Rapport de ZHPDiag v1.28.2155 par Nicolas Coolman, Update du

Transcription

Downloaded from: justpaste.it/diag11nov
Rapport de ZHPDiag v1.28.2155 par Nicolas Coolman, Update du 28/10/2011
Run by Compaq at 11.11.2011 12:14:46
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
State : Nouvelle version disponible
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox v3.6.8 (fr) (Defaut)
OBIE: Safari v5.33.17.8
---\\ Windows Product Information
Windows 7 Home Premium Edition, 32-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : DVQJG
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: x86 Family 6 Model 28 Stepping 2, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2039.3 MB (51% free)
System Restore: Activé (Enable)
System drive C: has 116 GB (78%) free of 147 GB
---\\ Logged in mode
~ Computer Name: COMPAQ-PC
~ User Name: Compaq
~ All Users Names: Compaq, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Compaq\AppData\Roaming\
~ %Desktop% : C:\Users\Compaq\Desktop\
~ %Favorites% : C:\Users\Compaq\Favorites\
~ %LocalAppData% : C:\Users\Compaq\AppData\Local\
~ %StartMenu% : C:\Users\Compaq\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 116 Go of 147 Go)
D:\ Floppy drive, Flash card reader, USB Key (Free 0 Go of 15 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer]
NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer]
NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System]
NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHID
DEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch:
OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings]
WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOW
ALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Explorateur
Windows.) (.01.06.2011 - 06:33:07.) -- C:\Windows\Explorer.exe [2614784]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.14.07.2009 - 02:14:31.) -C:\Windows\system32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de
démarrage de Windows.) (.14.07.2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.1DBC7303366C0C9B80E51C4B4BECB7ED] - (.Microsoft Corporation - Extensions Internet
pour Win32.) (.30.10.2011 - 05:38:10.) -- C:\Windows\system32\wininet.dll [981504]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Application
d’ouverture de session Windows.) (.02.02.2011 - 07:17:59.) -- C:\Windows\system32\Winlogon.exe
[285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de
licences.) (.14.07.2009 - 02:16:15.) -- C:\Windows\system32\sppcomapi.dll [193024]
[MD5.D8714A5FB3141F8226D16861F20C5AC4] - (....) (.14.07.2009 - 09:39:06.) -C:\Windows\system32\fr-FR\user32.dll.mui [19968]
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function
Driver for WinSock.) (.30.10.2011 - 03:35:40.) -- C:\Windows\system32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport
Driver.) (.14.07.2009 - 02:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System
Driver.) (.14.07.2009 - 00:11:15.) -- C:\Windows\system32\drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM
Driver.) (.14.07.2009 - 00:11:26.) -- C:\Windows\system32\drivers\Cdrom.sys [108544]
[MD5.83D1ECEA8FAAE75604C0FA49AC7AD996] - (.Microsoft Corporation - DFS Namespace
Client Driver.) (.30.10.2011 - 03:33:46.) -- C:\Windows\system32\drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio
Bus Driver.) (.14.07.2009 - 00:50:56.) -- C:\Windows\system32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.)
(.14.07.2009 - 00:11:24.) -- C:\Windows\system32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address
Translator.) (.14.07.2009 - 00:54:29.) -- C:\Windows\system32\drivers\IpNat.sys [101888]
[MD5.CA7570E42522E24324A12161DB14EC02] - (.Microsoft Corporation - Windows NT SMB
Minirdr.) (.30.10.2011 - 03:43:41.) -- C:\Windows\system32\drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport
driver.) (.14.07.2009 - 00:12:21.) -- C:\Windows\system32\drivers\netBT.sys [187904]
[MD5.187002CE05693C306F43C873F821381F] - (.Microsoft Corporation - Pilote du système de
fichiers NT.) (.31.10.2011 - 06:44:01.) -- C:\Windows\system32\drivers\ntfs.sys [1210240]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port
parallèle.) (.14.07.2009 - 00:45:35.) -- C:\Windows\system32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP miniport/call-manager driver.) (.14.07.2009 - 00:54:34.) -- C:\Windows\system32\drivers\Rasl2tp.sys
[78848]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport
driver.) (.14.07.2009 - 00:53:41.) -- C:\Windows\system32\drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation
Driver.) (.14.07.2009 - 00:12:11.) -- C:\Windows\system32\drivers\tdx.sys [74240]
~ Scan Generic Processes in 00mn 02s
---\\ Etat des fichiers cachés (Caché/Total)
Mes musiques (My Musics) : 3/3 (Modified)
~ Mes Favoris (My Favorites) : 2/19
~ Mes Documents (My Documents) : 1/4
~ Mon Bureau (My Desktop) : 1/37
~ Menu demarrer (Programs) : 4/8
~ Scan Hidden Files in 00mn 00s
---\\ Processus lancés
[MD5.0A9C6CA308A89B95DCAE23BA2F7AAF7A] - (.Uniblue Systems Limited - Uniblue
SpeedUpMyPC Monitor.) -- C:\Program Files\Uniblue\SpeedUpMyPC\spmonitor.exe [25464]
[PID.3668]
[MD5.65010AEDF6217A0568226AFD0BC8A288] - (.Uniblue Systems Limited - Uniblue
RegistryBooster Monitor.) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe [25984]
[PID.3680]
[MD5.67C8A88FC619998132F7DE96F4F9ACDE] - (.Uniblue Systems Limited - Uniblue
DriverScanner Monitor.) -- C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe [25464]
[PID.3696]
[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User
Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904]
[PID.3888]
[MD5.8854C4474E4E31FCA0C18BB9BD3A9D47] - (.Intel Corporation - igfxTray Module.) -C:\Windows\System32\igfxtray.exe [141848] [PID.3900]
[MD5.CE7544B51C3A15D87A78C33FDDA9EC54] - (.Intel Corporation - hkcmd Module.) -C:\Windows\System32\hkcmd.exe [173592] [PID.3912]
[MD5.5D836F63676305D99C179F024E2210CB] - (.Intel Corporation - persistence Module.) -C:\Windows\System32\igfxpers.exe [150552] [PID.3924]
[MD5.C0BA1E3A4EB73DD5A104C8C9ABC972B6] - (.Synaptics Incorporated - Synaptics
TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1721640]
[PID.3932]
[MD5.3C79FDE00C295C69F63D60D72F94C6A3] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program
Files\IDT\WDM\sttray.exe [458844] [PID.3976]
[MD5.D4C0835D5E0B72650944A2AEB5AC4A3B] - (.Intel Corporation - igfxsrvc Module.) -C:\Windows\system32\igfxsrvc.exe [252952] [PID.3988]
[MD5.D018F156D00D4C2DDCD0D11118E4AE81] - (.Hewlett-Packard - HP Wireless Assistant
Main Program.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
[499768] [PID.4008]
[MD5.28343BE55C4481EE797559BCE8CCCBAD] - (.Synaptics Incorporated - Synaptics Pointing
Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [103720] [PID.4016]
[MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java(TM) Update
Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552] [PID.4024]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -C:\Program Files\Hp\HP Software Update\hpwuschd2.exe [54576] [PID.2100]
[MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program
Files\RocketDock\RocketDock.exe [495616] [PID.2176]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.1168]
[MD5.6F98625B59EB78A96CF43B9959FD3ECF] - (.Hewlett-Packard Development Company L.P. -
hpCaslNotification.) -- C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe [309816]
[PID.2320]
[MD5.BACCDA841C689D1CBA941F478E8ED24B] - (.Mozilla Corporation - Firefox.) -- C:\Program
Files\Mozilla Firefox\firefox.exe [910296] [PID.4436]
[MD5.642FA80C2C43EE609313746AA305DC86] - (.Mozilla Corporation - Plugin Container for
Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [14808] [PID.4836]
[MD5.B0DA80FF42A0819D162A86612896AAF2] - (.Microsoft Corporation - Windows Update.) -C:\Windows\system32\wuauclt.exe [47104] [PID.5200]
[MD5.9F323EEAFAD860204EAA0630E0A3D7F9] - (.Nicolas Coolman - Diagnostic Tool.) -C:\Program Files\ZHPDiag\ZHPDiag.exe [696320] [PID.5864]
~ Scan Processes Running in 00mn 02s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Compaq\AppData\Roaming\Mozilla\Firefox\Profiles\2j8xusl9.default\prefs.js
C:\Users\Compaq\AppData\Roaming\Mozilla\Firefox\Profiles\2j8xusl9.default\user.js (.not file.)
M3 - MFPP: Plugins - [Compaq] -- C:\Program Files\Mozilla FireFox\searchplugins\amazonfrance.xml
M3 - MFPP: Plugins - [Compaq] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Compaq] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Compaq] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Compaq] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Compaq] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoofrance.xml
M2 - MFEP: prefs.js [Compaq - 2j8xusl9.default\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] []
Free YouTube Download (Free Studio) Menu v (.DVDVideoSoft Ltd..)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library
for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla
Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape
Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plugin 1.6.0_23 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60831.0.)
-- c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs =
res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.)
(8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy =
wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation
- Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement
Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} .
(.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common
Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation Bing Bar.) -- C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun
Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation - Bing Bar.) -- C:\Program Files\MSN
Toolbar\Platform\6.3.2322.0\npwinext.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [HP Connection Manager.exe] Clé orpheline
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program
Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [WirelessAssistant] . (.Hewlett-Packard - HP Wireless Assistant Main Program.)
-- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update
Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files\RocketDock\RocketDock.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program
Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files\Steam\steam.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2342715059-2347112679-2357890842-1000\..\Run: [RocketDock] . (...) -C:\Program Files\RocketDock\RocketDock.exe
O4 - HKUS\S-1-5-21-2342715059-2347112679-2357890842-1000\..\Run: [msnmsgr] . (.Microsoft
Corporation - Windows Live Messenger.) -- C:\Program Files\Windows
Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-2342715059-2347112679-2357890842-1000\..\Run: [Steam] . (.Valve
Corporation - Steam.) -- C:\Program Files\Steam\steam.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Compaq\Desktop\Free YouTube to MP3 Converter.lnk .
(.DVDVideoSoft Ltd..) -- C:\Program Files\DVDVideoSoft\Free YouTube to MP3
Converter\FreeYouTubeToMP3Converter.exe
O4 - Global Startup: C:\Users\Compaq\Desktop\VPNFacile.lnk . (.VPNFacile.fr.) -- C:\Program
Files\VPNFacile\bin\VPNFacile.exe
O4 - Global Startup: C:\Users\Compaq\AppData\Roaming\Microsoft\Internet Explorer\Quick
Launch\Apple Safari.lnk . (...) -- C:\Windows\Installer\{EAFEF30E-3789-49C7A6D9-77C12E005BAC}\SafariIco.exe
Launch\Dictionnaire le Littré.lnk . (...) -- C:\Program Files\Dictionnaire le Littré 2.0\Littre.exe
Launch\DriverScanner.lnk . (.Uniblue Systems Limited.) -- C:\Program
Files\Uniblue\DriverScanner\Launcher.exe
Launch\Easy Audio Cutter.lnk . (.Koyote Soft.) -- C:\Program Files\Free Audio Pack\Easy Audio
Cutter\AudioCutter.exe
Launch\Free CD Ripper.lnk . (.Koyote Soft.) -- C:\Program Files\Free Audio Pack\Free CD
Ripper\FreeCDRipper.exe
Launch\Free FLV Converter.lnk . (.Koyote Soft.) -- C:\Program Files\Free FLV
Converter\FreeFLVConverter.exe
Launch\Free Mp3 Wma Converter.lnk . (.Koyote Soft.) -- C:\Program Files\Free Audio
Pack\FreeConverter\FreeConverter.exe
Launch\Free Video Converter.lnk . (.Koyote Soft.) -- C:\Program Files\Free Video
Converter\FreeVideoConverter.exe
Launch\FrostWire 4.21.3.lnk . (.FrostWire Group.) -- C:\Program Files\FrostWire\FrostWire.exe
Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program
Files\Internet Explorer\iexplore.exe
Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
Launch\SpeedUpMyPC.lnk . (.Uniblue Systems Limited.) -- C:\Program
Files\Uniblue\SpeedUpMyPC\Launcher.exe
Launch\Uniblue RegistryBooster.lnk . (.Uniblue Systems Limited.) -- C:\Program
Files\Uniblue\RegistryBooster\Launcher.exe
~ Scan Global Startup in 00mn 06s
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation Microsoft Office Excel.) -- C:\PROGRA~1\MIF5BA~1\Office12\EXCEL.exe
O8 - Extra context menu item: Free YouTube to MP3 Converter . (...) -C:\Users\Compaq\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 {0000036B-C524-4050-81A0-243669A86B9F} . (.Microsoft Corporation - Windows Live
Messenger Companion core resources.) -- C:\Program Files\Windows Live\Companion\companion
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003
- {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer
Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBro
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} .
(.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: &Envoyer à OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -C:\PROGRA~1\MIF5BA~1\Office12\REFBARH.ICO
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location
Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service
Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider
DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim
d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de
noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de
noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper
DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID
Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows
Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID
Namespace Provider.) -- C:\Program Files\Common Files\Microsoft Shared\Windows
Live\WLIDNSP.DLL
O10 - WLSP:\000000000010\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -C:\Program Files\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0DA9CEA5-2B14-4832-A326-4307E27B3FAD}:
DhcpNameServer = 95.142.171.235 208.67.222.222 208.67.220.220
O17 - HKLM\System\CCS\Services\Tcpip\..\{3AD04AF6-3F7A-445B-BACC-285895767CF1}:
DhcpNameServer = 192.168.15.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{C823670D-ED51-41D7-92AD-6D73104A45BC}:
DhcpNameServer = 194.230.1.103 194.230.1.71
O17 - HKLM\System\CCS\Services\Tcpip\..\{3AD04AF6-3F7A-445B-BACC-285895767CF1}:
DhcpDomain = quadriga-www.com
O17 - HKLM\System\CS1\Services\Tcpip\..\{0DA9CEA5-2B14-4832-A326-4307E27B3FAD}:
DhcpNameServer = 95.142.171.235 208.67.222.222 208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\..\{3AD04AF6-3F7A-445B-BACC-285895767CF1}:
O17 - HKLM\System\CS1\Services\Tcpip\..\{C823670D-ED51-41D7-92AD-6D73104A45BC}:
DhcpNameServer = 194.230.1.103 194.230.1.71
O17 - HKLM\System\CS2\Services\Tcpip\..\{0DA9CEA5-2B14-4832-A326-4307E27B3FAD}:
DhcpNameServer = 95.142.171.235 208.67.222.222 208.67.220.220
O17 - HKLM\System\CS2\Services\Tcpip\..\{C823670D-ED51-41D7-92AD-6D73104A45BC}:
DhcpNameServer = 194.230.1.103 194.230.1.71
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation -
Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft
Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows
Live\Messenger\msgrapp.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft
Shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows
Live\Messenger\msgrapp.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation
- Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft
Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo
Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} .
(.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft
Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} .
(.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -C:\Windows\system32\mscoree.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation Microsoft Office XML MIME Filter.) -C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 01s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -C:\Windows\system32\igfxdev.dll
~ Scan Winlogon in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not
found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea
filters APO access service (32-bit).) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_55e4bd7d7a827098\aests
rv.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program
Files\Bonjour\mDNSResponder.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard Company HP Support Assistant.) - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard
Company - HP Quick Synchronization Service.) - C:\Program Files\HewlettPackard\Shared\HPDrvMntSvc.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID
Monitor.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool (NitroReaderDriverReadSpool) . (.Nitro
PDF Software - Solid Spool Service.) - C:\Program Files\Nitro
PDF\Reader\NitroPDFReaderDriverService.exe
O23 - Service: Qualcomm Gobi 2000 Download Service (HP) (QDLService2kHP) . (.QUALCOMM,
Inc. - QDLService2k.) - C:\Program Files\QUALCOMM\QDLService2k\QDLService2kHP.exe
O23 - Service: HP Connection Manager Service (SMManager) . (.Smith Micro Software, Inc. SMManager Application.) - C:\Program Files\Hewlett-Packard\HP Connection
Manager\SMManager.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_55e4bd7d7a827098\STac
SV.exe
~ Scan Services in 00mn 01s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\DriverScanner.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\RegistryBooster.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SpeedUpMyPC.job
[MD5.67C8A88FC619998132F7DE96F4F9ACDE] [APT] [DriverScanner] (.Uniblue Systems
Limited.) -- C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
[MD5.65010AEDF6217A0568226AFD0BC8A288] [APT] [RegistryBooster] (.Uniblue Systems
Limited.) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
[MD5.0A9C6CA308A89B95DCAE23BA2F7AAF7A] [APT] [SpeedUpMyPC] (.Uniblue Systems
Limited.) -- C:\Program Files\Uniblue\SpeedUpMyPC\spmonitor.exe
[MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -C:\Program Files\Apple Software Update\SoftwareUpdate.exe
[MD5.08B81D73186EFA8EF919ABEAD3FCB3EF] [APT] [PC Health Analysis] (.Hewlett-Packard
Company.) -- C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.08B81D73186EFA8EF919ABEAD3FCB3EF] [APT] [PC Tuneup] (.Hewlett-Packard
Company.) -- C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe
~ Scan Scheduled Task in 00mn 13s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary
Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS
Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) C:\Windows\system32\DRIVERS\MpFilter.sys
O41 - Driver: (MpKsl006e09c3) . (.Microsoft Corporation - KSLDriver.) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2BE78F27E1AD-4CC6-96DF-EEC1D2DF9EB6}\MpKsl006e09c3.sys
O41 - Driver: (MpKsl31c86709) . (. - .) - c:\ProgramData\Microsoft\Microsoft
Antimalware\Definition Updates\{7C9C0ADA-61E7-4B20A08A-2E06216C8D52}\MpKsl31c86709.sys (.not file.)
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT
Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI
Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du soussystème de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft
Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation
- RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation
Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote
Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 01s
---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.20 - (.Pas de propriétaire.) [HKLM] -- 7-Zip
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.)
[HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe
Flash Player Plugin
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {A93944F2-D2D4-4750BFE7-9A288FEAF2CF}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0BA0B-8F495BE32033}
O42 - Logiciel: Ares 2.1.7 - (.Ares Development Group.) [HKLM] -- Ares
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Banana Comptabilité 5.0 - (.Banana.ch SA - Lugano (Switzerland).) [HKLM] -Banana50_is1
O42 - Logiciel: Barre d'outils Bing - (.Microsoft Corporation.) [HKLM] -- {08234a0dcf39-4dca-99f0-0c5cb496da81}
O42 - Logiciel: Bing Bar Platform - (.Microsoft Corporation.) [HKLM] -{65C0025A-2CDE-43C5-82D0-C7A56EF0DB39}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {0CB9668D-F979-4F31-B8B8-67FE90F929F8}
O42 - Logiciel: Broadcom 802.11 Wireless LAN Adapter - (.Broadcom Corporation.) [HKLM] --
Broadcom 802.11 Wireless LAN Adapter
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft
Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Dictionnaire le Littré 2.0 - (.Murielle Descerisiers.) [HKLM] -- {2575CF76C88A-4B97-AC0F-62FFA453FD08}_is1
O42 - Logiciel: Free FLV Converter V 6.94.0 - (.Koyote Soft.) [HKLM] -- Free FLV Converter_is1
O42 - Logiciel: Free Mp3 Wma Converter V 1.91 - (.Koyote Soft.) [HKLM] -- Free Mp3 Wma
Converter_is1
O42 - Logiciel: Free Video Converter V 2.9 - (.Koyote Soft.) [HKLM] -- Free Video Converter_is1
O42 - Logiciel: Free YouTube to MP3 Converter version 3.10.11.923 - (.DVDVideoSoft Ltd..)
[HKLM] -- Free YouTube to MP3 Converter_is1
O42 - Logiciel: FrostWire 4.21.3 - (.FrostWire Team.) [HKLM] -- FrostWire
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: HP Connection Manager - (.Hewlett-Packard Company.) [HKLM] -{2F392D55-0E30-4DFA-BD27-0CFCD0E66A22}
O42 - Logiciel: HP Help and Support - (.HPQ.) [HKLM] -- {A93C4E94-1005-489D-BEAAB873C1AA6CFC}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM] -{B24A0E12-5775-4F9D-85B6-2306EE637CCB}
O42 - Logiciel: HP USB Disk Storage Format Tool - (.Pas de propriétaire.) [HKLM] -- {0E0DF90CD0BA-4C89-9262-AD78D1A3DE51}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {D46D081B-F60E-467EA7C4-117B70D76731}
O42 - Logiciel: HP Webcam-50 - (.Nom de votre société.) [HKLM] -InstallShield_{36EF0876-4EF9-4791-A27E-BC9084E0BBC3}
O42 - Logiciel: HP Webcam-50 - (.Nom de votre société.) [HKLM] -- {36EF0876-4EF9-4791-A27EBC9084E0BBC3}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {1061DF04CF33-40B0-8360-D07C9BBEB122}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -{669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BED93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Java(TM) 6 Update 23 - (.Oracle.) [HKLM] -{26A24AE4-039D-4CA4-87B4-2F83216021FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.)
[HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2DD047E6B7D68E}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -{3C3901C5-3455-3E0A-A214-0B093A5070A6}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft
Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -{05BFB060-4F22-4710-B0A2-2801A1B606C5}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.)
[HKLM] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}
O42 - Logiciel: Microsoft Filter Pack 2.0 - (.Microsoft Corporation.) [HKLM] -{95140000-2000-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7E5C87C4264C0}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAFBF94-4376A230AD5B}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -HOMESTUDENTR
O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -{91120000-002F-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-00A1-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]
-- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391F1E8FAA964C5}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415ED61-419A-981D-93596DA74165}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8DA50B7B5C045}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968EEBB76BB86787}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2C554F6B30EBB}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9D290383A10D9}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -{90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.)
[HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM]
-- {50779A29-834E-4E36-BBEB-B7CABC67A825}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft
Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft
Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Mozilla Firefox (3.6.8) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.8)
O42 - Logiciel: Nitro PDF Reader - (.Nitro PDF Software.) [HKLM] -{604C675E-49D3-4CFB-92AF-C5A35B45CE9A}
O42 - Logiciel: NoDrives Manager 1.2.0 - (.Hagon.) [HKLM] -- NoDrives Manager
O42 - Logiciel: Paint.NET v3.30 - (.dotPDN LLC.) [HKLM] -- {FF09A6A1-4DE5-467D-AA26EF18C0EA4DAB}
O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre
O42 - Logiciel: Qualcomm Gobi 2000 Package for HP - (.QUALCOMM.) [HKLM] --
{458328FB-0D19-43D9-854D-2EA404CF5BBE}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -{96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM] -- RocketDock_is1
O42 - Logiciel: Safari - (.Apple Inc..) [HKLM] -- {EAFEF30E-3789-49C7-A6D9-77C12E005BAC}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.)
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9A61C-6B45B867354D}
[HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337C8AC-46DB-A7DC-643E50089263}
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACEC02CC90B7A5B}
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5729F1AE-5895-468F-9165BAD161C9E982}
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{01D4CA59-7070-4420-9BCC-0
EFA7C5D76BE}
[HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{643C12A2AF9A-4712-B8BE-3B7650AFE00A}
[HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BF3F1CBDB05C-4644-AE43-6EE0FCC227A4}
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDCBF76-103DEAF3DD08}
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CBA968-6E5991B1421A}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2553073) - (.Microsoft.)
[HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{65EA4836B5A3-4C1D-8883-0C35E471003A}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.)
[HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781ACF6B-4FCB-B6D8-59C64DF5C6DB}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.)
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8588DD11-6BD7-4400-B55CDD5AB74B43E1}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) (.Microsoft.) [HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{D75E6D0CBADF-4F41-98B2-0C0F02C15062}
O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.)
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97AF7A-6CF8CAC8224D}
O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.)
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2
DD5D4E73E48}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-81
5B703B84FF}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.)
[HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776F795F21FEDDC}
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client
Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8AEB25E4A614E}.KB2518870
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9AB023A9238F3}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -SynTPDeinstKey
O42 - Logiciel: Uniblue DriverScanner - (.Uniblue Systems Ltd.) [HKLM] -{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
O42 - Logiciel: Uniblue RegistryBooster - (.Uniblue Systems Ltd.) [HKLM] -- Uniblue
RegistryBooster
O42 - Logiciel: Uniblue RegistryBooster - (.Uniblue Systems Ltd.) [HKLM] -{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA}
O42 - Logiciel: Uniblue SpeedUpMyPC - (.Uniblue Systems Ltd.) [HKLM] -{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-4
7AAAA68E92D}
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft
Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft
Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523
O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8
FD1FF0E6438}
O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B4CEEAE-AA88-490C-BCB2AAC3421981A4}
O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9B633-74508F54C1FF}
O42 - Logiciel: VPNFacile - Sécurisation de votre ligne internet - (.Pas de propriétaire.) [HKLM] -VPNFacile
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (.Broadcom.) [HKLM] -- A6A8668C0A13640CA28FE2A7D9654BE4AE478B13
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (12/16/2009 6.2.0.9414) (.Broadcom.) [HKLM] -- 0973B297E079B467E3776E59F763D63FD557795B
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (.Broadcom.) [HKLM] -- BF20603967CFDCB2BBF91950E8A56DFBC5C833FE
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -{F53D678E-238F-4A71-9742-08BB6774E9DC}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {FCFBA290CB48-4AF1-A241-2685AEDEDD66}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -{61AD15B2-50DB-4686-A739-14FE180D4429}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231FCE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -{AF844339-2F8A-4593-81B3-9F4C54038C4E}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -{9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461CA496-3E1CFD84C0B5}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -{DECDCB7C-58CC-4865-91AF-627F9798FE48}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21CABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM] -{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -{92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -{83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -{C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -{3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -{19A4A990-5343-4FF7-B3B5-6F046C091EDF}
O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -{DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C}
O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {227E8782B2F4-4E97-B0EE-49DE9CC1C0C0}
O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -{AB93C51F-71F9-4A28-8134-FE1B5B9373E9}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DEA41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79EE4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -{05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -{62687B11-58B5-4A18-9BC3-9DF4CE03F194}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Ares]
[HKCU\Software\Banana.ch]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IDT]
[HKCU\Software\IE]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Netscape]
[HKCU\Software\Nitro PDF]
[HKCU\Software\ODBC]
[HKCU\Software\PC SOFT]
[HKCU\Software\Paint.NET]
[HKCU\Software\Policies]
[HKCU\Software\RocketDock]
[HKCU\Software\SolidDocuments]
[HKCU\Software\Synaptics]
[HKCU\Software\TCP Optimizer]
[HKCU\Software\Telefonica]
[HKCU\Software\Telefónica Móviles]
[HKCU\Software\Trend Micro]
[HKCU\Software\VPNFacile]
[HKCU\Software\Valve]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\YahooPartnerToolbar]
[HKLM\Software\AT&T]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros Communications Inc.]
