stopovirus Index du Forum
Connexion S’enregistrer FAQ Membres Rechercher stopovirus Index du Forum

Demarrage windows xp pro
Aller à la page: 1, 2  >

 
Poster un nouveau sujet   Répondre au sujet    stopovirus Index du Forum » Lutte anti malware » Eradication virus lutte antimalware
Sujet précédent :: Sujet suivant  
Auteur Message
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 09:48 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Voici le rapport
merci Geronimo  

Le rapport n'a pu etre copier collé que devellopé



     Rapport de ZHPDiag v1.28.1367 par Nicolas Coolman, Update du 05/10/2011
Run by servid at 07/10/2011 09:31:08
Web site :  http://www.premiumorange.com/zeb-help-process/zhpdiag.html
State : Version à jour.

---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702 (Defaut)
---\\ Windows Product Information
Windows XP Professional Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : KO
---\\ System Information
~ Processor: x86 Family 15 Model 47 Stepping 2, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2047 MB (75% free)
System Restore: Activé (Enable)
System drive C: has 73 GB (74%) free of 98 GB
---\\ Logged in mode
~ Computer Name: SERVID-EEDAD147
~ User Name: servid
~ All Users Names: SUPPORT_388945a0, servid, HelpAssistant, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\servid\Application Data\
~ %Desktop% : C:\Documents and Settings\servid\Bureau\
~ %Favorites% : C:\Documents and Settings\servid\Favoris\
~ %LocalAppData% : C:\Documents and Settings\servid\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\servid\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 73 Go of 98 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ CD-ROM drive (Not Inserted)
Z:\ Hard drive, Flash drive, Thumb drive (Free 89 Go of 92 Go)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc :  OK
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.07/10/2011 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (....) (.07/10/2011 - 03:34:20.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.3008D2F793F23FF0DDBC5A1FB9F8374F] - (.Microsoft Corporation - Internet Extensions for Win32.) (.07/10/2011 - 19:31:31.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.07/10/2011 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.355556D9E580915118CD7EF736653A89] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.07/10/2011 - 14:22:48.) -- C:\WINDOWS\system32\drivers\AFD.sys [138496] *1868
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.07/10/2011 - 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512] *1788
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.07/10/2011 - 20:14:21.) -- C:\WINDOWS\system32\drivers\Cdfs.sys [63744] *1804
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.07/10/2011 - 19:40:46.) -- C:\WINDOWS\system32\drivers\Cdrom.sys [62976] *1780
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.07/10/2011 - 02:57:38.) -- C:\WINDOWS\system32\drivers\Fips.sys [44672] *1852
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.07/10/2011 - 17:36:05.) -- C:\WINDOWS\system32\drivers\HDAudBus.sys [144384] *1940
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.07/10/2011 - 02:00:52.) -- C:\WINDOWS\system32\drivers\i8042prt.sys [54144] *1852
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.07/10/2011 - 19:40:58.) -- C:\WINDOWS\system32\drivers\Imapi.sys [42112] *1780
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.07/10/2011 - 19:57:15.) -- C:\WINDOWS\system32\drivers\IpNat.sys [152832] *1820
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.07/10/2011 - 20:19:42.) -- C:\WINDOWS\system32\drivers\IPSec.sys [75264] *1756
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.07/10/2011 - 14:29:31.) -- C:\WINDOWS\system32\drivers\MRxSmb.sys [456320] *1844
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.07/10/2011 - 20:21:00.) -- C:\WINDOWS\system32\drivers\netBT.sys [162816] *1788
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.07/10/2011 - 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976] *1788
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.07/10/2011 - 03:09:40.) -- C:\WINDOWS\system32\drivers\Parport.sys [80384] *1852
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.07/10/2011 - 20:19:43.) -- C:\WINDOWS\system32\drivers\Rasl2tp.sys [51328] *1876
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.07/10/2011 - 19:32:51.) -- C:\WINDOWS\system32\drivers\rdpdr.sys [196224] *1828
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.07/10/2011 - 02:57:34.) -- C:\WINDOWS\system32\drivers\redbook.sys [58752] *1892
~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/6
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 2/13
~ Mes Documents (My Documents) : 5/85
~ Mon Bureau (My Desktop) : 1/103
~ Menu demarrer (Programs) : 5/22
~ Scan Hidden Files in 00mn 00s

---\\ Processus lancés
[MD5.12B3F5F99C66BE723D48163D4FC4A7B7] - (.Bitdefender - Bitdefender Security Service.) -- C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe   [1538472] [PID.]
[MD5.80FD4D46B0E9B620CF757A9A5C789329] - (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.EXE   [577536] [PID.640]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (...) -- C:\WINDOWS\system32\RUNDLL32.EXE   [33792] [PID.1412]
[MD5.7C6B5065E7326E3C91A62800DF3A31FA] - (.HP - Pas de description.) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe   [196608] [PID.1440]
[MD5.AE46C853FD91107E39A779EE86FB6387] - (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe   [1312848] [PID.1184]
[MD5.826DDBBCA98F2E6CD1DFE33CEF33994C] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe   [37296] [PID.1548]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe   [254696] [PID.1780]
[MD5.6A1C0484F4F766D1F59A0514630CDD5C] - (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe   [1147048] [PID.1936]
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [135664] [PID.]
[MD5.9DBA73C2F1E76EC4CB837E67C5743596] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe   [153376] [PID.]
[MD5.B346A8EA9B9D03D60260BB6E30427F09] - (.Logitech, Inc. - Logitech KHAL Main Process.) -- C:\Program Files\Fichiers communs\LogiShrd\KHAL3\KHALMNPR.EXE   [112208] [PID.2520]
[MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE   [322120] [PID.]
[MD5.2D8305D4248C03AF9D93FFFFA486309B] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 158.1.) -- C:\WINDOWS\system32\nvsvc32.exe   [163908] [PID.]
[MD5.79F973BA07FC942FA5630894E272D137] - (.Bitdefender - Bitdefender Update Service.) -- C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe   [50128] [PID.]
[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe   [53472] [PID.]
[MD5.7B2E3899314974CC40D93A6CD7C855C8] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [2134016] [PID.3700]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe   [44544] [PID.]
~ Scan Processes Running in 00mn 00s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\servid\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
~ Scan Google Browser in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.9.615.) -- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://free.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch
R0 - HKUS\S-1-5-21-448539723-2077806209-725345543-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://free.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://ie.search.msn.com
R1 - HKUS\S-1-5-21-448539723-2077806209-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) (6.1.2.0) -- C:\PROGRA~1\COPERN~1\COPERN~1.DLL
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19098 (longhorn_ie8_gdr.110617-1715)) -- C:\WINDOWS\system32\ieframe.dll
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IE5BarLauncherBHO Class - {78F3A323-798E-4AEA-9A57-88F4B05FD5DD} . (.VShare Inc. - This is a module that is required for the o.) -- C:\Program Files\vShare.tv plugin\BarLcher.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
~ Scan BHO in 00mn 00s

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- C:\Program Files\Copernic Agent\CopernicAgentExt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: VShareToolBar - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} . (.VShare Inc. - This is a module that is required for the o.) -- C:\Program Files\vShare.tv plugin\BarLcher.dll
~ Scan Toolbar in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [NeroCheck] . (.Ahead Software Gmbh - NeroCheck.) -- C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SoundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\WINDOWS\SOUNDMAN.exe
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll
O4 - HKLM\..\Run: [nwiz] . (...) -- C:\WINDOWS\system32\nwiz.exe
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] . (.HP - Pas de description.) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [BDAgent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-448539723-2077806209-725345543-1003\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (...)  -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...)  -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Conseiller de mise à niveau vers Windows 7.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor\WindowsUpgradeAdvisor.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Copernic Agent Basic.lnk . (.Copernic Technologies Inc..)  -- C:\Program Files\Copernic Agent\CopernicAgent.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.)  -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\TuneUp Utilities 2006.lnk . (.TuneUp Software GmbH.)  -- C:\Program Files\TuneUp Utilities 2006\Integrator.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\servid\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.)  -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\servid\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\servid\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Outlook Express\msimn.exe
O4 - Global Startup: C:\Documents And Settings\servid\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 01s

