bigseepro virus????

baby1979 · le 14 Oct 2011 18:42

bonsoir je vient d'avoir subitement un probleme sur mes 2 pc en meme temp!il sagit d'une barre d'outil et de recherche qui m'empeche d'eller sur le net car sous firefox il me marque "page introuvable"sur chaques site!!!j'ai fait de recherches mais apprement il sagit d'un virus serieux :( j'atterit direct sur une page de recherche que je n'ai jamais installé!!!je vais essayer de vous envoyez le rapport de l'annalyse avec ZHPdiag.

Skynet · le 14 Oct 2011 18:45

Code: Tout sélectionner: Rapport de ZHPDiag v1.28.1367 par Nicolas Coolman, Update du 05/10/2011 Run by rammstein at 14/10/2011 19:30:36 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html State : Version à jour. ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 MFIE: Mozilla Firefox 7.0.1 v7.0.1 (Defaut) ---\\ Windows Product Information Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK ~ Windows(R) 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : 7QJB7 Windows License : OK ~ Windows Remaining Initializations Number : 3 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System Information ~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 4026 MB (59% free) System Restore: Activé (Enable) System drive C: has 405 GB (69%) free of 584 GB ---\\ Logged in mode ~ Computer Name: RAMMSTEIN-PC ~ User Name: rammstein ~ All Users Names: rammstein, annie, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\rammstein\AppData\Roaming\ ~ %Desktop% : C:\Users\rammstein\Desktop\ ~ %Favorites% : C:\Users\rammstein\Favorites\ ~ %LocalAppData% : C:\Users\rammstein\AppData\Local\ ~ %StartMenu% : C:\Users\rammstein\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\system32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 405 Go of 584 Go) D:\ CD-ROM drive (Not Inserted) G:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK ~ Scan Security Center in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024] [MD5.271E8FB1354AA205A214F280A6766E30] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/10/2011 - 06:17:57.) -- C:\Windows\system32\wininet.dll [1389056] [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.13/04/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.13/04/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448] [MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.13/04/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480] [MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.15/06/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200] *1908 [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128] *1828 [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160] *1828 [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2011 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456] *1820 [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.13/04/2011 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400] *1884 [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.13/04/2011 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368] *1908 [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472] *1892 [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224] *1860 [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/06/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208] *1852 [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2011 - 10:23:20.) -- C:\Windows\system32\drivers\netBT.sys [261632] *1828 [MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776] *1908 [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280] *1892 [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2011 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536] *1916 [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.13/04/2011 - 10:21:56.) -- C:\Windows\system32\drivers\tdx.sys [119296] *1820 ~ Scan Generic Processes in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/1036 ~ Mes musiques (My Musics) : 205/1040 ~ Mes Videos (My Videos) : 1/182 ~ Mes Favoris (My Favorites) : 5/50 ~ Mes Documents (My Documents) : 5/1138 ~ Mon Bureau (My Desktop) : 7/932 ~ Menu demarrer (Programs) : 7/59 ~ Scan Hidden Files in 00mn 11s ---\\ Processus lancés [MD5.3F09D12C0DF3BFF61E80309063F165D2] - (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480] [PID.2876] [MD5.2F2DF068BED6E62E4C007DF7446B4F19] - (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe [200704] [PID.3068] [MD5.E1E2D028E40D58FFF8DC88514E858117] - (.Lexmark International, Inc. - Lexmark 1200 Series Button Manager.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZbmgr.exe [74672] [PID.3116] [MD5.4560FD06FD052712525EB088F58C103C] - (.Lexmark International, Inc. - Lexmark 1200 Series Button Monitor.) -- C:\Program Files (x86)\Lexmark 1200 Series\lxczbmon.exe [58288] [PID.3448] [MD5.A07E8935CC8DCE6DB787DC99129CA17C] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408] [PID.3860] [MD5.34BC222864CEF86DABB5032DA36485DA] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1157128] [PID.664] [MD5.EF533F9D1E4F51C783D4349A7C3F518F] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464] [PID.1080] [MD5.B569E48B3A30E24601FCE6C98501E383] - (.CyberLink Corp. - Acer Arcade Deluxe Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [419112] [PID.748] [MD5.FA2A98A2B7E5604CF041405E1706CF5B] - (.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Progr.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [181480] [PID.3320] [MD5.2E9A1A6555C20424FC6DCC3AF21F4D68] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3451496] [PID.3500] [MD5.110015BE6B902CC40E141E97763B98BB] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440] [PID.4020] [MD5.938670EB1336D918F331E3E6C096DB7D] - (.Pas de propriétaire - tsnp2std Microsoft.) -- C:\Windows\tsnp2std.exe [262144] [PID.3104] [MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.1192] [MD5.E26E9FC6D43752DC1DF1612D6E66DE08] - (.IVT Corporation. - Bluetooth Application.) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe [709640] [PID.4136] [MD5.16E70261529AD9F0851811C9D26F0102] - (.IVT Corporation. - Bluetooth Application.) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil VoIP Plugin.exe [138840] [PID.4432] [MD5.7FBEAD79082A406CA657B0BA5EC92F34] - (.Lavasoft Limited - Ad-Aware Tray Application.) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe [1191216] [PID.5100] [MD5.4E5585800B561FBEF64B27425365A36F] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632] [PID.3408] [MD5.83F4BA8B8CDA4F063AA2002955A508A9] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856] [PID.4800] [MD5.7B2E3899314974CC40D93A6CD7C855C8] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [2134016] [PID.4580] [MD5.2695E3E9497BF72ABB44B5010EC5DA16] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [42184] [PID.] [MD5.ED60FFD305AC0424920D146DB9F9ED78] - (.Lavasoft Limited - Ad-Aware Service Application.) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2152152] [PID.] [MD5.E460DBC78B9162A569C6CE3B7D31216D] - (...) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe [166520] [PID.] [MD5.1355EBE184F9DAB1718BC587F8A7E05E] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376] [PID.] [MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [1150496] [PID.] [MD5.2F139207F618EC2933830227EEFFDDB4] - (.Egis Technology Inc. - MyWinLocker Service.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe [305448] [PID.] [MD5.3F6268A2EC33CD38CF75C880AF8DED42] - (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640] [PID.] [MD5.9D1A8732718438DC8C472D4D7762DE5F] - (...) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [51816] [PID.] [MD5.EFD6843C137991CD253CA959E300E886] - (.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2280312] [PID.] [MD5.70DDE3A86DBEB1D6C3C30AD687B1877A] - (.Acer - Acer Update Service.) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe [240160] [PID.] [MD5.1877C4892E23562362ADC8D5C7C5DC67] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.] ~ Scan Processes Running in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com R0 - HKUS\S-1-5-21-3524707294-705886141-4049848995-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0 ~ Scan IE Browser in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe ~ Scan Keys in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 00s ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Complitly [64Bits] - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} . (.SimplyGen - Complitly - Helps you search the web.) -- C:\Users\rammstein\AppData\Roaming\Complitly\64\Complitly64.dll O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: avast! WebRep [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\ O2 - BHO: Complitly [64Bits] - {D27FC31C-6E3D-4305-8D53-ACDAEFA5F862} . (.SimplyGen - Complitly - Helps you search the web.) -- C:\Users\rammstein\AppData\Roaming\Complitly\Complitly.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll ~ Scan BHO in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: avast! WebRep [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll ~ Scan Toolbar in 00mn 00s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe O4 - HKLM\..\Run: [mwlDaemon] . (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [PLFSetI] . (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [lxczbmgr.exe] . (.Lexmark International, Inc. - Lexmark 1200 Series Button Manager.) -- C:\Program Files (x86)\Lexmark 1200 Series\lxczbmgr.exe O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O4 - HKCU\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager.) -- C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Wow6432Node\Run: [EgisTecLiveUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [ArcadeDeluxeAgent] . (.CyberLink Corp. - Acer Arcade Deluxe Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe O4 - HKLM\..\Wow6432Node\Run: [PlayMovie] . (.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Progr.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe O4 - HKLM\..\Wow6432Node\Run: [TrayServer] . (.MAGIX AG - Trayserver.) -- C:\Program Files (x86)\MAGIX\Films_sur_DVD_7_TerraTec_Edition\TrayServer.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Wow6432Node\Run: [tsnp2std] . (.Pas de propriétaire - tsnp2std Microsoft.) -- C:\Windows\tsnp2std.exe O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-21-3524707294-705886141-4049848995-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O4 - HKUS\S-1-5-21-3524707294-705886141-4049848995-1000\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe O4 - HKUS\S-1-5-21-3524707294-705886141-4049848995-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O4 - HKUS\S-1-5-21-3524707294-705886141-4049848995-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ~ Scan Application in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\rammstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\rammstein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\rammstein\Desktop\Windows Live Messenger .lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O4 - Global Startup: C:\Users\rammstein\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk . (.Lavasoft Limited.) