Précédent
- 1
- 2
Salut,
Sebsauvage et son comm
http://streisand.me/tuto4pc.htm
commentaires de tuto4pc sur WOT :
https://www.mywot.com/en/scorecard/tuto4pc.com?page=7
PCTuto/Tuto4PC : association avec 01net :
https://www.malekal.com/pctutotuto4pc-association-avec-01net/
je te fais confiance mais tu peux partager les rapports si tu crois qu'il faut les mettre
peut-être faire la même chose sur leurs pc
Sebsauvage et son comm
http://streisand.me/tuto4pc.htm
commentaires de tuto4pc sur WOT :
https://www.mywot.com/en/scorecard/tuto4pc.com?page=7
PCTuto/Tuto4PC : association avec 01net :
https://www.malekal.com/pctutotuto4pc-association-avec-01net/
je te fais confiance mais tu peux partager les rapports si tu crois qu'il faut les mettre
peut-être faire la même chose sur leurs pc
Précédent
- 1
- 2
et telecharger les mm logiciels de desinsfection
merci pour les liens, vraiment sympa pour ton aide, voici qu mm les rapports de scan et leur desinfection :
ZHPDiag
Rapport de ZHPDiag v1.31.100 par Nicolas Coolman, Update du 17/06/2012
Run by pb at 28/06/2012 18:53:21
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 13.0.1 v13.0.1
---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4095 MB (48% free)
System Restore: Activé (Enable)
System drive C: has 396 GB (86%) free of 456 GB
---\\ Logged in mode
~ Computer Name: PB-PC
~ User Name: pb
~ All Users Names: pb, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\pb\AppData\Roaming\
~ %Desktop% : C:\Users\pb\Desktop\
~ %Favorites% : C:\Users\pb\Favorites\
~ %LocalAppData% : C:\Users\pb\AppData\Local\
~ %StartMenu% : C:\Users\pb\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 396 Go of 456 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 260 Go of 457 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.870ECFEBD41C7B8F9C6777748368D51F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/05/2012 - 02:59:14.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/03/2011 - 07:41:34.) -- C:\Windows\system32\Drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/394
~ Mes musiques (My Musics) : 3/404
~ Mes Videos (My Videos) : 2/67
~ Mes Favoris (My Favorites) : 1/340
~ Mes Documents (My Documents) : 2/1595
~ Mon Bureau (My Desktop) : 2/40
~ Menu demarrer (Programs) : 0/36
~ Scan Hidden Files in 00mn 01s
---\\ Processus lancés
[MD5.207E7A44FD2FEC99E3C25F9C5E9ECC46] - (.Xooloo - Parental Control Connection Manager.) -- C:\Program Files\Controle Parental Xooloo\CPXoolooHelper.exe [142056] [PID.3076]
[MD5.83166BFFA8C4BBAC4413F47C865CC8EE] - (.Microsoft Corporation - Outil de notification de cadeaux MSN.) -- C:\Users\pb\AppData\Roaming\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe [183096] [PID.2288]
[MD5.D566847532183A720A0177565014CB73] - (.Google Inc. - Google Crash Handler.) -- C:\Users\pb\AppData\Local\Google\Update\1.3.21.111\GoogleCrashHandler.exe [180648] [PID.2272]
[MD5.DC5CFA8FCD9AE10BAA39C23B2D35324F] - (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe [563744] [PID.1980]
[MD5.782FEF655DBF8653C9F2722BEBF7A8A6] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4241512] [PID.2676]
[MD5.1B82BCF0B8F9228B39F75B0DFA079A21] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [462408] [PID.3300]
[MD5.A80C173AC5C75706BB74AE4D78F2A53D] - (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe [164864] [PID.3552]
[MD5.0129BB16161C2FD9A6B19111AB047198] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748664] [PID.4740]
[MD5.E8D48FD9AE7C45521EE57A0CB99CF320] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_2_202_235_ActiveX.exe [351904] [PID.4616]
[MD5.E24F75DCD2A9576085DC2758EB040366] - (...) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [4540928] [PID.4488]
[MD5.4041D31508A2A084DFB42C595854090F] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44768] [PID.]