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Chercher avec Copernic Agent . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- C:\Program Files\Copernic Agent\CopernicAgentExt.rdl
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.exe
O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll
~ Scan IE Menu Contextuel in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Démarrer Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} . (.Copernic Technologies Inc. - Copernic Agent.) -- C:\PROGRA~1\COPERN~1\COPERN~1.exe
O9 - Extra button: Démarrer Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} . (...) -- C:\Program Files\Copernic Agent\Web\IEToolbarHotIcon.ico
O9 - Extra button: Démarrer Copernic Agent - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ Scan IE Extra Buttons in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
~ Scan Winsock in 00mn 00s

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} () - http://fichiers.touslesdrivers.com/maconfig/MaConfig_4_0_2_0.cab
O16 - DPF: {A9F8D9EC-3D0A-4A60-BD82-FBD64BAD370D} (DDRevision Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
~ Scan Objets ActiveX in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{BD630E49-71E7-45FB-A22E-6FB23E677FF6}: DhcpNameServer = 172.16.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{BD630E49-71E7-45FB-A22E-6FB23E677FF6}: DhcpNameServer = 172.16.0.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{BD630E49-71E7-45FB-A22E-6FB23E677FF6}: DhcpNameServer = 172.16.0.1
~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} . (.Logitech Inc. - Logitech Desktop Messenger.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: copernicagent - {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- C:\PROGRA~1\COPERN~1\COPERN~1.DLL
O18 - Handler: copernicagentcache - {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} . (.Copernic Technologies Inc. - Copernic Agent Extensions.) -- C:\PROGRA~1\COPERN~1\COPERN~1.DLL
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL
O18 - Handler: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\PROGRA~1\FICHIE~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\PROGRA~1\FICHIE~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Scan Winlogon in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
~ Scan SSODL in 00mn 00s

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
~ Scan STS/SSO in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 158.1.) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: BitDefender Desktop Update Service (UPDATESRV) . (.Bitdefender - Bitdefender Update Service.) - C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
O23 - Service: BitDefender Virus Shield (vsserv) . (.Bitdefender - Bitdefender Security Service.) - C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe
~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe
~ Scan Desktop Component in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\Maintenance en 1 clic.job
O39 - APT:Automatic Planified Task  - C:\WINDOWS\Tasks\User_Feed_Synchronization-{8165FA3A-8C73-4911-BA07-50F030DF59B5}.job
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.)
[MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.496AFEBBF7B3AC4D5A2C814D84E98518] [APT] [Maintenance en 1 clic] (.TuneUp Software GmbH.) -- C:\Program Files\TuneUp Utilities 2006\SystemOptimizer.exe
~ Scan Scheduled Task in 00mn 00s

