Il y a actuellement 112 visiteurs
Mercredi 05 Août 2020
accueilactualitésdossierscomparer les prixtélécharger gratuitement vos logicielsoffres d'emploiforum informatique
Connexion
Créer un compte

pc ralenti

Un ordinateur qui ralentit, des écrans publicitaires qui apparaissent, des applications qui refusent de démarrer ou encore votre navigateur qui s'obstine à ouvrir une page douteuse sont autant d'éléments qui indiquent que l'intégrité de votre ordinateur est menacée par un virus. Vous trouverez dans ce forum quelques conseils et logiciels pour surfer tranquillement.
Règles du forum
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...)‎, veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel

pc ralenti

Message le 15 Jan 2012 21:07

bonjour
mon pc est ralenti depuis quelques temps.
j'ai effectué un rapport hijackthis que je poste
merci pour votre aide


Code: Tout sélectionner
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:48:16, on 15/01/2012
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\Alliance MCA\SafeFax\faxtray.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\SysWow64\Macromed\Flash\FlashUtil10e.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Béa\Downloads\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.searchqu.com/406
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: msupd - {3D976574-2977-49E2-BCB5-CB4B6475F5CD} - C:\Program Files (x86)\ScreensCorner\Common\msudt.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll (file missing)
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files (x86)\DealPly\DealPlyIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [USBestCR] C:\Program Files (x86)\USBESTDI\iconcs725108.exe RunFromReg
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe"
O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Lancement Application Fax.lnk = C:\Program Files (x86)\Alliance MCA\SafeFax\faxtray.exe
O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs:  ,C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: Afa Card Reader Service (AfaService) - Unknown owner - C:\Windows\system32\afasrv64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Log Events - Globe7 HK Ltd - C:\Program Files (x86)\adobs\msats.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\x64\maconfservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14518 bytes
coconut83
Visiteur
Visiteur
 
Messages: 7
Inscription: 15 Jan 2012 21:02
 


Re: pc ralenti

Message le 15 Jan 2012 21:28

Bonsoir

bienvenu sur le forum

perso, je n'ai rien vu de méchant dans ton rapport, cependant je ne suis pas un spécialiste.

afin d'aider les helpers, peux tu suivre la procédure suivante ci-dessous

>>préparer sa demande d'aide de désinfection<<

merci :wink:
La sagesse est une montagne dont la base est confondue avec le sommet
...Celui qui a été lumière jamais ne disparait.. il reste lumière, sentinelle dans l'éternité, son aura bienveillante nous montre le chemin.
Avatar de l'utilisateur
EinsteinZero
Moderateur
Moderateur
 
Messages: 16644
Inscription: 27 Déc 2009 16:22
Localisation: Normandie
 

Re: pc ralenti

Message le 17 Jan 2012 18:43

salut,


Désactivez la protection résidente de SpybotSD, qui pourrait interférer avec la suite.
• Lancez Spybot → Mode avancé → Outils → Résident
• Décochez la case résident "tea timer" et refermez Spybot

>> Vous pouvez/devriez le laisser Désactivé .. <<.
Protection trop peu performante et énergivore en ressources.
__________________________________________________

Au prise avec searchqu.

Téléchargez sur votre bureau Adw-Cleaner (de XPlode)
• Lancez Adw-Cleaner.exe,
• Sélectionner l'option [Suppression]

.. Après le scan le rapport s’ouvrira.
Postez le rapport (C:\AdwCleaner[S1].txt)
__________________________________________________

Relancer HijackThis par un clic-droit → Exécuter en tant qu'adm..
• Appuyez sur Image
• Cocher les lignes sur cette → page Web
..Ensuite,
• Fermer Internet Explorer et autre fenêtre..
• Appuyer sur Image pour désactiver ces objets.


► Après redémarrage, ces objets ne seront plus réactivés.
____________________________________

Autre processus susceptibles d'être désactivés.

Pour ceux-ci. C'est selon l'utilisation +-fréquente que vous en faites.
• Vous pourriez leurs "Créer un raccourci" (par un clic-droit sur leurs processus), utilisable depuis le bureau.
• Dans CCleaner -> Outils -> Démarrage .., les objets suivants sont Désactivable / Réactivable.

HKLM:Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe"
Description : Songbird, available for all 2010 GoGear portable audio video players, you can easily discover, play and synchronize music and media.

HKCU:Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
Description : HP Advisor is a tool that provides easy access to computer information, including warranty details and connections to peripherals, such as printers.

HKCU:Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
Description : from Hewlett-Packard an innovative technology that uses a special disc drive, special media, and label-making software to burn labels directly onto CDs and DVDs.

HKCU:Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe"

Global Startup: Lancement Application Fax.lnk = C:\Program Files (x86)\Alliance MCA\SafeFax\faxtray.exe
Description : Fax


HKLM:Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
Description : Not only can you control which programs kids can access, you can also control when and how kids access the approved programs.
Toujours selon l'utilité ou non. Si vous désactiviez "Easybits" pour une utilisation occasionnelle.
  • Pourriez modifier son service (en Manuel) "avec l'invité de commandes", pour qu'il soit chargé qu'au lancement du processus précédent. En copiant /collant(par un clic-droit) les lignes de commandes suivantes et valider chacune ;
sc stop ezSharedSvc
sc config ezSharedSvc start= demand


Ou si vous choisissez de désactiver complètement ce processus.
• Faisable qu'en Cochant et [Fix Checkant] avec Hijackthis, cette ligne :
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe

P.S. Ce service peut aussi être modifié avec la procédure suivante.
____________________________________

Services dont le "Type de démarrage" peut être modifiés, en : Manuel
Ce qui les rendra utilisable au besoin, par le système ou vous.
• Accessible : Démarrer -> Exécuter.., entrer services.msc et valider
• Rechercher et double-cliquer sur un service, pour le modifier ..

Apple Mobile Device
Fax
GameConsoleService
Service Google Update
Service Google Update
Google Software Updater
Service de l’iPod
LightScribeService Direct Disc Labeling Service

____________________________________

Désinstallation/suppression d'applications non-recommandées.

Vérifier pour désinstaller : ScreensCorner.
Et supprimer les répertoires pouvant rester après, comme : C:\Program Files (x86)\ScreensCorner
De même que dans les "compte utilisateur", toutes occurrence possible de ce rép., devrait aussi être supprimé.
+-réf : http://www.threatexpert.com/report.aspx ... 32ed255a10

Désinstaller "USBESTD ou USBestCR" et vérifier ensuite pour supprimer les rép. et fichier.
• C:\Program Files (x86)\USBESTDI
• C:\Windows\system32\afasrv64.exe
+-réf : http://www.threatexpert.com/report.aspx ... d793279686
____________________________________

Téléchargez sur votre Bureau TFC.
• Double cliquer sur TFC.exe pour le lancer.

«« L'outil va fermer tous les programmes et protections..,»»
«« Sauvegardez toutes vos choses auparavant, »»


• Cliquez sur [Start] pour lancer le nettoyage.
.. Ça peut durer de quelques secondes à une minute ou deux.
.. Laissez le programme s'exécuter sans l'interrompre.

.. Lorsque compléter, l'outil peut proposer de redémarrer le système..
► S'il ne le faisait pas, redémarrer vous même l’ordi.

P.S. TFC Désactive tout ce qu’il peut; processus/services d’antivirus etc etc.
Impératif de redémarrer l’ordi, pour tout relancer !
______________________________________________

.......Par la suite, désinstaller cette version inadéquate d'Hijackthis pour votre ordi.
cosmido
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 215
Inscription: 13 Nov 2009 15:40
 

Re: pc ralenti

Message le 19 Jan 2012 17:46

bonjour,
merci bcp pour votre aide
voici les rapports demandés
rapport adwcleaner
Code: Tout sélectionner
# AdwCleaner v1.407 - Rapport créé le 19/01/2012 à 17:05:06
# Mis à jour le 18/01/2012 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Béa - BÉA-PC (Administrateur)
# Exécuté depuis : C:\Users\Béa\Downloads\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\ProgramData\~0
Dossier Supprimé : C:\ProgramData\Ask
Dossier Supprimé : C:\Users\Béa\AppData\Local\Ilivid Player
Dossier Supprimé : C:\Users\Béa\AppData\LocalLow\BabylonToolbar
Dossier Supprimé : C:\Users\Béa\AppData\LocalLow\searchquband
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
Dossier Supprimé : C:\Program Files (x86)\Babylon
Dossier Supprimé : C:\Program Files (x86)\DealPly
Dossier Supprimé : C:\Program Files (x86)\Windows iLivid Toolbar
Dossier Supprimé : C:\Users\Béa\AppData\Roaming\Mozilla\Firefox\Profiles\s22b558j.default\searchqutoolbar
Dossier Supprimé : C:\Users\Béa\AppData\Roaming\Mozilla\Firefox\Profiles\s22b558j.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
Fichier Supprimé : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Fichier Supprimé : C:\Program Files (x86)\Mozilla Firefox\searchplugins\SearchResults.xml
Fichier Supprimé : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
Fichier Supprimé : C:\Users\Béa\AppData\Roaming\Mozilla\Firefox\Profiles\s22b558j.default\searchplugins\Search_Results.xml

***** [Registre] *****

Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\DataMngr_Toolbar
Clé Supprimée : HKCU\Software\DealPly
Clé Supprimée : HKCU\Software\ilivid
Clé Supprimée : HKCU\Software\AppDataLow\Software\searchqutoolbar
Clé Supprimée : HKLM\SOFTWARE\DataMngr
Clé Supprimée : HKLM\SOFTWARE\DealPly
Clé Supprimée : HKLM\SOFTWARE\SearchquMediabarTb
Clé Supprimée : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Clé Supprimée : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\RFC1156Agent
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}
Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\dpicnlijpdlebkhpegfenfjpglinfdhm
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079a25-328f-4bd4-be04-00955acaa0a7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079a25-328f-4bd4-be04-00955acaa0a7}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079a25-328f-4bd4-be04-00955acaa0a7}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]

***** [Registre (x64)] *****

Clé Supprimée : HKLM\SOFTWARE\DataMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4f12-8568-69135F087DB0}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.7601.17514

Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.searchqu.com/406 --> hxxp://www.google.fr

-\\ Mozilla Firefox v9.0.1 (fr)

Profil : s22b558j.default
Fichier : C:\Users\Béa\AppData\Roaming\Mozilla\Firefox\Profiles\s22b558j.default\prefs.js

[OK] Le fichier ne contient aucune entrée illégitime.

Profil : zixi28gh.default
Fichier : C:\Users\Béa\AppData\Roaming\Mozilla\Firefox\Profiles\zixi28gh.default\prefs.js

... Fichier absent !

-\\ Google Chrome v [Impossible d'obtenir la version]

Fichier : C:\Users\Béa\AppData\Local\Google\Chrome\User Data\Default\Preferences

Supprimée :     "homepage" : "hxxp://www.searchqu.com/406",

*************************

AdwCleaner[S1].txt - [7285 octets] - [19/01/2012 17:05:06]

*************************

Dossier Temporaire : 43 dossier(s) et 332 fichier(s) supprimés

########## EOF - C:\AdwCleaner[S1].txt - [7508 octets] ##########


http://cjoint.com/?BAtrrjKSwC8

j'ai suivi les etapes mais je n'ai pas compris celle ci.
Désinstallation/suppression d'applications non-recommandées

Je ne sais pas si j'ai effectué les procedures comme il le fallait. je suis assez novice en informatique.
Je soupconnais que qq'un ait installé un logiciel espion sur mon pc. L'auriez vous détecté à coup sur?

coridalement
coconut83
Visiteur
Visiteur
 
Messages: 7
Inscription: 15 Jan 2012 21:02
 

Re: pc ralenti

Message le 19 Jan 2012 20:02

Vous avez apparemment stoppé les procédures à AdwCleaner.
C'est déjà ça !
Je soupconnais que qq'un ait installé un logiciel espion sur mon pc. L'auriez vous détecté à coup sur?
Hijackthis qui offre "le" minimum de données pour un système, est inadéquat pour votre version de Windows.
Par contre avec ZHPDiag qui suit, les probabilités augmentes.


On va simplifier le reste des procédures.

• Téléchargez sur votre bureau → ZHPDiag.exe ← (de Coolman).
• Installer ZHPDiag.exe par un double-clique (avec Vista /Seven ; Autoriser le).
• Ouvrer ZHPDiag en cliquant sur Image
• Lancer le diagnostique, en cliquant "en haut à gauche" sur la Loupe Image
.. Lorsque le diagnostique sera complété, à ...................100%,
.. Une copie du rapport "ZHPDiag.txt" sera disponible sur le bureau (et dans C:\ZHP\..).


P.S.
À la procédure : Autre processus susceptibles d'être désactivés. ..du message précédent.
Rapporter "en les différenciant" les applications (en blue) que vous utilisez +-quotidiennement et les autres que vous n'utilisez jamais ou très peu.
cosmido
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 215
Inscription: 13 Nov 2009 15:40
 

Re: pc ralenti

Message le 20 Jan 2012 11:50

BONJOUR
Oui, désolée, je n'ai pas reussi à tout faire!
A quoi sert screenscorner? Dois je supprimer le dossier en entier?
je vous joins lE rapport demandé
Code: Tout sélectionner
Rapport de ZHPDiag v1.28.313 par Nicolas Coolman, Update du 18/01/2012
Run by Béa at 20/01/2012 11:36:11
Web site :  http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site :  http://nicolascoolman.skyrock.com/
State : Version à jour.


