF77-439E-ACBA-F6F842B951CF}
O43 - CFD: 01/06/2011 - 06:25:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0729CB17-31A8-4B75-8D38-4E9E393F767A}
O43 - CFD: 12/02/2011 - 06:50:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0794DF28-5A51-4065-A1F5-E238BA3B3839}
O43 - CFD: 11/07/2011 - 17:48:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{07B3036B-7A59-49E2-A889-11D746EE380A}
O43 - CFD: 15/09/2011 - 17:56:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{07F87094-B333-48BD-87D0-86FEC00E1867}
O43 - CFD: 25/04/2011 - 05:35:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{083746D6-6DE9-4BFF-8CE8-71C509118087}
O43 - CFD: 25/12/2010 - 19:02:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{084D44C0-3582-48D5-BF71-7581A2F5D2E6}
O43 - CFD: 23/02/2011 - 06:56:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{08A4DB16-7224-4731-A197-BB6FAEF50638}
O43 - CFD: 15/05/2011 - 06:12:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{08CAE7BA-A667-4050-AFC8-00724D597665}
O43 - CFD: 15/09/2011 - 05:55:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{08E352A9-FFC6-4675-AEEF-B63B04D90D76}
O43 - CFD: 05/07/2011 - 05:43:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0928FE1A-9D8F-45F6-87AE-D5C7D2721DD8}
O43 - CFD: 12/09/2011 - 17:51:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{09D3DF96-2F96-41EF-B977-87E58F5E34D3}
O43 - CFD: 05/09/2011 - 05:54:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{09D8B460-A42F-4E81-AE83-73511A379298}
O43 - CFD: 12/07/2011 - 05:48:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0A38BCB2-98D6-41D3-8D40-C9EA128B1683}
O43 - CFD: 30/08/2011 - 18:03:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0A6E87C8-435C-4AA1-BCA6-36421877E191}
O43 - CFD: 23/03/2011 - 19:23:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0A71F939-8DA0-4258-9BF9-A76A1AC99A9C}
O43 - CFD: 02/09/2011 - 06:08:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0AEC5C3E-EA42-46B6-9776-8DDDB9748B97}
O43 - CFD: 17/06/2011 - 18:01:32 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0B1945FF-2BD3-4E59-80A6-4753050F3D64}
O43 - CFD: 04/06/2011 - 06:01:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0D1BF586-6868-48D0-9D48-72BCC92C6B02}
O43 - CFD: 26/04/2011 - 06:02:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0D487A24-7107-452D-94C4-AB403B30050E}
O43 - CFD: 19/10/2011 - 18:37:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0DD7FCE4-E788-4AB4-9C34-49C46FE834D5}
O43 - CFD: 02/01/2011 - 06:48:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0E1EBB6B-4C7C-4D9B-AAE4-027F0F716CC4}
O43 - CFD: 11/10/2011 - 18:25:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0E6F1A58-7B88-49DD-AF4E-38765B958797}
O43 - CFD: 20/09/2011 - 06:27:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0E8186D6-C439-4F7F-894F-A7F2F204F894}
O43 - CFD: 03/04/2011 - 19:09:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0E90DD8B-9DF1-4C57-9F89-0F35D1A36BF6}
O43 - CFD: 03/10/2011 - 13:46:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0EA2B0CC-AA2A-40ED-883D-A74C8EC7F232}
O43 - CFD: 20/09/2011 - 18:28:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0F24E5FB-8658-4E49-A34B-590B7D5D63A8}
O43 - CFD: 15/03/2011 - 06:50:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0F3C7325-259F-4CE2-B4A9-50D76A621717}
O43 - CFD: 04/01/2011 - 06:48:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0F447E86-9458-4A38-8BBB-E7E9D785F2FA}
O43 - CFD: 29/09/2011 - 06:04:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0F88A48D-8222-4E0B-959F-039355167A62}
O43 - CFD: 18/04/2011 - 20:32:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{0FBEB561-0632-4B2A-B4BC-B30B89674FAF}
O43 - CFD: 09/08/2011 - 17:51:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{102C3051-7BDF-4854-A3EC-3136310F5CB7}
O43 - CFD: 07/09/2011 - 07:45:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1159C8A3-7AE5-4DFC-AED8-F65FBE960FFE}
O43 - CFD: 29/12/2010 - 21:43:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{11F824F4-81DC-4856-A210-35F62000C13C}
O43 - CFD: 01/06/2011 - 18:25:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1278B3AC-0D27-4F9B-84A1-D4771468DA40}
O43 - CFD: 02/04/2011 - 17:46:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{12F07CB1-C6C1-428E-BD09-D380842620C3}
O43 - CFD: 06/04/2011 - 06:33:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{12F61FE5-A8B6-4ECE-AFAA-A07A322CB31E}
O43 - CFD: 08/10/2011 - 18:21:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{12F8EBC9-2789-4AD7-947D-F8613D5A13D0}
O43 - CFD: 12/09/2011 - 17:51:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{149FDE0D-5E72-496C-AB97-E4E754408BB8}
O43 - CFD: 05/01/2011 - 19:28:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{14D558F1-5D59-4082-86DD-060CBE0B0946}
O43 - CFD: 05/05/2011 - 06:16:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{14E971F5-202F-4602-BA96-239D6D0F0397}
O43 - CFD: 17/10/2011 - 06:33:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1528F4B3-2F28-4E45-90B0-226DDF331B00}
O43 - CFD: 19/01/2011 - 06:53:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{154F4C84-9194-4234-9DEA-D548FDB91EB3}
O43 - CFD: 19/08/2011 - 07:45:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{15A1F8CA-067A-4A59-87F5-15A69268021B}
O43 - CFD: 23/06/2011 - 17:54:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1604475D-3715-4EB9-A1B3-8E14B266F732}
O43 - CFD: 11/02/2011 - 06:49:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1733A6DA-EB02-44A6-895F-EE7E33870A2B}
O43 - CFD: 29/05/2011 - 06:05:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{173A9E1C-85A3-4278-BC33-06210D3A1394}
O43 - CFD: 10/05/2011 - 05:58:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{173C1ED4-FC83-42C4-A82D-408758108D39}
O43 - CFD: 06/08/2011 - 08:00:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{17B2811C-E3BE-4815-BABC-F3393CCDF328}
O43 - CFD: 03/01/2011 - 18:48:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1833BDD0-B9BF-42FC-93C4-EAE245A6564D}
O43 - CFD: 18/03/2011 - 19:34:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{18C3AE41-F52C-4C76-80C6-8FFEF36C3F92}
O43 - CFD: 10/09/2011 - 05:45:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{18CBF944-C4CE-474F-9C6B-2A6152922B9E}
O43 - CFD: 14/08/2011 - 06:24:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{18CD1DCE-D26A-4C7E-9619-19A429770AB0}
O43 - CFD: 15/10/2011 - 18:30:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1923D568-5082-4997-9EAC-1C79B857DD8F}
O43 - CFD: 30/07/2011 - 18:02:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{199FBAC2-B461-44F5-9498-0060E264A38C}
O43 - CFD: 04/09/2011 - 06:12:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{19B15676-D792-4D6C-86D1-76BBF61DF9F4}
O43 - CFD: 28/09/2011 - 18:03:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1A4E0622-02EB-4EA5-8DAE-1AE1F1601AAC}
O43 - CFD: 24/01/2011 - 06:46:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1A6F5B21-9762-488D-97D4-62E940E6937A}
O43 - CFD: 18/01/2011 - 06:52:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1A8DBB66-676B-438F-B5AC-8D80CA62AF7B}
O43 - CFD: 14/07/2011 - 18:17:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1B784DFC-4986-4EE7-9798-F51BBBCB49A1}
O43 - CFD: 13/08/2011 - 06:23:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1B920881-ABC7-4652-B096-1BC296E0863B}
O43 - CFD: 16/06/2011 - 18:00:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1C051657-D4B2-4CB2-A398-5E414E5E34DE}
O43 - CFD: 07/06/2011 - 18:16:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1C5427D7-0577-42C1-9776-5FA777C3DAE2}
O43 - CFD: 13/03/2011 - 20:39:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1CA15D29-4E67-4CDE-B509-C09119AAE6F1}
O43 - CFD: 30/06/2011 - 05:56:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1CAAF334-8CA0-4DCD-9346-F43920449591}
O43 - CFD: 18/12/2010 - 19:52:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1D32448C-3451-4859-B4A8-4FC318EA003B}
O43 - CFD: 10/08/2011 - 05:52:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1D3C0258-0F18-4733-BDB6-DE5F7CA29A74}
O43 - CFD: 12/08/2011 - 18:22:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1DB8D545-058B-4199-A3DB-C6F43584EFD3}
O43 - CFD: 22/09/2011 - 06:30:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1E6F226B-AEC4-4228-AD2E-02879F2E096E}
O43 - CFD: 26/09/2011 - 19:50:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1E8806FC-9547-43C3-88FD-F64DD81198B6}
O43 - CFD: 23/08/2011 - 08:09:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1EE90791-2376-4DF1-9A85-527092BF622B}
O43 - CFD: 16/04/2011 - 18:28:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1EF8B3D1-DA07-4800-A321-12A0C797BD25}
O43 - CFD: 13/07/2011 - 18:16:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1F5C5644-87DD-460F-B36D-52A831B89AAB}
O43 - CFD: 01/08/2011 - 06:14:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1F943CA0-583D-4992-BCEB-0AFAEF3C5961}
O43 - CFD: 14/04/2011 - 06:11:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{1FA75E2A-2C2A-485A-8CCC-E9528211609E}
O43 - CFD: 15/10/2011 - 06:30:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2003E138-2186-4560-99D7-022A12A5D075}
O43 - CFD: 10/03/2011 - 20:25:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{207BF21E-FC6E-44BC-AF53-0E7A7790B4AF}
O43 - CFD: 25/08/2011 - 18:10:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{20B45CE9-9DD3-4E2D-BE01-DDA30115AE60}
O43 - CFD: 20/04/2011 - 17:58:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{20C9DAB7-6AB9-417F-BD67-B14D26D98D17}
O43 - CFD: 12/09/2011 - 05:50:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{211643BC-A6CD-4E2A-A8E0-EEE7159238B7}
O43 - CFD: 26/02/2011 - 18:44:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2116F543-3C39-47DD-B6D8-39C3A035CE15}
O43 - CFD: 04/10/2011 - 05:47:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{21340930-4196-43BD-AC8E-7A86B4FB0792}
O43 - CFD: 09/10/2011 - 06:22:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{214968F0-F142-4B14-A720-93AD73F28817}
O43 - CFD: 26/08/2011 - 06:11:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{217505F7-70DE-4780-99FA-69AE3954C11A}
O43 - CFD: 08/05/2011 - 06:24:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2184D50C-01A8-4E5A-8AAE-CAFC0F7B6E65}
O43 - CFD: 09/03/2011 - 19:58:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{21ECDBA2-2665-4BDA-948A-82269B8E4B9C}
O43 - CFD: 18/08/2011 - 19:44:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{22276652-6F26-4081-885F-6FFCF168CC06}
O43 - CFD: 13/08/2011 - 06:23:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{22A53908-843B-49DD-B130-C28AD0683B2A}
O43 - CFD: 08/10/2011 - 18:21:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{22DAA93B-1CBF-4143-8D21-A64015EA660E}
O43 - CFD: 26/06/2011 - 05:55:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2332554D-3FD7-44F3-964A-1CFC608FA55B}
O43 - CFD: 08/03/2011 - 19:04:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{23960BBF-8C7D-48B8-AA0E-5CBBEDF4DFF1}
O43 - CFD: 05/08/2011 - 19:59:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{23EBA244-9936-4E89-A3F6-787864FDCF9B}
O43 - CFD: 24/05/2011 - 13:50:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2483F554-457B-4CA5-B423-2D75505DA06B}
O43 - CFD: 13/06/2011 - 06:05:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{248DE697-464E-45E7-B3C2-AB13CABB7589}
O43 - CFD: 18/10/2011 - 18:36:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{254EB57A-ED45-4F36-AAC9-29C133621CBD}
O43 - CFD: 10/09/2011 - 17:46:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{260F0837-EF22-4DF5-8AEE-6D93BC259FC1}
O43 - CFD: 28/05/2011 - 06:00:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{26D96FE2-DDB2-4F22-BB14-FA122B963FB2}
O43 - CFD: 02/09/2011 - 06:07:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2729313D-0CCD-4AD3-90A3-6FAD14B8B672}
O43 - CFD: 19/06/2011 - 06:03:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2756D0A2-B108-4E6D-9C40-A5F245EA85AD}
O43 - CFD: 06/07/2011 - 05:50:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{27AB1EAA-AA76-4BE9-80F3-A198670336BD}
O43 - CFD: 26/04/2011 - 18:02:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{27C540EF-FC42-4213-9DF4-16F19C1C8D8E}
O43 - CFD: 03/02/2011 - 06:45:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{28417EEA-70F4-4DB2-A41F-F07DE15B3276}
O43 - CFD: 03/02/2011 - 18:46:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{28A95D27-8645-4FFC-B8F3-0B07C49ADDBA}
O43 - CFD: 12/04/2011 - 06:12:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{28EDDAB3-8CD1-446A-89F5-FBD93F263756}
O43 - CFD: 19/09/2011 - 18:26:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{291638ED-62B8-426A-8ED6-CDC126A26238}
O43 - CFD: 16/08/2011 - 18:30:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{29D31DC9-603C-434C-A3AD-FEC72D4AF57D}
O43 - CFD: 20/07/2011 - 06:38:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2A036598-3747-4634-9578-A6722706145C}
O43 - CFD: 23/09/2011 - 06:32:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2A40F705-3C88-4997-952C-16C24A289EAC}
