[Fermé] PC très lent

Bonjour,
Mon PC est vraiment très lent alors qu'il est récent.
Il met énormément de temps à m'ouvrir l'explorateur ou une page firefox.
Obligé de redémarrer sans arrêt ce qui ne règle pas le problème.
CPU à 100% utilisé alors que seul une page firefox est ouverte.
Pourriez vous m'aider svp ?
Je vous en remercie d'avance

hello

essaie de faire un maximum de la procédure
quelqu' un ( pas moi Crying or Very sad

) s' occupe de toi dès que possible

http://www.bibou0007.com/t2887-procedure-a-suivre-avant-de-poster

ps : on déplacera le sujet après , s' il le faut

Rapport de ZHPDiag v1.27.214 par Nicolas Coolman, Update du 25/05/2011
Run by Chnoufs at 26/05/2011 21:17:51
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox 4.0.1 v4.0.1 (Defaut)
---\\ System Information
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3893 MB (62% free)
System Restore: Activé (Enable)
System drive C: has 213 GB (48%) free of 442 GB
---\\ Logged in mode
Computer Name: PC-CHNOUFS
User Name: Chnoufs
All Users Names: HomeGroupUser$, Chnoufs, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
%AppData%=C:\Users\Chnoufs\AppData\Roaming
%LocalAppData%=C:\Users\Chnoufs\AppData\Local
%StartMenu%=C:\Users\Chnoufs\AppData\Roaming\Microsoft\Windows\Start Menu
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 213 Go of 442 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 24 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
F:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
---\\ Recherche particulière de fichiers génériques
[MD5.0862495E0C825893DB75EF44FAEA8E93] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 07:23:14.) -- C:\Windows\Explorer.exe [2870272]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.214605C48AE416BC067C39D227CFCC57] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.24/02/2011 06:32:44.) -- C:\Windows\system32\wininet.dll [981504]
---\\ Processus lancés
[MD5.65AAB982F6C11EB02A8BEFF50A9FAF78] - (.DigitalPersona, Inc. - DigitalPersona Local Agent.) -- C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe [623368]
[MD5.89878DAA9C5B4DF0BCB92B7B3936C272] - (.Hewlett-Packard Development Company, L.P. - HP ENVY Guides Flash Storage Autoplay.) -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe [76584]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576]
[MD5.7B878518590E826F1F3A5B1D61D405F8] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3396624]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064]
[MD5.638C728F21CCC7EC4F8517A212C34353] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160]
[MD5.F0B80497A0598B45D0CB58C9DD2CC28D] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1590840]
[MD5.E83508D9A0F0D0D8449317DC6A4C5E02] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632]
[MD5.3B2CC09944488DB5ED5DFDC315C9AB57] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856]
[MD5.A588671AF9BE28C22B4BEDE74F60DEE9] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [657408]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Chnoufs] -- C:\Users\Chnoufs\AppData\Roaming\Mozilla\Firefox\Profiles\5axkk2gd.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [Chnoufs] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Chnoufs] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Chnoufs] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Chnoufs] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Chnoufs] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Chnoufs] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Chnoufs] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
M0 - MFSP: prefs.js [Chnoufs - 5axkk2gd.default] http://www.google.fr/
M2 - MFEP: prefs.js [Chnoufs - 5axkk2gd.default\2020Player@2020Technologies.com] [] Visualisateur 3D de 20-20 v4.5.4.0 (.20-20 Technologies.)
M2 - MFEP: prefs.js [Chnoufs - 5axkk2gd.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20101113Wb1 (.Google Inc..)
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKUS\S-1-5-21-3003790138-2049446089-1451807852-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-3003790138-2049446089-1451807852-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: (no name) [64Bits] - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} Clé orpheline
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: HP SimplePass Identity Protection Extension [64Bits] - {395610AE-C624-4f58-B89E-23733EA00F9A} . (.DigitalPersona, Inc. - DigitalPersona OTS Feedback component.) -- C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation. - Extensions du client Bing.) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe (.not file.)
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.)
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.)
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [HP Quick Launch] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [SmartMenu] . (.Pas de propriétaire - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [HPToneControl] . (.Hewlett-Packard - Tone Control.) -- C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] . (...) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
O4 - HKCU\..\Run: [HPAdvisorDock] . (.Pas de propriétaire - HP Advisor Dock.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [Microsoft Default Manager] . (.Microsoft Corporation - Microsoft Default Manager.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Envy Guides AutoPlay] . (.Hewlett-Packard Development Company, L.P. - HP ENVY Guides Flash Storage Autoplay.) -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-3003790138-2049446089-1451807852-1001\..\Run: [HPAdvisorDock] . (.Pas de propriétaire - HP Advisor Dock.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe
O4 - HKUS\S-1-5-21-3003790138-2049446089-1451807852-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk . (.Adobe Systems, Inc..) -- C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk . (...) -- C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe (.not file.)
---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Chnoufs\Desktop\CopyTrans Control Center.lnk . (.WindSolutions.) -- C:\Users\Chnoufs\AppData\Roaming\WindSolutions\CopyTransControlCenter\Applications\CopyTransControlCenter.exe
O4 - Global Startup: C:\Users\Chnoufs\Desktop\RegCleaner.lnk . (...) -- C:\Program Files (x86)\RegCleaner\RegCleanr.exe
O4 - Global Startup: C:\Users\Chnoufs\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IZArc.lnk . (...) -- C:\Program Files (x86)\IZArc\IZArc.exe
O4 - Global Startup: C:\Users\Chnoufs\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Chnoufs\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.exe
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000010\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{514754CE-FB7B-47F0-80BB-47747163D85F}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{514754CE-FB7B-47F0-80BB-47747163D85F}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{514754CE-FB7B-47F0-80BB-47747163D85F}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Pas de propriétaire - Pas de description.) -- igfxdev.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (Adobe LM Service) . (.Pas de propriétaire - System Level Service Utilty.) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: C:\Windows\system32\Alg.exe (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: C:\Program Files\DigitalPersona\Bin\DpHostW.exe (DpHost) . (.DigitalPersona, Inc. - DigitalPersona Local Host.) - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: (ezSharedSvc) . (.EasyBits Software AS - Shared EasyBits services for Windows.) - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: (GameConsoleService) . (.WildTangent, Inc. - GameConsoleService.) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: (HP Health Check Service) . (.Hewlett-Packard Company - HP Support Assistant.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: (HP Wireless Assistant Service) . (.Hewlett-Packard - HPPA_Service.) - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: (hpdoccardsvc) . (.Hewlett-Packard Developement Company, L.P. - HP Documentation Storage Card Reader Servic.) - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
O23 - Service: (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: (hpqwmiex) . (.Hewlett-Packard Company - hpqwmiex Module.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: (hpsrv) . (.Hewlett-Packard - HpService.) - C:\Windows\system32\Hpservice.exe
O23 - Service: (HPWMISVC) . (...) - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (64-bit).) - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: (vcsFPService) . (.Validity Sensors, Inc. - Validity Sensors Fingerprint Service.) - C:\Windows\system32\vcsFPService.exe
O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForChnoufs.job
[MD5.00000000000000000000000000000000] [APT] [CLMLSvc] (.Pas de propriétaire.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [DVDAgent] (.Pas de propriétaire.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (.not file.)
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.BEAEC745256D3158495FEE10BA673E7C] [APT] [HPCeeScheduleForChnoufs] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [RecoveryCDWin7] (.Pas de propriétaire.) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [Registration] (.Pas de propriétaire.) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (DVMIO) . (.DeviceVM, Inc. - DVMIO virtual device driver for 64bit.) - C:\Windows\System32\DRIVERS\dvmio.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC}
O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
O42 - Logiciel: Agatha Christie - Death on the Nile - (.WildTangent.) [HKLM][64Bits] -- WT083492
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {853A4763-6643-4604-8D64-28BDD8925F4C}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {8F473675-D702-45F9-8EBC-342B40C17BF5}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082192
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
O42 - Logiciel: Bink and Smacker - (.Pas de propriétaire.) [HKLM][64Bits] -- Bink and Smacker
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT082124
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {0E543634-7E25-4B8F-8D5B-97880E5E5088}
O42 - Logiciel: Broadcom 2070 Bluetooth 2.1 + EDR - (.Broadcom Corporation.) [HKLM] -- {9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
O42 - Logiciel: Bus Driver - (.WildTangent.) [HKLM][64Bits] -- WT082439
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {C1A0D5F7-02F3-4D95-872A-0E56CF968DC6}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082200
O42 - Logiciel: Contents - (.Corel Corporation.) [HKLM][64Bits] -- {F6A76E9C-C299-4CFA-AD2A-57FE9DD68B70}
O42 - Logiciel: CopyTrans Suite désinstallation uniquement - (.WindSolutions.) [HKCU] -- CopyTrans Suite
O42 - Logiciel: Corel PaintShop Photo Pro X3 - (.Corel Corporation.) [HKLM][64Bits] -- _{D1AEB5DB-04FA-489D-94EF-8600898B93EE}
O42 - Logiciel: Corel PaintShop Photo Pro X3 - (.Corel Corporation.) [HKLM][64Bits] -- {DA4BF4BE-3CDC-43B5-BBDA-DDDA73103111}
O42 - Logiciel: Corel VideoStudio Pro X3 - (.Corel Corporation.) [HKLM][64Bits] -- _{F072CA07-A781-45E4-9975-C033A73019CF}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: DeviceIO - (.Corel Corporation.) [HKLM][64Bits] -- {F4E9851F-765E-40B7-9859-237C2724E62C}
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM][64Bits] -- WT082396
O42 - Logiciel: Dream Chronicles - (.WildTangent.) [HKLM][64Bits] -- WT083521
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WT082141
O42 - Logiciel: FileZilla Client 3.3.5.1 - (.Pas de propriétaire.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Gem Shop - (.WildTangent.) [HKLM][64Bits] -- WT083529
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM] -- {8FCDACA0-E090-4A9A-AC71-A96E7371DC6E}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP DVB-T TV Tuner 8.0.64.43 - (.Pas de propriétaire.) [HKLM][64Bits] -- HP DVB-T TV Tuner
O42 - Logiciel: HP ENVY Document Card Utilities - (.Hewlett-Packard.) [HKLM][64Bits] -- {FEC7B56F-A010-4866-809E-F5082CF5BB8C}
O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM][64Bits] -- My HP Game Console
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Movies and TV - (.Hewlett-Packard.) [HKLM] -- {4B4E2FA2-3B1E-4147-99DB-5033981D8C2F}
O42 - Logiciel: HP MediaSmart Music - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}
O42 - Logiciel: HP MediaSmart Music - (.Hewlett-Packard.) [HKLM][64Bits] -- {91A34181-9FAD-43AB-A35F-E7A8945B7E1C}
O42 - Logiciel: HP MediaSmart Photo - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}
O42 - Logiciel: HP MediaSmart Photo - (.Hewlett-Packard.) [HKLM][64Bits] -- {6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM] -- {731A1D36-BF17-4C76-B7E7-CC055AF8C54E}
O42 - Logiciel: HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}
O42 - Logiciel: HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {D12E3E7F-1B13-4933-A915-16C7DD37A095}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard.) [HKLM] -- {10F539B1-31AF-43BF-9F0C-0EB66E918922}
O42 - Logiciel: HP QuickWeb Installer - (.DeviceVM Inc..) [HKLM][64Bits] -- {394FA67A-FF0A-4356-BB77-D85E5A300BDE}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {E2831862-F131-4327-B9CC-FA30F587EB6C}
O42 - Logiciel: HP SimplePass Identity Protection - (.DigitalPersona, Inc..) [HKLM] -- {F20DF0CA-5929-4C26-A501-FDB19FDF0A50}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {C3036565-A89C-41BB-BB5F-95ECE549D7FF}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {08DB3902-2CE0-474D-BCE3-0177766CE9F1}