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver:  (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver:  (AmdK8) . (.Advanced Micro Devices - AMD Processor Driver.) - C:\WINDOWS\system32\DRIVERS\AmdK8.sys
O41 - Driver:  (bdftdif) . (.BitDefender LLC - BitDefender Firewall TDI Filter Driver.) - C:\Program Files\Fichiers communs\Bitdefender\Bitdefender Firewall\bdftdif.sys
O41 - Driver:  (bdselfpr) . (.BitDefender LLC - BitDefender Self Protection Driver.) - C:\Program Files\Bitdefender\Bitdefender 2012\bdselfpr.sys
O41 - Driver:  (BDVEDISK) . (.BitDefender - FileVault Disk Driver.) - C:\WINDOWS\system32\DRIVERS\bdvedisk.sys
O41 - Driver:  (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver:  (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver:  (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver:  (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver:  (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver:  (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver:  (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver:  (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver:  (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver:  (Processor) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\processr.sys
O41 - Driver:  (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver:  (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
O41 - Driver:  (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver:  (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\system32\DRIVERS\serial.sys
O41 - Driver:  (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (WS2IFSL) . (.Microsoft Corporation - Winsock2 IFS Layer.) - C:\WINDOWS\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: ACDSee 7.0 - (.ACD Systems Ltd..) [HKLM] -- {4803A540-7B26-46F3-80F5-49C76282E038}
O42 - Logiciel: AMD Processor Driver - (.AMD.) [HKLM] -- {C151CE54-E7EA-4804-854B-F515368B0798}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.4.6 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Ahead Nero Burning ROM - (.Pas de propriétaire.) [HKLM] -- Nero - Burning Rom!UninstallKey
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {3FA365DF-2D68-45ED-8F83-8C8A33E65143}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
O42 - Logiciel: Bitdefender Antivirus Plus 2012 - (.Bitdefender.) [HKLM] -- Bitdefender
O42 - Logiciel: Bitdefender Antivirus Plus 2012 - (.Bitdefender.) [HKLM] -- {2AB9289D-6432-4CC0-8869-A195C3F0CFCC}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Company of Heroes - (.THQ Inc..) [HKLM] -- {51D718D1-DA81-4FAD-919F-5C1CE3C33379}
O42 - Logiciel: Conseiller de mise à niveau vers Windows 7 - (.Microsoft Corporation.) [HKLM] -- {9D10CB57-B085-44c3-B435-2D193BA153F0}
O42 - Logiciel: Copernic Agent Basic - (.Copernic.) [HKLM] -- Copernic Agent Basic
O42 - Logiciel: EVEREST Home Edition v2.20 - (.Lavalys Inc.) [HKLM] -- EVEREST Home Edition_is1
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}
O42 - Logiciel: HP Driver Diagnostics - (.Nom de votre société.) [HKLM] -- {4CCC7F68-A437-4559-A840-F5E010934951}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Java(TM) 6 Update 26 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216022FF}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Logitech Desktop Messenger - (.Logitech, Inc..) [HKLM] -- {900B1197-53F5-4F46-A882-2CFFFE2EEDCB}
O42 - Logiciel: Logitech SetPoint 6.0 - (.Logitech.) [HKLM] -- SP6
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1  (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 - (.Microsoft Corporation.) [HKLM] -- Wdf01009
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
O42 - Logiciel: MiraScan V4.03 - (.Pas de propriétaire.) [HKLM] -- {01000A03-E058-11D3-9C13-0000E220DC33}
O42 - Logiciel: NVIDIA Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA ForceWare Network Access Manager - (.NVIDIA Corporation.) [HKLM] -- InstallShield_{1F6423DE-7959-4178-80E0-023C7EAA5347}
O42 - Logiciel: Package de base Microsoft de service de chiffrement pour cartes à puce - (.Microsoft Corporation.) [HKLM] -- KB909520
O42 - Logiciel: Personal Ancestral File - (.Pas de propriétaire.) [HKLM] -- {09DE2F51-DF0A-11D3-9DBC-00C04F522588}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
O42 - Logiciel: Realtek AC'97 Audio - (.Realtek Semiconductor Corp..) [HKLM] -- {FB08F381-6533-4108-B7DD-039E11FBC27E}
O42 - Logiciel: SAMSUNG Mobile Composite Device Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile Composite Device
O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile Modem
O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0
O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem
O42 - Logiciel: Samsung Mobile phone USB driver Software - (.Pas de propriétaire.) [HKLM] -- Samsung Mobile phone USB driver
O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {C4A4722E-79F9-417C-BD72-8D359A090C97}
O42 - Logiciel: Samsung PC Studio 3 USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM] -- {EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}
O42 - Logiciel: Samsung Samples Installer - (.Samsung Electronics Co., Ltd..) [HKLM] -- {7AC15160-A49B-4A89-B181-D4619C025FFF}
O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473
O42 - Logiciel: SiSoftware Sandra Lite 2010c - (.SiSoftware.) [HKLM] -- {C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: TuneUp Utilities 2006 - (.TuneUp Software.) [HKLM] -- {868D7896-99D4-4513-BC62-2B3AD3E24926}
O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11
O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service
O42 - Logiciel: eReg - (.Logitech, Inc..) [HKLM] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
O42 - Logiciel: hp deskjet 930c series (Supprimer uniquement) - (.Pas de propriétaire.) [HKLM] -- hp deskjet 930c series
---\\ HKCU & HKLM Software Keys
[HKCU\Software\65]
[HKCU\Software\ACD Systems]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Auslogics]
[HKCU\Software\Avance]
[HKCU\Software\BitDefender]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Copernic]
[HKCU\Software\Corel]
[HKCU\Software\DL]
[HKCU\Software\Google]
[HKCU\Software\Imaging Solutions]
[HKCU\Software\Innovative Solutions]
[HKCU\Software\Intel]
[HKCU\Software\Jasc]
[HKCU\Software\JavaSoft]
[HKCU\Software\LDS Church]
[HKCU\Software\Lavalys]
[HKCU\Software\Lavasoft]
[HKCU\Software\Leadertech]
[HKCU\Software\Logitech]
[HKCU\Software\LowRegistry]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MiTeC]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Samsung PC Studio]
[HKCU\Software\Samsung]
[HKCU\Software\SearchCore for Browsers]
[HKCU\Software\SiSoftware]
[HKCU\Software\TAdvCheckList]
[HKCU\Software\THQ]
[HKCU\Software\TuneUp]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VicMan Software]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\dskMetrics]
[HKCU\Software\iMesh]
[HKCU\Software\keyhole.com]
[HKCU\Software\vShare.tv]
[HKLM\Software\ACD Systems]
[HKLM\Software\AMD]
[HKLM\Software\AVC3]
[HKLM\Software\Adobe]
[HKLM\Software\Ahead]
[HKLM\Software\Alienware]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\BackWeb]
[HKLM\Software\Benq Corporation]
[HKLM\Software\BitDefender]
[HKLM\Software\BrowserChoice]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Copernic]
[HKLM\Software\DivXNetworks]
[HKLM\Software\Eglise de Jésus-Christ des Saints des Derniers Jours]
[HKLM\Software\F4]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Innovative Solutions]
[HKLM\Software\InstallShield]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LDS Church]
[HKLM\Software\Lavasoft]
[HKLM\Software\Leadtek]
[HKLM\Software\Licenses]
[HKLM\Software\Logitech]
[HKLM\Software\MCCI]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MidasHeurScanner]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\MusicNet]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\Protexis]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Samsung Electronics Co., Ltd.]
[HKLM\Software\Samsung]
[HKLM\Software\Schlumberger]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Secure]
[HKLM\Software\SiSoftware]
[HKLM\Software\THQ]
[HKLM\Software\TuneUp]
[HKLM\Software\Uniblue]
[HKLM\Software\VideoLAN]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]
[HKLM\Software\Yahoo]
~ Scan Softwares in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 05/01/2010 - 15:04:24 - [56057245] ----D- C:\Program Files\667win2kxp32 carte graphique
O43 - CFD: 07/04/2010 - 09:04:12 - [11035961] ----D- C:\Program Files\ACD Systems
O43 - CFD: 27/01/2010 - 09:20:58 - [163109794] ----D- C:\Program Files\Adobe
O43 - CFD: 05/01/2010 - 16:54:00 - [105414127] ----D- C:\Program Files\Ahead
O43 - CFD: 05/01/2010 - 15:12:18 - [3142953] ----D- C:\Program Files\AMD
O43 - CFD: 06/03/2010 - 17:01:42 - [2221118] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 02/10/2011 - 10:04:04 - [9401861] ----D- C:\Program Files\Auslogics
O43 - CFD: 05/01/2010 - 15:15:54 - [5481472] ----D- C:\Program Files\AvRack
O43 - CFD: 10/09/2011 - 17:58:34 - [139698227] ----D- C:\Program Files\BitDefender
O43 - CFD: 06/03/2011 - 20:13:44 - [3653664] ----D- C:\Program Files\CCleaner
O43 - CFD: 08/09/2011 - 10:33:14 - [68438] ----D- C:\Program Files\CheckPoint
O43 - CFD: 05/01/2010 - 14:16:30 - [0] ----D- C:\Program Files\ComPlus Applications
O43 - CFD: 05/01/2010 - 15:55:00 - [8142989] ----D- C:\Program Files\Copernic Agent
O43 - CFD: 17/02/2010 - 17:59:24 - [339610157] ----D- C:\Program Files\Corel
O43 - CFD: 06/01/2010 - 22:54:28 - [201689134] ----D- C:\Program Files\Drivers carte mere KN8
O43 - CFD: 05/01/2010 - 16:47:42 - [6389026] ----D- C:\Program Files\FamilySearch
O43 - CFD: 14/06/2011 - 07:50:44 - [2090895938] ----D- C:\Program Files\Fichiers communs
O43 - CFD: 17/09/2011 - 18:08:34 - [129130009] ----D- C:\Program Files\Google
O43 - CFD: 05/01/2010 - 16:30:54 - [17272002] ----D- C:\Program Files\Hercules
O43 - CFD: 18/02/2010 - 19:37:12 - [9713536] ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 18/02/2010 - 09:58:14 - [2345616] ----D- C:\Program Files\Hp
O43 - CFD: 18/02/2010 - 19:38:50 - [1180999] ----D- C:\Program Files\hp deskjet 930c series
O43 - CFD: 02/02/2011 - 09:29:06 - [30760352] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 10/08/2011 - 14:09:56 - [5867664] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/06/2011 - 07:50:08 - [82105338] ----D- C:\Program Files\Java
O43 - CFD: 06/01/2010 - 10:34:56 - [6551192] ----D- C:\Program Files\Lavalys
O43 - CFD: 12/03/2010 - 11:39:26 - [34451158] ----D- C:\Program Files\Logitech
O43 - CFD: 11/01/2011 - 12:26:28 - [1109] ----D- C:\Program Files\ma-config.com
O43 - CFD: 10/09/2011 - 17:44:40 - [6114456] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 10/09/2011 - 17:44:20 - [847791] ----D- C:\Program Files\Malwarebytes' Anti-Malware(2)
O43 - CFD: 06/01/2010 - 18:20:04 - [2152579] ----D- C:\Program Files\Messenger
O43 - CFD: 05/01/2010 - 14:19:54 - [0] ----D- C:\Program Files\microsoft frontpage
O43 - CFD: 30/06/2011 - 07:31:54 - [376814508] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 15/06/2011 - 14:57:20 - [38411899] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 05/01/2010 - 16:42:18 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 13/10/2010 - 17:48:42 - [6583142] ----D- C:\Program Files\Microsoft Windows 7 Upgrade Advisor
O43 - CFD: 13/02/2011 - 11:52:10 - [4368271] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 05/01/2010 - 16:43:06 - [315392] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 05/01/2010 - 16:31:24 - [786432] ----D- C:\Program Files\MiraScan
O43 - CFD: 14/08/2010 - 13:39:46 - [10374874] ----D- C:\Program Files\Movie Maker
O43 - CFD: 19/01/2010 - 20:36:20 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 05/01/2010 - 14:15:44 - [19278399] ----D- C:\Program Files\MSN
O43 - CFD: 05/01/2010 - 14:16:08 - [8745735] ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD: 06/01/2010 - 18:05:14 - [3285523] ----D- C:\Program Files\NetMeeting
O43 - CFD: 05/01/2010 - 14:16:16 - [1804] ----D- C:\Program Files\Online Services
O43 - CFD: 17/12/2010 - 08:56:36 - [4379321] ----D- C:\Program Files\Outlook Express
O43 - CFD: 06/03/2010 - 17:02:40 - [80087795] ----D- C:\Program Files\QuickTime
O43 - CFD: 06/01/2010 - 20:24:04 - [43563540] ----D- C:\Program Files\Realtek AC97
O43 - CFD: 05/01/2010 - 15:15:54 - [0] ----D- C:\Program Files\Realtek Sound Manager
O43 - CFD: 19/01/2010 - 20:36:12 - [36400897] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 02/02/2011 - 09:16:46 - [137046264] ----D- C:\Program Files\Samsung
O43 - CFD: 05/01/2010 - 14:18:00 - [1025] ----D- C:\Program Files\Services en ligne
O43 - CFD: 21/09/2011 - 18:04:38 - [68583002] ----D- C:\Program Files\SiSoftware
O43 - CFD: 06/01/2010 - 10:20:44 - [65575137] ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 21/02/2010 - 19:21:30 - [3802410902] ----D- C:\Program Files\THQ
O43 - CFD: 13/09/2010 - 17:29:06 - [788241] ----D- C:\Program Files\trend micro
O43 - CFD: 27/09/2011 - 10:11:30 - [24001711] ----D- C:\Program Files\TuneUp Utilities 2006
O43 - CFD: 05/01/2010 - 14:32:18 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 12/01/2011 - 10:11:12 - [104048605] ----D- C:\Program Files\VideoLAN