[MD5.7D465549DFB0ECA6601E9609C72CD20A] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [134920] [PID.]
[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496] [PID.]
[MD5.3A2BDD76E7D2A5F40A7174793D1BA794] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [75136] [PID.]
[MD5.F9EC9ACD504D823D9B9CA98A4F8D3CA2] - (.Acer Group - Updater Service.) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232] [PID.]
[MD5.BA400ED640BCA1EAE5C727AE17C10207] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [654408] [PID.]
~ Scan Processes Running in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\pb\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl
G0 - GCSP: Preference [User Data\Default] https://www.google.com/?gws_rd=ssl
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\pb\AppData\Roaming\Mozilla\Firefox\Profiles\4ypxiq01.default\prefs.js
M3 - MFPP: Plugins - [pb] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [pb] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [pb] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [pb] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [pb] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [pb] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [pb] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [pb - 4ypxiq01.default] https://www.google.com/?gws_rd=ssl
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_31 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\pb\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\pb\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:4343;https=127.0.0.1:4350
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (...) -- (.not file.)
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [CPXoolooHelper] . (.Xooloo - Parental Control Connection Manager.) -- C:\Program Files\Controle Parental Xooloo\CPXoolooHelper.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] C:\Users\pb\AppData\Local\Akamai\netsession_win.exe (.not file.)
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\pb\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Hotkey Utility] . (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-3046094482-987451108-3171265094-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-3046094482-987451108-3171265094-1000\..\Run: [Akamai NetSession Interface] C:\Users\pb\AppData\Local\Akamai\netsession_win.exe (.not file.)
O4 - HKUS\S-1-5-21-3046094482-987451108-3171265094-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\pb\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\pb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\pb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\pb\Desktop\adsl TV.lnk . (.adsl TV / FM.) -- C:\Program Files (x86)\adslTV\adsltv.exe
O4 - Global Startup: C:\Users\pb\Desktop\Aller sur MSN.fr.url . (...) -- C:\Users\pb\Desktop\Aller sur MSN.fr.url
O4 - Global Startup: C:\Users\pb\Desktop\Découvrez Hotmail.url . (...) -- C:\Users\pb\Desktop\Découvrez Hotmail.url
O4 - Global Startup: C:\Users\pb\Desktop\httpmaj.neuf.frwebvlc-hlswin32vlc-1.1.11-win32-sfr12.exe.URL . (...) -- C:\Users\pb\Desktop\httpmaj.neuf.frwebvlc-hlswin32vlc-1.1.11-win32-sfr12.exe.URL
O4 - Global Startup: C:\Users\pb\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\pb\Desktop\SITES PUBLICS - ADMINISTRATIONS.lnk . (...) -- C:\Users\famille\Favorites\Links for France
O4 - Global Startup: C:\Users\pb\Desktop\vlc-1.1.11-win32-sfr12 - Raccourci.lnk . (...) -- C:\Users\pb\Downloads\vlc-1.1.11-win32-sfr12.exe (.not file.)