O42 - Logiciel: HP Tone Control - (.Hewlett-Packard Company.) [HKLM] -- {9207D4A1-586E-49CA-A002-FC9F475AB1A3}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HP User Guides 0177 - (.Hewlett-Packard.) [HKLM][64Bits] -- {8DA0CD14-79DF-49BF-B133-409C004F27E1}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {6ECE2119-D131-484C-839A-39F9C5E5FA0A}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: ICA - (.Corel Corporation.) [HKLM][64Bits] -- {D1AEB5DB-04FA-489D-94EF-8600898B93EE}
O42 - Logiciel: ICA - (.Corel Corporation.) [HKLM][64Bits] -- {F072CA07-A781-45E4-9975-C033A73019CF}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IPM_PSP_Pro - (.Corel Corporation.) [HKLM][64Bits] -- {DCD941B6-F2E7-4FAF-B102-F7D4DE5FF99A}
O42 - Logiciel: IPM_VS_Pro - (.Corel Corporation.) [HKLM][64Bits] -- {FD67D9F3-FED6-4A2E-9D6C-8C8C44DEF8FF}
O42 - Logiciel: ISCOM - (.Corel Corporation.) [HKLM][64Bits] -- {D1F80EFD-A032-4E8E-A367-70C44AD4DCE0}
O42 - Logiciel: ISCOM - (.Corel Corporation.) [HKLM][64Bits] -- {FE661711-E392-4B3F-A4A7-02C747C09134}
O42 - Logiciel: IZArc 4.1.2 - (.Ivan Zahariev.) [HKLM][64Bits] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082222
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM][64Bits] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}
O42 - Logiciel: Java(TM) 6 Update 17 (64-bit) - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86416017FF}
O42 - Logiciel: Java(TM) 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216017FF}
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WT083514
O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT083510
O42 - Logiciel: Juniper Networks Host Checker - (.Juniper Networks.) [HKCU] -- Neoteris_Host_Checker
O42 - Logiciel: Juniper Networks Setup Client - (.Juniper Networks.) [HKCU] -- Juniper_Setup_Client
O42 - Logiciel: Juniper Networks Setup Client Activex Control - (.Juniper Networks.) [HKLM][64Bits] -- Juniper_Setup_Client Activex Control
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {FA8BFB25-BF48-4F8B-8859-B30810745190}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT082409
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Default Manager - (.Microsoft Corporation.) [HKLM][64Bits] -- {61BEA823-ECAF-49F1-8378-A59B3B8AD247}
O42 - Logiciel: Microsoft Money - (.Microsoft.) [HKLM][64Bits] -- Money2005b
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Edition 2003 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9011040C-6000-11D3-8CFE-0150048383C9}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM][64Bits] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Mozilla Firefox 4.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 4.0.1 (x86 fr)
O42 - Logiciel: Mystery P.I. - The Vegas Heist - (.WildTangent.) [HKLM][64Bits] -- WT082414
O42 - Logiciel: PSPPContent - (.Corel Corporation.) [HKLM][64Bits] -- {DF8B9311-ADE7-4EDE-B121-326CAA3D225D}
O42 - Logiciel: PSPPRO_DCRAW - (.Corel Corporation.) [HKLM][64Bits] -- {DCF1928A-FC01-48E7-A7E6-4651D42EF6A1}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT082168
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM][64Bits] -- {D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT082172
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PureHD - (.Corel Corporation.) [HKLM][64Bits] -- {F8423392-2296-4748-9B66-344432459632}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Setup - (.Corel Corporation.) [HKLM][64Bits] -- {D1612A3D-0DCC-4055-BB6A-0036F31158A0}
O42 - Logiciel: Setup - (.Corel Corporation.) [HKLM][64Bits] -- {F069C491-69E6-4D9B-9A0C-B7894A1FA97C}
O42 - Logiciel: Share - (.Corel Corporation.) [HKLM][64Bits] -- {F909BD3C-8684-4ACF-B7C3-33F4F9F901B7}
O42 - Logiciel: Share64 - (.Corel Corporation.) [HKLM] -- {F6246243-CF06-4E40-8A37-C3B537695C36}
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082427
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: VIO - (.Corel Corporation.) [HKLM][64Bits] -- {F95C8C1F-25BB-44EC-A7E6-5C17ABC6BC71}
O42 - Logiciel: VSClassic - (.Corel Corporation.) [HKLM][64Bits] -- {FB0B6DDD-DF3E-4CD6-927C-724AB854E322}
O42 - Logiciel: VSPro - (.Corel Corporation.) [HKLM][64Bits] -- {F206FEC3-F5DD-43FD-A8CF-9C46B8A6A92C}
O42 - Logiciel: Validity Sensors DDK - (.Validity Sensors, Inc..) [HKLM] -- {EE5017A6-7525-4EE9-99DA-2EF1F6C16B1B}
O42 - Logiciel: Virtual Villagers - The Secret City - (.WildTangent.) [HKLM][64Bits] -- WT082241
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WT082422
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) - (.Broadcom.) [HKLM] -- 6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (12/16/2009 6.2.0.9414) - (.Broadcom.) [HKLM] -- 7E38E30BB92ED94B21CF062A7386554CBA991FEB
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-A1780C1E766C}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: Windows Media Encoder 9 Series - (.Microsoft Corporation.) [HKLM][64Bits] -- {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
O42 - Logiciel: Windows Media Encoder 9 Series - (.Pas de propriétaire.) [HKLM][64Bits] -- Windows Media Encoder 9
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Xvid 1.2.1 final uninstall - (.Xvid team (Koepi).) [HKLM][64Bits] -- Xvid_is1
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082246
O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM][64Bits] -- avast5
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {16DDB3D1-5C27-4599-9C63-E583287191CC}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\BitTorrentBar]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DigitalPersona]
[HKCU\Software\EasyBits]
[HKCU\Software\FreeCompressor]
[HKCU\Software\GNU]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\IZSoftware]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Juniper Networks]
[HKCU\Software\Licenses]
[HKCU\Software\LightScribe]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaMan]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OfferBox]
[HKCU\Software\Pearson]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\SlimSUF]
[HKCU\Software\Softonic]
[HKCU\Software\Spointer]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VirtualDub.org]
[HKCU\Software\Widcomm]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\pikyload]
[HKLM\Software\ALWIL Software]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe Systems]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\CXT]
[HKLM\Software\Caphyon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Corel]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\DEVICEVM]
[HKLM\Software\DeviceVM]
[HKLM\Software\DigitalPersona]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EasyBits]
[HKLM\Software\FileZilla 3]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LightScribe]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OfferBox]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\P2G_Upgrade]
[HKLM\Software\PDR_Upgrade]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Product_Upgrade]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Rhino Software]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\SecureDigitalServices]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\Ulead Systems]
[HKLM\Software\Validity]
[HKLM\Software\Volatile]
[HKLM\Software\Widcomm]
[HKLM\Software\WildTangent]
[HKLM\Software\Win32 Services]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\mozilla.org]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 22/10/2010 - 22:31:08 - [163175355] ----D- C:\Program Files\Alwil Software
O43 - CFD: 08/06/2010 - 01:41:44 - [23088925] ----D- C:\Program Files\ATI
O43 - CFD: 26/04/2011 - 17:03:00 - [195920] ----D- C:\Program Files\Bonjour
O43 - CFD: 25/05/2011 - 14:11:58 - [7278424] ----D- C:\Program Files\CCleaner
O43 - CFD: 05/02/2011 - 12:29:44 - [43409691] ----D- C:\Program Files\Common Files
O43 - CFD: 08/06/2010 - 01:48:34 - [679904] ----D- C:\Program Files\DIFX
O43 - CFD: 08/06/2010 - 02:16:14 - [28092540] ----D- C:\Program Files\DigitalPersona
O43 - CFD: 08/06/2010 - 11:33:34 - [90257428] ----D- C:\Program Files\DVD Maker
O43 - CFD: 22/10/2010 - 22:10:50 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 08/06/2010 - 02:00:22 - [25936248] ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 08/06/2010 - 01:46:28 - [43642024] ----D- C:\Program Files\IDT
O43 - CFD: 22/04/2011 - 10:57:50 - [5174573] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 26/04/2011 - 17:05:54 - [1939563] ----D- C:\Program Files\iPod
O43 - CFD: 26/04/2011 - 17:06:26 - [2345448] ----D- C:\Program Files\iTunes
O43 - CFD: 18/05/2010 - 11:37:40 - [79739698] ----D- C:\Program Files\Java
O43 - CFD: 08/06/2010 - 11:33:34 - [149236786] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 14/07/2009 - 07:32:40 - [36253865] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 08/06/2010 - 01:43:50 - [38582723] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 08/06/2010 - 01:45:04 - [19519816] ----D- C:\Program Files\Validity Sensors
O43 - CFD: 08/06/2010 - 01:48:40 - [145270131] ----D- C:\Program Files\WIDCOMM
O43 - CFD: 18/05/2010 - 18:02:54 - [4039168] ----D- C:\Program Files\Windows Defender
O43 - CFD: 12/02/2011 - 10:32:24 - [43896] ----D- C:\Program Files\Windows Live
O43 - CFD: 16/12/2010 - 10:43:16 - [6667264] ----D- C:\Program Files\Windows Mail
O43 - CFD: 28/10/2010 - 19:48:16 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 22/10/2010 - 22:10:50 - [12627124] ----D- C:\Program Files\Windows NT
O43 - CFD: 18/05/2010 - 18:02:54 - [5516568] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 07:32:40 - [235008] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 22/10/2010 - 22:11:06 - [11374119] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 05/02/2011 - 12:29:44 - [6246981] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 12/02/2011 - 10:32:06 - [24541269] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 18/05/2010 - 18:02:54 - [12009971] ----D- C:\Program Files\Common Files\System
O43 - CFD: 11/11/2010 - 23:50:26 - [767] ----D- C:\ProgramData\Adobe
O43 - CFD: 22/10/2010 - 22:31:08 - [32246202] ----D- C:\ProgramData\Alwil Software
O43 - CFD: 05/02/2011 - 13:22:44 - [72953370] ----D- C:\ProgramData\Apple
O43 - CFD: 05/02/2011 - 12:44:44 - [67312164] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 08/06/2010 - 01:47:38 - [11227] ----D- C:\ProgramData\Atheros
O43 - CFD: 08/06/2010 - 02:27:04 - [298] ----D- C:\ProgramData\ATI
O43 - CFD: 22/10/2010 - 22:10:50 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 18/05/2010 - 10:49:22 - [104917190] ----D- C:\ProgramData\Corel
O43 - CFD: 08/06/2010 - 02:04:26 - [143141] ----D- C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 08/06/2010 - 02:16:08 - [40600776] ----D- C:\ProgramData\Downloaded Installations
O43 - CFD: 26/05/2011 - 17:16:38 - [0] ----D- C:\ProgramData\eMule
O43 - CFD: 22/10/2010 - 22:10:50 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 22/10/2010 - 22:35:26 - [0] ----D- C:\ProgramData\Google
O43 - CFD: 22/12/2010 - 15:25:38 - [63557064] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 18/05/2010 - 10:49:40 - [871027] ----D- C:\ProgramData\InterVideo
O43 - CFD: 11/11/2010 - 23:28:40 - [3538970] ----D- C:\ProgramData\Macrovision
O43 - CFD: 26/05/2011 - 20:56:00 - [6752702] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 05/02/2011 - 14:10:18 - [42] ----D- C:\ProgramData\MediaMan
O43 - CFD: 22/10/2010 - 22:10:50 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 26/03/2011 - 00:14:34 - [1364010127] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 22/10/2010 - 22:10:50 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 03/11/2010 - 20:53:40 - [491] ----D- C:\ProgramData\Norton
O43 - CFD: 08/06/2010 - 02:06:12 - [10027596] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 05/02/2011 - 14:10:46 - [5128] ----D- C:\ProgramData\SlimSUF
O43 - CFD: 22/04/2011 - 23:35:42 - [93323] ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 22/01/2011 - 12:16:48 - [154] ----D- C:\ProgramData\Sun
O43 - CFD: 08/06/2010 - 02:05:56 - [782691] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 18/05/2010 - 10:49:00 - [279229] ----D- C:\ProgramData\Ulead Systems
O43 - CFD: 03/01/2011 - 22:54:10 - [1930492456] ----D- C:\ProgramData\WildTangent
O43 - CFD: 05/02/2011 - 15:03:18 - [14758] ----D- C:\ProgramData\WindSolutions
O43 - CFD: 15/11/2010 - 22:23:54 - [15631557] ----D- C:\Users\Chnoufs\AppData\Roaming\Adobe
O43 - CFD: 13/04/2011 - 08:52:22 - [1731526540] ----D- C:\Users\Chnoufs\AppData\Roaming\Apple Computer
O43 - CFD: 22/10/2010 - 22:19:36 - [0] ----D- C:\Users\Chnoufs\AppData\Roaming\ATI
O43 - CFD: 26/02/2011 - 22:54:16 - [0] ----D- C:\Users\Chnoufs\AppData\Roaming\CyberLink
O43 - CFD: 22/10/2010 - 22:09:50 - [24] ----D- C:\Users\Chnoufs\AppData\Roaming\DigitalPersona
O43 - CFD: 25/05/2011 - 14:16:00 - [13511] ----D- C:\Users\Chnoufs\AppData\Roaming\FileZilla
O43 - CFD: 25/01/2011 - 23:44:58 - [615] ----D- C:\Users\Chnoufs\AppData\Roaming\freeCompressor
O43 - CFD: 03/01/2011 - 22:54:48 - [188] ----D- C:\Users\Chnoufs\AppData\Roaming\Gaijin Ent
O43 - CFD: 26/04/2011 - 18:03:20 - [80017] ----D- C:\Users\Chnoufs\AppData\Roaming\Hewlett-Packard
O43 - CFD: 22/12/2010 - 15:18:20 - [472] ----D- C:\Users\Chnoufs\AppData\Roaming\HP Support Assistant
O43 - CFD: 22/12/2010 - 15:21:40 - [111864] ----D- C:\Users\Chnoufs\AppData\Roaming\hpqlog
O43 - CFD: 22/12/2010 - 15:18:20 - [548] ----D- C:\Users\Chnoufs\AppData\Roaming\HpUpdate
O43 - CFD: 22/10/2010 - 22:18:12 - [0] ----D- C:\Users\Chnoufs\AppData\Roaming\Identities