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-Aware.exe O4 - Global Startup: C:\Users\rammstein\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\rammstein\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\SplitCam.lnk . (.SplitCam Co..) -- C:\Program Files (x86)\SplitCam\SplitCam.exe ~ Scan Global Startup in 00mn 00s ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll ~ Scan IE Menu Contextuel in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll ~ Scan Winsock in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{757039BF-E80B-4AE8-B591-2322EC310F7A}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{96FF5214-FDAF-4CFF-8F1B-F562438772EA}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{757039BF-E80B-4AE8-B591-2322EC310F7A}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{96FF5214-FDAF-4CFF-8F1B-F562438772EA}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{757039BF-E80B-4AE8-B591-2322EC310F7A}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{96FF5214-FDAF-4CFF-8F1B-F562438772EA}: DhcpNameServer = 192.168.1.1 ~ Scan Domain in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- c:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: skype4com [64Bits] - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Windows\SysWOW64\Skype4COM.dll O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL ~ Scan Protocole Additionnel in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll ~ Scan Winlogon in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ Scan SSODL in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: BlueSoleil Hid Service (BlueSoleil Hid Service) . (...) - C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe O23 - Service: Acer ePower Service (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: Lavasoft Ad-Aware Service (Lavasoft Ad-Aware Service) . (.Lavasoft Limited - Ad-Aware Service Application.) - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: lxcz_device (lxcz_device) . (.Pas de propriétaire - Printer Communication System.) - C:\Windows\system32\lxczcoms.exe O23 - Service: MyWinLocker Service (MWLService) . (.Egis Technology Inc. - MyWinLocker Service.) - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: Start BT in service (Start BT in service) . (...) - C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe O23 - Service: TeamViewer 6 (TeamViewer6) . (.TeamViewer GmbH - TeamViewer Remote Control Application.) - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe ~ Scan Services in 00mn 00s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Ad-Aware Update (Weekly).job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [MD5.43EB27F4D4346FEBAB4C8A5A444A4C39] [APT] [Ad-Aware Update (Weekly)] (.Lavasoft Limited.) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [{0A028355-D97D-44C9-974D-C830EBEEEBBE}] (...) -- D:\setup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{112257B1-5125-4D29-849E-C63B66981390}] (...) -- C:\Program Files (x86)\Aspyr Mediaé Inc\Stubbs The Zombie - Rebel Without A Pulse\Stubbs.exe (.not file.) [MD5.235C127898A9AA40B74043E4C72DCA96] [APT] [{23A3B480-7EEA-4321-BA8C-71B98FB66017}] (...) -- C:\Users\rammstein\Documents\driver ma config.com\Setup.exe [MD5.00000000000000000000000000000000] [APT] [{349157F0-94DA-4BB0-9C5E-B99E15EEC017}] (...) -- D:\setup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{51B98466-1CFC-4364-83EC-709DD8D32FD3}] (...) -- D:\setup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{8A2A69DF-93C9-441C-AE7C-1511E7986865}] (...) -- D:\setup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{AC05CCA4-4968-493C-952B-C5F92B038C2B}] (...) -- D:\setup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{AEE6876A-BA5E-4008-A8EA-1077E37C5A44}] (...) -- D:\setup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{CE959342-40CB-4307-A9A8-EB5FEBC28622}] (...) -- D:\setup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{D4B847BC-2C3F-4512-9E49-60C6D19E8671}] (...) -- D:\setup.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{E15D866C-2CBF-44A8-8594-4D3F1A17F803}] (...) -- D:\setup.exe (.not file.) ~ Scan Scheduled Task in 00mn 04s ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\system32\DRIVERS\dtsoftbus01.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Filter Driver.) - C:\Windows\system32\DRIVERS\mwlPSDFilter.sys O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys ~ Scan Drivers in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E} O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: ASIO4ALL - (.Michael Tippach.) [HKLM] -- ASIO4ALL O42 - Logiciel: Acer Arcade Deluxe - (.CyberLink Corp..) [HKLM] -- InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761} O42 - Logiciel: Acer Arcade Deluxe - (.CyberLink Corp..) [HKLM] -- {2637C347-9DAD-11D6-9EA2-00055D0CA761} O42 - Logiciel: Acer Crystal Eye Webcam - (.Suyin Optronics Corp.) [HKLM] -- {7760D94E-B1B5-40A0-9AA0-ABF942108755} O42 - Logiciel: Acer GridVista - (.Acer Inc..) [HKLM] -- GridVista O42 - Logiciel: Acer Registration - (.Acer Incorporated.) [HKLM] -- Acer Registration O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM] -- Acer Screensaver O42 - Logiciel: Acer Updater - (.Acer Incorporated.) [HKLM] -- {EE171732-BEB4-4576-887D-CB62727F01CA} O42 - Logiciel: Acer ePower Management - (.Acer Incorporated.) [HKLM] -- {3DB0448D-AD82-4923-B305-D001E521A964} O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM] -- {7F811A54-5A09-4579-90E1-C93498E230D9} O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- Ad-Aware O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- {DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF} O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader 9.4.6 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001} O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549} O42 - Logiciel: BitTorrent - (.BitTorrent, Inc.) [HKCU] -- BitTorrent O42 - Logiciel: Bluesoleil2.7.0.35 VoIP Release 080317 - (.IVT Corporation.) [HKLM] -- {B9A17C96-1348-45CB-BB0A-1BCB3A0F854E} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 O42 - Logiciel: Complitly - (.Pas de propriétaire.) [HKLM] -- Complitly_is1 O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite O42 - Logiciel: FL Studio 10 - (.Image-Line.) [HKLM] -- FL Studio 10 O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM] -- {34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485} O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM] -- Identity Card O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8} O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} O42 - Logiciel: Internet Explorer - (.Microsoft Corporation.) [HKLM] -- {4E414048-A9DD-4F60-AA1D-018E716C88C9} O42 - Logiciel: Java(TM) 6 Update 26 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619} O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM] -- LManager O42 - Logiciel: Lexmark 1200 Series - (.Lexmark International, Inc..) [HKLM] -- Lexmark 1200 Series O42 - Logiciel: MAGIX Films sur DVD TerraTec Edition 7.0.3.8 (F) - (.MAGIX AG.) [HKLM] -- MAGIX Films sur DVD TerraTec Edition F O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM] -- MAGIX Screenshare F O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {A4EF9D8B-E19B-45ED-BFAF-CB4364574FFF} O42 - Logiciel: Messenger Plus! 5 - (.Yuna Software.) [HKLM] -- Messenger Plus! O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE}_OMUI.fr-fr_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_OMUI.fr-fr_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0100-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0101-040C-0000-0000000FF1CE}_OMUI.fr-fr_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Language Pack 2007 - French/Français - (.Microsoft Corporation.) [HKLM] -- OMUI.fr-fr O42 - Logiciel: Microsoft Office O MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0100-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_OMUI.fr-fr_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_OMUI.fr-fr_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_OMUI.fr-fr_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0017-040C-0000-0000000FF1CE}_OMUI.fr-fr_{CCDA3DD6-E33D-4D75-B7C9-FF585580CE83} O42 - Logiciel: Microsoft Office SharePoint Designer MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0017-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0409-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0116-0409-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0115-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E} O42 - Logiciel: Microsoft Office Word MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office X MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0101-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710} O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE} O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Mozilla Firefox 7.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 7.0.1 (x86 fr) O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM] -- {68301905-2DEA-41CE-A4D4-E8B443B099BA} O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403} O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC} O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM] -- {3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA} O42 - Logiciel: RAR Password Cracker - (.dnSoft Research Group.) [HKLM] -- RAR Password Cracker O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2553074) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5729F1AE-5895-468F-9165-BAD161C9E982} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2553089) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{01D4CA59-7070-4420-9BCC-0EFA7C5D76BE} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2553090) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{643C12A2-AF9A-4712-B8BE-3B7650AFE00A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2584063) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BF3F1CBD-B05C-4644-AE43-6EE0FCC227A4} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572078 O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2553073) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{65EA4836-B5A3-4C1D-8883-0C35E471003A} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663 O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870 O42 - Logiciel: SplitCam - (.SplitCam Co.) [HKLM] -- SplitCam O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey O42 - Logiciel: TeamViewer 6 - (.TeamViewer GmbH.) [HKLM] -- TeamViewer 6 O42 - Logiciel: TerraTec Grabby V5.09.0813.00 - (.Pas de propriétaire.) [HKLM] -- TerraTec Grabby O42 - Logiciel: USB2.0 PC Camera-268 - (.Pas de propriétaire.) [HKLM] -- {75438C0E-9925-412E-AD85-D0E71C6CE2ED} O42 - Logiciel: Update for 2007 Microsoft Office System (KB2284654) - (.Microsoft.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A} O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871 O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228 O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523 O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438} O42 - Logiciel: Update for Microsoft Office 2007 Help for Common Features (KB963673) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42} O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4} O42 - Logiciel: Update for Microsoft Office Excel 2007 Help (KB963678) - (.Microsoft.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9} O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF} O42 - Logiciel: Update for Microsoft Office OneNote 2007 Help (KB963670) - (.Microsoft.) [HKLM] -- {90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245} O42 - Logiciel: Update for Microsoft Office Powerpoint 2007 Help (KB963669) - (.Microsoft.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876} O42 - Logiciel: Update for Microsoft Office Script Editor Help (KB963671) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C} O42 - Logiciel: Update for Microsoft Office Word 2007 Help (KB963665) - (.Microsoft.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726} O42 - Logiciel: VLC media player 1.1.8 - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27} O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01 O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM] -- Acer Welcome Center O42 - Logiciel: WinRAR 4.00 (32 bits) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver O42 - Logiciel: WinUtilities 10.34 Free Edition - (.YL Computing, Inc.) [HKLM] -- {FC274982-5AAD-4C20-848D-4424A5043010}_is1 O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C} O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {230B83A5-7D88-4B95-B71E-F44C0C78B002} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA} O42 - Logiciel: Windows Movie Maker 2.6 - (.Microsoft Corporation.) [HKLM] -- {B3DAF54F-DB25-4586-9EF1-96D24BB14088} O42 - Logiciel: Zylom Games Player Plugin - (.Zylom Games.) [HKLM] -- Zylom Games Player Plugin O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM] -- avast O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA} ---\\ HKCU & HKLM Software Keys [HKCU\Software\AVAST Software] [HKCU\Software\Acer] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Adobe] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Macromedia] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\ShoppingReport2] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Canneverbe Limited] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Complitly] [HKCU\Software\Crenetic GmbH Studios] [HKCU\Software\CyberLink] [HKCU\Software\DT Soft] [HKCU\Software\DownloadManager] [HKCU\Software\GNU] [HKCU\Software\Google]