---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
MFIE: Mozilla Firefox 9.0.1 v9.0.1 (Defaut)
GCIE: Google Chrome v16.0.912.75
OBIE: Safari v5.34.50.0

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 2
Software Protection Service (Protection logicielle)  : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2933 MB (52% free)
System Restore: Activé (Enable)
System drive C: has 219 GB (76%) free of 284 GB

---\\ Logged in mode
~ Computer Name: BÉA-PC
~ User Name: Béa
~ All Users Names: Béa, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Béa\AppData\Roaming\
~ %Desktop% : C:\Users\Béa\Desktop\
~ %Favorites% : C:\Users\Béa\Favorites\
~ %LocalAppData% : C:\Users\Béa\AppData\Local\
~ %StartMenu% : C:\Users\Béa\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 219 Go of 284 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
F:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc :  OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.AC4C51EB24AA95B77F705AB159189E24] - (.Microsoft Corporation - Explorateur Windows.) (.20/11/2010 - 14:24:45.) -- C:\Windows\Explorer.exe [2872320]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.4EFC156290537BB9706D3A7A1A4B8733] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.05/11/2011 - 06:41:43.) -- C:\Windows\system32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows multi-utilisateurs.) (.20/11/2010 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\drivers\netBT.sys [261632]
[MD5.05D78AA5CB5F3F5C31160BDB955D0B7C] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.20/11/2010 - 14:33:46.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/2113
~ Mes musiques (My Musics) : 22/74
~ Mes Videos (My Videos) : 1/119
~ Mes Favoris (My Favorites) : Non accessible (Not found)
~ Mes Documents (My Documents) : 8/382
~ Mon Bureau (My Desktop) : 3/13
~ Menu demarrer (Programs) : 7/30
~ Scan Hidden Files in 00mn 09s



---\\ Processus lancés
[MD5.D1930CA970D4250D891F432419E3D6C9] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe   [186904] [PID.1416]
[MD5.47C1DE0A890613FFCFF1D67648EEDF90] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe   [937920] [PID.2212]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe   [54576] [PID.3336]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe   [254696] [PID.3980]
[MD5.879D74337173A6D630D3D06184D354C1] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe   [421736] [PID.1792]
[MD5.2AA60514B683F15CF484C4A9F21C3425] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe   [273528] [PID.3192]
[MD5.86805548E45DA1668A7035966C64FC3E] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe   [344736] [PID.]
[MD5.11CCA710674739E3DB8F7450A5B650B6] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe   [924632] [PID.4092]
[MD5.0619C9E7A3682C54BD226A831897CD06] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe   [16856] [PID.4812]
[MD5.ED570E740CB5E987E8BCDB1EA393C3E2] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [2210304] [PID.3856]
[MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe   [37664] [PID.]
[MD5.CA793DCC1D5F619021EF1D37CC7A831E] - (.EasyBits Software AS - Shared EasyBits services for Windows.) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe   [514232] [PID.]
[MD5.03431817C7236371433D3C860810FE8A] - (.Hewlett-Packard Company - HP Quick Synchronization Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe   [92216] [PID.]
[MD5.47269F0DE1E5089C6F23BC1EC48CFC31] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe   [73728] [PID.]
[MD5.DBC1136A62BD4DECC3632DF650284C2E] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe   [268824] [PID.]
[MD5.D70B243B1F104E64BBA0D6532B936EDD] - (.Globe7 HK Ltd - Log Alerts.) -- C:\Program Files (x86)\adobs\msats.exe   [207968] [PID.]
[MD5.660BF3255A1EB18ED803FD2FBA6AE400] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe   [354840] [PID.]
[MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe   [1153368] [PID.]
[MD5.7466809E6DA561D60C2F1CE8EDE3C73F] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe   [2320920] [PID.]
[MD5.CC518F83732860997C3FAF56D15627A7] - (.Hewlett-Packard Company - hpqwmiex Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe   [797240] [PID.]
~ Scan Processes Running in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Béa\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Béa\AppData\Roaming\Mozilla\Firefox\Profiles\s22b558j.default\prefs.js
C:\Users\Béa\AppData\Roaming\Mozilla\Firefox\Profiles\zixi28gh.default\prefs.js (.not file.)
M0 - MFSP: prefs.js [Béa - s22b558j.default] http://www.google.fr
M2 - MFEP: prefs.js [Béa - s22b558j.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.8 (.Michel Gutierrez.)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 12.0.1.669.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.Yahoo! Inc. - Yahoo! activeX Plug-in Bridge.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npyaxmpb.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win64 # 5.2.2.0.) -- C:\Program Files\ma-config.com\x64\nphardwaredetection.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IEVkbdBHO [64Bits] - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} . (.Kaspersky Lab ZAO - IE Virtual Keyboard.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\ievkbd.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg64.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - WebToolBar component.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtbbho.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugi
O2 - BHO: msupd [64Bits] - {3D976574-2977-49E2-BCB5-CB4B6475F5CD} . (...) -- C:\Program Files (x86)\ScreensCorner\Common\msudt.dll
O2 - BHO: Spybot-S&D IE Protection [64Bits] - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO [64Bits] - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} . (.Kaspersky Lab ZAO - IE Virtual Keyboard.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\
O2 - BHO: Windows Live Messenger Companion Helper [64Bits] - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - WebToolBar component.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
~ Scan BHO in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
~ Scan Toolbar in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
O4 - HKLM\..\Run: [RtkOSD] . (.Realtek Semiconductor Corp. - Realtek OSD for Volume/Mute.) -- C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe
O4 - HKLM\..\Run: [HP Quick Launch] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] . (...) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [USBestCR] . (.Pas de propriétaire - IconCS card reader Application.) -- C:\Program Files (x86)\USBESTDI\iconcs725108.exe
O4 - HKCU\..\Run: [Polar Sync] Clé orpheline
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
O4 - HKLM\..\Wow6432Node\Run: [USBestCR] . (.Pas de propriétaire - IconCS card reader Application.) -- C:\Program Files (x86)\USBESTDI\iconcs725108.exe
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-4249707812-2666981283-426946560-1000\..\Run: [Polar Sync] Clé orpheline
O4 - HKUS\S-1-5-21-4249707812-2666981283-426946560-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-4249707812-2666981283-426946560-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GSimReaderApp.lnk . (...)  -- C:\Users\Béa\AppData\Roaming\Microsoft\Installer\{B5A7081A-0C91-41C1-9EFF-5BD8696053A2}\_A2DD8A3F5FD1699BB1B798.exe
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Béa\Desktop\Accueil SafeFax.lnk . (...)  -- C:\Program Files (x86)\Alliance MCA\SafeFax\statfax.exe
O4 - Global Startup: C:\Users\Béa\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Béa\Desktop\PhotoFiltre.lnk . (.Antonio Da Cruz.)  -- C:\Program Files (x86)\PhotoFiltre\photofiltre.exe
O4 - Global Startup: C:\Users\Béa\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.)  -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...)  -- C:\Windows\Installer\{735619D4-B42A-437A-958C-199BFCAEDB38}\SafariIco.exe
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Démarrer Microsoft Office Outlook.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Microsoft Office\OFFICE11\OUTLOOK.EXE
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Messaging.)  -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Philips Songbird.lnk . (.Koninklijke Philips Electronics N.V..)  -- C:\Program Files (x86)\Philips\Philips Songbird\Philips-Songbird.exe
O4 - Global Startup: C:\Users\Béa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.)  -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
~ Scan Global Startup in 00mn 01s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Ajouter à l'Anti-bannière . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - (.not file.) - C:\Program Files\MICROS~4\OFFICE11\EXCEL.exe
~ Scan IE Menu Contextuel in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Clavier &virtuel [64Bits] - {4248FE82-7FCB-46AC-B270-339F08212110} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\kbrd.ico
O9 - Extra button: Clavier &virtuel [64Bits] - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\logo.ico
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\System32\NapiNSP.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\System32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\System32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{20817B44-F124-4828-B4D4-5F3CFA40C19E}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{7397C36A-D93E-4818-A077-64D14BCDAAC5}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{20817B44-F124-4828-B4D4-5F3CFA40C19E}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{7397C36A-D93E-4818-A077-64D14BCDAAC5}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{20817B44-F124-4828-B4D4-5F3CFA40C19E}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{7397C36A-D93E-4818-A077-64D14BCDAAC5}: DhcpNameServer = 192.168.1.254
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\microsoft shared\Information Retrieval\msitss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: mso-offdap [64Bits] - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\Program Files (x86)\Common Files\microsoft shared\Web Components\10\OWC10.dll
O18 - Handler: mso-offdap11 [64Bits] - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\Program Files (x86)\Common Files\microsoft shared\Web Components\11\OWC11.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE11\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 01s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll
O20 - Winlogon Notify: klogon . (.Kaspersky Lab ZAO - Logon Visualizer.) -- C:\Windows\system32\klogon.dll
~ Scan Winlogon in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files\WI3C8A~1\Datamngr\x64\datamngr.dlldll (.not file.)
~ Scan AppInit DLL in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: Afa Card Reader Service (AfaService) . (...) - C:\Windows\SysWOW64\afasrv64.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard Company - HP Support Assistant.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service (HP Wireless Assistant Service) . (.Hewlett-Packard - HPPA_Service.) - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HPWMISVC (HPWMISVC) . (...) - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
O23 - Service: LightScribeService Direct Disc Labeling  (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Log Events (Log Events) . (.Globe7 HK Ltd - Log Alerts.) - C:\Program Files (x86)\adobs\msats.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Intel(R) Management & Security Applicati (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
~ Scan Services in 00mn 01s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\HPCeeScheduleForBÉA-PC$.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\HPCeeScheduleForBéa.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.BEAEC745256D3158495FEE10BA673E7C] [APT] [HPCeeScheduleForB‚a] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.BEAEC745256D3158495FEE10BA673E7C] [APT] [HPCeeScheduleForBA-PC$] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.874B6089DB177C2C9F2029CB5199373F] [APT] [RealUpgradeLogonTaskS-1-5-21-4249707812-2666981283-426946560-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
[MD5.874B6089DB177C2C9F2029CB5199373F] [APT] [RealUpgradeScheduledTaskS-1-5-21-4249707812-2666981283-426946560-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [ServicePlan] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.11CCA710674739E3DB8F7450A5B650B6] [APT] [{13285764-C15E-40D9-84F0-6119562B4EBD}] (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
[MD5.00000000000000000000000000000000] [APT] [{3B9BBAE7-E6B4-4E3D-828C-96BDF3643738}] (...) -- G:\LaunchU3.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{61BF4741-7E09-4627-A2DD-371E4AE50A60}] (...) -- F:\InstMenu.exe (.not file.)
[MD5.CBF786945E953EC1A48466ECE22A67E5] [APT] [{83DE0013-66AD-44B6-AE5A-D8AC0892E563}] (.Apple Inc..) -- C:\Users\Béa\Downloads\QuickTimeInstaller.exe
[MD5.00000000000000000000000000000000] [APT] [{C15ADE2B-66D2-4526-8D2E-D4B4A6FEF06F}] (...) -- C:\Users\Béa\Downloads\PfS30HDWebUp-L145-EU.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{C1F650EA-E137-4458-B26C-2C76C445B5A8}] (...) -- F:\install\setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{CF545875-4FBA-4B13-A1A7-18A6250BD385}] (...) -- C:\Users\Béa\Desktop\mspass_setup.exe (.not file.)
[MD5.F6F219684194EA65D11A2DFE053E7E35] [APT] [{F84194DA-2209-4A16-81BB-90A282BE6E4B}] (.Macrovision Corporation.) -- C:\Users\Béa\Downloads\20080128135518500_Samsung_PC_Studio_313_HA4.exe
[MD5.00000000000000000000000000000000] [APT] [{FD3A707D-5611-49F1-8394-0441D9849C40}] (...) -- G:\Setup.exe (.not file.)
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
~ Scan Scheduled Task in 00mn 17s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\system32\wmp.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver:  (kl2) . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - C:\Windows\system32\DRIVERS\kl2.sys
O41 - Driver:  (KLIF) . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_AMD64].) - C:\Windows\system32\DRIVERS\klif.sys
O41 - Driver:  (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\system32\DRIVERS\klim6.sys
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.4.6 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
O42 - Logiciel: Agatha Christie - Death on the Nile - (.WildTangent.) [HKLM] -- WT083492
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {6A3F9D74-BB80-4451-8CA1-4B3A857F1359}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {439760BC-7737-4386-9B1D-A90A3E8A22EA}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM] -- WT082192
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM] -- WT082124
O42 - Logiciel: Broadcom 802.11 Wireless LAN Adapter - (.Broadcom Corporation.) [HKLM] -- Broadcom 802.11 Wireless LAN Adapter
O42 - Logiciel: Bus Driver - (.WildTangent.) [HKLM] -- WT082439
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CDex - Open Source Digital Audio CD Extractor - (.Georgy Berdyshev.) [HKLM] -- CDex
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM] -- WT082200
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: Contrôle ActiveX Windows Live Mesh pour connexions à distance - (.Microsoft Corporation.) [HKLM] -- {55D003F4-9599-44BF-BA9E-95D060730DD3}
O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink PowerDVD 9 - (.CyberLink Corp..) [HKLM] -- InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}
O42 - Logiciel: CyberLink PowerDVD 9 - (.CyberLink Corp..) [HKLM] -- {A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM] -- WT082396
O42 - Logiciel: Dream Chronicles - (.WildTangent.) [HKLM] -- WT083521
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM] -- WT082141
O42 - Logiciel: GSM SIM Utility 5.15 - (.GSM SIM Utility.) [HKLM] -- {FA895932-5C05-4901-9275-CCC9D43000AE}
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Gem Shop - (.WildTangent.) [HKLM] -- WT083529
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Deskjet 3050 J610 series Aide - (.Hewlett Packard.) [HKLM] -- {F7632A9B-661E-4FD9-B1A4-3B86BC99847F}
O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM] -- My HP Game Console
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard.) [HKLM] -- {10F539B1-31AF-43BF-9F0C-0EB66E918922}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM] -- {E2831862-F131-4327-B9CC-FA30F587EB6C}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM] -- {CE9A85B7-358E-42E2-B211-E10C75D96171}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM] -- {08DB3902-2CE0-474D-BCE3-0177766CE9F1}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HP User Guides 0217 - (.Hewlett-Packard.) [HKLM] -- {97F3767E-8A52-4AA6-9304-BEEFBAC04575}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {2A15333E-FF9C-4563-8E6B-55C8696B48C3}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: IncrediMail Converter PRO - (.Pas de propriétaire.) [HKLM] -- IncrediMail Converter PRO_is1
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM] -- WT082222
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Java(TM) 6 Update 17 (64-bit) - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86416017FF}
O42 - Logiciel: Java(TM) 6 Update 29 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216017FF}
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM] -- WT083514
O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM] -- WT083510
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Kaspersky Internet Security 2011 - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{66F1F013-008F-4875-B283-5A814B820347}
O42 - Logiciel: Kaspersky Internet Security 2011 - (.Kaspersky Lab.) [HKLM] -- {66F1F013-008F-4875-B283-5A814B820347}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM] -- {6AFDE3BE-BC01-45A4-9D06-BBF5AD207313}
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3050 J610 series - (.Hewlett-Packard Co..) [HKLM] -- {9513C738-834A-46C9-82FA-ECF8C54EEBBC}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM] -- {812489B5-A2A9-474B-9BE7-55410E0E1DB4}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM] -- EasyBits Magic Desktop
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM] -- WT082409
O42 - Logiciel: Malwarebytes Anti-Malware version 1.60.0.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office FrontPage 2003 - (.Microsoft Corporation.) [HKLM] -- {9017040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM] -- {95140000-0080-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}
O42 - Logiciel: MozBackup 1.5.1 - (.Pavel Cvrcek.) [HKLM] -- MozBackup
O42 - Logiciel: Mozilla Firefox 9.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 9.0.1 (x86 fr)
O42 - Logiciel: Mozilla Thunderbird (8.0) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird (8.0)
O42 - Logiciel: Mystery P.I. - The Vegas Heist - (.WildTangent.) [HKLM] -- WT082414
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM] -- WT082168
O42 - Logiciel: Philips Songbird - (.Koninklijke Philips Electronics N.V..) [HKLM] -- Philips Songbird
O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM] -- InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM] -- {D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM] -- WT082172
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {C9E14402-3631-4182-B377-6B0DFB1C0339}
O42 - Logiciel: RealNetworks - Microsoft Visual C++ 2008 Runtime - (.RealNetworks, Inc.) [HKLM] -- {7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: SIMCardReaderPro - (.Moai.) [HKLM] -- {B5A7081A-0C91-41C1-9EFF-5BD8696053A2}
O42 - Logiciel: Safari - (.Apple Inc..) [HKLM] -- {735619D4-B42A-437A-958C-199BFCAEDB38}
O42 - Logiciel: SafeFax 3.0.999 - (.Alliance MCA.) [HKLM] -- SafeFax_is1
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM] -- WT082427
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: USIM Editor 1.0.19.0 - (.Pas de propriétaire.) [HKLM] -- Card Reader Driver and USIM Editor Program_is1
O42 - Logiciel: Virtual Villagers - The Secret City - (.WildTangent.) [HKLM] -- WT082241
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM] -- WT082422
O42 - Logiciel: WinZip 15.0 - (.WinZip Computing, S.L. .) [HKLM] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240C1}
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {CEA21F20-DBF4-464C-8B81-28B8508AFDDD}
O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {E01819BD-709F-43A1-9600-6F5E4C584C37}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {180C8888-50F1-426B-A9DC-AB83A1989C65}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}
O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {E5B21F11-6933-4E0B-A25C-7963E3C07D11}
O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM] -- {78A96B4C-A643-4D0F-98C2-A8E16A6669F9}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {DF6D988A-EEA0-4277-AAB8-158E086E439B}
O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}
O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {E02A6548-6FDE-40E2-8ED9-119D7D7E641F}