O43 - CFD: 14/12/2010 - 17:53:46 - [9276880] ----D- C:\Users\Chnoufs\AppData\Roaming\Juniper Networks
O43 - CFD: 22/10/2010 - 22:23:10 - [456] ----D- C:\Users\Chnoufs\AppData\Roaming\Macromedia
O43 - CFD: 26/05/2011 - 20:56:06 - [10556749] ----D- C:\Users\Chnoufs\AppData\Roaming\Malwarebytes
O43 - CFD: 08/06/2010 - 11:33:34 - [0] ----D- C:\Users\Chnoufs\AppData\Roaming\Media Center Programs
O43 - CFD: 05/02/2011 - 14:10:34 - [0] ----D- C:\Users\Chnoufs\AppData\Roaming\MediaMan
O43 - CFD: 24/02/2011 - 18:32:32 - [1271597] -S--D- C:\Users\Chnoufs\AppData\Roaming\Microsoft
O43 - CFD: 22/10/2010 - 22:26:28 - [22643638] ----D- C:\Users\Chnoufs\AppData\Roaming\Mozilla
O43 - CFD: 17/02/2011 - 19:05:44 - [243708] ----D- C:\Users\Chnoufs\AppData\Roaming\OfferBox
O43 - CFD: 11/11/2010 - 20:30:38 - [132996] ----D- C:\Users\Chnoufs\AppData\Roaming\RhinoSoft.com
O43 - CFD: 11/11/2010 - 20:48:06 - [173407] ----D- C:\Users\Chnoufs\AppData\Roaming\svBuilder
O43 - CFD: 03/01/2011 - 22:53:34 - [263] ----D- C:\Users\Chnoufs\AppData\Roaming\WildTangent
O43 - CFD: 27/04/2011 - 22:00:24 - [0] ----D- C:\Users\Chnoufs\AppData\Roaming\Windows Live Writer
O43 - CFD: 05/02/2011 - 15:03:50 - [19865134] ----D- C:\Users\Chnoufs\AppData\Roaming\WindSolutions
O43 - CFD: 22/10/2010 - 22:36:22 - [4312] ----D- C:\Users\Chnoufs\AppData\Roaming\_MDLogs
O43 - CFD: 11/11/2010 - 20:47:44 - [23700682] ----D- C:\Users\Chnoufs\Appdata\Local\Adobe
O43 - CFD: 05/02/2011 - 12:30:04 - [0] ----D- C:\Users\Chnoufs\Appdata\Local\Apple
O43 - CFD: 05/02/2011 - 12:33:24 - [16136117] ----D- C:\Users\Chnoufs\Appdata\Local\Apple Computer
O43 - CFD: 22/10/2010 - 22:11:04 - [0] -SH-D- C:\Users\Chnoufs\Appdata\Local\Application Data
O43 - CFD: 22/10/2010 - 22:19:36 - [93893] ----D- C:\Users\Chnoufs\Appdata\Local\ATI
O43 - CFD: 22/10/2010 - 22:18:48 - [0] ----D- C:\Users\Chnoufs\Appdata\Local\Broadcom
O43 - CFD: 22/10/2010 - 22:44:30 - [0] ----D- C:\Users\Chnoufs\Appdata\Local\CyberLink
O43 - CFD: 17/05/2011 - 17:59:38 - [1067729] ----D- C:\Users\Chnoufs\Appdata\Local\Diagnostics
O43 - CFD: 22/10/2010 - 22:09:50 - [0] ----D- C:\Users\Chnoufs\Appdata\Local\DigitalPersona
O43 - CFD: 13/12/2010 - 14:23:24 - [0] ----D- C:\Users\Chnoufs\Appdata\Local\ElevatedDiagnostics
O43 - CFD: 25/01/2011 - 23:46:10 - [172491] ----D- C:\Users\Chnoufs\Appdata\Local\freecompressor Air
O43 - CFD: 05/02/2011 - 14:19:36 - [430167174] ----D- C:\Users\Chnoufs\Appdata\Local\Google
O43 - CFD: 26/05/2011 - 17:55:52 - [56829971] ----D- C:\Users\Chnoufs\Appdata\Local\Hewlett-Packard
O43 - CFD: 22/10/2010 - 22:11:04 - [0] -SH-D- C:\Users\Chnoufs\Appdata\Local\Historique
O43 - CFD: 16/03/2011 - 20:14:20 - [283897808] ----D- C:\Users\Chnoufs\Appdata\Local\Microsoft
O43 - CFD: 03/11/2010 - 16:39:52 - [153112] ----D- C:\Users\Chnoufs\Appdata\Local\Microsoft Games
O43 - CFD: 22/10/2010 - 22:26:18 - [21727251] ----D- C:\Users\Chnoufs\Appdata\Local\Mozilla
O43 - CFD: 22/10/2010 - 22:44:28 - [0] ----D- C:\Users\Chnoufs\Appdata\Local\PowerCinema
O43 - CFD: 26/05/2011 - 21:16:08 - [1250892] ----D- C:\Users\Chnoufs\Appdata\Local\Temp
O43 - CFD: 22/10/2010 - 22:11:04 - [0] -SH-D- C:\Users\Chnoufs\Appdata\Local\Temporary Internet Files
O43 - CFD: 05/12/2010 - 21:46:50 - [38515957] ----D- C:\Users\Chnoufs\Appdata\Local\VirtualStore
O43 - CFD: 26/05/2011 - 10:41:28 - [45056] ----D- C:\Users\Chnoufs\Appdata\Local\Windows Live
O43 - CFD: 27/04/2011 - 22:00:24 - [0] ----D- C:\Users\Chnoufs\Appdata\Local\Windows Live Writer
O43 - CFD: 11/11/2010 - 23:26:58 - [876592616] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 05/02/2011 - 12:30:02 - [2306366] ----D- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 08/06/2010 - 01:47:34 - [1573190] ----D- C:\Program Files (x86)\Atheros
O43 - CFD: 08/06/2010 - 01:43:26 - [89645083] ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 26/04/2011 - 17:03:00 - [621240] ----D- C:\Program Files (x86)\Bonjour
O43 - CFD: 13/04/2011 - 08:41:16 - [967427506] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 18/05/2010 - 10:48:12 - [915627414] ----D- C:\Program Files (x86)\Corel
O43 - CFD: 08/06/2010 - 02:05:58 - [1470563881] ----D- C:\Program Files (x86)\CyberLink
O43 - CFD: 08/06/2010 - 02:16:20 - [49012723] ----D- C:\Program Files (x86)\DigitalPersona
O43 - CFD: 08/06/2010 - 02:07:36 - [516970304] ----D- C:\Program Files (x86)\Downloaded Installations
O43 - CFD: 22/10/2010 - 22:37:54 - [104341566] ----D- C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 16/01/2011 - 14:19:30 - [16451399] ----D- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 26/05/2011 - 17:19:10 - [79754403] ----D- C:\Program Files (x86)\Google
O43 - CFD: 26/04/2011 - 18:04:04 - [1764398703] ----D- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 08/06/2010 - 01:47:54 - [4740251] ----D- C:\Program Files (x86)\Hp
O43 - CFD: 08/06/2010 - 02:15:42 - [367644522] ----D- C:\Program Files (x86)\HP Games
O43 - CFD: 22/12/2010 - 15:25:46 - [286957691] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 08/06/2010 - 01:44:28 - [21378591] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 22/04/2011 - 10:57:50 - [5601744] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 26/04/2011 - 17:06:26 - [126362384] ----D- C:\Program Files (x86)\iTunes
O43 - CFD: 08/11/2010 - 21:13:56 - [15128029] ----D- C:\Program Files (x86)\IZArc
O43 - CFD: 13/04/2011 - 08:40:44 - [91531791] ----D- C:\Program Files (x86)\Java
O43 - CFD: 26/05/2011 - 20:56:02 - [4935591] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 26/03/2011 - 00:14:02 - [20625377] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 02/12/2010 - 14:04:40 - [149140338] ----D- C:\Program Files (x86)\Microsoft Money 2005
O43 - CFD: 11/11/2010 - 13:49:02 - [0] ----D- C:\Program Files (x86)\Microsoft Money 2006
O43 - CFD: 13/11/2010 - 12:20:20 - [285699966] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 22/04/2011 - 10:59:00 - [38388859] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/05/2010 - 08:35:30 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 06/11/2010 - 14:07:44 - [331107] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 15/05/2011 - 19:16:08 - [34616183] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 08/06/2010 - 02:03:40 - [1161160] ----D- C:\Program Files (x86)\MSN Toolbar Installer
O43 - CFD: 29/10/2010 - 03:00:50 - [0] ----D- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 11/11/2010 - 20:57:32 - [578048] ----D- C:\Program Files (x86)\My piky Load
O43 - CFD: 08/06/2010 - 02:06:12 - [0] ----D- C:\Program Files (x86)\NortonInstaller
O43 - CFD: 17/02/2011 - 22:25:58 - [96600] ----D- C:\Program Files (x86)\OfferBox
O43 - CFD: 22/10/2010 - 22:11:06 - [20836629] R---D- C:\Program Files (x86)\Online Services
O43 - CFD: 05/02/2011 - 12:30:40 - [76322555] ----D- C:\Program Files (x86)\QuickTime
O43 - CFD: 05/12/2010 - 21:46:42 - [1950532] ----D- C:\Program Files (x86)\RADVideo
O43 - CFD: 08/06/2010 - 01:46:34 - [10579032] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [38597377] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 25/05/2011 - 14:12:34 - [1142666] ----D- C:\Program Files (x86)\RegCleaner
O43 - CFD: 22/04/2011 - 23:35:42 - [4584456] ----D- C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 18/05/2010 - 18:02:54 - [524800] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 31/03/2011 - 03:09:44 - [146221045] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 16/12/2010 - 10:43:16 - [6180864] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 18/05/2010 - 10:48:20 - [14228803] ----D- C:\Program Files (x86)\Windows Media Components
O43 - CFD: 28/10/2010 - 19:48:18 - [5336849] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 18/05/2010 - 18:02:54 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 07:32:42 - [189440] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/10/2010 - 22:11:06 - [5994166] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 06/01/2011 - 21:20:42 - [770762] ----D- C:\Program Files (x86)\Xvid
O43 - CFD: 26/05/2011 - 21:18:58 - [3867418] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 11/11/2010 - 23:28:26 - [94158648] ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 11/11/2010 - 20:48:02 - [30826314] ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 11/11/2010 - 23:28:38 - [68096] ----D- C:\Program Files (x86)\Common Files\Adobe Systems Shared
O43 - CFD: 26/04/2011 - 17:05:54 - [86139244] ----D- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 18/05/2010 - 10:48:36 - [4604583] ----D- C:\Program Files (x86)\Common Files\Corel
O43 - CFD: 06/11/2010 - 14:09:34 - [86016] ----D- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 18/05/2010 - 10:49:38 - [5030596] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 13/04/2011 - 08:41:16 - [1247175] ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 08/06/2010 - 01:52:44 - [36801635] ----D- C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 12/02/2011 - 10:32:06 - [115471305] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 08/06/2010 - 01:44:08 - [161212] ----D- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 06/11/2010 - 14:09:28 - [24147013] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 18/05/2010 - 10:48:18 - [55903965] ----D- C:\Program Files (x86)\Common Files\Ulead Systems
O43 - CFD: 18/05/2010 - 08:32:54 - [471675219] ----D- C:\Program Files (x86)\Common Files\Windows Live
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.6C111343FC625CDB74E5A04B112CF38F] - 26/05/2011 - 20:12:27 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [23248]
O44 - LFC:[MD5.6C111343FC625CDB74E5A04B112CF38F] - 26/05/2011 - 20:12:27 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [23248]
O44 - LFC:[MD5.0D000000000000000000000088EE1800] - 26/05/2011 - 20:08:02 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1733892]
O44 - LFC:[MD5.C756130463679FD9DAA95AB5CB7CC481] - 26/05/2011 - 20:03:15 ---A- . (...) -- C:\Windows\setupact.log [560]
O44 - LFC:[MD5.811D0E51D1B83957BE7F271891405550] - 26/05/2011 - 20:03:14 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.73BDB66DA2C016CBD6DF8FE49C18C646] - 26/05/2011 - 19:47:55 ---A- . (...) -- C:\Windows\PFRO.log [582]
O44 - LFC:[MD5.DF9F04813B9B1395A8AC3CFECC5BBF49] - 26/05/2011 - 16:04:48 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.1B7EAA786F994A36D306324CC6B009E8] - 26/05/2011 - 16:04:48 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106388]
O44 - LFC:[MD5.C0EF0A87BF43950567FBAEC444359880] - 26/05/2011 - 16:04:48 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130754]
O44 - LFC:[MD5.584EFF0CA5B0144392F9DFCEFAF8E158] - 26/05/2011 - 16:04:48 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616008]
O44 - LFC:[MD5.25A12D9EE1B129EA4EB890EAFACCDDE6] - 26/05/2011 - 16:04:48 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704480]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 25/05/2011 - 13:22:17 ---A- . (...) -- C:\Windows\setuperr.log [0]
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "EnableShellExecuteHooks"=1
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.1CFFE9C06E66A57DAE1452E449A58240] - 08/07/2009 - 12:48:50 ---A- . (.Hewlett-Packard - HP Accelerometer.) -- C:\Windows\system32\drivers\Accelerometer.sys [41272]
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]
O58 - SDL:[MD5.EC7EBAB00A4D8448BAB68D1E49B4BEB9] - 11/03/2011 - 07:22:41 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]
O58 - SDL:[MD5.DB27766102C7BF7E95140A2AA81D042E] - 11/03/2011 - 07:22:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]
O58 - SDL:[MD5.6923740DB573B46FDDA13E1DF412C577] - 13/01/2011 - 09:37:12 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [20560]
O58 - SDL:[MD5.DE001B988B58BFD453F667842655B22E] - 13/01/2011 - 09:37:23 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [62032]
O58 - SDL:[MD5.E0D1002D7FA65DD023788B17F714E682] - 13/01/2011 - 09:37:34 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [29264]
O58 - SDL:[MD5.C3EAFDC0F533425614430A112BA71E9A] - 13/01/2011 - 09:41:44 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [273488]
O58 - SDL:[MD5.0226FFBC420D8FB67BA3B9DBDD1F2DCA] - 13/01/2011 - 09:40:20 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [51792]
O58 - SDL:[MD5.0ACC06FCF46F64ED4F11E57EE461C1F4] - 05/10/2009 - 08:34:00 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1542656]
O58 - SDL:[MD5.FB7602C5C508BE281368AAE0B61B51C6] - 30/09/2009 - 18:34:32 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys [121872]
O58 - SDL:[MD5.52679612D742BF74CA1BA6AB86DDF431] - 22/01/2010 - 18:13:24 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [6233088]
O58 - SDL:[MD5.414E0788920A8C856032BE2CBF29F984] - 22/01/2010 - 17:07:56 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys [161280]
O58 - SDL:[MD5.52679612D742BF74CA1BA6AB86DDF431] - 22/01/2010 - 18:13:24 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atipmdag.sys [6233088]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]
O58 - SDL:[MD5.AF838D8029AE7C27470862D63FA54D24] - 07/01/2010 - 19:22:34 ---A- . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\system32\drivers\btwaudio.sys [98344]
O58 - SDL:[MD5.5C849BD7C78791C5CEE9F4651D7FE38D] - 07/01/2010 - 19:22:36 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\system32\drivers\btwavdt.sys [132648]
O58 - SDL:[MD5.6149301DC3F81D6F9667A3FBAC410975] - 07/01/2010 - 19:22:40 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\system32\drivers\btwl2cap.sys [35104]