O43 - CFD: 07/05/2011 - 18:23:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2A62B34A-076E-4BA8-BE63-E924C70CFD96}
O43 - CFD: 10/10/2011 - 18:24:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2AC4F931-2805-4A62-90CA-AEFE7E53C7EC}
O43 - CFD: 01/10/2011 - 06:07:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2AE6893D-5240-46F1-9C00-03BE6920B2D0}
O43 - CFD: 09/04/2011 - 05:45:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2B225E78-D383-4C83-815A-7869998D2397}
O43 - CFD: 11/01/2011 - 19:18:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2BB94544-FB29-4EB0-A571-000CCFC15AC8}
O43 - CFD: 19/10/2011 - 06:36:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2C52F1EE-BF0F-42B6-AE91-8286AF1800A4}
O43 - CFD: 17/04/2011 - 06:29:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2C7DA6CF-0F57-4271-AD78-1BD0F791FA98}
O43 - CFD: 16/09/2011 - 06:04:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2D1B98C8-A503-440C-AF9E-F84E399CB3DC}
O43 - CFD: 06/06/2011 - 07:17:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2D2B4355-6E6D-4AA1-993F-89CAE529A884}
O43 - CFD: 28/09/2011 - 06:02:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2D40B3BE-194B-4F03-B200-852AB69EA715}
O43 - CFD: 02/10/2011 - 19:58:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2D4F9AD7-4968-48DF-8396-78C2189206D5}
O43 - CFD: 11/01/2011 - 07:17:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2D9D1BB8-7319-4E9A-A114-E93A6E5BE36B}
O43 - CFD: 09/10/2011 - 18:22:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2E014B7A-7460-43F5-BD40-97C4035FBB94}
O43 - CFD: 24/09/2011 - 19:47:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2E3BA71E-6340-435B-AA8D-EEE904F350F9}
O43 - CFD: 14/03/2011 - 08:41:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{2F2B7953-4223-4E8E-A76D-AFA98302C5A7}
O43 - CFD: 24/06/2011 - 05:58:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{30145FEE-F6AF-4A4E-B6C4-B21802AC8862}
O43 - CFD: 14/08/2011 - 18:26:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{30AE953E-853B-4EAC-AF17-E5E02A5F4FB6}
O43 - CFD: 02/03/2011 - 21:36:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{31C85E53-E3AA-43FF-B739-E715D5DE5209}
O43 - CFD: 06/05/2011 - 18:22:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{31E23312-11AE-4A08-8687-3A501DD86131}
O43 - CFD: 22/05/2011 - 05:41:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3256EEA0-9C07-420B-827D-1E5068EA5932}
O43 - CFD: 03/06/2011 - 05:56:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{329486DC-2596-4990-9AB4-ED8CED301665}
O43 - CFD: 08/10/2011 - 06:20:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3390847B-7189-47DB-9CB9-42FFA5EE1F6D}
O43 - CFD: 03/06/2011 - 18:01:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{33A13BF8-BEAB-4BD1-9B00-F35DB04C2903}
O43 - CFD: 01/05/2011 - 19:47:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3587C24B-ACC2-4438-8239-EA85AE6D5AF3}
O43 - CFD: 29/05/2011 - 18:26:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{35D84BEB-3C07-4678-B08A-443710608B96}
O43 - CFD: 17/09/2011 - 06:22:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{35F38A09-D08C-4E99-83FF-5292A2EF1162}
O43 - CFD: 06/10/2011 - 17:58:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{36F31A69-4FFC-4D90-820D-97721FC5EAD9}
O43 - CFD: 11/03/2011 - 08:25:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{37C49E14-31AF-433F-8B60-218782C743FC}
O43 - CFD: 21/09/2011 - 06:29:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3850BF57-EEA6-4A02-BFBF-DC66CBF6B268}
O43 - CFD: 18/07/2011 - 06:36:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3941FDEE-A34D-41D7-97C4-F545455202B8}
O43 - CFD: 25/08/2011 - 18:10:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{39463410-7B18-4D33-91B9-55AED4C07DBC}
O43 - CFD: 09/08/2011 - 17:51:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{39BEAEAC-2094-49E4-BE0F-97DE2C337802}
O43 - CFD: 25/01/2011 - 06:58:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{39CE278A-CEB7-4FD1-8446-02E6A859C11C}
O43 - CFD: 25/09/2011 - 07:48:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{39E68396-CB8B-4410-A264-0F331EE2A147}
O43 - CFD: 11/04/2011 - 05:47:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3A17D2DB-BA94-482C-A9CD-EDAACB85A841}
O43 - CFD: 21/03/2011 - 07:16:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3AA8B29C-61F8-46E4-9267-9B3EBC974DD9}
O43 - CFD: 17/10/2011 - 18:34:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3AD2C507-7F00-459A-98F1-ECA3B7CCF004}
O43 - CFD: 28/06/2011 - 05:50:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3ADBE63D-25A4-4313-B5C5-2BB957E46167}
O43 - CFD: 11/07/2011 - 05:47:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3B289F6B-745E-45E2-9CF5-543AAC9F3674}
O43 - CFD: 12/10/2011 - 18:27:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3B937695-BEB1-45A5-98DE-3189D851F3EF}
O43 - CFD: 04/04/2011 - 05:46:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3C02D5D2-04C5-43B8-A6FB-D59F6590945A}
O43 - CFD: 22/06/2011 - 05:59:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3C18C608-DC6D-4B5D-8DF4-45878104C48B}
O43 - CFD: 03/04/2011 - 19:13:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3C42481D-0B8C-45C4-A241-012D1F1ED76D}
O43 - CFD: 17/04/2011 - 19:49:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3CCBA91C-51AA-4B22-8BF6-F0DED8F7203B}
O43 - CFD: 18/10/2011 - 06:35:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3D22CCAF-FE3E-4AF2-89F5-64DA7D023609}
O43 - CFD: 06/03/2011 - 20:58:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3D268514-15C9-450D-9162-A1AB47D8FCF2}
O43 - CFD: 20/08/2011 - 17:49:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3D84D507-3FCF-469A-B064-EF8284CC20D1}
O43 - CFD: 20/06/2011 - 05:46:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3D971E94-A0FA-4D40-A9F3-EBCAB6CC9DF8}
O43 - CFD: 01/08/2011 - 18:23:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3DAE35B3-FC39-45D7-9A66-CD82737FFC91}
O43 - CFD: 25/02/2011 - 06:55:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3E1DDEEA-2351-400B-A01E-0B3C5558534D}
O43 - CFD: 11/09/2011 - 05:46:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3E7F78BC-4D1D-4171-AB6B-A988C70647B1}
O43 - CFD: 26/12/2010 - 19:03:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3E880EC4-68D5-4318-B392-4C773D94D621}
O43 - CFD: 14/01/2011 - 07:45:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3F011168-A411-410B-B563-93B034FC8695}
O43 - CFD: 20/10/2011 - 06:38:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3F18E9B3-88B1-4C5D-BEBF-C08D11820604}
O43 - CFD: 07/04/2011 - 19:31:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3F7071DB-96D1-4C0F-9E8B-02BFEEC15573}
O43 - CFD: 16/09/2011 - 06:04:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{3FFAA796-735F-4678-865A-0FA4FE65BE52}
O43 - CFD: 25/08/2011 - 05:41:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4010ACCB-D2AE-4A26-A108-9AB78D307092}
O43 - CFD: 04/03/2011 - 18:56:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{40176F0E-861C-4214-B99A-2B912F0758D8}
O43 - CFD: 10/03/2011 - 08:03:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{401D7636-5D3F-444A-98EF-CCF8B2A44CB8}
O43 - CFD: 05/06/2011 - 05:47:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{40576673-A04F-4079-95CB-10B776C033D6}
O43 - CFD: 19/09/2011 - 06:25:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{408C9C45-6B3E-4857-866A-AF38C65624F9}
O43 - CFD: 25/03/2011 - 07:25:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{40ABEEEF-E61B-4222-9BB8-077D8F499173}
O43 - CFD: 19/04/2011 - 13:48:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{410FD394-081E-4E44-807F-4ABB923D6DC2}
O43 - CFD: 22/08/2011 - 20:08:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4171775F-34CD-4F47-8433-60E5D93BF104}
O43 - CFD: 19/10/2011 - 06:36:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4198921E-F684-4D68-8743-45D4BE2C4534}
O43 - CFD: 24/02/2011 - 07:19:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{41A085D6-61C8-4A3B-BB26-82A4D4739554}
O43 - CFD: 07/09/2011 - 07:45:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{422F315C-8DFA-463E-B787-E311DBD8D61C}
O43 - CFD: 20/12/2010 - 06:52:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{42A134D3-0B61-47FA-AAB4-FBED9AB6972E}
O43 - CFD: 12/08/2011 - 06:22:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{42B6C96D-62E1-46B1-92CF-3CA1A16996AD}
O43 - CFD: 28/01/2011 - 07:03:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{42C9814F-B4A7-4E26-BAAF-7BF1F6750103}
O43 - CFD: 26/09/2011 - 07:49:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{42CCB482-5B68-44AA-B253-C21A6E96F3D4}
O43 - CFD: 02/05/2011 - 07:47:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{43107C1B-8574-4A0F-8B69-DB970E86D283}
O43 - CFD: 07/08/2011 - 06:39:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{437D27E7-EC37-403B-8757-68A6D6F9CB60}
O43 - CFD: 12/06/2011 - 05:49:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{43B5C20B-4FD8-4F61-B9D0-0B932E4FF686}
O43 - CFD: 09/04/2011 - 17:46:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{44274B3E-7086-403E-9412-27FC0FD32CC0}
O43 - CFD: 25/07/2011 - 05:48:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{45007CFF-9C03-4439-A2AA-8DC6E9C56072}
O43 - CFD: 16/08/2011 - 18:30:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{454C2B46-10B5-4529-88F1-BADE7DDFAE3C}
O43 - CFD: 24/09/2011 - 19:46:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{45B83B3E-76AF-47DA-89AC-6969DFA05C5E}
O43 - CFD: 17/09/2011 - 18:23:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{45C05655-606E-406C-8664-BA60CB942DE2}
O43 - CFD: 15/09/2011 - 17:56:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{45C5DE70-0C5A-4B3E-AAA9-1A64983A9E45}
O43 - CFD: 09/07/2011 - 06:01:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4675591A-EB3A-4A45-9319-423BB0781BBA}
O43 - CFD: 08/05/2011 - 19:30:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{46E20385-0B5B-4C84-84B4-77E3AD58FF27}
O43 - CFD: 22/09/2011 - 18:31:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{473C23CA-EAA7-4279-9B40-26071219156D}
O43 - CFD: 28/07/2011 - 06:08:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{47AADAB2-E56B-4DEA-A47C-C37DE31DF042}
O43 - CFD: 08/02/2011 - 07:59:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{48018510-FF8A-40E2-97F6-96FCCC199D8E}
O43 - CFD: 14/08/2011 - 06:25:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4848D5ED-1481-47BE-9E6E-E6D1747EE098}
O43 - CFD: 18/02/2011 - 06:57:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{487A95AD-22C9-4524-9B60-7774C6534938}
O43 - CFD: 06/09/2011 - 17:37:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{488B55FA-D843-4F3A-9CCC-0A53E9555BD3}
O43 - CFD: 29/04/2011 - 05:49:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{48A668A6-67BC-4C86-8F05-257EE73BF498}
O43 - CFD: 28/09/2011 - 06:02:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{49070985-2B23-465A-9088-274ED82A5FF3}
O43 - CFD: 22/08/2011 - 08:07:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{49352CF3-D212-427A-8540-79EEBE9191F4}
O43 - CFD: 15/04/2011 - 18:27:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{49373164-59C7-4601-96C7-7DCC139AB828}
O43 - CFD: 16/05/2011 - 17:56:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{49CAF881-CBAD-4575-B1BF-5A89F800F6FA}
O43 - CFD: 07/07/2011 - 05:51:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{49EBF6AB-5E9D-4127-B6AD-6487FEB29439}
O43 - CFD: 13/01/2011 - 06:50:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4A20E862-B94D-4B43-B3D5-FBEA77F64ACA}
O43 - CFD: 21/07/2011 - 06:39:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4A96622F-4B95-4049-BDDE-B66C9CF97938}
O43 - CFD: 03/03/2011 - 11:49:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4BBF2773-B210-418F-949F-5B7A61E36891}
O43 - CFD: 16/03/2011 - 19:14:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4BC0402A-4CEA-4B17-9226-7116AECB13CC}
O43 - CFD: 20/05/2011 - 18:28:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4BE1A657-048A-44AF-855D-7064734C8F06}
O43 - CFD: 17/07/2011 - 19:09:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4C0D6B65-F0AD-48C6-8DB4-F8840EED9FB9}
O43 - CFD: 27/01/2011 - 08:44:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4C5BC1F2-398E-4DEF-81E7-B4CAA8872C9F}
O43 - CFD: 04/07/2011 - 11:29:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4CACD53A-B21F-447E-B4F5-6E2B7026309F}
O43 - CFD: 23/01/2011 - 07:00:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4D0CE8B2-1759-4848-A090-E13DE814D85E}
O43 - CFD: 01/03/2011 - 06:46:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4D1A82B7-A807-43AC-824E-D7C0483DAD52}
O43 - CFD: 22/09/2011 - 06:30:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4D977C8B-319E-4626-8F56-04187189C9B1}
O43 - CFD: 31/05/2011 - 06:23:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4DAC71A7-E703-4D8D-8807-47475C0B244C}
O43 - CFD: 24/03/2011 - 19:24:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4DDC9F72-3464-4902-AC16-CF1D9A41A022}
O43 - CFD: 20/04/2011 - 05:58:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{4DDE1CF8-BB99-4083-8969-E7FF605FDBF3}