O43 - CFD: 17/09/2011 - 19:13:32 - [539690] ----D- C:\Program Files\vShare.tv plugin
O43 - CFD: 19/01/2010 - 20:32:28 - [3581070] ----D- C:\Program Files\Windows Media Connect 2
O43 - CFD: 19/01/2010 - 20:32:26 - [8573658] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 06/01/2010 - 18:05:10 - [3942655] ----D- C:\Program Files\Windows NT
O43 - CFD: 05/01/2010 - 14:18:04 - [0] --H-D- C:\Program Files\WindowsUpdate
O43 - CFD: 28/11/2010 - 12:23:18 - [0] ----D- C:\Program Files\WinRAR
O43 - CFD: 05/01/2010 - 14:19:54 - [0] ----D- C:\Program Files\xerox
O43 - CFD: 11/01/2010 - 09:11:04 - [0] ----D- C:\Program Files\Yahoo!
O43 - CFD: 07/10/2011 - 09:31:14 - [5436918] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 07/04/2010 - 09:04:14 - [16554175] ----D- C:\Program Files\Fichiers Communs\ACD Systems
O43 - CFD: 02/02/2011 - 09:29:12 - [6318286] ----D- C:\Program Files\Fichiers Communs\Adobe
O43 - CFD: 05/01/2010 - 16:53:38 - [10477888] ----D- C:\Program Files\Fichiers Communs\Ahead
O43 - CFD: 06/03/2010 - 17:01:50 - [33556977] ----D- C:\Program Files\Fichiers Communs\Apple
O43 - CFD: 10/09/2011 - 18:07:32 - [1699611088] ----D- C:\Program Files\Fichiers Communs\BitDefender
O43 - CFD: 05/01/2010 - 15:55:02 - [961683] ----D- C:\Program Files\Fichiers Communs\Copernic
O43 - CFD: 05/01/2010 - 16:42:28 - [86016] ----D- C:\Program Files\Fichiers Communs\DESIGNER
O43 - CFD: 05/01/2010 - 16:31:08 - [8306354] ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD: 14/06/2011 - 07:50:44 - [1258951] ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD: 12/03/2010 - 11:40:52 - [17893086] ----D- C:\Program Files\Fichiers Communs\LogiShrd
O43 - CFD: 14/02/2011 - 10:00:42 - [270880572] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD: 05/01/2010 - 14:17:26 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD: 05/01/2010 - 13:58:02 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD: 05/01/2010 - 14:17:28 - [8106] ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD: 05/01/2010 - 13:58:00 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD: 06/01/2010 - 18:05:08 - [20911367] ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD: 31/03/2010 - 09:53:56 - [15287765] ----D- C:\Documents and Settings\servid\Application Data\ACD Systems
O43 - CFD: 02/12/2010 - 20:31:18 - [16186815] ----D- C:\Documents and Settings\servid\Application Data\Adobe
O43 - CFD: 13/01/2010 - 20:27:38 - [180835] ----D- C:\Documents and Settings\servid\Application Data\Ahead
O43 - CFD: 06/03/2010 - 17:04:54 - [0] ----D- C:\Documents and Settings\servid\Application Data\Apple Computer
O43 - CFD: 05/10/2011 - 16:19:42 - [17791] ----D- C:\Documents and Settings\servid\Application Data\Auslogics
O43 - CFD: 10/09/2011 - 18:12:24 - [66953] ----D- C:\Documents and Settings\servid\Application Data\Bitdefender
O43 - CFD: 10/09/2011 - 17:44:38 - [34824] ----D- C:\Documents and Settings\servid\Application Data\Bitdefender(2)
O43 - CFD: 08/09/2011 - 10:33:50 - [20980] ----D- C:\Documents and Settings\servid\Application Data\CheckPoint
O43 - CFD: 05/01/2010 - 15:55:02 - [6889077] ----D- C:\Documents and Settings\servid\Application Data\Copernic
O43 - CFD: 17/02/2010 - 17:59:26 - [7765101] ----D- C:\Documents and Settings\servid\Application Data\Corel
O43 - CFD: 25/02/2011 - 11:14:38 - [199] ----D- C:\Documents and Settings\servid\Application Data\dvdcss
O43 - CFD: 22/08/2010 - 20:04:18 - [171452] ----D- C:\Documents and Settings\servid\Application Data\Google
O43 - CFD: 18/02/2010 - 11:03:50 - [0] ----D- C:\Documents and Settings\servid\Application Data\Help
O43 - CFD: 05/01/2010 - 14:32:18 - [0] ----D- C:\Documents and Settings\servid\Application Data\Identities
O43 - CFD: 05/01/2010 - 15:12:04 - [0] ----D- C:\Documents and Settings\servid\Application Data\InstallShield
O43 - CFD: 12/03/2010 - 11:40:52 - [485] ----D- C:\Documents and Settings\servid\Application Data\Leadertech
O43 - CFD: 12/03/2010 - 11:38:46 - [72456] ----D- C:\Documents and Settings\servid\Application Data\Logishrd
O43 - CFD: 12/03/2010 - 11:41:40 - [10236] ----D- C:\Documents and Settings\servid\Application Data\Logitech
O43 - CFD: 05/01/2010 - 15:57:14 - [68119] ----D- C:\Documents and Settings\servid\Application Data\Macromedia
O43 - CFD: 13/09/2010 - 19:23:32 - [467728] ----D- C:\Documents and Settings\servid\Application Data\Malwarebytes
O43 - CFD: 28/06/2010 - 17:30:44 - [16372476] -S--D- C:\Documents and Settings\servid\Application Data\Microsoft
O43 - CFD: 10/09/2011 - 18:07:54 - [0] ----D- C:\Documents and Settings\servid\Application Data\QuickScan
O43 - CFD: 02/02/2011 - 09:19:28 - [1481295] ----D- C:\Documents and Settings\servid\Application Data\Samsung
O43 - CFD: 08/01/2010 - 16:47:50 - [42149477] ----D- C:\Documents and Settings\servid\Application Data\Sun
O43 - CFD: 05/01/2010 - 17:16:52 - [36915283] ----D- C:\Documents and Settings\servid\Application Data\TuneUp Software
O43 - CFD: 16/11/2010 - 09:54:16 - [94789] ----D- C:\Documents and Settings\servid\Application Data\Uniblue
O43 - CFD: 06/08/2011 - 17:08:26 - [452189] ----D- C:\Documents and Settings\servid\Application Data\vlc
O43 - CFD: 28/11/2010 - 11:53:32 - [0] ----D- C:\Documents and Settings\servid\Application Data\WinRAR
O43 - CFD: 09/01/2010 - 19:00:56 - [0] ----D- C:\Documents and Settings\servid\Application Data\Yahoo!
O43 - CFD: 09/01/2010 - 19:10:52 - [1620487] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\ACD Systems
O43 - CFD: 31/03/2010 - 09:53:58 - [0] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\ACDSee
O43 - CFD: 09/10/2010 - 08:46:16 - [302900] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Adobe
O43 - CFD: 06/03/2010 - 17:01:42 - [0] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Apple
O43 - CFD: 06/03/2010 - 17:01:28 - [12422] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Apple Computer
O43 - CFD: 14/06/2010 - 15:57:04 - [3458] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 10/09/2011 - 17:43:36 - [115008] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Conduit
O43 - CFD: 09/02/2010 - 09:39:08 - [1146659] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Corel
O43 - CFD: 10/01/2010 - 12:00:30 - [158314496] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Downloaded Installations
O43 - CFD: 24/11/2010 - 17:55:42 - [254544] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\F4
O43 - CFD: 25/04/2011 - 08:33:10 - [199367] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\freetvradio Air
O43 - CFD: 17/09/2011 - 18:32:04 - [553655457] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Google
O43 - CFD: 18/02/2010 - 11:03:50 - [0] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Help
O43 - CFD: 05/01/2010 - 14:48:52 - [194956940] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Identities
O43 - CFD: 11/01/2011 - 11:23:14 - [46011073] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Innovative Solutions
O43 - CFD: 13/02/2011 - 20:27:44 - [126889022] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Microsoft
O43 - CFD: 12/02/2010 - 08:57:44 - [13238] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Microsoft Corporation
O43 - CFD: 16/11/2010 - 09:53:44 - [0] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\PackageAware
O43 - CFD: 01/12/2010 - 15:22:16 - [0] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Sunbelt Software
O43 - CFD: 01/10/2011 - 19:44:32 - [0] ----D- C:\Documents and Settings\servid\Local Settings\Application Data\Temp
~ Scan Program Folder in 00mn 25s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.1E6E8D79C1C588EBC7C9AE3925076DDB] - 07/10/2011 - 08:31:31 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log   [1439705]
O44 - LFC:[MD5.7A89045CB27D8A6A9A78076BF558A535] - 07/10/2011 - 08:30:48 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl   [13672]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 07/10/2011 - 08:30:45 ---A- . (...) -- C:\WINDOWS\0.log   [0]
O44 - LFC:[MD5.62CFBBAF9654BFE14F8613C054B55166] - 07/10/2011 - 08:30:39 ---A- . (...) -- C:\WINDOWS\wiadebug.log   [157]
O44 - LFC:[MD5.255FCCBDBCC3903D153CEA89D62E2687] - 07/10/2011 - 08:30:38 ---A- . (...) -- C:\WINDOWS\wiaservc.log   [50]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 07/10/2011 - 08:29:47 -S-A- . (...) -- C:\WINDOWS\bootstat.dat   [2048]
O44 - LFC:[MD5.471D3A687B35D1CF8A239CFB6D0E7C0A] - 07/10/2011 - 07:34:59 ---A- . (...) -- C:\WINDOWS\system32\checkdnsid.xml   [219]
O44 - LFC:[MD5.9C09BD4BD164B887F93BF92DA2A6C89F] - 07/10/2011 - 06:07:00 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt   [31958]
O44 - LFC:[MD5.8F4722FEB964E8B751E845875EC6E8B1] - 06/10/2011 - 19:18:05 ---A- . (...) -- C:\bdlog.txt   [83272]
O44 - LFC:[MD5.775E188DD15C9AC9E735A556FB95578E] - 04/10/2011 - 14:36:24 -SH-- . (...) -- C:\boot.ini   [212]
O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 04/10/2011 - 14:36:23 ---A- . (...) -- C:\WINDOWS\system.ini   [227]
O44 - LFC:[MD5.D131FB67BD46ACC0DD6F4F614D227B48] - 04/10/2011 - 14:36:23 ---A- . (...) -- C:\WINDOWS\win.ini   [603]
O44 - LFC:[MD5.EEBACD996A2059BAE2181BB60673B938] - 04/10/2011 - 05:34:21 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl   [404640]
O44 - LFC:[MD5.D40E4EF6D95E3E4863A596100724E580] - 30/09/2011 - 15:11:00 ---A- . (...) -- C:\WINDOWS\wmsetup.log   [2424]
O44 - LFC:[MD5.5F508A2015BE55DE3E406A517236CCFA] - 27/09/2011 - 06:06:45 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt   [524976]
O44 - LFC:[MD5.9CAC4BCE8ECF9E5D6FA8A172EDAD2DD8] - 23/09/2011 - 05:43:40 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\WINDOWS\system32\drivers\avc3.sys   [596600]
O44 - LFC:[MD5.3215E4C6033F5A52CC82ECEFB85E5B5C] - 23/09/2011 - 05:43:24 ---A- . (.BitDefender - Active Virus Control Kernel Filtering drive.) -- C:\WINDOWS\system32\drivers\avckf.sys   [454960]
O44 - LFC:[MD5.4B8DA890008D8E09B44A3CD6C5C37E87] - 21/09/2011 - 17:04:45 ---A- . (...) -- C:\WINDOWS\setupapi.log   [30853]
O44 - LFC:[MD5.F4A52C335E3C865B432FB7BE4A5737DE] - 19/09/2011 - 10:14:27 ---A- . (...) -- C:\WINDOWS\setupact.log   [1969]
O44 - LFC:[MD5.F4CA67A2AF2EA7605DF356EE798FC1F7] - 17/09/2011 - 18:13:31 ---A- . (...) -- C:\prefs.js   [69]
O44 - LFC:[MD5.F3017861ED1466C1729FC6154FCEA9AD] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\FaxSetup.log   [80380]
O44 - LFC:[MD5.724BFCE79975849E78899420CC63680B] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\KB2616676.log   [12526]
O44 - LFC:[MD5.6A85EA2C126B11C4DB418DC4D75480D1] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\MedCtrOC.log   [5525]
O44 - LFC:[MD5.2DBF5F2322ECAC563995392D9D6FE29B] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\comsetup.log   [26615]
O44 - LFC:[MD5.23DD14599859C349D83C381B00F089E4] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\iis6.log   [86518]
O44 - LFC:[MD5.376D0BAAD96824BBFF387BC0F9989CC9] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\imsins.log   [1374]
O44 - LFC:[MD5.E6F7460F468F6DEDD6810EAC646B7BAE] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\msgsocm.log   [4017]
O44 - LFC:[MD5.F03DA4E31D80A9DDC43B0FE05E3420E8] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\netfxocm.log   [14079]
O44 - LFC:[MD5.D93178247EB3DC0D8FD64A7CC4F5D017] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log   [16098]
O44 - LFC:[MD5.555545083A1AC3972D50A9CFA7D02B43] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\ocgen.log   [38428]
O44 - LFC:[MD5.D7DB91F5F7907C0150CF23419D5A09CE] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\ocmsn.log   [4446]
O44 - LFC:[MD5.2B73F8F9CAD5148268A5C776B96B0F8E] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\tabletoc.log   [4043]
O44 - LFC:[MD5.E87C0BB400CF5B82A1C13077548FBE60] - 14/09/2011 - 06:39:31 ---A- . (...) -- C:\WINDOWS\tsoc.log   [36673]
O44 - LFC:[MD5.9E77ED7B3C2FA3063700D20D7B68F7D3] - 14/09/2011 - 06:39:30 ---A- . (...) -- C:\WINDOWS\msmqinst.log   [24732]
O44 - LFC:[MD5.A42B6C5DE83E32FAD303D4200BBF12AF] - 14/09/2011 - 06:39:29 ---A- . (...) -- C:\WINDOWS\updspapi.log   [5291]
O44 - LFC:[MD5.C82BA6968D72D42B14256D1D9456BE4B] - 14/09/2011 - 06:35:57 ---A- . (...) -- C:\WINDOWS\KB2570947.log   [6410]
O44 - LFC:[MD5.6DCF11B01335CA8340CCC0279A6904E1] - 14/09/2011 - 06:35:57 ---A- . (...) -- C:\WINDOWS\imsins.BAK   [1374]
O44 - LFC:[MD5.9A37FE45CBA1DBE3FA9E6C024F7C2B66] - 12/09/2011 - 18:02:01 ---A- . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\WINDOWS\system32\drivers\bdsandbox.sys   [62544]
O44 - LFC:[MD5.E12ECD623D647D02E21F34356B87E8B0] - 10/09/2011 - 17:07:30 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\WINDOWS\system32\drivers\trufos.sys   [311248]
O44 - LFC:[MD5.C3E025D46368E3D18085EEF26EF6F6A1] - 10/09/2011 - 17:07:29 ---A- . (.BitDefender - BitDefender AntiVirus FS filter driver.) -- C:\WINDOWS\system32\drivers\bdfsfltr.sys   [353096]
O44 - LFC:[MD5.C599B1D4DF8D9E5D6A006CC3B361BACE] - 10/09/2011 - 17:01:06 ---A- . (...) -- C:\WINDOWS\KB2607712.log   [30282]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/09/2011 - 09:33:27 ---A- . (...) -- C:\WINDOWS\system32\ConduitEngine.tmp   [0]
O44 - LFC:[MD5.4575837239F35E303EC316BBA02F7ACF] - 08/09/2011 - 09:33:11 --HA- . (...) -- C:\WINDOWS\system32\zllictbl.dat   [4212]
~ Scan Files in 00mn 44s