O58 - SDL:[MD5.3E1991AFA851A36DC978B0A1B0535C8B] - 07/01/2010 - 19:22:44 ---A- . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\system32\drivers\btwrchid.sys [21160]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]
O58 - SDL:[MD5.A298AEA9FCA253E7EFF040A08C7C6376] - 29/01/2010 - 19:30:10 --HA- . (.DeviceVM, Inc. - DVMIO virtual device driver for 64bit.) -- C:\Windows\system32\drivers\dvmio.sys [20056]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]
O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 13:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]
O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 01/05/2010 - 02:21:00 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\system32\drivers\HECIx64.sys [56344]
O58 - SDL:[MD5.05712FDDBD45A5864EB326FAABC6A4E3] - 08/07/2009 - 12:49:08 ---A- . (.Hewlett-Packard - HP Disk Filter - SATA/RAID.) -- C:\Windows\system32\drivers\hpdskflt.sys [30008]
O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [77888]
O58 - SDL:[MD5.1384872112E8E7FD5786ECEB8BDDF4C9] - 13/04/2010 - 08:44:22 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [540696]
O58 - SDL:[MD5.B75E45C564E944A2657167D197AB29DA] - 11/03/2011 - 07:23:00 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]
O58 - SDL:[MD5.6CBFC48E5C663EA8493AE3E75A6BF511] - 22/01/2010 - 17:08:28 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [8034368]
O58 - SDL:[MD5.6CBFC48E5C663EA8493AE3E75A6BF511] - 22/01/2010 - 17:08:28 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdpmd64.sys [8034368]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]
O58 - SDL:[MD5.36FDF367A1DABFF903E2214023D71368] - 26/10/2009 - 21:39:44 ---A- . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\system32\drivers\Impcd.sys [151936]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]
O58 - SDL:[MD5.3D3C4B63F11F63F50253E734F0ACE9F2] - 20/12/2010 - 17:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [24152]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]
O58 - SDL:[MD5.64428DFDAF6E88366CB51F45A79C5F69] - 10/06/2009 - 21:35:28 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\netw5v64.sys [5434368]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]
O58 - SDL:[MD5.A4D9C9A608A97F59307C2F2600EDC6A4] - 11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]
O58 - SDL:[MD5.6C1D5F70E7A6A3FD1C90D840EDC048B9] - 11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]
O58 - SDL:[MD5.777FC2C418465404E3D8A290DC247D24] - 28/11/2009 - 02:45:06 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys [295424]
O58 - SDL:[MD5.907C4464381B5EBDFDC60F6C7D0DEDFC] - 12/01/2010 - 23:31:04 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys [232992]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]
O58 - SDL:[MD5.936A4D05F7A790B8AAB3B6BE61651E0E] - 14/01/2010 - 08:38:52 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\system32\drivers\stwrt64.sys [505856]
O58 - SDL:[MD5.7369D6268E21481A8DCB8E94063C47B1] - 10/04/2010 - 00:34:44 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [315440]
O58 - SDL:[MD5.F724B03C3DFAACF08D17D38BF3333583] - 28/09/2010 - 15:44:52 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys [51712]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]
O58 - SDL:[MD5.0C4540311E11664B245A263E1154CEF8] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL6.SYS [292864]
O58 - SDL:[MD5.18E40C245DBFAF36FD0134A7EF2DF396] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT6.SYS [740864]
O58 - SDL:[MD5.02071D207A9858FBE3A48CBFD59C4A04] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV6.SYS [1485312]
O58 - SDL:[MD5.B3EEACF62445E24FBB2CD4B0FB4DB026] - 10/06/2009 - 21:35:33 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\Windows\system32\drivers\yk62x64.sys [389120]
O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 17:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [38224]
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\atipmdag.sys - amdkmdag(amdkmdag) .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK
O64 - Services: CurCS - 30/12/1899 - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt(aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR
O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSP.sys - (.not file.) - aswSP (aswSP) .(...) - LEGACY_ASWSP
O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI
O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP
O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT
O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC
O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\igdpmd64.sys - intelkmd(intelkmd) .(.Intel Corporation - Intel Graphics Kernel Mode Driver.) - LEGACY_INTELKMD
O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS
O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY
O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS
O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS
O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL
O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV
O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {3F44ECCE-D836-466E-85E8-6B8FD493FEDB} [DefaultScope] - (Bing) - http://www.bing.com
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.)
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)
O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)
O87 - FAEL: "{A9270BFA-C142-4A47-9E73-F5D0C4219D34}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR.exe (.not file.)
O87 - FAEL: "{D0AF2078-05A0-4D7C-890C-036B1392AA6F}" | In - Public - P6 - TRUE | .(.EasyBits Software AS - EasyBits My First Browser.) -- C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe
O87 - FAEL: "{C74ACE9E-CA5A-4CC9-AFCE-32B8C930A39D}" | In - Public - P17 - TRUE | .(.EasyBits Software AS - EasyBits My First Browser.) -- C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{01DA0842-820C-4177-B56C-9DC73224F7D6}" |In - None - P6 - TRUE | .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartMusic.exe (.not file.)
O87 - FAEL: "{5A0FC0E8-FCBA-4E0A-9781-9133E2BE04E8}" |In - None - P6 - TRUE | .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartPhoto.exe (.not file.)
O87 - FAEL: "{881B35C9-7BE3-4591-B09F-9B71A3CF2C26}" |In - None - P6 - TRUE | .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPTouchSmartVideo.exe (.not file.)
O87 - FAEL: "{405E2636-299A-4626-8B37-C4152B702E04}" |In - None - P6 - TRUE | .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\TSMAgent.exe (.not file.)
O87 - FAEL: "{E517E974-AA1F-4B09-8022-6326DD982B82}" |In - None - P6 - TRUE | .(...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\CLML\CLMLSvc.exe (.not file.)
O87 - FAEL: "{9474E465-6CE1-47FF-9818-6F31222AB890}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP DVDSmart Main Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
O87 - FAEL: "{DD23C667-0C1C-4D13-B3BA-76D3E704C93A}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP MediaSmart Music Main Program.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\HPTouchSmartMusic.exe
O87 - FAEL: "{277ADDF1-A46B-4C6F-868D-5099E638D7F3}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\iTV\QP.exe (.not file.)
O87 - FAEL: "{D11AA7E2-1EB0-415E-A7B1-32BD51345240}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Hewlett-Packard\Media\iTV\QPService.exe (.not file.)
O87 - FAEL: "{1D01F64D-F521-4DE6-8563-4DB6757A96F8}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP MediaSmart TV.) -- C:\Program Files (x86)\Hewlett-Packard\Media\iTV\HPiTV.exe
O87 - FAEL: "{94313AD1-5890-4810-8728-6C19EEB87631}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "TCP Query User{195F65CA-DFA0-4FC1-ABDF-C28EDC427309}C:\program files (x86)\emule\emule.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "UDP Query User{965A5DB5-1C75-4F93-8A16-1EE75DD2794E}C:\program files (x86)\emule\emule.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "TCP Query User{624FFD64-2CC7-4728-AAD3-0DB70E3CDD0F}C:\program files (x86)\emule\emule.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "UDP Query User{15371356-87FE-4837-8EEE-369F5B75CA60}C:\program files (x86)\emule\emule.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\emule\emule.exe (.not file.)
O87 - FAEL: "TCP Query User{4BD5D049-23B0-42FD-AC9C-0B05DB5AEA53}C:\program files (x86)\filezilla ftp client\filezilla.exe" | In - Private - P6 - TRUE | .(.FileZilla Project.) -- C:\program files (x86)\filezilla ftp client\filezilla.exe
O87 - FAEL: "UDP Query User{208B9046-F97B-4876-A3A4-5BD20E231714}C:\program files (x86)\filezilla ftp client\filezilla.exe" | In - Private - P17 - TRUE | .(.FileZilla Project.) -- C:\program files (x86)\filezilla ftp client\filezilla.exe
O87 - FAEL: "TCP Query User{911B0220-55B6-461C-81D5-F56218E17F21}C:\program files (x86)\google\google earth\client\googleearth.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\google\google earth\client\googleearth.exe (.not file.)
O87 - FAEL: "UDP Query User{596A2AB3-67C9-4EE3-AC27-B97129F1B041}C:\program files (x86)\google\google earth\client\googleearth.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\google\google earth\client\googleearth.exe (.not file.)
O87 - FAEL: "{21BCC7EA-9EB6-45D6-A539-1E929B5D72FD}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{1F319D95-8F5E-4FED-8021-A01F11E854CA}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{5FB59AD8-23D2-4020-9F7A-89FEE1F32402}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{C8774ED4-71AA-42A8-BF45-35233592C5D3}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
---\\ Scan Additionnel (O88)
Database Version : 8004 - (25/05/2011)
Clés trouvées (Keys found) : 19
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 3
Fichiers trouvés (Files found) : 0
[HKLM\Software\Classes\AppID\SoftwareUpdate.exe] =>PUP.Eorezo
[HKLM\Software\Wow6432Node\Classes\AppID\SoftwareUpdate.exe] =>PUP.Eorezo
[HKLM\Software\Classes\Conduit.Engine] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Conduit.Engine] =>Toolbar.Conduit
[HKLM\Software\Classes\Toolbar.CT2790392] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT2790392] =>Toolbar.Agent
[HKCR\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}] =>Adware.ClickPotato
[HKLM\Software\Classes\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}] =>Adware.ClickPotato
[HKLM\Software\Wow6432Node\Classes\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}] =>Adware.ClickPotato
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent
[HKLM\Software\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom] =>PUP.OfferBox
[HKLM\Software\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKCU\Software\freeCompressor] =>Adware.SPointer
[HKCU\Software\OfferBox] =>PUP.OfferBox
[HKLM\Software\OfferBox] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\OfferBox] =>PUP.OfferBox
[HKCU\Software\Spointer] =>Adware.SPointer
C:\Users\Chnoufs\AppData\Roaming\FreeCompressor =>Adware.SPointer
C:\Users\Chnoufs\AppData\Roaming\OfferBox =>PUP.OfferBox
C:\Program Files (x86)\OfferBox =>PUP.OfferBox
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 11/11/2010 68096 | (Adobe LM Service) . (...) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
SR - | Auto 03/03/2009 89600 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
SR - | Auto 03/03/2009 0 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe
SR - | Auto 18/02/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 13/01/2011 40384 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SS - | Demand 28/02/2011 183560 | (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\BBSvc.exe
SR - | Auto 06/04/2011 349472 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SR - | Auto 29/12/2009 873248 | (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - | Auto 30/12/2009 444680 | C:\Program Files\DigitalPersona\Bin\DpHostW.exe (DpHost) . (.DigitalPersona, Inc..) - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
SR - | Auto 25/01/2010 514232 | (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe
SS - | Demand 04/01/2010 238328 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SS - | Auto 27/12/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 27/12/2010 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 22/12/2009 136120 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 15/11/2010 126520 | (HP Health Check Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
SR - | Auto 16/12/2009 102968 | (HP Wireless Assistant Service) . (.Hewlett-Packard.) - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
SS - | Demand 24/03/2010 83240 | (hpdoccardsvc) . (.Hewlett-Packard Developement Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
SR - | Auto 28/03/2011 94264 | (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
SR - | Demand 28/03/2011 799800 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 28/03/2011 0 | (hpsrv) . (.Hewlett-Packard.) - C:\Windows\system32\Hpservice.exe
SR - | Auto 18/01/2010 20480 | (HPWMISVC) . (...) - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Demand 14/04/2011 934176 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 22/01/2010 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SR - | Auto 01/05/2010 325656 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 14/01/2010 244736 | (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
SR - | Auto 01/05/2010 2533400 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 06/01/2010 1791280 | (vcsFPService) . (.Validity Sensors, Inc..) - C:\Windows\system32\vcsFPService.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
End of the scan (1142 lines in 13mn 59s)(0)