Suite du même rapport :

Code: Tout sélectionner: [HKCU\Software\HookNetwork] [HKCU\Software\IM Providers] [HKCU\Software\Image-Line] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Lavasoft] [HKCU\Software\LexmarkPhoto] [HKCU\Software\Lexmark] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\MAGIX AG] [HKCU\Software\Macromedia] [HKCU\Software\Macrovision] [HKCU\Software\Magix] [HKCU\Software\Micro Application] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\NewTech Infosystems] [HKCU\Software\Northcode Inc] [HKCU\Software\ODBC] [HKCU\Software\OEM] [HKCU\Software\OfferBox] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\RAR Password Cracker] [HKCU\Software\Realtek] [HKCU\Software\SMTTB2009] [HKCU\Software\SoftVoice] [HKCU\Software\Softonic] [HKCU\Software\Somoto Toolbar] [HKCU\Software\Sonix] [HKCU\Software\SplitCam] [HKCU\Software\Synaptics] [HKCU\Software\TeamViewer] [HKCU\Software\Telltale Games] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Yuna Software] [HKCU\Software\Zylom] [HKCU\Software\cybelsoft] [HKCU\Software\eSobi] [HKCU\Software\gamescafe.com] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ASIO] [HKLM\Software\ATI Technologies] [HKLM\Software\AVAST Software] [HKLM\Software\Acer Incorporated] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\America Online] [HKLM\Software\AppDataLow] [HKLM\Software\Atheros Communications Inc.] [HKLM\Software\BrowserChoice] [HKLM\Software\Canneverbe Limited] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Compal] [HKLM\Software\Crenetic GmbH Studios] [HKLM\Software\CyberLink] [HKLM\Software\DT Soft] [HKLM\Software\Digital River] [HKLM\Software\EgisTec Egis Software Update] [HKLM\Software\EgisTec] [HKLM\Software\GNU] [HKLM\Software\GameInstaller] [HKLM\Software\Google] [HKLM\Software\IVT Corporation] [HKLM\Software\Image-Line] [HKLM\Software\InstalledOptions] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Lavasoft] [HKLM\Software\LexmarkInkjet] [HKLM\Software\Lexmark] [HKLM\Software\Macromedia] [HKLM\Software\Magix] [HKLM\Software\McAfeeInstaller] [HKLM\Software\McAfee] [HKLM\Software\MimarSinan] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NewTech Infosystems] [HKLM\Software\ODBC] [HKLM\Software\OEM] [HKLM\Software\OemSetup] [HKLM\Software\Outsim] [HKLM\Software\Piriform] [HKLM\Software\PoINT] [HKLM\Software\Policies] [HKLM\Software\Propellerhead Software] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SONIX] [HKLM\Software\SRS Labs] [HKLM\Software\SiteAdvisor] [HKLM\Software\SoftVoice] [HKLM\Software\Sonic] [HKLM\Software\Suyin Optronics Corp] [HKLM\Software\Synaptics] [HKLM\Software\TeamViewer] [HKLM\Software\TerraTec Electronic GmbH] [HKLM\Software\Trymedia Systems] [HKLM\Software\USB2800] [HKLM\Software\VST] [HKLM\Software\VideoLAN] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Windows] [HKLM\Software\Wow6432Node] [HKLM\Software\Yuna Software] [HKLM\Software\cybelsoft] [HKLM\Software\mozilla.org] [HKLM\Software\nSplitter] ~ Scan Softwares in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 29/10/2009 - 12:42:42 - [23342825] ----D- C:\Program Files\Acer O43 - CFD: 02/04/2011 - 19:34:42 - [246041] ----D- C:\Program Files\Acer Accessory Store O43 - CFD: 02/04/2011 - 22:06:58 - [183291413] ----D- C:\Program Files\AVAST Software O43 - CFD: 07/10/2011 - 18:10:46 - [8653056] ----D- C:\Program Files\CCleaner O43 - CFD: 11/07/2011 - 16:31:22 - [17908506] ----D- C:\Program Files\CDBurnerXP O43 - CFD: 02/04/2011 - 21:53:18 - [79066175] ----D- C:\Program Files\Common Files O43 - CFD: 13/04/2011 - 12:22:02 - [90256916] ----D- C:\Program Files\DVD Maker O43 - CFD: 02/04/2011 - 19:34:14 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 25/09/2011 - 15:45:36 - [0] ----D- C:\Program Files\Google O43 - CFD: 14/10/2011 - 08:06:48 - [6888176] ----D- C:\Program Files\Internet Explorer O43 - CFD: 18/07/2011 - 09:26:18 - [34595723] ----D- C:\Program Files\Lexmark 1200 Series O43 - CFD: 14/07/2009 - 09:45:56 - [148931122] ----D- C:\Program Files\Microsoft Games O43 - CFD: 29/10/2009 - 12:32:12 - [1141694] ----D- C:\Program Files\Microsoft Office O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 29/10/2009 - 12:15:34 - [12165280] ----D- C:\Program Files\Realtek O43 - CFD: 14/07/2009 - 07:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 02/04/2011 - 19:55:48 - [28978855] ----D- C:\Program Files\Synaptics O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 13/04/2011 - 12:22:02 - [4039680] ----D- C:\Program Files\Windows Defender O43 - CFD: 13/04/2011 - 12:22:02 - [9224824] ----D- C:\Program Files\Windows Journal O43 - CFD: 13/04/2011 - 12:22:02 - [6667776] ----D- C:\Program Files\Windows Mail O43 - CFD: 13/04/2011 - 12:22:02 - [7687085] ----D- C:\Program Files\Windows Media Player O43 - CFD: 02/04/2011 - 19:34:14 - [12627636] ----D- C:\Program Files\Windows NT O43 - CFD: 13/04/2011 - 12:22:02 - [5516056] ----D- C:\Program Files\Windows Photo Viewer O43 - CFD: 13/04/2011 - 12:22:02 - [244736] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 13/04/2011 - 12:22:02 - [8503337] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 27/09/2011 - 03:01:28 - [66260414] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 03/04/2011 - 05:14:00 - [12194291] ----D- C:\Program Files\Common Files\System O43 - CFD: 29/10/2009 - 12:39:40 - [1256626] ----D- C:\ProgramData\Acer O43 - CFD: 09/05/2011 - 18:05:14 - [767] ----D- C:\ProgramData\Adobe O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 02/04/2011 - 22:06:58 - [10878661] ----D- C:\ProgramData\AVAST Software O43 - CFD: 05/04/2011 - 17:39:26 - [14342] ----D- C:\ProgramData\Bluetooth O43 - CFD: 02/04/2011 - 19:34:14 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 25/04/2011 - 13:14:32 - [0] ----D- C:\ProgramData\Canneverbe Limited O43 - CFD: 16/05/2011 - 17:26:20 - [98357] ----D- C:\ProgramData\CyberLink O43 - CFD: 11/04/2011 - 13:59:12 - [1284] ----D- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 29/10/2009 - 13:05:08 - [0] ----D- C:\ProgramData\EgisTec O43 - CFD: 29/10/2009 - 13:03:04 - [420] ----D- C:\ProgramData\eSobi O43 - CFD: 02/04/2011 - 19:34:14 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 25/09/2011 - 13:34:38 - [1032992] ----D- C:\ProgramData\Google O43 - CFD: 25/09/2011 - 22:05:50 - [369371685] ----D- C:\ProgramData\Lavasoft O43 - CFD: 10/09/2011 - 15:57:18 - [1247202] ----D- C:\ProgramData\ma-config.com O43 - CFD: 12/04/2011 - 10:09:32 - [57381960] ----D- C:\ProgramData\MAGIX O43 - CFD: 03/04/2011 - 13:06:18 - [5114] ----D- C:\ProgramData\McAfee O43 - CFD: 02/04/2011 - 19:55:00 - [289] ----D- C:\ProgramData\McQcModifier-5c47-a7b0 O43 - CFD: 02/04/2011 - 19:34:14 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 11/04/2011 - 19:27:42 - [46317] ----D- C:\ProgramData\Messenger Plus! O43 - CFD: 25/09/2011 - 13:31:58 - [215237013] -S--D- C:\ProgramData\Microsoft O43 - CFD: 17/09/2011 - 08:47:32 - [122008] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 02/04/2011 - 19:34:14 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 02/04/2011 - 19:34:40 - [6500] ----D- C:\ProgramData\OEM O43 - CFD: 23/04/2011 - 23:44:00 - [1311] ----D- C:\ProgramData\Partner O43 - CFD: 29/10/2009 - 12:55:04 - [36] ----D- C:\ProgramData\SiteAdvisor O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 12/04/2011 - 18:50:30 - [154] ----D- C:\ProgramData\Sun O43 - CFD: 29/10/2009 - 13:00:38 - [90183] ----D- C:\ProgramData\Temp O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 21/06/2011 - 14:57:04 - [0] ----D- C:\ProgramData\TorrentEasy O43 - CFD: 11/05/2011 - 14:23:56 - [1571845] ----D- C:\ProgramData\Trymedia O43 - CFD: 01/05/2011 - 10:10:52 - [4862730] ----D- C:\ProgramData\Zylom O43 - CFD: 25/09/2011 - 22:03:24 - [27048574] --H-D- C:\ProgramData\{589802B2-1BF3-4609-9ADE-CF6E6608D06D} O43 - CFD: 23/07/2011 - 16:32:06 - [0] -SH-D- C:\Users\rammstein\AppData\Roaming\.# O43 - CFD: 04/04/2011 - 15:15:10 - [5562206] ----D- C:\Users\rammstein\AppData\Roaming\Adobe O43 - CFD: 14/10/2011 - 08:25:22 - [2246264] ----D- C:\Users\rammstein\AppData\Roaming\BitTorrent O43 - CFD: 25/04/2011 - 13:14:32 - [1604] ----D- C:\Users\rammstein\AppData\Roaming\Canneverbe Limited O43 - CFD: 07/09/2011 - 12:22:26 - [489440] ----D- C:\Users\rammstein\AppData\Roaming\Complitly O43 - CFD: 16/05/2011 - 17:26:18 - [0] ----D- C:\Users\rammstein\AppData\Roaming\CyberLink O43 - CFD: 07/10/2011 - 18:11:30 - [0] ----D- C:\Users\rammstein\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 02/10/2011 - 18:47:56 - [16384] ----D- C:\Users\rammstein\AppData\Roaming\DMCache O43 - CFD: 02/04/2011 - 21:57:18 - [17714] ----D- C:\Users\rammstein\AppData\Roaming\GameConsole O43 - CFD: 05/05/2011 - 16:46:12 - [3739] ----D- C:\Users\rammstein\AppData\Roaming\GamesCafe O43 - CFD: 14/04/2011 - 13:37:18 - [0] ----D- C:\Users\rammstein\AppData\Roaming\GetRightToGo O43 - CFD: 02/04/2011 - 22:04:30 - [0] ----D- C:\Users\rammstein\AppData\Roaming\Google O43 - CFD: 02/04/2011 - 19:54:28 - [0] ----D- C:\Users\rammstein\AppData\Roaming\Identities O43 - CFD: 02/10/2011 - 18:49:18 - [724192368] ----D- C:\Users\rammstein\AppData\Roaming\IDM O43 - CFD: 11/05/2011 - 14:24:36 - [7338] ----D- C:\Users\rammstein\AppData\Roaming\iMaxGen O43 - CFD: 02/04/2011 - 19:56:18 - [0] ----D- C:\Users\rammstein\AppData\Roaming\InstallShield