O4 - Global Startup: C:\Users\pb\Desktop\Windows Live Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Users\pb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\pb\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - packardbell.lnk . (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
~ Scan Global Startup in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3F3FBC75-379F-44B7-BE0C-B39908D1B64E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{3F3FBC75-379F-44B7-BE0C-B39908D1B64E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{3F3FBC75-379F-44B7-BE0C-B39908D1B64E}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (...) --
O18 - Handler: dvd [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (...) --
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (...) --
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (...) --
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (...) --
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (...) --
O18 - Handler: its [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (...) --
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (...) --
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (...) --
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (...) --
O18 - Handler: mhtml [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (...) --
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (...) --
O18 - Handler: ms-its [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (...) --
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- c:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (...) --
O18 - Handler: tv [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (...) --
O18 - Handler: vbscript [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (...) --
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (...) --
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (...) --
~ Scan Protocole Additionnel in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Contrôle Parental Xooloo (CPXooloo) . (.Tanuki Software, Ltd. - Java Service Wrapper Standard Edition 3.5.1.) - C:\Program Files\Controle Parental Xooloo\CPXooloo.exe
O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
O23 - Service: Updater Service (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3046094482-987451108-3171265094-1000Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3046094482-987451108-3171265094-1000UA.job
[MD5.76D5A3D2A50402A0B9B6ED13C4371E79] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.)
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-3046094482-987451108-3171265094-1000Core] (.Google Inc..) -- C:\Users\pb\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-3046094482-987451108-3171265094-1000UA] (.Google Inc..) -- C:\Users\pb\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [{872D9258-673E-4CAA-BB4A-2777E7E0C1D3}] (...) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe (.not file.)
~ Scan Scheduled Task in 00mn 02s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {47FA2C44-D148-4DBC-AF60-B91934AA4842}
O42 - Logiciel: Adobe Photoshop Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Photoshop Elements 8.0
O42 - Logiciel: Adobe Reader 9.5.1 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM] -- WT078791
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM] -- WT078960
O42 - Logiciel: Bob the Builder Can-Do-Zoo - (.WildTangent.) [HKLM] -- WT078964
O42 - Logiciel: Build-a-lot 2 - (.WildTangent.) [HKLM] -- WT079363
O42 - Logiciel: Chicken Invaders 3 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112531267}