OTL logfile created on: 26/05/2011 21:44:12 - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Chnoufs\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,80 Gb Total Physical Memory | 2,27 Gb Available Physical Memory | 59,68% Memory free
7,60 Gb Paging File | 5,70 Gb Available in Paging File | 74,95% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 441,91 Gb Total Space | 213,32 Gb Free Space | 48,27% Space Free | Partition Type: NTFS
Drive D: | 23,56 Gb Total Space | 3,41 Gb Free Space | 14,49% Space Free | Partition Type: NTFS
Drive E: | 99,02 Mb Total Space | 88,57 Mb Free Space | 89,44% Space Free | Partition Type: FAT32

Computer Name: PC-CHNOUFS | User Name: Chnoufs | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/05/26 21:42:36 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Chnoufs\Desktop\OTL.exe
PRC - [2011/05/15 19:16:00 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/03/28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2011/02/25 11:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/01/13 10:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/01/13 10:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/05/01 03:21:14 | 002,533,400 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010/05/01 03:21:14 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010/03/24 09:37:58 | 000,076,584 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
PRC - [2010/02/08 16:48:24 | 000,338,168 | -H-- | M] (DeviceVM, Inc.) -- C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
PRC - [2010/01/25 12:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe
PRC - [2010/01/25 12:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe
PRC - [2009/12/30 12:22:02 | 000,623,368 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe

========== Modules (SafeList) ==========

MOD - [2011/05/26 21:42:36 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Chnoufs\Desktop\OTL.exe
MOD - [2011/01/22 00:47:03 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2010/08/21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/01/13 10:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010/01/22 19:01:12 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010/01/18 15:04:08 | 000,020,480 | ---- | M] () [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV:64bit: - [2010/01/14 09:38:52 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010/01/06 01:14:28 | 002,184,496 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] -- C:\Windows\SysNative\vcsFPService.exe -- (vcsFPService)
SRV:64bit: - [2009/12/30 12:22:12 | 000,444,680 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost)
SRV:64bit: - [2009/12/29 14:19:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2009/12/16 14:51:46 | 000,102,968 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/08 13:49:02 | 000,030,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:64bit: - [2009/03/03 12:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe -- (AESTFilters)
SRV - [2011/03/28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2011/02/28 19:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 11:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/05/01 03:21:14 | 002,533,400 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2010/05/01 03:21:14 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2010/03/24 09:33:18 | 000,083,240 | ---- | M] (Hewlett-Packard Developement Company, L.P.) [On_Demand | Stopped] -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe -- (hpdoccardsvc)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/08 16:48:24 | 000,338,168 | -H-- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe -- (DvmMDES)
SRV - [2010/01/06 00:53:54 | 001,791,280 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\vcsFPService.exe -- (vcsFPService)
SRV - [2010/01/04 20:03:42 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/03/11 08:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 08:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/13 10:37:23 | 000,062,032 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2010/09/28 16:44:52 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2010/05/01 03:21:00 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2010/04/13 09:44:22 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/04/10 01:34:44 | 000,315,440 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/01/29 20:30:10 | 000,020,056 | -H-- | M] (DeviceVM, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dvmio.sys -- (DVMIO)
DRV:64bit: - [2010/01/22 19:13:24 | 006,233,088 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/01/22 18:08:28 | 008,034,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdpmd64.sys -- (intelkmd)
DRV:64bit: - [2010/01/22 18:08:28 | 008,034,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/01/22 18:07:56 | 000,161,280 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/01/14 09:38:52 | 000,505,856 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2010/01/12 00:31:04 | 000,232,992 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/01/07 20:22:44 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2010/01/07 20:22:40 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2010/01/07 20:22:36 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2010/01/07 20:22:34 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2009/11/28 03:45:06 | 000,295,424 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/10/26 22:39:44 | 000,151,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009/10/05 09:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/09/30 19:34:32 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 01:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/07/08 13:49:08 | 000,030,008 | ---- | M] (Hewlett-Packard) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2009/07/08 13:48:50 | 000,041,272 | ---- | M] (Hewlett-Packard) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2009/06/10 23:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 23:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 23:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 22:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 22:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel(R)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/18 14:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/3
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPNOT/3

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/3
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPNOT/3
IE - HKCU\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - Reg Error: Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/search?FORM=HPNTDF&PC=HPNTDF&q="
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.fr/"
FF - prefs.js..extensions.enabledItems: 2020Player@2020Technologies.com:4.5.4.0
FF - prefs.js..extensions.enabledItems: ClickPotatoLite@ClickPotatoLite.com:10.0.634.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24

FF - HKLM\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\ [2010/06/08 02:16:16 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011/05/15 19:16:06 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011/05/15 19:16:06 | 000,000,000 | ---D | M]

[2010/10/22 22:26:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Chnoufs\AppData\Roaming\mozilla\Extensions
[2011/05/15 19:09:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Chnoufs\AppData\Roaming\mozilla\Firefox\Profiles\5axkk2gd.default\extensions
[2010/12/14 08:36:34 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\Chnoufs\AppData\Roaming\mozilla\Firefox\Profiles\5axkk2gd.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/12/26 21:11:17 | 000,000,000 | ---D | M] (20-20 3D Viewer) -- C:\Users\Chnoufs\AppData\Roaming\mozilla\Firefox\Profiles\5axkk2gd.default\extensions\2020Player@2020Technologies.com
[2010/11/03 22:20:35 | 000,001,834 | ---- | M] () -- C:\Users\Chnoufs\AppData\Roaming\Mozilla\Firefox\Profiles\5axkk2gd.default\searchplugins\bing.xml
[2011/04/13 08:40:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/01/22 11:39:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/04/13 08:40:52 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) --
[2011/05/15 19:16:00 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2011/05/15 19:16:03 | 000,001,516 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazon-france.xml
[2011/05/15 19:16:03 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml
[2011/05/15 19:16:03 | 000,001,822 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/05/15 19:16:03 | 000,001,154 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-france.xml
[2011/05/15 19:16:03 | 000,001,426 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2011/05/15 19:16:03 | 000,000,956 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (HP SimplePass Identity Protection Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll (DigitalPersona, Inc.)
O2 - BHO: (HP SimplePass Identity Protection Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [HP Quick Launch] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Company)
O4:64bit: - HKLM..\Run: [HPToneControl] C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe (Hewlett-Packard )
O4:64bit: - HKLM..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe ()
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
O4 - HKLM..\Run: [HP Envy Guides AutoPlay] C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O8:64bit: - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8:64bit: - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
O18:64bit: - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe) - C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe (DigitalPersona, Inc.)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/05/26 21:42:30 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Users\Chnoufs\Desktop\OTL.exe
[2011/05/26 21:15:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
[2011/05/26 21:15:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ZHPDiag
[2011/05/26 21:13:04 | 002,491,803 | ---- | C] (Nicolas Coolman ) -- C:\Users\Chnoufs\Desktop\ZHPDiag2.exe
[2011/05/26 20:56:05 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Roaming\Malwarebytes
[2011/05/26 20:55:59 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/05/26 20:55:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/05/26 20:55:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/05/26 20:55:55 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011/05/26 20:55:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011/05/26 20:54:42 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Chnoufs\Desktop\malwarebytes-anti-malware_malwarebytes_anti-malware_1.50.1_francais_215092.exe
[2011/05/26 20:39:53 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Users\Chnoufs\Desktop\TFC.exe
[2011/05/26 10:41:02 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{457A550C-1DA0-410B-BC75-2C911A192910}
[2011/05/25 14:12:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RegCleaner
[2011/05/25 14:11:51 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/05/25 09:57:46 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2011/05/25 09:23:02 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{02514D36-6952-45D2-A7FC-E60CC9B8CFCB}
[2011/05/24 08:32:13 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{15A18D36-A73D-4DC2-81B1-6BA2350B9AB2}
[2011/05/24 08:13:42 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{99B0554F-C5D0-4F79-AFE7-2920F27B4E1A}
[2011/05/23 19:58:26 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{5CA6F063-3C9D-4A11-B54A-612E3C4DBAD1}
[2011/05/19 06:57:18 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2011/05/19 06:57:18 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2011/05/18 21:36:20 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{E4BCD643-5DD3-4876-BC9A-E77B5EFD1558}
[2011/05/18 08:39:21 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{A5470E28-FE98-47FB-8C65-3C3BB4F23FA7}
[2011/05/17 10:48:21 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{76BBD8ED-D207-4217-B731-7664992B5130}
[2011/05/16 22:10:37 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{3DC9BD50-2FA2-4165-8179-DF6771F91ECC}
[2011/05/16 21:35:33 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{5C0CD7D3-E115-4D2B-A709-E193D4ED1125}
[2011/05/16 06:11:43 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{CAC6DC11-CEFE-4C09-8584-291B08C5F82B}
[2011/05/15 08:28:00 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{B1695B5C-4F63-4504-B163-AF60823E5085}
[2011/05/14 07:49:56 | 012,602,568 | ---- | C] (Mozilla) -- C:\Users\Chnoufs\Firefox Setup 4.0.1.exe
[2011/05/14 07:46:47 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{5F2CADC3-B9A4-46B4-9FCD-78CA78BED9ED}
[2011/05/13 18:45:26 | 005,509,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2011/05/13 18:45:25 | 003,957,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2011/05/13 18:45:24 | 003,901,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2011/05/13 18:38:09 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{9C4173F7-9039-4E69-A99B-79BC7FB20080}
[2011/04/29 21:49:39 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{0DA6D442-C5DE-45EF-AE77-7DD85740577F}
[2011/04/29 08:23:31 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{F633EC05-95AA-40EE-A386-827087B52E6D}
[2011/04/28 18:26:18 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\Desktop\ProcessExplorer
[2011/04/28 18:08:26 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\Desktop\TeamViewerPortable
[2011/04/28 07:39:59 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011/04/28 07:39:59 | 002,614,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2011/04/28 07:39:31 | 000,662,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2011/04/28 07:39:31 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2011/04/28 07:38:38 | 002,566,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2011/04/28 07:38:37 | 001,686,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2011/04/28 07:38:37 | 000,187,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2011/04/28 07:38:37 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2011/04/28 07:38:37 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2011/04/28 07:38:36 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2011/04/28 07:38:36 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2011/04/28 07:38:02 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2011/04/28 07:38:02 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2011/04/28 07:31:32 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{1D4CBBB5-B6C8-4E97-AA4F-48F5A2EC99D7}
[2011/04/27 22:00:23 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Roaming\Windows Live Writer
[2011/04/27 22:00:23 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\Windows Live Writer
[2011/04/27 18:20:22 | 000,000,000 | ---D | C] -- C:\Users\Chnoufs\AppData\Local\{0358E95E-1B67-49CD-96AE-79F8E2EDE1BC}