O43 - CFD: 14/05/2011 - 14:37:36 - [0] ----D- C:\Users\rammstein\AppData\Roaming\Intel Corporation O43 - CFD: 13/06/2011 - 15:08:04 - [8513196] ----D- C:\Users\rammstein\AppData\Roaming\JoyBits O43 - CFD: 02/04/2011 - 19:54:58 - [540] ----D- C:\Users\rammstein\AppData\Roaming\Macromedia O43 - CFD: 12/04/2011 - 10:10:16 - [15697] ----D- C:\Users\rammstein\AppData\Roaming\MAGIX O43 - CFD: 14/07/2009 - 09:44:40 - [0] ----D- C:\Users\rammstein\AppData\Roaming\Media Center Programs O43 - CFD: 08/09/2011 - 13:48:16 - [2105636] -S--D- C:\Users\rammstein\AppData\Roaming\Microsoft O43 - CFD: 14/10/2011 - 19:24:10 - [13861698] ----D- C:\Users\rammstein\AppData\Roaming\Mozilla O43 - CFD: 16/05/2011 - 17:26:24 - [8421] ----D- C:\Users\rammstein\AppData\Roaming\PowerCinema O43 - CFD: 12/05/2011 - 10:50:28 - [7097] ----D- C:\Users\rammstein\AppData\Roaming\SpinTop Games O43 - CFD: 26/05/2011 - 17:12:10 - [470] ----D- C:\Users\rammstein\AppData\Roaming\TeamViewer O43 - CFD: 14/07/2011 - 18:55:04 - [3176770] ----D- C:\Users\rammstein\AppData\Roaming\The Games Company O43 - CFD: 29/06/2011 - 12:09:48 - [3662902] ----D- C:\Users\rammstein\AppData\Roaming\vlc O43 - CFD: 02/04/2011 - 22:42:44 - [12] ----D- C:\Users\rammstein\AppData\Roaming\WinRAR O43 - CFD: 04/04/2011 - 15:15:32 - [530704] ----D- C:\Users\rammstein\AppData\Local\Adobe O43 - CFD: 02/04/2011 - 19:34:20 - [0] -SH-D- C:\Users\rammstein\AppData\Local\Application Data O43 - CFD: 11/04/2011 - 14:10:08 - [0] ----D- C:\Users\rammstein\AppData\Local\CrashRpt O43 - CFD: 02/04/2011 - 19:55:00 - [184] ----D- C:\Users\rammstein\AppData\Local\EgisTec O43 - CFD: 09/10/2011 - 18:19:32 - [0] ----D- C:\Users\rammstein\AppData\Local\ElevatedDiagnostics O43 - CFD: 25/09/2011 - 13:34:38 - [50849764] ----D- C:\Users\rammstein\AppData\Local\Google O43 - CFD: 02/04/2011 - 19:34:20 - [0] -SH-D- C:\Users\rammstein\AppData\Local\Historique O43 - CFD: 23/04/2011 - 15:32:04 - [11778] ----D- C:\Users\rammstein\AppData\Local\LearnPulse O43 - CFD: 24/04/2011 - 12:35:48 - [979732558] ----D- C:\Users\rammstein\AppData\Local\Microsoft O43 - CFD: 22/04/2011 - 12:11:02 - [1025706] ----D- C:\Users\rammstein\AppData\Local\Microsoft Games O43 - CFD: 02/04/2011 - 20:01:52 - [0] ----D- C:\Users\rammstein\AppData\Local\Microsoft Help O43 - CFD: 05/04/2011 - 09:06:18 - [8424431] ----D- C:\Users\rammstein\AppData\Local\Mozilla O43 - CFD: 16/05/2011 - 17:26:06 - [517120] ----D- C:\Users\rammstein\AppData\Local\PowerCinema O43 - CFD: 25/09/2011 - 22:03:44 - [0] ----D- C:\Users\rammstein\AppData\Local\Sunbelt Software O43 - CFD: 14/10/2011 - 19:30:10 - [4670596] ----D- C:\Users\rammstein\AppData\Local\Temp O43 - CFD: 17/09/2011 - 16:57:02 - [197632] ----D- C:\Users\rammstein\AppData\Local\TempDIR O43 - CFD: 02/04/2011 - 19:34:20 - [0] -SH-D- C:\Users\rammstein\AppData\Local\Temporary Internet Files O43 - CFD: 11/04/2011 - 14:12:14 - [1655889] ----D- C:\Users\rammstein\AppData\Local\Trapped Dead O43 - CFD: 13/04/2011 - 23:18:36 - [4886048] ----D- C:\Users\rammstein\AppData\Local\VirtualStore O43 - CFD: 03/04/2011 - 11:15:04 - [0] ----D- C:\Users\rammstein\AppData\Local\Windows Live O43 - CFD: 07/09/2011 - 11:17:00 - [0] ----D- C:\Users\rammstein\AppData\Local\WMTools Downloaded Files O43 - CFD: 29/10/2009 - 13:08:02 - [35263005] ----D- C:\Program Files (x86)\Acer O43 - CFD: 02/04/2011 - 20:14:16 - [159900354] ----D- C:\Program Files (x86)\Acer Arcade Deluxe O43 - CFD: 29/10/2009 - 13:05:10 - [4589227] ----D- C:\Program Files (x86)\Acer Inc O43 - CFD: 29/10/2009 - 13:00:36 - [688609951] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 19/07/2011 - 15:22:50 - [532817] ----D- C:\Program Files (x86)\ASIO4ALL v2 O43 - CFD: 04/04/2011 - 20:08:24 - [491320] ----D- C:\Program Files (x86)\BitTorrent O43 - CFD: 10/10/2011 - 15:56:00 - [864161986] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 07/09/2011 - 12:22:26 - [784803] ----D- C:\Program Files (x86)\Complitly O43 - CFD: 02/04/2011 - 20:12:46 - [66856] ----D- C:\Program Files (x86)\Cyberlink O43 - CFD: 11/04/2011 - 13:59:56 - [17468238] ----D- C:\Program Files (x86)\DAEMON Tools Lite O43 - CFD: 29/10/2009 - 12:44:16 - [46701177] ----D- C:\Program Files (x86)\EgisTec O43 - CFD: 29/10/2009 - 12:44:22 - [1683158] ----D- C:\Program Files (x86)\EgisTec Egis Software Update O43 - CFD: 25/09/2011 - 13:34:04 - [0] ----D- C:\Program Files (x86)\Elaborate Bytes O43 - CFD: 29/10/2009 - 13:02:58 - [21920374] ----D- C:\Program Files (x86)\eSobi O43 - CFD: 15/04/2011 - 09:58:24 - [670] ----D- C:\Program Files (x86)\Feneris O43 - CFD: 25/09/2011 - 15:45:36 - [5155472] ----D- C:\Program Files (x86)\Google O43 - CFD: 19/07/2011 - 15:22:36 - [557815862] ----D- C:\Program Files (x86)\Image-Line O43 - CFD: 22/05/2011 - 13:00:42 - [94150194] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 14/05/2011 - 14:34:22 - [25555264] ----D- C:\Program Files (x86)\Intel O43 - CFD: 02/10/2011 - 18:49:18 - [16588] ----D- C:\Program Files (x86)\Internet Download Manager O43 - CFD: 14/10/2011 - 08:06:48 - [32856888] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 05/04/2011 - 17:34:44 - [11243273] ----D- C:\Program Files (x86)\IVT Corporation O43 - CFD: 27/06/2011 - 14:28:10 - [88550929] ----D- C:\Program Files (x86)\Java O43 - CFD: 29/10/2009 - 12:08:28 - [5189373] ----D- C:\Program Files (x86)\Launch Manager O43 - CFD: 25/09/2011 - 22:03:20 - [101832865] ----D- C:\Program Files (x86)\Lavasoft O43 - CFD: 18/07/2011 - 09:27:18 - [51408273] ----D- C:\Program Files (x86)\Lexmark 1200 Series O43 - CFD: 10/09/2011 - 15:57:18 - [6511189] ----D- C:\Program Files (x86)\ma-config.com O43 - CFD: 12/04/2011 - 10:09:28 - [305753353] ----D- C:\Program Files (x86)\MAGIX O43 - CFD: 25/09/2011 - 13:31:58 - [0] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 07/10/2011 - 19:27:54 - [587766508] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 29/10/2009 - 12:36:54 - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 14/10/2011 - 08:06:38 - [38412395] ----D- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 02/04/2011 - 20:02:26 - [657681] ----D- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 03/04/2011 - 11:08:58 - [145421942] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 06/04/2011 - 03:01:18 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 04/04/2011 - 15:52:48 - [9336778] ----D- C:\Program Files (x86)\Movie Maker 2.6 O43 - CFD: 14/10/2011 - 19:23:58 - [35783638] ----D- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 04/04/2011 - 03:01:32 - [0] ----D- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 29/10/2009 - 12:58:00 - [1204435473] ----D- C:\Program Files (x86)\NewTech Infosystems O43 - CFD: 11/04/2011 - 14:09:28 - [82645511] ----D- C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 19/07/2011 - 15:22:26 - [3620877] ----D- C:\Program Files (x86)\Outsim O43 - CFD: 17/09/2011 - 16:57:02 - [228384] ----D- C:\Program Files (x86)\RAR Password Cracker O43 - CFD: 13/06/2011 - 15:12:02 - [3176816] ----D- C:\Program Files (x86)\RealArcade O43 - CFD: 02/04/2011 - 19:24:16 - [8439648] ----D- C:\Program Files (x86)\Realtek O43 - CFD: 14/07/2009 - 07:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 14/04/2011 - 11:45:44 - [3926711610] ----D- C:\Program Files (x86)\SAW O43 - CFD: 07/09/2011 - 12:22:56 - [175776713] ----D- C:\Program Files (x86)\SplitCam O43 - CFD: 26/05/2011 - 16:34:24 - [24111757] ----D- C:\Program Files (x86)\TeamViewer O43 - CFD: 25/07/2011 - 08:56:16 - [0] ----D- C:\Program Files (x86)\Telltale Games O43 - CFD: 02/04/2011 - 19:24:16 - [0] --H-D- C:\Program Files (x86)\Temp O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 03/04/2011 - 21:31:50 - [84208705] ----D- C:\Program Files (x86)\VideoLAN O43 - CFD: 19/07/2011 - 15:22:38 - [1867776] ----D- C:\Program Files (x86)\VstPlugins O43 - CFD: 03/04/2011 - 05:14:00 - [524800] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 13/04/2011 - 12:06:28 - [147852588] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 13/04/2011 - 12:22:08 - [6181376] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 13/04/2011 - 12:22:08 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 14/07/2009 - 07:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 13/04/2011 - 12:22:06 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 13/04/2011 - 12:22:08 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 13/04/2011 - 12:22:08 - [5994626] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 02/04/2011 - 22:42:24 - [4055847] ----D- C:\Program Files (x86)\WinRAR O43 - CFD: 25/09/2011 - 19:32:06 - [22824722] ----D- C:\Program Files (x86)\WinUtilities O43 - CFD: 02/04/2011 - 23:14:46 - [17920500] ----D- C:\Program Files (x86)\Yuna Software O43 - CFD: 14/10/2011 - 19:31:02 - [5436305] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 11/05/2011 - 18:16:36 - [510480] ----D- C:\Program Files (x86)\Zylom Games O43 - CFD: 09/05/2011 - 18:02:50 - [16431071] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 29/10/2009 - 13:00:04 - [31787256] ----D- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 29/10/2009 - 12:33:12 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 29/10/2009 - 12:44:22 - [101672] ----D- C:\Program Files (x86)\Common Files\EgisTec O43 - CFD: 29/10/2009 - 13:02:10 - [4774918] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 