Code: Tout sélectionner
O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {5E2CD4FB-4538-4831-8176-05D653C3E6D4}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: Windows iLivid Toolbar - (.Bandoo Media, Inc.) [HKLM] -- Windows Searchqu Toolbar
O42 - Logiciel: YlangSMS 1.0 - (.YlangSMS, Inc..) [HKLM] -- {40AA47B9-EE38-48C4-8439-DE9BAEBBD290}_is1
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM] -- WT082246
O42 - Logiciel: iLivid - (.Bandoo Media Inc..) [HKLM] -- iLivid
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {997C9EC4-B53D-479D-81B7-0AEC8D174BA1}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\Alliance MCA]
[HKCU\Software\AppDataLow\RealNetworks]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Binary Noise]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Commercial Research]
[HKCU\Software\CyberLink]
[HKCU\Software\EasyBits]
[HKCU\Software\Franckey]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IE]
[HKCU\Software\IM Providers]
[HKCU\Software\INFO Z SERVICE]
[HKCU\Software\Illustrate]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Lake]
[HKCU\Software\LightScribe]
[HKCU\Software\Ligos]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MarineCat]
[HKCU\Software\Mozilla Backup]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Nico Mak Computing]
[HKCU\Software\Norton]
[HKCU\Software\Nosibay]
[HKCU\Software\ODBC]
[HKCU\Software\Opendisc]
[HKCU\Software\Philips Songbird]
[HKCU\Software\PhotoFiltre Studio X]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\Realsil]
[HKCU\Software\Realtek]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Softonic]
[HKCU\Software\Songbird]
[HKCU\Software\SpoonInstall]
[HKCU\Software\Synaptics]
[HKCU\Software\Tific]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinZip Computing]
[HKCU\Software\Winamp]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\cybelsoft]
[HKLM\Software\5]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Agere]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\BcmSetup]
[HKLM\Software\CDDB]
[HKLM\Software\CXT]
[HKLM\Software\Caphyon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\Digital River]
[HKLM\Software\DownloadHelper]
[HKLM\Software\EasyBits]
[HKLM\Software\GEAR Software]
[HKLM\Software\GSM SIM Utility]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KasperskyLab]
[HKLM\Software\LSI]
[HKLM\Software\Lake]
[HKLM\Software\LightScribe]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nico Mak Computing]
[HKLM\Software\ODBC]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\P2G_Upgrade]
[HKLM\Software\PDR_Upgrade]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Product_Upgrade]
[HKLM\Software\RTLSetup]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Songbird]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\Techcity]
[HKLM\Software\TrendMicro]
[HKLM\Software\UCRDef]
[HKLM\Software\Volatile]
[HKLM\Software\WildTangent]
[HKLM\Software\Win32 Services]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\cybelsoft]
[HKLM\Software\ilivid]
[HKLM\Software\mozilla.org]
[HKLM\Software\tpfmon]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 16/02/2011 - 17:28:08 - [0] ----D- C:\Program Files\Babylon
O43 - CFD: 11/06/2010 - 23:06:20 - [12,016] ----D- C:\Program Files\Broadcom
O43 - CFD: 06/12/2011 - 13:56:02 - [8,443] ----D- C:\Program Files\CCleaner
O43 - CFD: 09/01/2012 - 16:43:26 - [61,893] ----D- C:\Program Files\Common Files
O43 - CFD: 29/05/2011 - 14:15:10 - [86,076] ----D- C:\Program Files\DVD Maker
O43 - CFD: 17/11/2010 - 11:20:28 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 20/11/2010 - 18:10:20 - [1,606] ----D- C:\Program Files\Google
O43 - CFD: 12/05/2010 - 20:24:16 - [7,396] ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 20/03/2011 - 12:26:00 - [47,920] ----D- C:\Program Files\HP
O43 - CFD: 14/12/2011 - 19:36:06 - [4,943] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 27/08/2011 - 10:51:34 - [1,861] ----D- C:\Program Files\iPod
O43 - CFD: 27/08/2011 - 10:55:12 - [2,249] ----D- C:\Program Files\iTunes
O43 - CFD: 12/05/2010 - 19:35:34 - [76,029] ----D- C:\Program Files\Java
O43 - CFD: 28/11/2011 - 17:55:18 - [9,624] ----D- C:\Program Files\ma-config.com
O43 - CFD: 09/01/2012 - 16:43:26 - [142,324] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 14/07/2009 - 06:32:40 - [0,025] ----D- C:\Program Files\MSBuild
O43 - CFD: 11/06/2010 - 23:11:10 - [24,206] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 06:32:40 - [35,109] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 11/06/2010 - 23:08:30 - [36,808] ----D- C:\Program Files\Synaptics
O43 - CFD: 19/11/2010 - 17:14:00 - [0] ----D- C:\Program Files\Techcity
O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 29/05/2011 - 14:15:10 - [3,853] ----D- C:\Program Files\Windows Defender
O43 - CFD: 11/11/2011 - 20:46:28 - [7,617] ----D- C:\Program Files\Windows Live
O43 - CFD: 29/05/2011 - 14:15:10 - [6,359] ----D- C:\Program Files\Windows Mail
O43 - CFD: 29/05/2011 - 14:15:10 - [7,331] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 17/11/2010 - 11:20:28 - [12,043] ----D- C:\Program Files\Windows NT
O43 - CFD: 29/05/2011 - 14:15:10 - [5,261] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 29/05/2011 - 14:15:10 - [0,233] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 09/01/2012 - 16:43:36 - [12,183] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 11/10/2011 - 15:32:44 - [1,916] ----D- C:\Program Files\WinRAR
O43 - CFD: 09/01/2012 - 16:43:26 - [6,276] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 11/06/2010 - 23:08:22 - [17,540] ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 11/11/2011 - 20:45:18 - [25,864] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 04:20:10 - [0,003] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [0,581] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 10/11/2011 - 03:21:26 - [11,629] ----D- C:\Program Files\Common Files\System
O43 - CFD: 23/06/2011 - 11:20:46 - [31,425] ----D- C:\ProgramData\Adobe
O43 - CFD: 02/12/2010 - 20:04:26 - [100,673] ----D- C:\ProgramData\Apple
O43 - CFD: 27/08/2011 - 10:51:34 - [81,120] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 01/01/2012 - 15:54:52 - [0] ----D- C:\ProgramData\AVS4YOU
O43 - CFD: 19/01/2012 - 13:27:06 - [0,000] ----D- C:\ProgramData\boost_interprocess
O43 - CFD: 17/11/2010 - 11:20:28 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 09/01/2012 - 16:43:12 - [0,002] ----D- C:\ProgramData\clp
O43 - CFD: 05/01/2012 - 20:36:04 - [0,123] ----D- C:\ProgramData\Common Toolkit Suite
O43 - CFD: 26/12/2010 - 21:17:20 - [0,066] ----D- C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 24/11/2011 - 16:11:06 - [0,000] ----D- C:\ProgramData\Driver Mender
O43 - CFD: 17/11/2010 - 11:20:28 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 09/01/2012 - 15:18:28 - [0,117] ----D- C:\ProgramData\Fighters
O43 - CFD: 20/11/2010 - 18:10:36 - [0,514] ----D- C:\ProgramData\Google
O43 - CFD: 16/12/2010 - 19:54:22 - [67,515] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 03/06/2011 - 17:40:40 - [9,341] ----D- C:\ProgramData\HP
O43 - CFD: 20/03/2011 - 14:04:58 - [3,834] ----D- C:\ProgramData\InternetFax
O43 - CFD: 20/01/2012 - 11:36:30 - [539,655] ----D- C:\ProgramData\Kaspersky Lab
O43 - CFD: 28/11/2011 - 17:55:16 - [1,217] ----D- C:\ProgramData\ma-config.com
O43 - CFD: 06/12/2011 - 13:55:42 - [18,334] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 17/11/2010 - 11:20:28 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 09/01/2012 - 16:42:16 - [337,774] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 22/01/2011 - 11:27:38 - [0,055] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 17/11/2010 - 11:20:28 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 20/01/2011 - 11:10:28 - [0,016] ----D- C:\ProgramData\Norton
O43 - CFD: 11/06/2010 - 23:21:34 - [5,393] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 09/01/2012 - 16:42:18 - [1,580] ----D- C:\ProgramData\Real
O43 - CFD: 12/01/2011 - 06:38:26 - [0,025] ----D- C:\ProgramData\Recovery
O43 - CFD: 19/01/2012 - 16:59:10 - [47,674] ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 21/11/2010 - 14:09:18 - [0,000] ----D- C:\ProgramData\Sun
O43 - CFD: 11/06/2010 - 23:20:16 - [0,551] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 20/03/2011 - 13:46:16 - [0] ----D- C:\ProgramData\tpfmon
O43 - CFD: 20/11/2010 - 18:05:54 - [1791,210] ----D- C:\ProgramData\WildTangent
O43 - CFD: 29/11/2011 - 08:51:20 - [0,000] ----D- C:\ProgramData\WinZip
O43 - CFD: 09/01/2012 - 16:43:28 - [3,116] --H-D- C:\ProgramData\{08E30618-5D06-461B-BBD3-4ADFB0810824}
O43 - CFD: 16/12/2010 - 19:55:56 - [33,621] ----D- C:\ProgramData\{23D58E70-3B83-4B83-A227-68770F84F5EC}
O43 - CFD: 12/05/2010 - 20:00:54 - [19,334] ----D- C:\ProgramData\{657095DF-DBDB-4B17-8245-B38845C97069}
O43 - CFD: 10/12/2010 - 13:45:12 - [0,852] ----D- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 19/01/2012 - 15:52:58 - [6,036] --H-D- C:\ProgramData\{B49A644A-1076-4A3D-B124-DAA7862F2318}
O43 - CFD: 11/01/2012 - 10:23:16 - [0,024] ----D- C:\ProgramData\{F0489EF2-D393-4114-85BA-A94D71D89543}
O43 - CFD: 08/09/2011 - 13:44:04 - [0] ----D- C:\Users\Béa\AppData\Roaming\AccurateRip
O43 - CFD: 19/11/2010 - 17:10:06 - [6,952] ----D- C:\Users\Béa\AppData\Roaming\Adobe
O43 - CFD: 28/08/2011 - 18:10:36 - [0,241] ----D- C:\Users\Béa\AppData\Roaming\Apple Computer
O43 - CFD: 07/09/2011 - 17:32:54 - [0,021] ----D- C:\Users\Béa\AppData\Roaming\avidemux
O43 - CFD: 01/01/2012 - 15:54:40 - [6,406] ----D- C:\Users\Béa\AppData\Roaming\AVS4YOU
O43 - CFD: 23/04/2011 - 14:53:50 - [0,002] ----D- C:\Users\Béa\AppData\Roaming\CyberLink
O43 - CFD: 05/01/2012 - 20:38:04 - [0,189] ----D- C:\Users\Béa\AppData\Roaming\Fighters
O43 - CFD: 21/09/2011 - 18:29:42 - [0,000] ----D- C:\Users\Béa\AppData\Roaming\FreeAudioPack
O43 - CFD: 16/02/2011 - 16:19:30 - [0,007] ----D- C:\Users\Béa\AppData\Roaming\Globe7
O43 - CFD: 20/11/2010 - 18:10:50 - [0] ----D- C:\Users\Béa\AppData\Roaming\Google
O43 - CFD: 18/03/2011 - 10:54:00 - [0,150] ----D- C:\Users\Béa\AppData\Roaming\Hewlett-Packard
O43 - CFD: 25/11/2010 - 19:31:48 - [0,000] ----D- C:\Users\Béa\AppData\Roaming\HP Support Assistant
O43 - CFD: 06/12/2010 - 17:53:34 - [0,104] ----D- C:\Users\Béa\AppData\Roaming\hpqLog
O43 - CFD: 25/11/2010 - 19:31:48 - [0,000] ----D- C:\Users\Béa\AppData\Roaming\HpUpdate
O43 - CFD: 20/12/2010 - 20:01:36 - [0,000] ----D- C:\Users\Béa\AppData\Roaming\Identities
O43 - CFD: 21/08/2011 - 20:23:06 - [0] ----D- C:\Users\Béa\AppData\Roaming\InstallShield
O43 - CFD: 19/11/2010 - 13:02:50 - [0,001] ----D- C:\Users\Béa\AppData\Roaming\Macromedia
O43 - CFD: 04/12/2011 - 14:38:18 - [0,003] ----D- C:\Users\Béa\AppData\Roaming\Malwarebytes
O43 - CFD: 12/06/2010 - 08:58:54 - [0] ----D- C:\Users\Béa\AppData\Roaming\Media Center Programs
O43 - CFD: 10/01/2012 - 13:16:36 - [25,043] -S--D- C:\Users\Béa\AppData\Roaming\Microsoft
O43 - CFD: 20/11/2010 - 18:12:14 - [36,806] ----D- C:\Users\Béa\AppData\Roaming\Mozilla
O43 - CFD: 18/11/2011 - 20:25:14 - [0] ----D- C:\Users\Béa\AppData\Roaming\Nosibay
O43 - CFD: 01/12/2010 - 07:40:22 - [0,000] ----D- C:\Users\Béa\AppData\Roaming\Philips
O43 - CFD: 01/12/2010 - 07:38:28 - [5,621] ----D- C:\Users\Béa\AppData\Roaming\Philips-Songbird
O43 - CFD: 05/04/2011 - 19:50:52 - [0,001] ----D- C:\Users\Béa\AppData\Roaming\PhotoFiltre
O43 - CFD: 20/12/2010 - 20:06:18 - [0,000] ----D- C:\Users\Béa\AppData\Roaming\PhotoFiltre Studio X
O43 - CFD: 18/10/2011 - 15:17:20 - [52,107] ----D- C:\Users\Béa\AppData\Roaming\Real
O43 - CFD: 07/12/2011 - 20:21:52 - [277,400] ----D- C:\Users\Béa\AppData\Roaming\Thunderbird
O43 - CFD: 11/01/2011 - 21:48:50 - [0,040] ----D- C:\Users\Béa\AppData\Roaming\Tific
O43 - CFD: 22/08/2011 - 14:03:48 - [0,105] ----D- C:\Users\Béa\AppData\Roaming\U3
O43 - CFD: 03/01/2012 - 13:08:54 - [0,001] ----D- C:\Users\Béa\AppData\Roaming\VoipBuster
O43 - CFD: 20/11/2010 - 18:05:18 - [0,001] ----D- C:\Users\Béa\AppData\Roaming\WildTangent
O43 - CFD: 21/11/2011 - 12:54:02 - [0,000] ----D- C:\Users\Béa\AppData\Roaming\Windows Live Writer
O43 - CFD: 08/10/2011 - 23:42:34 - [0,000] ----D- C:\Users\Béa\AppData\Roaming\WinRAR
O43 - CFD: 19/11/2010 - 13:07:34 - [0,008] ----D- C:\Users\Béa\AppData\Roaming\_MDLogs
O43 - CFD: 19/11/2010 - 17:10:18 - [0,117] ----D- C:\Users\Béa\AppData\Local\Adobe
O43 - CFD: 02/12/2010 - 20:04:28 - [0] ----D- C:\Users\Béa\AppData\Local\Apple
O43 - CFD: 28/08/2011 - 18:05:18 - [22,423] ----D- C:\Users\Béa\AppData\Local\Apple Computer
O43 - CFD: 17/11/2010 - 11:20:34 - [0] -SH-D- C:\Users\Béa\AppData\Local\Application Data
O43 - CFD: 20/08/2011 - 10:20:32 - [0,057] ----D- C:\Users\Béa\AppData\Local\Cooliris
O43 - CFD: 04/12/2011 - 18:14:34 - [0] ----D- C:\Users\Béa\AppData\Local\CrashDumps
O43 - CFD: 28/12/2010 - 20:28:38 - [0] ----D- C:\Users\Béa\AppData\Local\Cyberlink
O43 - CFD: 02/01/2012 - 12:41:02 - [0] ----D- C:\Users\Béa\AppData\Local\Diagnostics
O43 - CFD: 02/01/2012 - 12:41:02 - [0] ----D- C:\Users\Béa\AppData\Local\ElevatedDiagnostics
O43 - CFD: 15/01/2012 - 19:22:02 - [13,244] ----D- C:\Users\Béa\AppData\Local\Google
O43 - CFD: 19/11/2010 - 17:04:22 - [0,795] ----D- C:\Users\Béa\AppData\Local\Hewlett-Packard
O43 - CFD: 17/11/2010 - 11:20:34 - [0] -SH-D- C:\Users\Béa\AppData\Local\Historique
O43 - CFD: 20/03/2011 - 13:24:42 - [0,057] ----D- C:\Users\Béa\AppData\Local\HP
O43 - CFD: 17/11/2010 - 11:33:02 - [0,002] ----D- C:\Users\Béa\AppData\Local\IsolatedStorage
O43 - CFD: 10/01/2012 - 13:16:36 - [1734,943] ----D- C:\Users\Béa\AppData\Local\Microsoft
O43 - CFD: 02/12/2010 - 20:13:16 - [0,319] ----D- C:\Users\Béa\AppData\Local\Microsoft Games
O43 - CFD: 20/01/2011 - 20:43:38 - [0] ----D- C:\Users\Béa\AppData\Local\Microsoft Help
O43 - CFD: 20/11/2010 - 18:12:04 - [123,122] ----D- C:\Users\Béa\AppData\Local\Mozilla
O43 - CFD: 23/11/2011 - 16:22:32 - [0] ----D- C:\Users\Béa\AppData\Local\PackageAware
O43 - CFD: 01/12/2010 - 07:38:40 - [36,680] ----D- C:\Users\Béa\AppData\Local\Philips-Songbird
O43 - CFD: 11/01/2011 - 21:48:46 - [0,001] ----D- C:\Users\Béa\AppData\Local\Symantec
O43 - CFD: 20/01/2012 - 11:35:06 - [0,154] ----D- C:\Users\Béa\AppData\Local\Temp
O43 - CFD: 17/11/2010 - 11:20:34 - [0] -SH-D- C:\Users\Béa\AppData\Local\Temporary Internet Files
O43 - CFD: 06/12/2011 - 09:18:56 - [11,550] ----D- C:\Users\Béa\AppData\Local\Thunderbird
O43 - CFD: 19/04/2011 - 14:44:52 - [0,414] ----D- C:\Users\Béa\AppData\Local\VirtualStore
O43 - CFD: 19/01/2012 - 13:28:58 - [0,082] ----D- C:\Users\Béa\AppData\Local\Windows Live
O43 - CFD: 12/11/2011 - 11:21:12 - [0,619] ----D- C:\Users\Béa\AppData\Local\Windows Live Writer
O43 - CFD: 09/01/2012 - 16:43:28 - [0,250] ----D- C:\Users\Béa\AppData\Local\WinZip
O43 - CFD: 11/12/2011 - 00:39:52 - [0] ----D- C:\Users\Béa\AppData\Local\{00CA5575-DF8D-4157-AF6F-E1770A1A8E87}
O43 - CFD: 16/11/2011 - 07:17:52 - [0] ----D- C:\Users\Béa\AppData\Local\{0451E25A-181E-4B17-9A6C-8AD3018A9BA6}
O43 - CFD: 21/11/2011 - 01:27:54 - [0] ----D- C:\Users\Béa\AppData\Local\{04C9BDB6-14EE-4776-B44D-DD78116E323C}
O43 - CFD: 07/01/2012 - 13:04:04 - [0] ----D- C:\Users\Béa\AppData\Local\{06CBC6F0-2D5C-486F-B92E-F055CA2D8D3C}
O43 - CFD: 27/11/2011 - 08:39:42 - [0] ----D- C:\Users\Béa\AppData\Local\{0B9507EB-559A-415F-BE69-2BEDA14BFC85}
