cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v1.27.1505 par Nicolas Coolman, Update du 21/01/2011
Run by Matthieu at 21/01/2011 18:13:53
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr

---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
GCIE: Google Chrome v8.0.552.237

---\\ System Information
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6071 MB (71% free)
System Restore: Activ� (Enable)
System drive C: has 800 GB (87%) free of 919 GB

---\\ Logged in mode
Computer Name: MATTHIEU-PC
User Name: Matthieu
All Users Names: Matthieu, HomeGroupUser$, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=%USERPROFILE%\AppData\Roaming
%LocalAppData%=%USERPROFILE%\AppData\Local
%StartMenu%=%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 800 Go of 919 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)
E:\ CD-ROM drive (Free 0 Go of 4 Go)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)


---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK


---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 07:34:59.) -- C:\Windows\Explorer.exe [2870272]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]


---\\ Processus lanc�s
[MD5.A5F78606A9BA8F0C4C8FF9DED6ED5107] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1685048]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]
[MD5.F59036790ABC74BD138F155163556FBF] - (.Informer Technologies, Inc. - Software Informer.) -- C:\Program Files (x86)\Software Informer\softinfo.exe [2322501]
[MD5.3DD25048297A24AB4B3BFC17ABA5D0DB] - (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\steam.exe [1242448]
[MD5.554A50B5310E702029D3A675459108FF] - (.Hewlett-Packard - hpsysdrv.) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe [62768]
[MD5.852F12CA7C4FC7E3D77B606492435556] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe [54576]
[MD5.79BC415B0923D84898FF1B0D40883832] - (.Wireless Service - ANIWZCS2 launcher for Windows..) -- C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe [98304]
[MD5.7A95448039064F2919D825B7C531F248] - (.D-Link Corp. - D-Link WLAN Application.) -- C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe [1683456]
[MD5.9099462DE4CB8AFA9FD66832B8EFE00F] - (.LogMeIn Inc. - Hamachi2 Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [1910152]
[MD5.BB539119480A793DE761D5DDAAF2B133] - (.BitDefender S.R.L. - BitDefender IMGUI Aux.) -- C:\Program Files\BitDefender\BitDefender 2010\antispam32\bdimguiaux.exe [34816]
[MD5.4BFE28145799174386393B1E09764ED4] - (.Google Inc. - Google Chrome.) -- C:\Users\Matthieu\AppData\Local\Google\Chrome\Application\chrome.exe [991800]
[MD5.66275E52615AF9D2F18EB3442D00CFE3] - (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [210216]
[MD5.CFCE7E6564A227CCE970882C2CF207E1] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [623616]


---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Users\Matthieu\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll


---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com


---\\ Internet Explorer, D�marrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60076
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPDSK/3
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPDSK/3
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} Cl� orpheline


---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg64.dll


---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} . (.BitDefender S.R.L. - BitDefender Antiphishing Toolbar.) -- "C:\Program Files\BitDefender\BitDefender 2010\IEToolbar.dll"


---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [SmartMenu] . (.Pas de propri�taire - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [PC-Doctor for Windows localizer] C:\Program Files\PC-Doctor for Windows\localizer.exe (.not file.)
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper 32] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2010\Antispam32\IEShow.exe
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] . (.BitDefender S.R.L. - IEShow Application.) -- C:\Program Files\BitDefender\BitDefender 2010\IEShow.exe
O4 - HKLM\..\Run: [BDAgent] . (.BitDefender S.R.L. - BitDefender Agent.) -- C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Matthieu\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [Software Informer] . (.Informer Technologies, Inc. - Software Informer.) -- C:\Program Files (x86)\Software Informer\softinfo.exe
O4 - HKCU\..\Run: [fsm] Cl� orpheline
O4 - HKCU\..\Run: [EA Core] . (.Electronic Arts - EA Download Manager.) -- C:\Program Files (x86)\Electronic Arts\EADM\Core.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKCU\..\Run: [ArVzWJrY] . (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\ArVzWJrY\njUOghDD.exe
O4 - HKLM\..\Wow6432Node\Run: [hpsysdrv] . (.Hewlett-Packard - hpsysdrv.) -- c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [ANIWZCS2Service] . (.Wireless Service - ANIWZCS2 launcher for Windows..) -- C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Wow6432Node\Run: [D-Link D-Link Wireless N DWA-140] . (.D-Link Corp. - D-Link WLAN Application.) -- C:\Program Files (x86)\D-Link\DWA-140 revB\AirNCFG.exe
O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi2 Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
O4 - HKUS\S-1-5-18\..\Run: [SpywareTerminatorUpdate] C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [SpywareTerminatorUpdate] C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Matthieu\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [Software Informer] . (.Informer Technologies, Inc. - Software Informer.) -- C:\Program Files (x86)\Software Informer\softinfo.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [fsm] Cl� orpheline
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [EA Core] . (.Electronic Arts - EA Download Manager.) -- C:\Program Files (x86)\Electronic Arts\EADM\Core.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKUS\S-1-5-21-2931394936-1511013564-2918198975-1001\..\Run: [ArVzWJrY] . (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\ArVzWJrY\njUOghDD.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)


---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\Matthieu\Desktop\CamStudio.lnk . (.Pas de propri�taire.) -- C:\Program Files (x86)\CamStudio\Recorder.exe
O4 - Global Startup: C:\Documents And Settings\Matthieu\Desktop\Dofus 1.lnk . (.Ankama Games.) -- C:\wamp\www\Dofus\Dofus.exe
O4 - Global Startup: C:\Documents And Settings\Matthieu\Desktop\Dofus 2.lnk . (.Pas de propri�taire.) -- C:\Program Files (x86)\Dofus 2\app\UpLauncher.exe
O4 - Global Startup: C:\Documents And Settings\Matthieu\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\Matthieu\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Documents And Settings\Matthieu\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Matthieu\Desktop\LimeWire 5.5.14.lnk . (.Lime Wire, LLC.) -- C:\Program Files (x86)\LimeWire\LimeWire.exe
O4 - Global Startup: C:\Documents And Settings\Matthieu\Desktop\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Documents And Settings\Matthieu\Desktop\Paint.lnk . (.Microsoft Corporation.) -- C:\Windows\system32\mspaint.exe
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Matthieu\Desktop\CamStudio.lnk . (.Pas de propri�taire.) -- C:\Program Files (x86)\CamStudio\Recorder.exe
O4 - Global Startup: C:\Users\Matthieu\Desktop\Dofus 1.lnk . (.Ankama Games.) -- C:\wamp\www\Dofus\Dofus.exe
O4 - Global Startup: C:\Users\Matthieu\Desktop\Dofus 2.lnk . (.Pas de propri�taire.) -- C:\Program Files (x86)\Dofus 2\app\UpLauncher.exe
O4 - Global Startup: C:\Users\Matthieu\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\Matthieu\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Matthieu\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Matthieu\Desktop\LimeWire 5.5.14.lnk . (.Lime Wire, LLC.) -- C:\Program Files (x86)\LimeWire\LimeWire.exe
O4 - Global Startup: C:\Users\Matthieu\Desktop\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - Global Startup: C:\Users\Matthieu\Desktop\Paint.lnk . (.Microsoft Corporation.) -- C:\Windows\system32\mspaint.exe
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\RegistryBooster.lnk . (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\Launcher.exe
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Sothink SWF Quicker.lnk . (.SourceTec.) -- C:\Program Files (x86)\SourceTec\Sothink SWF Quicker\SWFQuicker.exe
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\TorrentBitch.lnk . (.TorrentBitch.com.) -- C:\Program Files (x86)\TorrentBitch\TorrentBitch.exe
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - Cl� orpheline
O4 - Global Startup: C:\Users\Matthieu\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\x3Codec.lnk . (.C4DL Media.) -- C:\Program Files (x86)\x3Codec\x3codec.exe


---\\ Lignes suppl�mentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Crawler Search - (.not file.) -
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll
O8 - Extra context menu item: Sothink SWF Catcher . (.Pas de propri�taire - Pas de description.) -- C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll


---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{703EC65D-E39A-461D-877E-C41348349C45}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\..\{EC498F0E-6A25-41DF-BBA9-824A22F4A12B}: DhcpNameServer = 10.10.5.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{703EC65D-E39A-461D-877E-C41348349C45}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{EC498F0E-6A25-41DF-BBA9-824A22F4A12B}: DhcpNameServer = 10.10.5.8
O17 - HKLM\System\CS2\Services\Tcpip\..\{703EC65D-E39A-461D-877E-C41348349C45}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{EC498F0E-6A25-41DF-BBA9-824A22F4A12B}: DhcpNameServer = 10.10.5.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240


---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.


