Se connecter / S'enregistrer
Votre question

Page d'accueil MIVOLO.COM

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
17 Juin 2011 21:04:24

Bonjour;
A chaque fois que je lance Firefox ma page d’accueil a changer, je me retrouve avec wxxxxxmivolo.com
J'ai beau remettre la mienne mais cela reviens a chaque redémarrage.
Comment puis je remédiez a ce problème.
Merci de votre aide.

Autres pages sur : page accueil mivolo com

18 Juin 2011 17:58:20

Bonjour,

*Télécharge RSIT (merci random/random) sur le Bureau : Ici
Double-clique sur RSIT.exe, il ne nécessite pas d' installation.
Clique Continue à l' écran Disclaimer si tu acceptes les conditions.
-Si HijackThis est non détecté sur ton Pc, il le téléchargera (autorise l' accès via ton pare-feu si demandé et accepte la licence).
Lorsque l' analyse sera terminée, deux fichiers texte s' ouvriront.
Poste le contenu de log.txt (celui qui s' ouvre) ainsi qu' info.txt qui est dans la Barre des Tâches

NB : Ces rapports sont enregistrés dans le dossier C:\rsit

A+
18 Juin 2011 22:33:21

frederix a dit :
Bonjour,

*Télécharge RSIT (merci random/random) sur le Bureau : Ici
Double-clique sur RSIT.exe, il ne nécessite pas d' installation.
Clique Continue à l' écran Disclaimer si tu acceptes les conditions.
-Si HijackThis est non détecté sur ton Pc, il le téléchargera (autorise l' accès via ton pare-feu si demandé et accepte la licence).
Lorsque l' analyse sera terminée, deux fichiers texte s' ouvriront.
Poste le contenu de log.txt (celui qui s' ouvre) ainsi qu' info.txt qui est dans la Barre des Tâches

NB : Ces rapports sont enregistrés dans le dossier C:\rsit

A+



Bonsoir,
Merci pour ton aide, voila les deux rapport:
Logfile of random's system information tool 1.08 (written by random/random)
Run by JAUZE at 2011-06-18 22:24:41
Microsoft Windows 7 Édition Familiale Premium Service Pack 1
System drive C: has 391 GB (86%) free of 454 GB
Total RAM: 3894 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:24:57, on 18/06/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\JAUZE\Downloads\Programs\RSIT.exe
C:\Program Files (x86)\trend micro\JAUZE.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.msn.com/?ocid=OIE9HP
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/?ocid=OIE9HP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/3
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://mivolo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, optimized for Bing and MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: HP SimplePass Identity Protection Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Envy Guides AutoPlay] C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [facemoods] "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe" /md I
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger avec Mipony - file://C:\Program Files (x86)\MiPony\Browser\IEContext.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Documention Flash Card Detection Service (hpdoccardsvc) - Hewlett-Packard Developement Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 27202 bytes

======Scheduled tasks folder======

C:\Windows\tasks\HPCeeScheduleForJAUZE.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2010-09-29 197984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP SimplePass Identity Protection Extension - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30 1262856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll [2010-10-26 262144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{90d46c30-9f25-4104-aea9-35c3f84477ff}]
mipony-plugin Toolbar - C:\Program Files (x86)\mipony-plugin\tbmipo.dll [2010-02-22 2353176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{90d46c30-9f25-4104-aea9-35c3f84477ff} - mipony-plugin Toolbar - C:\Program Files (x86)\mipony-plugin\tbmipo.dll [2010-02-22 2353176]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-05 988480]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll [2010-10-26 217088]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-01-22 98304]
"HP Envy Guides AutoPlay"=C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe [2010-03-24 76584]
"Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2010-01-25 61112]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
""= []
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
"facemoods"=C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe [2010-10-26 323584]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-01-27 1712184]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-11-10 4240760]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2010-09-29 3249504]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-06-17 2988928]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-05-18 52920]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableTaskMgr"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-06-18 22:24:41 ----D---- C:\rsit
2011-06-18 22:24:41 ----D---- C:\Program Files (x86)\trend micro
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Common Files\Adobe
2011-06-17 12:18:33 ----SHD---- C:\Config.Msi
2011-06-17 04:48:41 ----HD---- C:\Windows\msdownld.tmp
2011-06-16 19:51:05 ----D---- C:\Program Files (x86)\Common Files\Java
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\java.exe
2011-06-16 13:01:22 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2011-06-16 13:01:20 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\wininet.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\wextract.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\webcheck.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\vbscript.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\url.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\pngfilt.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\occache.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msrating.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msls31.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtmler.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshta.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jscript9.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\inseng.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\imgutil.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iexpress.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iesysprep.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iesetup.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iernonce.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iepeers.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieapfltr.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieakui.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieaksie.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieakeng.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\IEAdvpack.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ie4uinit.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\icardie.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\dxtrans.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\dxtmsft.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\admparse.dll
2011-05-24 16:48:42 ----A---- C:\Windows\SysWOW64\poqexec.exe

