Ajout-Supp de programmes liste incomplète

Fermé
Trefle16 Messages postés 1 Date d'inscription samedi 7 avril 2012 Statut Membre Dernière intervention 7 avril 2012 - 7 avril 2012 à 09:22
Bonjour,

Dans le panneau de configuration, sous windows 7, je n'ai plus la liste normale des programmes au complet. Il n'en apparaît que cinq sur une trentaine. L'ordi était protégé par KIS avec de mises à jour quotidiennes.

J'ai essayé une restauration, le dernier point que je retrouve date d'il y a 10 jours, cela n'a rien changé.

Merci de votre aide


Rapport de ZHPDiag v1.28.34 par Nicolas Coolman, Update du 06/03/2012
Run by Bernard at 4/7/2012 8:33:05 AM
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State :


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 30 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8124.5 MB (75% free)
System Restore: Activé (Enable)
System drive C: has 381 GB (84%) free of 452 GB

---\\ Logged in mode
~ Computer Name: Bernard-Port
~ User Name: Bernard
~ All Users Names: HomeGroupUser$, Bernard, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O80,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Bernard\AppData\Roaming\
~ %Desktop% : C:\Users\Bernard\Desktop\
~ %Favorites% : C:\Users\Bernard\Favorites\
~ %LocalAppData% : C:\Users\Bernard\AppData\Local\
~ %StartMenu% : C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 381 Go of 452 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 463 Go of 466 Go)
E:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn AMs



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.2/25/2011 - 7:19:30 AM.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) (.7/14/2009 - 2:39:31 AM.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.7/14/2009 - 2:39:52 AM.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.B1AC85B6ADC005CF3F9EB4E28DFDCCE6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.12/14/2011 - 8:04:30 AM.) -- C:\Windows\system32\wininet.dll [1390080]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/20/2010 - 2:25:30 PM.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.11/20/2010 - 2:27:26 PM.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows multi-utilisateurs.) (.11/20/2010 - 2:07:20 PM.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.12/28/2011 - 4:59:24 AM.) -- C:\Windows\system32\drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.7/14/2009 - 2:52:21 AM.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.7/14/2009 - 12:19:47 AM.) -- C:\Windows\system32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/20/2010 - 10:19:21 AM.) -- C:\Windows\system32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.11/20/2010 - 10:26:32 AM.) -- C:\Windows\system32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/20/2010 - 11:43:43 AM.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.7/14/2009 - 12:19:57 AM.) -- C:\Windows\system32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.7/14/2009 - 1:10:03 AM.) -- C:\Windows\system32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.4/27/2011 - 3:40:40 AM.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.11/20/2010 - 10:23:20 AM.) -- C:\Windows\system32\drivers\netBT.sys [261632]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.3/11/2011 - 7:41:34 AM.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.7/14/2009 - 1:00:41 AM.) -- C:\Windows\system32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.11/20/2010 - 11:52:35 AM.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.7/14/2009 - 1:09:09 AM.) -- C:\Windows\system32\drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.11/20/2010 - 10:21:56 AM.) -- C:\Windows\system32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.11/20/2010 - 2:34:02 PM.) -- C:\Windows\system32\drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn AMs



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Favoris (My Favorites) : Non accessible (Not found)
~ Mes Documents (My Documents) : 5/192
~ Mon Bureau (My Desktop) : 21/13805
~ Menu demarrer (Programs) : 7/23
~ Scan Hidden Files in 13mn AMs