---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: (AMD External Events Utility) - Cl� orpheline
O23 - Service: (ANIWConnService) . (.Pas de propri�taire - ANIWConnService.) - C:\Windows\system32\ANIWConnService.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc. - Hamachi2 Client Tunneling Engine.) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: (LIVESRV) . (.BitDefender S.R.L. - BitDefender Update Service.) - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: (TeamViewer6) . (.TeamViewer GmbH - TeamViewer Remote Control Application.) - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: (VSSERV) . (.BitDefender S.R.L. - BitDefender Security Service.) - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe


---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propri�taire - Pas de description.) - (.not file.)


---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2931394936-1511013564-2918198975-1001Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2931394936-1511013564-2918198975-1001UA.job
[MD5.66275E52615AF9D2F18EB3442D00CFE3] [APT] [CLMLSvc] (.CyberLink.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
[MD5.00000000000000000000000000000000] [APT] [DVDAgent] (.Pas de propri�taire.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (.not file.)
[MD5.ECAC52036A7B9AEF61C1BAE8F753454B] [APT] [ExtendedServicePlan] (.Pas de propri�taire.) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskUserS-1-5-21-2931394936-1511013564-2918198975-1001Core] (.Google Inc..) -- C:\Users\Matthieu\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskUserS-1-5-21-2931394936-1511013564-2918198975-1001UA] (.Google Inc..) -- C:\Users\Matthieu\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.ECAC52036A7B9AEF61C1BAE8F753454B] [APT] [RecoveryCDWin7] (.Pas de propri�taire.) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.ECAC52036A7B9AEF61C1BAE8F753454B] [APT] [ServicePlan] (.Pas de propri�taire.) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.8647AD9B50BCB1C36DD8F724A9E5323E] [APT] [{1413C0BD-2134-483A-837A-46B82D12E0EF}] (.Pas de propri�taire.) -- C:\Program Files (x86)\Electronic Arts\La Bataille pour la Terre du Milieu II\lotrbfme2.exe
[MD5.8647AD9B50BCB1C36DD8F724A9E5323E] [APT] [{283F9ACA-2656-4EEA-9B5B-3B4BDC4F8739}] (.Pas de propri�taire.) -- C:\Program Files (x86)\Electronic Arts\La Bataille pour la Terre du Milieu II\lotrbfme2.exe
[MD5.6FBBB73BE9FB38389AB73F38828A9CAC] [APT] [{63AF370E-F784-49EF-9BE0-F5F1C7962108}] (.Skype Technologies S.A..) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
[MD5.8647AD9B50BCB1C36DD8F724A9E5323E] [APT] [{A02035D0-7321-4340-A413-534291D7B514}] (.Pas de propri�taire.) -- C:\Program Files (x86)\Electronic Arts\La Bataille pour la Terre du Milieu II\lotrbfme2.exe
[MD5.3B9AA8A5ACDDB6DE46D272ECD7E340F6] [APT] [HP Total Care Tune-Up] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe
[MD5.EB875919D5AD5E40A0854F1264A0F2FA] [APT] [PC Health Analysis] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.EB875919D5AD5E40A0854F1264A0F2FA] [APT] [PC Tuneup] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe


---\\ Pilotes lanc�s au d�marrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (BdfNdisf) . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - C:\Windows\System32\DRIVERS\BdfNdisf6.sys
O41 - Driver: (bdfwfpf) . (.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys


---\\ Logiciels install�s (O42)
O42 - Logiciel: 3.4.0.9271.1 - (.Pas de propri�taire.) [HKLM][64Bits] -- Adobe flex sdk redistributed by sothink_is1
O42 - Logiciel: 7-Zip 9.20 - (.Pas de propri�taire.) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: ANIWZCS2 Service - (.Pas de propri�taire.) [HKLM][64Bits] -- {4C590030-7469-453E-8589-D15DA9D03F52}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {AF36CE1D-FD2C-4BA0-93FA-1196785DD610}
O42 - Logiciel: Adobe Photoshop CS2 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}
O42 - Logiciel: Adobe Photoshop CS5 Portable - (.Adobe.) [HKLM][64Bits] -- {61172A5D-60AA-43BE-958F-90451024E768}_is1
O42 - Logiciel: Akamai NetSession Interface - (.Pas de propri�taire.) [HKLM][64Bits] -- Akamai
O42 - Logiciel: Ancestra Monster Editor - (.Ancestra DevTeam.) [HKCU] -- 89823d57c5e1fe49
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Battlefield 2(TM) - (.Pas de propri�taire.) [HKLM][64Bits] -- {04858915-9F49-4B2A-AED4-DC49A7DE6A7B}
O42 - Logiciel: BitDefender Total Security 2010 - (.BitDefender.) [HKLM] -- {028FF35A-9CFD-4653-9E5B-9667BD72D6AF}
O42 - Logiciel: Call of Duty: Black Ops - (.Treyarch.) [HKLM][64Bits] -- Steam App 42700
O42 - Logiciel: Call of Duty: Black Ops - Multiplayer - (.Treyarch.) [HKLM][64Bits] -- Steam App 42710
O42 - Logiciel: CamStudio 2.0 Fr - (.Pas de propri�taire.) [HKLM][64Bits] -- CamStudio 2.0 Fr_is1
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {57A67EC6-0652-4C0A-B8D4-20CD437AD033}
O42 - Logiciel: Crawler Toolbar with Web Security Guard - (.Crawler, LLC.) [HKLM][64Bits] -- CToolbar_UNINSTALL
O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: D-Link Wireless N DWA-140 - (.D-Link.) [HKLM][64Bits] -- {D7D2F494-89E3-42ED-8A2B-75BDD9B464CB}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..) [HKLM][64Bits] -- EADM
O42 - Logiciel: GTA San Andreas - (.Rockstar Games.) [HKLM][64Bits] -- {D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {B131E59D-202C-43C6-84C9-68F0C37541F1}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}
O42 - Logiciel: HP MediaSmart Music/Photo/Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {B2EE25B9-5B00-4ACF-94F0-92433C28C39E}
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM] -- {88E60521-1E4E-4785-B9F1-1798A4BD0C30}
O42 - Logiciel: HP Remote Solution - (.Hewlett-Packard.) [HKLM][64Bits] -- HP Remote Solution
O42 - Logiciel: HP Remote Solution - (.Hewlett-Packard.) [HKLM][64Bits] -- {C611CF88-969D-43E6-A877-D6D6439DD081}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {741CFE3A-1C0B-4A7D-8E08-5D78C911C09D}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: HydraVision - (.ATI Technologies Inc..) [HKLM][64Bits] -- {CBAB2393-4F5F-CBC3-80E0-167B8B7C5437}
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: J2SE Runtime Environment 5.0 Update 21 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {3248F0A8-6813-11D6-A77B-00B0D0150210}
O42 - Logiciel: Java(TM) 6 Update 17 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216017F0}
O42 - Logiciel: Java(TM) 6 Update 21 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216021FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: L'Av�nement du Roi-sorcier� - (.Pas de propri�taire.) [HKLM][64Bits] -- {B931FB80-537A-4600-00AD-AC5DEDB6C25B}
O42 - Logiciel: La Bataille pour la Terre du Milieu� II - (.Pas de propri�taire.) [HKLM][64Bits] -- {2A9F95AB-65A3-432c-8631-B8BC5BF7477A}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: Le Seigneur des Anneaux� - L�Age des Conqu�tes� - (.Electronic Arts.) [HKLM][64Bits] -- {628C3D50-F524-4C49-A958-672CE7953756}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {CC8E94A2-55C7-4460-953C-2A790180578C}
O42 - Logiciel: LimeWire 5.5.14 - (.Lime Wire, LLC.) [HKLM][64Bits] -- LimeWire
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- LogMeIn Hamachi
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- {CE4A3D0F-D1B0-47D1-BF99-3E957C548D12}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended
O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {8E34682C-8118-31F1-BC4C-98CD9675E1C2}
O42 - Logiciel: Microsoft .NET Framework 4 Extended FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {A39AE3AE-9808-39D2-AB7B-FF5F0335095E}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621-a0ac-3f809523288f}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {350AA351-21FA-3270-8B7A-835434E766AD}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM][64Bits] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Module de compatibilit� pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0020-040C-0000-0000000FF1CE}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Extended FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended FRA Language Pack
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox (3.6.13)
O42 - Logiciel: Neffy 1,3,29,0 - (.CDNetworks.) [HKLM][64Bits] -- Neffy
O42 - Logiciel: Notepad++ - (.Pas de propri�taire.) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: Outil de t�l�chargement Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
O42 - Logiciel: P2Pcontrol 1.0 - (.P2Pcontrol.) [HKLM][64Bits] -- P2Pcontrol
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PremiumSoft Navicat Lite 8.2 - (.PremiumSoft CyberTech Ltd..) [HKLM][64Bits] -- PremiumSoft Navicat Lite 8.2_is1
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: Redtube Video Downloader 3.24 - (.DownloadToolz, Inc..) [HKLM][64Bits] -- Redtube Video Downloader_is1
O42 - Logiciel: SecondLifeViewer2 (remove only) - (.Pas de propri�taire.) [HKLM][64Bits] -- SecondLifeViewer2
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Extended (KB2416472) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2416472
O42 - Logiciel: Setuprog Toolbar - (.Pas de propri�taire.) [HKLM][64Bits] -- Setuprog Toolbar
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM][64Bits] -- {981029E0-7FC9-4CF3-AB39-6F133621921A}
O42 - Logiciel: Skype� 4.2 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {D103C4BA-F905-437A-8049-DB24763BBE36}
O42 - Logiciel: Softonic_France Toolbar - (.Softonic_France.) [HKLM][64Bits] -- Softonic_France Toolbar
O42 - Logiciel: Software Informer 1.0 BETA - (.Informer Technologies, Inc..) [HKLM][64Bits] -- Software Informer_is1
O42 - Logiciel: Sothink SWF Quicker - (.SourceTec Software Co., LTD.) [HKLM][64Bits] -- {D3490D20-3AE0-459D-AAD6-59195140EAC2}_is1
O42 - Logiciel: Star Wars Republic Commando Demo - (.Pas de propri�taire.) [HKLM][64Bits] -- {A4F9E9FE-A9C7-43FC-8AB7-06A87C3CE368}
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM][64Bits] -- Teamspeak 2 RC2_is1
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: TeamViewer 6 - (.TeamViewer GmbH.) [HKLM][64Bits] -- TeamViewer 6
O42 - Logiciel: TorrentBitch 1.0.1.1 - (.TorrentBitch.com.) [HKLM][64Bits] -- {0034E9B7-20C1-4700-815D-DEC1F1181142}_is1
O42 - Logiciel: Uniblue RegistryBooster 2010 - (.Uniblue Systems Ltd.) [HKLM][64Bits] -- {E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228
O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Version de d�monstration de Microsoft Office Home and Student 2007 - (.Pas de propri�taire.) [HKLM] -- OfficeTrial
O42 - Logiciel: WampServer 2.0 - (.Romain Bourdon (Roms).) [HKLM][64Bits] -- WampServer 2_is1
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B4E636E-9D65-4D67-BA61-189800823F52}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1}
O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM][64Bits] -- {F7D27C70-90F5-49B9-B188-0A133C0CE353}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {4634B21A-CC07-4396-890C-2B8168661FEA}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Windows Movie Maker 2.6 - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3DAF54F-DB25-4586-9EF1-96D24BB14088}
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM][64Bits] -- World of Warcraft
O42 - Logiciel: eMule - (.Pas de propri�taire.) [HKLM][64Bits] -- eMule
O42 - Logiciel: iGraal Toolbar for Internet Explorer - (.iGraal.) [HKLM][64Bits] -- {CF3C5900-BEC0-470E-AEE8-CE277C60667C}
O42 - Logiciel: pc gear fr Toolbar - (.pc gear fr.) [HKLM][64Bits] -- pc_gear_fr Toolbar
O42 - Logiciel: x3Codec - (.C4DL Media.) [HKLM][64Bits] -- x3Codec

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ALWIL Software]
[HKCU\Software\ANI]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\Amic Tools]
[HKCU\Software\AppDataLow\Software\Conduit]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Monitored]
[HKCU\Software\AppDataLow\Software\Setuprog]
[HKCU\Software\AppDataLow\Software\Softonic_France]
[HKCU\Software\AppDataLow\Software\iGraal]
[HKCU\Software\AppDataLow\Software\pc_gear_fr]
[HKCU\Software\AppDataLow\Software\settings]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\BitDefender]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\CToolbar]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\D-Link]
[HKCU\Software\EasyBits]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\INCAInternet]
[HKCU\Software\Informer Technologies, Inc.]
[HKCU\Software\JavaSoft]
[HKCU\Software\Judgehype]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LowRegistry]
[HKCU\Software\Macromedia]
[HKCU\Software\Modern UI Test]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\PC-Doctor]
[HKCU\Software\Policies]
[HKCU\Software\PremiumSoft]
[HKCU\Software\SecuROM]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\SourceTec]
[HKCU\Software\TeamViewer]
[HKCU\Software\Threat Expert]
[HKCU\Software\TorrentBitch]
[HKCU\Software\Trolltech]
[HKCU\Software\Valve]
[HKCU\Software\WinRAR]
[HKCU\Software\Winject]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\chermenin]
[HKCU\Software\eMule]
[HKCU\Software\ej-technologies]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\BitDefender]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Intel]
[HKLM\Software\LogMeIn, Inc.]
[HKLM\Software\MidasHeurScanner]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\ODBC]
[HKLM\Software\PC-Doctor]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Softwin]
[HKLM\Software\Sonic]
[HKLM\Software\WildTangent]
[HKLM\Software\Wow6432Node]