---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export SP - "C:\Program Files\eMule\emule.exe" [Enabled] .(...) -- C:\Program Files\eMule\emule.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(...) -- C:\Program Files\ma-config.com\maconfservice.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Empire of Sports\NetworkDiagnostic.exe" [Enabled] .(...) -- C:\Program Files\Empire of Sports\NetworkDiagnostic.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\THQ\Company of Heroes\RelicCOH.exe" [Enabled] .(.THQ Canada Inc. - RelicCOH.) -- C:\Program Files\THQ\Company of Heroes\RelicCOH.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [Enabled] .(.Logitech Inc..) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\servid\Local Settings\Application Data\F4\ClientUpdater\ClientUpdater.exe" [Enabled] .(...) -- C:\Documents and Settings\servid\Local Settings\Application Data\F4\ClientUpdater\ClientUpdater.exe (.not
O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\client\googleearth.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\client\googleearth.exe
O47 - AAKE:Key Export SP - "C:\SiSoftware Sandra Lite 2010.SP3\WNt500x86\RpcSandraSrv.exe" [Enabled] .(...) -- C:\SiSoftware Sandra Lite 2010.SP3\WNt500x86\RpcSandraSrv.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\servid\Application Data\ms13s.exe" [Enabled] .(...) -- C:\Documents and Settings\servid\Application Data\ms13s.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\DOCUME~1\servid\LOCALS~1\Temp\YgMa1e9qTd.exe" [Enabled] .(...) -- C:\DOCUME~1\servid\LOCALS~1\Temp\YgMa1e9qTd.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\plugin\geplugin.exe" [Enabled] .(.Google - Google Earth.) -- C:\Program Files\Google\Google Earth\plugin\geplugin.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Freeplayer\vlc\vlc.exe" [Enabled] .(...) -- C:\Program Files\Freeplayer\vlc\vlc.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP2a\WNt500x86\RpcSandraSrv.exe" [Enabled] .(...) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP2a\WNt500x86\RpcSandraSrv.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\RpcAgentSrv.exe" [Enabled] .(.SiSoftware.) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\RpcAgentSrv.exe
O47 - AAKE:Key Export SP - "C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\WNt500x86\sandra.0C.mui" [Enabled] .(.SiSoftware.) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\WNt500x86\sandra.0C.mui
O47 - AAKE:Key Export SP - "C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\WNt500x86\RpcSandraSrv.exe" [Enabled] .(.SiSoftware.) -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\WNt500x86\RpcSandraSrv.exe
O47 - AAKE:Key Export SP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(...) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe (.not file.)
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [Enabled] .(.Logitech Inc..) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O47 - AAKE:Key Export DP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(...) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe (.not file.)
~ Scan Keys in 00mn 00s