O43 - CFD: 13/08/2011 - 18:24:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{51DC51EC-517E-4890-8A0F-5696C34902FE}
O43 - CFD: 02/07/2011 - 05:51:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{51FC899E-4214-4EBA-869B-4295986502BB}
O43 - CFD: 20/08/2011 - 17:49:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5257B966-D162-4CA2-A140-3DF2B5246627}
O43 - CFD: 17/08/2011 - 18:32:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{52829257-7A72-4402-A0BC-A1E6B60CE3EB}
O43 - CFD: 20/01/2011 - 16:12:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{529D1246-F6EF-4675-A4D8-6236AB3B6C7A}
O43 - CFD: 23/04/2011 - 17:53:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{52C7D94F-3080-4E69-B173-B23FA8213D80}
O43 - CFD: 23/05/2011 - 08:17:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{52E7C83B-AE9D-4117-8486-87449D2AE675}
O43 - CFD: 26/09/2011 - 07:50:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{52F13506-7A52-4116-9527-1EC7077F943B}
O43 - CFD: 15/09/2011 - 17:56:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5307D299-7EBE-490C-8C2B-0FC44472B4C3}
O43 - CFD: 01/09/2011 - 06:06:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{534CEDF6-8CD3-4FF1-A055-C3903D668CFF}
O43 - CFD: 01/03/2011 - 06:51:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{53C8FB62-6E6E-4683-9455-98C6AC6A7A14}
O43 - CFD: 22/04/2011 - 17:52:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{53FBDADF-EBF0-43CE-AA2A-89822BE6E04A}
O43 - CFD: 30/08/2011 - 06:02:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{53FFC61F-3268-4810-89F8-D2F82A4C6856}
O43 - CFD: 18/09/2011 - 18:25:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{547E7E41-53DA-4F67-AA7F-6028F6444E85}
O43 - CFD: 20/05/2011 - 06:27:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{54924C48-AC52-4B7F-B123-3C6295A92CF8}
O43 - CFD: 11/08/2011 - 05:54:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{551D22CA-5F3C-4647-B025-51544398B1E0}
O43 - CFD: 07/08/2011 - 19:14:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{55443CCA-2DC5-4A67-BF4A-3253E000E14E}
O43 - CFD: 26/01/2011 - 20:43:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{55C8DB21-FE0E-4AB3-9626-0C11E7B32D73}
O43 - CFD: 31/05/2011 - 06:19:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{56CEEA9A-154C-4696-A7AD-DDCED43F0690}
O43 - CFD: 03/08/2011 - 10:46:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5730AAB6-37CC-4669-B7ED-E9E947D44F5C}
O43 - CFD: 10/08/2011 - 17:53:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5732374D-9383-4DAE-BC82-51FFCC6E10DF}
O43 - CFD: 19/05/2011 - 18:26:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{57A67E16-44A8-44A7-A44E-9497F1CFDDD5}
O43 - CFD: 07/10/2011 - 18:19:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{57D3A832-DACF-4081-9D95-C7F812326B2A}
O43 - CFD: 13/09/2011 - 05:52:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{589C3607-1B4D-470F-9C5F-307A5222D03E}
O43 - CFD: 22/08/2011 - 20:08:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{58FC307E-0C35-428B-950B-40F9E8633F54}
O43 - CFD: 13/03/2011 - 08:20:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{58FDBE69-5886-492A-9F61-EF62962883A1}
O43 - CFD: 28/03/2011 - 06:00:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{592016A4-3F49-4943-8A05-C820D6512074}
O43 - CFD: 30/04/2011 - 05:50:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5936D315-6B49-4F97-8A4D-943C6BD7DFB7}
O43 - CFD: 28/02/2011 - 06:36:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{599E71D7-1437-447E-8647-DF8CE6AEF5EE}
O43 - CFD: 05/06/2011 - 19:16:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{59C3CCFA-82F1-427B-B79C-1F9BB92526FC}
O43 - CFD: 20/07/2011 - 18:39:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{59DB49ED-AFF3-4553-BBCD-1B7BAFB2DC56}
O43 - CFD: 03/04/2011 - 06:12:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5B14F705-0637-43A0-9392-4983D850656E}
O43 - CFD: 09/10/2011 - 18:22:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5B5A998C-78F3-425D-ABB3-F22217888B5A}
O43 - CFD: 12/02/2011 - 06:46:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5B5B1AAA-F007-4EEB-8099-48C6D4B1803D}
O43 - CFD: 10/10/2011 - 06:23:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5B6C3287-ACB6-4578-8564-58288B0D931D}
O43 - CFD: 28/08/2011 - 17:44:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5C00A8EA-7A9A-4940-9517-33A015EEEF03}
O43 - CFD: 22/09/2011 - 18:31:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5C371EAE-A9C7-4B8A-BDC6-512E4F5E9F06}
O43 - CFD: 04/02/2011 - 07:41:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5C5C2143-A088-4EA1-BE52-5022581574D5}
O43 - CFD: 25/01/2011 - 08:28:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5CB63DAA-8183-494B-9CAD-79248F4A24F3}
O43 - CFD: 11/08/2011 - 05:54:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5D9E0E00-8C27-485A-B87C-753A7383798F}
O43 - CFD: 27/07/2011 - 06:07:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5DF0F26A-03B2-46F4-8D40-306B613161F1}
O43 - CFD: 08/06/2011 - 18:17:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5EED03C4-0645-4ED9-94AB-EE1F62361F17}
O43 - CFD: 14/10/2011 - 06:28:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5F076EE0-5711-4919-93EC-410938092506}
O43 - CFD: 31/05/2011 - 18:24:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5F9468E6-D8FB-4CD1-88AD-17E869A1D117}
O43 - CFD: 31/07/2011 - 06:12:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{5FF91600-6840-4758-9DC5-8345DAD7886D}
O43 - CFD: 02/10/2011 - 20:27:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{600C79B6-2428-4FFB-B661-E4FD45E3B4C5}
O43 - CFD: 25/05/2011 - 05:50:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{606E3524-E145-4843-9EAE-BFF58689EF79}
O43 - CFD: 05/05/2011 - 18:21:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{61637B1E-140E-40BF-A088-042E5AA938E0}
O43 - CFD: 21/09/2011 - 18:29:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{61BA0D20-EB6A-4753-A43B-55B150DC2955}
O43 - CFD: 16/06/2011 - 05:59:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{62A21BB5-F134-4E11-B5C0-BCF8109AEE07}
O43 - CFD: 01/02/2011 - 11:03:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{630AD540-D6D8-4214-98DE-8835D7ED76F8}
O43 - CFD: 09/05/2011 - 07:30:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{63285109-7E15-4933-8F84-CDD9FE28F6F8}
O43 - CFD: 15/06/2011 - 17:54:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{63432637-39C8-4CDB-8A57-16DBF5318083}
O43 - CFD: 03/04/2011 - 06:08:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{639CD3D3-6B5E-4AB6-8146-B6BB1C98AC5F}
O43 - CFD: 29/08/2011 - 06:01:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{639FF94D-EBA9-4DB7-9124-3421622846E9}
O43 - CFD: 13/09/2011 - 17:53:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{63C403FD-2869-4831-9683-496E9E6083F8}
O43 - CFD: 06/09/2011 - 05:37:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6437E4A2-19B3-4631-A921-477DAA5C5B4B}
O43 - CFD: 16/10/2011 - 18:32:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{647B38B9-113E-4009-932E-E7EED3314125}
O43 - CFD: 09/08/2011 - 05:50:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{648F53A3-CCC2-4BBC-8FA1-4F2CD0C60EF1}
O43 - CFD: 18/06/2011 - 18:02:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6560EE56-6DAE-4705-9D8F-9810CB47E19C}
O43 - CFD: 06/02/2011 - 20:37:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{65938CE6-20D6-400B-8F36-24B39EDDED8C}
O43 - CFD: 08/07/2011 - 05:46:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{65D22B52-0A6A-420B-9065-920ACF66C833}
O43 - CFD: 13/10/2011 - 06:27:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{65DF098C-E956-41F3-9127-E2EC964B547D}
O43 - CFD: 05/03/2011 - 06:57:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{663406EB-EB4A-418E-BD57-DCAA8EBF22F3}
O43 - CFD: 01/02/2011 - 06:43:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{66407F02-DC3F-4309-91BA-1E554AFA817C}
O43 - CFD: 13/03/2011 - 06:47:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{666E6C37-F24B-4704-BCC3-18E2EBCA6A9B}
O43 - CFD: 26/03/2011 - 06:34:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{667F4AAF-C4CA-4CB1-BFC4-193C51EA031D}
O43 - CFD: 25/09/2011 - 07:48:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6718C9C6-FEA9-4552-9BC6-997EE8C01861}
O43 - CFD: 29/07/2011 - 06:00:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{67199CF4-7545-4462-93F3-D9ADE4461AD8}
O43 - CFD: 08/07/2011 - 17:47:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{67879E34-0DCF-4793-9732-04C532AEB265}
O43 - CFD: 09/09/2011 - 05:44:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{67EF85A3-C9AA-4757-91EE-CECD94E6AEDC}
O43 - CFD: 13/08/2011 - 18:23:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{680C8619-81AF-4168-B284-B92979EAD571}
O43 - CFD: 25/08/2011 - 05:41:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{682D14FA-4C42-4EEE-A283-4C847604E7EA}
O43 - CFD: 24/07/2011 - 05:47:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{686AC305-8F56-4C74-89B5-C1A96809727D}
O43 - CFD: 20/06/2011 - 05:50:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{68B865E8-E4C7-449E-9762-73123B48FD4A}
O43 - CFD: 14/07/2011 - 18:26:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{68E5C1BD-5347-4467-B17E-A1C53513FD9E}
O43 - CFD: 20/09/2011 - 18:28:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{692CD5D9-9793-4FC2-BBB7-BBD29DD9385C}
O43 - CFD: 25/09/2011 - 19:49:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6A9E306F-6AD6-4E5E-B319-D966FB5A32D3}
O43 - CFD: 24/01/2011 - 18:46:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6AE5AF5D-1730-4184-B971-0674DC1A3089}
O43 - CFD: 19/05/2011 - 05:53:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6B975882-DABD-46C5-9B63-6679BE5A8684}
O43 - CFD: 18/09/2011 - 18:24:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6C39A30E-4330-4096-9D00-EE27DE5193F6}
O43 - CFD: 15/08/2011 - 18:29:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6C5F90CF-610B-4A57-A2DB-842789C39034}
O43 - CFD: 30/06/2011 - 05:52:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6C5FC187-5AA7-49EE-81B9-511F776626E9}
O43 - CFD: 28/06/2011 - 19:36:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6D36B4BE-A94D-452D-9B66-6CAF79AB0741}
O43 - CFD: 15/02/2011 - 18:55:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6E1CC5A0-15DB-4DDF-A1F2-B29A8F6E1837}
O43 - CFD: 30/04/2011 - 17:51:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6E405815-E745-40BB-A2CA-C7988BBC302D}
O43 - CFD: 13/10/2011 - 06:28:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6E56C5F7-4A48-4B2A-827B-4050DA507853}
O43 - CFD: 03/09/2011 - 18:11:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6E5F7710-0DD2-4A7E-A974-D4BC1593BC45}
O43 - CFD: 13/07/2011 - 05:50:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6EC451CD-B030-4F57-ADF1-DDE380BF45AA}
O43 - CFD: 30/01/2011 - 11:26:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6EE842FD-B46A-4897-8BB7-8336ECCF98D6}
O43 - CFD: 18/12/2010 - 07:52:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6FD83A84-E2CE-4213-BA2E-9D34EB4D215E}
O43 - CFD: 28/04/2011 - 06:04:32 - [0] ----D- C:\Users\SURGIT\AppData\Local\{6FF1D43A-BFF7-49F5-8D0E-BFB2B468E6BD}
O43 - CFD: 27/02/2011 - 07:25:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{70C10CA9-484E-463B-AF2F-F2BBB1561BC2}
O43 - CFD: 14/09/2011 - 17:54:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{70D77C56-7CD0-4A0E-8CA4-157C82E0B528}
O43 - CFD: 26/07/2011 - 18:06:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{71FB175E-9359-4B08-BA66-B0CD96C4685C}
O43 - CFD: 26/02/2011 - 06:40:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{724D0E4C-79A6-4054-AA85-99FBBF68859F}
O43 - CFD: 20/06/2011 - 14:12:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{726A551E-9E42-4D07-BA6C-3CDA19329CD5}
O43 - CFD: 01/07/2011 - 17:42:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{736A05C4-E6B8-4D38-AEC4-BBF8E42975EE}
O43 - CFD: 30/03/2011 - 06:52:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{73DCE1A8-7D3A-4BC2-A1DD-D757BFD5B446}
O43 - CFD: 30/12/2010 - 09:49:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{73F1D68B-D5D6-47E6-8CEE-97C7903107F7}
O43 - CFD: 12/05/2011 - 17:43:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{740DC21F-18EC-4AC0-B8F9-417498EC284A}
O43 - CFD: 12/01/2011 - 07:19:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{76252D92-43E4-4672-A276-A884765623E4}
O43 - CFD: 29/08/2011 - 06:01:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{768BB70E-7B7D-44B1-9001-D9CE690C151C}
O43 - CFD: 02/08/2011 - 06:24:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{76EF7EFE-F994-42C1-92CF-676E2934BE74}
O43 - CFD: 09/07/2011 - 18:22:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{776D948C-D669-435A-9960-9456FC9E138D}
O43 - CFD: 06/07/2011 - 05:46:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{78079753-BD1D-434B-BB08-AC2DE3617467}
O43 - CFD: 18/04/2011 - 07:54:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{787CB1BD-2D0D-4753-890F-6DA9A63D6586}