---\\ Contenu des dossiers ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 25/10/2010 - 23:04:40 ----D- C:\Program Files\Alwil Software
O43 - CFD: 06/01/2010 - 09:43:42 ----D- C:\Program Files\ATI
O43 - CFD: 17/12/2010 - 19:50:16 ----D- C:\Program Files\BitDefender
O43 - CFD: 17/12/2010 - 19:50:16 ----D- C:\Program Files\Common Files
O43 - CFD: 06/01/2010 - 18:29:16 ----D- C:\Program Files\DVD Maker
O43 - CFD: 19/08/2010 - 15:18:56 -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 30/08/2010 - 13:16:38 ----D- C:\Program Files\Google
O43 - CFD: 06/01/2010 - 09:56:34 ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 18/12/2010 - 03:19:18 ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/07/2009 - 08:45:56 ----D- C:\Program Files\Microsoft Games
O43 - CFD: 14/07/2009 - 06:32:40 ----D- C:\Program Files\MSBuild
O43 - CFD: 06/01/2010 - 09:46:16 ----D- C:\Program Files\PlayReady
O43 - CFD: 06/01/2010 - 09:35:14 ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 06:32:40 ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 14/07/2009 - 06:09:28 --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 06/01/2010 - 18:29:16 ----D- C:\Program Files\Windows Defender
O43 - CFD: 06/01/2010 - 18:29:16 ----D- C:\Program Files\Windows Journal
O43 - CFD: 18/12/2010 - 03:19:16 ----D- C:\Program Files\Windows Mail
O43 - CFD: 13/10/2010 - 19:22:40 ----D- C:\Program Files\Windows Media Player
O43 - CFD: 19/08/2010 - 15:18:56 ----D- C:\Program Files\Windows NT
O43 - CFD: 06/01/2010 - 18:29:16 ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:40 ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 19/08/2010 - 15:19:32 ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 17/12/2010 - 19:50:28 ----D- C:\Program Files\Common Files\BitDefender
O43 - CFD: 22/10/2010 - 21:16:26 ----D- C:\Program Files\Common Files\INCA Shared
O43 - CFD: 06/01/2010 - 10:14:00 ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 04:20:10 ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 06/01/2010 - 18:30:16 ----D- C:\Program Files\Common Files\System
O43 - CFD: 19/08/2010 - 19:13:46 ----D- C:\ProgramData\Adobe
O43 - CFD: 25/10/2010 - 23:04:40 ----D- C:\ProgramData\Alwil Software
O43 - CFD: 14/07/2009 - 06:08:58 -SH-D- C:\ProgramData\Application Data
O43 - CFD: 06/01/2010 - 09:44:04 ----D- C:\ProgramData\ATI
O43 - CFD: 17/12/2010 - 19:53:26 ----D- C:\ProgramData\BitDefender
O43 - CFD: 26/10/2010 - 19:14:38 ----D- C:\ProgramData\Blizzard
O43 - CFD: 28/10/2010 - 11:14:26 ----D- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 19/08/2010 - 15:18:56 -SH-D- C:\ProgramData\Bureau
O43 - CFD: 06/01/2010 - 09:52:24 ----D- C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 06:08:58 -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:58 -SH-D- C:\ProgramData\Documents
O43 - CFD: 15/11/2010 - 17:15:42 ----D- C:\ProgramData\Electronic Arts
O43 - CFD: 03/10/2010 - 19:05:30 ----D- C:\ProgramData\eMule
O43 - CFD: 19/08/2010 - 15:18:56 -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:58 -SH-D- C:\ProgramData\Favorites
O43 - CFD: 30/08/2010 - 13:16:46 ----D- C:\ProgramData\Google
O43 - CFD: 19/08/2010 - 19:12:18 ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 19/08/2010 - 15:18:56 -SH-D- C:\ProgramData\Menu D�marrer
O43 - CFD: 19/08/2010 - 15:18:56 -S--D- C:\ProgramData\Microsoft
O43 - CFD: 19/08/2010 - 15:18:56 -SH-D- C:\ProgramData\Mod�les
O43 - CFD: 22/10/2010 - 21:58:46 ----D- C:\ProgramData\Nexon
O43 - CFD: 17/12/2010 - 17:35:20 ----D- C:\ProgramData\Norton
O43 - CFD: 24/10/2010 - 13:23:06 ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 17/12/2010 - 17:16:22 ----D- C:\ProgramData\PC Tools
O43 - CFD: 22/10/2010 - 18:35:18 ----D- C:\ProgramData\PCSettings
O43 - CFD: 30/08/2010 - 13:15:06 ----D- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 06:08:58 -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 19/08/2010 - 20:22:12 ----D- C:\ProgramData\Sun
O43 - CFD: 17/12/2010 - 17:16:48 ---AD- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:58 -SH-D- C:\ProgramData\Templates
O43 - CFD: 05/01/2011 - 21:00:20 ----D- C:\ProgramData\TorrentBitch
O43 - CFD: 06/01/2010 - 10:10:46 ----D- C:\ProgramData\WildTangent
O43 - CFD: 10/10/2010 - 14:21:10 ----D- C:\Users\Matthieu\AppData\Roaming\Adobe
O43 - CFD: 30/08/2010 - 11:02:52 ----D- C:\Users\Matthieu\AppData\Roaming\app
O43 - CFD: 19/08/2010 - 15:27:58 ----D- C:\Users\Matthieu\AppData\Roaming\ATI
O43 - CFD: 17/12/2010 - 19:50:34 ----D- C:\Users\Matthieu\AppData\Roaming\BitDefender
O43 - CFD: 20/08/2010 - 13:26:24 ----D- C:\Users\Matthieu\AppData\Roaming\CyberLink
O43 - CFD: 15/01/2011 - 18:17:52 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus 2
O43 - CFD: 17/01/2011 - 17:50:06 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-10.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 17/01/2011 - 18:01:32 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-11.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 17/01/2011 - 18:01:38 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-12.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 17/01/2011 - 18:24:08 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-13.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 19/08/2010 - 17:34:28 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 30/08/2010 - 12:30:48 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-3.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 10/09/2010 - 15:47:14 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-4.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 11/09/2010 - 09:56:34 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-5.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 12/09/2010 - 15:30:58 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-6.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 17/10/2010 - 10:44:00 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-7.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 17/01/2011 - 17:09:08 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-8.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 17/01/2011 - 17:17:14 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus-9.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 19/08/2010 - 18:05:52 ----D- C:\Users\Matthieu\AppData\Roaming\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 30/08/2010 - 15:20:02 ----D- C:\Users\Matthieu\AppData\Roaming\Google
O43 - CFD: 20/08/2010 - 09:24:10 ----D- C:\Users\Matthieu\AppData\Roaming\Hewlett-Packard
O43 - CFD: 19/08/2010 - 15:26:40 ----D- C:\Users\Matthieu\AppData\Roaming\Identities
O43 - CFD: 19/08/2010 - 17:31:38 ----D- C:\Users\Matthieu\AppData\Roaming\igraal
O43 - CFD: 17/12/2010 - 18:20:08 ----D- C:\Users\Matthieu\AppData\Roaming\InstallShield
O43 - CFD: 19/08/2010 - 15:26:58 ----D- C:\Users\Matthieu\AppData\Roaming\Intel Corporation
O43 - CFD: 19/01/2011 - 18:21:54 ----D- C:\Users\Matthieu\AppData\Roaming\La Bataille pour la Terre du Milieu � II
O43 - CFD: 19/08/2010 - 15:39:18 ----D- C:\Users\Matthieu\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - 08:44:40 ----D- C:\Users\Matthieu\AppData\Roaming\Media Center Programs
O43 - CFD: 19/01/2011 - 18:40:38 ----D- C:\Users\Matthieu\AppData\Roaming\Mes fichiers de LSDA, L'Av�nement du Roi-sorcier�
O43 - CFD: 15/11/2010 - 17:13:02 -S--D- C:\Users\Matthieu\AppData\Roaming\Microsoft
O43 - CFD: 19/08/2010 - 17:31:22 ----D- C:\Users\Matthieu\AppData\Roaming\Mozilla
O43 - CFD: 18/09/2010 - 15:20:00 ----D- C:\Users\Matthieu\AppData\Roaming\Notepad++
O43 - CFD: 25/10/2010 - 22:51:58 ----D- C:\Users\Matthieu\AppData\Roaming\OpenCandy
O43 - CFD: 22/10/2010 - 22:26:34 ----D- C:\Users\Matthieu\AppData\Roaming\OpenOffice.org
O43 - CFD: 25/10/2010 - 23:10:32 ----D- C:\Users\Matthieu\AppData\Roaming\QuickScan
O43 - CFD: 30/08/2010 - 11:02:52 ----D- C:\Users\Matthieu\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 22/10/2010 - 19:07:04 ----D- C:\Users\Matthieu\AppData\Roaming\SecondLife
O43 - CFD: 17/12/2010 - 20:11:42 R-H-D- C:\Users\Matthieu\AppData\Roaming\SecuROM
O43 - CFD: 18/01/2011 - 22:27:40 ----D- C:\Users\Matthieu\AppData\Roaming\Skype
O43 - CFD: 18/01/2011 - 22:23:42 ----D- C:\Users\Matthieu\AppData\Roaming\skypePM
O43 - CFD: 21/01/2011 - 18:08:36 ----D- C:\Users\Matthieu\AppData\Roaming\Software Informer
O43 - CFD: 18/09/2010 - 16:00:56 ----D- C:\Users\Matthieu\AppData\Roaming\teamspeak2
O43 - CFD: 05/01/2011 - 21:56:16 ----D- C:\Users\Matthieu\AppData\Roaming\TeamViewer
O43 - CFD: 14/01/2011 - 17:45:48 ----D- C:\Users\Matthieu\AppData\Roaming\TorrentBitch
O43 - CFD: 18/09/2010 - 16:54:20 ----D- C:\Users\Matthieu\AppData\Roaming\TS3Client
O43 - CFD: 25/10/2010 - 22:58:10 ----D- C:\Users\Matthieu\AppData\Roaming\Uniblue
O43 - CFD: 26/12/2010 - 00:27:02 ----D- C:\Users\Matthieu\AppData\Roaming\vlc
O43 - CFD: 19/08/2010 - 16:23:52 ----D- C:\Users\Matthieu\AppData\Roaming\WinRAR
O43 - CFD: 19/08/2010 - 16:28:28 ----D- C:\Users\Matthieu\AppData\Roaming\_MDLogs
O43 - CFD: 01/01/2011 - 21:46:32 ----D- C:\Program Files (x86)\7-Zip
O43 - CFD: 19/08/2010 - 19:14:00 ----D- C:\Program Files (x86)\Activation
O43 - CFD: 09/10/2010 - 23:21:28 ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 17/12/2010 - 18:20:44 ----D- C:\Program Files (x86)\ANI
O43 - CFD: 06/01/2010 - 09:44:02 ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 01/09/2010 - 17:26:52 ----D- C:\Program Files (x86)\CamStudio
O43 - CFD: 19/12/2010 - 21:46:34 ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 19/08/2010 - 20:27:30 ----D- C:\Program Files (x86)\Conduit
O43 - CFD: 25/10/2010 - 23:53:26 ----D- C:\Program Files (x86)\Crawler
O43 - CFD: 06/01/2010 - 09:51:06 ----D- C:\Program Files (x86)\Cyberlink
O43 - CFD: 17/12/2010 - 18:20:12 ----D- C:\Program Files (x86)\D-Link
O43 - CFD: 19/08/2010 - 16:13:02 ----D- C:\Program Files (x86)\Dofus 2
O43 - CFD: 17/12/2010 - 17:46:58 ----D- C:\Program Files (x86)\DofusArena
O43 - CFD: 22/11/2010 - 18:23:40 ----D- C:\Program Files (x86)\DownloadToolz
O43 - CFD: 26/08/2010 - 08:56:16 ----D- C:\Program Files (x86)\EA GAMES
O43 - CFD: 19/08/2010 - 16:28:36 ----D- C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 19/01/2011 - 18:24:46 ----D- C:\Program Files (x86)\Electronic Arts
O43 - CFD: 03/10/2010 - 19:05:16 ----D- C:\Program Files (x86)\eMule
O43 - CFD: 30/08/2010 - 13:16:40 ----D- C:\Program Files (x86)\Google
O43 - CFD: 19/08/2010 - 19:13:46 ----D- C:\Program Files (x86)\Help
O43 - CFD: 06/01/2010 - 10:20:08 ----D- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 06/01/2010 - 09:54:52 ----D- C:\Program Files (x86)\hp
O43 - CFD: 06/01/2010 - 10:10:48 ----D- C:\Program Files (x86)\HP Games
O43 - CFD: 17/12/2010 - 17:13:28 ----D- C:\Program Files (x86)\ID Security Suite
O43 - CFD: 19/08/2010 - 17:31:28 ----D- C:\Program Files (x86)\iGraal
O43 - CFD: 17/12/2010 - 18:20:44 --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 06/01/2010 - 09:42:30 ----D- C:\Program Files (x86)\Intel
O43 - CFD: 18/12/2010 - 03:19:18 ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 21/09/2010 - 18:31:18 ----D- C:\Program Files (x86)\Java
O43 - CFD: 19/08/2010 - 19:13:46 ----D- C:\Program Files (x86)\Legal
O43 - CFD: 05/09/2010 - 18:43:44 ----D- C:\Program Files (x86)\LimeWire
O43 - CFD: 19/12/2010 - 22:59:42 ----D- C:\Program Files (x86)\LogMeIn Hamachi
O43 - CFD: 19/08/2010 - 21:08:12 ----D- C:\Program Files (x86)\LucasArts
O43 - CFD: 06/01/2010 - 10:15:20 ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 19/08/2010 - 15:21:48 ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 06/01/2010 - 10:16:48 ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 06/01/2010 - 10:17:50 ----D- C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 19/08/2010 - 15:21:42 ----D- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 15/11/2010 - 17:13:02 ----D- C:\Program Files (x86)\Microsoft WSE
O43 - CFD: 19/12/2010 - 03:01:08 ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 05/09/2010 - 18:12:08 ----D- C:\Program Files (x86)\Movie Maker 2.6
O43 - CFD: 05/01/2011 - 20:53:38 ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 14/07/2009 - 06:32:40 ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 20/08/2010 - 09:56:22 ----D- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 22/10/2010 - 19:43:26 ----D- C:\Program Files (x86)\Neffy
O43 - CFD: 18/09/2010 - 15:19:46 ----D- C:\Program Files (x86)\Notepad++
O43 - CFD: 19/08/2010 - 15:19:32 R---D- C:\Program Files (x86)\Online Services
O43 - CFD: 24/10/2010 - 13:54:36 ----D- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 28/12/2010 - 02:03:10 ----D- C:\Program Files (x86)\P2Pcontrol
O43 - CFD: 09/10/2010 - 19:36:06 ----D- C:\Program Files (x86)\pc_gear_fr
O43 - CFD: 19/08/2010 - 19:13:52 ----D- C:\Program Files (x86)\Plug-Ins
O43 - CFD: 19/08/2010 - 17:24:28 ----D- C:\Program Files (x86)\PremiumSoft
O43 - CFD: 19/08/2010 - 19:14:00 ----D- C:\Program Files (x86)\Presets
O43 - CFD: 06/01/2010 - 09:44:38 ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:40 ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 19/08/2010 - 19:14:10 ----D- C:\Program Files (x86)\Required
O43 - CFD: 24/09/2010 - 16:03:10 ----D- C:\Program Files (x86)\Rockstar Games
O43 - CFD: 19/08/2010 - 19:13:48 ----D- C:\Program Files (x86)\Samples
O43 - CFD: 19/08/2010 - 19:14:02 ----D- C:\Program Files (x86)\Scripting Guide
O43 - CFD: 22/10/2010 - 19:07:28 ----D- C:\Program Files (x86)\SecondLifeViewer2
O43 - CFD: 09/10/2010 - 23:21:22 ----D- C:\Program Files (x86)\Setuprog
O43 - CFD: 30/08/2010 - 13:15:26 R---D- C:\Program Files (x86)\Skype
O43 - CFD: 19/08/2010 - 20:27:30 ----D- C:\Program Files (x86)\Softonic_France
O43 - CFD: 25/10/2010 - 22:52:06 ----D- C:\Program Files (x86)\Software Informer
O43 - CFD: 21/09/2010 - 18:30:50 ----D- C:\Program Files (x86)\SourceTec
O43 - CFD: 21/01/2011 - 18:08:30 ----D- C:\Program Files (x86)\Steam
O43 - CFD: 05/01/2011 - 21:56:10 ----D- C:\Program Files (x86)\TeamViewer
O43 - CFD: 06/01/2010 - 09:44:48 --H-D- C:\Program Files (x86)\Temp
O43 - CFD: 05/01/2011 - 21:00:22 ----D- C:\Program Files (x86)\TorrentBitch
O43 - CFD: 25/10/2010 - 22:52:14 ----D- C:\Program Files (x86)\Uniblue
O43 - CFD: 14/07/2009 - 05:57:08 --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 25/10/2010 - 23:55:54 ----D- C:\Program Files (x86)\VideoLAN
O43 - CFD: 17/12/2010 - 17:07:16 ----D- C:\Program Files (x86)\Wakfu
O43 - CFD: 06/01/2010 - 18:29:16 ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 06/01/2010 - 10:18:04 ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 06/01/2010 - 10:14:58 ----D- C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 18/12/2010 - 03:19:16 ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 13/10/2010 - 19:22:40 ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:40 ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 06/01/2010 - 18:29:16 ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:42 ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 19/08/2010 - 15:19:32 ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 19/08/2010 - 16:09:46 ----D- C:\Program Files (x86)\WinRAR
O43 - CFD: 09/10/2010 - 19:36:04 ----D- C:\Program Files (x86)\x3Codec
O43 - CFD: 21/01/2011 - 18:13:56 ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 17/12/2010 - 19:50:28 ----D- C:\Program Files\Common Files\BitDefender
O43 - CFD: 22/10/2010 - 21:16:26 ----D- C:\Program Files\Common Files\INCA Shared
O43 - CFD: 06/01/2010 - 10:14:00 ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 04:20:10 ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 06/01/2010 - 18:30:16 ----D- C:\Program Files\Common Files\System