========== Files - Modified Within 30 Days ==========

[2011/05/26 21:52:08 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/26 21:52:08 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/26 21:45:00 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/05/26 21:42:36 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Chnoufs\Desktop\OTL.exe
[2011/05/26 21:31:52 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin
[2011/05/26 21:15:59 | 000,001,002 | ---- | M] () -- C:\Users\Public\Desktop\MBRCheck.lnk
[2011/05/26 21:15:59 | 000,000,995 | ---- | M] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2011/05/26 21:15:59 | 000,000,990 | ---- | M] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2011/05/26 21:15:39 | 002,491,803 | ---- | M] (Nicolas Coolman ) -- C:\Users\Chnoufs\Desktop\ZHPDiag2.exe
[2011/05/26 21:03:27 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/05/26 21:03:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/26 21:03:09 | 3062,255,616 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/26 20:55:59 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/26 20:54:43 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Chnoufs\Desktop\malwarebytes-anti-malware_malwarebytes_anti-malware_1.50.1_francais_215092.exe
[2011/05/26 20:40:29 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Users\Chnoufs\Desktop\TFC.exe
[2011/05/26 20:25:59 | 000,739,397 | ---- | M] () -- C:\Users\Chnoufs\Desktop\OneClick2RP.exe
[2011/05/26 18:34:21 | 000,007,616 | ---- | M] () -- C:\Users\Chnoufs\AppData\Local\Resmon.ResmonCfg
[2011/05/26 17:04:48 | 001,549,700 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011/05/26 17:04:48 | 000,704,480 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2011/05/26 17:04:48 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011/05/26 17:04:48 | 000,130,754 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2011/05/26 17:04:48 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011/05/25 14:13:27 | 000,000,962 | ---- | M] () -- C:\Users\Chnoufs\Desktop\RegCleaner.lnk
[2011/05/25 14:11:56 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/05/25 09:22:30 | 000,000,340 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForChnoufs.job
[2011/05/15 19:16:36 | 000,002,056 | ---- | M] () -- C:\Users\Chnoufs\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/05/14 07:50:05 | 012,602,568 | ---- | M] (Mozilla) -- C:\Users\Chnoufs\Firefox Setup 4.0.1.exe
[2011/05/13 18:48:18 | 000,001,854 | ---- | M] () -- C:\Users\Chnoufs\AppData\Roaming\GhostObjGAFix.xml
[2011/04/28 18:24:02 | 001,544,204 | ---- | M] () -- C:\Users\Chnoufs\Desktop\ProcessExplorer.zip
[2011/04/28 18:05:38 | 016,000,386 | ---- | M] () -- C:\Users\Chnoufs\Desktop\TeamViewerPortable.zip
[2011/04/27 22:36:18 | 000,252,856 | ---- | M] () -- C:\Users\Chnoufs\Documents\Sylvie Rico_27_04_2011@22_34_59.wav

========== Files Created - No Company Name ==========

[2011/05/26 21:31:51 | 000,000,512 | ---- | C] () -- C:\PhysicalDisk0_MBR.bin
[2011/05/26 21:15:59 | 000,001,002 | ---- | C] () -- C:\Users\Public\Desktop\MBRCheck.lnk
[2011/05/26 21:15:59 | 000,000,995 | ---- | C] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2011/05/26 21:15:59 | 000,000,990 | ---- | C] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2011/05/26 20:55:59 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/05/26 20:25:14 | 000,739,397 | ---- | C] () -- C:\Users\Chnoufs\Desktop\OneClick2RP.exe
[2011/05/25 14:12:35 | 000,000,962 | ---- | C] () -- C:\Users\Chnoufs\Desktop\RegCleaner.lnk
[2011/05/25 14:11:56 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/05/15 19:16:09 | 000,001,154 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/04/28 18:23:41 | 001,544,204 | ---- | C] () -- C:\Users\Chnoufs\Desktop\ProcessExplorer.zip
[2011/04/28 18:05:08 | 016,000,386 | ---- | C] () -- C:\Users\Chnoufs\Desktop\TeamViewerPortable.zip
[2011/04/27 22:36:18 | 000,252,856 | ---- | C] () -- C:\Users\Chnoufs\Documents\Sylvie Rico_27_04_2011@22_34_59.wav
[2011/03/16 23:22:01 | 000,007,616 | ---- | C] () -- C:\Users\Chnoufs\AppData\Local\Resmon.ResmonCfg
[2011/01/11 18:27:37 | 000,001,854 | ---- | C] () -- C:\Users\Chnoufs\AppData\Roaming\GhostObjGAFix.xml
[2011/01/06 21:20:40 | 000,815,104 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011/01/06 21:20:40 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010/11/06 14:10:24 | 000,000,382 | ---- | C] () -- C:\Windows\ODBC.INI
[2010/10/22 22:36:26 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2010/06/08 01:50:24 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/06/08 01:42:37 | 000,001,035 | ---- | C] () -- C:\Windows\SysWow64\atipblup.dat
[2010/06/08 01:40:50 | 000,000,299 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini
[2010/06/08 01:40:50 | 000,000,240 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini
[2010/05/18 12:15:54 | 000,000,211 | ---- | C] () -- C:\Windows\SysWow64\HPWA.ini
[2010/05/18 11:15:58 | 000,009,988 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat
[2010/01/27 17:05:52 | 000,012,800 | ---- | C] () -- C:\Windows\LPRES.DLL
[2010/01/22 18:08:32 | 000,870,544 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin
[2010/01/22 18:08:32 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2010/01/22 18:08:32 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2010/01/22 18:08:30 | 000,051,068 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin
[2010/01/22 18:08:28 | 000,127,896 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin
[2009/12/30 11:57:04 | 000,000,256 | ---- | C] () -- C:\Windows\SysWow64\DPFPApi.dll.hpsign
[2009/12/30 11:57:04 | 000,000,256 | ---- | C] () -- C:\Windows\SysWow64\DPClback.dll.hpsign
[2009/12/29 23:36:24 | 000,000,256 | ---- | C] () -- C:\Windows\SysWow64\DPPassFilter.dll.hpsign
[2009/12/29 23:36:24 | 000,000,256 | ---- | C] () -- C:\Windows\SysWow64\DPCrProv.dll.hpsign
[2009/12/29 23:35:50 | 000,000,256 | ---- | C] () -- C:\Windows\SysWow64\DPFPApiUI.dll.hpsign
[2009/11/30 15:55:34 | 000,370,312 | ---- | C] () -- C:\Windows\SysWow64\sqlite3.dll
[2009/10/27 00:06:08 | 000,001,035 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2009/07/14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009/07/14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009/07/14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:59:36 | 001,498,564 | ---- | C] () -- C:\Windows\SysWow64\igkrng400.bin
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2003/04/01 11:58:02 | 000,005,260 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI

========== LOP Check ==========

[2010/10/22 22:09:49 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\DigitalPersona
[2011/05/25 14:15:59 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\FileZilla
[2011/01/25 23:44:57 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\freeCompressor
[2011/01/03 22:54:46 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\Gaijin Ent
[2010/12/14 17:53:44 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\Juniper Networks
[2011/02/05 14:10:32 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\MediaMan
[2011/02/17 19:05:43 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\OfferBox
[2010/11/11 20:30:36 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\RhinoSoft.com
[2010/11/11 20:48:05 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\svBuilder
[2011/01/03 22:53:32 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\WildTangent
[2011/04/27 22:00:23 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\Windows Live Writer
[2011/02/05 15:03:48 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\WindSolutions
[2010/10/22 22:36:21 | 000,000,000 | ---D | M] -- C:\Users\Chnoufs\AppData\Roaming\_MDLogs
[2011/03/26 09:55:09 | 000,032,482 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

OTL Extras logfile created on: 26/05/2011 21:44:12 - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Chnoufs\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,80 Gb Total Physical Memory | 2,27 Gb Available Physical Memory | 59,68% Memory free
7,60 Gb Paging File | 5,70 Gb Available in Paging File | 74,95% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 441,91 Gb Total Space | 213,32 Gb Free Space | 48,27% Space Free | Partition Type: NTFS
Drive D: | 23,56 Gb Total Space | 3,41 Gb Free Space | 14,49% Space Free | Partition Type: NTFS
Drive E: | 99,02 Mb Total Space | 88,57 Mb Free Space | 89,44% Space Free | Partition Type: FAT32