---\\ Processus lancés
[MD5.0D6972A795995F07B6D78CA7724744FB] - (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552] [PID.2328]
[MD5.2EDCC14EE14E8D4326B63213E1CF6CA0] - (...) -- C:\Program Files (x86)\wahrig.digital\WAHRIG.exe [2381824] [PID.3160]
[MD5.0ADF079D36B2C25E6E9BECE1BD937ACE] - (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920] [PID.3492]
[MD5.94F80155B91B8DF7A0EAD527C853D377] - (.NewTech Infosystems, Inc. - Acer Backup Manager.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984] [PID.3572]
[MD5.506FCC5EEE85B165498513022EF26E65] - (.CyberLink Corp. - Arcade Movie Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [124136] [PID.3692]
[MD5.B4A688670ACAE13139708DF93AA0D4E9] - (.Swisscom - Swisscom Quick Help.) -- C:\Program Files (x86)\Swisscom\Quick Help\SwisscomQuickHelp.exe [11342208] [PID.3776]
[MD5.4D83DC461F8F4370274CF6E9AC9A34F4] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3784]
[MD5.98A078F838A70F84E1BD490D7C7675F4] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.3888]
[MD5.F255E48EA981E943A14CF16269F3F3AF] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584] [PID.3928]
[MD5.637F2BDC0E53704D121DDD27A1F62090] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924600] [PID.3204]
[MD5.1AA987A15080E19E83F0872F8FC0FFC2] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16824] [PID.3468]
[MD5.E897110EE5E67FABB83B154DF9C68D6A] - (...) -- C:\Users\Bernard\Downloads\ZHPDiag_silent.exe [794216] [PID.6140]
[MD5.46AE705AC463F50AC714C8084A09A2A3] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [2211328] [PID.4280]
[MD5.62B7936F9036DD6ED36E6A7EFA805DC0] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [63928] [PID.]
[MD5.9CF46FDF163E06B83D03FF929EF2296C] - (.Dritek System Inc. - Dritek WMI Service.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe [321104] [PID.]
[MD5.0191DEE9B9EB7902AF2CF4F67301095D] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [23584] [PID.]
[MD5.9A308FCDCCA98A15B6F62D36A272160E] - (.NewTech Infosystems, Inc. - Backup Manager Module.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [255744] [PID.]
[MD5.B8D903B2894FF9AFBD99CA51C35590D7] - (.NTI, Inc. - NTI Backup Now 5 Scheduler Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640] [PID.]
[MD5.F12A68ED55053940CADD59CA5E3468DD] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904] [PID.]
[MD5.F9EC9ACD504D823D9B9CA98A4F8D3CA2] - (.Acer Group - Updater Service.) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe [243232] [PID.]
[MD5.23D990150D56B670A62B21B9ABDD45EE] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.]
[MD5.CBDEE152D73200EE49031A26310B9D3E] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2533400] [PID.]
[MD5.C5A75EB48E2344ABDC162BDA79E16841] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [130384] [PID.]
~ Scan Processes Running in 00mn AMs



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M0 - MFSP: prefs.js [Bernard - mw060b18.default] https://twitter.com/romandie
M2 - MFEP: prefs.js [Bernard - mw060b18.default\greenwebplayer@greentube.com] [] GreenWebPlayer v (.Greentube.)
M2 - MFEP: prefs.js [Bernard - mw060b18.default\{6A6114A5-EEF5-45F4-BCD1-B00A7B33E04B}] [] Swisscom Quick Help v0.7 (.Swisscom.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.2.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
~ Scan Firefox Browser in 00mn AMs



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ch/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=acer.msn.com&ocid=AARDHP&pc=MAAR
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=acer.msn.com&ocid=AARDHP&pc=MAAR
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer.msn.com&ocid=AARDHP&pc=MAAR
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ Scan IE Browser in 00mn AMs



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn AMs



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn AMs



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn AMs
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn AMs



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [AmIcoSinglun64] . (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [mwlDaemon] . (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 \s mqrt.dll
O4 - HKCU\..\Run: [wahrig.digital] . (...) -- C:\Program Files (x86)\wahrig.digital\WAHRIG.exe
O4 - HKLM\..\Wow6432Node\Run: [SuiteTray] . (.Egis Technology Inc. - SuiteTray.) -- C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
O4 - HKLM\..\Wow6432Node\Run: [EgisUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [EgisTecPMMUpdate] . (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [Norton Online Backup] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Wow6432Node\Run: [BackupManagerTray] . (.NewTech Infosystems, Inc. - Acer Backup Manager.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Wow6432Node\Run: [MDS_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [ArcadeMovieService] . (.CyberLink Corp. - Arcade Movie Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
O4 - HKLM\..\Wow6432Node\Run: [Swisscom Quick Help] . (.Swisscom - Swisscom Quick Help.) -- C:\Program Files (x86)\Swisscom\Quick Help\SwisscomQuickHelp.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-2504770583-4065421660-1030817143-1000\..\Run: [wahrig.digital] . (...) -- C:\Program Files (x86)\wahrig.digital\WAHRIG.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn AMs