O43 - CFD: 04/01/2012 - 10:10:32 - [0] ----D- C:\Users\Béa\AppData\Local\{0E1B9E29-1EC4-409F-BA7E-B948C8BF4F41}
O43 - CFD: 08/01/2012 - 18:45:48 - [0] ----D- C:\Users\Béa\AppData\Local\{0FFE9706-55CC-4B56-A408-2D9319C49A8A}
O43 - CFD: 17/01/2012 - 11:25:56 - [0] ----D- C:\Users\Béa\AppData\Local\{12DD4D42-352E-4377-92DB-025EAC768667}
O43 - CFD: 17/01/2012 - 11:26:08 - [0] ----D- C:\Users\Béa\AppData\Local\{18255E49-2D7E-4A7F-B559-2CC61B9841DA}
O43 - CFD: 09/12/2011 - 14:44:56 - [0] ----D- C:\Users\Béa\AppData\Local\{18380F28-C25F-417A-8EF1-D0B7F2B2151E}
O43 - CFD: 17/11/2011 - 07:56:28 - [0] ----D- C:\Users\Béa\AppData\Local\{1965CAB1-3009-4DD9-9563-D95D8D92C7BA}
O43 - CFD: 21/11/2011 - 00:12:46 - [0] ----D- C:\Users\Béa\AppData\Local\{1B9B5156-D322-4AA4-9B78-2DB4D582D79E}
O43 - CFD: 16/11/2011 - 19:22:36 - [0] ----D- C:\Users\Béa\AppData\Local\{1BF9C2AA-359D-416B-9DEB-2089BF1C86CB}
O43 - CFD: 12/11/2011 - 08:54:06 - [0] ----D- C:\Users\Béa\AppData\Local\{1CEAD06F-2916-4A28-A850-DE2991B9EB8E}
O43 - CFD: 02/01/2012 - 10:46:12 - [0] ----D- C:\Users\Béa\AppData\Local\{1E1B57BF-7089-4FD9-A5D4-BD29F57C058F}
O43 - CFD: 19/01/2012 - 13:28:28 - [0] ----D- C:\Users\Béa\AppData\Local\{1E8E0F97-4CD7-4F5B-9DF1-6236C507C386}
O43 - CFD: 09/01/2012 - 09:37:28 - [0] ----D- C:\Users\Béa\AppData\Local\{1F4C8194-5DE3-4B9B-88ED-EB7C2A13C2BF}
O43 - CFD: 06/12/2011 - 13:21:58 - [0] ----D- C:\Users\Béa\AppData\Local\{1F5C91A7-6436-48EF-960B-31BABC65C0AA}
O43 - CFD: 02/12/2011 - 21:30:58 - [0] ----D- C:\Users\Béa\AppData\Local\{221CE238-03DF-4C15-85B0-399A19094D2A}
O43 - CFD: 22/11/2011 - 07:49:42 - [0] ----D- C:\Users\Béa\AppData\Local\{233268E4-B018-409F-AD62-3F0F45FD5DFC}
O43 - CFD: 14/12/2011 - 16:36:46 - [0] ----D- C:\Users\Béa\AppData\Local\{238401FA-5ECE-4365-80EB-BC20350049D8}
O43 - CFD: 16/01/2012 - 09:49:24 - [0] ----D- C:\Users\Béa\AppData\Local\{23C9863B-0854-4296-9A6A-061A9AAAE8D8}
O43 - CFD: 18/01/2012 - 13:18:50 - [0] ----D- C:\Users\Béa\AppData\Local\{24DD56ED-5D1E-46E0-9083-1FA8CBAF6187}
O43 - CFD: 25/11/2011 - 02:29:18 - [0] ----D- C:\Users\Béa\AppData\Local\{28C91012-6966-41D2-B158-90DDDEFDA4E1}
O43 - CFD: 19/01/2012 - 13:28:44 - [0] ----D- C:\Users\Béa\AppData\Local\{2B616E9F-F12B-4F1B-9C9E-363CD60E601A}
O43 - CFD: 26/11/2011 - 19:53:36 - [0] ----D- C:\Users\Béa\AppData\Local\{2F812CCD-76CC-4429-9018-7D74BC77BBA8}
O43 - CFD: 15/12/2011 - 11:52:16 - [0] ----D- C:\Users\Béa\AppData\Local\{30F39C65-BC43-4B07-9197-961C9A9ADA46}
O43 - CFD: 14/12/2011 - 04:28:10 - [0] ----D- C:\Users\Béa\AppData\Local\{31E9A994-FD8B-4773-BFC9-61F94CC74947}
O43 - CFD: 03/12/2011 - 11:53:16 - [0] ----D- C:\Users\Béa\AppData\Local\{32BA4C00-1837-4356-B5F7-B6264F8126E6}
O43 - CFD: 09/01/2012 - 16:49:56 - [0] ----D- C:\Users\Béa\AppData\Local\{3407F718-CD45-4734-B4C9-0A271BC3BBF0}
O43 - CFD: 15/01/2012 - 11:03:52 - [0] ----D- C:\Users\Béa\AppData\Local\{35174762-2D5C-431A-9614-2BD7BF09E461}
O43 - CFD: 11/01/2012 - 21:35:46 - [0] ----D- C:\Users\Béa\AppData\Local\{37CE5633-E4DD-40ED-AB45-EB4C9D65676F}
O43 - CFD: 15/12/2011 - 11:52:26 - [0] ----D- C:\Users\Béa\AppData\Local\{385D4EA7-CE04-425C-A378-F49FE6D6654D}
O43 - CFD: 20/11/2011 - 09:00:52 - [0] ----D- C:\Users\Béa\AppData\Local\{3A5421C3-3075-4A76-A443-0DC51C826889}
O43 - CFD: 04/12/2011 - 16:25:06 - [0] ----D- C:\Users\Béa\AppData\Local\{3ABF6DB7-3350-4C9E-86D2-77DD26447F80}
O43 - CFD: 14/11/2011 - 15:56:10 - [0] ----D- C:\Users\Béa\AppData\Local\{3BA86835-882E-4081-ADAE-12F0DA96C95A}
O43 - CFD: 02/12/2011 - 09:26:46 - [0] ----D- C:\Users\Béa\AppData\Local\{3BC71BDC-B75E-4847-B1F7-DBA194398E2C}
O43 - CFD: 11/12/2011 - 03:59:38 - [0] ----D- C:\Users\Béa\AppData\Local\{3D577963-C1AD-43B7-A9FC-FB0E6282958C}
O43 - CFD: 18/11/2011 - 06:46:18 - [0] ----D- C:\Users\Béa\AppData\Local\{3F788416-F4A6-4219-8BE5-31B8F192A89B}
O43 - CFD: 18/11/2011 - 19:04:44 - [0] ----D- C:\Users\Béa\AppData\Local\{401AA358-68EC-4510-A1F2-15D251637C3E}
O43 - CFD: 18/01/2012 - 13:19:06 - [0] ----D- C:\Users\Béa\AppData\Local\{40BE3550-EB23-40EB-8C59-EB68613240BF}
O43 - CFD: 27/11/2011 - 08:40:02 - [0] ----D- C:\Users\Béa\AppData\Local\{41A9712A-F897-445D-8395-3CE6BFDFC368}
O43 - CFD: 06/12/2011 - 08:55:52 - [0] ----D- C:\Users\Béa\AppData\Local\{4332FB9A-BD56-47A3-9248-00923F7C074D}
O43 - CFD: 30/11/2011 - 11:40:28 - [0] ----D- C:\Users\Béa\AppData\Local\{44DF8B2D-F08D-4E75-969F-7141733E3BFF}
O43 - CFD: 14/11/2011 - 03:55:14 - [0] ----D- C:\Users\Béa\AppData\Local\{45E3603B-20D4-45EC-9702-E79EE43B2B4A}
O43 - CFD: 05/01/2012 - 10:33:00 - [0] ----D- C:\Users\Béa\AppData\Local\{47751D58-B194-4D00-887B-3E6708086AD5}
O43 - CFD: 05/12/2011 - 17:33:08 - [0] ----D- C:\Users\Béa\AppData\Local\{49DA021E-81A3-445A-9936-B03F37E2EE74}
O43 - CFD: 04/12/2011 - 16:24:56 - [0] ----D- C:\Users\Béa\AppData\Local\{4ED02BA5-741D-43D3-BBD5-6FFED1311765}
O43 - CFD: 17/11/2011 - 07:56:20 - [0] ----D- C:\Users\Béa\AppData\Local\{51926F94-2B9E-4802-91DC-B5FFDF304961}
O43 - CFD: 18/11/2011 - 19:04:34 - [0] ----D- C:\Users\Béa\AppData\Local\{52CD2617-3775-4E92-B091-4646EB764EE0}
O43 - CFD: 11/01/2012 - 08:58:14 - [0] ----D- C:\Users\Béa\AppData\Local\{54E932E8-E9E9-40F1-BAB9-41F7FBC04C24}
O43 - CFD: 12/01/2012 - 09:38:38 - [0] ----D- C:\Users\Béa\AppData\Local\{57726EF3-E442-466A-9FB2-FF61F32CCB67}
O43 - CFD: 12/11/2011 - 08:53:30 - [0] ----D- C:\Users\Béa\AppData\Local\{59BCB618-E256-4A40-97CC-A9DA7826F8ED}
O43 - CFD: 14/01/2012 - 10:04:14 - [0] ----D- C:\Users\Béa\AppData\Local\{5D23663F-617B-4BD2-A848-AF332BE9E135}
O43 - CFD: 18/11/2011 - 06:45:44 - [0] ----D- C:\Users\Béa\AppData\Local\{5D9C442C-ABFE-4FDF-BF64-CBF58054E61E}
O43 - CFD: 11/01/2012 - 21:35:36 - [0] ----D- C:\Users\Béa\AppData\Local\{5FE5E9F1-E468-4251-8CDC-6CEB1D18341C}
O43 - CFD: 25/11/2011 - 02:29:26 - [0] ----D- C:\Users\Béa\AppData\Local\{60A5A39D-CF8C-4CAF-91B5-B9E58654D672}
O43 - CFD: 30/11/2011 - 13:38:20 - [0] ----D- C:\Users\Béa\AppData\Local\{633BB6FE-FA95-4EC3-91AE-5CC4E6E8F911}
O43 - CFD: 31/12/2011 - 12:03:40 - [0] ----D- C:\Users\Béa\AppData\Local\{639A1107-2795-4C3E-8B55-02337C3F3928}
O43 - CFD: 13/11/2011 - 11:12:48 - [0] ----D- C:\Users\Béa\AppData\Local\{63FD2747-FC89-4D87-9E07-F6F34414EFEA}
O43 - CFD: 21/11/2011 - 13:35:32 - [0] ----D- C:\Users\Béa\AppData\Local\{642FFAAB-CE51-47B4-84FD-0BA384BC488E}
O43 - CFD: 12/01/2012 - 09:38:48 - [0] ----D- C:\Users\Béa\AppData\Local\{6502E1BB-8F55-4AD8-88F6-36EA97CC61C7}
O43 - CFD: 29/11/2011 - 06:28:30 - [0] ----D- C:\Users\Béa\AppData\Local\{66C497C0-C02F-492A-8F30-745D4CE2FDC0}
O43 - CFD: 26/11/2011 - 19:53:48 - [0] ----D- C:\Users\Béa\AppData\Local\{673781D7-591A-40C7-9B42-7248F93A7E0F}
O43 - CFD: 21/11/2011 - 13:35:46 - [0] ----D- C:\Users\Béa\AppData\Local\{683AB2D3-FAE4-4442-96D7-707BE09C502F}
O43 - CFD: 24/11/2011 - 07:42:54 - [0] ----D- C:\Users\Béa\AppData\Local\{68AE3217-99D8-490A-856B-8DB7851C00A0}
O43 - CFD: 05/01/2012 - 10:33:16 - [0] ----D- C:\Users\Béa\AppData\Local\{69D54205-5EF2-4EF6-8645-297072F98F8F}
O43 - CFD: 08/01/2012 - 18:45:26 - [0] ----D- C:\Users\Béa\AppData\Local\{6B43933D-FB28-4F40-8E7B-E45B2627C3C0}
O43 - CFD: 30/11/2011 - 17:30:50 - [0] ----D- C:\Users\Béa\AppData\Local\{6DF9071A-AD68-48A6-B46D-9565C1765A9E}
O43 - CFD: 09/12/2011 - 03:00:26 - [0] ----D- C:\Users\Béa\AppData\Local\{73FF9C86-D114-48E7-BC38-F1BD3735044E}
O43 - CFD: 14/12/2011 - 04:27:58 - [0] ----D- C:\Users\Béa\AppData\Local\{74B5E00C-74F5-449D-B918-2AAC048A4BEC}
O43 - CFD: 05/12/2011 - 17:44:58 - [0] ----D- C:\Users\Béa\AppData\Local\{755ED024-EAC0-444A-8393-E2D52F2B3C45}
O43 - CFD: 19/11/2011 - 08:22:28 - [0] ----D- C:\Users\Béa\AppData\Local\{758D464B-7FA2-40BA-ABE0-EAAA524628F1}
O43 - CFD: 30/11/2011 - 11:40:38 - [0] ----D- C:\Users\Béa\AppData\Local\{77026044-C1D8-44F0-8799-52307AE0D7FC}
O43 - CFD: 16/12/2011 - 07:48:14 - [0] ----D- C:\Users\Béa\AppData\Local\{773A4636-5A2C-4640-959D-C85668C260E8}
O43 - CFD: 06/12/2011 - 14:07:58 - [0] ----D- C:\Users\Béa\AppData\Local\{77C64503-457C-4ADF-86AC-6C05D1DD3328}
O43 - CFD: 26/11/2011 - 06:52:16 - [0] ----D- C:\Users\Béa\AppData\Local\{780B5262-B262-460E-8834-B410FEC446B0}
O43 - CFD: 28/11/2011 - 03:03:44 - [0] ----D- C:\Users\Béa\AppData\Local\{781D7AD1-873A-4E29-BB5B-8226A51247F9}
O43 - CFD: 03/01/2012 - 10:31:56 - [0] ----D- C:\Users\Béa\AppData\Local\{783A28A2-2875-47C8-B364-312FB39165E8}
O43 - CFD: 28/11/2011 - 16:51:56 - [0] ----D- C:\Users\Béa\AppData\Local\{78AD8F99-969C-4036-9E45-CAFF13D7D923}
O43 - CFD: 13/12/2011 - 08:38:20 - [0] ----D- C:\Users\Béa\AppData\Local\{7BBBD556-99EC-4E33-8AC8-05EEB4B16F8C}
O43 - CFD: 08/12/2011 - 08:03:34 - [0] ----D- C:\Users\Béa\AppData\Local\{7EFA05BF-ACC5-43FB-AD77-5267CD224D8E}
O43 - CFD: 10/12/2011 - 10:32:28 - [0] ----D- C:\Users\Béa\AppData\Local\{7F3B37F8-5BBE-4526-BA53-0CEC2DFA7499}
O43 - CFD: 07/12/2011 - 05:48:28 - [0] ----D- C:\Users\Béa\AppData\Local\{8032CBB0-0ED1-426B-9489-93EAFD00A83F}
O43 - CFD: 02/12/2011 - 09:26:56 - [0] ----D- C:\Users\Béa\AppData\Local\{840FEC93-8F65-4F5F-BBB5-AAA7E512DFF5}
O43 - CFD: 21/11/2011 - 01:28:04 - [0] ----D- C:\Users\Béa\AppData\Local\{845813ED-19E7-48FF-B88E-6CEF7F874AB6}
O43 - CFD: 26/11/2011 - 06:51:56 - [0] ----D- C:\Users\Béa\AppData\Local\{8461A65B-2FDC-4435-8BB6-2D4E69C4FE3C}
O43 - CFD: 18/11/2011 - 06:46:36 - [0] ----D- C:\Users\Béa\AppData\Local\{86641DAE-5396-4E4C-8CB8-60A721CEF70E}
O43 - CFD: 14/01/2012 - 10:05:16 - [0] ----D- C:\Users\Béa\AppData\Local\{884703F2-01EA-4627-B405-97A77C6D3231}
O43 - CFD: 23/11/2011 - 18:56:26 - [0] ----D- C:\Users\Béa\AppData\Local\{89BD71DE-8DBA-4F9F-9431-D69F5A755736}
O43 - CFD: 09/01/2012 - 16:49:46 - [0] ----D- C:\Users\Béa\AppData\Local\{8C08D59A-7D37-44DB-A68B-3482877928DB}
O43 - CFD: 01/12/2011 - 12:42:08 - [0] ----D- C:\Users\Béa\AppData\Local\{8CD3FD7B-3C92-4827-89A5-B1E11DFE6C6F}
O43 - CFD: 01/01/2012 - 13:24:28 - [0] ----D- C:\Users\Béa\AppData\Local\{8CD791EC-3072-4B31-AD00-2C6B51D608FD}
O43 - CFD: 13/01/2012 - 09:28:20 - [0] ----D- C:\Users\Béa\AppData\Local\{8CE4C6C8-8D4C-444B-86DE-4643586E187C}
O43 - CFD: 06/12/2011 - 08:55:42 - [0] ----D- C:\Users\Béa\AppData\Local\{8D8C3D0E-FCB8-4C60-9D58-E56D1EE5F0F5}
O43 - CFD: 30/11/2011 - 17:30:40 - [0] ----D- C:\Users\Béa\AppData\Local\{8E19BB9F-99E6-4429-94E8-0CAE1FE09E7E}
O43 - CFD: 08/12/2011 - 19:59:18 - [0] ----D- C:\Users\Béa\AppData\Local\{8E1CB69D-B205-4369-B9C6-B0603797412D}
O43 - CFD: 16/12/2011 - 07:47:52 - [0] ----D- C:\Users\Béa\AppData\Local\{8F90C708-D20E-4289-951B-311664EBABAF}
O43 - CFD: 05/12/2011 - 17:33:30 - [0] ----D- C:\Users\Béa\AppData\Local\{92B3DCED-3CF7-4453-B3A1-28530E85A33C}
O43 - CFD: 16/01/2012 - 09:49:34 - [0] ----D- C:\Users\Béa\AppData\Local\{93ED803C-642B-4CB2-9E4B-CFB527275938}
O43 - CFD: 28/11/2011 - 01:16:50 - [0] ----D- C:\Users\Béa\AppData\Local\{9783D33C-F091-4D3F-B5BA-8811B28F80E3}
O43 - CFD: 08/12/2011 - 08:03:22 - [0] ----D- C:\Users\Béa\AppData\Local\{9A4F68C0-3506-4766-A44B-5C18D1069AE2}
O43 - CFD: 15/11/2011 - 15:49:16 - [0] ----D- C:\Users\Béa\AppData\Local\{9B37FE7C-1ED8-4DD7-AE36-79381C3E5D20}
O43 - CFD: 06/01/2012 - 18:38:50 - [0] ----D- C:\Users\Béa\AppData\Local\{9B4EC714-0D1A-479D-8967-AF0F352CBC06}
O43 - CFD: 12/12/2011 - 11:22:50 - [0] ----D- C:\Users\Béa\AppData\Local\{A17394F1-DBED-47C5-BBB7-1C5AF2499A1D}
O43 - CFD: 28/11/2011 - 16:52:06 - [0] ----D- C:\Users\Béa\AppData\Local\{A3EB63AA-81AF-4740-A6F9-636CA6426611}
O43 - CFD: 16/11/2011 - 19:22:46 - [0] ----D- C:\Users\Béa\AppData\Local\{A70D0935-8913-4E9E-952B-C41E70067724}
O43 - CFD: 06/12/2011 - 14:08:34 - [0] ----D- C:\Users\Béa\AppData\Local\{A793B3BA-2029-477F-96FB-4A1412998C95}
O43 - CFD: 03/12/2011 - 11:53:26 - [0] ----D- C:\Users\Béa\AppData\Local\{A7B47CA4-7FE1-42EC-926D-F7CE9C4D9A20}
O43 - CFD: 24/11/2011 - 07:42:44 - [0] ----D- C:\Users\Béa\AppData\Local\{A8B5FD0C-606D-46BC-9995-1FF4E5FA86D0}
O43 - CFD: 04/12/2011 - 03:22:56 - [0] ----D- C:\Users\Béa\AppData\Local\{A97A38AD-EA59-4C98-AA5B-70760F6B3297}
O43 - CFD: 09/12/2011 - 09:02:30 - [0] ----D- C:\Users\Béa\AppData\Local\{A9D02A42-B385-4B00-827D-027314EFF481}
O43 - CFD: 15/01/2012 - 11:04:02 - [0] ----D- C:\Users\Béa\AppData\Local\{AA95C94B-BD02-4E66-8C6D-FE0C5A4BE899}
O43 - CFD: 07/01/2012 - 08:27:36 - [0] ----D- C:\Users\Béa\AppData\Local\{AB8F99AE-7055-4314-A268-75E7F0F8C9EC}
O43 - CFD: 28/11/2011 - 03:03:54 - [0] ----D- C:\Users\Béa\AppData\Local\{ACD4D207-F574-4F14-885A-1B8FAB981F4D}
O43 - CFD: 10/01/2012 - 10:50:46 - [0] ----D- C:\Users\Béa\AppData\Local\{B42F28B2-549C-4993-A519-EF59E647812B}
O43 - CFD: 13/01/2012 - 09:28:10 - [0] ----D- C:\Users\Béa\AppData\Local\{B72425CB-E218-4E03-B995-CF364FE50273}
O43 - CFD: 02/12/2011 - 21:30:40 - [0] ----D- C:\Users\Béa\AppData\Local\{B88B1CBD-4088-4678-8854-3D2BBEE06552}
O43 - CFD: 10/12/2011 - 10:32:38 - [0] ----D- C:\Users\Béa\AppData\Local\{B942AB5F-A7D1-435F-BE7A-7A9BACAF9821}
O43 - CFD: 10/01/2012 - 10:50:56 - [0] ----D- C:\Users\Béa\AppData\Local\{BEA4026A-D26C-4230-A1E2-AA171B4A9464}
O43 - CFD: 14/11/2011 - 15:55:58 - [0] ----D- C:\Users\Béa\AppData\Local\{C2A48D72-DB43-44F7-AC21-2A3E61B21467}
O43 - CFD: 01/01/2012 - 13:24:18 - [0] ----D- C:\Users\Béa\AppData\Local\{C3DB8E35-2265-4B58-849D-AA19FE366B0D}
O43 - CFD: 04/01/2012 - 10:10:50 - [0] ----D- C:\Users\Béa\AppData\Local\{C5005725-8E94-4865-8F00-190B4203E9BE}
O43 - CFD: 14/11/2011 - 03:54:58 - [0] ----D- C:\Users\Béa\AppData\Local\{C7FD352E-B579-4308-9631-DE227EC9AD6C}
O43 - CFD: 11/12/2011 - 03:59:20 - [0] ----D- C:\Users\Béa\AppData\Local\{CB1614C0-C3E1-4BF7-B0CC-3AA873D07555}
O43 - CFD: 06/01/2012 - 07:45:54 - [0] ----D- C:\Users\Béa\AppData\Local\{D0959B37-75F5-4455-B13A-CEF819AD4E1C}
O43 - CFD: 31/12/2011 - 12:03:24 - [0] ----D- C:\Users\Béa\AppData\Local\{D0EC99B2-331C-4D0D-A9C8-22E90FC9A87C}
O43 - CFD: 02/12/2011 - 04:06:08 - [0] ----D- C:\Users\Béa\AppData\Local\{D18984D7-AC49-41CF-A9EC-983A727B9F18}
O43 - CFD: 11/01/2012 - 08:58:36 - [0] ----D- C:\Users\Béa\AppData\Local\{D4D0BA53-FF8C-47C8-9BB6-12EBC8EFBB0A}
O43 - CFD: 05/12/2011 - 17:45:12 - [0] ----D- C:\Users\Béa\AppData\Local\{D5F91EB7-337D-401A-9627-19CF136C17D8}
O43 - CFD: 06/01/2012 - 18:38:40 - [0] ----D- C:\Users\Béa\AppData\Local\{D6668D15-9336-4273-9F2C-5A7FCD6B55B0}
O43 - CFD: 08/12/2011 - 20:44:00 - [0] ----D- C:\Users\Béa\AppData\Local\{D78F86F7-2C8F-486E-B08B-932E090077E9}
O43 - CFD: 30/11/2011 - 13:41:40 - [0] ----D- C:\Users\Béa\AppData\Local\{D958507D-5942-4F38-9BB2-9D9EA69CCE2D}
O43 - CFD: 23/11/2011 - 18:56:16 - [0] ----D- C:\Users\Béa\AppData\Local\{DA5AE070-C7BC-4237-A7BD-2BA480B725E6}
O43 - CFD: 13/11/2011 - 11:12:32 - [0] ----D- C:\Users\Béa\AppData\Local\{DAA41A1F-F7DF-4ED8-9D97-D3BD0EC10B93}
O43 - CFD: 10/12/2011 - 04:49:46 - [0] ----D- C:\Users\Béa\AppData\Local\{E04AFBF1-DC27-4288-943D-3DAAC50C4C78}
O43 - CFD: 02/01/2012 - 20:19:46 - [0] ----D- C:\Users\Béa\AppData\Local\{E0CCA8A2-CEFF-4C8B-9F85-167E5B917AA4}
O43 - CFD: 03/01/2012 - 10:32:08 - [0] ----D- C:\Users\Béa\AppData\Local\{E0E6822D-A4E4-4A7A-B6EF-6351E5682FB0}
O43 - CFD: 16/11/2011 - 07:18:02 - [0] ----D- C:\Users\Béa\AppData\Local\{E1810632-3948-4756-B954-C593945DF84A}
O43 - CFD: 07/12/2011 - 05:48:38 - [0] ----D- C:\Users\Béa\AppData\Local\{E4537D08-722C-4119-86AC-86DA276CEFA4}
O43 - CFD: 15/11/2011 - 15:49:16 - [0] ----D- C:\Users\Béa\AppData\Local\{E59615E7-62B1-4156-A321-E70C6AEA782A}