O42 - Logiciel: Chicken Invaders 3 - Revenge of the Yolk - (.WildTangent.) [HKLM] -- WT079366
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Escape Rosecliff Island - (.WildTangent.) [HKLM] -- WT079395
O42 - Logiciel: FATE - The Traitor Soul - (.WildTangent.) [HKLM] -- WT079024
O42 - Logiciel: Faerie Solitaire - (.WildTangent.) [HKLM] -- WT079020
O42 - Logiciel: Flyff - (.Gala Networks Europe Limited.) [HKLM] -- {48E3D369-48AA-4585-AE91-E64667682508}_is1
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Hotkey Utility - (.Packard Bell.) [HKLM] -- Hotkey Utility
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM] -- Identity Card
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM] -- WT078806
O42 - Logiciel: Jewel Quest - (.WildTangent.) [HKLM] -- WT079064
O42 - Logiciel: Jewel Quest Solitaire 3 - (.WildTangent.) [HKLM] -- WT079068
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM] -- WT079397
O42 - Logiciel: Malwarebytes Anti-Malware version 1.61.0.1400 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 - (.Microsoft Corporation.) [HKLM] -- {5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}
O42 - Logiciel: Mozilla Firefox 13.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 13.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM] -- {330e1566-027d-4d04-a8c5-011f9f6e8bc7}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM] -- {2348B586-C9AE-46CE-936C-A68E9426E214}
O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM] -- {4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: OpenOffice.org 3.4 - (.OpenOffice.org.) [HKLM] -- {2F90A789-DD1E-41CE-BFCA-BD78213BABC7}
O42 - Logiciel: Packard Bell Games - (.WildTangent.) [HKLM] -- WildTangent packardbell Master Uninstall
O42 - Logiciel: Packard Bell InfoCentre - (.Packard Bell.) [HKLM] -- Packard Bell InfoCentre
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM] -- Packard Bell Registration
O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell Incorporated.) [HKLM] -- Packard Bell Screensaver
O42 - Logiciel: Packard Bell Software Suite SE - (.Packard Bell.) [HKLM] -- Packard Bell Software Suite SE
O42 - Logiciel: Packard Bell Updater - (.Packard Bell.) [HKLM] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM] -- WT079108
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM] -- WT079116
O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM] -- WT079120
O42 - Logiciel: Polar Pool - (.WildTangent.) [HKLM] -- WT079124
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM] -- PunkBusterSvc
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572078
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2604121
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2633870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2656351
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2656368v2
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2656405
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2686827
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2600217) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217
O42 - Logiciel: VC 9.0 Runtime - (.Check Point Software Technologies Ltd.) [HKLM] -- {02E89EFC-7B07-4D5A-AA03-9EC0902914EE}
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM] -- WT079421
O42 - Logiciel: Virtual Villagers - A New Home - (.WildTangent.) [HKLM] -- WT079177
O42 - Logiciel: Welcome Center - (.Packard Bell.) [HKLM] -- Packard Bell Welcome Center