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Bernard\Desktop\MBRCheck.lnk . (...) -- C:\Program Files (x86)\ZHPDiag\mbrcheck.exe
O4 - Global Startup: C:\Users\Bernard\Desktop\Son - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Bernard\Desktop\Vistumbler.lnk . (...) -- C:\Program Files (x86)\Vistumbler\Vistumbler.exe
O4 - Global Startup: C:\Users\Bernard\Desktop\ZHPDiag.lnk . (...) -- C:\Program Files (x86)\ZHPDiag\ZHPDiags.exe
O4 - Global Startup: C:\Users\Bernard\Desktop\ZHPFix.lnk . (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix.exe
O4 - Global Startup: C:\Users\Bernard\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Bernard\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Outlook.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
O4 - Global Startup: C:\Users\Bernard\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
~ Scan Global Startup in 00mn AMs



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn AMs



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Envoyer à OneNote - (.not file.) - C:\Program Files\MICROS~3\Office14\ONBttnIE.dll
O8 - Extra context menu item: Ajouter à l'Anti-bannière - (.not file.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - (.not file.) - C:\Program Files\MICROS~3\Office14\EXCEL.exe
~ Scan IE Menu Contextuel in 00mn AMs



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBttnIE.dll
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBTTN~1.dll
~ Scan IE Extra Buttons in 00mn AMs



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\System32\NapiNSP.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\System32\mswsock.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll
~ Scan Winsock in 00mn AMs



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{B74131B7-CC21-43AA-BF01-1E9CDFF043CA}: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{E77964F0-289D-4C1C-A250-5D0B67FAD4F3}: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B74131B7-CC21-43AA-BF01-1E9CDFF043CA}: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{E77964F0-289D-4C1C-A250-5D0B67FAD4F3}: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{B74131B7-CC21-43AA-BF01-1E9CDFF043CA}: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{E77964F0-289D-4C1C-A250-5D0B67FAD4F3}: DhcpNameServer = 10.0.0.1
~ Scan Domain in 00mn AMs



---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn AMs



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn AMs



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: Acer ePower Service (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: GREGService (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Norton Online Backup (NOBU) . (.Symantec Corporation - Norton Online Backup Service.) - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: NTI IScheduleSvc (NTI IScheduleSvc) . (.NewTech Infosystems, Inc. - Backup Manager Module.) - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (.NTI, Inc. - NTI Backup Now 5 Scheduler Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Intel(R) Management & Security Applicati (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Power Control [2010/11/23 19:08:26] ({6E090BD5-4EF5-4bf0-A968-74049E88E935}) . (.CyberLink Corp. - Pas de description.) - C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\000.fcl
~ Scan Services in 00mn AMs



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn AMs



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn AMs



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [{7118A595-474C-4B57-85E4-9E82685A201D}] (...) -- C:\Program Files (x86)\Acer GameZone\Dream Day First Home\Uninstall.exe (.not file.)
~ Scan Scheduled Task in 04mn AMs



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\system32\wmp.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn AMs



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Filter Driver.) - C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn AMs



---\\ Logiciels installés (O42)
O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM] -- {B36047D4-E932-C4B2-0DF2-94C8577468A9}
O42 - Logiciel: Adobe Flash Player 11 Plugin 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor - (.Intel.) [HKLM] -- {39F4C6F9-618A-4E5B-8FB2-6BD661174E32}
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 2050 J510 series - (.Hewlett-Packard Co..) [HKLM] -- {B39B729F-339F-4CE9-860D-19796D9575D8}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Office Office 64-bit Components 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-0000-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-002A-040C-1000-0000000FF1CE}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572078
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2633870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2656351
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2600217) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\BVRP Software]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\Dritek]
[HKCU\Software\Expert System]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IZSoftware]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LogiShrd]
[HKCU\Software\Macromedia]
[HKCU\Software\Motive]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\PASS Engineering]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\SDL International]
[HKCU\Software\SDL]
[HKCU\Software\Swisscom]
[HKCU\Software\Synaptics]
[HKCU\Software\Trados]
[HKCU\Software\Trolltech]
[HKCU\Software\VS Revo Group]
[HKCU\Software\WAHRIG.digital]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\mquadr.at]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Acer Incorporated]
[HKLM\Software\Acer]
[HKLM\Software\Adobe]
[HKLM\Software\Atheros Communications Inc.]
[HKLM\Software\Borland]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\Dritek]
[HKLM\Software\EgisTec IPS]
[HKLM\Software\EgisTec Shredder]
[HKLM\Software\EgisTec]
[HKLM\Software\FLEXlm License Manager]
[HKLM\Software\Google]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JOANNEUM RESEARCH]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Logishrd]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfeeInstaller]
[HKLM\Software\MicroQuill]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NewTech Infosystems]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\Oberon Media]
[HKLM\Software\OemSetup]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SDL International]
[HKLM\Software\SDL Passolo GmbH]
[HKLM\Software\SDL]
[HKLM\Software\SRS Labs]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Swisscom]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\TRADOS]
[HKLM\Software\Waves Audio]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\mcafeeupdater]
[HKLM\Software\mozilla.org]
[HKLM\Software\mquadr.at]
[HKLM\Software\wahrig.digital]
~ Scan Softwares in 00mn AMs



