désinstaller ask toolbar

michel13 · le 24 Fév 2011 16:51

Bonjour,
je voulais lire une pièce jointe en "odt" et je cherchaus un logiciel le permettant que je n'ai pas trouvé.
Par contre Ask toolbar s'est installé tout seul sur "Firefox".J'ai voulu le désinstaller dans "ajout et suppression de programmes".bien que désinstallé Ask est toujours là.
J'ai désinstallé et réinstallé Firefox et le résultat n'est pas meilleur.
la barre d'adresse de Firefox a disparue, il ne reste que ASK....ASK
Je n'ai plus accès au menu"outils" de Firefox et ne peux intervenir pour changer la page d'accueil.
Je travaille également avec IE et avec Google Chrome et Ask ne s'est pas invité sur ces navigateurs.
Que faire?
Merci d'avance

Mon Ordinateur
Système d'exploitation Microsoft Windows XP Professional
Service Pack du système Service Pack 3
DirectX 4.09.00.0904 (DirectX 9.0c)

Carte mère
Type de processeur Unknown, 2400 MHz (4 x 600)
Nom de la carte mère Inconnu
Chipset de la carte mère Inconnu
Mémoire système 2016 Mo
Type de BIOS AMI (01/14/09)
Port de communication Port de communication (COM1)

Moniteur
Carte vidéo Intel(R) G41 Express Chipset (256 Mo)
Carte vidéo Intel(R) G41 Express Chipset (256 Mo)
Moniteur Écran Plug-and-Play [NoDB] (H9XQ600285)
Moniteur Écran Plug-and-Play [NoDB] (H9XQ600285)
Moniteur Écran Plug-and-Play [NoDB] (H9XQ600285)

Multimédia
Carte audio Intel 82801GB ICH7 - High Definition Audio Controller [A-1]

Stockage
Contrôleur IDE Intel(R) 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF
Contrôleur IDE Intel(R) 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C0
Lecteur de disquettes Lecteur de disquettes
Disque dur Hitachi HDP725050GLA360 (465 Go, IDE)
Disque dur Generic USB CF Reader USB Device
Disque dur Generic USB SD Reader USB Device
Disque dur Generic USB MS Reader USB Device
Disque dur Generic USB SM Reader USB Device
Lecteur optique HL-DT-ST DVD-RAM GSA-H55N
État des disques durs SMART OK

Partitions
C: (NTFS) 115584 Mo (87249 Mo libre)
D: (NTFS) 361352 Mo (326011 Mo libre)
Taille totale 465.8 Go (403.6 Go libre)

Entrée
Clavier Clavier standard 101/102 touches ou clavier Microsoft Natural Keyboard PS/2
Souris Souris Microsoft PS/2

Réseau
Carte réseau Carte réseau Fast Ethernet PCI Realtek RTL8139 Family (192.168.1.77)

Périphériques
Imprimante hp deskjet 845c
Imprimante Microsoft XPS Document Writer
Imprimante PDFCreator
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB2 Intel 82801GB ICH7 - Enhanced USB2 Controller [A-1]
Périphérique USB Périphérique de stockage de masse USB
Périphérique USB Prise en charge d'impression USB

Merci à tous
Michel13

reg35 · le 24 Fév 2011 17:29

salut essayes un coup de netoyage avec ccleaner...

michel13 · le 24 Fév 2011 17:50

J'ai essayé déja CCleaner et ça n'a pas marché, ce serait trop simple
merci tout de même

CaSa · le 24 Fév 2011 20:06

michel13 a écrit:je voulais lire une pièce jointe en "odt" et je cherchaus un logiciel le permettant que je n'ai pas trouvé.

ODT = Openoffice Document Text
Tu le lis avec OpenOffice donc... => http://www.pc-infopratique.com/telechar ... ffice.html

bernard53 · le 24 Fév 2011 20:08

Bonsoir a tous

Michel13 fait ceci pour ton ASK

Télécharges << ZHPDiag>> (de Nicolas Coolman)

dezzipes le fichier sur ton bureau...
Fais un clic-droit sur l'icône ZHPDiag .exe et choisis "exécuter en tant qu'administrateur".

L'installation va créer raccourcis (ZHPDiag et ZHPFix et MBRchek) sur ton bureau

A la fin de l'installation ZHPDiag va se lancer....

Cliques sur l'icône "Options" (image du tournevis) et coches toutes les options.
Cliques sur "Lancer le diagnostique" (image de la loupe) et patiente...

A la fin du scan cliques sur l'icône "sauvegarder le fichier sous" (image de la disquette bleu) et enregistre le rapport sur ton bureau.

Mets le rapport ici car il prend bien de la place.
http://www.cijoint.fr/index.php

Skynet · le 25 Fév 2011 10:08

Bernard bonjour et merci,
voici le rapport ZHP Diag
J'ai essayé de le déposer sur ci-joint.fr mais ne suis pas sûr de mon coup