14/05/2011 - 14:39:42 - [8477] ----D- C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 27/06/2011 - 14:28:30 - [1258951] ----D- C:\Program Files (x86)\Common Files\Java O43 - CFD: 12/04/2011 - 10:09:58 - [12578018] ----D- C:\Program Files (x86)\Common Files\MAGIX Services O43 - CFD: 12/04/2011 - 10:09:20 - [7192] ----D- C:\Program Files (x86)\Common Files\MAGIX Shared O43 - CFD: 03/04/2011 - 11:16:24 - [272007804] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 29/10/2009 - 12:20:56 - [354896] ----D- C:\Program Files (x86)\Common Files\Oberon Media O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 22/05/2011 - 13:00:50 - [22733742] ----D- C:\Program Files (x86)\Common Files\snp2std O43 - CFD: 14/07/2009 - 05:20:10 - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 23/07/2011 - 16:31:52 - [0] ----D- C:\Program Files (x86)\Common Files\SWF Studio O43 - CFD: 03/04/2011 - 11:08:08 - [44924023] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 12/04/2011 - 10:05:08 - [2249833] ----D- C:\Program Files (x86)\Common Files\TerraTec O43 - CFD: 02/04/2011 - 19:57:20 - [386538556] ----D- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 11/04/2011 - 14:08:58 - [27013632] ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard ~ Scan Program Folder in 00mn 25s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.176C5E297D2885E4F0EF36C64C213C93] - 14/10/2011 - 18:20:18 ---A- . (...) -- C:\Windows\WindowsUpdate.log [6349] O44 - LFC:[MD5.F738133AF24EF36BED89BD5C1600A658] - 14/10/2011 - 18:16:07 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.C2D9815A55A8CE9FB415FEDCC0AE9B6F] - 14/10/2011 - 07:07:29 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [369032] O44 - LFC:[MD5.C2D9815A55A8CE9FB415FEDCC0AE9B6F] - 14/10/2011 - 07:07:29 RSHAD . (...) -- C:\Windows\system32\FNTCACHE.DAT [369032] O44 - LFC:[MD5.6ED548E03CD27C14CD79E1C808BBE9A5] - 13/10/2011 - 22:18:33 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1571554] O44 - LFC:[MD5.41BCD3857E74AE3FF2E02F42FB828DDA] - 13/10/2011 - 22:18:33 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106388] O44 - LFC:[MD5.E09E5D3B1C5638C5776F444447E273A3] - 13/10/2011 - 22:18:33 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130754] O44 - LFC:[MD5.33BF026F31745262A930366159A5DA15] - 13/10/2011 - 22:18:33 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616008] O44 - LFC:[MD5.BC64A7A6018857A906BE5F253E8B4C1F] - 13/10/2011 - 22:18:33 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704480] O44 - LFC:[MD5.6ED548E03CD27C14CD79E1C808BBE9A5] - 13/10/2011 - 22:18:33 RSHAD . (...) -- C:\Windows\system32\PerfStringBackup.INI [1571554] O44 - LFC:[MD5.41BCD3857E74AE3FF2E02F42FB828DDA] - 13/10/2011 - 22:18:33 RSHAD . (...) -- C:\Windows\system32\perfc009.dat [106388] O44 - LFC:[MD5.E09E5D3B1C5638C5776F444447E273A3] - 13/10/2011 - 22:18:33 RSHAD . (...) -- C:\Windows\system32\perfc00C.dat [130754] O44 - LFC:[MD5.33BF026F31745262A930366159A5DA15] - 13/10/2011 - 22:18:33 RSHAD . (...) -- C:\Windows\system32\perfh009.dat [616008] O44 - LFC:[MD5.BC64A7A6018857A906BE5F253E8B4C1F] - 13/10/2011 - 22:18:33 RSHAD . (...) -- C:\Windows\system32\perfh00C.dat [704480] O44 - LFC:[MD5.9FDBAC3B97A6BE2183B337DA2C9CDC1F] - 13/10/2011 - 16:34:39 ---A- . (...) -- C:\Windows\Lexstat.ini [366] O44 - LFC:[MD5.FD833BEE2FD9BEFDC0AFD1941A306D9E] - 25/09/2011 - 21:10:25 RSHAD . (.Sunbelt Software - 64-bit Anti-Rootkit Engine.) -- C:\Windows\system32\drivers\SBREDrv.sys [55384] O44 - LFC:[MD5.3C46290F7A5D45BA6EF32C248E22AA69] - 25/09/2011 - 21:05:49 RSHAD . (.Lavasoft AB - Boot Driver.) -- C:\Windows\system32\drivers\Lbd.sys [69152] O44 - LFC:[MD5.37F02373D7A4D99205A555960629E16A] - 11/11/2010 - 03:58:54 ---A- . (...) -- C:\Windows\obn.exe [177832] ~ Scan Files in 00mn 34s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys ~ Scan CSB in 00mn 00s ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ Scan Keys in 00mn 00s ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ~ Scan Keys in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 10/06/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088] O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536] O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864] O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 RSHAD . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440] O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 27/04/2011 - 07:41:12 RSHAD . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904] O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 10/06/2009 - 02:52:20 RSHAD . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128] O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 27/04/2011 - 07:41:12 RSHAD . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008] O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632] O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856] O58 - SDL:[MD5.F810E3EA3D1F3C3BA26F2F4719BDCA4F] - 02/04/2011 - 14:54:58 RSHAD . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [22360] O58 - SDL:[MD5.3687FD9CEDF56D3B9F18923F4E14F3F9] - 02/04/2011 - 14:55:05 RSHAD . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [64344] O58 - SDL:[MD5.E99E48596B35E5D5240104BCD61B3471] - 02/04/2011 - 14:55:13 RSHAD . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [31064] O58 - SDL:[MD5.84AD8FB3FD2EFA52D8599A0028BBB6FE] - 02/04/2011 - 14:57:01 RSHAD . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [505176] O58 - SDL:[MD5.8CBA6CC5DCA9E3829F1792BF98F06901] - 02/04/2011 - 14:57:04 RSHAD . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [280408] O58 - SDL:[MD5.184248F2DED7B1641C7F3B30381BAA2A] - 02/04/2011 - 14:55:53 RSHAD . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [53592] O58 - SDL:[MD5.00100A6ED467B6ECB96DCC0F259FD633] - 03/04/2011 - 13:57:46 RSHAD . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1602048] O58 - SDL:[MD5.FD26347F4B0E2A2288CABFE76DE826CD] - 03/04/2011 - 15:11:44 RSHAD . (.Atheros Communications, Inc. - Driver for Atheros Wireless Network Adapter.) -- C:\Windows\system32\drivers\athwx.sys [2118176] O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848] O58 - SDL:[MD5.B44879610F2DC4A046B14BEFA3AE72DE] - 29/10/2009 - 10:18:16 RSHAD . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL664.SYS [2978296] O58 - SDL:[MD5.DAA72C9154459E613EED88502624C340] - 05/04/2011 - 20:56:36 ---A- . (.IVT Corporation. - Bluelet Audio Driver.) -- C:\Windows\system32\drivers\blueletaudio.sys [37896] O58 - SDL:[MD5.8AF05BCB15D846E1E8B34AF0635879C9] - 05/04/2011 - 20:56:42 ---A- . (.IVT Corporation. - Bluelet Audio Driver.) -- C:\Windows\system32\drivers\BlueletSCOAudio.sys [37384] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 14/07/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 14/07/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 RSHAD . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.7C5893EA5AA483E051B8311BDB36E19A] - 05/04/2011 - 20:56:56 ---A- . (.IVT Corporation. - Bluetooth USB Device Driver.) -- C:\Windows\system32\drivers\btcusb.sys [47368] O58 - SDL:[MD5.8FA060B557C7DE309D2D5C16C3DA2EF6] - 05/04/2011 - 19:42:54 ---A- . (.IVT Corporation. - Bluetooth HID Manager Device Driver.) -- C:\Windows\system32\drivers\BTHidMgr.sys [49680] O58 - SDL:[MD5.0F890E854FCBE98F4574ACC6423FCCEF] - 05/04/2011 - 19:47:08 ---A- . (.IVT Corporation. - Bluetooth PAN Network Adapter Driver.) -- C:\Windows\system32\drivers\BtNetDrv.sys [25360] O58 - SDL:[MD5.0262A199D98C2405C90F3188C5A54C6A] - 05/04/2011 - 14:29:22 ---A- . (...) -- C:\Windows\system32\drivers\BTNetFilter.sys [32832] O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480] O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 RSHAD . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488] O58 - SDL:[MD5.FB9BEF3401EE5ECC2603311B9C64F44A] - 11/04/2011 - 12:59:55 RSHAD . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\system32\drivers\dtsoftbus01.sys [254528] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 10/06/2009 - 02:47:48 RSHAD . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496] O58 - SDL:[MD5.0BBFC1322410636EA3E1A0FEBE4310CD] - 12/04/2011 - 10:44:34 RSHAD . (.eMPIA Technology, Inc. - USB EMP Audio Device.) -- C:\Windows\system32\drivers\emAudio64.sys [40512] O58 - SDL:[MD5.DEF4E6493A890BFF3C65A5F922D2ACDE] - 12/04/2011 - 10:44:34 RSHAD . (.eMPIA Technology, Inc. - USB 28xx BDA Driver.) -- C:\Windows\system32\drivers\emBDA64.sys [655424] O58 - SDL:[MD5.30774155432F9047AA6959CD334BAE63] - 12/04/2011 - 10:44:34 RSHAD . (.eMPIA Technology, Inc. - USB 28xx BDA Lower filter.) -- C:\Windows\system32\drivers\emOEM64.sys [624448] O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 14/07/2009 - 21:31:59 RSHAD . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 13/04/2011 - 14:33:35 RSHAD . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720] O58 - SDL:[MD5.26CF4275034214ECEDD8EC17B0A18A99] - 14/05/2011 - 10:07:36 RSHAD . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [557848] O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 27/04/2011 - 07:41:26 RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496] O58 - SDL:[MD5.2D18C9E1F23970DE32D78D3B1CDDA0A7] - 02/09/2009 - 17:54:20 RSHAD . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [7369728] O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 13/07/2009 - 02:48:04 RSHAD . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112] O58 - SDL:[MD5.0E154DA6CA9105354A07D0C576804037] - 02/04/2011 - 14:24:43 RSHAD . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controller.) -- C:\Windows\system32\drivers\L1C62x64.sys [76912] O58 - SDL:[MD5.3C46290F7A5D45BA6EF32C248E22AA69] - 25/09/2011 - 09:50:19 RSHAD . (.Lavasoft AB - Boot Driver.) -- C:\Windows\system32\drivers\Lbd.sys [69152] O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752] O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560] O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600] O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776] O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 10/06/2009 - 02:48:04 RSHAD . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392] O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736] O58 - SDL:[MD5.6FFECC25B39DC7652A0CEC0ADA9DB589] - 29/10/2009 - 12:15:30 RSHAD . (.Egis Technology Inc. - PSD Filter Driver.) -- C:\Windows\system32\drivers\mwlPSDFilter.sys [22576] O58 - SDL:[MD5.0BEFE32CA56D6EE89D58175725596A85] - 29/10/2009 - 12:15:30 RSHAD . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\mwlPSDNserv.sys [20016] O58 - SDL:[MD5.D43BC633B8660463E446E28E14A51262] - 29/10/2009 - 12:15:30 RSHAD . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\mwlPSDVDisk.sys [60464] O58 - SDL:[MD5.64428DFDAF6E88366CB51F45A79C5F69] - 10/06/2009 - 21:35:28 RSHAD . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\netw5v64.sys [5434368] O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 13/07/2009 - 02:48:26 RSHAD . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264] O58 - SDL:[MD5.64DDD0DEE976302F4BD93E5EFCC2F013] - 29/10/2009 - 09:46:08 RSHAD . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [18432] O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 27/04/2011 - 07:41:34 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352] O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 27/04/2011 - 07:41:34 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272] O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 10/06/2009 - 02:45:46 RSHAD . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816] O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 13/07/2009 - 02:45:45 RSHAD . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592] O58 - SDL:[MD5.BAEFEE35D27A5440D35092CE10267BEC] - 10/06/2009 - 21:35:42 RSHAD . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys [187392] O58 - SDL:[MD5.0C3CF4B3BAE28E121A1689E3538F8712] - 29/10/2009 - 14:00:14 RSHAD . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [1966624] O58 - SDL:[MD5.DB30AA4DAA0D492FA5D7717D8181FFA1] - 29/10/2009 - 02:58:08 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys [225280] O58 - SDL:[MD5.FD833BEE2FD9BEFDC0AFD1941A306D9E] - 25/09/2011 - 21:10:25 RSHAD . (.Sunbelt Software - 64-bit Anti-Rootkit Engine.) -- C:\Windows\system32\drivers\SBREDrv.sys [55384] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 14/07/2009 - 21:37:19 RSHAD . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 10/06/2009 - 02:45:45 RSHAD . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584] O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 13/07/2009 - 02:45:46 RSHAD . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 13/07/2009 - 02:45:55 RSHAD . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656] O58 - SDL:[MD5.BCF305959B53B200CEB2AD25AD22F8A7] - 29/10/2009 - 13:12:32 RSHAD . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [272432] O58 - SDL:[MD5.2E22C1FD397A5A9FFEF55E9D1FC96C00] - 29/10/2009 - 09:46:08 RSHAD . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16896] O58 - SDL:[MD5.E49A371185D5E79C103765DA93856EE1] - 05/04/2011 - 19:41:34 ---A- . (.IVT Corporation. - Bluetooth HID Enumerator Driver.) -- C:\Windows\system32\drivers\VBTEnum.sys [24976] O58 - SDL:[MD5.B9B0A0B9232A51BBDE9F28CA41716D61] - 05/04/2011 - 19:38:20 ---A- . (.IVT Corporation. - Bluetooth Serial Port Driver.) -- C:\Windows\system32\drivers\VComm.sys [47120] O58 - SDL:[MD5.F1B2D9AC422F8B72BF417C8D77C85A3B] - 05/04/2011 - 19:39:28 ---A- . (.IVT Corporation. - Bluetooth VcommMgr Driver.) -- C:\Windows\system32\drivers\VcommMgr.sys [63248] O58 - SDL:[MD5.6E6FD2FBF204A36E4C85B123C1C32372] - 05/04/2011 - 19:44:00 ---A- . (.IVT Corporation. - Bluetooth HID Mini driver.) -- C:\Windows\system32\drivers\VHIDMini.sys [23184] O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 RSHAD . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488] O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 10/06/2009 - 02:45:55 RSHAD . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872] O58 - SDL:[MD5.DAA72C9154459E613EED88502624C340] - 05/04/2011 - 20:56:36 ---A- . (.IVT Corporation. - Bluelet Audio Driver.) -- C:\Windows\SysWOW64\drivers\blueletaudio.sys [37896] O58 - SDL:[MD5.8AF05BCB15D846E1E8B34AF0635879C9] - 05/04/2011 - 20:56:42 ---A- . (.IVT Corporation. - Bluelet Audio Driver.) -- C:\Windows\SysWOW64\drivers\BlueletSCOAudio.sys [37384] O58 - SDL:[MD5.7C5893EA5AA483E051B8311BDB36E19A] - 05/04/2011 - 20:56:56 ---A- . (.IVT Corporation. - Bluetooth USB Device Driver.) -- C:\Windows\SysWOW64\drivers\btcusb.sys [47368] O58 - SDL:[MD5.8FA060B557C7DE309D2D5C16C3DA2EF6] - 05/04/2011 - 19:42:54 ---A- . (.IVT Corporation. - Bluetooth HID Manager Device Driver.) -- C:\Windows\SysWOW64\drivers\BtHidMgr.sys [49680] O58 - SDL:[MD5.0F890E854FCBE98F4574ACC6423FCCEF] - 05/04/2011 - 19:47:08 ---A- . (.IVT Corporation. - Bluetooth PAN Network Adapter Driver.) -- C:\Windows\SysWOW64\drivers\btnetdrv.sys [25360] O58 - SDL:[MD5.0262A199D98C2405C90F3188C5A54C6A] - 05/04/2011 - 14:29:22 ---A- . (...) -- C:\Windows\SysWOW64\drivers\BTNetFilter.sys [32832] O58 - SDL:[MD5.D5BCB77BE83CF99F508943945D46343D] - 29/10/2009 - 04:16:08 ---A- . (.Dritek System Inc. - Dritek 64-bit PS/2 Keyboard Filter Driver.) -- C:\Windows\SysWOW64\drivers\DKbFltr.sys [25608] O58 - SDL:[MD5.8DB0DBDEC7880E81B73B8E7E8E9A666A] - 05/04/2011 - 00:31:18 ---A- . (.OEM - OX16C95x Serial Device Driver.) -- C:\Windows\SysWOW64\drivers\OXSER.SYS [51169] O58 - SDL:[MD5.DB30AA4DAA0D492FA5D7717D8181FFA1] - 29/10/2009 - 02:58:08 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\SysWOW64\drivers\RtsUStor.sys [225280] O58 - SDL:[MD5.F6ACD9575B5D77673B979BB46FF6A837] - 05/04/2011 - 12:29:34 ---A- . (.Socket Communications, Inc. - WDM serial port device driver.) -- C:\Windows\SysWOW64\drivers\Sio9502k.sys [48076] O58 - SDL:[MD5.42A39AA7ED51616E36ADB5ABDDF8349B] - 05/04/2011 - 09:26:22 ---A- . (.Socket Communications, Inc. - WDM serial port device driver.) -- C:\Windows\SysWOW64\drivers\SktBt2k.sys [48556] O58 - SDL:[MD5.5B6AD60D81530526CFE50DD46E0B5275] - 22/05/2011 - 19:43:14 ---A- . (.Pas de propriétaire - USB2.0 PC Camera driver.) -- C:\Windows\SysWOW64\drivers\sncamd.sys [24832] O58 - SDL:[MD5.D5C9643589313DB08FD27A30D93E4146] - 22/05/2011 - 09:34:36 ---A- . (.Pas de propriétaire - USB2.0 PC Camera driver.) -- C:\Windows\SysWOW64\drivers\snp2sxp.sys [10305280] O58 - SDL:[MD5.E49A371185D5E79C103765DA93856EE1] - 05/04/2011 - 19:41:34 ---A- . (.IVT Corporation. - Bluetooth HID Enumerator Driver.) -- C:\Windows\SysWOW64\drivers\VBTEnum.sys [24976] O58 - SDL:[MD5.B9B0A0B9232A51BBDE9F28CA41716D61] - 05/04/2011 - 19:38:20 ---A- . (.IVT Corporation. - Bluetooth Serial Port Driver.) -- C:\Windows\SysWOW64\drivers\VComm.sys [47120] O58 - SDL:[MD5.F1B2D9AC422F8B72BF417C8D77C85A3B] - 05/04/2011 - 19:39:28 ---A- . (.IVT Corporation. - Bluetooth VcommMgr Driver.) -- C:\Windows\SysWOW64\drivers\VCommMgr.sys [63248] O58 - SDL:[MD5.6E6FD2FBF204A36E4C85B123C1C32372] - 05/04/2011 - 19:44:00 ---A- . (.IVT Corporation. - Bluetooth HID Mini driver.) -- C:\Windows\SysWOW64\drivers\VHIDMini.sys [23184] O58 - SDL:[MD5.85C3BAA151A6118B24D7701DDFC2D1EB] - 05/04/2011 - 01:58:34 ---A- . (.National Semiconductor Sweden AB - wssbt.) -- C:\Windows\SysWOW64\drivers\wssbtr1f.sys [63488] ~ Scan Drivers in 00mn 06s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ Scan ADS in 00mn 00s ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 23/02/2011 - C:\Windows\system32\drivers\aswMonFlt.sys - No object(No service) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT O64 - Services: CurCS - 21/07/2011 - C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys - No object(No service) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64 O64 - Services: CurCS - 22/11/2010 - C:\Windows\system32\DRIVERS\Lbd.sys - No object(No service) .(.Lavasoft AB - Boot Driver.) - LEGACY_LBD O64 - Services: CurCS - 02/06/2009 - C:\Windows\system32\DRIVERS\mwlPSDFilter.sys - No object(No service) .(.Egis Technology Inc. - PSD Filter Driver.) - LEGACY_MWLPSDFILTER O64 - Services: CurCS - 02/06/2009 - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys - No object(No service) .(.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - LEGACY_MWLPSDNSERV O64 - Services: CurCS - 02/06/2009 - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys - No object(No service) .(.