---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.5EF099AC4809B5151BABB6CC0F3C37EA] - 21/01/2011 - 18:09:45 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1648942]
O44 - LFC:[MD5.ECD1ED0A17B1294A88EC5A5C1AAA90F3] - 21/01/2011 - 18:09:45 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [119030]
O44 - LFC:[MD5.F002E6F744F2282155813AB9965A7E95] - 21/01/2011 - 18:09:45 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [146598]
O44 - LFC:[MD5.485E9436602C9D5A7E1FA1208E2B2BC1] - 21/01/2011 - 18:09:45 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [647900]
O44 - LFC:[MD5.EBAA7FCDB23344F05877F3E96F3544AB] - 21/01/2011 - 18:09:45 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [740788]
O44 - LFC:[MD5.E7761074FD2F8E2F1C4F32099522F64C] - 21/01/2011 - 17:40:33 --HA- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [15792]
O44 - LFC:[MD5.E7761074FD2F8E2F1C4F32099522F64C] - 21/01/2011 - 17:40:33 --HA- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [15792]
O44 - LFC:[MD5.08000000000000000000000078EE1800] - 21/01/2011 - 17:34:19 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1916021]
O44 - LFC:[MD5.AE0D80DE6874C05F8C1EDCF59C9CD877] - 21/01/2011 - 17:32:59 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\setupact.log [37581]
O44 - LFC:[MD5.06A17D9C65F6F69F811B02CE84A637DE] - 21/01/2011 - 17:32:56 -S-A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.EDB98905A97720982611F8F4DA404973] - 21/01/2011 - 00:24:24 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\SysNative\ashttpstats.csv [52]
O44 - LFC:[MD5.1F8EC836D75F77A35258531FC51FA5FD] - 19/01/2011 - 18:29:38 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\DirectX.log [217784]
O44 - LFC:[MD5.5EF099AC4809B5151BABB6CC0F3C37EA] - 17/01/2011 - 16:50:33 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\System32\PerfStringBackup.INI [1625872]
O44 - LFC:[MD5.C8B17A2E02FFFCDD68B750ECD9CB79AD] - 06/01/2011 - 17:06:29 ---A- . (.Pas de propri�taire - Pas de description.) -- C:\Windows\PFRO.log [651394]