Code: Tout sélectionner: Rapport de ZHPDiag v1.27.1622 par Nicolas Coolman, Update du 23/02/2011 Run by Administrateur at 25/02/2011 09:58:21 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html Contact : nicolascoolman@yahoo.fr ---\\ Web Browser MSIE: Internet Explorer v7.0.5730.11 MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut) GCIE: Google Chrome v9.0.597.98 ---\\ System Information Windows XP Professional Service Pack 3 (Build 2600) Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2013 MB (74% free) System Restore: Activé (Enable) System drive C: has 85 GB (75%) free of 113 GB ---\\ Logged in mode Computer Name: TATA User Name: Administrateur All Users Names: SUPPORT_388945a0, HelpAssistant, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Documents and Settings\Administrateur\Application Data %LocalAppData%=C:\Documents and Settings\Administrateur\Local Settings\Application Data %StartMenu%=C:\Documents and Settings\Administrateur\Menu Démarrer ---\\ DOS/Devices A:\ Floppy drive, Flash card reader, USB Key (Not Inserted) C:\ Hard drive, Flash drive, Thumb drive (Free 85 Go of 113 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 318 Go of 353 Go) E:\ CD-ROM drive (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) J:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: Modified [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: Modified [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 13:00:00.) -- C:\Windows\Explorer.exe [1037824] [MD5.FB22AE2861836D16FCBAECB1B715752E] - (.Microsoft Corporation - Internet Extensions for Win32.) (.21/12/2010 00:06:56.) -- C:\Windows\System32\wininet.dll [832512] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 13:00:00.) -- C:\Windows\System32\Winlogon.exe [512000] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 10:40:32.) -- C:\Windows\System32\drivers\atapi.sys [96512] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.14/04/2008 13:00:00.) -- C:\Windows\System32\drivers\ntfs.sys [574976] ---\\ Processus lancés [MD5.25FB74EABCE5EC7836BA3CFB3C58449A] - (.AVAST Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384] [MD5.3C4DB05F9F3CA0D1526A808F3AB04035] - (.SEIKO EPSON CORPORATION - EEventManager MFC Application.) -- C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe [102400] [MD5.D2AEADFD998706B4216315B2BD3FA79E] - (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [81920] [MD5.7B878518590E826F1F3A5B1D61D405F8] - (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [3396624] [MD5.0B04DA04312A22012C0B3B7285802E8C] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe [129536] [MD5.18422B2F4811317B526513A8B5E9C73C] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [163328] [MD5.B7C1FBA0C88D24324582253A0CC0807F] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [138752] [MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [248552] [MD5.B404AE1CB4BD09E722A90165A357A11A] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE [19573352] [MD5.B8F85EACBBBF7A36A542ED35105B10AF] - (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe [526336] [MD5.29C12F26C6075AB69C473E1B081F4651] - (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.2.183.39\GoogleCrashHandler.exe [134808] [MD5.B1A1E68BABFEECE16FF4C320AD6054C5] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe [451872] [MD5.16DCC8ACC504A6662BB04A0ED9454A4D] - (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe [959808] [MD5.29C12F26C6075AB69C473E1B081F4651] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\1.2.183.39\GoogleCrashHandler.exe [134808] [MD5.CF46A776D2E44F180AF2773A9844D260] - (.Spigot, Inc. - Application Updater.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe [387072] [MD5.126A16F569122AE00AD3D12EF831D651] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [MD5.98D884ADC0B8C0FEBCC9D7BEE6D86F90] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [79136] [MD5.091D358EFC9D22901BD879EF37F0DAC4] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [634648] [MD5.C799301BE48A4C969ED6202A4278DD40] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [631808] ---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1) P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin2.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin3.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin4.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin5.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin6.dll P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Opera\Program\Plugins\npqtplugin7.dll ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla FireFox\extensions\pdfforge@mybrowserbar.com M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla FireFox\extensions\wtxpcom@mybrowserbar.com M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\askcom.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\conduit.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\kiwee-toolbar.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo.xml P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - 1.9.0042.0.) -- C:\Program Files\Mozilla Firefox\Plugins\npLegitCheckPlugin.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.2".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@google.com/npPicasa2,version=2.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Picasa2\npPicasa2.dll P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Picasa2\npPicasa3.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.51204.0.) -- C:\Program Files\Microsoft Silverlight\4.0.51204.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.2.183.39\npGoogleOneClick8.dll M0 - MFSP: prefs.js [Administrateur - pxxyyq5v.default] http://search.conduit.com/?ctid=CT2500339&SearchSource=13 M2 - MFEP: prefs.js [Administrateur - pxxyyq5v.default\engine@conduit.com] [] Conduit Engine v3.2.5.2 (.Conduit Ltd..) M2 - MFEP: prefs.js [Administrateur - pxxyyq5v.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.) M2 - MFEP: prefs.js [Administrateur - pxxyyq5v.default\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}] [] Avanquest FR Community Toolbar v3.2.5.2 (.Conduit Ltd..) ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) G1 - GCS: Preference [User Data\Default] None ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gmail.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com R0 - HKUS\S-1-5-21-746137067-179605362-1801674531-500\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gmail.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com R1 - HKUS\S-1-5-21-746137067-179605362-1801674531-500\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = google R1 - HKUS\S-1-5-21-746137067-179605362-1801674531-500\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com R1 - HKUS\S-1-5-21-746137067-179605362-1801674531-500\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (7.00.6000.17095 (vista_gdr.101217-1830)) -- C:\WINDOWS\system32\ieframe.dll R3 - URLSearchHook: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) (4, 3, 0, 2) -- C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll R3 - URLSearchHook: Avanquest FR Toolbar - {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.6.0) -- C:\Program Files\Avanquest_FR\tbAvan.dll R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngine.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Avanquest FR Toolbar - {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Avanquest_FR\tbAvan.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) -- C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} . (.Google Inc. - These are the Gears that power the tubes! :.) -- C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) -- C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll O3 - Toolbar: Avanquest FR Toolbar - {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Avanquest_FR\tbAvan.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngine.dll ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [HPDJ Taskbar Utility] . (.HP - Pas de description.) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe O4 - HKLM\..\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager MFC Application.) -- C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe (.not file.) O4 - HKLM\..\Run: [ISUSScheduler] . (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\RTHDCPL.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe O4 - HKLM\..\Run: [KernelFaultCheck] Clé orpheline O4 - HKLM\..\Run: [SearchSettings] . (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe O4 - HKLM\..\Run: [TaskTray] Clé orpheline O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-21-746137067-179605362-1801674531-500\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe O4 - HKUS\S-1-5-21-746137067-179605362-1801674531-500\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe O4 - HKUS\S-1-5-21-746137067-179605362-1801674531-500\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-746137067-179605362-1801674531-500\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\Office\OSA9.EXE ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Access.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\accicons.