[HKLM\Software\Banana.ch]
[HKLM\Software\BcmSetup]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Caphyon]
[HKLM\Software\Cisco Systems]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\HPQLOG]
[HKLM\Software\HPQ]
[HKLM\Software\Hagon]
[HKLM\Software\Hewlett-Packard Company]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NetMotion]
[HKLM\Software\Nitro PDF]
[HKLM\Software\ODBC]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\Paint.NET]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Smith Micro]
[HKLM\Software\Sonic]
[HKLM\Software\Sunplus SPUVCb]
[HKLM\Software\Synaptics]
[HKLM\Software\Telefónica Móviles]
[HKLM\Software\Telespree]
[HKLM\Software\TrendMicro]
[HKLM\Software\Uniblue]
[HKLM\Software\Valve]
[HKLM\Software\Windows]
[HKLM\Software\instinno]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 02s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 01.02.2011 - 11:29:50 - [3511045] ----D- C:\Program Files\7-Zip
O43 - CFD: 02.02.2011 - 15:32:28 - [2221118] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 01.02.2011 - 13:40:14 - [5015829] ----D- C:\Program Files\Ares
O43 - CFD: 01.02.2011 - 13:00:12 - [7409409] ----D- C:\Program Files\AT&T
O43 - CFD: 01.02.2011 - 14:00:14 - [16358628] ----D- C:\Program Files\Banana50
O43 - CFD: 02.02.2011 - 14:26:56 - [999006] ----D- C:\Program Files\Bing Bar Installer
O43 - CFD: 02.02.2011 - 15:32:56 - [617126] ----D- C:\Program Files\Bonjour
O43 - CFD: 01.02.2011 - 12:42:18 - [11969361] ----D- C:\Program Files\Broadcom
O43 - CFD: 11.11.2011 - 00:05:14 - [743862188] ----D- C:\Program Files\Common Files
O43 - CFD: 01.02.2011 - 14:07:24 - [95005047] ----D- C:\Program Files\Dictionnaire le Littré 2.0
O43 - CFD: 01.02.2011 - 12:38:08 - [544736] ----D- C:\Program Files\DIFX
O43 - CFD: 02.02.2011 - 15:34:42 - [914754] ----D- C:\Program Files\DriveKey
O43 - CFD: 14.07.2009 - 10:01:10 - [83226132] ----D- C:\Program Files\DVD Maker
O43 - CFD: 30.10.2011 - 19:33:48 - [8181016] ----D- C:\Program Files\DVDVideoSoft
O43 - CFD: 01.02.2011 - 09:54:56 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 01.02.2011 - 13:48:24 - [23307867] ----D- C:\Program Files\Free Audio Pack
O43 - CFD: 01.02.2011 - 13:49:04 - [20980616] ----D- C:\Program Files\Free FLV Converter
O43 - CFD: 01.02.2011 - 13:49:52 - [11295862] ----D- C:\Program Files\Free Video Converter
O43 - CFD: 01.02.2011 - 13:52:18 - [40503991] ----D- C:\Program Files\FrostWire
O43 - CFD: 01.02.2011 - 13:18:42 - [143668042] ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 02.02.2011 - 04:07:28 - [3680296] ----D- C:\Program Files\Hp
O43 - CFD: 02.02.2011 - 04:57:48 - [3121306] ----D- C:\Program Files\HP Webcam-50
O43 - CFD: 02.02.2011 - 04:16:18 - [446976] ----D- C:\Program Files\HPQ
O43 - CFD: 01.02.2011 - 13:08:12 - [40667644] ----D- C:\Program Files\IDT
O43 - CFD: 01.02.2011 - 14:20:08 - [156488409] ----D- C:\Program Files\Inkscape
O43 - CFD: 02.02.2011 - 15:34:42 - [30086159] --H-D- C:\Program Files\InstallShield Installation
Information
O43 - CFD: 01.02.2011 - 11:51:18 - [61738067] ----D- C:\Program Files\Intel
O43 - CFD: 31.10.2011 - 16:26:12 - [4495513] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 02.02.2011 - 03:03:16 - [90788908] ----D- C:\Program Files\Java
O43 - CFD: 31.10.2011 - 17:19:00 - [7003518] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 02.02.2011 - 14:26:48 - [2572021] ----D- C:\Program Files\Microsoft
O43 - CFD: 14.07.2009 - 10:01:00 - [147812402] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 02.02.2011 - 22:25:24 - [369179453] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 31.10.2011 - 16:26:02 - [19308093] ----D- C:\Program Files\Microsoft Security Client
O43 - CFD: 30.10.2011 - 19:08:20 - [38412395] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 02.02.2011 - 14:29:44 - [1829877] ----D- C:\Program Files\Microsoft SQL Server
Compact Edition
O43 - CFD: 07.03.2011 - 11:09:36 - [3726168] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 02.02.2011 - 22:24:34 - [8167779] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 08.11.2011 - 18:22:26 - [30407954] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 14.07.2009 - 05:52:32 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 01.02.2011 - 13:34:36 - [6388910] ----D- C:\Program Files\MSECache
O43 - CFD: 02.02.2011 - 14:26:44 - [6834838] ----D- C:\Program Files\MSN Toolbar
O43 - CFD: 01.02.2011 - 14:15:30 - [65141703] ----D- C:\Program Files\Nitro PDF
O43 - CFD: 02.02.2011 - 16:15:50 - [5629499] ----D- C:\Program Files\NoDrives Manager
O43 - CFD: 01.02.2011 - 15:04:12 - [9183425] ----D- C:\Program Files\Paint.NET
O43 - CFD: 02.02.2011 - 02:32:02 - [3688689] ----D- C:\Program Files\PhotoFiltre
O43 - CFD: 01.02.2011 - 11:53:16 - [46286494] ----D- C:\Program Files\QUALCOMM
O43 - CFD: 01.02.2011 - 11:48:36 - [7974639] ----D- C:\Program Files\Realtek
O43 - CFD: 14.07.2009 - 05:52:32 - [38597377] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 01.02.2011 - 14:13:12 - [11615163] ----D- C:\Program Files\RocketDock
O43 - CFD: 02.02.2011 - 15:33:40 - [42259282] ----D- C:\Program Files\Safari
O43 - CFD: 11.11.2011 - 12:11:38 - [147684220] ----D- C:\Program Files\Steam
O43 - CFD: 01.02.2011 - 13:04:46 - [37662345] ----D- C:\Program Files\Synaptics
O43 - CFD: 01.02.2011 - 13:00:14 - [1270640] ----D- C:\Program Files\Telespree
O43 - CFD: 30.10.2011 - 19:22:08 - [388096] ----D- C:\Program Files\Trend Micro
O43 - CFD: 02.02.2011 - 05:46:34 - [64952060] ----D- C:\Program Files\Uniblue
O43 - CFD: 14.07.2009 - 05:53:24 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 01.02.2011 - 13:58:26 - [20188758] ----D- C:\Program Files\VideoLAN
O43 - CFD: 11.11.2011 - 00:02:12 - [5840159] ----D- C:\Program Files\VPNFacile
O43 - CFD: 14.07.2009 - 09:39:40 - [3049984] ----D- C:\Program Files\Windows Defender
O43 - CFD: 14.07.2009 - 10:01:08 - [7013496] ----D- C:\Program Files\Windows Journal
O43 - CFD: 02.02.2011 - 14:31:38 - [191444399] ----D- C:\Program Files\Windows Live
O43 - CFD: 02.02.2011 - 07:23:18 - [6180864] ----D- C:\Program Files\Windows Mail
O43 - CFD: 02.02.2011 - 07:23:14 - [6607787] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 01.02.2011 - 09:54:56 - [12197556] ----D- C:\Program Files\Windows NT
O43 - CFD: 14.07.2009 - 09:39:40 - [4417800] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14.07.2009 - 05:52:34 - [189440] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 14.07.2009 - 09:39:40 - [6683295] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 11.11.2011 - 12:15:08 - [4248574] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 02.02.2011 - 15:32:40 - [44308227] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 02.02.2011 - 22:25:18 - [92976] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 30.10.2011 - 19:34:10 - [35445440] ----D- C:\Program Files\Common
Files\DVDVideoSoft
O43 - CFD: 02.02.2011 - 15:33:58 - [3127270] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 01.02.2011 - 13:41:54 - [1243079] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 30.10.2011 - 18:30:52 - [264537620] ----D- C:\Program Files\Common Files\microsoft
shared
O43 - CFD: 01.02.2011 - 14:15:30 - [16536470] ----D- C:\Program Files\Common Files\Nitro PDF
O43 - CFD: 14.07.2009 - 03:37:06 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14.07.2009 - 03:37:06 - [41103783] ----D- C:\Program Files\Common
Files\SpeechEngines