O43 - CFD: 06/12/2011 - 13:22:10 - [0] ----D- C:\Users\Béa\AppData\Local\{E5EB6938-F7D2-441B-96D1-6516159B7868}
O43 - CFD: 09/12/2011 - 03:00:24 - [0] ----D- C:\Users\Béa\AppData\Local\{E75D5853-2D1E-42DB-BD8E-3CADE576B251}
O43 - CFD: 12/12/2011 - 11:22:40 - [0] ----D- C:\Users\Béa\AppData\Local\{E89C307E-8EE4-4EDF-8648-5805354838F0}
O43 - CFD: 08/12/2011 - 20:42:50 - [0] ----D- C:\Users\Béa\AppData\Local\{EA5EB3DF-489C-4E19-BEB1-BE901A7E524C}
O43 - CFD: 09/01/2012 - 09:37:16 - [0] ----D- C:\Users\Béa\AppData\Local\{EADBBEA1-92F7-4CAE-9C23-FA3E99F8A4CF}
O43 - CFD: 19/11/2011 - 08:22:18 - [0] ----D- C:\Users\Béa\AppData\Local\{EBB919F0-3E10-428F-B243-5FC8C6401D8A}
O43 - CFD: 29/11/2011 - 06:28:40 - [0] ----D- C:\Users\Béa\AppData\Local\{ED691898-8EFA-400D-A495-87BA838B2D00}
O43 - CFD: 12/12/2011 - 23:58:16 - [0] ----D- C:\Users\Béa\AppData\Local\{EDB23320-2A90-4D8B-B820-9A1D48EA9D63}
O43 - CFD: 14/12/2011 - 16:36:36 - [0] ----D- C:\Users\Béa\AppData\Local\{EE952C56-A180-4B06-8DDC-A71885EC2F42}
O43 - CFD: 22/11/2011 - 15:04:06 - [0] ----D- C:\Users\Béa\AppData\Local\{F00C1485-85F5-4F82-8FCB-040C758C9BF8}
O43 - CFD: 13/12/2011 - 08:38:30 - [0] ----D- C:\Users\Béa\AppData\Local\{F0C13A54-DB87-44B2-B022-4E02413F3CFD}
O43 - CFD: 22/11/2011 - 15:03:56 - [0] ----D- C:\Users\Béa\AppData\Local\{F1BCED48-88CF-4B5D-95E2-403BCB5EA757}
O43 - CFD: 10/12/2011 - 04:49:46 - [0] ----D- C:\Users\Béa\AppData\Local\{F42694EB-7FB8-4C9C-A1A0-734BF28DC280}
O43 - CFD: 20/11/2011 - 09:00:42 - [0] ----D- C:\Users\Béa\AppData\Local\{F56454BB-26E2-4020-AC04-84B7F041CFBD}
O43 - CFD: 07/01/2012 - 13:03:30 - [0] ----D- C:\Users\Béa\AppData\Local\{F64303AE-1D04-4CC0-B28F-AAAEB99FDB65}
O43 - CFD: 02/12/2011 - 04:06:04 - [0] ----D- C:\Users\Béa\AppData\Local\{F66E3F35-DD9E-4D49-A574-33ED74FE3FA8}
O43 - CFD: 08/12/2011 - 20:43:50 - [0] ----D- C:\Users\Béa\AppData\Local\{F6A18A0D-0AD7-4D1A-B243-34CE073A2580}
O43 - CFD: 28/11/2011 - 01:16:54 - [0] ----D- C:\Users\Béa\AppData\Local\{F8DAA842-F31E-449C-A123-6C8C39AC14C5}
O43 - CFD: 08/12/2011 - 19:59:08 - [0] ----D- C:\Users\Béa\AppData\Local\{FBC0BD51-A36D-4EFE-AFAB-20CC3C037DC5}
O43 - CFD: 04/12/2011 - 03:23:06 - [0] ----D- C:\Users\Béa\AppData\Local\{FDB8B524-8A76-49C4-917B-19AFBAD906BD}
O43 - CFD: 12/12/2011 - 23:58:12 - [0] ----D- C:\Users\Béa\AppData\Local\{FEA99CD7-2365-4D4A-BB0A-DC8D0D58103B}
O43 - CFD: 01/12/2011 - 12:41:58 - [0] ----D- C:\Users\Béa\AppData\Local\{FFD542C0-45BD-4364-96F6-64E2DE3C1097}
O43 - CFD: 25/09/2011 - 16:23:28 - [88,494] ----D- C:\Program Files (x86)\Ad-Remover
O43 - CFD: 12/05/2010 - 18:48:16 - [656,710] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 09/01/2012 - 16:43:12 - [1,038] ----D- C:\Program Files (x86)\adobs
O43 - CFD: 20/03/2011 - 13:46:04 - [14,741] ----D- C:\Program Files (x86)\Alliance MCA
O43 - CFD: 12/08/2011 - 17:27:54 - [2,316] ----D- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 09/01/2012 - 16:43:12 - [53,222] ----D- C:\Program Files (x86)\AVS4YOU
O43 - CFD: 19/11/2010 - 17:08:38 - [32,619] ----D- C:\Program Files (x86)\Bbox
O43 - CFD: 19/11/2010 - 17:08:44 - [0,219] ----D- C:\Program Files (x86)\BboxUpdate
O43 - CFD: 08/09/2011 - 13:58:54 - [10,213] ----D- C:\Program Files (x86)\CDex
O43 - CFD: 09/01/2012 - 16:40:56 - [439,555] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 25/09/2011 - 15:39:14 - [29,417] ----D- C:\Program Files (x86)\ConvertHelper
O43 - CFD: 11/06/2010 - 23:20:50 - [1649,931] ----D- C:\Program Files (x86)\CyberLink
O43 - CFD: 19/11/2010 - 13:17:52 - [99,508] ----D- C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 27/11/2011 - 17:39:28 - [0,000] ----D- C:\Program Files (x86)\Free Hide Folder
O43 - CFD: 27/08/2011 - 19:09:16 - [8,314] ----D- C:\Program Files (x86)\Globe7
O43 - CFD: 18/11/2011 - 12:53:34 - [425,235] ----D- C:\Program Files (x86)\Google
O43 - CFD: 28/11/2011 - 18:52:14 - [10,559] ----D- C:\Program Files (x86)\GSM SIM Utility 5.15
O43 - CFD: 18/03/2011 - 10:53:16 - [346,210] ----D- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 20/03/2011 - 12:26:02 - [5,885] ----D- C:\Program Files (x86)\Hp
O43 - CFD: 12/05/2010 - 17:29:42 - [365,624] ----D- C:\Program Files (x86)\HP Games
O43 - CFD: 19/01/2012 - 15:52:58 - [1,939] ----D- C:\Program Files (x86)\iLivid
O43 - CFD: 09/01/2012 - 16:43:12 - [0,846] ----D- C:\Program Files (x86)\IncrediMail Converter Pro Trial v.4.1
O43 - CFD: 18/12/2010 - 11:48:08 - [0] ----D- C:\Program Files (x86)\INFO Z SERVICE
O43 - CFD: 09/01/2012 - 16:41:04 - [176,092] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 29/11/2011 - 13:28:42 - [77,700] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 14/12/2011 - 19:36:06 - [5,554] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 27/08/2011 - 10:55:12 - [116,731] ----D- C:\Program Files (x86)\iTunes
O43 - CFD: 22/11/2011 - 08:09:34 - [87,945] ----D- C:\Program Files (x86)\Java
O43 - CFD: 09/01/2012 - 16:43:12 - [69,171] ----D- C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 11/01/2012 - 08:56:36 - [12,118] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 09/01/2012 - 16:48:08 - [0] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 29/06/2011 - 11:46:36 - [351,381] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 12/01/2011 - 06:42:44 - [7,431] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 14/10/2011 - 08:18:14 - [36,633] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 12/05/2010 - 17:02:14 - [1,745] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 22/01/2011 - 11:27:28 - [137,975] ----D- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 12/05/2010 - 18:04:44 - [0,301] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 24/11/2011 - 16:32:40 - [48,641] ----D- C:\Program Files (x86)\Moai
O43 - CFD: 07/12/2011 - 20:26:06 - [1,663] ----D- C:\Program Files (x86)\MozBackup
O43 - CFD: 10/01/2012 - 13:23:14 - [40,517] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 07/12/2011 - 20:22:34 - [38,270] ----D- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 14/07/2009 - 06:32:40 - [0,025] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 08/12/2011 - 20:01:06 - [6,099] ----D- C:\Program Files (x86)\MSECache
O43 - CFD: 11/06/2010 - 23:15:54 - [1,107] ----D- C:\Program Files (x86)\MSN Toolbar Installer
O43 - CFD: 09/01/2012 - 16:50:02 - [0] ----D- C:\Program Files (x86)\NirSoft
O43 - CFD: 17/11/2010 - 11:21:42 - [19,874] R---D- C:\Program Files (x86)\Online Services
O43 - CFD: 21/08/2011 - 20:24:46 - [0,585] ----D- C:\Program Files (x86)\Panasonic
O43 - CFD: 11/01/2012 - 10:23:24 - [101,228] ----D- C:\Program Files (x86)\Philips
O43 - CFD: 05/04/2011 - 19:49:20 - [3,528] ----D- C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 12/08/2011 - 17:35:00 - [72,190] ----D- C:\Program Files (x86)\QuickTime
O43 - CFD: 25/10/2011 - 00:04:58 - [91,541] ----D- C:\Program Files (x86)\Real
O43 - CFD: 29/11/2011 - 14:19:24 - [23,130] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:40 - [37,345] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 27/08/2011 - 10:56:56 - [42,312] ----D- C:\Program Files (x86)\Safari
O43 - CFD: 18/02/2011 - 07:16:12 - [1,082] ----D- C:\Program Files (x86)\ScreensCorner
O43 - CFD: 19/01/2012 - 16:43:18 - [61,993] ----D- C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 19/11/2010 - 17:04:42 - [0,015] ----D- C:\Program Files (x86)\Techcity
O43 - CFD: 11/06/2010 - 23:11:16 - [0] --H-D- C:\Program Files (x86)\Temp
O43 - CFD: 26/08/2011 - 20:57:04 - [0,749] ----D- C:\Program Files (x86)\TotalReduc
O43 - CFD: 14/07/2009 - 05:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 30/11/2011 - 13:34:08 - [4,901] ----D- C:\Program Files (x86)\USBESTDI
O43 - CFD: 09/01/2012 - 18:38:18 - [2,818] ----D- C:\Program Files (x86)\USIM Editor
O43 - CFD: 06/01/2012 - 18:44:52 - [0,013] ----D- C:\Program Files (x86)\Viguer.net
O43 - CFD: 04/01/2012 - 10:12:24 - [0] ----D- C:\Program Files (x86)\VoipBuster.com
O43 - CFD: 13/05/2010 - 02:32:56 - [0,500] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 11/11/2011 - 21:31:58 - [177,429] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 29/05/2011 - 14:15:12 - [5,895] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 29/05/2011 - 14:15:12 - [5,090] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:40 - [11,632] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 29/05/2011 - 14:15:12 - [4,213] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 29/05/2011 - 14:15:12 - [0,181] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 09/01/2012 - 16:43:36 - [6,452] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 08/10/2011 - 23:57:46 - [0,000] ----D- C:\Program Files (x86)\WinRAR
O43 - CFD: 29/11/2011 - 08:50:38 - [35,939] ----D- C:\Program Files (x86)\WinZip
O43 - CFD: 27/12/2010 - 20:41:40 - [0,632] ----D- C:\Program Files (x86)\Yahoo!
O43 - CFD: 20/01/2012 - 11:36:34 - [10,092] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 12/05/2010 - 18:47:42 - [15,670] ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 12/05/2010 - 18:48:12 - [30,315] ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 09/01/2012 - 16:43:12 - [89,936] ----D- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 01/01/2012 - 15:53:14 - [0,642] ----D- C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 11/06/2010 - 23:21:24 - [0,132] ----D- C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 12/05/2010 - 18:04:46 - [0,089] ----D- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 12/05/2010 - 16:58:52 - [5,450] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 11/06/2010 - 23:08:22 - [13,578] ----D- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 20/06/2011 - 19:26:44 - [1,201] ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 11/06/2010 - 23:14:46 - [34,404] ----D- C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 11/11/2011 - 20:45:18 - [181,901] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 11/06/2010 - 23:09:26 - [0,159] ----D- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 04:20:10 - [0,003] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [39,200] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 20/01/2011 - 11:09:22 - [0] ----D- C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 10/11/2011 - 03:21:26 - [26,541] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 12/05/2010 - 16:59:50 - [0] ----D- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 25/10/2011 - 00:04:50 - [0,336] ----D- C:\Program Files (x86)\Common Files\xing shared
~ Scan Program Folder in 01mn 24s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.0EFA27DAD2B55D5D0DB7CD7B949F2599] - 20/01/2012 - 11:30:56 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1867825]
O44 - LFC:[MD5.8FF8916B0B0C76C9870D64DDBBEC2388] - 20/01/2012 - 11:20:53 ---A- . (...) -- C:\Windows\setupact.log   [2234]
O44 - LFC:[MD5.E055F16547F03605570F520F5DC6E508] - 20/01/2012 - 11:20:53 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.764113D0B598C24D9E10D16856FC56A0] - 19/01/2012 - 17:06:21 ---A- . (...) -- C:\Windows\PFRO.log   [1154]
O44 - LFC:[MD5.CC435980941206781BB6F23ED2A7BA05] - 19/01/2012 - 17:05:15 ---A- . (...) -- C:\AdwCleaner[S1].txt   [7495]
O44 - LFC:[MD5.B365A3FA489E9E19541AE449113CAFB0] - 19/01/2012 - 15:20:49 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI   [1524562]
O44 - LFC:[MD5.C6F145E3793460A56028E54B6A084431] - 19/01/2012 - 15:20:49 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat   [103568]
O44 - LFC:[MD5.0D4607DA081946EDD91C2D0431E232BD] - 19/01/2012 - 15:20:49 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat   [127684]
O44 - LFC:[MD5.08CE9D1E38ABB5E24C9B53ABFE5D454F] - 19/01/2012 - 15:20:49 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat   [607190]
O44 - LFC:[MD5.8062FB9A9A3B257B1DA8122828C5823E] - 19/01/2012 - 15:20:49 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat   [695004]
O44 - LFC:[MD5.B365A3FA489E9E19541AE449113CAFB0] - 19/01/2012 - 15:20:49 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI   [1524562]
O44 - LFC:[MD5.C6F145E3793460A56028E54B6A084431] - 19/01/2012 - 15:20:49 RSHAD . (...) -- C:\Windows\system32\perfc009.dat   [103568]
O44 - LFC:[MD5.0D4607DA081946EDD91C2D0431E232BD] - 19/01/2012 - 15:20:49 RSHAD . (...) -- C:\Windows\system32\perfc00C.dat   [127684]
O44 - LFC:[MD5.08CE9D1E38ABB5E24C9B53ABFE5D454F] - 19/01/2012 - 15:20:49 RSHAD . (...) -- C:\Windows\system32\perfh009.dat   [607190]
O44 - LFC:[MD5.8062FB9A9A3B257B1DA8122828C5823E] - 19/01/2012 - 15:20:49 RSHAD . (...) -- C:\Windows\system32\perfh00C.dat   [695004]
O44 - LFC:[MD5.0CDB750D2571987192443BA1EECB613D] - 14/01/2012 - 18:07:56 ---A- . (.Realtek Semiconductor Corp. - Realtek Card Reader Icon Dll.) -- C:\Windows\system32\RTSUSTORicon.dll   [9112168]
O44 - LFC:[MD5.0CDB750D2571987192443BA1EECB613D] - 14/01/2012 - 18:07:56 R---- . (.Realtek Semiconductor Corp. - Realtek Card Reader Icon Dll.) -- C:\Windows\SysNative\RTSUSTORicon.dll   [9112168]
O44 - LFC:[MD5.E7B011A4558B8EDD30CD9A0127B6449D] - 14/01/2012 - 18:07:23 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Card Reader DLL.) -- C:\Windows\SysNative\RtsUStor.dll   [422504]
O44 - LFC:[MD5.E7B011A4558B8EDD30CD9A0127B6449D] - 14/01/2012 - 18:07:23 RSHAD . (.Realtek Semiconductor Corp. - Realtek USB Card Reader DLL.) -- C:\Windows\system32\RtsUStor.dll   [422504]
O44 - LFC:[MD5.B1333C7A61106FCC28C60BE9CAC7EF39] - 11/01/2012 - 10:17:38 ---A- . (...) -- C:\Windows\win.ini   [499]
O44 - LFC:[MD5.3E49A2750279C0BB601EC3CF149ED9CB] - 09/01/2012 - 17:11:52 RSHAD . (...) -- C:\Windows\system32\drivers\klick.dat   [107177]
O44 - LFC:[MD5.C09425016AC8CA7A4DF725518A9B62C6] - 09/01/2012 - 17:11:52 RSHAD . (...) -- C:\Windows\system32\drivers\klin.dat   [152233]
O44 - LFC:[MD5.E185BDA84E5F03F4E1D8DCA30E209277] - 09/01/2012 - 17:11:31 ---A- . (...) -- C:\Windows\epplauncher.mif   [1912]
~ Scan Files in 01mn 31s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\TSpkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\LIVESSP.dll
~ Scan Keys in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{4fe5cc99-9d77-11e0-ae1c-90fba6a18df9}\AutoRun\command. (...) -- G:\LaunchU3.exe (.not file.)
O51 - MPSK:{c40b9376-3c29-11e1-b32e-90fba6a18df9}\AutoRun\command. (...) -- G:\Setup.exe (.not file.)
~ Scan Keys in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\Easybits Recovery  [Key] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O53 - SMSR:HKLM\...\startupreg\HPAdvisorDock  [Key] . (.Hewlett-Packard - HP Advisor Dock.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O53 - SMSR:HKLM\...\startupreg\LightScribe Control Panel  [Key] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O53 - SMSR:HKLM\...\startupreg\msnmsgr  [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O53 - SMSR:HKLM\...\startupreg\Philips Device Listener  [Key] . (...) -- C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe
~ Scan SMSR Keys in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "EnableShellExecuteHooks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys   [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys   [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys   [182864]