---\\ D�ni du service (Local Security Authority) (LSA) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll


---\\ MountPoints2 Shell Key (MPSK) (O51)
O51 - MPSK:{21d95212-296e-11df-ba28-806e6f6e6963}\Shell\AutoRun\command. (.Electronic Arts Inc. - Electronic Arts AutoRun.) -- E:\Autorun.exe


---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm


---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll


---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0


---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0


---\\ Liste des Drivers Syst�me (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]
O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [106576]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]
O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [28752]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]
O58 - SDL:[MD5.D481083348138B4933ACFE95812DB71C] - 19/11/2009 - 08:30:56 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys [123408]
O58 - SDL:[MD5.EAF3D0BE71539AAE73CECAA9C78EE1F5] - 02/12/2009 - 13:55:26 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [6175744]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]
O58 - SDL:[MD5.F050E487A787239C182C279CA97E8CF4] - 29/01/2010 - 14:47:04 ---A- . (.BitDefender S.R.L. Bucharest, ROMANIA - BitDefender Active Virus Control Filter Driver.) -- C:\Windows\system32\drivers\bdfm.sys [163936]
O58 - SDL:[MD5.CD211CFA62CAB0D4C18B5CB8337F57C2] - 17/12/2010 - 20:00:40 ---A- . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\Windows\system32\drivers\BdfNdisf6.sys [88144]
O58 - SDL:[MD5.ABD97BFB299713A51FE36AAAB71F73A2] - 22/02/2010 - 14:57:54 ---A- . (.BitDefender - BitDefender AntiVirus FS filter driver.) -- C:\Windows\system32\drivers\bdfsfltr.sys [347336]
O58 - SDL:[MD5.F647CDF4123B7E24E33A313E5BFFEFC1] - 29/01/2010 - 14:46:34 ---A- . (.BitDefender S.R.L. Bucharest, ROMANIA - BitDefender AntiVirus Hypervisor driver.) -- C:\Windows\system32\drivers\bdhv.sys [102720]
O58 - SDL:[MD5.B89DEFF4817B4CC6FC2BCD8F83B4E75D] - 19/01/2010 - 19:32:40 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\Windows\system32\drivers\BDVEDISK.sys [103944]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother S�rie I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]
O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 03/02/2010 - 14:56:56 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\drivers\hamachi.sys [33856]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]
O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 17/09/2009 - 13:54:54 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\system32\drivers\HECIx64.sys [56344]
O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [77888]
O58 - SDL:[MD5.631FA8935163B01FC0C02966CB3ADB92] - 02/10/2009 - 12:58:58 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [537112]
O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410688]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]
O58 - SDL:[MD5.618C55B392238B9467F9113E13525C49] - 10/06/2009 - 21:35:36 ---A- . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\system32\drivers\netr28ux.sys [867328]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]
O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA� nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [149056]
O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA� nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [167488]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]
O58 - SDL:[MD5.3D542C75DDCD791C06488EE121074A30] - 15/04/2009 - 13:33:00 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\Windows\system32\drivers\rt2870.sys [941056]
O58 - SDL:[MD5.3B01789EE4EAEE97F5EB46B711387D5E] - 21/08/2009 - 01:05:06 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys [239616]
O58 - SDL:[MD5.EF75C94792187A143871FBB87611B0B7] - 15/09/2009 - 20:08:00 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [2004128]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]
O58 - SDL:[MD5.A340ABC480C43C30CABC943E78AC631E] - 07/07/2010 - 10:26:46 ---A- . (.Windows (R) Win 7 DDK provider - Spyware Terminator filter driver.) -- C:\Windows\system32\drivers\stflt.sys [50696]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]
O58 - SDL:[MD5.1E6438D4EA6E1174A3B3B1EDC4DE660B] - 18/03/2009 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\system32\hamachi.sys [33856]
O58 - SDL:[MD5.9131FE60ADFAB595C8DA53AD6A06AA31] - 03/01/2005 - 16:43:08 ---A- . (.INCA Internet Co., Ltd. - nProtect NPSC Kernel Mode Driver for NT.) -- C:\Windows\SysWOW64\npptNT2.sys [4682]