O43 - CFD: 11.11.2011 - 00:05:14 - [407336] ----D- C:\Program Files\Common Files\Steam
O43 - CFD: 11.11.2011 - 12:07:32 - [44114543] ----D- C:\Program Files\Common Files\System
O43 - CFD: 01.02.2011 - 13:00:14 - [236064] ----D- C:\Program Files\Common Files\Telespree
O43 - CFD: 02.02.2011 - 14:21:12 - [292706678] ----D- C:\Program Files\Common Files\Windows
Live
O43 - CFD: 02.02.2011 - 15:32:26 - [21741056] ----D- C:\ProgramData\Apple
O43 - CFD: 02.02.2011 - 15:33:28 - [18039080] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14.07.2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 01.02.2011 - 13:00:12 - [124138] ----D- C:\ProgramData\AT&T
O43 - CFD: 01.02.2011 - 12:43:14 - [38965] ----D- C:\ProgramData\Atheros
O43 - CFD: 01.02.2011 - 09:54:56 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 14.07.2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14.07.2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 01.02.2011 - 09:54:56 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14.07.2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 02.06.2011 - 21:44:56 - [64601] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 31.10.2011 - 17:18:54 - [7287329] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 01.02.2011 - 09:54:56 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 02.02.2011 - 20:59:10 - [488738621] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 31.10.2011 - 00:28:32 - [357584] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 01.02.2011 - 09:54:56 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 01.02.2011 - 14:15:34 - [248] ----D- C:\ProgramData\Nitro PDF
O43 - CFD: 01.02.2011 - 11:53:16 - [20204] ----D- C:\ProgramData\QUALCOMM
O43 - CFD: 14.07.2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 01.02.2011 - 13:41:54 - [154] ----D- C:\ProgramData\Sun
O43 - CFD: 14.07.2009 - 05:53:56 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 02.02.2011 - 05:52:08 - [0] ----D- C:\ProgramData\Uniblue
O43 - CFD: 01.02.2011 - 13:11:36 - [35497462] ----D- C:\ProgramData\{C26DA76C-EF22-4BA6A3B3-B1DE610CC29D}
O43 - CFD: 02.02.2011 - 05:44:42 - [7971683] --H-D- C:\ProgramData\{DE8EABB5-1C85-4410A68D-79BD8A4518F4}
O43 - CFD: 30.10.2011 - 18:50:46 - [0] ----D- C:\Users\Compaq\AppData\Roaming\Adobe
O43 - CFD: 02.02.2011 - 15:34:48 - [1151759] ----D- C:\Users\Compaq\AppData\Roaming\Apple
Computer
O43 - CFD: 01.02.2011 - 14:13:54 - [97384960] ----DC:\Users\Compaq\AppData\Roaming\Downloaded Installations
O43 - CFD: 30.10.2011 - 19:35:02 - [6785683] ----DC:\Users\Compaq\AppData\Roaming\DVDVideoSoft
O43 - CFD: 30.10.2011 - 19:34:30 - [267] ----DC:\Users\Compaq\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 01.02.2011 - 13:48:24 - [105] ----DC:\Users\Compaq\AppData\Roaming\FreeAudioPack
O43 - CFD: 01.02.2011 - 13:49:08 - [52240] ----DC:\Users\Compaq\AppData\Roaming\FreeFLVConverter
O43 - CFD: 01.02.2011 - 13:50:22 - [567] ----DC:\Users\Compaq\AppData\Roaming\FreeVideoConverter
O43 - CFD: 02.02.2011 - 03:31:30 - [23712281] ----DC:\Users\Compaq\AppData\Roaming\FrostWire
O43 - CFD: 02.02.2011 - 04:34:04 - [0] ----D- C:\Users\Compaq\AppData\Roaming\Hewlett-Packard
O43 - CFD: 05.11.2011 - 18:12:12 - [490782] ----D- C:\Users\Compaq\AppData\Roaming\hpqLog
O43 - CFD: 02.02.2011 - 05:56:46 - [3822] ----D- C:\Users\Compaq\AppData\Roaming\HpUpdate
O43 - CFD: 01.02.2011 - 09:55:44 - [0] ----D- C:\Users\Compaq\AppData\Roaming\Identities
O43 - CFD: 01.02.2011 - 11:50:46 - [0] ----D- C:\Users\Compaq\AppData\Roaming\InstallShield
O43 - CFD: 30.10.2011 - 18:50:46 - [1380] ----D- C:\Users\Compaq\AppData\Roaming\Macromedia
O43 - CFD: 31.10.2011 - 17:19:08 - [1063] ----DC:\Users\Compaq\AppData\Roaming\Malwarebytes
O43 - CFD: 14.07.2009 - 10:00:24 - [0] ----D- C:\Users\Compaq\AppData\Roaming\Media Center
Programs
O43 - CFD: 30.10.2011 - 19:22:10 - [2278874] -S--DC:\Users\Compaq\AppData\Roaming\Microsoft
O43 - CFD: 02.02.2011 - 03:03:30 - [2094980] ----D- C:\Users\Compaq\AppData\Roaming\Mozilla
O43 - CFD: 11.11.2011 - 00:11:04 - [7254] ----D- C:\Users\Compaq\AppData\Roaming\Nitro PDF
O43 - CFD: 01.02.2011 - 14:58:46 - [604] ----D- C:\Users\Compaq\AppData\Roaming\PhotoFiltre
O43 - CFD: 01.02.2011 - 14:54:54 - [0] ----D- C:\Users\Compaq\AppData\Roaming\Pixia
O43 - CFD: 01.02.2011 - 14:29:16 - [295571] ----D- C:\Users\Compaq\AppData\Roaming\Telefónica
Móviles
O43 - CFD: 02.02.2011 - 05:46:56 - [7647550] ----D- C:\Users\Compaq\AppData\Roaming\Uniblue
O43 - CFD: 30.10.2011 - 19:13:48 - [1706412] ----D- C:\Users\Compaq\AppData\Roaming\uTorrent
O43 - CFD: 02.02.2011 - 02:34:18 - [78244] ----D- C:\Users\Compaq\AppData\Roaming\vlc
O43 - CFD: 02.02.2011 - 15:29:48 - [0] ----D- C:\Users\Compaq\AppData\Roaming\Windows Live
Writer
O43 - CFD: 02.02.2011 - 15:32:30 - [0] ----D- C:\Users\Compaq\AppData\Local\Apple
O43 - CFD: 02.02.2011 - 15:34:48 - [18822351] ----D- C:\Users\Compaq\AppData\Local\Apple
Computer
O43 - CFD: 01.02.2011 - 09:55:22 - [0] -SH-D- C:\Users\Compaq\AppData\Local\Application Data
O43 - CFD: 02.02.2011 - 03:25:28 - [30788] ----D- C:\Users\Compaq\AppData\Local\Ares
O43 - CFD: 01.02.2011 - 14:02:30 - [47565] ----D- C:\Users\Compaq\AppData\Local\Banana.ch
O43 - CFD: 02.02.2011 - 04:53:20 - [171130542] ----DC:\Users\Compaq\AppData\Local\Downloaded Installations
O43 - CFD: 30.10.2011 - 23:20:36 - [0] ----D- C:\Users\Compaq\AppData\Local\ElevatedDiagnostics
O43 - CFD: 29.10.2011 - 01:14:42 - [1315504] ----D- C:\Users\Compaq\AppData\Local\HewlettPackard
O43 - CFD: 01.02.2011 - 09:55:22 - [0] -SH-D- C:\Users\Compaq\AppData\Local\Historique
O43 - CFD: 05.11.2011 - 18:44:12 - [93131847] ----D- C:\Users\Compaq\AppData\Local\Microsoft
O43 - CFD: 13.02.2011 - 17:14:14 - [102719] ----D- C:\Users\Compaq\AppData\Local\Microsoft
Games
O43 - CFD: 02.02.2011 - 20:55:24 - [0] ----D- C:\Users\Compaq\AppData\Local\Microsoft Help
O43 - CFD: 02.02.2011 - 03:03:02 - [60771927] ----D- C:\Users\Compaq\AppData\Local\Mozilla
O43 - CFD: 02.02.2011 - 05:44:22 - [0] ----D- C:\Users\Compaq\AppData\Local\PackageAware
O43 - CFD: 18.04.2011 - 19:53:30 - [0] ----D- C:\Users\Compaq\AppData\Local\Paint.NET
O43 - CFD: 11.11.2011 - 12:15:54 - [29345] ----D- C:\Users\Compaq\AppData\Local\Temp
O43 - CFD: 01.02.2011 - 09:55:22 - [0] -SH-D- C:\Users\Compaq\AppData\Local\Temporary
Internet Files
O43 - CFD: 01.02.2011 - 13:50:06 - [749104] ----D- C:\Users\Compaq\AppData\Local\VirtualStore
O43 - CFD: 01.02.2011 - 14:07:42 - [0] ----D- C:\Users\Compaq\AppData\Local\WDSetup
O43 - CFD: 05.11.2011 - 18:44:04 - [232448488] ----D- C:\Users\Compaq\AppData\Local\Windows
Live
O43 - CFD: 02.02.2011 - 15:29:54 - [374017] ----D- C:\Users\Compaq\AppData\Local\Windows Live
Writer
O43 - CFD: 10.11.2011 - 23:51:28 - [0] ----D- C:\Users\Compaq\AppData\Local\{042BBD82D27F-4A58-89DA-672257AE5ACF}
O43 - CFD: 05.11.2011 - 18:01:26 - [0] ----DC:\Users\Compaq\AppData\Local\{10ED6C78-262E-477E-9729-4E1350066B5F}
O43 - CFD: 12.05.2011 - 20:04:02 - [0] ----DC:\Users\Compaq\AppData\Local\{11255EAB-5015-4408-9FE3-D3C56CC23637}
O43 - CFD: 29.10.2011 - 01:03:04 - [0] ----DC:\Users\Compaq\AppData\Local\{14CBBD10-11AB-404C-A399-BE754B04E0AF}
O43 - CFD: 30.10.2011 - 18:48:16 - [0] ----DC:\Users\Compaq\AppData\Local\{17D34021-4828-4545-8323-DD8957FC60BE}
O43 - CFD: 06.11.2011 - 23:15:28 - [0] ----DC:\Users\Compaq\AppData\Local\{2D35B835-7E6D-4E9B-AD9E-061D9C4014D5}
O43 - CFD: 31.10.2011 - 16:30:56 - [0] ----D- C:\Users\Compaq\AppData\Local\{3186F682D782-4721-830C-C834D9885845}