---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Wdf01000.sys . (.Microsoft Corporation - Kernel Mode Driver Framework Runtime.) -- C:\WINDOWS\system32\Drivers\Wdf01000.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Wdf01000.sys . (.Microsoft Corporation - Kernel Mode Driver Framework Runtime.) -- C:\WINDOWS\system32\Drivers\Wdf01000.sys
~ Scan CSB in 00mn 00s

---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{813865a4-f9eb-11de-a823-806d6172696f}\AutoRun\command. (...) -- D:\install.exe (.not file.)
~ Scan Keys in 00mn 00s

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \Drivers32\"VIDC.ACDV"="ACDV.dll" . (...) -- (.not file.)
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.)
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"ACDV.dll"="ACDV 1.0" . (...) -- (.not file.)
~ Scan Keys in 00mn 00s

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
~ Scan Keys in 00mn 00s

---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1
~ Scan Keys in 00mn 00s

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.31FFDE1BE912D7CBD3F189FEB61F86B6] - 07/10/2011 - 22:42:58 ---A- . (.Advanced Micro Devices - AMD Processor Driver.) -- C:\WINDOWS\system32\drivers\AmdK8.sys   [43520]
O58 - SDL:[MD5.9CAC4BCE8ECF9E5D6FA8A172EDAD2DD8] - 07/10/2011 - 05:43:40 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\WINDOWS\system32\drivers\avc3.sys   [596600]
O58 - SDL:[MD5.2ECD68F363CACC2B1EAE7DB5130F2A48] - 07/10/2011 - 15:11:46 ---A- . (.BitDefender - BitDefender AntiVirus Active Virus Control Hypervisor driver.) -- C:\WINDOWS\system32\drivers\avchv.sys   [240184]
O58 - SDL:[MD5.3215E4C6033F5A52CC82ECEFB85E5B5C] - 07/10/2011 - 05:43:24 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\WINDOWS\system32\drivers\avckf.sys   [454960]
O58 - SDL:[MD5.C3E025D46368E3D18085EEF26EF6F6A1] - 07/10/2011 - 14:36:18 ---A- . (.BitDefender - BitDefender AntiVirus FS filter driver.) -- C:\WINDOWS\system32\drivers\bdfsfltr.sys   [353096]
O58 - SDL:[MD5.9A37FE45CBA1DBE3FA9E6C024F7C2B66] - 07/10/2011 - 18:02:01 ---A- . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\WINDOWS\system32\drivers\bdsandbox.sys   [62544]
O58 - SDL:[MD5.375CD0B9F433465EC6F50D4DF44E9448] - 07/10/2011 - 18:32:40 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\WINDOWS\system32\drivers\bdvedisk.sys   [85128]
O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 07/10/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys   [262528]
O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 07/10/2011 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys   [11776]
O58 - SDL:[MD5.FCCF4AE4EF72CBABA6D6BEFEFD77E940] - 07/10/2011 - 15:45:18 R--A- . (.Ahead Software AG and its licensors - NERO IMAGEDRIVE SCSI miniport.) -- C:\WINDOWS\system32\drivers\imagedrv.sys   [89184]
O58 - SDL:[MD5.C0382C12B784394BF16C2D8F0F1F17DC] - 07/10/2011 - 09:58:37 ---A- . (.Logitech, Inc. - Logitech Non-Plug and Play Driver..) -- C:\WINDOWS\system32\drivers\LNonPnP.sys   [16400]
O58 - SDL:[MD5.ECA00EED9AB95489007B0EF84C7149DE] - 07/10/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys   [22712]
O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 07/10/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys   [41272]
O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 07/10/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys   [12032]
O58 - SDL:[MD5.0344AA9113DC16EEC379F4652020849D] - 07/10/2011 - 21:54:28 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) IDE Performance Driver.) -- C:\WINDOWS\system32\drivers\nvata.sys   [93568]
O58 - SDL:[MD5.720CC533EECB65553BD86B139CA04433] - 07/10/2011 - 21:54:34 ---A- . (.NVIDIA Corporation - NVIDIA Networking Function Driver..) -- C:\WINDOWS\system32\drivers\NVENETFD.sys   [33536]
O58 - SDL:[MD5.5F9F545CC5904DD8765F84EE1D056406] - 07/10/2011 - 21:54:34 ---A- . (.NVIDIA Corporation - NVIDIA Networking Bus Driver..) -- C:\WINDOWS\system32\drivers\nvnetbus.sys   [12928]
O58 - SDL:[MD5.F0C8AE1FEFB954367E2DA224AA97537D] - 07/10/2011 - 21:54:34 ---A- . (.NVIDIA Corporation - NVIDIA Network Resource Manager..) -- C:\WINDOWS\system32\drivers\nvnrm.sys   [261888]
O58 - SDL:[MD5.3F7DF8E70889F74D0F8B5CAD7BC3BA45] - 07/10/2011 - 21:54:34 ---A- . (.NVIDIA Corporation - NVIDIA Networking Soft-NPU Driver..) -- C:\WINDOWS\system32\drivers\nvsnpu.sys   [208256]
O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 07/10/2011 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys   [17792]
O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 07/10/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys   [12032]
O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 07/10/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys   [12032]
O58 - SDL:[MD5.D507C1400284176573224903819FFDA3] - 07/10/2011 - 23:31:34 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8139 NDIS 5.0 Driver.) -- C:\WINDOWS\system32\drivers\RTL8139.sys   [20992]
O58 - SDL:[MD5.0505DA5D357F18A5D42FC5DEDE6BC9A0] - 07/10/2011 - 16:21:28 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys   [101720]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 07/10/2011 - 17:39:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys   [20480]
O58 - SDL:[MD5.38BA174E60FDA4219EFC917D514C2E28] - 07/10/2011 - 16:56:00 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\sscdcm.sys   [9256]
O58 - SDL:[MD5.38BA174E60FDA4219EFC917D514C2E28] - 07/10/2011 - 16:56:00 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\sscdcmnt.sys   [9256]
O58 - SDL:[MD5.F85B5BA4753C3E6B2B5BFCA410A458A4] - 07/10/2011 - 17:00:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\sscdwh.sys   [9256]
O58 - SDL:[MD5.F85B5BA4753C3E6B2B5BFCA410A458A4] - 07/10/2011 - 17:00:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\sscdwhnt.sys   [9256]
O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 07/10/2011 - 16:05:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\StarOpen.sys   [5632]
O58 - SDL:[MD5.E12ECD623D647D02E21F34356B87E8B0] - 07/10/2011 - 19:20:05 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\WINDOWS\system32\drivers\trufos.sys   [311248]
O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 07/10/2011 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys   [21376]
O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 07/10/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys   [58112]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys   [9037]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys   [27097]
O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 07/10/2011 - 20:33:26 ---A- . (...) -- C:\WINDOWS\system32\giveio.sys   [5248]
O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys   [4912]
O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys   [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys   [42537]
O58 - SDL:[MD5.2E34CDF9CBEB74C4DC28C0F6C3CD2FA2] - 07/10/2011 - 12:47:46 -SHA- . (...) -- C:\WINDOWS\system32\KGyGaAvL.sys   [848]
O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys   [27916]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys   [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys   [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys   [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys   [29146]
O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys   [34000]
O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys   [34560]
O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys   [35648]
O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys   [35424]
O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 07/10/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys   [34560]
O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 07/10/2011 - 14:28:46 ---A- . (.Windows (R) 2000 DDK provider - SpeedFan Device Driver.) -- C:\WINDOWS\system32\speedfan.sys   [5248]
~ Scan Drivers in 00mn 01s