O43 - CFD: 12/06/2011 - 05:45:32 - [0] ----D- C:\Users\SURGIT\AppData\Local\{78DB3F02-C284-45A3-B4B1-CD38A5C257E5}
O43 - CFD: 10/09/2011 - 17:46:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{78F10CA5-D56B-483D-90AE-9BCCD1DCD43F}
O43 - CFD: 24/04/2011 - 05:54:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7901C26E-455B-4220-8F2D-95447BA65DBC}
O43 - CFD: 16/08/2011 - 06:30:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{795F74EE-48F3-4350-A569-B128750B8586}
O43 - CFD: 26/08/2011 - 18:12:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{797F2309-E772-47F0-8CAA-37680FD22D04}
O43 - CFD: 15/10/2011 - 18:31:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{79846BA9-983C-4300-9446-F4EB84FA0318}
O43 - CFD: 02/02/2011 - 06:49:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7A20960B-8693-40CF-B6C5-DF3890E3A949}
O43 - CFD: 22/05/2011 - 05:45:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7B0F359A-6BCF-4329-93F0-2CBB1D009E91}
O43 - CFD: 01/05/2011 - 05:51:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7B4AB673-730F-409D-8963-28EBF648A938}
O43 - CFD: 08/06/2011 - 06:16:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7B610AB6-A1BF-4A83-9702-2A4D90BF9C90}
O43 - CFD: 23/04/2011 - 05:53:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7BBF0CE4-EC24-4686-9863-BC2A45E5C3E1}
O43 - CFD: 22/03/2011 - 07:18:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7BF1B112-D1F1-4CF0-A3FB-1A322405690B}
O43 - CFD: 07/10/2011 - 06:19:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7CACCF5F-FADF-443B-A360-76EE674D0B22}
O43 - CFD: 11/08/2011 - 18:20:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7D86448A-116B-4EF5-8A1C-FBE98493185A}
O43 - CFD: 16/10/2011 - 06:32:00 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7E625F05-D2EF-4088-9B7C-711574D82A6F}
O43 - CFD: 03/05/2011 - 05:47:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7E704705-6A9C-4DBE-AD2A-EB06BFF3E07C}
O43 - CFD: 17/05/2011 - 05:57:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7ED2E446-7D35-4612-960A-691CF62755A1}
O43 - CFD: 14/07/2011 - 06:17:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7F141C58-EA49-4862-98E6-77F15044C0C3}
O43 - CFD: 24/07/2011 - 17:47:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7FB801B4-07D4-4DC0-AF32-324651054598}
O43 - CFD: 27/09/2011 - 07:51:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7FEE9FF6-4DF7-490D-A18F-44337CE6DF5E}
O43 - CFD: 17/01/2011 - 06:50:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{7FFBE9A9-CDFA-4973-9B7F-01CE8A169D01}
O43 - CFD: 10/01/2011 - 18:50:32 - [0] ----D- C:\Users\SURGIT\AppData\Local\{811E8170-9BBA-4088-B5AC-99258DD787B9}
O43 - CFD: 23/03/2011 - 19:19:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{815BE5A5-089F-4A27-9757-FC77F52069D5}
O43 - CFD: 23/09/2011 - 19:45:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{81782ED6-4826-42ED-84CA-0EF113F74B14}
O43 - CFD: 11/09/2011 - 17:47:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{81D53CB6-102A-4E63-A539-1AE9BEF77846}
O43 - CFD: 14/08/2011 - 18:26:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{81DD8705-3E0C-4B2A-A01B-B3C619819E1E}
O43 - CFD: 30/09/2011 - 06:05:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{82901E56-CF4A-41A7-AEAF-4AC3AF0D318D}
O43 - CFD: 05/09/2011 - 05:54:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{82A9D0A7-0DB9-4490-A710-C1299C34D847}
O43 - CFD: 26/09/2011 - 19:50:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{83274E99-BC91-40DC-A1C5-6C657725EA29}
O43 - CFD: 27/07/2011 - 18:07:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{83389C6C-0E39-430F-83E9-39EF43434919}
O43 - CFD: 16/05/2011 - 05:51:40 - [0] ----D- C:\Users\SURGIT\AppData\Local\{839E4947-70EC-4BF0-AFC1-0DA2F5466171}
O43 - CFD: 21/03/2011 - 07:12:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8409B03A-6B37-4720-B9D6-5A6D5275D71E}
O43 - CFD: 17/07/2011 - 06:29:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{84A974FC-5480-47CB-A80D-F6E6FB5C2D50}
O43 - CFD: 29/08/2011 - 18:02:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{84BDCD4C-0ADB-4DAF-B784-0EE7EDA7D06C}
O43 - CFD: 11/05/2011 - 06:18:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{84D8644E-3F14-4A40-BE43-3CA843EF29C1}
O43 - CFD: 10/08/2011 - 05:52:18 - [0] ----D- C:\Users\SURGIT\AppData\Local\{854252C0-C90E-42F0-AEC0-F8ADC33BA542}
O43 - CFD: 07/05/2011 - 06:23:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{854B798D-177E-4BF1-A64C-947670BBCF31}
O43 - CFD: 27/04/2011 - 18:04:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{85A8D302-9600-4B61-8803-E57CB9946658}
O43 - CFD: 23/12/2010 - 18:49:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{85C1820B-6D45-4451-B71E-52259CA150BA}
O43 - CFD: 23/07/2011 - 17:46:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{85DC3793-6CAB-47CD-A07F-DEAC6E19B279}
O43 - CFD: 30/09/2011 - 06:05:32 - [0] ----D- C:\Users\SURGIT\AppData\Local\{86BDC620-481A-4B89-913A-C8647F3DAC35}
O43 - CFD: 20/08/2011 - 05:48:44 - [0] ----D- C:\Users\SURGIT\AppData\Local\{86E4B4EB-6E0B-40D6-A7F6-787D56C3DB9E}
O43 - CFD: 25/04/2011 - 18:01:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{872DE3BC-DEF2-457E-8E8C-7E28888BDCB9}
O43 - CFD: 23/06/2011 - 05:51:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8733D996-BCE4-43F3-9348-8A1B8EE98442}
O43 - CFD: 16/03/2011 - 06:49:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{879A1561-E7DF-4A55-89A9-E9A148217A61}
O43 - CFD: 29/04/2011 - 05:45:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8847AF24-0EB9-4D6A-B142-1E7D0B589692}
O43 - CFD: 01/01/2011 - 07:23:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{884E5162-9797-43CE-BC5D-C950DEC10572}
O43 - CFD: 20/02/2011 - 00:34:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{88F42804-904A-41DE-9327-23F7D8FD281B}
O43 - CFD: 18/10/2011 - 06:35:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8974EB73-D497-4520-AB59-C0EDAA39A70A}
O43 - CFD: 10/08/2011 - 17:53:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8AB3208B-CDD0-4992-9B8C-5E631D2B4C0E}
O43 - CFD: 22/02/2011 - 18:55:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8AF51070-FE8F-47D6-BAE6-BD41226DECEE}
O43 - CFD: 27/12/2010 - 19:04:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8BD957D0-98C9-4644-8BAA-A42D421F3817}
O43 - CFD: 10/06/2011 - 06:19:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8C806AE8-471C-4594-B9EF-CA1DF9F80EB4}
O43 - CFD: 07/08/2011 - 19:14:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8D3EAA8C-EE10-4513-B506-642232839A3B}
O43 - CFD: 17/06/2011 - 06:00:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8DE8A33B-0CEA-441D-BC32-B8C2F75137E4}
O43 - CFD: 04/02/2011 - 07:20:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8DFF445F-8F70-45AD-B438-22C1ED7067CA}
O43 - CFD: 23/09/2011 - 19:45:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8E0BFF54-4AC8-4886-A990-4BC30AF9F08A}
O43 - CFD: 07/01/2011 - 19:21:50 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8ECAF99F-EF0F-46FA-B528-1581678DC4C5}
O43 - CFD: 13/06/2011 - 19:43:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8EE1424A-7EF4-438E-9F8F-256B73C7DAD6}
O43 - CFD: 08/08/2011 - 07:15:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8EE193A7-B56E-4725-A765-6A0BD058D7DA}
O43 - CFD: 21/02/2011 - 06:49:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8EF10626-8B57-42BF-A85F-A4A302FDADCF}
O43 - CFD: 05/05/2011 - 06:20:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8EFD9C2C-9493-4527-BF6B-A97DCC511701}
O43 - CFD: 16/03/2011 - 06:45:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8F1A8D21-0253-4C0C-A9AA-34DED91EE279}
O43 - CFD: 29/05/2011 - 18:30:58 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8F55861F-2C8F-4B0F-87F4-5ABBE0869A21}
O43 - CFD: 23/02/2011 - 19:18:38 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8F861DA3-CB7F-484B-8286-E1CA988D02FA}
O43 - CFD: 13/05/2011 - 06:02:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8FC07F24-4B7F-4BD5-AAC5-5AE671CE1619}
O43 - CFD: 28/08/2011 - 17:44:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{8FE50BBE-4271-4A5D-9900-993710DEBBE7}
O43 - CFD: 23/03/2011 - 07:19:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9029D5D3-B064-4312-BC0F-FDDD0520A9B4}
O43 - CFD: 31/07/2011 - 18:13:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9064066F-BA70-4BDE-B7E9-BF82F42F12FE}
O43 - CFD: 05/10/2011 - 05:56:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{90A25289-B15E-47A6-A809-032790E3E18F}
O43 - CFD: 24/08/2011 - 17:23:08 - [0] ----D- C:\Users\SURGIT\AppData\Local\{90BF1A0B-29AE-4CC2-9FFB-812D717BCCD3}
O43 - CFD: 21/06/2011 - 05:58:34 - [0] ----D- C:\Users\SURGIT\AppData\Local\{910A886F-C14D-4A2C-A99E-172D7BD21409}
O43 - CFD: 20/03/2011 - 06:49:22 - [0] ----D- C:\Users\SURGIT\AppData\Local\{91E53603-9CC5-4F3A-8D31-AC2734B7F324}
O43 - CFD: 25/02/2011 - 06:51:02 - [0] ----D- C:\Users\SURGIT\AppData\Local\{925E4521-41CA-4EB8-80A6-389E4EF4BFE2}
O43 - CFD: 11/04/2011 - 18:11:36 - [0] ----D- C:\Users\SURGIT\AppData\Local\{930CBA4F-84B8-442E-BB92-6CB5F53A493D}
O43 - CFD: 01/03/2011 - 19:06:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{93117363-4A7B-47A9-8349-C3C04BB6F6A8}
O43 - CFD: 14/10/2011 - 06:28:52 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9371BE17-9662-4303-81EE-C83816B52CAB}
O43 - CFD: 24/03/2011 - 07:24:06 - [0] ----D- C:\Users\SURGIT\AppData\Local\{93CC428A-C924-45A8-9D22-D9332CBD234C}
O43 - CFD: 01/07/2011 - 05:41:30 - [0] ----D- C:\Users\SURGIT\AppData\Local\{94085DB9-B79E-4027-9D64-D934FFEFFA55}
O43 - CFD: 14/02/2011 - 07:26:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9439B254-7962-4138-BEBA-0AE27E569BAB}
O43 - CFD: 03/09/2011 - 06:10:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{94486E1B-A767-4349-90E9-C561CD858817}
O43 - CFD: 11/02/2011 - 14:41:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{94B709A5-F88B-421B-AD4C-1C5E44E8339E}
O43 - CFD: 05/04/2011 - 18:32:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{94B8C6E4-659C-4772-AF98-9B061D9316DF}
O43 - CFD: 28/03/2011 - 18:00:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9504767C-D2E6-47AF-8882-6E30974A5755}
O43 - CFD: 27/12/2010 - 07:03:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{951A31DF-2DA3-4FE5-A2DC-44D3866678E5}
O43 - CFD: 19/07/2011 - 06:37:24 - [0] ----D- C:\Users\SURGIT\AppData\Local\{956B46C7-EE7C-40E9-8FF0-F67C6B76CFAD}
O43 - CFD: 27/08/2011 - 06:13:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{958B3A04-6C67-46AC-9A9B-2319AE75A96D}
O43 - CFD: 21/08/2011 - 05:50:12 - [0] ----D- C:\Users\SURGIT\AppData\Local\{958D5EBD-3A7D-4ABE-8A7D-4BB115D78543}
O43 - CFD: 21/03/2011 - 19:17:28 - [0] ----D- C:\Users\SURGIT\AppData\Local\{95FF3A5A-F851-4B0F-A3C5-F7563A279671}
O43 - CFD: 17/10/2011 - 06:33:32 - [0] ----D- C:\Users\SURGIT\AppData\Local\{96DD1B85-C9E6-4A46-AE38-F483882FE1E3}
O43 - CFD: 10/05/2011 - 06:02:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9729F7C0-80CB-465E-A37C-EECDE66F9FE2}
O43 - CFD: 19/09/2011 - 06:25:56 - [0] ----D- C:\Users\SURGIT\AppData\Local\{97543A51-2971-41EE-90E2-D70A9E73D78A}
O43 - CFD: 15/08/2011 - 06:28:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{97DB97B3-DE40-49E4-8470-56F166BE978B}
O43 - CFD: 15/06/2011 - 05:50:10 - [0] ----D- C:\Users\SURGIT\AppData\Local\{982E48DB-6344-495C-B32C-36EC887FBDDD}
O43 - CFD: 18/01/2011 - 18:52:42 - [0] ----D- C:\Users\SURGIT\AppData\Local\{98E10196-2A59-4663-8034-9D70FD665649}
O43 - CFD: 01/10/2011 - 06:07:04 - [0] ----D- C:\Users\SURGIT\AppData\Local\{99200879-AD29-491F-8131-49A3DF521860}
O43 - CFD: 29/03/2011 - 18:12:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{99219AC9-2748-4214-A7A7-93BC35B20608}
O43 - CFD: 18/12/2010 - 06:34:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9921B3D4-B189-44CD-83D7-FC8586DF5B7F}
O43 - CFD: 09/07/2011 - 18:02:46 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9A1B0B2D-7089-4941-8C9A-C33B3AF67CB2}
O43 - CFD: 30/03/2011 - 20:38:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9A21F05D-68C1-4A7E-889F-A450724BCF5B}
O43 - CFD: 02/03/2011 - 07:06:48 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9A37E66F-BF65-4A35-9BE6-FF009D289BFD}
O43 - CFD: 01/09/2011 - 06:06:16 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9ACE7C23-4428-403C-8E93-B78C51F17BA7}
O43 - CFD: 19/12/2010 - 07:53:14 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9AE43EF2-CBE5-4387-A59F-17F0B9CE00B5}
O43 - CFD: 17/08/2011 - 18:32:26 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9AFF8D46-9B02-4EA9-B0E4-26863A805063}
O43 - CFD: 12/03/2011 - 18:46:20 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9B23880A-4780-40C0-9A32-AE711AE76177}
O43 - CFD: 25/07/2011 - 17:48:54 - [0] ----D- C:\Users\SURGIT\AppData\Local\{9BD71321-14E4-4F7A-AD21-3CC0246D3040}
O43
0
Réponse 8 / 15
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
J'ai essayé de refRapport de ZHPDiag v1.28.2131 par Nicolas Coolman, Update du 18/10/2011
Run by SURGIT at 20/10/2011 08:01:13
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
State : Version à jour.