O42 - Logiciel: WildTangent Games App (Packard Bell Games) - (.WildTangent.) [HKLM] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {E5B21F11-6933-4E0B-A25C-7963E3C07D11}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Yahtzee - (.WildTangent.) [HKLM] -- WT079184
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM] -- {14830F1E-C1C4-4526-BB51-4FC1ABC3EFBD}
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM] -- {5D6C26B9-D9E7-4E77-A4DE-0C2B242E85FA}
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM] -- WT078833
O42 - Logiciel: adsl TV - (.adsl TV / FM.) [HKLM] -- {3AFDD2C6-8663-46B5-B195-6CEB00D44768}
O42 - Logiciel: avast! Free Antivirus v7.0.1426.0 - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Aeria Games]
[HKLM\Software\AppDataLow]
[HKLM\Software\Audible]
[HKLM\Software\Canon]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Debug]
[HKLM\Software\Digital River]
[HKLM\Software\Dofus 2]
[HKLM\Software\Electronic Arts]
[HKLM\Software\Even Balance]
[HKLM\Software\GamesBarSetup]
[HKLM\Software\Google]
[HKLM\Software\Intel]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\Monolith Productions]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Oberon Media]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Packard Bell]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Sonic]
[HKLM\Software\WildTangent]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 13/05/2012 - 01:53:11 - [1396,075] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 23/06/2012 - 22:10:43 - [39,695] ----D C:\Program Files (x86)\adslTV
O43 - CFD: 15/05/2012 - 14:08:55 - [379,553] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 15/05/2012 - 14:08:52 - [0,002] ----D C:\Program Files (x86)\GamesBar
O43 - CFD: 13/04/2012 - 15:48:03 - [15,399] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 15/03/2010 - 14:35:40 - [0,080] ----D C:\Program Files (x86)\Intel
O43 - CFD: 15/06/2012 - 11:01:47 - [4,917] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 20/06/2012 - 15:34:44 - [11,554] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 11/05/2012 - 02:03:54 - [0] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/05/2012 - 02:03:04 - [36,641] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 19/04/2012 - 19:19:11 - [138,959] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 20/04/2012 - 03:09:53 - [0,015] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 28/06/2012 - 18:53:33 - [37,203] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 23/06/2012 - 23:23:57 - [0,195] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 19/04/2012 - 19:12:12 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 15/03/2010 - 15:03:52 - [360,150] ----D C:\Program Files (x86)\Nero
O43 - CFD: 15/05/2012 - 14:08:42 - [0,009] ----D C:\Program Files (x86)\Oberon Media
O43 - CFD: 17/06/2012 - 21:32:44 - [285,319] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 15/05/2012 - 14:08:41 - [55,906] ----D C:\Program Files (x86)\orange
O43 - CFD: 13/04/2012 - 16:17:10 - [78,768] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 30/04/2012 - 19:20:43 - [199,329] ----D C:\Program Files (x86)\Packard Bell Games
O43 - CFD: 13/04/2012 - 15:48:03 - [3,202] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,349] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 13/04/2012 - 15:48:20 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 30/04/2012 - 19:20:05 - [10,040] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 14/04/2012 - 01:32:27 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 11/05/2012 - 13:02:51 - [62,265] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 05/05/2012 - 10:45:03 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 05/05/2012 - 10:45:03 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 05/05/2012 - 10:45:03 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 05/05/2012 - 10:45:03 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 05/05/2012 - 10:45:03 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 28/06/2012 - 18:53:29 - [13,537] ----D C:\Program Files (x86)\ZHPDiag