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Excel.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\xlicons.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft FrontPage.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\misc.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Outlook.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\outicon.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft PowerPoint.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\pptico.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Publisher.lnk . (...) -- C:\WINDOWS\Installer\{0004040C-78E1-11D2-B60F-006097C998E7}\pubs.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Microsoft Word.lnk . (...) -- C:\WINDOWS\Installer\{0000040C-78E1-11D2-B60F-006097C998E7}\wordicon.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Safari.lnk . (...) -- C:\WINDOWS\Installer\{6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}\SafariIco.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\WINDOWS\system32\GPhotos.scr ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra 'Tools' menuitem: Paramètres de Google &Gears - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} . (.not file.) - (.not file.) O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: CabBuilder (CabBuilder) - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab O16 - DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} (UploadListView Class) - http://picasaweb.google.fr/s/v/62.12/uploader2.cab O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} () - http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.3.1.0.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{46481C25-277C-4B6F-BC72-FB27A9BACD77}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{46481C25-277C-4B6F-BC72-FB27A9BACD77}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{46481C25-277C-4B6F-BC72-FB27A9BACD77}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\Windows\System32\WgaLogon.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (Application Updater) . (.Spigot, Inc. - Application Updater.) - C:\Program Files\Application Updater\ApplicationUpdater.exe O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: (NMIndexingService) - Clé orpheline ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\File Helper.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-746137067-179605362-1801674531-500Core.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-746137067-179605362-1801674531-500UA.job [MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [MD5.00000000000000000000000000000000] [APT] [File Helper] (.Pas de propriétaire.) -- C:\Program Files\File Helper\File Helper.lnk --scan --stack=from-scheduler (.not file.) [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskUserS-1-5-21-746137067-179605362-1801674531-500Core] (.Google Inc..) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskUserS-1-5-21-746137067-179605362-1801674531-500UA] (.Google Inc..) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 7-Zip 4.65 - (.Pas de propriétaire.) [HKLM] -- 7-Zip O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} O42 - Logiciel: AW IP Locator - (.Atelier Web.) [HKLM] -- Atelier Web IP Locator 2.0_is1 O42 - Logiciel: Adobe Acrobat 4.0 - (.Pas de propriétaire.) [HKLM] -- Adobe Acrobat 4.0 O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader 9.4.2 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001} O42 - Logiciel: Amazon MP3 Downloader 1.0.9 - (.Pas de propriétaire.) [HKLM] -- Amazon MP3 Downloader O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033} O42 - Logiciel: ArcSoft PhotoImpression 5 - (.ArcSoft.) [HKLM] -- {D433ABC3-0CD8-4BB0-B6A9-84501B4B47B7} O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: Avanquest FR Toolbar - (.Avanquest FR.) [HKLM] -- Avanquest_FR Toolbar O42 - Logiciel: Canon ScanGear Toolbox CS 2.2 - (.Pas de propriétaire.) [HKLM] -- Canon ScanGear Toolbox CS 2.2 O42 - Logiciel: Clé Internet de prêt - (.Pas de propriétaire.) [HKLM] -- {93D34EE3-99B3-4DB1-8B0A-0A657466F90D} O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM] -- conduitEngine O42 - Logiciel: Driver Genius Professional Edition - (.Driver-Soft Inc..) [HKLM] -- Driver Genius Professional Edition_is1 O42 - Logiciel: EPSON Attach To Email - (.SEIKO EPSON.) [HKLM] -- InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5} O42 - Logiciel: EPSON Copy Utility 3 - (.Pas de propriétaire.) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857} O42 - Logiciel: EPSON Event Manager - (.Pas de propriétaire.) [HKLM] -- {48F22622-1CC2-4A83-9C1E-644DD96F832D} O42 - Logiciel: EPSON File Manager - (.Pas de propriétaire.) [HKLM] -- {E86BC406-944E-41F6-ADE6-2C136734C96B} O42 - Logiciel: EPSON Image Clip Palette - (.Pas de propriétaire.) [HKLM] -- {314F6D08-A8B7-11D8-8446-0050BA1D384D} O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner O42 - Logiciel: EPSON Scan Assistant - (.Pas de propriétaire.) [HKLM] -- {2A88F1BF-7041-4E42-84B1-6B4ACB83AC64} O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1} O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome O42 - Logiciel: Google Gears - (.Google.) [HKLM] -- {2FA41EBB-3F5A-35C3-85D6-51EC72A11FBD} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 O42 - Logiciel: Hotfix for Windows XP (KB915865) - (.Microsoft Corporation.) [HKLM] -- KB915865 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31} O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Internet Explorer (Enable DEP) - (.Pas de propriétaire.) [HKLM] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb O42 - Logiciel: JPEG Compression 1.0 - (.AZASOFT.) [HKLM] -- JPEG Compression_is1 O42 - Logiciel: Java(TM) 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216016FF} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5} O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping O42 - Logiciel: Microsoft Office 2000 SR-1 Disque 2 - (.Microsoft Corporation.) [HKLM] -- {0004040C-78E1-11D2-B60F-006097C998E7} O42 - Logiciel: Microsoft Office 2000 SR-1 Premium - (.Microsoft Corporation.) [HKLM] -- {0000040C-78E1-11D2-B60F-006097C998E7} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {4CBA3D4C-8F51-4D60-B27E-F6B641C571E7} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5} O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB} O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Windows Media Video 9 VCM - (.Pas de propriétaire.) [HKLM] -- WMV9_VCM O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE} O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13) O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: Perf3490P_3590P Guide util. - (.Pas de propriétaire.) [HKLM] -- Perf3490P_3590P Guide util. O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3 O42 - Logiciel: Presto! BizCard 4.1 Fre - (.Pas de propriétaire.) [HKLM] -- Uninstall Presto! BizCard 4.1 Fre O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: SAMSUNG CDMA Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG CDMA Modem O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0 O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit O42 - Logiciel: Safari - (.Apple Inc..) [HKLM] -- {6B9B0C6F-E5FA-4633-A640-AB98A272ECCA} O42 - Logiciel: Samsung PC Studio 3 USB Driver Installer - (.Samsung Electronics Co., Ltd..) [HKLM] -- {EBA29752-DDD2-4B62-B2E3-9841F92A3E3A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: System Requirements Lab for Intel - (.Husdawg, LLC.) [HKLM] -- {ADD72094-D289-4714-A62E-70574478A2BC} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Visual C++ Runtime for Dragon NaturallySpeaking - (.Nuance Communications Inc..) [HKLM] -- {4A5A427F-BA39-4BF0-9A47-9999FBE60C9F} O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011 O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7 O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {ED00D08A-3C5F-488D-93A0-A04F21F23956} O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {D5D81435-B8DE-4CAF-867F-7998F2B92CFC} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1} O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {F7D27C70-90F5-49B9-B188-0A133C0CE353} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA} O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 O42 - Logiciel: Windows PowerShell(TM) 1.0 - (.Microsoft Corporation.) [HKLM] -- KB926139-v2 O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM] -- avast5 O42 - Logiciel: hp deskjet 845c series (Supprimer uniquement) - (.Pas de propriétaire.) [HKLM] -- hp deskjet 845c series O42 - Logiciel: hp deskjet 845c series - (.Pas de propriétaire.) [HKLM] -- hp deskjet 845c series_Driver O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B} O42 - Logiciel: pdfforge Toolbar v4.3 - (.Spigot, Inc..) [HKLM] -- {A0B139A7-E8D5-49E8-A7BF-12421E652208} ---\\ HKCU & HKLM Software Keys [HKCU\Software\7-Zip] [HKCU\Software\ABBYY] [HKCU\Software\AGI] [HKCU\Software\ALWIL Software] [HKCU\Software\AVS4YOU] [HKCU\Software\Adobe] [HKCU\Software\Ahead] [HKCU\Software\AppDataLow\Software\Search Settings] [HKCU\Software\AppDataLow\Software\pdfforge] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.]