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 11/24/2010 - 5:04:40 AM - [23.539] ----D- C:\Program Files\Acer
O43 - CFD: 11/24/2010 - 4:47:46 AM - [22.029] ----D- C:\Program Files\ATI
O43 - CFD: 12/19/2010 - 11:06:42 PM - [138.611] ----D- C:\Program Files\Common Files
O43 - CFD: 6/28/2011 - 11:17:16 AM - [86.076] ----D- C:\Program Files\DVD Maker
O43 - CFD: 12/19/2010 - 8:47:14 PM - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 4/28/2011 - 6:29:26 PM - [39.389] ----D- C:\Program Files\HP
O43 - CFD: 11/24/2010 - 4:55:54 AM - [0.358] ----D- C:\Program Files\Intel
O43 - CFD: 2/16/2012 - 5:12:42 PM - [5.914] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 4/6/2012 - 11:10:40 PM - [142.032] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 12/19/2010 - 11:24:06 PM - [6.423] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 7/14/2009 - 7:32:40 AM - [0.025] ----D- C:\Program Files\MSBuild
O43 - CFD: 9/8/2010 - 9:48:34 AM - [1.741] ----D- C:\Program Files\Preload
O43 - CFD: 9/8/2010 - 9:32:32 AM - [14.531] ----D- C:\Program Files\Realtek
O43 - CFD: 7/14/2009 - 7:32:40 AM - [35.136] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 9/8/2010 - 9:39:00 AM - [32.904] ----D- C:\Program Files\Synaptics
O43 - CFD: 7/14/2009 - 7:09:28 AM - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 6/28/2011 - 11:17:16 AM - [3.853] ----D- C:\Program Files\Windows Defender
O43 - CFD: 6/28/2011 - 11:17:16 AM - [8.797] ----D- C:\Program Files\Windows Journal
O43 - CFD: 12/20/2010 - 12:22:16 AM - [0.042] ----D- C:\Program Files\Windows Live
O43 - CFD: 6/28/2011 - 11:17:16 AM - [6.359] ----D- C:\Program Files\Windows Mail
O43 - CFD: 6/28/2011 - 11:17:16 AM - [7.331] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 12/19/2010 - 8:47:14 PM - [12.043] ----D- C:\Program Files\Windows NT
O43 - CFD: 6/28/2011 - 11:17:16 AM - [5.261] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 6/28/2011 - 11:17:16 AM - [0.233] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 6/28/2011 - 11:17:16 AM - [8.632] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 4/7/2012 - 8:13:50 AM - [126.398] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 7/14/2009 - 5:20:10 AM - [0.003] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 7/14/2009 - 5:20:10 AM - [0.581] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 11/10/2011 - 11:58:12 AM - [11.629] ----D- C:\Program Files\Common Files\System
O43 - CFD: 9/8/2010 - 9:52:38 AM - [1.577] ----D- C:\ProgramData\Acer
O43 - CFD: 12/14/2011 - 4:43:58 PM - [152.436] ----D- C:\ProgramData\Adobe
O43 - CFD: 9/8/2010 - 9:34:10 AM - [0.000] ----D- C:\ProgramData\AmUStor
O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 11/24/2010 - 4:54:34 AM - [0.000] ----D- C:\ProgramData\ATI
O43 - CFD: 9/8/2010 - 10:04:18 AM - [0.000] ----D- C:\ProgramData\BackupManager
O43 - CFD: 12/19/2010 - 8:47:14 PM - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 12/20/2010 - 12:26:38 AM - [1.161] ----D- C:\ProgramData\CyberLink