Computer Name: PC-CHNOUFS | User Name: Chnoufs | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.html[@ = ChromeHTML] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" File not found
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Parcourir avec Corel PaintShop Photo Pro X3] -- "c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Corel Paint Shop Pro Photo.exe" "%L" (Corel, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1"
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Parcourir avec Corel PaintShop Photo Pro X3] -- "c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Corel Paint Shop Pro Photo.exe" "%L" (Corel, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0E543634-7E25-4B8F-8D5B-97880E5E5088}" = Bonjour
"{10F539B1-31AF-43BF-9F0C-0EB66E918922}" = HP Quick Launch
"{16DDB3D1-5C27-4599-9C63-E583287191CC}" = iTunes
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{26A24AE4-039D-4CA4-87B4-2F86416017FF}" = Java(TM) 6 Update 17 (64-bit)
"{4B4E2FA2-3B1E-4147-99DB-5033981D8C2F}" = HP MediaSmart Movies and TV
"{4B5F58F7-C7D1-3CE3-9B37-B657F0852643}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{6ECE2119-D131-484C-839A-39F9C5E5FA0A}" = HP Wireless Assistant
"{731A1D36-BF17-4C76-B7E7-CC055AF8C54E}" = HP MediaSmart SmartMenu
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8F473675-D702-45F9-8EBC-342B40C17BF5}" = Apple Mobile Device Support
"{8FCDACA0-E090-4A9A-AC71-A96E7371DC6E}" = HP 3D DriveGuard
"{9207D4A1-586E-49CA-A002-FC9F475AB1A3}" = HP Tone Control
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = Broadcom 2070 Bluetooth 2.1 + EDR
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{EC72C7A8-377D-2A55-C6DD-7F78D8FDA75A}" = ccc-utility64
"{EE5017A6-7525-4EE9-99DA-2EF1F6C16B1B}" = Validity Sensors DDK
"{F20DF0CA-5929-4C26-A501-FDB19FDF0A50}" = HP SimplePass Identity Protection
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F6246243-CF06-4E40-8A37-C3B537695C36}" = Share64
"{F72FC7C5-5D2F-41EC-11DE-FD9F5F6D415A}" = ATI Catalyst Install Manager
"3BA80AB4C7E9F8497C115C844953A3D4BEB84D21" = Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800)
"6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1" = Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405)
"7E38E30BB92ED94B21CF062A7386554CBA991FEB" = Windows Driver Package - Broadcom Bluetooth (12/16/2009 6.2.0.9414)
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{D1AEB5DB-04FA-489D-94EF-8600898B93EE}" = Corel PaintShop Photo Pro X3
"_{F072CA07-A781-45E4-9975-C033A73019CF}" = Corel VideoStudio Pro X3
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08C94F9D-EB51-D748-E299-E347A2C14A81}" = PX Profile Update
"{08DB3902-2CE0-474D-BCE3-0177766CE9F1}" = HP Support Assistant
"{09F56A49-A7B1-4AAB-95B9-D13094254AD1}" = Windows Live UX Platform Language Pack
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CD13A6E-02F9-F579-098C-85C97FEFFC50}" = Catalyst Control Center Graphics Full Existing
"{16EB4BD9-9F50-173A-ACE7-F79018319EC9}" = CCC Help Chinese Standard
"{188E3023-961F-2760-3A2B-A8226B9FC7BD}" = Catalyst Control Center Graphics Previews Common
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 24
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{3023EBDA-BF1B-4831-B347-E5018555F26E}" = Movie Theme Pack for HP MediaSmart Video
"{321DC370-3241-F037-05C4-5A675526BDD9}" = CCC Help Czech
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{36069430-7A6F-72E6-EF30-CA411132DB56}" = Catalyst Control Center Graphics Light
"{3877C901-7B90-4727-A639-B6ED2DD59D43}" = ESU for Microsoft Windows 7
"{394FA67A-FF0A-4356-BB77-D85E5A300BDE}" = HP QuickWeb Installer
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}" = HP Advisor
"{43969854-00A9-264C-B75D-C0C6198DE080}" = CCC Help Turkish
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{590A2658-60DD-35A8-1039-73DF201ADDAE}" = CCC Help Japanese
"{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger
"{61BEA823-ECAF-49F1-8378-A59B3B8AD247}" = Microsoft Default Manager
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{64697847-F052-3DD7-545A-D738D98EDCB8}" = CCC Help French
"{64F7810B-1007-D5AC-5329-9ED3B58D280A}" = CCC Help Portuguese
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{655E1AAC-FD77-AC36-8864-5084D321708F}" = CCC Help Thai
"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ACF87EE-0C55-43DB-8861-84EC53EF3841}" = Catalyst Control Center Graphics Previews Vista
"{6BE14C99-7BA6-9BAF-556B-0EF9620326DB}" = CCC Help Italian
"{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}" = HP MediaSmart Photo
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76810709-A7D3-468D-9167-A1780C1E766C}" = Windows Live FolderShare
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}" = Bing Bar
"{78B23F3F-FEE2-F533-92BA-900EC9D17FF1}" = CCC Help Spanish
"{7F4BC97F-4203-8544-F472-0A04B7694FE3}" = Catalyst Control Center Localization All
"{80DD44E8-3624-AAF2-9605-CE06299DC44E}" = CCC Help Finnish
"{845B064A-E1E3-9427-9724-983C06BF3D54}" = CCC Help Danish
"{853A4763-6643-4604-8D64-28BDD8925F4C}" = Apple Application Support
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C0D6DC7-5B6D-3FA5-9634-17393849CD07}" = CCC Help Korean
"{8C69826D-0EEE-5786-7D26-30D238758174}" = CCC Help Chinese Traditional
"{8DA0CD14-79DF-49BF-B133-409C004F27E1}" = HP User Guides 0177
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F0D054F-BE75-8AE7-33F0-B66A7A5732DC}" = CCC Help Dutch
"{9011040C-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}" = HP MediaSmart Music
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{97C82B44-D408-4F14-9252-47FC1636D23E}_is1" = IZArc 4.1.2
"{9A05F9E5-B7CF-FAA4-27BF-1AB02B810C17}" = Catalyst Control Center Core Implementation
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9ABB092F-47B1-A5FE-A565-5F0B02E0370F}" = CCC Help German
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.1 MUI
"{B9F4E4D8-19E3-12F7-ED3C-BD44D201B780}" = CCC Help Norwegian
"{BB553EAD-4EEC-C92E-41E3-64BFF5114635}" = CCC Help Greek
"{BDDDF6F6-7EC9-5921-98BA-83E5D727846E}" = CCC Help English
"{C1A0D5F7-02F3-4D95-872A-0E56CF968DC6}" = Catalyst Control Center - Branding
"{C3036565-A89C-41BB-BB5F-95ECE549D7FF}" = HP Software Framework
"{C371EF5D-ADA8-568F-2157-A61D266BE5E3}" = CCC Help Polish
"{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Atheros Driver Installation Program
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"{CBC09103-563D-87E6-FADA-BEDF944615D7}" = CCC Help Swedish
"{CC7553CB-AB4E-5BCA-DC44-54D823B83E60}" = Catalyst Control Center InstallProxy
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D12E3E7F-1B13-4933-A915-16C7DD37A095}" = HP MediaSmart Video
"{D1612A3D-0DCC-4055-BB6A-0036F31158A0}" = Setup
"{D1AEB5DB-04FA-489D-94EF-8600898B93EE}" = ICA
"{D1F80EFD-A032-4E8E-A367-70C44AD4DCE0}" = ISCOM
"{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D46D081B-F60E-467E-A7C4-117B70D76731}" = HP Update
"{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}" = Intel(R) Turbo Boost Technology Driver
"{D89272DE-CF29-8D5C-B01A-410F06E2E903}" = ccc-core-static
"{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}" = Adobe Shockwave Player
"{DA4BF4BE-3CDC-43B5-BBDA-DDDA73103111}" = Corel PaintShop Photo Pro X3
"{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"{DCD941B6-F2E7-4FAF-B102-F7D4DE5FF99A}" = IPM_PSP_Pro
"{DCF1928A-FC01-48E7-A7E6-4651D42EF6A1}" = PSPPRO_DCRAW
"{DF8B9311-ADE7-4EDE-B121-326CAA3D225D}" = PSPPContent
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E2831862-F131-4327-B9CC-FA30F587EB6C}" = HP Setup
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}" = HP MediaSmart Internet TV
"{EA407008-B75B-B657-0B1C-7D3394783D2A}" = CCC Help Hungarian
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EFB21DE7-8C19-4A88-BB28-A766E16493BC}" = Adobe Photoshop CS
"{F069C491-69E6-4D9B-9A0C-B7894A1FA97C}" = Setup
"{F072CA07-A781-45E4-9975-C033A73019CF}" = ICA
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F206FEC3-F5DD-43FD-A8CF-9C46B8A6A92C}" = VSPro
"{F4E9851F-765E-40B7-9859-237C2724E62C}" = DeviceIO
"{F6A76E9C-C299-4CFA-AD2A-57FE9DD68B70}" = Contents
"{F8423392-2296-4748-9B66-344432459632}" = PureHD
"{F909BD3C-8684-4ACF-B7C3-33F4F9F901B7}" = Share
"{F95C8C1F-25BB-44EC-A7E6-5C17ABC6BC71}" = VIO
"{FA8BFB25-BF48-4F8B-8859-B30810745190}" = LightScribe System Software
"{FB0B6DDD-DF3E-4CD6-927C-724AB854E322}" = VSClassic
"{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}" = DVD Menu Pack for HP MediaSmart Video
"{FBAFC032-87CF-7E5C-827D-E3BF924B1770}" = Catalyst Control Center Graphics Full New
"{FCCAFC12-0033-C4AA-A322-D086EAC3BE80}" = CCC Help Russian
"{FD67D9F3-FED6-4A2E-9D6C-8C8C44DEF8FF}" = IPM_VS_Pro
"{FE661711-E392-4B3F-A4A7-02C747C09134}" = ISCOM
"{FEC7B56F-A010-4866-809E-F5082CF5BB8C}" = HP ENVY Document Card Utilities
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"avast5" = avast! Free Antivirus
"Bink and Smacker" = Bink and Smacker
"EasyBits Magic Desktop" = Magic Desktop
"FileZilla Client" = FileZilla Client 3.3.5.1
"HP DVB-T TV Tuner" = HP DVB-T TV Tuner 8.0.64.43
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}" = Movie Theme Pack for HP MediaSmart Video
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}" = HP MediaSmart Photo
"InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}" = HP MediaSmart Music
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
"InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}" = HP MediaSmart Video
"InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow!
"InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}" = HP MediaSmart Internet TV
"InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}" = DVD Menu Pack for HP MediaSmart Video
"Juniper_Setup_Client Activex Control" = Juniper Networks Setup Client Activex Control
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Money2005b" = Microsoft Money
"Mozilla Firefox 4.0.1 (x86 fr)" = Mozilla Firefox 4.0.1 (x86 fr)
"My HP Game Console" = HP Game Console
"Picasa 3" = Picasa 3
"WildTangent hp Master Uninstall" = HP Games
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinLiveSuite" = Windows Live
"WT082124" = Blasterball 3
"WT082141" = FATE
"WT082168" = Penguins!
"WT082172" = Polar Bowler
"WT082192" = Bejeweled 2 Deluxe
"WT082200" = Chuzzle Deluxe
"WT082222" = Insaniquarium Deluxe
"WT082241" = Virtual Villagers - The Secret City
"WT082246" = Zuma Deluxe
"WT082396" = Diner Dash 2 Restaurant Rescue
"WT082409" = Mahjongg Artifacts
"WT082414" = Mystery P.I. - The Vegas Heist
"WT082422" = Wedding Dash
"WT082427" = Slingo Deluxe
"WT082439" = Bus Driver
"WT083492" = Agatha Christie - Death on the Nile
"WT083510" = Jewel Quest Solitaire
"WT083514" = Jewel Quest II
"WT083521" = Dream Chronicles
"WT083529" = Gem Shop
"Xvid_is1" = Xvid 1.2.1 final uninstall
"ZHPDiag_is1" = ZHPDiag 1.27

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CopyTrans Suite" = CopyTrans Suite désinstallation uniquement
"Juniper_Setup_Client" = Juniper Networks Setup Client
"Neoteris_Host_Checker" = Juniper Networks Host Checker

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 24/04/2011 17:56:25 | Computer Name = PC-Chnoufs | Source = Application Error | ID = 1000
Description = Nom de l’application défaillante mDNSResponder.exe, version : 2.0.4.0,
horodatage : 0x4cae1be1 Nom du module défaillant : mDNSResponder.exe, version :
2.0.4.0, horodatage : 0x4cae1be1 Code d’exception : 0xc0000005 Décalage d’erreur :
0x0000110a ID du processus défaillant : 0xb84 Heure de début de l’application défaillante
: 0x01cc026f93e336de Chemin d’accès de l’application défaillante : C:\Program Files
(x86)\Bonjour\mDNSResponder.exe Chemin d’accès du module défaillant: C:\Program
Files (x86)\Bonjour\mDNSResponder.exe ID de rapport : b2758813-6ebd-11e0-b6a8-acdfd5657986

Error - 25/04/2011 05:55:41 | Computer Name = PC-Chnoufs | Source = SideBySide | ID = 16842785
Description = La création du contexte d’activation a échoué pour « c:\Program Files
(x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Python Libraries\Lib\distutils\command\wininst-8_d.exe ».
Assembly
dépendant Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.

Error - 25/04/2011 11:55:52 | Computer Name = PC-Chnoufs | Source = Application Error | ID = 1000
Description = Nom de l’application défaillante plugin-container.exe, version : 1.9.2.4095,
horodatage : 0x4d852c62 Nom du module défaillant : ntdll.dll, version : 6.1.7600.16695,
horodatage : 0x4cc7ab86 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00022262
ID
du processus défaillant : 0x1290 Heure de début de l’application défaillante : 0x01cc0336b083a126
Chemin
d’accès de l’application défaillante : C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
Chemin
d’accès du module défaillant: C:\Windows\SysWOW64\ntdll.dll ID de rapport : 7e89012f-6f54-11e0-bcfe-fc7cc062fd98

Error - 26/04/2011 12:03:58 | Computer Name = PC-Chnoufs | Source = Microsoft-Windows-RestartManager | ID = 10006
Description = Impossible de fermer l’application ou le service « hpCaslNotification ».

Error - 27/04/2011 13:14:49 | Computer Name = PC-Chnoufs | Source = SideBySide | ID = 16842785
Description = La création du contexte d’activation a échoué pour « c:\Program Files
(x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Python Libraries\Lib\distutils\command\wininst-8_d.exe ».
Assembly
dépendant Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.

Error - 27/04/2011 16:00:10 | Computer Name = PC-Chnoufs | Source = ESENT | ID = 215
Description = wlmail (3700) WindowsLiveMail0: La sauvegarde a été arrêtée car elle
a été interrompue par le client ou la connexion avec le client a échoué.

Error - 28/04/2011 03:02:40 | Computer Name = PC-Chnoufs | Source = SideBySide | ID = 16842785
Description = La création du contexte d’activation a échoué pour « c:\Program Files
(x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Python Libraries\Lib\distutils\command\wininst-8_d.exe ».
Assembly
dépendant Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.

Error - 29/04/2011 05:12:56 | Computer Name = PC-Chnoufs | Source = SideBySide | ID = 16842785
Description = La création du contexte d’activation a échoué pour « c:\Program Files
(x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Python Libraries\Lib\distutils\command\wininst-8_d.exe ».
Assembly
dépendant Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.

Error - 29/04/2011 11:08:04 | Computer Name = PC-Chnoufs | Source = Microsoft Office 11 | ID = 2001
Description = Rejected Safe Mode action : Microsoft Office Word.

Error - 14/05/2011 02:47:18 | Computer Name = PC-Chnoufs | Source = SideBySide | ID = 16842785
Description = La création du contexte d’activation a échoué pour « c:\Program Files
(x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Python Libraries\Lib\distutils\command\wininst-8_d.exe ».
Assembly
dépendant Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.

[ Hewlett-Packard Events ]
Error - 04/01/2011 12:18:59 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\011104051857.xml
File not created by asset agent

Error - 11/01/2011 12:27:36 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\011111052733.xml
File not created by asset agent

Error - 01/02/2011 12:20:56 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\021101052047.xml
File not created by asset agent

Error - 08/02/2011 12:02:59 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\021108050256.xml
File not created by asset agent

Error - 24/02/2011 18:10:26 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\021124111023.xml
File not created by asset agent

Error - 01/03/2011 12:19:00 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\031101051851.xml
File not created by asset agent

Error - 01/03/2011 12:19:02 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\031101051900.xml
File not created by asset agent

Error - 06/04/2011 15:38:17 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\041106093808.xml
File not created by asset agent

Error - 12/04/2011 11:39:30 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\041112053922.xml
File not created by asset agent

Error - 21/04/2011 15:25:36 | Computer Name = PC-Chnoufs | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\041121092533.xml
File not created by asset agent

[ HP Wireless Assistant Events ]
Error - 25/05/2011 06:08:13 | Computer Name = PC-Chnoufs | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 25/05/2011 08:29:49 | Computer Name = PC-Chnoufs | Source = HP WA Application | ID = 0
Description = HardwareAccess.UnableToConnectException Application.ApplicationStartup;
failed to create hardware layer Erreur de l'application. à HardwareAccess.Hardware..ctor(Dispatcher
dispatcher, ServicePort port, Int32 timeout) à HardwareAccess.Hardware.Create(Dispatcher
dispatcher, ServicePort port, Int32 timeout) à HPWA_Main.App.ApplicationStartup(Object
sender, StartupEventArgs args)

Error - 25/05/2011 08:30:24 | Computer Name = PC-Chnoufs | Source = HP WA Application | ID = 0
Description = MainWindow.ShowImpl; not initialized, closing application...