Code: Tout sélectionner: [HKCU\Software\Apple Inc.] [HKCU\Software\ArcSoft] [HKCU\Software\Atelier Web] [HKCU\Software\Avanquest_FR] [HKCU\Software\BITSoft] [HKCU\Software\Canon] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Conduit] [HKCU\Software\DevNet] [HKCU\Software\Developer Express] [HKCU\Software\EPSON] [HKCU\Software\FRA_Settings] [HKCU\Software\File Helper] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\InstallShield] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Lavalys] [HKCU\Software\LightScribe] [HKCU\Software\Macromedia] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Nero] [HKCU\Software\Netscape] [HKCU\Software\Neuf] [HKCU\Software\Novell] [HKCU\Software\ODBC] [HKCU\Software\Opera Software] [HKCU\Software\PDFCreator] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\SEIKO EPSON] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Softonic] [HKCU\Software\System Requirements Lab] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\conduitEngine] [HKCU\Software\rejetto] [HKLM\Software\1307] [HKLM\Software\4da] [HKLM\Software\781] [HKLM\Software\ABBYY] [HKLM\Software\AGI] [HKLM\Software\ALWIL Software] [HKLM\Software\AVS4YOU] [HKLM\Software\Adobe] [HKLM\Software\Ahead] [HKLM\Software\Amazon] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Application Updater] [HKLM\Software\ArcSoft] [HKLM\Software\Audible] [HKLM\Software\Avanquest_FR] [HKLM\Software\C07ft5Y] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Clé Internet de prêt] [HKLM\Software\Conduit] [HKLM\Software\Corel] [HKLM\Software\Creative Tech] [HKLM\Software\DevNet] [HKLM\Software\DivXNetworks] [HKLM\Software\Driver-Soft] [HKLM\Software\EPSON] [HKLM\Software\File Helper] [HKLM\Software\Gemplus] [HKLM\Software\Google] [HKLM\Software\Hewlett-Packard] [HKLM\Software\IObit] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Licenses] [HKLM\Software\LightScribe] [HKLM\Software\MCCI] [HKLM\Software\MSI] [HKLM\Software\Macromedia] [HKLM\Software\MimarSinan] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\Nero] [HKLM\Software\Neuf] [HKLM\Software\NewSoft] [HKLM\Software\ODBC] [HKLM\Software\PDFCreator] [HKLM\Software\Policies] [HKLM\Software\Program Groups] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Samsung Electronics Co., Ltd.] [HKLM\Software\Schlumberger] [HKLM\Software\Search Settings] [HKLM\Software\Secure] [HKLM\Software\Uniblue] [HKLM\Software\Voice] [HKLM\Software\WinRAR] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\ffffffff] [HKLM\Software\mozilla.org] [HKLM\Software\pdfforge] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 09/08/2009 - 22:01:20 - [3094515] ----D- C:\Program Files\7-Zip O43 - CFD: 17/02/2010 - 18:15:38 - [124428515] ----D- C:\Program Files\ABBYY FineReader 6.0 Sprint O43 - CFD: 29/09/2010 - 15:28:18 - [169852147] ----D- C:\Program Files\Adobe O43 - CFD: 07/05/2010 - 16:23:32 - [144475951] ----D- C:\Program Files\Alwil Software O43 - CFD: 16/02/2011 - 09:58:06 - [2662080] ----D- C:\Program Files\Amazon O43 - CFD: 08/11/2009 - 10:21:50 - [2221118] ----D- C:\Program Files\Apple Software Update O43 - CFD: 20/02/2011 - 10:45:18 - [387157] ----D- C:\Program Files\Application Updater O43 - CFD: 17/02/2010 - 18:13:40 - [170333759] ----D- C:\Program Files\ArcSoft O43 - CFD: 05/03/2010 - 15:21:22 - [4374403] ----D- C:\Program Files\Atelier Web O43 - CFD: 24/02/2011 - 17:16:20 - [4132263] ----D- C:\Program Files\Avanquest_FR O43 - CFD: 07/12/2010 - 17:26:10 - [3782216] ----D- C:\Program Files\AVS4YOU O43 - CFD: 02/08/2009 - 16:28:16 - [1808898] ----D- C:\Program Files\Canon O43 - CFD: 02/08/2009 - 15:43:28 - [1417885] ----D- C:\Program Files\CCleaner O43 - CFD: 09/04/2010 - 16:01:48 - [15193997] ----D- C:\Program Files\Clé Internet de prêt O43 - CFD: 01/08/2009 - 22:18:52 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 24/02/2011 - 17:15:24 - [532064] ----D- C:\Program Files\Conduit O43 - CFD: 24/02/2011 - 17:16:22 - [3984545] ----D- C:\Program Files\ConduitEngine O43 - CFD: 16/09/2010 - 21:53:02 - [6422224] ----D- C:\Program Files\Driver Whiz O43 - CFD: 24/02/2011 - 17:15:34 - [19511957] ----D- C:\Program Files\Driver-Soft O43 - CFD: 17/02/2010 - 18:16:42 - [78928074] ----D- C:\Program Files\epson O43 - CFD: 17/02/2010 - 18:46:42 - [24620688] ----D- C:\Program Files\epson324500eu O43 - CFD: 20/02/2011 - 10:45:18 - [317770365] ----D- C:\Program Files\Fichiers communs O43 - CFD: 05/11/2010 - 22:34:26 - [12422561] ----D- C:\Program Files\Google O43 - CFD: 02/08/2009 - 15:05:18 - [27100713] ----D- C:\Program Files\Hewlett-Packard O43 - CFD: 02/08/2009 - 15:18:18 - [1230276] ----D- C:\Program Files\hp deskjet 845c series O43 - CFD: 07/09/2010 - 10:24:34 - [23813624] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 06/08/2009 - 14:34:24 - [3803714] ----D- C:\Program Files\Intel O43 - CFD: 10/02/2011 - 08:47:12 - [3412369] ----D- C:\Program Files\Internet Explorer O43 - CFD: 16/09/2010 - 20:52:18 - [115] ----D- C:\Program Files\IObit O43 - CFD: 23/09/2010 - 07:35:22 - [81791928] ----D- C:\Program Files\Java O43 - CFD: 23/02/2011 - 12:01:04 - [1091380] ----D- C:\Program Files\JPEG Compression O43 - CFD: 02/08/2009 - 15:47:54 - [6813508] ----D- C:\Program Files\Lavalys O43 - CFD: 02/08/2009 - 15:46:24 - [882302231] ----D- C:\Program Files\LeMondediplomatique O43 - CFD: 02/08/2009 - 13:09:10 - [2174045] ----D- C:\Program Files\Messenger O43 - CFD: 17/03/2010 - 17:40:02 - [1041880] ----D- C:\Program Files\Microsoft O43 - CFD: 01/08/2009 - 22:21:52 - [205986] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 08/10/2009 - 11:01:58 - [259205245] ----D- C:\Program Files\Microsoft Office O43 - CFD: 18/12/2010 - 10:48:42 - [38361211] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 17/03/2010 - 17:41:06 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 17/03/2010 - 17:42:00 - [2188837] ----D- C:\Program Files\Microsoft Sync Framework O43 - CFD: 02/08/2009 - 00:11:22 - [10400992] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 11/08/2010 - 21:33:26 - [10374874] ----D- C:\Program Files\Movie Maker O43 - CFD: 21/02/2011 - 19:58:02 - [33092535] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 02/11/2009 - 13:04:54 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 08/10/2009 - 11:01:50 - [29794014] ----D- C:\Program Files\MSECache O43 - CFD: 17/03/2010 - 17:03:00 - [21471559] ----D- C:\Program Files\MSN O43 - CFD: 01/08/2009 - 22:18:32 - [8745735] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 03/08/2009 - 14:15:12 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 01/08/2009 - 22:20:16 - [3285523] ----D- C:\Program Files\NetMeeting O43 - CFD: 01/08/2009 - 23:18:50 - [14873034] ----D- C:\Program Files\Neuf O43 - CFD: 17/02/2010 - 18:16:14 - [33877572] ----D- C:\Program Files\NewSoft O43 - CFD: 01/08/2009 - 22:18:42 - [1804] ----D- C:\Program Files\Online Services O43 - CFD: 21/07/2010 - 09:11:22 - [1122625] ----D- C:\Program Files\Opera O43 - CFD: 15/12/2010 - 10:05:30 - [4379321] ----D- C:\Program Files\Outlook Express O43 - CFD: 27/01/2011 - 16:25:12 - [26844886] ----D- C:\Program Files\PDFCreator O43 - CFD: 20/02/2011 - 10:45:18 - [1011733] ----D- C:\Program Files\pdfforge Toolbar O43 - CFD: 20/12/2010 - 22:10:04 - [99175997] ----D- C:\Program Files\Picasa2 O43 - CFD: 20/12/2010 - 22:17:16 - [76322555] ----D- C:\Program Files\QuickTime O43 - CFD: 05/08/2009 - 23:07:46 - [71386735] ----D- C:\Program Files\Realtek O43 - CFD: 02/11/2009 - 13:04:50 - [36400897] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 24/11/2010 - 13:35:48 - [42293335] ----D- C:\Program Files\Safari O43 - CFD: 07/09/2010 - 10:24:34 - [1936012] ----D- C:\Program Files\Samsung O43 - CFD: 01/08/2009 - 22:20:48 - [1025] ----D- C:\Program Files\Services en ligne O43 - CFD: 02/08/2009 - 00:14:14 - [138333] ----D- C:\Program Files\Snapshot Viewer O43 - CFD: 29/04/2010 - 09:27:08 - [66479474] ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD: 20/09/2010 - 21:50:28 - [886408] ----D- C:\Program Files\SystemRequirementsLab O43 - CFD: 01/08/2009 - 22:24:30 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 17/03/2010 - 17:42:28 - [142067946] ----D- C:\Program Files\Windows Live O43 - CFD: 17/03/2010 - 17:39:40 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 08/06/2010 - 23:11:52 - [3581070] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 08/06/2010 - 23:11:50 - [8325897] ----D- C:\Program Files\Windows Media Player O43 - CFD: 01/08/2009 - 22:18:24 - [3942655] ----D- C:\Program Files\Windows NT O43 - CFD: 01/08/2009 - 22:20:50 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 16/02/2011 - 09:42:16 - [3727772] ----D- C:\Program Files\WinRAR O43 - CFD: 30/11/2010 - 15:12:52 - [102430] ----D- C:\Program Files\WMV9_VCM O43 - CFD: 01/08/2009 - 22:21:52 - [0] ----D- C:\Program Files\xerox O43 - CFD: 25/02/2011 - 09:58:28 - [3455025] ----D- C:\Program Files\ZHPDiag O43 - CFD: 07/10/2010 - 15:16:16 - [6881437] ----D- C:\Program Files\Fichiers Communs\Adobe O43 - CFD: 08/11/2009 - 10:21:56 - [54773305] ----D- C:\Program Files\Fichiers Communs\Apple O43 - CFD: 07/12/2010 - 17:26:12 - [9388391] ----D- C:\Program Files\Fichiers Communs\AVSMedia O43 - CFD: 02/08/2009 - 00:11:20 - [86016] ----D- C:\Program Files\Fichiers Communs\Designer O43 - CFD: 17/02/2010 - 18:18:14 - [12020576] ----D- C:\Program Files\Fichiers Communs\InstallShield O43 - CFD: 23/09/2010 - 07:35:38 - [1243079] ----D- C:\Program Files\Fichiers Communs\Java O43 - CFD: 02/08/2009 - 11:16:34 - [19194540] ----D- C:\Program Files\Fichiers Communs\LightScribe O43 - CFD: 07/05/2010 - 16:23:44 - [94841035] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared O43 - CFD: 01/08/2009 - 22:20:12 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap O43 - CFD: 02/08/2009 - 00:11:06 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC O43 - CFD: 01/08/2009 - 22:20:16 - [8106] ----D- C:\Program Files\Fichiers Communs\Services O43 - CFD: 02/08/2009 - 00:11:04 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines O43 - CFD: 20/02/2011 - 10:45:18 - [1126358] ----D- C:\Program Files\Fichiers Communs\Spigot O43 - CFD: 02/08/2009 - 00:14:12 - [17217242] ----D- C:\Program Files\Fichiers Communs\System O43 - CFD: 17/03/2010 - 17:24:04 - [96918891] ----D- C:\Program Files\Fichiers Communs\Windows Live O43 - CFD: 