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
GCIE: Google Chrome
OPIE: Opera v11.51 (Defaut)
OPIE: Opera vv11.51 (Defaut)

---\\ Windows Product Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : RMV82
Windows License : OK
~ Windows Remaining Initializations Number : 5
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6004 MB (65% free)
System Restore: Activé (Enable)
System drive C: has 230 GB (65%) free of 351 GB

---\\ Logged in mode
~ Computer Name: SURGIT-PC
~ User Name: SURGIT
~ All Users Names: SURGIT, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\SURGIT\AppData\Roaming\
~ %Desktop% : C:\Users\SURGIT\Desktop\
~ %Favorites% : C:\Users\SURGIT\Favorites\
~ %LocalAppData% : C:\Users\SURGIT\AppData\Local\
~ %StartMenu% : C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 230 Go of 351 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 100 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 10 Go of 15 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.271E8FB1354AA205A214F280A6766E30] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/10/2011 - 06:17:57.) -- C:\Windows\system32\wininet.dll [1389056]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.06/03/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.06/03/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.06/03/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/06/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200] *1908
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128] *1828
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160] *1828
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.06/03/2011 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456] *1820
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2011 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400] *1884
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.06/03/2011 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368] *1908
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472] *1892
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224] *1860
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.17/06/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208] *1852
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.06/03/2011 - 10:23:20.) -- C:\Windows\system32\drivers\netBT.sys [261632] *1828
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776] *1908
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280] *1892
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.06/03/2011 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536] *1916
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\drivers\smb.sys [93184] #0,1796
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.06/03/2011 - 10:21:56.) -- C:\Windows\system32\drivers\tdx.sys [119296] *1820
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/236
~ Mes Videos (My Videos) : 1/4
~ Mes Favoris (My Favorites) : 4/170
~ Mes Documents (My Documents) : 4/140
~ Mon Bureau (My Desktop) : 1/30
~ Menu demarrer (Programs) : 7/41
~ Scan Hidden Files in 00mn 00s