O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 11/24/2010 - 4:53:20 AM - [0.162] ----D- C:\ProgramData\EgisTec IPS
O43 - CFD: 9/8/2010 - 9:39:42 AM - [0.000] ----D- C:\ProgramData\eSobi
O43 - CFD: 12/19/2010 - 8:47:14 PM - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 4/6/2012 - 11:26:32 PM - [0.038] ----D- C:\ProgramData\FLEXnet
O43 - CFD: 1/1/2011 - 9:22:38 PM - [0.244] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 4/28/2011 - 6:31:30 PM - [12.127] ----D- C:\ProgramData\HP
O43 - CFD: 4/7/2012 - 7:50:52 AM - [122.876] ----D- C:\ProgramData\Kaspersky Lab
O43 - CFD: 1/3/2011 - 3:12:52 PM - [0.000] ----D- C:\ProgramData\m2portal
O43 - CFD: 8/17/2011 - 11:06:04 AM - [0.029] ----D- C:\ProgramData\McAfee
O43 - CFD: 12/19/2010 - 8:47:14 PM - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 12/25/2010 - 6:53:46 PM - [434.045] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 3/14/2012 - 11:51:24 PM - [0.060] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 12/19/2010 - 8:47:14 PM - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 8/1/2011 - 5:30:30 PM - [0.001] ----D- C:\ProgramData\mquadr.at
O43 - CFD: 9/8/2010 - 9:48:12 AM - [0.969] ----D- C:\ProgramData\OberonGameConsole
O43 - CFD: 12/19/2010 - 8:53:16 PM - [0.002] ----D- C:\ProgramData\oem
O43 - CFD: 12/25/2010 - 6:19:12 PM - [0.000] ----D- C:\ProgramData\Passolo 2009
O43 - CFD: 12/25/2010 - 6:30:34 PM - [34.047] ----D- C:\ProgramData\SDL
O43 - CFD: 2/9/2011 - 9:54:30 PM - [0.414] ----D- C:\ProgramData\SDL International
O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 1/10/2011 - 2:58:36 PM - [0.000] ----D- C:\ProgramData\Sun
O43 - CFD: 9/8/2010 - 10:01:00 AM - [0.114] ----D- C:\ProgramData\Symantec
O43 - CFD: 11/24/2010 - 5:07:52 AM - [0.156] ----D- C:\ProgramData\Temp
O43 - CFD: 7/14/2009 - 7:08:58 AM - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 1/3/2011 - 3:23:08 PM - [15.606] --H-D- C:\ProgramData\{D61DF0B8-23A1-439C-84C4-35F3EF31A430}
O43 - CFD: 12/12/2011 - 11:17:14 AM - [3.028] ----D- C:\Users\Bernard\AppData\Roaming\Adobe
O43 - CFD: 12/19/2010 - 8:54:32 PM - [0] ----D- C:\Users\Bernard\AppData\Roaming\ATI
O43 - CFD: 12/20/2010 - 12:26:42 AM - [0] ----D- C:\Users\Bernard\AppData\Roaming\CyberLink
O43 - CFD: 1/14/2011 - 2:39:36 PM - [0.215] ----D- C:\Users\Bernard\AppData\Roaming\EurekaLog
O43 - CFD: 4/28/2011 - 6:30:38 PM - [0] ----D- C:\Users\Bernard\AppData\Roaming\HpUpdate
O43 - CFD: 12/19/2010 - 8:52:54 PM - [0] ----D- C:\Users\Bernard\AppData\Roaming\Identities
O43 - CFD: 12/19/2010 - 8:53:16 PM - [141.279] ----D- C:\Users\Bernard\AppData\Roaming\Macromedia
O43 - CFD: 7/14/2009 - 9:44:40 AM - [0] ----D- C:\Users\Bernard\AppData\Roaming\Media Center Programs
O43 - CFD: 4/2/2012 - 9:07:14 AM - [16.528] -S--D- C:\Users\Bernard\AppData\Roaming\Microsoft
O43 - CFD: 12/25/2010 - 6:52:10 PM - [28.566] ----D- C:\Users\Bernard\AppData\Roaming\Mozilla
O43 - CFD: 12/25/2010 - 6:19:12 PM - [0] ----D- C:\Users\Bernard\AppData\Roaming\Passolo 2009
O43 - CFD: 12/25/2010 - 6:34:00 PM - [0.261] ----D- C:\Users\Bernard\AppData\Roaming\SDL