09/12/2009 - 15:34:46 - [1643141] ----D- C:\Documents and Settings\Administrateur\Application Data\Adobe O43 - CFD: 08/11/2009 - 12:20:16 - [62450] ----D- C:\Documents and Settings\Administrateur\Application Data\Ahead O43 - CFD: 16/02/2011 - 10:02:34 - [10090] ----D- C:\Documents and Settings\Administrateur\Application Data\Amazon O43 - CFD: 24/11/2010 - 13:36:22 - [90279] ----D- C:\Documents and Settings\Administrateur\Application Data\Apple Computer O43 - CFD: 17/02/2010 - 18:55:58 - [376115] ----D- C:\Documents and Settings\Administrateur\Application Data\ArcSoft O43 - CFD: 30/11/2010 - 18:46:54 - [49] ----D- C:\Documents and Settings\Administrateur\Application Data\AVS4YOU O43 - CFD: 20/07/2010 - 10:30:06 - [263258] ----D- C:\Documents and Settings\Administrateur\Application Data\ElevatedDiagnostics O43 - CFD: 17/02/2010 - 18:53:56 - [1540] ----D- C:\Documents and Settings\Administrateur\Application Data\EPSON O43 - CFD: 28/11/2009 - 22:57:12 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Help O43 - CFD: 01/08/2009 - 22:24:30 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Identities O43 - CFD: 16/09/2010 - 20:52:18 - [11570] ----D- C:\Documents and Settings\Administrateur\Application Data\IObit O43 - CFD: 02/08/2009 - 04:27:50 - [2875855] ----D- C:\Documents and Settings\Administrateur\Application Data\Macromedia O43 - CFD: 18/03/2010 - 15:53:22 - [7135867] -S--D- C:\Documents and Settings\Administrateur\Application Data\Microsoft O43 - CFD: 02/08/2009 - 00:09:24 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Microsoft Web Folders O43 - CFD: 19/11/2009 - 19:50:58 - [8570701] ----D- C:\Documents and Settings\Administrateur\Application Data\Mozilla O43 - CFD: 17/03/2010 - 17:03:46 - [854764] ----D- C:\Documents and Settings\Administrateur\Application Data\MSNInstaller O43 - CFD: 16/09/2010 - 21:00:14 - [47775] ----D- C:\Documents and Settings\Administrateur\Application Data\Nero O43 - CFD: 01/03/2010 - 14:55:26 - [1034637] ----D- C:\Documents and Settings\Administrateur\Application Data\Nuance O43 - CFD: 30/11/2009 - 19:13:44 - [253682] ----D- C:\Documents and Settings\Administrateur\Application Data\Opera O43 - CFD: 24/02/2011 - 17:54:00 - [138900] ----D- C:\Documents and Settings\Administrateur\Application Data\PCFix O43 - CFD: 15/05/2010 - 20:09:54 - [4596] ----D- C:\Documents and Settings\Administrateur\Application Data\pdfforge O43 - CFD: 20/02/2011 - 10:45:22 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Search Settings O43 - CFD: 13/10/2009 - 07:58:20 - [31849092] ----D- C:\Documents and Settings\Administrateur\Application Data\Sun O43 - CFD: 13/01/2011 - 13:56:44 - [19451499] ----D- C:\Documents and Settings\Administrateur\Application Data\U3 O43 - CFD: 23/02/2011 - 10:28:28 - [289643] ----D- C:\Documents and Settings\Administrateur\Application Data\Uniblue O43 - CFD: 16/02/2011 - 09:42:28 - [12] ----D- C:\Documents and Settings\Administrateur\Application Data\WinRAR O43 - CFD: 07/10/2010 - 15:15:56 - [308896] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Adobe O43 - CFD: 02/08/2009 - 11:18:40 - [2839208] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Ahead O43 - CFD: 08/11/2009 - 10:21:52 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Apple O43 - CFD: 16/12/2009 - 15:25:44 - [85937074] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Apple Computer O43 - CFD: 24/02/2011 - 17:26:30 - [785900] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Avanquest_FR O43 - CFD: 24/02/2011 - 17:15:24 - [4595] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Conduit O43 - CFD: 24/02/2011 - 17:26:24 - [35449] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\ConduitEngine O43 - CFD: 07/11/2010 - 21:00:52 - [686625312] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google O43 - CFD: 28/11/2009 - 22:57:12 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Help O43 - CFD: 02/08/2009 - 11:16:18 - [13714612] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Identities O43 - CFD: 18/03/2010 - 16:00:40 - [1508] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Kiwee Toolbar O43 - CFD: 21/09/2010 - 07:48:06 - [9275683052] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft O43 - CFD: 02/11/2009 - 19:09:18 - [46943400] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla O43 - CFD: 30/11/2009 - 19:13:44 - [22694680] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Opera O43 - CFD: 23/02/2011 - 10:28:08 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\PackageAware O43 - CFD: 16/09/2010 - 21:54:28 - [3014] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\PC_Drivers_Headquarters O43 - CFD: 01/03/2010 - 20:47:46 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Scansoft O43 - CFD: 24/02/2011 - 17:15:14 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Temp ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.BCED1200F915817C00FCFD7F90EE1200] - 25/02/2011 - 09:25:45 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1508242] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 25/02/2011 - 09:23:57 ---A- . (...) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.58E2D691AA8A97DA5E34EA791D930159] - 25/02/2011 - 09:23:57 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [13646] O44 - LFC:[MD5.BCED1200F915817C00FCFD7F90EE1200] - 25/02/2011 - 09:23:53 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.BCED1200F915817C00FCFD7F90EE1200] - 25/02/2011 - 09:23:52 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 25/02/2011 - 09:23:35 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.BCED1200F915817C00FCFD7F90EE1200] - 24/02/2011 - 21:53:35 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32584] O44 - LFC:[MD5.BEED859862DD30EC68C84C61AB7417EB] - 23/02/2011 - 16:03:52 ---A- . (...) -- C:\WINDOWS\setupact.log [120] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 23/02/2011 - 10:38:58 ---A- . (...) -- C:\WINDOWS\setuperr.log [0] O44 - LFC:[MD5.9E27EA8C05DE55895A26B9CA416E7052] - 10/02/2011 - 14:43:25 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [253472] O44 - LFC:[MD5.A495226504DD88CED15BD3B32400B2A9] - 02/02/2011 - 16:06:53 ---A- . (...) -- C:\WINDOWS\SGTBox.INI [32397] O44 - LFC:[MD5.1574DD9D409F2DC45CF82C22B99164A4] - 28/10/2001 - 16:42:30 ---A- . (...) -- C:\WINDOWS\System32\pdfcmnnt.dll [116224] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\sessmgr.exe" [Disabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Documents and Settings\Administrateur\Mes documents\Téléchargements\hfs.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Documents and Settings\Administrateur\Mes documents\Téléchargements\hfs.exe O47 - AAKE:Key Export SP - "C:\Program Files\Opera\opera.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) -- C:\Program Files\Opera\opera.exe (.not file.) O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{2002cbfc-94a8-11df-9b8e-00001c816e02}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\U3ROM\flyhigh.exe (.not file.) O51 - MPSK:{20bea028-c70b-11de-9804-00001c816e02}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\LaunchU3.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.479C9835B91147BE1A92CB76FAD9C6DE] - 13/01/2011 - 09:37:11 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys [29392] O58 - SDL:[MD5.267FC636801EDC5AB28E14036349E3BE] - 18/11/2009 - 06:16:00 ---A- . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\system32\drivers\Ambfilt.sys [1691480] O58 - SDL:[MD5.CBA53C5E29AE0A0CE76F9A2BE3A40D9E] - 13/01/2011 - 09:37:09 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys [17744] O58 - SDL:[MD5.701D741F60983B0319560523294E5D5B] - 13/01/2011 - 09:39:50 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows NT/2000.) -- C:\WINDOWS\system32\drivers\aswmon.sys [94544] O58 - SDL:[MD5.A1C52B822B7B8A5C2162D38F579F97B7] - 13/01/2011 - 09:40:04 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows XP.) -- C:\WINDOWS\system32\drivers\aswmon2.sys [100176] O58 - SDL:[MD5.B6E8C5874377A42756C282FAC2E20836] - 13/01/2011 - 09:37:30 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\WINDOWS\system32\drivers\aswRdr.sys [23632] O58 - SDL:[MD5.B93A553C9B0F14263C8F016A44C3258C] - 13/01/2011 - 09:41:16 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\system32\drivers\aswSP.sys [294608] O58 - SDL:[MD5.1408421505257846EB336FEEEF33352D] - 13/01/2011 - 09:40:16 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\system32\drivers\aswTdi.sys [47440] O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 14/04/2008 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 14/04/2008 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - 13:00:00 ---A- . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384] O58 - SDL:[MD5.7DF53BB1F78DE5DCA8AC842868D34B01] - 20/07/2010 - 13:57:48 ---A- . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\system32\drivers\igxpmp32.sys [2003584] O58 - SDL:[MD5.C7D9F9717916B34C1B00DD4834AF485C] - 18/11/2009 - 06:17:00 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\system32\drivers\Monfilt.sys [1395800] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.07C02C892E8E1A72D6BF35004F0E9C5E] - 19/11/2005 - 02:13:18 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\PCASp50.sys [20096] O58 - SDL:[MD5.6C1618A07B49E3873582B6449E744088] - 19/09/2003 - 15:45:48 ---A- . (.Padus, Inc. - Padus(R) ASPI Shell.) -- C:\WINDOWS\system32\drivers\pfc.sys [21248] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 14/04/2008 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 20/11/2008 - 20:19:06 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys [43872] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.E6E5AF7D6920824B066832D3E1665506] - 14/04/2007 - 09:28:00 R--A- . (.Realtek Semiconductor Corporation - Realtek 10/100/1000 NDIS 5.1 Driver.) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys [94592] O58 - SDL:[MD5.5707CEC38DB61B96079E6A14B4702446] - 03/09/2010 - 15:20:18 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys [6139496] O58 - SDL:[MD5.D507C1400284176573224903819FFDA3] - 13/04/2008 - 08:35:40 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8139 NDIS 5.0 Driver.) -- C:\WINDOWS\system32\drivers\RTL8139.sys [20992] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 14/04/2008 - 13:00:00 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.BD15182E9D2D3FABC1D1313BADBD2415] - 30/08/2005 - 16:57:18 ---A- . (.MCCI - SAMSUNG Mobile USB Device 1.0 Driver.) -- C:\WINDOWS\system32\drivers\ss_bus.sys [58320] O58 - SDL:[MD5.0DB093DB64FD606F31284980F67EACAF] - 30/08/2005 - 16:58:50 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_cm.sys [6144] O58 - SDL:[MD5.0DB093DB64FD606F31284980F67EACAF] - 30/08/2005 - 16:58:50 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_cmnt.sys [6144] O58 - SDL:[MD5.67D1144F249A3C5E03EBD7A2304DEE11] - 30/08/2005 - 16:58:56 ---A- . (.MCCI - SAMSUNG Mobile USB Modem 1.0 Filter Driver.) -- C:\WINDOWS\system32\drivers\ss_mdfl.sys [8304] O58 - SDL:[MD5.954B7CE2D54C703D6A8471D6B05A5E13] - 30/08/2005 - 16:59:00 ---A- . (.MCCI - SAMSUNG Mobile USB Modem 1.0 Driver.) -- C:\WINDOWS\system32\drivers\ss_mdm.sys [94000] O58 - SDL:[MD5.B65281E2E31EAA42EDCD03C048C0E88D] - 30/08/2005 - 16:57:14 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_wh.sys [5808] O58 - SDL:[MD5.B65281E2E31EAA42EDCD03C048C0E88D] - 30/08/2005 - 16:57:14 ---A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_whnt.sys [5808] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 14/04/2008 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 14/04/2008 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.1D4EB2E5FC4276CD5E9B862D349F68BD] - 08/07/2008 - 08:11:00 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys [103936] O58 - SDL:[MD5.1D4EB2E5FC4276CD5E9B862D349F68BD] - 08/07/2008 - 08:11:00 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys [103936] O58 - SDL:[MD5.1D4EB2E5FC4276CD5E9B862D349F68BD] - 08/07/2008 - 08:11:00 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\system32\drivers\ZTEusbnmeaext.sys [103936] O58 - SDL:[MD5.1D4EB2E5FC4276CD5E9B862D349F68BD] - 08/07/2008 - 08:11:00 ---A- . (.ZTE Inc. - USB Modem/Serial Device Driver.) -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys [103936] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 14/04/2008 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\AAVMKER4.sys - (.not file.) - avast! Asynchronous Virus Monitor (Aavmker4) .(...) - LEGACY_AAVMKER4 O64 - Services: CurCS - C:\WINDOWS\system32\drivers\afd.sys - AFD (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - C:\WINDOWS\System32\alg.exe - Service de la passerelle de la couche Application (ALG) .(.Microsoft Corporation - Application Layer Gateway Service.) - LEGACY_ALG O64 - Services: CurCS - C:\Program Files\Application Updater\ApplicationUpdater.exe - Application Updater (Application Updater) .(.Spigot, Inc. - Application Updater.) - LEGACY_APPLICATION_UPDATER O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Gestion d'applications (AppMgmt) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_APPMGMT O64 - Services: CurCS - C:\Windows\System32\DRIVERS\arp1394.sys - Protocole client ARP 1394 (Arp1394) .(.Microsoft Corporation - IP/1394 Arp Client.) - LEGACY_ARP1394 O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWMON2.sys - (.not file.) - avast! Standard Shield Support (aswMon2) .(...) - LEGACY_ASWMON2 O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWSP.sys - (.not file.) - avast! Self Protection (aswSP) .(...) - LEGACY_ASWSP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Audio Windows (AudioSrv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_AUDIOSRV O64 - Services: CurCS - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - avast! Antivirus (avast! Antivirus) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_ANTIVIRUS O64 - Services: CurCS - (.not file.) - avast! Mail Scanner (avast! Mail Scanner) .(...) - LEGACY_AVAST!_MAIL_SCANNER O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de transfert intelligent en arrière-plan (BITS) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_BITS O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Explorateur d'ordinateur (Browser) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_BROWSER O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(...) - LEGACY_CDFS O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - .NET Runtime Optimization Service v2.0.50727_X86 (clr_optimization_v2.0.50727_32) .(.Microsoft Corporation - .NET Runtime Optimization Service.) - LEGACY_CLR_OPTIMIZATION_V2.0.50727_32 O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(...) - LEGACY_COMSYSAPP O64 - Services: CurCS - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys (.not file.) - cpuz132 (cpuz132) .(...) - LEGACY_CPUZ132 O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Services de cryptographie (CryptSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_CRYPTSVC O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(...) - LEGACY_DCOMLAUNCH O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client DHCP (Dhcp) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DHCP O64 - Services: CurCS - C:\Windows\System32\drivers\dmboot.sys - dmboot (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - C:\Windows\System32\drivers\dmload.sys - dmload (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Gestionnaire de disque logique (dmserver) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DMSERVER O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client DNS (Dnscache) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DNSCACHE O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Service de rapport d'erreurs (ERSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_ERSVC O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Système d'événements de COM+ (EventSystem) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_EVENTSYSTEM O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Compatibilité avec le Changement rapide d'utilisateur (FastUserSwitchingCompatibility) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_FASTUSERSWITCHINGCOMPATIBILITY O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(...) - LEGACY_FIPS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\fltMgr.sys - FltMgr (FltMgr) .(.Microsoft Corporation - Microsoft Filesystem Filter Manager.) - LEGACY_FLTMGR O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) .(.Microsoft Corporation - PresentationFontCache.exe.) - LEGACY_FONTCACHE3.0.0.0 O64 - Services: CurCS - C:\Windows\System32\DRIVERS\fssfltr_tdi.sys - FssFltr (fssfltr) .(.Microsoft Corporation - Family Safety Filter Driver (TDI).) - LEGACY_FSSFLTR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - E:\INSTALL\GMSIPCI.sys (.not file.) - GMSIPCI (GMSIPCI) .(...) - LEGACY_GMSIPCI O64 - Services: CurCS - C:\Windows\System32\DRIVERS\msgpc.sys - Classificateur de paquets générique (Gpc) .(.Microsoft Corporation - MS General Packet Classifier.) - LEGACY_GPC O64 - Services: CurCS - C:\Program Files\Google\Update\GoogleUpdate.exe - Google Update Service (gupdate) (gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE O64 - Services: CurCS - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Updater Service (gusvc) .(.Google - gusvc.) - LEGACY_GUSVC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Aide et support (helpsvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HELPSVC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - HID Input Service (HidServ) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HIDSERV O64 - Services: CurCS - C:\Windows\System32\Drivers\HTTP.sys - HTTP (HTTP) .(.Microsoft Corporation - HTTP Protocol Stack.) - LEGACY_HTTP O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - HTTP SSL (HTTPFilter) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HTTPFILTER O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe - Windows CardSpace (idsvc) .(.Microsoft Corporation - Windows CardSpace.) - LEGACY_IDSVC O64 - Services: CurCS - C:\WINDOWS\system32\imapi.exe - Service COM de gravage de CD IMAPI (ImapiService) .(.Microsoft Corporation - API Image Mastering.) - LEGACY_IMAPISERVICE O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ipnat.sys - Traducteur d'adresses réseau IP (IpNat) .(.Microsoft Corporation - IP Network Address Translator.) - LEGACY_IPNAT O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ipsec.sys - Pilote IPSEC (IPSec) .(.Microsoft Corporation - IPSec Driver.) - LEGACY_IPSEC O64 - Services: CurCS - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(...) - LEGACY_KSECDD O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Serveur (LanmanServer) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LANMANSERVER O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Station de travail (LanmanWorkstation) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LANMANWORKSTATION O64 - Services: CurCS - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe - LightScribeService Direct Disc Labeling Service (LightScribeService) .(.Hewlett-Packard Company - LightScribe Service.) - LEGACY_LIGHTSCRIBESERVICE O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Assistance TCP/IP NetBIOS (LmHosts) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LMHOSTS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(...) - LEGACY_MNMDD O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - mountmgr (mountmgr) .(...) - LEGACY_MOUNTMGR O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxdav.sys - Redirecteur client WebDav (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mrxsmb.sys - MRXSMB (MRxSmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB O64 - Services: CurCS - C:\WINDOWS\system32\msdtc.exe - Distributed Transaction Coordinator (MSDTC) .(.Microsoft Corporation - MS DTC console program.) - LEGACY_MSDTC O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\WINDOWS\system32\msiexec.exe - Windows Installer (MSIServer) .(.Microsoft Corporation - Windows® installer.) - LEGACY_MSISERVER O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MUP.sys - (.not file.) - Mup (Mup) .(...) - LEGACY_MUP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDIS.sys - (.not file.) - Pilote système NDIS (NDIS) .(...) - LEGACY_NDIS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndistapi.sys - Pilote TAPI NDIS d'accès distant (NdisTapi) .(.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) - LEGACY_NDISTAPI O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ndisuio.sys - NDIS mode utilisateur E/S Protocole (Ndisuio) .