---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s

---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 23/09/2011 - C:\WINDOWS\system32\DRIVERS\avc3.sys - avc3(avc3)  .(.BitDefender - Active Virus Control filter driver.) - LEGACY_AVC3
O64 - Services: CurCS - 23/09/2011 - C:\WINDOWS\system32\DRIVERS\avckf.sys - avckf(avckf)  .(.BitDefender - Active Virus Control Kernel Filtering drive.) - LEGACY_AVCKF
O64 - Services: CurCS - 24/03/2011 - C:\WINDOWS\system32\DRIVERS\bdfsfltr.sys - bdfsfltr(bdfsfltr)  .(.BitDefender - BitDefender AntiVirus FS filter driver.) - LEGACY_BDFSFLTR
O64 - Services: CurCS - 01/03/2011 - C:\Program Files\Fichiers communs\Bitdefender\Bitdefender Firewall\bdftdif.sys - bdftdif(bdftdif)  .(.BitDefender LLC - BitDefender Firewall TDI Filter Driver.) - LEGACY_BDFTDIF
O64 - Services: CurCS - 19/07/2011 - C:\Program Files\Bitdefender\Bitdefender 2012\bdselfpr.sys - BDSelfPr(BDSelfPr)  .(.BitDefender LLC - BitDefender Self Protection Driver.) - LEGACY_BDSELFPR
O64 - Services: CurCS - 19/01/2010 - C:\WINDOWS\system32\DRIVERS\bdvedisk.sys - BDVEDISK(BDVEDISK)  .(.BitDefender - FileVault Disk Driver.) - LEGACY_BDVEDISK
O64 - Services: CurCS - ??/??/???? - C:\DOCUME~1\servid\LOCALS~1\Temp\cpuz135\cpuz135_x32.sys (.not file.) - cpuz135 (cpuz135)  .(...) - LEGACY_CPUZ135
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique(dmadmin)  .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\drivers\dmboot.sys - dmboot(dmboot)  .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT
O64 - Services: CurCS - 02/03/2006 - C:\WINDOWS\system32\drivers\dmload.sys - dmload(dmload)  .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD
O64 - Services: CurCS - 22/01/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate)(gupdate)  .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE
O64 - Services: CurCS - 22/01/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdatem)(gupdatem)  .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATEM
O64 - Services: CurCS - 17/09/2011 - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Software Updater(gusvc)  .(.Google - gusvc.) - LEGACY_GUSVC
O64 - Services: CurCS - 04/05/2011 - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter(JavaQuickStarterService)  .(.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE
O64 - Services: CurCS - 03/12/2010 - C:\WINDOWS\system32\DRIVERS\Lbd.sys - Lbd(Lbd)  .(.Lavasoft AB - Boot Driver.) - LEGACY_LBD
O64 - Services: CurCS - 06/07/2011 - C:\WINDOWS\system32\drivers\mbamswissarmy.sys - MBAMSwissArmy(MBAMSwissArmy)  .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMSWISSARMY
O64 - Services: CurCS - 12/04/2007 - C:\WINDOWS\system32\nvsvc32.exe - NVIDIA Display Driver Service(NVSvc)  .(.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 158.1.) - LEGACY_NVSVC
O64 - Services: CurCS - 07/08/2009 - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\WNt500x86\Sandra.sys - SANDRA(SANDRA)  .(.SiSoftware - Sandra Device Driver (x86)(Unicode).) - LEGACY_SANDRA
O64 - Services: CurCS - 24/08/2009 - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\RpcAgentSrv.exe - SiSoftware Deployment Agent Service(SandraAgentSrv)  .(.SiSoftware - SiSoftware Deployment Agent Service (NT)(Un.) - LEGACY_SANDRAAGENTSRV
O64 - Services: CurCS - 22/07/2011 - C:\WINDOWS\system32\DRIVERS\trufos.sys - Trufos(Trufos)  .(.BitDefender S.R.L. - Trufos Kernel Module.) - LEGACY_TRUFOS
O64 - Services: CurCS - 23/09/2011 - C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe - BitDefender Desktop Update Service(UPDATESRV)  .(.Bitdefender - Bitdefender Update Service.) - LEGACY_UPDATESRV
O64 - Services: CurCS - 23/09/2011 - C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe - BitDefender Virus Shield(VSSERV)  .(.Bitdefender - Bitdefender Security Service.) - LEGACY_VSSERV
~ Scan Services in 00mn 02s

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
~ Scan Keys in 00mn 00s

---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Web Search) - http://startsear.ch
O69 - SBI: SearchScopes [HKCU] {1B423279-E46E-4462-AC13-4CE4CB0B8353} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {2907F0CB-90B2-45F5-B379-F6B7FD651286} - (Ask Search) - http://websearch.ask.com&atb=sysid%3D1%3Aappid%3D1083%3Auc77062743
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
~ Scan Keys in 00mn 00s

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.44BB889A88180B8C7EA0E7A7AED7FB82] [SPRF][13/09/2011] (.Piriform Ltd - Speccy Installer.) -- C:\Documents and Settings\servid\Bureau\spsetup112.exe   [4087040]
[MD5.FE9176A1C2B4A81AFDE6EDD74A6A1DEE] [SPRF][27/10/2009] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe   [1956816]
~ Scan Files in 00mn 00s

---\\ Scan Additionnel (O88)
Database Version : 8703 - (05/10/2011)
Clés trouvées (Keys found) : 3
Valeurs trouvées (Values found) : 1
Dossiers trouvés  (Folders found) : 2
Fichiers trouvés  (Files found) : 0
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\vShare]   =>Adware.DoubleD
[HKCU\Software\iMesh]   =>PUP.iMesh
[HKCU\Software\vShare.tv]   =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440}   =>Toolbar.AskSBar
C:\Documents and Settings\servid\Local Settings\Application Data\Conduit   =>Toolbar.Conduit
~ Scan Additionnel in 00mn 14s

---\\ Recherche détournement de DNS routeur (O89)
Serveur :  UnKnown
Address:  172.16.0.1
Nom :    www.l.google.com
Addresses:  74.125.39.106, 74.125.39.99, 74.125.39.104, 74.125.39.103
   74.125.39.105, 74.125.39.147
Aliases:  www.google.fr, www.google.com
~ Scan DNS in 00mn 02s

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 07/10/2011 225280 |  (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe
SS - | Auto 07/10/2011 135664 |  (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 07/10/2011 135664 |  (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 07/10/2011 182768 |  (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 07/10/2011 153376 |  (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe
SS - | Demand 07/10/2011 292944 |  (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Fichiers communs\LogiShrd\Bluetooth\lbtserv.exe
SR - | Auto 07/10/2011 163908 |  (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe
SS - | Demand 07/10/2011 93336 |  (SandraAgentSrv) . (.SiSoftware.) - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010c\RpcAgentSrv.exe
SS - | Demand 07/10/2011 307544 |  (Update Server) . (.BitDefender.) - C:\Program Files\Fichiers communs\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe
SR - | Auto 07/10/2011 50128 |  (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
SR - | Auto 07/10/2011 1538472 |  (vsserv) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe
~ Scan Services in 00mn 03s

---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by servid at 07/10/2011 09:32:53
device: opened successfully
user: MBR read successfully
Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll nvata.sys
C:\WINDOWS\system32\drivers\nvata.sys NVIDIA Corporation NVIDIA nForce(TM) IDE Driver
1 ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Harddisk0\DR0[0x89E44AB8]
3 CLASSPNP[0xBA0E8FD7] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\0000006c[0x89DFDBC0]
5 ACPI[0xB9F7E620] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\0000006b[0x89CD9030]
kernel: MBR read successfully
user & kernel MBR OK
~ Scan MBR in 00mn 05s

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by servid at 07/10/2011 09:32:56
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 07s

End of the scan (1130 lines in 01mn 47s)(0)



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
Publicité






MessagePosté le: Ven 7 Oct - 09:48 (2011)    Sujet du message: Publicité

PublicitéSupprimer les publicités ?