O43 - CFD: 03/05/2012 - 14:17:15 - [70,388] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/05/2012 - 01:53:09 - [38,049] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 13/04/2012 - 15:48:01 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 13/04/2012 - 16:11:22 - [0,827] ----D C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 11/05/2012 - 12:58:28 - [89,766] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 15/03/2010 - 15:05:02 - [117,852] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 15/05/2012 - 14:08:57 - [1,298] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 13/04/2012 - 16:10:17 - [4,031] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 13/04/2012 - 16:10:17 - [0,324] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 05/05/2012 - 10:45:03 - [15,806] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/04/2012 - 16:11:40 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 15/03/2010 - 14:51:40 - [0,000] ----D C:\ProgramData\Acer
O43 - CFD: 03/05/2012 - 22:55:33 - [532,972] ----D C:\ProgramData\Adobe
O43 - CFD: 30/04/2012 - 17:57:49 - [0] ----D C:\ProgramData\Aeria Games
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 19/04/2012 - 16:56:52 - [12,202] ----D C:\ProgramData\AVAST Software
O43 - CFD: 13/04/2012 - 16:00:13 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 04/05/2012 - 11:37:47 - [20,790] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 19/04/2012 - 17:04:46 - [0,004] ----D C:\ProgramData\CheckPoint
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 13/04/2012 - 16:00:13 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 15/06/2012 - 20:41:00 - [0,045] ----D C:\ProgramData\FLEXnet
O43 - CFD: 15/05/2012 - 14:09:46 - [0,012] ----D C:\ProgramData\InterAction studios
O43 - CFD: 20/06/2012 - 15:34:37 - [7,056] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 13/04/2012 - 16:00:13 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 11/05/2012 - 13:00:46 - [443,352] -S--D C:\ProgramData\Microsoft
O43 - CFD: 19/04/2012 - 16:24:39 - [0,071] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 13/04/2012 - 16:00:13 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 23/06/2012 - 23:23:56 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 15/03/2010 - 15:03:11 - [10,570] ----D C:\ProgramData\Nero
O43 - CFD: 28/06/2012 - 18:26:19 - [26,735] ----D C:\ProgramData\net.xooloo.livemark
O43 - CFD: 19/04/2012 - 16:12:11 - [0,000] ----D C:\ProgramData\Norton
O43 - CFD: 15/03/2010 - 15:07:32 - [11,045] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 16/04/2012 - 10:31:09 - [0,619] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 15/05/2012 - 14:08:49 - [0,670] ----D C:\ProgramData\Oberon Media
O43 - CFD: 13/04/2012 - 16:04:30 - [0,000] ----D C:\ProgramData\OEM
O43 - CFD: 15/03/2010 - 14:59:21 - [0,343] ----D C:\ProgramData\Packard Bell
O43 - CFD: 19/04/2012 - 15:48:11 - [0,000] ----D C:\ProgramData\Partner
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 21/05/2012 - 04:16:50 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 30/04/2012 - 19:20:12 - [1988,121] ----D C:\ProgramData\WildTangent
O43 - CFD: 15/06/2012 - 20:40:36 - [4,851] ----D C:\Users\pb\AppData\Roaming\Adobe