O43 - CFD: 12/25/2010 - 6:49:32 PM - [0.006] ----D- C:\Users\Bernard\AppData\Roaming\SDL International
O43 - CFD: 2/9/2011 - 9:54:28 PM - [0] ----D- C:\Users\Bernard\AppData\Roaming\Trados
O43 - CFD: 12/30/2010 - 11:31:32 PM - [0.000] ----D- C:\Users\Bernard\AppData\Roaming\Windows Live Writer
O43 - CFD: 12/12/2011 - 11:14:54 AM - [15.205] ----D- C:\Users\Bernard\AppData\Local\Adobe
O43 - CFD: 12/19/2010 - 8:47:30 PM - [0] -SH-D- C:\Users\Bernard\AppData\Local\Application Data
O43 - CFD: 12/19/2010 - 8:54:32 PM - [0.057] ----D- C:\Users\Bernard\AppData\Local\ATI
O43 - CFD: 12/20/2010 - 12:26:30 AM - [0.008] ----D- C:\Users\Bernard\AppData\Local\Cyberlink
O43 - CFD: 4/6/2012 - 9:17:58 PM - [0.061] ----D- C:\Users\Bernard\AppData\Local\Diagnostics
O43 - CFD: 12/25/2010 - 6:06:32 PM - [137.453] ----D- C:\Users\Bernard\AppData\Local\Downloaded Installations
O43 - CFD: 12/19/2010 - 8:53:18 PM - [0.000] ----D- C:\Users\Bernard\AppData\Local\EgisTec IPS
O43 - CFD: 4/6/2012 - 9:45:24 PM - [0.169] ----D- C:\Users\Bernard\AppData\Local\ElevatedDiagnostics
O43 - CFD: 3/23/2011 - 11:59:54 AM - [0] ----D- C:\Users\Bernard\AppData\Local\Google
O43 - CFD: 12/18/2011 - 12:49:58 PM - [0] ----D- C:\Users\Bernard\AppData\Local\Greentube
O43 - CFD: 12/19/2010 - 8:47:30 PM - [0] -SH-D- C:\Users\Bernard\AppData\Local\Historique
O43 - CFD: 5/17/2011 - 2:34:36 PM - [0.046] ----D- C:\Users\Bernard\AppData\Local\HP
O43 - CFD: 3/16/2012 - 9:43:34 AM - [848.676] ----D- C:\Users\Bernard\AppData\Local\Microsoft
O43 - CFD: 4/6/2012 - 11:26:30 PM - [1.779] ----D- C:\Users\Bernard\AppData\Local\Microsoft Help
O43 - CFD: 12/25/2010 - 6:51:48 PM - [62.917] ----D- C:\Users\Bernard\AppData\Local\Mozilla
O43 - CFD: 1/3/2011 - 9:15:04 PM - [0.002] ----D- C:\Users\Bernard\AppData\Local\mquadr.at
O43 - CFD: 1/3/2011 - 3:22:40 PM - [0] ----D- C:\Users\Bernard\AppData\Local\PackageAware
O43 - CFD: 12/27/2010 - 10:50:54 PM - [379.954] ----D- C:\Users\Bernard\AppData\Local\SDL
O43 - CFD: 12/25/2010 - 6:49:34 PM - [4.490] ----D- C:\Users\Bernard\AppData\Local\SDL International
O43 - CFD: 12/25/2010 - 6:04:08 PM - [12.391] ----D- C:\Users\Bernard\AppData\Local\Sun
O43 - CFD: 4/7/2012 - 8:33:00 AM - [1090.855] ----D- C:\Users\Bernard\AppData\Local\Temp
O43 - CFD: 12/19/2010 - 8:47:30 PM - [0] -SH-D- C:\Users\Bernard\AppData\Local\Temporary Internet Files
O43 - CFD: 1/25/2011 - 10:45:48 AM - [1.026] ----D- C:\Users\Bernard\AppData\Local\VirtualStore
O43 - CFD: 4/7/2012 - 8:26:06 AM - [0.034] ----D- C:\Users\Bernard\AppData\Local\VS Revo Group
O43 - CFD: 12/30/2010 - 11:21:08 PM - [0.016] ----D- C:\Users\Bernard\AppData\Local\Windows Live
O43 - CFD: 10/23/2011 - 10:23:58 AM - [0.620] ----D- C:\Users\Bernard\AppData\Local\Windows Live Writer
O43 - CFD: 11/24/2010 - 4:50:40 AM - [50.496] ----D- C:\Program Files (x86)\Acer
O43 - CFD: 11/24/2010 - 5:08:36 AM - [301.272] ----D- C:\Program Files (x86)\Acer Arcade Deluxe
O43 - CFD: 11/24/2010 - 4:58:00 AM - [3.251] ----D- C:\Program Files (x86)\Acer Crystal Eye webcam