O43 - CFD: 08.11.2011 - 17:21:02 - [0] ----D- C:\Users\Compaq\AppData\Local\{32DDF265D220-4717-9E67-C206FCA37B36}
O43 - CFD: 05.11.2011 - 18:01:44 - [0] ----DC:\Users\Compaq\AppData\Local\{42FF6742-1A2A-48AA-9030-DB82A6553A53}
O43 - CFD: 02.02.2011 - 15:30:14 - [0] ----DC:\Users\Compaq\AppData\Local\{4501882F-2CE1-4FEF-A581-5AA3C49B554E}
O43 - CFD: 02.06.2011 - 20:31:54 - [0] ----DC:\Users\Compaq\AppData\Local\{4C8A4E99-69D4-4432-BB6D-AD7C1FF8B9C1}
O43 - CFD: 06.11.2011 - 23:15:42 - [0] ----DC:\Users\Compaq\AppData\Local\{6658F62E-8542-4CD8-AAC6-32CC6CE45C49}
O43 - CFD: 06.11.2011 - 22:53:28 - [0] ----DC:\Users\Compaq\AppData\Local\{7390D131-8772-409C-8870-DCE71CEF6DEA}
O43 - CFD: 02.02.2011 - 15:29:52 - [0] ----DC:\Users\Compaq\AppData\Local\{7A00F7C7-408F-4DD0-90F6-E2FC69BF1E11}
O43 - CFD: 10.11.2011 - 23:51:44 - [0] ----DC:\Users\Compaq\AppData\Local\{7E6F002C-6EA5-4533-A43D-AB122AFCB5B4}
O43 - CFD: 29.10.2011 - 01:02:56 - [0] ----DC:\Users\Compaq\AppData\Local\{85F6D93C-12C0-464D-8259-DC860C251414}
O43 - CFD: 08.11.2011 - 18:14:42 - [0] ----D- C:\Users\Compaq\AppData\Local\{A019DDB6F4AD-495F-BF12-7E1097A70CAD}
O43 - CFD: 12.05.2011 - 20:01:12 - [0] ----DC:\Users\Compaq\AppData\Local\{A05508CC-3B0B-4459-9858-D07672B7ED0B}
O43 - CFD: 08.11.2011 - 18:14:56 - [0] ----DC:\Users\Compaq\AppData\Local\{AF43743A-6B07-4B33-AB0A-BE805A7C327D}
O43 - CFD: 06.11.2011 - 22:53:40 - [0] ----DC:\Users\Compaq\AppData\Local\{B0C522AE-18F1-4C11-A8B2-0A16DF17DECB}
O43 - CFD: 11.11.2011 - 12:11:48 - [0] ----D- C:\Users\Compaq\AppData\Local\{D0CF897BE298-4321-96E3-E6CF567045A1}
O43 - CFD: 30.10.2011 - 18:19:26 - [0] ----DC:\Users\Compaq\AppData\Local\{D874C37F-7FCC-4FFD-92A4-B0E288202535}
O43 - CFD: 11.11.2011 - 12:11:52 - [0] ----D-
C:\Users\Compaq\AppData\Local\{E685E3BB-3258-4C82-A15C-44172684DDDE}
O43 - CFD: 08.11.2011 - 17:21:16 - [0] ----DC:\Users\Compaq\AppData\Local\{FBA087D0-6BE2-430B-8327-CFEA20B9F5EB}
~ Scan Program Folder in 00mn 39s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.F3B9011872910AC02C0DA1B4A35B5470] - 11.11.2011 - 12:15:29 ---A- . (...) -C:\Windows\system32\PerfStringBackup.INI [1556228]
O44 - LFC:[MD5.12679F77E2C3F42B25E6D45108F0E206] - 11.11.2011 - 12:15:29 ---A- . (...) -C:\Windows\system32\perfc009.dat [107388]
O44 - LFC:[MD5.C9240DCAEC72C38855AAA77E902D5928] - 11.11.2011 - 12:15:29 ---A- . (...) -C:\Windows\system32\perfc00C.dat [131754]
O44 - LFC:[MD5.D8D4761D0168ADAF3482F739A07E26F3] - 11.11.2011 - 12:15:29 ---A- . (...) -C:\Windows\system32\perfh009.dat [618108]
O44 - LFC:[MD5.1D132662FBE76F73EFC3B0E8AD65EEC3] - 11.11.2011 - 12:15:29 ---A- . (...) -C:\Windows\system32\perfh00C.dat [706580]
O44 - LFC:[MD5.BCD73DD7F6EC7F1712A83F6C57CF864A] - 11.11.2011 - 12:15:15 ---A- . (...) -C:\Windows\WindowsUpdate.log [1317443]
O44 - LFC:[MD5.273D8C2910C532E325B115A80E329478] - 11.11.2011 - 12:09:10 ---A- . (...) -C:\Windows\setupact.log [24603]
O44 - LFC:[MD5.7DC117D5E4E8CF9E8668088A2B43C26A] - 11.11.2011 - 12:09:03 ---A- . (...) -C:\Windows\system32\FNTCACHE.DAT [307456]
O44 - LFC:[MD5.96A8269293F6C3EA04D4BBF3AD8EBA16] - 11.11.2011 - 12:08:57 -S-A- . (...) -C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.69A6268D7F81E53D568AB4E7E991CAF3] - 31.10.2011 - 17:18:48 ---A- .
(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -C:\Windows\system32\drivers\mbam.sys [22216]
O44 - LFC:[MD5.4520B63899E867F354EE012D34E11536] - 31.10.2011 - 16:37:52 ---A- . (.NVIDIA
Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -C:\Windows\system32\drivers\nvstor.sys [143744]
O44 - LFC:[MD5.F1B0BED906F97E16F6D0C3629D2F21C6] - 31.10.2011 - 16:37:51 ---A- .
(.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -C:\Windows\system32\drivers\nvraid.sys [117120]
O44 - LFC:[MD5.19CE906B4CDC11FC4FEF5745F33A63B6] - 31.10.2011 - 16:37:50 ---A- .
(.Advanced Micro Devices - AHCI 1.2 Device Driver.) -C:\Windows\system32\drivers\amdsata.sys [80256]
O44 - LFC:[MD5.71F1A494FEDF4B33C02C4A6A28D6D9E9] - 31.10.2011 - 16:37:49 ---A- . (.Intel
Corporation - Intel Matrix Storage Manager driver - ia32.) -C:\Windows\system32\drivers\iaStorV.sys [332160]
O44 - LFC:[MD5.869E67D66BE326A5A9159FBA8746FA70] - 31.10.2011 - 16:37:48 ---A- .
(.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys
[22400]
O44 - LFC:[MD5.E185BDA84E5F03F4E1D8DCA30E209277] - 31.10.2011 - 00:24:12 ---A- . (...) -C:\Windows\epplauncher.mif [1912]
O44 - LFC:[MD5.DDFEA7C6129FE1F1B5322B6F19F7A2AB] - 30.10.2011 - 23:55:53 ---A- . (...) -C:\AdwCleaner[S1].txt [1725]
O44 - LFC:[MD5.C55AE6227A8C485ACF8A1823F59028A1] - 30.10.2011 - 23:55:07 ---A- . (...) -C:\AdwCleaner[R1].txt [1506]
O44 - LFC:[MD5.5ABAF97F464A22BD6E9F844186AE09C9] - 30.10.2011 - 22:30:17 ---A- . (...) -C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.2C536D41DCE213E1D449F18B3D41EA55] - 30.10.2011 - 18:50:39 ---A- . (.Adobe
Systems Incorporated - Adobe Flash Player Control Panel Applet.) -C:\Windows\system32\FlashPlayerCPLApp.cpl [414368]
~ Scan Files in 03mn 11s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft
Authentication Package v1.0.) -- C:\Windows\system32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du
client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\system32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de
sécurité Kerberos.) -- C:\Windows\system32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft
Authentication Package v1.0.) -- C:\Windows\system32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL
Security Provider.) -- C:\Windows\system32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest
Access.) -- C:\Windows\system32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service
Security Package.) -- C:\Windows\system32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security
Package.) -- C:\Windows\system32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -C:\Windows\system32\livessp.dll
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super
VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume
Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote
d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP
Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI
Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP
Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation -
Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote
d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s
---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{bff3cca4-2dd6-11e0-978b-806e6f6e6963}\AutoRun\command. (...) -- E:\SETUP.exe
(.not file.)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer
Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -C:\Windows\system32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3
Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) - C:\Windows\System32\l3codeca.acm
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation
- Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=8
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 10.06.2009 - 02:26:15 ---A- .
(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -C:\Windows\system32\drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 13.07.2009 - 02:26:17 ---A- .
(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -C:\Windows\system32\drivers\adpahci.sys [297552]
O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 13.07.2009 - 02:26:15 ---A- .