---\\ Processus lancés
[MD5.0DB4212A8020067A08A7032DC662A7B5] - (.BitDefender S.R.L. - Pas de description.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe [64048] [PID.3124]
[MD5.67384147DD005E54D2C0A20408E28579] - (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe [1242448] [PID.3480]
[MD5.9ABF368A2DA03C6852C353D837D374AB] - (.eMPIA Technology, Inc. - BDA Monitor Application.) -- C:\Program Files (x86)\USB_video_device\Driver\Driver32\emmon.exe [81408] [PID.3680]
[MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840] [PID.3708]
[MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [275768] [PID.3732]
[MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.3916]
[MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.3932]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.4012]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.4068]
[MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.1820]
[MD5.437A4767F00EBC5E8643E77808ACC01F] - (.BitDefender S.R.L. - BitDefender IMGUI Aux.) -- C:\Program Files\BitDefender\BitDefender 2011\antispam32\bdimguiaux.exe [42400] [PID.4276]
[MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.4900]
[MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.4956]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.5020]
[MD5.B114DB354D13A21C1AC2B1807EE2F500] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- c:\program files (x86)\real\realplayer\update\realsched.exe [273544] [PID.5876]
[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [PID.4520]
[MD5.1BCF3DD5C66A2F9909BCB133987B6B69] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [696832] [PID.1176]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.]
[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952] [PID.]
[MD5.D955D5DE998DB2476BF0892BE3A96C26] - (.O2Micro International - O2 Flash Memory Service.) -- C:\Windows\system32\DRIVERS\o2flash.exe [65536] [PID.]
[MD5.3A2BDD76E7D2A5F40A7174793D1BA794] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [75136] [PID.]
~ Scan Processes Running in 00mn 01s