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - LEGACY_MWLPSDVDISK ~ Scan Services in 00mn 02s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ~ Scan Keys in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ~ Scan Keys in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} [DefaultScope] - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} - (Search) - http://www.bigseekpro.com O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Bing) - http://www.bing.com ~ Scan Keys in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.945D09C0925F771F907DEE3D0452ECF4] [SPRF][14/10/2011] (.Realtek - rtdrvmon.) -- C:\Users\rammstein\AppData\Local\Temp\rtdrvmon.exe [40960] [MD5.7FAF5222EEB546E1DC0F348DCB314B0B] [SPRF][29/08/2006] (.Zylom Games - Zylom Games Player.) -- C:\Windows\Downloaded Program Files\zylomgamesplayer.dll [161976] ~ Scan Files in 00mn 00s ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "{0E6E2C7E-8C65-4694-80F8-3FC2DCBC8D0A}" | In - Public - P6 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{16661C74-B792-425A-99D1-F2FE8CD74AF4}" | In - Public - P17 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{2770B99E-DDC8-4EFF-9993-92E7F22DEE31}" | In - Public - P6 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{4C02ADD2-A605-409C-B001-8E95700F553C}" | In - Public - P17 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{80A1A133-3E8C-484E-8310-C505DB45EC07}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Deluxe.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe O87 - FAEL: "{B0FC1587-862D-4F0C-9B44-E3934D48599A}" | In - None - P17 - TRUE | .(.Acer Corp. - Acer Arcade Deluxe PlayMovie.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PlayMovie.exe O87 - FAEL: "{A9A6E7A4-E9E4-4443-8099-014BD01CDDB0}" | In - None - P17 - TRUE | .(.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe O87 - FAEL: "{E191096B-EBFB-4503-A094-86E44E33D903}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer HomeMedia.) -- C:\Program Files (x86)\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe O87 - FAEL: "{EBAFFB9F-3FBA-48F7-BFC5-95566046B10E}" | In - Private - P6 - TRUE | .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files (x86)\BitTorrent\bittorrent.exe O87 - FAEL: "{34426BF8-C8E5-427B-ABDB-BB7526F5083C}" | In - Private - P17 - TRUE | .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files (x86)\BitTorrent\bittorrent.exe O87 - FAEL: "{5BCCECD9-A52A-4D2D-936B-0723B7925EBD}" | In - Private - P6 - TRUE | .(.IVT Corporation. - Bluetooth Application.) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe O87 - FAEL: "{F692350A-661D-4706-9471-5745266EC302}" | In - Private - P17 - TRUE | .(.IVT Corporation. - Bluetooth Application.) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe O87 - FAEL: "{EDCC2B6D-6C9B-4B0C-AB77-E9022DB51109}" | In - Public - P6 - TRUE | .(.IVT Corporation. - Bluetooth Application.) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe O87 - FAEL: "{8A26E9BE-6D67-4213-91F0-AF52CC71932E}" | In - Public - P17 - TRUE | .(.IVT Corporation. - Bluetooth Application.) -- C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe O87 - FAEL: "{E2AD36B6-9CCD-4B68-988D-3C2C242B55DE}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files (x86)\BitTorrent\bittorrent.exe O87 - FAEL: "{D3D85165-C294-4616-839A-8EDE4E3B8C40}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files (x86)\BitTorrent\bittorrent.exe O87 - FAEL: "{A09168E8-1903-4804-8B5D-F28EC2CCCB86}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\SysWOW64\lxczcoms.exe O87 - FAEL: "{765AD24E-3268-41F3-AE59-60B2AF6C9280}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\SysWOW64\lxczcoms.exe O87 - FAEL: "{BF5813FF-5C0E-4B3C-9486-99ED93F65F3F}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxczcoms.exe O87 - FAEL: "{06C7FBD4-C3FA-4A3D-B04E-AC8F7444C212}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxczcoms.exe O87 - FAEL: "{D7883F92-618F-40DB-9134-DE27DA330BA3}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe O87 - FAEL: "{31C0961F-4659-486D-B0FA-3894DD92B50F}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe O87 - FAEL: "{FC88F9EC-EE9F-4087-8652-8971B10D71CC}" | In - Private - P6 - TRUE | .(.Lexmark International Inc. - AIOC exe.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZaiox.exe O87 - FAEL: "{96A449FE-799A-4FD5-B791-3B2D187CC1C4}" | In - Private - P17 - TRUE | .(.Lexmark International Inc. - AIOC exe.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZaiox.exe O87 - FAEL: "{1B138D71-A79E-407B-AD36-91ADD57241EF}" | In - Domain - P6 - FALSE | .(.Lexmark International Inc. - AIOC exe.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZaiox.exe O87 - FAEL: "{9F0EB1AA-7B45-45C2-B494-7461262567B9}" | In - Domain - P17 - FALSE | .(.Lexmark International Inc. - AIOC exe.) -- C:\Program Files (x86)\Lexmark 1200 Series\LXCZaiox.exe O87 - FAEL: "{07F37314-7ECF-41C0-BA6D-B60AAF4491C8}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer.exe O87 - FAEL: "{996E4B31-942A-40C7-B1C7-97AE62F7D3FF}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer.exe O87 - FAEL: "{ACD336E5-EC6A-4C79-B874-FD3E3C8E76A2}" | In - Public - P6 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe O87 - FAEL: "{383FF44E-3910-4BEA-878F-56C35EA74258}" | In - Public - P17 - TRUE | .(.TeamViewer GmbH - TeamViewer Remote Control Application.) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe O87 - FAEL: "{B0E1BB46-584A-4F0A-9308-F8FA2BE3F284}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxczcoms.exe O87 - FAEL: "{1F11E4B2-30A2-4EBF-A06B-4A58012CB0C1}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\System32\lxczcoms.exe O87 - FAEL: "{9C7D906F-5D26-4E20-BD6C-DC81AA958C3D}" | In - Private - P6 - TRUE | .(.Lexmark International Inc. - Print Status Window Interface.) -- C:\Windows\System32\spool\drivers\x64\3\lxczpswx.exe O87 - FAEL: "{7467847A-60D6-42C3-9B5C-BCC367FDA5A0}" | In - Private - P17 - TRUE | .(.Lexmark International Inc. - Print Status Window Interface.) -- C:\Windows\System32\spool\drivers\x64\3\lxczpswx.exe O87 - FAEL: "{972CF08D-D749-4369-B89C-8FC28EB86E1D}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe O87 - FAEL: "{2699F283-C9DF-457E-908E-91A506A7D411}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe ~ Scan Firewall in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 8703 - (05/10/2011) Clés trouvées (Keys found) : 5 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 2 Fichiers trouvés (Files found) : 0 [HKLM\Software\WOW6432Node\Google\Chrome\Extensions\defdhglnppeioeflggkmglipcecffkhk] =>Adware.PredictAd [HKCU\Software\OfferBox] =>PUP.OfferBox [HKCU\Software\Somoto Toolbar] =>Toolbar.Agent [HKCU\Software\Somoto Toolbar] =>Adware.BHO [HKLM\Software\WOW6432Node\Trymedia Systems] =>Adware.Trymedia C:\ProgramData\Trymedia =>Adware.Trymedia C:\Users\rammstein\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit ~ Scan Additionnel in 00mn 22s ---\\ Recherche détournement de DNS routeur (O89) Serveur : livebox.home Address: 192.168.1.1 DNS request timed out. timeout was 2 seconds. DNS request timed out. timeout was 2 seconds. ~ Scan DNS in 00mn 06s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 23/02/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe SR - | Auto 166520 | (BlueSoleil Hid Service) . (...) - C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe SR - | Auto 29/10/2009 844320 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe SS - | Auto 12/04/2011 1253376 | (Fabs) . (.MAGIX AG.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe SS - | Demand 12/04/2011 3276800 | (FirebirdServerMAGIXInstance) . (.MAGIX®.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe SR - | Auto 29/10/2009 1150496 | (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe SS - | Auto 02/04/2011 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 02/04/2011 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SR - | Auto 14/05/2011 13592 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe SR - | Auto 25/09/2011 2152152 | (Lavasoft Ad-Aware Service) . (.Lavasoft Limited.) - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe SR - | Auto 566192 | (lxcz_device) . (...) - C:\Windows\system32\lxczcoms.exe SS - | Demand 10/09/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files (x86)\ma-config.com\maconfservice.exe SR - | Auto 29/10/2009 305448 | (MWLService) . (.Egis Technology Inc..) - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe SS - | Demand 29/10/2009 50432 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe SR - | Auto 29/10/2009 144640 | (NTISchedulerSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe SR - | Auto 51816 | (Start BT in service) . (...) - C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe SR - | Auto 26/05/2011 2280312 | (TeamViewer6) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe SR - | Auto 29/10/2009 240160 | (Updater Service) . (.Acer.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe SR - | Auto 14/07/2009 27136 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ~ Scan Services in 00mn 09s ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net Run by rammstein at 14/10/2011 19:33:00 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ~ Scan MBR in 00mn 11s ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by rammstein at 14/10/2011 19:33:02 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ Scan MBR in 00mn 13s End of the scan (1334 lines in 02mn 25s)(0)