(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -C:\Windows\system32\drivers\adpu320.sys [146512]
O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14.07.2009 - 02:26:15 ---A- . (.Acer
Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14400]
O58 - SDL:[MD5.19CE906B4CDC11FC4FEF5745F33A63B6] - 31.10.2011 - 06:43:46 ---A- .
(.Advanced Micro Devices - AHCI 1.2 Device Driver.) -C:\Windows\system32\drivers\amdsata.sys [80256]
O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 10.06.2009 - 02:26:15 ---A- . (.AMD
Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -C:\Windows\system32\drivers\amdsbs.sys [159312]
O58 - SDL:[MD5.869E67D66BE326A5A9159FBA8746FA70] - 31.10.2011 - 06:43:46 ---A- .
(.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys
[22400]
O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 13.07.2009 - 02:26:15 ---A- .
(.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [76368]
O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 13.07.2009 - 02:26:15 ---A- .
(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys
[86608]
O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 13.07.2009 - 23:02:49 ---A- .
(.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -C:\Windows\system32\drivers\b57nd60x.sys [229888]
O58 - SDL:[MD5.82DF0DF2EB005F153DCF04C0693AB22C] - 01.02.2011 - 12:42:12 ---A- .
(.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -C:\Windows\system32\drivers\BCMWL6.SYS [2702328]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 14.07.2009 - 23:53:28 ---A- .
(.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -C:\Windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 14.07.2009 - 23:53:28 ---A- .
(.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -C:\Windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14.07.2009 - 01:57:25 ---A- .
(.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -C:\Windows\system32\drivers\BrSerId.sys [272128]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 14.07.2009 - 23:53:32 ---A- .
(.Brother Industries Ltd. - Brother Serial driver (WDM version).) -C:\Windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 14.07.2009 - 23:53:33 ---A- .
(.Brother Industries Ltd. - Brother USB MDM Driver.) -C:\Windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 14.07.2009 - 23:53:33 ---A- .
(.Brother Industries Ltd. - Brother USB Serial Driver.) -C:\Windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 10.06.2009 - 23:02:48 ---A- .
(.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -C:\Windows\system32\drivers\bxvbdx.sys [430080]
O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14.07.2009 - 02:26:21 ---A- . (.CMD
Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [15952]
O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 10.06.2009 - 02:20:28 ---A- .
(.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [70720]
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 10.06.2009 - 02:20:28 ---A- .
(.Emulex - Storport Miniport Driver for LightPulse HBAs.) -C:\Windows\system32\drivers\elxstor.sys [453712]
O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 10.06.2009 - 23:02:48 ---A- .
(.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -C:\Windows\system32\drivers\evbdx.sys [3100160]
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13.07.2009 - 23:54:14 ---A- .
(.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -C:\Windows\system32\drivers\hcw85cir.sys [26624]
O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 13.07.2009 - 02:20:28 ---A- .
(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -C:\Windows\system32\drivers\HpSAMD.sys [67152]
O58 - SDL:[MD5.D483687EACE0C065EE772481A96E05F5] - 01.02.2011 - 18:43:16 ---A- . (.Intel
Corporation - Intel Matrix Storage Manager driver - ia32.) -C:\Windows\system32\drivers\iaStor.sys [330264]
O58 - SDL:[MD5.71F1A494FEDF4B33C02C4A6A28D6D9E9] - 31.10.2011 - 06:43:55 ---A- . (.Intel
Corporation - Intel Matrix Storage Manager driver - ia32.) -C:\Windows\system32\drivers\iaStorV.sys [332160]
O58 - SDL:[MD5.9467514EA189475A6E7FDC5D7BDE9D3F] - 23.09.2009 - 19:18:14 ---A- . (.Intel
Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd32.sys
[4808192]
O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 13.07.2009 - 02:20:36 ---A- . (.Intel
Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) --
C:\Windows\system32\drivers\iirsp.sys [41040]
O58 - SDL:[MD5.4476FE98AAF505ACDCD3EE6360AABEC1] - 29.04.2009 - 14:37:26 ---A- .
(.Windows (R) Codename Longhorn DDK provider - KMWDFilter Driver from UASSOFT.COM.) -C:\Windows\system32\drivers\KMWDFILTER.sys [25088]
O58 - SDL:[MD5.31EA3F3219ABDD2A6EE0969CB3DC54E6] - 02.02.2011 - 08:29:45 ---A- .
(.Atheros Communications, Inc. - Atheros AR813x/AR815x PCI-E Ethernet Controller ndis miniport
d.) -- C:\Windows\system32\drivers\l1c51x86.sys [61040]
O58 - SDL:[MD5.6EF8146358452995A4A9335E44ABB015] - 02.02.2011 - 08:21:13 ---A- . (.Atheros
Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controller.) -C:\Windows\system32\drivers\L1C62x86.sys [65576]
O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 13.07.2009 - 02:20:36 ---A- . (.LSI
Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys
[95824]
O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 13.07.2009 - 02:20:37 ---A- . (.LSI
Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys
[89168]
O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 13.07.2009 - 02:20:36 ---A- . (.LSI
Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys
[54864]
O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 13.07.2009 - 02:20:36 ---A- . (.LSI
Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -C:\Windows\system32\drivers\lsi_scsi.sys [96848]
O58 - SDL:[MD5.69A6268D7F81E53D568AB4E7E991CAF3] - 31.10.2011 - 17:00:50 ---A- .
(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -C:\Windows\system32\drivers\mbam.sys [22216]
O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 10.06.2009 - 02:20:36 ---A- . (.LSI
Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -C:\Windows\system32\drivers\megasas.sys [30800]
O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 13.07.2009 - 02:20:36 ---A- . (.LSI
Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -C:\Windows\system32\drivers\MegaSR.sys [235584]
O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 13.07.2009 - 02:20:44 ---A- . (.IBM
Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys
[44624]
O58 - SDL:[MD5.F1B0BED906F97E16F6D0C3629D2F21C6] - 31.10.2011 - 06:44:01 ---A- .
(.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -C:\Windows\system32\drivers\nvraid.sys [117120]
O58 - SDL:[MD5.4520B63899E867F354EE012D34E11536] - 31.10.2011 - 06:44:01 ---A- . (.NVIDIA
Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -C:\Windows\system32\drivers\nvstor.sys [143744]
O58 - SDL:[MD5.9F9F6F299AAA4728A29536DA2073121B] - 01.02.2011 - 09:18:02 ---A- .
(.QUALCOMM Incorporated - Filter Driver for the Qualcomm USB Driver Stack.) -C:\Windows\system32\drivers\qcfilterhp2k.sys [5248]
O58 - SDL:[MD5.EEB81B71117FC9C7C1840DDE8A871AE7] - 01.02.2011 - 09:18:02 ---A- .
(.Qualcomm Inc. - USB NDIS Miniport Driver.) -- C:\Windows\system32\drivers\qcusbnethp2k.sys
[372224]
O58 - SDL:[MD5.49D19809C20B0922C9F7690B51197F2C] - 01.02.2011 - 09:18:02 ---A- .
(.Qualcomm Inc. - USB/Serial Device Driver.) -- C:\Windows\system32\drivers\qcusbserhp2k.sys
[190592]
O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 10.06.2009 - 02:19:04 ---A- .
(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -C:\Windows\system32\drivers\ql2300.sys [1383488]
O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 13.07.2009 - 02:19:04 ---A- .
(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -C:\Windows\system32\drivers\ql40xx.sys [106064]
O58 - SDL:[MD5.F1ED9FFA59C369E72BC53A7631346F61] - 02.02.2011 - 08:12:43 ---A- .
(.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -C:\Windows\system32\drivers\RtsUStor.sys [193640]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 14.07.2009 - 21:50:20 ---A- .
(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -C:\Windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 10.06.2009 - 02:19:04 ---A- .
(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -C:\Windows\system32\drivers\sisraid2.sys [40016]
O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 13.07.2009 - 02:19:04 ---A- . (.Silicon
Integrated Systems - SiS AHCI Stor-Miniport Driver.) -C:\Windows\system32\drivers\sisraid4.sys [77888]
O58 - SDL:[MD5.0012D6A64A91DC158D83C923061FAFD0] - 02.02.2011 - 11:36:26 ---A- . (.Digital
Camera - Digital Camera Driver.) -- C:\Windows\system32\drivers\SPUVCBv.sys [2345856]
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 13.07.2009 - 02:19:04 ---A- .
(.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -C:\Windows\system32\drivers\stexstor.sys [21072]
O58 - SDL:[MD5.666954876B4C973EEE61B1B2332B58C4] - 01.02.2011 - 11:04:00 ---A- . (.IDT,
Inc. - IDT PC Audio.) -- C:\Windows\system32\drivers\stwrt.sys [408576]
O58 - SDL:[MD5.067CB9D745407A8C1B26E89A6A2CE152] - 27.05.2010 - 22:32:58 ---A- .