(.Microsoft Corporation - NDIS User mode I/O Driver.) - LEGACY_NDISUIO O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbios.sys - Interface NetBIOS (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\netbt.sys - NetBIOS sur TCP/IP (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Connexions réseau (Netman) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NETMAN O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - NLA (Network Location Awareness) (Nla) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NLA O64 - Services: CurCS - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (.not file.) - NMIndexingService (NMIndexingService) .(...) - LEGACY_NMINDEXINGSERVICE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - E:\NTACCESS.sys (.not file.) - NTACCESS (NTACCESS) .(...) - LEGACY_NTACCESS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARTMGR.sys - PartMgr (PartMgr) .(...) - LEGACY_PARTMGR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(...) - LEGACY_PARVDM O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Services IPSEC (PolicyAgent) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_POLICYAGENT O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Emplacement protégé (ProtectedStorage) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_PROTECTEDSTORAGE O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rasacd.sys - Pilote de connexion automatique d'accès distant (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Gestionnaire de connexions d'accès distant (RasMan) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_RASMAN O64 - Services: CurCS - C:\Windows\System32\DRIVERS\rdbss.sys - Rdbss (Rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\RDPCDD.sys - RDPCDD (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(...) - LEGACY_RDPNP O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Accès à distance au Registre (RemoteRegistry) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_REMOTEREGISTRY O64 - Services: CurCS - (.not file.) - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(...) - LEGACY_RPCSS O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Gestionnaire de comptes de sécurité (SamSs) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_SAMSS O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Planificateur de tâches (Schedule) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SCHEDULE O64 - Services: CurCS - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe - SeaPort (SeaPort) .(.Microsoft Corporation - Microsoft SeaPort Search Enhancement Broker.) - LEGACY_SEAPORT O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Connexion secondaire (seclogon) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SECLOGON O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Notification d'événement système (SENS) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SENS O64 - Services: CurCS - E:\NTGLM7X.sys (.not file.) - SetupNTGLM7X (SetupNTGLM7X) .(...) - LEGACY_SETUPNTGLM7X O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Pare-feu Windows / Partage de connexion Internet (SharedAccess) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHAREDACCESS O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Détection matériel noyau (ShellHWDetection) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHELLHWDETECTION O64 - Services: CurCS - C:\WINDOWS\system32\spoolsv.exe - Spouleur d'impression (Spooler) .(.Microsoft Corporation - Spooler SubSystem App.) - LEGACY_SPOOLER O64 - Services: CurCS - C:\Windows\System32\DRIVERS\sr.sys - Pilote de filtre de restauration système (sr) .(.Microsoft Corporation - Pilote de filtre de système de fichiers pou.) - LEGACY_SR O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de restauration système (srservice) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SRSERVICE O64 - Services: CurCS - C:\Windows\System32\DRIVERS\srv.sys - Srv (Srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de découvertes SSDP (SSDPSRV) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SSDPSRV O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Acquisition d'image Windows (WIA) (stisvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_STISVC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Téléphonie (TapiSrv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_TAPISRV O64 - Services: CurCS - C:\Windows\System32\DRIVERS\tcpip.sys - Pilote du protocole TCP/IP (Tcpip) .(.Microsoft Corporation - TCP/IP Protocol Driver.) - LEGACY_TCPIP O64 - Services: CurCS - (.not file.) - (.not file.) - Services Terminal Server (TermService) .(...) - LEGACY_TERMSERVICE O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Thèmes (Themes) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_THEMES O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client de suivi de lien distribué (TrkWks) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_TRKWKS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\UDFS.sys - Udfs (Udfs) .(...) - LEGACY_UDFS O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Hôte de périphérique universel Plug-and-Play (upnphost) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_UPNPHOST O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(...) - LEGACY_VGA O64 - Services: CurCS - C:\WINDOWS\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(...) - LEGACY_VOLSNAP O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Horloge Windows (W32Time) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_W32TIME O64 - Services: CurCS - C:\Windows\System32\DRIVERS\wanarp.sys - Pilote ARP IP d'accès distant (Wanarp) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARP O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - WebClient (WebClient) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WEBCLIENT O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Infrastructure de gestion Windows (winmgmt) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WINMGMT O64 - Services: CurCS - C:\WINDOWS\system32\wbem\wmiapsrv.exe - Carte de performance WMI (WmiApSrv) .(.Microsoft Corporation - Service de la carte de performance WMI.) - LEGACY_WMIAPSRV O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Centre de sécurité (wscsvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WSCSVC O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Mises à jour automatiques (wuauserv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WUAUSERV O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Configuration automatique sans fil (WZCSVC) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WZCSVC ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <chrome.exe> <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files\Safari\Safari.exe ---\\ Search Browser Infection (O69) O69 - SBI: C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\askcom.xml O69 - SBI: C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\conduit.xml O69 - SBI: prefs.js [Administrateur - pxxyyq5v.default] user_pref("CT2500339.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2500339&q="); O69 - SBI: prefs.js [Administrateur - pxxyyq5v.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.search.conduit.com/root/CT2500339/CT2500339", "\"1297858734\""); O69 - SBI: prefs.js [Administrateur - pxxyyq5v.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2500339&SearchSource=3&q={searchTerms}"); O69 - SBI: prefs.js [Administrateur - pxxyyq5v.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT2500339&SearchSource=13"); O69 - SBI: SearchScopes [HKCU] {0640E5B4-B594-44BA-B5BE-A407AA306CA5} - (Yahoo! Search) - http://fr.search.yahoo.com O69 - SBI: SearchScopes [HKCU] {06DEE816-A34A-4E88-8CAC-FAADA80B4038} - (Recherche 01net.com) - http://www.01net.com O69 - SBI: SearchScopes [HKCU] {09DDB543-6F8F-4491-B095-0E2A74B8299D} - (Rercherche d'articles 01net.com) - http://www.01net.com O69 - SBI: SearchScopes [HKCU] {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - (Ask Search) - http://websearch.ask.com O69 - SBI: SearchScopes [HKCU] {2AE425EB-13C3-4432-9D3E-7DDF3605F4B5} - (Recherche de téléchargements 01net.com) - http://www.01net.com O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (Avanquest FR Customized Web Search) - http://search.conduit.com O69 - SBI: SearchScopes [HKCU] {B72BCA45-A7FB-4769-9302-882CDE7EED15} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {EBA67931-B1C1-4539-9B2A-424508BEAB81} - (Recherche produits informatique 01net.com) - http://www.01net.com ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 28/01/2011 387072 | (Application Updater) . (.Spigot, Inc..) - C:\Program Files\Application Updater\ApplicationUpdater.exe SR - | Auto 13/01/2011 40384 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SS - | Auto 23/06/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 04/01/2007 136120 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Auto 17/07/2010 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SR - | Auto 28/06/2007 79136 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe SS - | Demand 28/06/2007 0 | (NMIndexingService) . (.Pas de propriétaire.) - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, http://www.gmer.net Run by Administrateur at 25/02/2011 09:58:50 device: opened successfully user: MBR read successfully Disk trace: called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS 1 nt!IofCallDriver[0x804E13B9] -> \Device\Harddisk0\DR0[0x89B2DAB8] 3 CLASSPNP[0xF7657FD7] -> nt!IofCallDriver[0x804E13B9] -> \Device\00000068[0x89B2C9E8] 5 ACPI[0xF75AD620] -> nt!IofCallDriver[0x804E13B9] -> \Device\Ide\IdeDeviceP2T0L0-e[0x89B80D98] kernel: MBR read successfully user & kernel MBR OK ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Administrateur at 25/02/2011 09:58:50 Use the desktop link 'MBRCheck' to have full report ---\\ Infection BT - BHO/Toolbar (Possible) [MD5.B8F85EACBBBF7A36A542ED35105B10AF] - (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe [526336] O4 - HKLM\..\Run: [SearchSettings] . (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe [HKCU\Software\AppDataLow\Software\Search Settings] [HKLM\Software\Search Settings] O69 - SBI: SearchScopes [HKCU] {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - (Ask Search) - http://websearch.ask.com End of the scan (1088 lines in 00mn 29s)(0)