O58 - SDL:[MD5.98022774D9930ECBB292E70DB7601DF6] - 10/06/2009 - 22:01:06 RSHAD . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\system32\drivers\agrsm64.sys   [1146880]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 RSHAD . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys   [15440]
O58 - SDL:[MD5.6EC6D772EAE38DC17C14AED9B178D24B] - 20/11/2010 - 14:32:46 RSHAD . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys   [107904]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 RSHAD . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys   [194128]
O58 - SDL:[MD5.1142A21DB581A84EA5597B03A26EBAA0] - 20/11/2010 - 14:32:47 RSHAD . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys   [27008]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys   [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys   [97856]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys   [270848]
O58 - SDL:[MD5.35756E37D5FDEE22FBF27090A14FE608] - 11/06/2010 - 23:06:05 RSHAD . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL664.SYS   [3058168]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys   [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys   [8704]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 RSHAD . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys   [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys   [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys   [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys   [14720]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys   [468480]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 RSHAD . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys   [17488]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 RSHAD . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys   [530496]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys   [3286016]
O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 13:17:08 ---A- . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys   [34152]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 RSHAD . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys   [31232]
O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 17/09/2009 - 22:54:54 RSHAD . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\system32\drivers\HECIx64.sys   [56344]
O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 20/11/2010 - 14:33:35 RSHAD . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys   [78720]
O58 - SDL:[MD5.BE7D72FCF442C26975942007E0831241] - 13/10/2009 - 10:16:40 RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys   [409624]
O58 - SDL:[MD5.3DF4395A7CF8B7A72A5F4606366B8C2D] - 20/11/2010 - 14:33:38 RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys   [410496]
O58 - SDL:[MD5.677AA5991026A65ADA128C4B59CF2BAD] - 25/08/2010 - 19:36:04 RSHAD . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys   [10611552]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 RSHAD . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys   [44112]
O58 - SDL:[MD5.DD587A55390ED2295BCE6D36AD567DA9] - 27/02/2010 - 01:32:12 RSHAD . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\system32\drivers\Impcd.sys   [158976]
O58 - SDL:[MD5.58CF58DEE26C909BD6F977B61D246295] - 03/02/2010 - 14:38:30 RSHAD . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\system32\drivers\IntcDAud.sys   [271872]
O58 - SDL:[MD5.1A807A037503B285016E61100D04614A] - 19/01/2008 - 06:28:36 RSHAD . (.SigmaTel, Inc. - NDIS 5.0 USB Infra-Red Driver.) -- C:\Windows\system32\drivers\irstusb.sys   [33792]
O58 - SDL:[MD5.524503240D2BA280D97E2297102151CE] - 07/05/2010 - 00:19:10 RSHAD . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\system32\drivers\kl1.sys   [460888]
O58 - SDL:[MD5.85CAEA93D1D3193D9D522A9162765B31] - 07/05/2010 - 00:19:14 RSHAD . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\system32\drivers\kl2.sys   [460888]
O58 - SDL:[MD5.D74D217B16C2BAE6E6D1AA331A7B6E0B] - 07/05/2010 - 12:28:02 RSHAD . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_AMD64].) -- C:\Windows\system32\drivers\klif.sys   [560216]
O58 - SDL:[MD5.2A64B3A9EED93A2E96537B67C079FC96] - 22/04/2010 - 19:07:36 RSHAD . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\system32\drivers\klim6.sys   [27736]
O58 - SDL:[MD5.9468D07E91BA136D82415F5DFC1FE168] - 02/11/2009 - 20:27:10 RSHAD . (.Kaspersky Lab - KLMOUFLT Mouse Device Filter [fre_wlh_AMD64].) -- C:\Windows\system32\drivers\klmouflt.sys   [22544]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys   [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys   [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys   [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys   [115776]
O58 - SDL:[MD5.79DA94B35371B9E7104460C7693DCB2C] - 10/12/2011 - 15:24:08 RSHAD . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys   [23152]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys   [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 RSHAD . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys   [284736]
O58 - SDL:[MD5.1C049B43538887334CC27450BFD05DBF] - 27/05/2008 - 14:13:38 RSHAD . (.Generic USB smartcard reader - MultiCard reader 1.0.) -- C:\Windows\system32\drivers\MHIKEY10x64.sys   [59136]
O58 - SDL:[MD5.64428DFDAF6E88366CB51F45A79C5F69] - 10/06/2009 - 21:35:28 RSHAD . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\netw5v64.sys   [5434368]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 RSHAD . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys   [51264]
O58 - SDL:[MD5.5D9FD91F3D38DC9DA01E3CB5FA89CD48] - 20/11/2010 - 14:33:48 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys   [148352]
O58 - SDL:[MD5.F7CD50FE7139F07E77DA8AC8033D1832] - 20/11/2010 - 14:33:48 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys   [166272]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 RSHAD . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys   [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 RSHAD . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys   [128592]
O58 - SDL:[MD5.EE082E06A82FF630351D1E0EBBD3D8D0] - 10/06/2011 - 06:34:52 RSHAD . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys   [539240]
O58 - SDL:[MD5.E76FDFFF07F8A2FA81FF250DDA0F6BBA] - 13/03/2010 - 14:47:08 RSHAD . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys   [2291616]
O58 - SDL:[MD5.4E58ADE36FDECF73F030EA00E69E3B42] - 13/11/2009 - 05:04:32 RSHAD . (.Realtek Semiconductor Corp. - Realtek Smartcard Reader Driver for 2K/XP/Vista.) -- C:\Windows\system32\drivers\RtsUCcid.sys   [56864]
O58 - SDL:[MD5.9BEB5F18A418FF70659CE2E356829568] - 20/07/2010 - 10:43:22 RSHAD . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys   [247400]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 RSHAD . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys   [23040]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 RSHAD . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys   [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 RSHAD . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys   [80464]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 RSHAD . (.Promise Technology - Promise  SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys   [24656]
O58 - SDL:[MD5.CE9B5A79AEE330BC7E88C0441E5727BB] - 12/03/2010 - 05:17:42 RSHAD . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys   [316464]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 RSHAD . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys   [17488]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 RSHAD . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys   [161872]
O58 - SDL:[MD5.0C4540311E11664B245A263E1154CEF8] - 10/06/2009 - 22:01:11 RSHAD . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL6.SYS   [292864]
O58 - SDL:[MD5.18E40C245DBFAF36FD0134A7EF2DF396] - 10/06/2009 - 22:01:11 RSHAD . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT6.SYS   [740864]
O58 - SDL:[MD5.02071D207A9858FBE3A48CBFD59C4A04] - 10/06/2009 - 22:01:11 RSHAD . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV6.SYS   [1485312]
O58 - SDL:[MD5.B3EEACF62445E24FBB2CD4B0FB4DB026] - 10/06/2009 - 21:35:33 RSHAD . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\Windows\system32\drivers\yk62x64.sys   [389120]
O58 - SDL:[MD5.4AC51459805264AFFD5F6FDFB9D9235F] - 18/01/2011 - 23:16:38 ---A- . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\SysWOW64\drivers\GEARAspiWDM.sys   [15664]
O58 - SDL:[MD5.E42F03D1081C4F60D3DB6C38235B1456] - 01/12/2003 - 10:54:20 ---A- . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\Windows\SysWOW64\drivers\ser2pl.sys   [43136]
~ Scan Drivers in 00mn 43s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis
O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64)  .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64
O64 - Services: CurCS - 07/05/2010 - C:\Windows\system32\DRIVERS\kl1.sys (KL1)  .(.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - LEGACY_KL1
O64 - Services: CurCS - 07/05/2010 - C:\Windows\system32\DRIVERS\klif.sys (KLIF)  .(.Kaspersky Lab - Klif Mini-Filter [fre_wlh_AMD64].) - LEGACY_KLIF
O64 - Services: CurCS - 22/04/2010 - C:\Windows\system32\DRIVERS\klim6.sys (KLIM6)  .(.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - LEGACY_KLIM6
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - ??\??\???? - C:\Windows\system32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
~ Scan Services in 00mn 01s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\system32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\system32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\InstallInfo\ShowIconsCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\InstallInfo\ReinstallCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\InstallInfo\HideIconsCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {5279FE07-ADE6-4550-8585-B4CCB20FF4F1} - (Ask Search) - http://websearch.ask.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {81C0624E-271A-4605-918A-BFCC6A759BF5} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {DECA3892-BA8F-44b8-A993-A466AD694AE4} - (Yahoo! Search) - http://search.yahoo.com
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\system32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\system32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\system32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\system32\gpsvc.dll   [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\system32\ikeext.dll   [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\system32\Audiosrv.dll   [679424]
O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\system32\irmon.dll   [23552]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\system32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\system32\rasmans.dll   [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\system32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\system32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\system32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\system32\tapisrv.dll   [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\system32\termsrv.dll   [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll   [2420736]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\system32\qmgr.dll   [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\system32\shsvcs.dll   [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\system32\iphlpsvc.dll   [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\system32\appinfo.dll   [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\system32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\system32\sessenv.dll   [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\system32\browser.dll   [136192]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\system32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll   [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\system32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll   [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\system32\bdesvc.dll   [100864]
~ Scan Services in 00mn 01s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{4D167B6C-4D2D-4BD0-9141-DD6F0D4B3F34}" | In - Public - P6 - TRUE | .(.EasyBits Software AS - EasyBits My First Browser.) -- C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe
O87 - FAEL: "{F91A7046-9E06-4F28-8FC6-946679685CA0}" | In - Public - P17 - TRUE | .(.EasyBits Software AS - EasyBits My First Browser.) -- C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe
O87 - FAEL: "{1C1E2BD4-B02A-4D3B-831C-67D0B55B5F5A}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDVD 9.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.exe
O87 - FAEL: "{DA2ECF5E-2C5E-42E1-9877-8F21A731985D}" |In - Public - P6 - TRUE | .(...) -- F:\data\eSKernel.exe (.not file.)
O87 - FAEL: "{B868A958-8044-45AB-B0AD-E0B9F4C9DECA}" |In - Public - P17 - TRUE | .(...) -- F:\data\eSKernel.exe (.not file.)
O87 - FAEL: "{3890475B-4A7C-47BB-92CC-EDA2D8934016}" | In - Public - P6 - TRUE | .(.Teleperformance France - eSKernel.) -- C:\Program Files (x86)\Bbox\eSKernel.exe
O87 - FAEL: "{62C9BC1E-0436-4C22-8D90-81B562CFF719}" | In - Public - P17 - TRUE | .(.Teleperformance France - eSKernel.) -- C:\Program Files (x86)\Bbox\eSKernel.exe
O87 - FAEL: "{D341FAC1-FB5E-4527-9CFC-535804AB2A0F}" | In - Public - P6 - TRUE | .(.TechCity Solutions France - BTLiveUpdate.) -- C:\Program Files (x86)\BboxUpdate\BTLiveUpdate.exe
O87 - FAEL: "{BBE1E143-7565-41B8-86E1-521D4404CA38}" | In - Public - P17 - TRUE | .(.TechCity Solutions France - BTLiveUpdate.) -- C:\Program Files (x86)\BboxUpdate\BTLiveUpdate.exe
O87 - FAEL: "{86FDCFD0-B0E7-4DF0-BC62-7218197D7183}" | In - Public - P6 - TRUE | .(.Hewlett-Packard Co. - DeviceSetup.exe.) -- C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\DeviceSetup.exe
O87 - FAEL: "{352D58E8-01D6-4A05-BE21-BE58FB525ECA}" | In - Public - P17 - TRUE | .(.Hewlett-Packard Co. - DeviceSetup.exe.) -- C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\DeviceSetup.exe
O87 - FAEL: "{2085EA30-3371-4B46-B6FD-F06FFDB51042}" | In - Public - P6 - TRUE | .(.Hewlett-Packard Co. - HPNetworkCommunicator.) -- C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicator.exe
O87 - FAEL: "{B4F38010-8DEC-4F63-A663-FB7012B40E01}" | In - Public - P17 - TRUE | .(.Hewlett-Packard Co. - HPNetworkCommunicator.) -- C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPNetworkCommunicator.exe
O87 - FAEL: "{5C7CE8DA-BCCC-4807-A193-AEA38073FE66}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{3653EAF4-A99D-45B3-B02A-87C3CC84F96F}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{E74C908A-0448-4042-AFAC-CF3BB97A6F3C}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{ED1E3003-C7E1-4593-A683-663D9605BBB2}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe
O87 - FAEL: "{FBA256F2-609C-466B-A3B3-E4EEF923D8FD}" | In - Public - P6 - TRUE | .(.SweetIM Technologies, Ltd. - SweetIM Installer.) -- C:\Users\Béa\Downloads\SweetImSetup.exe
O87 - FAEL: "{167B6C92-4234-408F-846C-4D2295B6384F}" | In - Public - P17 - TRUE | .(.SweetIM Technologies, Ltd. - SweetIM Installer.) -- C:\Users\Béa\Downloads\SweetImSetup.exe
O87 - FAEL: "{A2ECF0B2-39B1-4871-AA1F-5A68775EFF51}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.)
O87 - FAEL: "{27F89F15-3AE8-408E-AAE4-0E929C4F9986}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.)
~ Scan Firewall in 00mn 04s