Revenir en haut
Geronimo
Administrateur

En ligne

Inscrit le: 07 Fév 2010
Messages: 3 622
Localisation: Dans mon tepee
Sexe: Masculin
Système d'exploitation: Windows 8
memoire ram: 8 Giga
carte graphique:
disque dur: 1,5 tera

MessagePosté le: Ven 7 Oct - 13:11 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Bonjour servid

Quel est ton problème ?

Il aurait fallu le décrire avant de poster un rapport de ZHPDiag



_________________
Revenir en haut
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 14:09 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

bonjour,
J'ai cru bien faire en le postant ici (vidser sur sos ordi)



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
Geronimo
Administrateur

En ligne

Inscrit le: 07 Fév 2010
Messages: 3 622
Localisation: Dans mon tepee
Sexe: Masculin
Système d'exploitation: Windows 8
memoire ram: 8 Giga
carte graphique:
disque dur: 1,5 tera

MessagePosté le: Ven 7 Oct - 15:09 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Tu as bien fait mais il faut dire pourquoi tu poste un rapport de ZHPDiag

Ceci dit il in a des traces d'infection dans ce rapport

- Surligne le texte en citation (sans le mot citation) ci-dessous ensuite clic droit dessus et choisis Copier dans la liste

Citation:
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch
[HKCU\Software\iMesh]
O47 - AAKE:Key Export SP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(...) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe (.not file.)
O47 - AAKE:Key Export DP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(...) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe (.not file.)
[HKCU\Software\iMesh]
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} => Infection BT (Adware.AskSBar)
EmptyTemp
EmptyFlash


- Double clique sur ZHPFix qui est sur le bureau.

** Pour Vista et Seven fais un clic droit sur le raccouri de ZHPFix et Exécuter en tant qu'adminstrateur

- Clique maintenant sur le bleu
(coller les lignes helper)

- Le texte copié dans le presse papiers s'affichera dans la fenêtre de ZHPFix



- Clique surGo patiente le temps du traitement

- Un rapport nommé ZHPFix[R1].txt sera créé et sauvegardé sur le bureau poste son contenu dans ta prochaine réponse
- Ce rapport se trouve aussi ici C:\ZHP\ZHPFix[R1].txt


EmptyTemp
EmptyFlash

- Clique sur Ok ensuite sur Tous et Nettoyer patiente le temps du traitement



_________________
Revenir en haut
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 16:20 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Rapport de ZHPFix 1.12.3363 par Nicolas Coolman, Update du 05/10/2011
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-07-10-2011-16-06-15.txt
Run by servid at 07/10/2011 16:06:15
Windows XP Professional Service Pack 3 (Build 2600)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html

========== Clé(s) du Registre ==========
SUPPRIME Key: HKCU\Software\iMesh

========== Valeur(s) du Registre ==========
SUPPRIME AAKE KeyValue: C:\Program Files\iMesh Applications\iMesh\iMesh.exe
SUPPRIME [HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440}

========== Elément(s) de donnée du Registre ==========
SUPPRIME R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page

========== Dossier(s) ==========
SUPPRIME Temporaires Windows: : 80
SUPPRIME Flash Cookies: 236

========== Fichier(s) ==========
ABSENT File: c:\program files\imesh applications\imesh\imesh.exe
SUPPRIME Temporaires Windows: : 116
SUPPRIME Flash Cookies: 119
 

========== Récapitulatif ==========
1 : Clé(s) du Registre
2 : Valeur(s) du Registre
1 : Elément(s) de donnée du Registre
2 : Dossier(s)
3 : Fichier(s)
 
End of clean in 00mn 07s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 07/10/2011 16:06:15 [1220]



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 16:21 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Je fais sur les 2 sites ?



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
Geronimo
Administrateur

En ligne

Inscrit le: 07 Fév 2010
Messages: 3 622
Localisation: Dans mon tepee
Sexe: Masculin
Système d'exploitation: Windows 8
memoire ram: 8 Giga
carte graphique:
disque dur: 1,5 tera

MessagePosté le: Ven 7 Oct - 16:47 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Quels sites ?



_________________
Revenir en haut
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 16:55 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

sosordi



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
Geronimo
Administrateur

En ligne

Inscrit le: 07 Fév 2010
Messages: 3 622
Localisation: Dans mon tepee
Sexe: Masculin
Système d'exploitation: Windows 8
memoire ram: 8 Giga
carte graphique:
disque dur: 1,5 tera

MessagePosté le: Ven 7 Oct - 16:57 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Poste le lien de ton sujet sur Sosordi s'il te plait



_________________
Revenir en haut
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 17:00 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

je ne peux plus ouvrir sosordi "erreur de scrip d'internet explorer" cela bloque la page
que faire?



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
Geronimo
Administrateur

En ligne

Inscrit le: 07 Fév 2010
Messages: 3 622
Localisation: Dans mon tepee
Sexe: Masculin
Système d'exploitation: Windows 8
memoire ram: 8 Giga
carte graphique:
disque dur: 1,5 tera

MessagePosté le: Ven 7 Oct - 17:11 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Quel est le titre de ton sujet sur Sosordi ?
Ce n'est pas celui-ci ? Probleme demarrage http://www.sosordi.net/Depannage/Question.206292-p1591730.html#haut



_________________
Revenir en haut
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 17:42 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

oui c'est ça



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
Geronimo
Administrateur

En ligne

Inscrit le: 07 Fév 2010
Messages: 3 622
Localisation: Dans mon tepee
Sexe: Masculin
Système d'exploitation: Windows 8
memoire ram: 8 Giga
carte graphique:
disque dur: 1,5 tera

MessagePosté le: Ven 7 Oct - 17:44 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

Je te laisse le choix on continue ici où sur sosordi mais pas sur les deux en même temps



_________________
Revenir en haut
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 17:58 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

en fait le choix est facile car je ne peux plus accéder a Sosordi



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
servid


Hors ligne

Inscrit le: 20 Aoû 2011
Messages: 24
Sexe: Masculin

MessagePosté le: Ven 7 Oct - 18:22 (2011)    Sujet du message: Demarrage windows xp pro Répondre en citant

http://startsear.ch/B1D671CF-E532-4481-99AA-19F420D90332/netdefender/hui/nd…

voici l'URL de l'erreur de script d'internet explorer
erreur ligne 36 de syntaxe nombre 1



_________________
un homme de parti n'est qu'une partie d'homme
Revenir en haut
Contenu Sponsorisé






MessagePosté le: Aujourd’hui à 18:36 (2016)    Sujet du message: Demarrage windows xp pro



Revenir en haut
Montrer les messages depuis:   
Poster un nouveau sujet   Répondre au sujet    stopovirus Index du Forum » Lutte anti malware » Eradication virus lutte antimalware Toutes les heures sont au format GMT + 2 Heures
Aller à la page: 1, 2  >
Page 1 sur 2

 
Sauter vers:  

Index | Panneau d’administration | forum gratuit | Forum gratuit d’entraide | Annuaire des forums gratuits | Signaler une violation | Conditions générales d'utilisation
Powered by phpBB © 2001- 2004 phpBB Group
Designed for Trushkin.net | Styles Database
Traduction par : phpBB-fr.com