O43 - CFD: 18/06/2012 - 13:33:39 - [0,258] ----D C:\Users\pb\AppData\Roaming\CheckPoint
O43 - CFD: 19/04/2012 - 15:44:06 - [0] ----D C:\Users\pb\AppData\Roaming\Google
O43 - CFD: 13/04/2012 - 16:04:12 - [0] ----D C:\Users\pb\AppData\Roaming\Identities
O43 - CFD: 13/04/2012 - 16:17:10 - [0,057] ----D C:\Users\pb\AppData\Roaming\Macromedia
O43 - CFD: 20/06/2012 - 15:34:51 - [0,011] ----D C:\Users\pb\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:44:38 - [0] ----D C:\Users\pb\AppData\Roaming\Media Center Programs
O43 - CFD: 21/06/2012 - 19:26:24 - [15,569] -S--D C:\Users\pb\AppData\Roaming\Microsoft
O43 - CFD: 23/06/2012 - 23:25:44 - [12,730] ----D C:\Users\pb\AppData\Roaming\Mozilla
O43 - CFD: 23/04/2012 - 09:33:13 - [0] ----D C:\Users\pb\AppData\Roaming\Need for Speed World
O43 - CFD: 15/05/2012 - 14:09:18 - [0,000] ----D C:\Users\pb\AppData\Roaming\Oberon Media
O43 - CFD: 13/04/2012 - 16:04:34 - [0] ----D C:\Users\pb\AppData\Roaming\OEM
O43 - CFD: 17/06/2012 - 21:46:09 - [21,344] ----D C:\Users\pb\AppData\Roaming\OpenOffice.org
O43 - CFD: 19/04/2012 - 22:18:16 - [0,013] ----D C:\Users\pb\AppData\Roaming\Template
O43 - CFD: 27/06/2012 - 16:08:45 - [0,354] ----D C:\Users\pb\AppData\Roaming\vlc
O43 - CFD: 23/04/2012 - 18:38:34 - [0] ----D C:\Users\pb\AppData\Roaming\Windows Live Writer
O43 - CFD: 15/06/2012 - 20:40:49 - [0,651] ----D C:\Users\pb\AppData\Local\Adobe
O43 - CFD: 23/06/2012 - 22:56:07 - [13,563] ----D C:\Users\pb\AppData\Local\adslTV
O43 - CFD: 22/04/2012 - 00:25:17 - [0] ----D C:\Users\pb\AppData\Local\Aeria Games
O43 - CFD: 13/04/2012 - 16:00:26 - [0] ----D C:\Users\pb\AppData\Local\Application Data
O43 - CFD: 24/04/2012 - 03:22:41 - [0] ----D C:\Users\pb\AppData\Local\Apps
O43 - CFD: 24/06/2012 - 00:27:30 - [0] ----D C:\Users\pb\AppData\Local\Deployment
O43 - CFD: 21/06/2012 - 17:57:58 - [1,922] ----D C:\Users\pb\AppData\Local\Diagnostics
O43 - CFD: 23/04/2012 - 09:02:29 - [0,001] ----D C:\Users\pb\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 21/06/2012 - 19:26:41 - [6,417] ----D C:\Users\pb\AppData\Local\Facebook
O43 - CFD: 24/06/2012 - 00:28:34 - [258,220] ----D C:\Users\pb\AppData\Local\Google
O43 - CFD: 13/04/2012 - 16:00:26 - [0] ----D C:\Users\pb\AppData\Local\Historique
O43 - CFD: 23/06/2012 - 23:41:37 - [1083,242] ----D C:\Users\pb\AppData\Local\Microsoft
O43 - CFD: 13/04/2012 - 16:06:59 - [0] ----D C:\Users\pb\AppData\Local\Microsoft Help
O43 - CFD: 23/06/2012 - 23:25:08 - [69,081] ----D C:\Users\pb\AppData\Local\Mozilla
O43 - CFD: 13/04/2012 - 16:04:42 - [0,015] ----D C:\Users\pb\AppData\Local\Packard Bell
O43 - CFD: 20/04/2012 - 18:24:26 - [1,370] ----D C:\Users\pb\AppData\Local\PunkBuster
O43 - CFD: 28/06/2012 - 18:48:46 - [18,423] ----D C:\Users\pb\AppData\Local\Temp
O43 - CFD: 13/04/2012 - 16:00:26 - [0] ----D C:\Users\pb\AppData\Local\Temporary Internet Files
O43 - CFD: 22/06/2012 - 12:57:44 - [0,256] ----D C:\Users\pb\AppData\Local\VirtualStore
O43 - CFD: 28/06/2012 - 18:26:46 - [0,043] ----D C:\Users\pb\AppData\Local\Windows Live
O43 - CFD: 03/05/2012 - 03:15:41 - [0,618] ----D C:\Users\pb\AppData\Local\Windows Live Writer
O43 - CFD: 09/05/2012 - 02:39:14 - [0] ----D C:\Users\pb\AppData\Local\{00AA99C7-E923-4870-A42A-F70EE53A6EC3}
O43 - CFD: 16/05/2012 - 11:55:52 - [0] ----D C:\Users\pb\AppData\Local\{0104DC53-A288-4196-8CB4-AC9EAECA9EB1}
O43 - CFD: 23/06/2012 - 13:06:55 - [0] ----D C:\Users\pb\AppData\Local\{010FB8C7-3EE6-4DD4-A22D-16603B39B3FB}
O43 - CFD: 22/04/2012 - 09:18:05 - [0] ----D C:\Users\pb\AppData\Local\{011D9EF4-4BA1-49E9-A142-0AE7ACA75FED}