O43 - CFD: 12/12/2011 - 11:16:04 AM - [114.927] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 9/8/2010 - 9:34:10 AM - [2.878] ----D- C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 11/24/2010 - 4:48:20 AM - [82.089] ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 12/12/2011 - 11:16:04 AM - [486.080] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 11/24/2010 - 5:06:20 AM - [0.429] ----D- C:\Program Files (x86)\Cyberlink
O43 - CFD: 9/8/2010 - 9:55:58 AM - [3.456] ----D- C:\Program Files (x86)\EgisTec IPS
O43 - CFD: 9/8/2010 - 9:55:10 AM - [47.927] ----D- C:\Program Files (x86)\EgisTec MyWinLocker
O43 - CFD: 9/8/2010 - 9:54:34 AM - [2.139] ----D- C:\Program Files (x86)\EgisTec MyWinLockerSuite
O43 - CFD: 9/8/2010 - 9:56:02 AM - [5.329] ----D- C:\Program Files (x86)\EgisTec Shredder
O43 - CFD: 11/17/2011 - 3:58:38 PM - [59.558] ----D- C:\Program Files (x86)\Google
O43 - CFD: 4/28/2011 - 6:30:40 PM - [5.871] ----D- C:\Program Files (x86)\HP
O43 - CFD: 12/27/2010 - 8:41:24 PM - [208.092] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 11/24/2010 - 4:59:16 AM - [16.750] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 2/16/2012 - 5:12:42 PM - [4.914] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 12/28/2010 - 12:04:10 AM - [13.232] ----D- C:\Program Files (x86)\IZArc
O43 - CFD: 3/7/2012 - 9:57:48 PM - [238.187] ----D- C:\Program Files (x86)\Java
O43 - CFD: 11/24/2010 - 4:54:00 AM - [7.167] ----D- C:\Program Files (x86)\Launch Manager
O43 - CFD: 11/24/2010 - 5:02:42 AM - [0] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 12/19/2010 - 11:23:54 PM - [38.002] ----D- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 12/19/2010 - 11:29:58 PM - [844.606] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2/16/2012 - 4:08:22 PM - [36.634] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 12/19/2010 - 9:00:32 PM - [1.745] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 12/28/2010 - 1:30:06 AM - [7.789] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 3/18/2012 - 3:14:42 PM - [38.610] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 12/25/2010 - 6:21:46 PM - [1.183] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 12/20/2010 - 12:24:22 AM - [0] ----D- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 9/8/2010 - 10:03:50 AM - [1178.178] ----D- C:\Program Files (x86)\NewTech Infosystems
O43 - CFD: 9/8/2010 - 9:32:24 AM - [3.203] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 7/14/2009 - 7:32:40 AM - [37.372] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 12/25/2010 - 6:23:08 PM - [1165.172] ----D- C:\Program Files (x86)\SDL
O43 - CFD: 12/25/2010 - 6:14:34 PM - [345.702] ----D- C:\Program Files (x86)\SDL International
O43 - CFD: 12/25/2010 - 6:19:22 PM - [144.646] ----D- C:\Program Files (x86)\SDL Passolo 2009
O43 - CFD: 1/3/2011 - 3:23:02 PM - [42.708] ----D- C:\Program Files (x86)\Swisscom
O43 - CFD: 9/8/2010 - 10:01:00 AM - [6.153] ----D- C:\Program Files (x86)\Symantec
O43 -