michel13 · le 26 Fév 2011 10:36

Bonjour Bernard et à tous,

que puis-je faire du rapport de ZHP Diah que je ne sais analyser et comprendre?

Merci

bernard53 · le 26 Fév 2011 11:17

ok michel13 voici la suite car il y a du monde :evil:

* Copie le tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C)

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: Modified
[MD5.B8F85EACBBBF7A36A542ED35105B10AF] - (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe [526336]
[MD5.CF46A776D2E44F180AF2773A9844D260] - (.Spigot, Inc. - Application Updater.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe [387072]
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla FireFox\extensions\pdfforge@mybrowserbar.co
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla FireFox\extensions\wtxpcom@mybrowserbar.com
M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\askcom.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\kiwee-toolbar.xml
M0 - MFSP: prefs.js [Administrateur - pxxyyq5v.default] http://search.conduit.com/?ctid=CT25003 ... hSource=13
M2 - MFEP: prefs.js [Administrateur - pxxyyq5v.default\engine@conduit.com] [] Conduit Engine v3.2.5.2 (.Conduit Ltd..)
M2 - MFEP: prefs.js [Administrateur - pxxyyq5v.default\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}] [] Avanquest FR Community Toolbar v3.2.5.2 (.Conduit Ltd..)
R3 - URLSearchHook: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) (4, 3, 0, 2) -- C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll
R3 - URLSearchHook: Avanquest FR Toolbar - {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.6.0) -- C:\Program Files\Avanquest_FR\tbAvan.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: Avanquest FR Toolbar - {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Avanquest_FR\tbAvan.dll
O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) -- C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll
O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} . (.Spigot, Inc. - Widgi Toolbar for Internet Explorer.) -- C:\Program Files\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll
O3 - Toolbar: Avanquest FR Toolbar - {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Avanquest_FR\tbAvan.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngine.dll
O4 - HKLM\..\Run: [SearchSettings] . (.Spigot, Inc. - Search Settings.) -- C:\Program Files\Fichiers communs\Spigot\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [KernelFaultCheck] Clé orpheline
O4 - HKLM\..\Run: [TaskTray] Clé orpheline
O9 - Extra 'Tools' menuitem: Paramètres de Google &Gears - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} . (.not file.) - (.not file.)
O23 - Service: (Application Updater) . (.Spigot, Inc. - Application Updater.) - C:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: (NMIndexingService) - Clé orpheline
[MD5.00000000000000000000000000000000] [APT] [File Helper] (.Pas de propriétaire.) -- C:\Program Files\File Helper\File Helper.lnk --scan --stack=from-scheduler (.not file.)
O42 - Logiciel: Avanquest FR Toolbar - (.Avanquest FR.) [HKLM] -- Avanquest_FR Toolbar
O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM] – conduitEngine
O42 - Logiciel: pdfforge Toolbar v4.3 - (.Spigot, Inc..) [HKLM] -- {A0B139A7-E8D5-49E8-A7BF-12421E652208}
[HKCU\Software\AppDataLow\Software\Search Settings]
[HKCU\Software\AppDataLow\Software\pdfforge]
[HKCU\Software\Avanquest_FR]
[HKCU\Software\Conduit]
[HKCU\Software\FRA_Settings]
[HKCU\Software\conduitEngine]
[HKLM\Software\Application Updater]
[HKLM\Software\Avanquest_FR]
[HKLM\Software\Conduit]
[HKLM\Software\Search Settings]
[HKLM\Software\pdfforge]
O43 - CFD: 20/02/2011 - 10:45:18 - [387157] ----D- C:\Program Files\Application Updater
O43 - CFD: 24/02/2011 - 17:16:20 - [4132263] ----D- C:\Program Files\Avanquest_FR
O43 - CFD: 24/02/2011 - 17:15:24 - [532064] ----D- C:\Program Files\Conduit
O43 - CFD: 24/02/2011 - 17:16:22 - [3984545] ----D- C:\Program Files\ConduitEngine
O43 - CFD: 20/02/2011 - 10:45:18 - [1011733] ----D- C:\Program Files\pdfforge Toolbar
O43 - CFD: 20/02/2011 - 10:45:18 - [1126358] ----D- C:\Program Files\Fichiers Communs\Spigot
O43 - CFD: 15/05/2010 - 20:09:54 - [4596] ----D- C:\Documents and Settings\Administrateur\Application Data\pdfforge
O43 - CFD: 20/02/2011 - 10:45:22 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Search Settings
O43 - CFD: 24/02/2011 - 17:26:30 - [785900] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Avanquest_FR
O43 - CFD: 24/02/2011 - 17:15:24 - [4595] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Conduit
O43 - CFD: 24/02/2011 - 17:26:24 - [35449] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\ConduitEngine
O43 - CFD: 18/03/2010 - 16:00:40 - [1508] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Kiwee Toolbar
O51 - MPSK:{2002cbfc-94a8-11df-9b8e-00001c816e02}\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\U3ROM\flyhigh.exe (.not file.)
O64 - Services: CurCS - C:\Program Files\Application Updater\ApplicationUpdater.exe - Application Updater (Application Updater) .(.Spigot, Inc. - Application Updater.) - LEGACY_APPLICATION_UPDATER
O69 - SBI: C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\askcom.xml
O69 - SBI: C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\pxxyyq5v.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [Administrateur - pxxyyq5v.default] user_pref("CT2500339.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2500339&q=");
O69 - SBI: prefs.js [Administrateur - pxxyyq5v.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.search.conduit. ... /CT2500339", "\"1297858734\"");
O69 - SBI: prefs.js [Administrateur - pxxyyq5v.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2500339&SearchSource=3&q={searchTerms}");
O69 - SBI: prefs.js [Administrateur - pxxyyq5v.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT2500339&SearchSource=13");
O69 - SBI: SearchScopes [HKCU] {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} - (Ask Search) - http://websearch.ask.com
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (Avanquest FR Customized Web Search) - http://search.conduit.com
SR - | Auto 28/01/2011 387072 | (Application Updater) . (.Spigot, Inc..) - C:\Program Files\Application Updater\ApplicationUpdater.exe

FirewallRaz
EmptyFlash
Emptytemp

Puis Lance ZHPFix depuis le raccourci du bureau.

* Une fois l'outil ZHPFix ouvert, clique sur le bouton [H] ("coller les lignes Helper").

* Dans l'encadré principal tu verras donc les lignes que tu as copié précédemment qui apparaitront.

Vérifie :
- que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.
- que les lignes soient disposées les unes en dessous des autres.

* Puis clique sur le bouton [OK].
> À ce moment là, il apparaitra au début de chaque ligne une petite case vide. Ne touche plus à rien !

!! Déconnecte toi d'internet, désactive tes défenses (anti-virus, anti-spyware) et ferme bien toutes autres applications (navigateurs compris) !!

* Clique sur le bouton [Tous]. Vérifies que toutes les lignes soient bien cochées.

* Enfin clique sur le bouton [Nettoyer].

-> laisse travailler l'outil et ne touche à rien ...

Une fois terminée, un nouveau rapport s'affiche : copie/colle le contenu de ce dernier dans ta prochaine réponse ...

(ce rapport est en outre sauvegardé dans ce dossier > C:\Program files\ZHPDiag\ZHPFixReport.txt)

Important : s'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le de suite !

Puis::

Installe Malewarebytes' Antimalware,

http://www.malwarebytes.org/

Prends bien la version FREE

*** Met-le à jour puis choisi, Exécuter un examen complet

*** Si une infection est trouvée, coche la case a coté et valides avec l’Onglet Supprimer la sélection

Poste le rapport final.

désinstaller ask toolbar

désinstaller ask toolbar

Re: désisnstaller ask toolbar

Re: désisnstaller ask toolbar

Re: désisnstaller ask toolbar

Re: désisnstaller ask toolbar

Re: désinstaller ask toolbar

Re: désinstaller ask toolbar

Sujets similaires

Qui est en ligne