---\\ Scan Additionnel (O88)
Database Version : 8949 - (18/01/2012)
Clés trouvées (Keys found) : 3
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 4
Fichiers trouvés  (Files found) : 0

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}]   =>PUP.DealPly
[HKLM\Software\WOW6432Node\ilivid]   =>Adware.Bandoo
[HKCU\Software\Nosibay]   =>Adware.SPointer
C:\Program Files\Babylon   =>Toolbar.Babylon
C:\ProgramData\{B49A644A-1076-4A3D-B124-DAA7862F2318}   =>Adware.Bandoo
C:\Users\Béa\AppData\Roaming\Nosibay   =>Adware.SPointer
C:\Users\Béa\AppData\LocalLow\searchqutoolbar   =>Adware.Bandoo
~ Scan Additionnel in 00mn 09s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/11/2009 98208 |  (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
SR - | Auto  0 |  (AfaService) . (...) - C:\Windows\System32\afasrv64.exe
SR - | Auto 18/02/2011 37664 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 07/05/2010 344736 |  (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
SR - | Auto 30/12/1899 0 |  (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe
SS - | Demand 04/01/2010 238328 |  (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SS - | Auto 20/11/2010 136176 |  (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 20/11/2010 136176 |  (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 20/11/2010 182768 |  (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 15/11/2010 126520 |  (HP Health Check Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
SR - | Auto 27/01/2010 102968 |  (HP Wireless Assistant Service) . (.Hewlett-Packard.) - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
SR - | Auto 04/02/2011 92216 |  (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
SR - | Demand 04/02/2011 797240 |  (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto  20480 |  (HPWMISVC) . (...) - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 13/10/2009 354840 |  (IAANTMON) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
SR - | Demand 19/08/2011 934760 |  (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 22/02/2010 73728 |  (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SR - | Auto 18/03/2010 268824 |  (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 30/06/2010 207968 |  (Log Events) . (.Globe7 HK Ltd.) - C:\Program Files (x86)\adobs\msats.exe
SS - | Demand 25/11/2011 427640 |  (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\x64\maconfservice.exe
SR - | Auto 26/01/2009 1153368 |  (SBSDWSCService) . (.Safer Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
SR - | Auto 18/03/2010 2320920 |  (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Scan Services in 00mn 15s