Error - 25/05/2011 09:11:04 | Computer Name = PC-Chnoufs | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 25/05/2011 14:52:19 | Computer Name = PC-Chnoufs | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 26/05/2011 04:43:01 | Computer Name = PC-Chnoufs | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 26/05/2011 05:23:57 | Computer Name = PC-Chnoufs | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 26/05/2011 08:31:06 | Computer Name = PC-Chnoufs | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 26/05/2011 14:52:30 | Computer Name = PC-Chnoufs | Source = HP WA Service | ID = 0
Description = GetPanelBrightnessTables() failed : e_BIOS_INVALID_COMMAND_TYPE

Error - 26/05/2011 15:06:36 | Computer Name = PC-Chnoufs | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 à HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) à HPPA_Service.CurrentConfiguration.ReloadRadioList()

[ System Events ]
Error - 16/05/2011 15:59:36 | Computer Name = PC-Chnoufs | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Échec de l’installation : l’installation de la mise à jour suivante
a échoue avec l’erreur 0x800706be : Windows Internet Explorer 9 pour Windows 7
pour ordinateurs à processeur x64.

Error - 17/05/2011 04:48:14 | Computer Name = PC-Chnoufs | Source = WMPNetworkSvc | ID = 866314
Description =

Error - 17/05/2011 04:48:14 | Computer Name = PC-Chnoufs | Source = WMPNetworkSvc | ID = 866314
Description =

Error - 18/05/2011 04:34:25 | Computer Name = PC-Chnoufs | Source = volsnap | ID = 393252
Description = Les clichés instantanés du volume C: ont été annulés car le stockage
du cliché instantané n’a pas pu s’agrandir en raison d’une limite utilisateur.

Error - 18/05/2011 09:19:26 | Computer Name = PC-Chnoufs | Source = EventLog | ID = 6008
Description = L’arrêt système précédant à 14:42:43 le ?18/?05/?2011 n’était pas
prévu.

Error - 25/05/2011 08:26:20 | Computer Name = PC-Chnoufs | Source = Service Control Manager | ID = 7009
Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de
l’attente de la connexion du service HP Health Check Service.

Error - 25/05/2011 08:26:20 | Computer Name = PC-Chnoufs | Source = Service Control Manager | ID = 7000
Description = Le service HP Health Check Service n’a pas pu démarrer en raison de
l’erreur : %%1053

Error - 25/05/2011 08:26:51 | Computer Name = PC-Chnoufs | Source = Service Control Manager | ID = 7009
Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de
l’attente de la connexion du service HP Wireless Assistant Service.

Error - 25/05/2011 08:26:51 | Computer Name = PC-Chnoufs | Source = Service Control Manager | ID = 7000
Description = Le service HP Wireless Assistant Service n’a pas pu démarrer en raison
de l’erreur : %%1053

Error - 26/05/2011 15:31:48 | Computer Name = PC-Chnoufs | Source = Application Popup | ID = 1060
Description = Le chargement de \??\C:\Users\Chnoufs\AppData\Local\Temp\mbr.sys a
été bloqué en raison d’une incompatibilité avec ce système. Contactez l’éditeur
de votre logiciel pour obtenir une version compatible du pilote.

< End of report >

Bonjour
merci d'utiliser un serveur de fichier pour poster tes rapports ça sera plus facile

www.ci-joint.fr

Tu as différentes infections que nous allons traité

Télécharge de AD-Remover sur ton Bureau. (Merci à C_XX)

http://www.teamxscript.org/too/AD-R.exe

Miroir:

http://forum-aide-contre-virus.be/download/C_XX/AD-R.exe

/!\ Ferme toutes applications en cours /!\

/!\ Désactive provisoirement et seulement le temps de l'utilisation de AD-Remover, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « Scanner »
- Confirme lancement du scan
- Laisse travailler l’outil.
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-reportScan.Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

AD-Remover : Nettoyage

Relance Ad-remover.exe, par un double-clique sur l'icône Ad-remover située sur ton Bureau.
Sur la page, clique sur le bouton <>
Laisse travailler l'outil
Poste le rapport qui apparait à la fin
(Le rapport est sauvegardé aussi sous C:\Ad-reportClean.Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
Aide en image : clique ici

Redémarre ton pc comme demander puis

J'ai vu que malwarebyte est installé sur ton pc, assures toi d'avoir la derniere version ainsi que base virale à jour, et réalise un scan rapide.
Poste le rapport dans ta prochaine réponse , il se trouvera dans l'onglet rapport/logs avec la date du jour.

reposte moi un nouveau rapport ZHPDiag,
Bonne journée

Bonjour,

Voici les 2 rapports Ad_Remover :

http://www.cijoint.fr/cjlink.php?file=cj201105/cij8cL5tNl.txt
http://www.cijoint.fr/cjlink.php?file=cj201105/cijYqY8Zcc.txt

Voici le scan rapide de Malwarebyte :
http://www.cijoint.fr/cjlink.php?file=cj201105/cijE54sJQN.txt

Voici le rapport ZHPDiag :
http://www.cijoint.fr/cjlink.php?file=cj201105/cij87OwrGI.txt

Merci d'avance

Bonjour
Réouvre AD-remover et clic sur le bouton désinstaller.

Ensuite nous allons terminer le nettoyage :
ZHPFix : raccourcis sur le bureau

Lance ZHPFix (si tu es sous Windows Vista ou Windows 7, lance le par un clic-droit dessus --> exécuter en tant qu'administrateur).
Copie les lignes suivantes :

SysRestore
EmptyTemp
FirewallRAZ
M2 - MFEP: prefs.js [Chnoufs - 5axkk2gd.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20101113Wb1 (.Google Inc..)
[HKLM\Software\Classes\AppID\SoftwareUpdate.exe]
[HKLM\Software\Wow6432Node\Classes\AppID\SoftwareUpdate.exe]
[HKCR\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}]
[HKLM\Software\Classes\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}]
[HKLM\Software\Wow6432Node\Classes\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}]
[HKCU\Software\AppDataLow\Software\BitTorrentBar]
O43 - CFD: 22/04/2011 - 23:35:42 - [93323] ----D- C:\ProgramData\Spybot - Search & Destroy
Clique sur l'icone représentant la lettre H (« coller les lignes Helper »)
Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
Clique sur le bouton « GO » pour lancer le nettoyage,
Copie/colle la totalité du rapport dans ta prochaine réponse, le rapport est situé sur ton bureau

Est ce que ton PC va mieux maintenant ?

Si oui nous pouvons mettre à jour certains logiciels.

Java 6 update 24 -> 25
Java

Rends toi sur le site de java pour installer : Java 6 update 25[list]
http://www.java.com/fr/download/

Rends toi dans la panneau de configuration > désinstaller un programme et désinstalle la version 6 update 17.

Acrobat Reader 10.1 :
Rends toi sur cette page : http://get.adobe.com/fr/reader/

Décoche la case : McAfee® Security Scan Plus gratuit (en option)
Clique sur le bouton Télécharger.
Installe Acrobat reader.

Adobe flash player 10.3 :
Rends toi sur : http://get.adobe.com/fr/flashplayer/
Pour réaliser la mise à jour de flash player
Clic sur le bouton télecharger maintenant.
Décoche les programmes supplémentaires si proposer (mac afee, google toolbar ou autre)

Avast6 est disponible gratuitement :
il serait préférable de mettre ta version à niveau
Rends toi sur ce site pour la telecharger : http://www.01net.com/telecharger/windows/Securite/antivirus-antitrojan/fiches/25899.html
Puis désinstalle ton ancienne version et installe cette nouvelle version
ou
clic droit sur l'icone avast dans la barre des taches, mise à jour du logiciel est à choisir.

Si tu souhaites optimiser ton pc nous pouvons le faire, c'est à dire alléger le démarrage de ton pc en retirant des logiciels inutiles ou superflus ainsi que des services.

Poste moi après tout ceci un nouveau rapport ZHPDiag
BON DIMANCHE

Laddy

Bonjour,

Voici le rapport :
http://www.cijoint.fr/cjlink.php?file=cj201105/cijECNYNNN.txt

Mon PC ne va pas mieux, il est toujours aussi lent, lorsque je souhaite écrire un mail les lettres arrivent bien après et lorsque je souhaite ouvrir un dossier je dois attendre pas mal de temps pour que l'explorateur s'ouvre.
Désolée

Bonjour,

Après plusieurs jours d'utilisation mon PC ne fonctionne pas mieux, en plus de gros ralentissement à l'utilisation, mon PC est très long à démarrer.
Que puis je faire d'autre svp ?
Je vous en remercie
Mimie

Bonjour
pour pouvoir continuer il me faut un nouveau rapport ZHPDiag comme demandé.

Mais avant vue que plusieurs jours se sont écoulés, met ZHPDiag à jour en cliquant sur la fleche verte, telecharger et accepte la mise à jour.

Bonsoir,

J'ai déjà déposé mon rapport dans mon avant dernier message du 30 mai comme demandé dans votre mail précédent.
Je viens de lancer un nouveau rapport après la mise à jour que vous m'avez demandé je vous le déposerai une fois terminé.
Merci d'avance de votre aide.
Mon PC est de plus en plus lent.

Re Bonsoir,

Voici le nouveau rapport :
http://www.cijoint.fr/cjlink.php?file=cj201106/cijbutaopy.txt
Merci beaucoup

Bonjour
tu es bien vague sur ta problème de ralentissement, c'est à dire ? quand est il lent ?

ZHPFix : raccourcis sur le bureau

Lance ZHPFix (si tu es sous Windows Vista ou Windows 7, lance le par un clic-droit dessus --> exécuter en tant qu'administrateur).
Copie les lignes suivantes :

SysRestore
R3 - URLSearchHook: (no name) [64Bits] - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} Clé orpheline
OPT:O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe (.not file.)
OPT:O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.)
OPT:O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.)
OPT:O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk . (...) -- C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (.not file.)
OPT:O4 - Global Startup: C:\Users\Chnoufs\Desktop\RegCleaner.lnk . (...) -- C:\Program Files\RegCleaner\RegCleanr.exe (.not file.)
OPT:O4 - Global Startup: C:\Users\Chnoufs\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IZArc.lnk . (...) -- C:\Program Files\IZArc\IZArc.exe (.not file.)
O43 - CFD: 22/04/2011 - 23:35:42 - [4584456] ----D- C:\Program Files (x86)\Spybot - Search & Destroy
C:\Users\Chnoufs\AppData\Roaming\FreeCompressor
ServiceDemand:LightScribeService
Clique sur l'icone représentant la lettre H (« coller les lignes Helper »)
Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
Clique sur le bouton « GO » pour lancer le nettoyage,
Copie/colle la totalité du rapport dans ta prochaine réponse, le rapport est situé sur ton bureau

Réalise les mises à jour demandées dans mon précédent message puis réaliser un nouveau rapport ZHPDiag après avoir redémarrer ton PC.

Bonsoir,

J'ai essayé de lancer ZHPFix mais il génère une erreur que je vous ai transmis:
http://www.cijoint.fr/cjlink.php?file=cj201106/cijMNRReB5.doc

J'ai fait toutes les MAJ que vous m'avez demandé.

Pour détailler les ralentissements :
mon PC met bien 10 bonnes minutes à démarrer, une fois qu'il semble démarré lorsque je clique sur l'icone de mozilla la page s'affiche au moins 1 à 2 minutes après.
Quand j'essaye d'écrire un mail les lettres s'affichent bien après et entre temps des lettres sont oubliées.
Le ralentissement se fait ressentir pour toutes les commandes que je lance ouverture de word ou d'excel par exemple.
J'ai relancé ZHPDiag je le posterai une fois le traitement terminé.
Je veux bien que vous m'aidiez à alléger le démarrage de mon pc en retirant des logiciels inutiles ou superflus ainsi que des services.
Je vous remercie de votre aide

Voici le rapport ZHPDiag de ce soir:
http://www.cijoint.fr/cjlink.php?file=cj201106/cijGXd6GVG.txt

Bonsoir
je regarade dès que possible désolé pour le temps d'attente mais je suis overbookée.

Bonsoir,
Je comprend tout à fait.
Merci de votre aide.

Sujet fermé en raison de l'inactivité. Si vous souhaitez réouvrir ce sujet, faites en la demande par Messagerie Privée [Fermé] PC très lent Bouton16

en précisant la raison et le lien vers ce sujet.
Ceci ne s'applique qu'à Mimie.
Pour les autres, créez votre propre sujet svp.

» [Fermé] ORDINATEUR TRES LENT ET PUB QUI SAFFICHE
» pc très très lent
» [PC infecté ]Mon XP est très très trè lent pour s'éteindre...que faire ?
» [Résolu] très très lent !!! ( facetheme )
» [résolu]PC très très lent