---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1


---\\ Liste des services Legacy (LALS) (O64)
O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWFSBLK
O64 - Services: CurCS - (.not file.) - aswMonFlt (aswMonFlt) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWRDR
O64 - Services: CurCS - (.not file.) - aswSP (aswSP) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWSP
O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propri�taire - Pas de description.) - LEGACY_ASWTDI
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\bdfm.sys - BDFM (BDFM) .(.BitDefender S.R.L. Bucharest, ROMANIA - BitDefender Active Virus Control Filter Dri.) - LEGACY_BDFM
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\BdfNdisf6.sys - BitDefender Firewall NDIS 6 Filter Driver (BdfNdisf) .(.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - LEGACY_BDFNDISF
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\bdfsfltr.sys - bdfsfltr (bdfsfltr) .(.BitDefender - BitDefender AntiVirus FS filter driver.) - LEGACY_BDFSFLTR
O64 - Services: CurCS - C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys - bdfwfpf (bdfwfpf) .(.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - LEGACY_BDFWFPF
O64 - Services: CurCS - C:\Program Files\BitDefender\BitDefender 2010\bdvedisk.sys - BDVEDISK (BDVEDISK) .(.BitDefender - FileVault Disk Driver.) - LEGACY_BDVEDISK
O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(.Pas de propri�taire - Pas de description.) - LEGACY_BEEP
O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS
O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - C:\Windows\System32\Drivers\cng.sys - CNG (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - (.not file.) - Symantec Eraser Control driver (eeCtrl) .(.Pas de propri�taire - Pas de description.) - LEGACY_EECTRL
O64 - Services: CurCS - (.not file.) - EraserUtilDrv11010 (EraserUtilDrv11010) .(.Pas de propri�taire - Pas de description.) - LEGACY_ERASERUTILDRV11010
O64 - Services: CurCS - (.not file.) - EraserUtilRebootDrv (EraserUtilRebootDrv) .(.Pas de propri�taire - Pas de description.) - LEGACY_ERASERUTILREBOOTDRV
O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(.Pas de propri�taire - Pas de description.) - LEGACY_FASTFAT
O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de syst�me de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propri�taire - Pas de description.) - LEGACY_FS_REC
O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - (.not file.) - IDSVia64 (IDSVia64) .(.Pas de propri�taire - Pas de description.) - LEGACY_IDSVIA64
O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - C:\Windows\System32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propri�taire - Pas de description.) - LEGACY_MSFS
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Microsoft Corporation - Pilote d�E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propri�taire - Pas de description.) - LEGACY_NDPROXY
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propri�taire - Pas de description.) - LEGACY_NPFS
O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propri�taire - Pas de description.) - LEGACY_NTFS
O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propri�taire - Pas de description.) - LEGACY_NULL
O64 - Services: CurCS - (.not file.) - PC Tools Data Store (pctDS) .(.Pas de propri�taire - Pas de description.) - LEGACY_PCTDS
O64 - Services: CurCS - (.not file.) - PC Tools Extended File Attributes (pctEFA) .(.Pas de propri�taire - Pas de description.) - LEGACY_PCTEFA
O64 - Services: CurCS - (.not file.) - PCTSDInjDriver64 (PCTSDInjDriver64) .(.Pas de propri�taire - Pas de description.) - LEGACY_PCTSDINJDRIVER64
O64 - Services: CurCS - C:\Windows\System32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - C:\Windows\System32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(.Pas de propri�taire - Pas de description.) - LEGACY_SECDRV
O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(.Pas de propri�taire - Pas de description.) - LEGACY_SPLDR
O64 - Services: CurCS - (.not file.) - Spyware Terminator Driver Filter (sp_rsdrv2) .(.Pas de propri�taire - Pas de description.) - LEGACY_SP_RSDRV2
O64 - Services: CurCS - (.not file.) - Symantec Real Time Storage Protection (PEL) x64 (SRTSPX) .(.Pas de propri�taire - Pas de description.) - LEGACY_SRTSPX
O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - (.not file.) - Symantec Data Store (SymDS) .(.Pas de propri�taire - Pas de description.) - LEGACY_SYMDS
O64 - Services: CurCS - (.not file.) - Symantec Extended File Attributes (SymEFA) .(.Pas de propri�taire - Pas de description.) - LEGACY_SYMEFA
O64 - Services: CurCS - (.not file.) - Symantec Iron Driver (SymIRON) .(.Pas de propri�taire - Pas de description.) - LEGACY_SYMIRON
O64 - Services: CurCS - (.not file.) - Symantec Network Security WFP Driver (SymNetS) .(.Pas de propri�taire - Pas de description.) - LEGACY_SYMNETS
O64 - Services: CurCS - (.not file.) - Symantec Vista Network Dispatch Driver (SYMTDIv) .(.Pas de propri�taire - Pas de description.) - LEGACY_SYMTDIV
O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TCPIP
O64 - Services: CurCS - C:\Windows\System32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TDX
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\udfs.sys - udfs (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS
O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d�extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\vwififlt.sys - Virtual WiFi Filter Driver (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - C:\Windows\System32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
O64 - Services: CurCS - C:\Windows\System32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF


---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe


---\\ Start Menu Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Matthieu\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe


---\\ Search Browser Infection (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (Recherche Crawler) - http://www.crawler.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Setuprog Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {D0E0A030-57D0-4808-86B4-8C15E9703C6A} [DefaultScope] - (Bing) - http://www.bing.com