O43 - CFD: 20/05/2012 - 21:48:54 - [0] ----D C:\Users\pb\AppData\Local\{01DD1B09-FA6A-4799-AA07-CEF1C65872B6}
O43 - CFD: 28/04/2012 - 23:03:39 - [0] ----D C:\Users\pb\AppData\Local\{066E6A60-D043-499D-90B0-BF3DE1F632EE}
O43 - CFD: 25/04/2012 - 13:56:37 - [0] ----D C:\Users\pb\AppData\Local\{06792337-C6E5-4466-B334-84E597343F80}
O43 - CFD: 21/05/2012 - 22:54:34 - [0] ----D C:\Users\pb\AppData\Local\{06E90E59-5BB0-4209-BFFD-44FCBADF6B17}
O43 - CFD: 16/06/2012 - 23:06:09 - [0] ----D C:\Users\pb\AppData\Local\{0793F431-C2E3-4075-B34A-EADE68D8B8F4}
O43 - CFD: 10/05/2012 - 14:40:08 - [0] ----D C:\Users\pb\AppData\Local\{0AEBE683-D4F7-4E46-92D3-84C010DACD23}
O43 - CFD: 17/05/2012 - 01:33:53 - [0] ----D C:\Users\pb\AppData\Local\{0BF85A6E-D221-4D0E-AED0-554F200049F2}
O43 - CFD: 27/05/2012 - 10:41:55 - [0] ----D C:\Users\pb\AppData\Local\{0C346DCC-EF81-42CE-87B0-C872B2DC02EF}
O43 - CFD: 16/06/2012 - 11:05:43 - [0] ----D C:\Users\pb\AppData\Local\{104F26C7-9A06-4160-86F8-3A55E35295F5}
O43 - CFD: 27/05/2012 - 10:41:58 - [0] ----D C:\Users\pb\AppData\Local\{1070106E-A923-4505-A5A7-1CFBA72D86EF}
O43 - CFD: 24/06/2012 - 13:07:34 - [0] ----D C:\Users\pb\AppData\Local\{118D9F30-2C43-4CDC-9A69-1FE30C33DA02}
O43 - CFD: 18/05/2012 - 01:34:21 - [0] ----D C:\Users\pb\AppData\Local\{11E214C3-A32C-4ECD-AE05-E666E043F886}
O43 - CFD: 29/05/2012 - 19:29:06 - [0] ----D C:\Users\pb\AppData\Local\{120BA0D6-B83B-4D1E-9AD7-5645F347D7A5}
O43 - CFD: 07/05/2012 - 14:38:18 - [0] ----D C:\Users\pb\AppData\Local\{12E70D6C-9198-4981-AE5E-CEA23EEBA71C}
O43 - CFD: 09/05/2012 - 02:39:15 - [0] ----D C:\Users\pb\AppData\Local\{1457FA36-5630-4706-A1A0-E46E54EB72CC}
O43 - CFD: 19/06/2012 - 12:49:08 - [0] ----D C:\Users\pb\AppData\Local\{1770D32F-A415-4960-B9D2-77DA0C7E3DA8}
O43 - CFD: 05/05/2012 - 12:42:38 - [0] ----D C:\Users\pb\AppData\Local\{18B213C6-1A0E-464D-8442-11579BA3C1AA}
O43 - CFD: 20/06/2012 - 13:26:03 - [0] ----D C:\Users\pb\AppData\Local\{19F7D1A6-225D-457F-8952-BD52A9F9F6F9}
O43 - CFD: 28/06/2012 - 18:26:44 - [0] ----D C:\Users\pb\AppData\Local\{1A5D7F50-AADD-463F-9E2C-0FE8E0058EB7}
O43 - CFD: 24/06/2012 - 13:07:47 - [0] ----D C:\Users\pb\AppData\Local\{1D12F4DC-A7AE-4E04-8A09-9DD366273847}
O43 - CFD: 29/04/2012 - 23:04:54 - [0] ----D C:\Users\pb\AppData\Local\{1F2E8F03-1B6B-484B-AE80-9DA4C1E9CBD8}
O43 - CFD: 06/06/2012 - 19:12:19 - [0] ----D C:\Users\pb\AppData\Local\{1F80EFB4-19FB-4508-A378-49DA0EA1DEF3}
O43 - CFD: 02/06/2012 - 01:38:14 - [0] ----D C:\Users\pb\AppData\Local\{217DC8AB-0C4E-48D3-B0A6-AAAAE9AE4451}
O43 - CFD: 27/05/2012 - 22:42:16 - [0] ----D C:\Users\pb\AppData\Local\{21B0537C-87F4-417D-AE69-20B5E87D5070}
O43 - CFD: 16/05/2012 - 11:55:54 - [0] ----D C:\Users\pb\AppData\Local\{22CB324B-C4B6-4F7A-8FAE-A94A79CC081E}
O43 - CFD: 09/06/2012 - 22:40:45 - [0] ----D C:\Users\pb\AppData\Local\{23B6064D-1D73-432B-8196-7AF773483A26}
O43 - CFD: 26/05/2012 - 09:12:42 - [0] ----D C:\Users\pb\AppData\Local\{241E4685-421E-415C-AFE6-107E76F3BB42}
O43 - CFD: 05/05/2012 - 00:42:18 - [0] ----D C:\Users\pb\AppData\Local\{243C0591-21B5-46BF-91F6-D82DD7AF8B06}
O43 - CFD: 03/05/2012 - 12:41:25 - [0] ----D C:\Users\pb\AppData\Local\{244D52E8-4120-4846-86C1-D45DE90CB3C1}
O43 - CFD: 28/05/2012 - 10:44:59 - [0] ----D C:\Users\pb\AppData\Local\{261B011E-4DFD-4E0C-AADE-ACE8F67F6FCC}
O43 - CFD: 31/05/2012 - 21:53:55 - [0] ----D C:\Users\pb\AppData\Local\{2651FF1D-07A3-42E4-A1C3-AE6BC303D44A}
O43 - CFD: 01/05/2012 - 23:15:15 - [0] ----D C:\Users\pb\AppData\Local\{266B7EF3-7C03-4248-9292-607F7BB51580}
O43 - CFD: 06/06/2012 - 07:11:49 - [0] ----D