End of the scan (1618 lines in 04mn 58s)(0)


MERCI BCP
CORDIAELMENT
Dernière édition par Skynet le 20 Jan 2012 13:38, édité 1 fois.
Raison: Bug corrigé, rapport divisé en deux.
coconut83
Visiteur
Visiteur
 
Messages: 7
Inscription: 15 Jan 2012 21:02
 

Re: pc ralenti

Message le 21 Jan 2012 03:27

Lancer ZHPFix.exe par un clic-droit → Exécuter en tant qu'adm.
• "Sélectionner tout" & "Copiez" ....le contenu de cette → page Web
• Cliquez sur le bouton [H] (..pour Coller tout ça dans la fenêtre)
• Cliquez sur [GO]

► S'il vous est proposé de redémarrer le PC, faites le
► Poster le rapport ZHPFixReport.txt.
créé sur le bureau.
_____________________________________________

Facultatif.

Télécharger InfoSys (le lien sera disponible en messagerie privée "MP" )
• Double-cliquer sur InfoSys.exe. (..et Autoriser avec Vista/Win7)
..Laisser en places les options pré-cochée à l'ouverture.

• Ensuite, appuyer sur [Scan] procédure en image
..Début de la recherche, correspondants aux options sélectionnées.
..Après. Le rapport InfoSys1.txt va s'ouvrir à l'écran (disponible aussi dans C:\InfoSys\.....)

Au lieu de poster ce rapport "+-volumineux" directement sur le forum.
• Convertissez le rapport en page Web, sur le site → Cjoint
• Cliquez sur [Parcourir] et aller chercher le rapport ← procédure en image
Postez l'adresse http//...... du rapport.
cosmido
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 215
Inscription: 13 Nov 2009 15:40
 

Re: pc ralenti

Message le 21 Jan 2012 15:43

bonjour

voici le rapport zhpfix
http://cjoint.com/?BAvpJInoeoB

quant à l'étape facultative, j'ai bien telechargé le logiciel mais lorsque j'appuie sur scan j'ai un message d'erreur
ERRUER E/S 104
coconut83
Visiteur
Visiteur
 
Messages: 7
Inscription: 15 Jan 2012 21:02
 

Re: pc ralenti

Message le 21 Jan 2012 15:59

Installer les mises à jours d'Adobe Reader et Java.

Ouvrez l'invité de commandes par un clic-droit → Exécuter en tant qu'adm.
• Copier/coller(par un clic-droit) les commandes suivantes et valider pour chacune :
sc stop AfaService
sc delete AfaService


Poster quand même le rapport InfoSys1.txt, qui est dans C:\InfoSys\........
Si vous avez fait plusieurs essais, ce sera le 1ier rapport dans le haut du répertoire.
cosmido
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 215
Inscription: 13 Nov 2009 15:40
 

Re: pc ralenti

Message le 22 Jan 2012 16:09

bonjour
voici le rapport http://cjoint.com/?BAwqgDZeJqS
quant à la procédure a effectuer dans les commandes, j'ai egalement un message d'erreur pour les 2
le service specifié n existe pas en tant que service installé.


merci bcp
cdt
coconut83
Visiteur
Visiteur
 
Messages: 7
Inscription: 15 Jan 2012 21:02
 

Re: pc ralenti

Message le 22 Jan 2012 19:14

Ok.., votre système devrait être correct.
cosmido
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 215
Inscription: 13 Nov 2009 15:40
 

Re: pc ralenti

Message le 22 Jan 2012 19:19

bonsoir
j'ai pas compris ce qu'il en est avec infosys. je laisse comme ca?
coconut83
Visiteur
Visiteur
 
Messages: 7
Inscription: 15 Jan 2012 21:02
 

Re: pc ralenti

Message le 22 Jan 2012 19:52

L'utilisation d'InfoSys "facultatif", était que pour ajouter des info de votre ordi semblable à ceux déjà posté, sur les autres rapport.
cosmido
Apprenti(e) Expert(e)
Apprenti(e) Expert(e)
 
Messages: 215
Inscription: 13 Nov 2009 15:40
 

Re: pc ralenti

Message le 22 Jan 2012 20:52

merci beaucoup pour tous vos conseils
coconut83
Visiteur
Visiteur
 
Messages: 7
Inscription: 15 Jan 2012 21:02
 



Sujets similaires

Message PC ralenti et plus accès au pad de la souris
Bonjour,Depuis quelques temps, mon pc est assez ralenti. Il ne va pas jusqu'à planter régulièrement et ne se déconnecte pas forcément d'internet, j'ai connu largement pire, mais il met du temps à réagir et je suis gênée dans son utilisation. J'ai bitdefender d'installé et les analyses système ne sig ...
Réponses: 16

Message [Résolu] PC ralenti aléatoirement
Bonsoir,Je voudrais faire une recherche un peu approfondie sur ce PC que je trouve parois étrangement lent à la détente, si j'ose dire.En résumé, pour une machine de même pas 4 ans qui est très raisonnablement sollicitée, en comparaison d'une autre nettement plus ancienne et dotée de 4 GO de RAM ell ...
Réponses: 15

Message Ordinateur ralenti - démarrage
Hello,J'aimerais désinfecter mon PC parce que c'est vrai qu'aujourd'hui, il met de plus en plus de temps à démarrer, les applications mettent aussi beaucoup de temps (alors que j'ai SSD avec OS + HDD pour documents). Voici les deux fichiers demandés.
Réponses: 2

Message [Résolu] PC au ralenti
Hello ! C'est le principal ! On passe le sujet en résolu ?
Réponses: 42

Message virus chinois - pc ralenti
BonjourFait ceci s.t.p.Téléchargez le fichier attaché Fixlist.txt suivant le lien ci-dessous et enregistrez-le sur le Bureau.fixlist.txtNOTE .Il est important que les deux fichiers, FRST/FRST64 et fixlist.txt se trouvent dans le même emplacement, sinon la correction ne fonctionnera pas.NOTIC ...
Réponses: 4

Message [Réglé] ordinateur ralenti, surtout firefox
Bonjour à la communautéj'avais déjà eu l'occasion de faire appel à vos services il y a deux ou trois ans et j'avais été sauvé par Bernard si je me rappelle bien.J'ai ressorti mon vieil ordinateur car j'ai récupéré une borne d'arcade et je souhaite la transformer. C'est un beau projet je trouve pour ...
Réponses: 8

Message PC ralenti
bonjour a tous, ce problème est déjà présent sur le forum mais on ma conseillé de créer un nouveau topic, je constate un ralentissement sur mon pc depuis mercredi matin, surtout pour les jeux vidéo ou j'ai une perte d'IPS ainsi que des freeze il n'est pas énormément lent mais je sens une différence ...
Réponses: 1


Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 11 invités


.: Nous contacter :: Flux RSS :: Données personnelles :.