---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1)
B1 - OSP: search.ini [SURGIT] URL=http://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q=%s
~ Scan Opera Browser in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\SURGIT\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Oracle Corporation - Next Generation Java Plug-in 10.0.0 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/GENUINE] - (.Microsoft Corporation - Windows Activation Technologies Plugin for Mozilla.) -- C:\Windows\system32\Wat\npWatWeb.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.leprogres.fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: NCH EN Toolbar [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
R3 - URLSearchHook: NCH EN Toolbar [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugi
O2 - BHO: NCH EN [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Windows Live Messenger Companion Helper [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (.not file.)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) [64Bits] - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} Clé orpheline
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Bitdefender Toolbar [64Bits] - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} . (.BitDefender S.R.L. - BitDefender Antiphishing Toolbar.) -- C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe
O4 - HKLM\..\Run: [BDAgent] . (.BitDefender S.R.L. - BitDefender Agent.) -- C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKLM\..\Wow6432Node\Run: [ATICustomerCare] . (.Advanced Micro Devices, Inc. - ATI Customer Care.) -- C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe
O4 - HKLM\..\Wow6432Node\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [Vidéo Futur] . (.Glowria - Glowria Video Manager.) -- C:\Program Files (x86)\Vidéo Futur\Vidéo Futur.exe
O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- c:\program files (x86)\real\realplayer\update\realsched.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcSoft Connection Service] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2878523808-3310033709-2021528728-1001\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKUS\S-1-5-21-2878523808-3310033709-2021528728-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\East-Tec Eraser 2011.lnk . (.EAST Technologies.) -- C:\Program Files (x86)\East-Tec Eraser 2011\eteraser.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\flashplayer11_rc1_install_win_ax32_090611.exe - Raccourci.lnk . (.Adobe Systems, Inc..) -- C:\Users\SURGIT\Downloads\flashplayer11_rc1_install_win_ax32_090611.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\SURGIT\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Internet Explorer (2).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Maxi Puzzles.lnk . (...) -- C:\Program Files (x86)\Micro Application\Maxi Puzzles\jpuzzle.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Microsoft Silverlight.lnk . (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
O4 - Global Startup: C:\Users\SURGIT\Desktop\OLYMPUS Digital Camera Updater.lnk . (.OLYMPUS IMAGING CORP..) -- C:\Program Files (x86)\OLYMPUS\CameraUpdateTool\CameraUpdate.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\OLYMPUS Viewer 2.lnk . (.OLYMPUS IMAGING CORP..) -- C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 2\OLYMPUS Viewer 2.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\OpenOffice.org 3.3.lnk . (.OpenOffice.org.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\SIW.lnk . (.Topala Software Solutions.) -- C:\Program Files (x86)\SIW\siw.exe
O4 - Global Startup: C:\Users\SURGIT\Desktop\Vidéo Futur Video Manager.lnk . (.Glowria.) -- C:\Program Files (x86)\Vidéo Futur\Vidéo Futur.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit Reader 5.0.lnk . (...) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SURGIT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
~ Scan Global Startup in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{66B47B79-CC99-4EAB-87FF-7A4ADFB6A550}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: (bdfsfltr) - Clé orpheline
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: O2FLASH (O2FLASH) . (.O2Micro International - O2 Flash Memory Service.) - C:\Windows\system32\DRIVERS\o2flash.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
~ Scan Services in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D] [APT] [RealUpgradeLogonTaskS-1-5-21-2878523808-3310033709-2021528728-1001] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
[MD5.FD8DCAE8AAE888D8BAD0E6C2DAAAFB6D] [APT] [RealUpgradeScheduledTaskS-1-5-21-2878523808-3310033709-2021528728-1001] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
[MD5.00000000000000000000000000000000] [APT] [Start Registry Reviver] (...) -- C:\Program Files (x86)\Reviversoft\Registry Reviver\RegistryReviver.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{042F02D5-15C6-4139-9253-A84FCB25520A}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{196FDFEF-D688-4412-A49F-B7BCE2676F18}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.00000000000000000000000000000000] [APT] [{2E74FDCE-7C20-468C-82E7-BC62080CFE7F}] (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{31F20D86-C9CE-47D8-8C8E-121D93F048B1}] (...) -- C:\PROGRA~2\Steam\UNWISE.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{3A215C4A-B97E-4E67-82DA-3D10BF5215F4}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{71F57512-1412-41CE-859B-2F7F13977269}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{7EF89E08-C69A-474D-A69D-972C25A15824}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{8862360D-B878-49DA-8707-F54488F4A0A7}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.00000000000000000000000000000000] [APT] [{8AF56D60-BDEA-464D-A424-60F009388760}] (...) -- C:\Program Files (x86)\Microsoft Silverlight\4.0.51204.0\Silverlight.Configuration.exe (.not file.)
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{95A6677D-DFC6-41BB-B41C-5494823A9C67}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{AA5D5C37-970B-4FB7-B37C-2396424AF4BB}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\steam.exe
[MD5.5AA237EAF522154183AB8E95F2099827] [APT] [{CFE70205-8B44-43E5-977C-FC0F967A69F9}] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
[MD5.05D64D3F1883C03D09EFE15D68299FBA] [APT] [{D5EFB3AD-9444-45A7-8E06-5D0C312EB726}] (.Adobe Systems, Inc..) -- C:\Users\SURGIT\Downloads\flashplayer11_rc1_install_win_ax32_090611.exe
[MD5.67384147DD005E54D2C0A20408E28579] [APT] [{D9580165-7BC8-45AF-82F9-C5FC41856ED3}] (.Valve Corporation.) -- C:\Program Files (x86)\Steam\Steam.exe
~ Scan Scheduled Task in 00mn 06s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (Bdfndisf) . (.BitDefender - BitDefender Firewall NDIS6 Filter Driver.) - c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
O41 - Driver: (bdfwfpf) . (.BitDefender - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys
O41 - Driver: (begwjdga) . (. - .) - C:\Windows\system32\drivers\begwjdga.sys (.not file.)
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (fjgjvucj) . (. - .) - C:\Windows\system32\drivers\fjgjvucj.sys (.not file.)
O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\Windows\system32\DRIVERS\MpFilter.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {54A0FF28-05C4-81E3-3CC1-13D0C2519EFF}
O42 - Logiciel: ATI Catalyst Registration - (.ATI Technologies Inc..) [HKLM] -- {11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}
O42 - Logiciel: ATI Problem Report Wizard - (.ATI Technologies.) [HKLM] -- {A9C6CA47-D937-D61D-4BD3-7CFAB7A5BA56}
O42 - Logiciel: ATI Stream SDK v2 Developer - (.ATI Technologies Inc..) [HKLM] -- {22441735-5983-AD2A-5CC5-FA2CCD7EF732}
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Flash Player 11 ActiveX 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader X (10.1.1) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: ArcSoft ShowBiz DVD 2 - (.ArcSoft.) [HKLM] -- {ED3DE33F-B1C5-47BE-97B5-159F8C344092}
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
O42 - Logiciel: BitDefender Internet Security 2011 - (.BitDefender.) [HKLM] -- BitDefender
O42 - Logiciel: BitDefender Internet Security 2011 - (.BitDefender.) [HKLM] -- {340A2AD6-0679-46DA-9180-DABBD5B36FD1}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Decoder Pak for Windows XP - (.roddy2000@hotbox.ru.) [HKLM] -- {92C5DB3D-9D6F-4324-BB11-57825F4C2635}
O42 - Logiciel: Dell Driver Download Manager - 1 - (.Dell Inc..) [HKCU] -- f031ef6ac137efc5
O42 - Logiciel: Désinstallation du Vidéo Futur Video Manager - (.Pas de propriétaire.) [HKLM] -- Vidéo Futur
O42 - Logiciel: East-Tec Eraser 2011 Version 9.9 - (.EAST Technologies.) [HKLM] -- East-Tec Eraser 2011_is1
O42 - Logiciel: Foxit Reader 5.0 - (.Foxit Corporation.) [HKLM] -- Foxit Reader_is1
O42 - Logiciel: GIMP 2.6.11 - (.The GIMP Team.) [HKLM] -- WinGimp-2.0_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities
O42 - Logiciel: HP Deskjet F2400 All-In-One Driver Software 13.0 Rel .6 - (.HP.) [HKLM] -- {CDBF8C2D-04B0-4F9B-9AE1-7422F7F0EC94}
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM] -- HP Print Projects
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM] -- {58A6AA51-DA03-4C75-ADE9-7C0D67D77066}
O42 - Logiciel: Internet TV pour Windows Media Center - (.Microsoft Corporation.) [HKLM] -- {9D318C86-AF4C-409F-A6AC-7183FF4CF424}
O42 - Logiciel: Java(TM) 6 Update 27 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216027FF}
O42 - Logiciel: Java(TM) 7 (64-bit) - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86417000FF}
O42 - Logiciel: Java(TM) SE Development Kit 7 (64-bit) - (.Oracle.) [HKLM] -- {64A3A4F4-B792-11D6-A78A-00B0D0170000}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Maxi Puzzles - (.Pas de propriétaire.) [HKLM] -- Maxi Puzzles_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -- {05BFB060-4F22-4710-B0A2-2801A1B606C5}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}
O42 - Logiciel: Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) - (.Microsoft Corporation.) [HKLM] -- {41785C66-90F2-40CE-8CB5-1C94BFC97280}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {42738DB0-FC3E-4672-A99B-9372F5696E30}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {aac9fcc4-dd9e-4add-901c-b5496a07ab2e}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {EE936C7A-EA40-31D5-9B65-8E3E089C3828}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {8338783A-0968-3B85-AFC7-BAAE0A63DC50}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: NAVIGON Fresh 3.3.2 - (.NAVIGON.) [HKLM] -- NAVIGON Fresh
O42 - Logiciel: NCH EN Toolbar - (.NCH EN.) [HKLM] -- NCH_EN Toolbar
O42 - Logiciel: OLYMPUS Digital Camera Updater - (.OLYMPUS IMAGING CORP..) [HKLM] -- {7CC978FD-AE31-419D-A7AB-2A137689AE1F}
O42 - Logiciel: OLYMPUS Viewer 2 - (.OLYMPUS IMAGING CORP..) [HKLM] -- {5E761524-063C-46E4-822A-0166102F3DA3}
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM] -- {7E0610A2-E336-40B3-B685-C4905E97EC9A}
O42 - Logiciel: Opera 11.51 - (.Opera Software ASA.) [HKLM] -- Opera 11.51.1087
O42 - Logiciel: Package de pilotes Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) - (.OLYMPUS IMAGING CORP..) [HKLM] -- 2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB
O42 - Logiciel: PunkBuster Services - (.Pas de propriétaire.) [HKLM] -- PunkBusterSvc
O42 - Logiciel: RealNetworks - Microsoft Visual C++ 2008 Runtime - (.RealNetworks, Inc.) [HKLM] -- {7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: Red Orchestra - (.Mac.) [HKLM] -- {69997863-7239-4E5C-833C-EAC2F0116EB3}
O42 - Logiciel: Red Orchestra 2: Heroes of Stalingrad - (.Tripwire.) [HKLM] -- Steam App 35450
O42 - Logiciel: Red Orchestra: Ostfront 41-45 - (.Tripwire Interactive.) [HKLM] -- Steam App 1200
O42 - Logiciel: SIW version 2010.07.14 - (.Topala Software Solutions.) [HKLM] -- {AB67580-257C-45FF-B8F4-C8C30682091A}_is1
O42 - Logiciel: Sauvez Vos K7 Vidéos - (.Micro Application.) [HKLM] -- {9516572F-3CA4-4DA6-B1C7-E47FF8016D7E}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572078
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: The Lord of the Rings FREE Trial - (.ATI Technologies Inc..) [HKLM] -- {8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}
O42 - Logiciel: USB TV Device Driver - (.Nom de votre société.) [HKLM] -- {3717C4F2-7412-4793-9BB8-D73D2817B3D6}
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {CEA21F20-DBF4-464C-8B81-28B8508AFDDD}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {E01819BD-709F-43A1-9600-6F5E4C584C37}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {180C8888-50F1-426B-A9DC-AB83A1989C65}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {E5B21F11-6933-4E0B-A25C-7963E3C07D11}
O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM] -- {78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {DF6D988A-EEA0-4277-AAB8-158E086E439B}
O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}
O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {E02A6548-6FDE-40E2-8ED9-119D7D7E641F}
O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {5E2CD4FB-4538-4831-8176-05D653C3E6D4}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: livebox - (.Pas de propriétaire.) [HKLM] -- {17342E3B-0818-4A6F-BFF8-99476605ADD6}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\NCH_EN]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\ArcSoft]
[HKCU\Software\Avanquest]
[HKCU\Software\BitDefender]
[HKCU\Software\BrowserChoice]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\EAST Technologies]
[HKCU\Software\Foxit Software]
[HKCU\Software\Ghostery]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\LowRegistry]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Netscape]
[HKCU\Software\OLYMPUS]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Opera Software]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Reviversoft]
[HKCU\Software\Softonic]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\Valve]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\honestech]
[HKCU\Software\videofutur]
[HKLM\Software\AMD]
[HKLM\Software\ASDMA]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVC3]
[HKLM\Software\Adobe]
[HKLM\Software\ArcSoft]
[HKLM\Software\Avanquest]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\EAST_Technologies]
[HKLM\Software\Even Balance]
[HKLM\Software\FRANCE TELECOM]
[HKLM\Software\Foxit Software]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstallationKit]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Mac]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\Micro Application]
[HKLM\Software\MidasHeurScanner]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NAVIGON]
[HKLM\Software\NCH Software]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\NCH_EN]
[HKLM\Software\Netscape]
[HKLM\Software\Nom de votre société]
[HKLM\Software\ODBC]
[HKLM\Software\OLYMPUS]
[HKLM\Software\Opera Software]
[HKLM\Software\Piriform]
[HKLM\Software\PoINT]
[HKLM\Software\Policies]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Reviversoft]
[HKLM\Software\Sagem]
[HKLM\Software\Sonic]
[HKLM\Software\TrendMicro]
[HKLM\Software\USB2800]
[HKLM\Software\Valve]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\Yahoo]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/12/2010 - 07:37:06 - [23421515] ----D- C:\Program Files\ATI
O43 - CFD: 19/12/2010 - 07:37:12 - [0] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 19/12/2010 - 18:43:00 - [213648959] ----D- C:\Program Files\BitDefender
O43 - CFD: 09/09/2011 - 07:07:48 - [8458144] ----D- C:\Program Files\CCleaner
O43 - CFD: 19/12/2010 - 18:43:08 - [1565767597] ----D- C:\Program Files\Common Files
O43 - CFD: 18/06/2011 - 17:16:32 - [1047632] ----D- C:\Program Files\DIFX
O43 - CFD: 06/03/2011 - 12:17:50 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 15/12/2010 - 12:47:34 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 06/10/2011 - 05:44:00 - [0] ----D- C:\Program Files\Google
O43 - CFD: 17/12/2010 - 18:30:50 - [4499093] ----D- C:\Program Files\HP
O43 - CFD: 13/10/2011 - 07:01:12 - [6201856] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 27/09/2011 - 07:12:16 - [317409820] ----D- C:\Program Files\Java
O43 - CFD: 14/07/2009 - 09:45:56 - [149237810] ----D- C:\Progr
0
Réponse 9 / 15
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
Bon======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 06:34:58 le 26/10/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
SURGIT@SURGIT-PC (Dell Inc. Studio 1749)