(.Synaptics Incorporated - Synaptics Touchpad Driver.) -C:\Windows\system32\drivers\SynTP.sys [245936]
O58 - SDL:[MD5.11D34FC869F5BDA29949FE3858380894] - 11.11.2011 - 23:04:26 ---A- . (.The
OpenVPN Project - TAP-Win32 Virtual Network Driver.) -C:\Windows\system32\drivers\tap0901.sys [26112]
O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14.07.2009 - 02:19:10 ---A- . (.VIA
Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys
[16976]
O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 10.06.2009 - 02:19:11 ---A- . (.VIA
Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -C:\Windows\system32\drivers\vsmraid.sys [141904]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13.07.2009 - 22:40:41 ---A- . (...) -C:\Windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13.07.2009 - 22:40:44 ---A- . (...) -C:\Windows\system32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13.07.2009 - 22:40:40 ---A- . (...) -C:\Windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13.07.2009 - 22:40:43 ---A- . (...) -C:\Windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13.07.2009 - 22:40:43 ---A- . (...) -C:\Windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13.07.2009 - 22:40:23 ---A- . (...) -C:\Windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13.07.2009 - 22:40:31 ---A- . (...) -C:\Windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13.07.2009 - 22:40:35 ---A- . (...) -C:\Windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13.07.2009 - 22:40:39 ---A- . (...) -C:\Windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13.07.2009 - 22:40:27 ---A- . (...) -C:\Windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13.07.2009 - 22:40:11 ---A- . (...) -C:\Windows\system32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13.07.2009 - 22:40:15 ---A- . (...) -C:\Windows\system32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13.07.2009 - 22:40:17 ---A- . (...) -C:\Windows\system32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13.07.2009 - 22:40:19 ---A- . (...) -C:\Windows\system32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13.07.2009 - 22:40:13 ---A- . (...) -C:\Windows\system32\NTIO804.SYS [34672]
~ Scan Drivers in 00mn 06s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM] -- {45A66726-69BC-466BA7A4-12FCBA4883D7}
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\adp94xx.sys - No object(No
service) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\adpahci.sys - No object(No
service) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\adpu320.sys - No object(No
service) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) - LEGACY_ADPU320
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\djsvs.sys - No object(No
service) .(.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) - LEGACY_AIC78XX
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\aliide.sys - No object(No
service) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE
O64 - Services: CurCS - 11.03.2011 - C:\Windows\system32\drivers\amdsata.sys - No object(No
service) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\amdsbs.sys - No object(No
service) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) LEGACY_AMDSBS
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\arc.sys - No object(No
service) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\arcsas.sys - No object(No
service) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\cmdide.sys - No object(No
service) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\elxstor.sys - No object(No
service) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\HpSAMD.sys - No object(No
service) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) LEGACY_HPSAMD
O64 - Services: CurCS - 11.03.2011 - C:\Windows\system32\drivers\iaStorV.sys - No object(No
service) .(.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) - LEGACY_IASTORV
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\iirsp.sys - No object(No
service) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\lsi_fc.sys - No object(No
service) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\lsi_sas.sys - No object(No
service) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\lsi_sas2.sys - No object(No
service) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\lsi_scsi.sys - No object(No
service) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\megasas.sys - No object(No
service) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) LEGACY_MEGASAS
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\MegaSR.sys - No object(No
service) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR
O64 - Services: CurCS - 30.12.1899 - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition
Updates\{7C9C0ADA-61E7-4B20-A08A-2E06216C8D52}\MpKsl31c86709.sys (.not file.) - No
object (No service) .(...) - LEGACY_MPKSL31C86709
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\nfrd960.sys - No object(No
service) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960
O64 - Services: CurCS - 11.03.2011 - C:\Windows\system32\drivers\nvraid.sys - No object(No
service) .(.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) - LEGACY_NVRAID
O64 - Services: CurCS - 11.03.2011 - C:\Windows\system32\drivers\nvstor.sys - No object(No
service) .(.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) LEGACY_NVSTOR
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\ql2300.sys - No object(No
service) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\ql40xx.sys - No object(No
service) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\SiSRaid2.sys - No object(No
service) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) LEGACY_SISRAID2
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\sisraid4.sys - No object(No
service) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\stexstor.sys - No object(No
service) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) LEGACY_STEXSTOR
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\viaide.sys - No object(No
service) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE
O64 - Services: CurCS - 14.07.2009 - C:\Windows\system32\DRIVERS\vsmraid.sys - No object(No
service) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation Éditeur du Registre.) -- C:\Windows\regedit.exe
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command]
(.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command]
(.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\Shell\open\Command] (.Apple Inc. Safari.) -- C:\Program Files\Safari\Safari.exe
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {23301D66-1583-4520-8327-24343B30DC64} - (Yahoo!) -
http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {7FABFB7B-F32E-434F-A69B-2EC0E05D79BA} [DefaultScope]
- (Google) - http://www.google.fr
O69 - SBI: SearchScopes [HKCU] {BD8B8FFE-B586-4F03-9ADC-A8B792DF8DB7} - (Microsoft) http://search.microsoft.com
O69 - SBI: SearchScopes [HKCU] {ED9ECC1A-EEC8-48A8-BFBC-B4D1E4A516A0} - (Wikipedia) http://fr.wikipedia.org
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe
(.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "TCP Query User{F9694A4D-712D-41D7-A61E-AF98204BC116}C:\program
files\ares\ares.exe" | In - Private - P6 - TRUE | .(.Ares Development Group - Ares p2p for windows.)
-- C:\program files\ares\ares.exe
O87 - FAEL: "UDP Query User{09A218CF-03DB-4F8D-BF11-C623BCCD04FC}C:\program
files\ares\ares.exe" | In - Private - P17 - TRUE | .(.Ares Development Group - Ares p2p for
windows.) -- C:\program files\ares\ares.exe
O87 - FAEL: "{6E435D9A-048B-464F-B8BB-3036A30436FF}" | In - Private - P6 - TRUE |
.(.FrostWire Group - FrostWire.) -- C:\Program Files\FrostWire\FrostWire.exe
O87 - FAEL: "{C6CA98FE-1A17-4BA3-94B1-17E429146768}" | In - Private - P17 - TRUE |
.(.FrostWire Group - FrostWire.) -- C:\Program Files\FrostWire\FrostWire.exe
O87 - FAEL: "{7F40F5E7-450C-4C6C-BEC5-BEEEB1AD315D}" | In - Private - P6 - TRUE | .(.Apple
Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{19C3E8D9-02E1-4BE8-9D03-B4972E7C6720}" | In - Private - P17 - TRUE | .(.Apple
Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{290D1A21-C848-4492-92AD-B44F0F8CCE66}" | In - Private - P6 - TRUE | .(.Valve
Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe
O87 - FAEL: "{99FB3032-24BB-438C-85E9-4764410C32E9}" | In - Private - P17 - TRUE | .(.Valve
Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe
~ Scan Firewall in 00mn 03s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 01.02.2011 81920 | (AESTFilters) . (.Andrea Electronics Corporation.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_55e4bd7d7a827098\aests
rv.exe
SR - | Auto 02.02.2011 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program
Files\Bonjour\mDNSResponder.exe
SR - | Auto 01.02.2011 126008 | (HP Health Check Service) . (.Hewlett-Packard Company.) C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
SR - | Auto 01.02.2011 92216 | (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) - C:\Program
Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
SR - | Demand 01.02.2011 707128 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program
Files\Hewlett-Packard\Shared\hpqwmiex.exe
SR - | Auto 01.02.2011 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files\Intel\Intel
Matrix Storage Manager\IAANTMon.exe
SR - | Auto 01.02.2011 196912 | (NitroReaderDriverReadSpool) . (.Nitro PDF Software.) C:\Program Files\Nitro PDF\Reader\NitroPDFReaderDriverService.exe
SR - | Auto 01.02.2011 331512 | (QDLService2kHP) . (.QUALCOMM, Inc..) - C:\Program
Files\QUALCOMM\QDLService2k\QDLService2kHP.exe
SR - | Auto 02.02.2011 84808 | (SMManager) . (.Smith Micro Software, Inc..) - C:\Program
Files\Hewlett-Packard\HP Connection Manager\SMManager.exe
SR - | Auto 01.02.2011 221266 | (STacSV) . (.IDT, Inc..) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_55e4bd7d7a827098\STac
SV.exe
SS - | Demand 11.11.2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program
Files\Common Files\Steam\SteamService.exe
SR - | Auto 14.07.2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft
Corporation.) - C:\Windows\system32\svchost.exe
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by Compaq at 11.11.2011 12:20:42
device: opened successfully
user: MBR read successfully
Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys halmacpi.dll
C:\Windows\system32\DRIVERS\iaStor.sys Intel Corporation Intel Matrix Storage Manager driver
1 ntkrnlpa!IofCallDriver[0x81A8E458] -> \Device\Harddisk0\DR0[0x8516A780]
3 CLASSPNP[0x8858659E] -> ntkrnlpa!IofCallDriver[0x81A8E458] ->
\Device\Ide\IAAStorageDevice-0[0x8471B028]
kernel: MBR read successfully
user & kernel MBR OK
~ Scan MBR in 00mn 32s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Compaq at 11.11.2011 12:20:44
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 34s
End of the scan (1201 lines in 05mn 58s)(0)

Rapport de ZHPDiag v1.28.2155 par Nicolas Coolman, Update du

Transcription

Documents pareils

Windows Product Information

Rapport de ZHPDiag v1.28.1367 par Nicolas Coolman

Web Browser - Forums CNET France

The Final 08092016 List of participant for IFTM Top Resa 2016.xlsx

Rapport de ZHPDiag v1.31.095 par Nicolas Coolman, Update du 24