baby1979 · le 14 Oct 2011 18:51

pas moyen de vous le poster :( c'est trop long

cosmido · le 14 Oct 2011 19:00

Une désinfecteur va vous répondres.

Raptor14 · le 15 Oct 2011 13:53

Dépose le rapport < ici > :wink:

Un helper va te prendre en charge, il ne faut pas oublier qu'il ont une vie à côté du forum et que se ne sont QUE des bénévoles :wink:

++

cosmido · le 15 Oct 2011 14:33

Lancer ZHPFix.exe par un clic-droit → Exécuter en tant qu'adm.
• Copiez le contenu de cette → page Web
• Cliquez sur le bouton [H] (..pour Coller tout ça dans la fenêtre)
• Cliquez sur [GO]

► S'il vous est proposé de redémarrer le PC, faites le
► Poster le rapport ZHPFixReport.txt. créé sur le bureau.

Scanner ce fichier suspect chez Virus Total.
C:\Windows\obn.exe
• Si le fichier a déjà été scanner, alors [Ré-analyser ] le.
► Ne postez que l'adresse http//......de la page résultat.

Mettez à jours Java et tout autre logiciel qui le nécessitera, avec Secunia.

...........Avez vous désactivé l'UAC.

bigseepro virus????

bigseepro virus????

Re: bigseepro virus????

Re: bigseepro virus????

Re: bigseepro virus????

Re: bigseepro virus????

Re: bigseepro virus????

Sujets similaires

Qui est en ligne