============== ACTION(S) ==============



(!) -- Fichiers temporaires supprimés.


Clé supprimée: HKCU\Software\AppDataLow\Software\Toolbar


============== SCAN ADDITIONNEL ==============

**** Google Chrome Version [14.0.835.202] ****

Extension\jfmjfhklogoienhpfnppmbcbjfjnkonk (C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx) (?)

-- C:\Users\SURGIT\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Bing" (Activé: true) (hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MIAWB1)
Plugin - Remoting Viewer (Activé: true) (internal-remoting-viewer) (x)
Plugin - Native Client (Activé: true) (C:\Users\SURGIT\AppData\Local\Google\Chrome\Application\14.0.835.202\ppGoogleNaClPluginChrome.dll)
Plugin - Glowria Firefox Gateway for Video Manager (Activé: true) (C:\Program Files (x86)\Common Files\Glowria\npFireVMGate.dll)
Plugin - Windows Live\u0099 Photo Gallery (Activé: true) (C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - Windows Activation Technologies (Activé: true) (C:\Windows\system32\Wat\npWatWeb.dll)
Plugin - RealJukebox NS Plugin (Activé: true) (c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll)
Plugin - "Java" (Activé: true)
Plugin - "Silverlight" (Activé: true)
Plugin - "Remoting Viewer" (Activé: true)
Plugin - "Native Client" (Activé: true)
Plugin - "Glowria Firefox Gateway for Video Manager" (Activé: true)
Plugin - "Foxit Reader Plugin for Mozilla" (Activé: true)
Plugin - "Windows Live\u0099 Photo Gallery" (Activé: true)
Plugin - "Windows Activation Technologies" (Activé: true)
Plugin - "RealJukebox NS Plugin" (Activé: true)

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{37483b40-c254-4a72-bda4-22ee90182c1e} - "NCH EN Toolbar" (C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll)
HKLM_URLSearchHooks|{37483b40-c254-4a72-bda4-22ee90182c1e} - "NCH EN Toolbar" (C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll)
HKLM_Toolbar|{381FFDE8-2394-4F90-B10D-FC6124A40F8C} (C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll)
HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} ("C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll") (x)
HKLM_Toolbar|{37483b40-c254-4a72-bda4-22ee90182c1e} (C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{73A9791E-2B1B-4D12-8980-CFD754627ADD} - C:\Program Files (x86)\NCH_EN\NCH_ENToolbarHelper.exe (?)
HKLM_ElevationPolicy\{80B84A0A-EDA4-47FD-8BE1-6B49F4197BE6} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\about.exe\about.ex (x)
HKLM_ElevationPolicy\{86CC6069-B97E-42FC-8796-DE03B3F0A150} - C:\Users\SURGIT\AppData\Local\Conduit\CT2801948\NCH_ENAutoUpdateHelper.exe (x)
HKLM_ElevationPolicy\{aa851425-0109-43f3-9ed2-7b7090125861} - C:\Program Files (x86)\Microsoft\BingBar\BingBar.exe (Microsoft Corporation.)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{EFC0651C-B6D7-49CD-A6E0-B1CE9AB5FE46} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\ytbb.exe (x)
BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?)
BHO\{37483b40-c254-4a72-bda4-22ee90182c1e} - "NCH EN Toolbar" (C:\Program Files (x86)\NCH_EN\prxtbNCH_.dll)
BHO\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "Bing Bar Helper" ("C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll") (x)
BHO\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} (?)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 13 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 26/10/2011 06:35:11 (5058 Octet(s))

Fin à: 06:36:00, 26/10/2011

============== E.O.F ==============
jour, voici le rapport de AD-remover
0
Réponse 10 / 15
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
Bonjour***** [Processus] *****


***** [Services] *****


***** [Fichiers / Dossiers] *****


***** [Registre] *****


***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Google Chrome v14.0.835.202

Fichier : C:\Users\SURGIT\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

-\\ Opera v11.51.1087.0

Fichier : C:\Users\SURGIT\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[S1].txt - [1009 octets] - [27/10/2011 06:39:28]

*************************

Dossier Temporaire : 2 dossier(s)et 24 fichier(s) supprimés

########## EOF - C:\AdwCleaner[S1].txt - [1229 octets] ##########
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Version de la base de données: 8027

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

27/10/2011 06:44:00
mbam-log-2011-10-27 (06-44-00).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 177466
Temps écoulé: 50 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
Réponse 11 / 15
twister2 Messages postés 218 Date d'inscription   Statut Membre Dernière intervention   43
 
re blocage

Ca semble bon
tu a attrapé cela en ne décochant pas une case lors du téléchargement.

ok onva nettoyer,
Si tout est bien rentré dans l'ordre, Télécharge DelFix sur ton bureau.
https://www.commentcamarche.net/download/s/delfix
*Option Suppression
*Lance-le et appuie sur le bouton [Suppression]
*Copie/colle le contenu du rapport.
Note : Le rapport est sauvegardé sous C:\DelFixSuppr.txt

Relance DelFix et appuie sur [Désinstaller] afin de supprimer toute trace de son utilisation.

et tu Passe en résolu. @+
0
Réponse 12 / 15
blocage Messages postés 183 Date d'inscription   Statut Membre Dernière intervention   15
 
# DelFix v8.1 - Rapport créé le 28/10/2011 à 06:37
# Mis à jour le 20/06/11 à 19h par Xplode
# Système d'exploitation : Windows 7 Home Premium (64 bits) [version 6.1.7601]
# Nom d'utilisateur : SURGIT - SURGIT-PC (Administrateur)
# Exécuté depuis : C:\Users\SURGIT\Downloads\DelFix-8.1.exe
# Option [Suppression]


~~~~~~ Dossier(s) ~~~~~~

Supprimé : C:\Program Files (x86)\Ad-Remover
Supprimé : C:\Program Files (x86)\trend micro\Hijackthis
Supprimé : C:\Program Files (x86)\ZHPDiag
Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hijackthis
Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP

~~~~~~ Fichier(s) ~~~~~~

Supprimé : C:\Ad-Report-CLEAN[1].txt
Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\Users\SURGIT\Desktop\Ad-Remover.lnk
Supprimé : C:\Users\SURGIT\Desktop\HijackThis.lnk
Supprimé : C:\Users\SURGIT\Desktop\ZHPDiag.txt
Supprimé : C:\Users\Public\Desktop\MBRCheck.lnk
Supprimé : C:\Users\Public\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk
Supprimé : C:\Users\SURGIT\Downloads\AD-R (1).exe
Supprimé : C:\Users\SURGIT\Downloads\AD-R.exe
Supprimé : C:\Users\SURGIT\Downloads\HJTInstall.exe
Supprimé : C:\Users\SURGIT\Downloads\ZHPDiag2.exe

~~~~~~ Registre ~~~~~~

Clé Supprimée : HKCU\SOFTWARE\Ad-Remover
Clé Supprimée : HKLM\Software\TrendMicro\Hijackthis
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe

~~~~~~ Autre ~~~~~~

-> BitDefender Online Scanner ... Désinstallé avec succès
-> Prefetch vidé

########## EOF - "C:\DelFixSuppr.txt" - [1843 octets] ##########Bonjour, voilà c'est fait. Tout est normal. Merci encore d'avoir été si patient.
0
Réponse 13 / 15
twister2 Messages postés 218 Date d'inscription   Statut Membre Dernière intervention   43
 
bonsoir blocage

mais tout le plaisir est pour moi,

et tout le boulot est pour toi;) et tu fait attention lord de ton prochain telechargement.

mes salutations. t2
0
Réponse 14 / 15
twister2 Messages postés 218 Date d'inscription   Statut Membre Dernière intervention   43
 
re blocage


Ok Utilise cet outil de désinfection spécifique aux logiciels publicitaires :
* Télécharge AD-Remover (de C_XX) sur ton Bureau.
http://www.teamxscript.org/adremoverTelechargement.html
! Déconnecte toi et ferme toutes les applications en cours !
* Double-clique sur l'icône AD-Remover
* Au menu principal, clique sur "Nettoyer"
* Confirme le lancement de l'analyse et laisse l'outil travailler
* colle le rapport qui apparait à la fin (il est aussi sauvegardé sous C:\Ad-report.log )
@+
-1
Réponse 15 / 15
twister2 Messages postés 218 Date d'inscription   Statut Membre Dernière intervention   43
 
re
1) telecharge malwarebytes anti-malware

https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
* A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée
* Lance MBAM et laisse les Mises à jour se télécharger (sinon fais les manuellement au lancement du programme)
* Puis va dans l'onglet "Recherche", coche "Exécuter un examen rapide" puis "Rechercher"
* A la fin de l'analyse, clique sur Afficher les résultats
* Coche tous les éléments détectés puis clique sur Supprimer la sélection
* Enregistre le rapport
* S'il t'est demandé de redémarrer l'ordinateur, clique sur Yes
* Poste dans ta prochaine réponse le rapport apparaissant après la suppression.

2)

.Télécharge AdwCleaner de Xplode
http://general-changelog-team.fr/telechargements/logiciels/viewdownload/75-outils-de-xplode/28-adwcleaner
*Lance l'outil en cliquant sur adwcleaner.exe.
*Choisis Suppression
*Poste le rapport qui s'ouvre en fin de nettoyage.
Il sera enregistré sous C:\AdwCleaner[S1].txt
Si tu as choisis Recherche le rapport sera C:\AdwCleaner[R1].txt
Chaque nouvelle utilisation de l'outil implémentera la numérotation des rapports [S2] [S3] [R2] [R3], etc.
R= Recherche, S=Suppression.

@+
-1