---\\ Recherche particuliere � la racine de certains dossiers (SPRF) (O84)
[MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\Temp\Adobe-AIR-Windows.67577.exe [0]
[MD5.52C86DA7D594AA3D365AF0DAA1BEB0E2] [SPRF] (.Electronic Arts Inc. - Electronic Arts AutoRun.) -- C:\Users\Matthieu\AppData\Local\Temp\AutoRun.exe [569344]
[MD5.116B9E2485E6280894D199DDA4F69996] [SPRF] (.Electronic Arts Inc. - AutoRun GUI.) -- C:\Users\Matthieu\AppData\Local\Temp\AutoRunGUI.dll [880640]
[MD5.BE6111446120D5EE9BCE3879AE0AA324] [SPRF] (.Sony DADC Austria AG - SecuROM dynamic-data module.) -- C:\Users\Matthieu\AppData\Local\Temp\drm_dyndata_7340014.dll [208896]
[MD5.3E9B2A232E90FA98DFE3F0866E201883] [SPRF] (.Sony DADC Austria AG - SecuROM dynamic-data module.) -- C:\Users\Matthieu\AppData\Local\Temp\drm_dyndata_7380014.dll [204800]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EAD16E9.exe [19072216]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EAD3014.exe [19072216]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EAD3458.exe [19072216]
[MD5.90812A0090B469C566E28C5E832F6AD2] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EAD4124.exe [18626560]
[MD5.68ABC49061773064053C254AEAA35933] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EAD49AC.exe [1454080]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EAD4EA5.exe [19072216]
[MD5.284BE2F5858E2881582B0B6A661A0630] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EAD702F.exe [641024]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EAD924.exe [19072216]
[MD5.62DCC6CCDD81B91968CF0104CFCBAF52] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADB200.exe [2930688]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADB653.exe [19072216]
[MD5.97E8E092F2FFA3123E0FCD8DF6C0623E] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADB8E2.exe [425984]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADB940.exe [19072216]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADD1DE.exe [19072216]
[MD5.362093C6FED16CC49F67D8430B7F5F63] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADD6BE.exe [2592768]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADDA09.exe [19072216]
[MD5.4BEB44C80CE471B71314935FD932EE3A] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADDA95.exe [19072216]
[MD5.3250E595288F6594A220CE15063FB752] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADE703.exe [630784]
[MD5.30FA44E4C71A5D28799093ACEFEA338B] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\Temp\EADF19E.exe [282624]
[MD5.0330E49C0F8C29130739E25506261DE8] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADF67E.exe [3989504]
[MD5.D403B950BFD4475DED4020C2F242E3C7] [SPRF] (.Electronic Arts, Inc. - EADM.) -- C:\Users\Matthieu\AppData\Local\Temp\EADFA16.exe [2371584]
[MD5.77850340BEA108AA94CDA25AF0DD3FF8] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\Temp\EAInstall.dll [720896]
[MD5.53947FC1765DCA1B08315CC9D02F2D47] [SPRF] (.Electronic Arts Inc. - Uninstall.) -- C:\Users\Matthieu\AppData\Local\Temp\eauninstall.exe [344064]
[MD5.FF637BFA17992211F0AA14120CE70283] [SPRF] (.Adobe Systems Incorporated - Adobe� Flash� Player Plugin Installer.) -- C:\Users\Matthieu\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exe [1919084]
[MD5.5055261D8EDBA27F1B1A48F84762AEF2] [SPRF] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\Matthieu\AppData\Local\Temp\GLFCDCF.tmp.tbSetu.dll [2355296]
[MD5.DBA8CA2571C09E40173D1159F500250B] [SPRF] (.Google Inc. - Google Toolbar Installer.) -- C:\Users\Matthieu\AppData\Local\Temp\GoogleToolbarInstaller.exe [200816]
[MD5.F56DA260AB7EC4DBD6A53EAE39ADAD48] [SPRF] (.Google Inc. - Setup.) -- C:\Users\Matthieu\AppData\Local\Temp\GoogleUpdateSetup.exe7a563d8 [568472]
[MD5.16D45CDEEC7143E03882F4F2B6EA7E1F] [SPRF] (.Google Inc. - Setup.) -- C:\Users\Matthieu\AppData\Local\Temp\GoogleUpdateSetup.exee6b183c [567448]
[MD5.D5E47AA25F79DDB3A64B3169399FD2AA] [SPRF] (.Pas de propri�taire - iGraal Toolbar Installer.) -- C:\Users\Matthieu\AppData\Local\Temp\igraal.exe [2324992]
[MD5.B738F26887FA4238CF7A0FB3B53047F7] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\Temp\NeffySetup.exe [785403]
[MD5.7B1CFE1DC62D85A4B09F0BFFCD687E4A] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\Temp\pc_gear_fr.exe [1827664]
[MD5.D3E007FBC92173642415D33A0CD83D18] [SPRF] (.Google Inc. - GoogleToolbarNotifier.) -- C:\Users\Matthieu\AppData\Local\Temp\SearchWithGoogleUpdate.exe [426552]
[MD5.5868DDA66BBCB178D7A267187DCD3DC0] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\Temp\Second Life Setup.exe [24835392]
[MD5.EE07564E0D643BD8F952F07D7C160221] [SPRF] (.Skype Technologies S.A. - Skype.) -- C:\Users\Matthieu\AppData\Local\Temp\SkypeSetup.exe [21164424]
[MD5.82FF4A177D6E4ABC381802FB66AFC8EE] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\Temp\Softonic_France.exe [1831248]
[MD5.4BFBC5139DA3E964D9A3FA656FB4127E] [SPRF] (.Electronic Arts Inc. - Uninstalls the CD key.) -- C:\Users\Matthieu\AppData\Local\Temp\The Lord of the Rings, The Rise of the Witch-king_uninst.exe [94208]
[MD5.D7D9445362AEE97FAA2214CB21B28C2F] [SPRF] (.Microsoft Corporation - Windows Live Installer.) -- C:\Users\Matthieu\AppData\Local\Temp\wlsetup-cvr.exe [84621672]
[MD5.ED324284FA119EF0F240AC9E2262D666] [SPRF] (.Microsoft Corporation - Windows Media Component Setup Application.) -- C:\Users\Matthieu\AppData\Local\Temp\wmpfirefoxplugin.exe [318904]
[MD5.887173F53072CD2D238014F4199B35CF] [SPRF] (.Pas de propri�taire - Pas de description.) -- C:\Users\Matthieu\AppData\Local\Temp\xmlUpdater.exe [118784]


---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 0 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe
SR - | Auto 26/02/2009 147456 | (ANIWConnService) . (.Pas de propri�taire.) - C:\Windows\system32\ANIWConnService.exe
SS - | Demand 19/01/2007 49152 | (ANIWZCSdService) . (.Wireless Service.) - C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
SS - | Demand 19/10/2009 278224 | (Arrakis3) . (.BitDefender S.R.L. http://www.bitdefender.c.) - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
SS - | Demand 06/06/2009 250616 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SS - | Auto 30/08/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 30/08/2010 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 06/12/2010 2101640 | LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc..) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
SR - | Auto 24/09/2009 125440 | (HP Health Check Service) . (.Hewlett-Packard.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
SS - | Demand 30/04/2009 229944 | (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
SR - | Auto 02/10/2009 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Auto 20/08/2009 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SR - | Auto 11/01/2010 405920 | (LIVESRV) . (.BitDefender S.R.L..) - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
SS - | Demand 08/09/2010 3852792 | (npggsvc) . (.INCA Internet Co., Ltd..) - C:\Windows\system32\GameMon.des
SR - | Demand 15/01/2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 07/12/2010 2228008 | (TeamViewer6) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
SR - | Auto 24/03/2010 2299656 | (VSSERV) . (.BitDefender S.R.L..) - C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
SS - | Demand 10/12/2008 24636 | (wampapache) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
SS - | Demand 17/06/2009 6582912 | (wampmysqld) . (.Pas de propri�taire.) - c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe


---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, http://www.gmer.net
Run by Matthieu at 21/01/2011 18:15:00

device: opened successfully
user: error reading MBR

Disk trace:
error: Read Descripteur non valide
kernel: error reading MBR


---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Matthieu at 21/01/2011 18:15:01
Use the desktop link 'MBRCheck' to have full report




End of the scan (1065 lines in 01mn 07s)(0)

Publicité


Signaler le contenu de ce document

Publicité