======List of files/folders modified in the last 1 months======

2011-06-18 22:24:41 ----RD---- C:\Program Files (x86)
2011-06-18 22:10:07 ----D---- C:\Windows\Temp
2011-06-18 22:03:05 ----D---- C:\Windows\winsxs
2011-06-18 21:50:00 ----A---- C:\Windows\SysWOW64\log.txt
2011-06-17 22:09:31 ----D---- C:\Program Files (x86)\EasyBits For Kids
2011-06-17 22:08:48 ----D---- C:\Windows\Prefetch
2011-06-17 22:08:36 ----D---- C:\Users\JAUZE\AppData\Roaming\_MDLogs
2011-06-17 12:19:39 ----SHD---- C:\Windows\Installer
2011-06-17 12:19:09 ----D---- C:\ProgramData\Adobe
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Common Files
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Adobe
2011-06-17 12:18:23 ----D---- C:\Windows\SysWOW64
2011-06-17 04:48:41 ----RD---- C:\Program Files
2011-06-17 04:48:41 ----D---- C:\Windows
2011-06-17 04:48:41 ----D---- C:\Program Files (x86)\Internet Explorer
2011-06-17 04:29:37 ----D---- C:\Windows\System32
2011-06-17 02:42:29 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-06-17 02:41:35 ----SHD---- C:\System Volume Information
2011-06-16 19:50:42 ----D---- C:\Program Files (x86)\Java
2011-06-15 18:04:21 ----D---- C:\Windows\rescache
2011-06-15 02:21:27 ----D---- C:\Windows\inf
2011-06-15 02:01:46 ----D---- C:\Windows\Logs
2011-06-15 02:01:45 ----D---- C:\Windows\servicing
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\wbem
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\migration
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\fr-FR
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\en-US
2011-06-15 02:00:05 ----D---- C:\Windows\PolicyDefinitions
2011-06-14 17:36:55 ----D---- C:\Windows\Tasks
2011-06-13 05:26:46 ----D---- C:\Program Files (x86)\Microsoft
2011-06-11 23:31:10 ----D---- C:\Users\JAUZE\AppData\Roaming\DMCache
2011-06-10 23:37:22 ----D---- C:\Program Files (x86)\JDownloader

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys []
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R1 DVMIO;DeviceVM IO Service; C:\Windows\system32\DRIVERS\dvmio.sys []
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys []
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 BthEnum;Pilote de bloc de demande Bluetooth; C:\Windows\system32\drivers\BthEnum.sys []
R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys []
R3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys []
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys []
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys []
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys []
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys []
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys []
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys []
R3 Point64;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point64.sys []
R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys []
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys []
S3 askzs279;askzs279; C:\Windows\SysWOW64\drivers\askzs279.sys []
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys []
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys []
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 DpHost;@C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2009-12-30 444680]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2010-01-25 514232]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-11-15 126520]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe []
R2 HPWMISVC;HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-05-01 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 12784]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe [2010-01-14 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-01 2533400]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-01-06 1791280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-28 799800]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-01-04 238328]
S3 hpdoccardsvc;HP Documention Flash Card Detection Service; C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe [2010-03-24 83240]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []

-----------------EOF-----------------



et le deuxieme :


info.txt logfile of random's system information tool 1.08 2011-06-18 22:24:59

======Uninstall list======

-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - genres\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Game Explorer Categories - main\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Club Penguin\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Dark Orbit\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - RuneScape HD\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - Seafight\Uninstall.exe"
-->"C:\Program Files (x86)\HP Games\Web Link - World of Warcraft\Uninstall.exe"
-->"C:\Program Files (x86)\InstallShield Installation Information\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\setup.exe" /z-uninstall
Acrobat.com-->MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10t_Plugin.exe -maintain plugin
Adobe Reader X (10.1.0) - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-AA1000000001}
Adobe Shockwave Player-->MsiExec.exe /X{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
Agatha Christie - Death on the Nile-->"C:\Program Files (x86)\HP Games\Agatha Christie - Death on the Nile\Uninstall.exe"
Apple Application Support-->MsiExec.exe /I{EE6097DD-05F4-4178-9719-D3170BF098E8}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Atheros Driver Installation Program-->C:\Program Files (x86)\InstallShield Installation Information\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}\setup.exe -runfromtemp -l0x040c
Bejeweled 2 Deluxe-->"C:\Program Files (x86)\HP Games\Bejeweled 2 Deluxe\Uninstall.exe"
Bing Bar-->MsiExec.exe /X{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}
Blasterball 3-->"C:\Program Files (x86)\HP Games\Blasterball 3\Uninstall.exe"
Bus Driver-->"C:\Program Files (x86)\HP Games\Bus Driver\Uninstall.exe"
CA Yahoo! Anti-Spy (remove only)-->"C:\Program Files (x86)\CA Yahoo! Anti-Spy\uninstall.exe"
Catalyst Control Center - Branding-->MsiExec.exe /I{C1A0D5F7-02F3-4D95-872A-0E56CF968DC6}
Chuzzle Deluxe-->"C:\Program Files (x86)\HP Games\Chuzzle Deluxe\Uninstall.exe"
CyberLink DVD Suite-->"C:\Program Files (x86)\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\Setup.exe" /z-uninstall
CyberLink DVD Suite-->"C:\Program Files (x86)\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\Setup.exe" /z-uninstall
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
DAEMON Tools Toolbar-->C:\Program Files (x86)\DAEMON Tools Toolbar\uninst.exe
Diner Dash 2 Restaurant Rescue-->"C:\Program Files (x86)\HP Games\Diner Dash 2 Restaurant Rescue\Uninstall.exe"
Dream Chronicles-->"C:\Program Files (x86)\HP Games\Dream Chronicles\Uninstall.exe"
DVD Menu Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}\setup.exe" /z-uninstall
DVD Menu Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}\setup.exe" /z-uninstall /zMS
ESU for Microsoft Windows 7-->MsiExec.exe /I{3877C901-7B90-4727-A639-B6ED2DD59D43}
Facemoods Toolbar-->"C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\uninstall.exe"
Farming Simulator 2011-->"C:\Program Files (x86)\Farming Simulator 2011\unins000.exe"
FATE-->"C:\Program Files (x86)\HP Games\FATE\Uninstall.exe"
Galerie de photos Windows Live-->MsiExec.exe /X{488F0347-C4A7-4374-91A7-30818BEDA710}
Gem Shop-->"C:\Program Files (x86)\HP Games\Gem Shop\Uninstall.exe"
HP Advisor-->MsiExec.exe /X{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
HP Customer Experience Enhancements-->MsiExec.exe /X{07FA4960-B038-49EB-891B-9F95930AA544}
HP DVB-T TV Tuner 8.0.64.43-->C:\Program Files (x86)\HP\HP DVB-T TV Tuner\uninst.exe
HP ENVY Document Card Utilities-->MsiExec.exe /I{FEC7B56F-A010-4866-809E-F5082CF5BB8C}
HP Game Console-->"C:\Program Files (x86)\HP Games\HP Game Console\Uninstall.exe"
HP Games-->"C:\Program Files (x86)\HP Games\Uninstall.exe"
HP MediaSmart DVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DCCAD079-F92C-44DA-B258-624FC6517A5A}\setup.exe" /z-uninstall
HP MediaSmart DVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DCCAD079-F92C-44DA-B258-624FC6517A5A}\setup.exe" /z-uninstall
HP MediaSmart Internet TV-->"C:\Program Files (x86)\InstallShield Installation Information\{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}\setup.exe" /z-uninstall
HP MediaSmart Internet TV-->"C:\Program Files (x86)\InstallShield Installation Information\{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}\setup.exe" /z-uninstall
HP MediaSmart Music-->"C:\Program Files (x86)\InstallShield Installation Information\{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}\setup.exe" /z-uninstall
HP MediaSmart Music-->"C:\Program Files (x86)\InstallShield Installation Information\{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}\setup.exe" /z-uninstall /zMS
HP MediaSmart Photo-->"C:\Program Files (x86)\InstallShield Installation Information\{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}\setup.exe" /z-uninstall
HP MediaSmart Photo-->"C:\Program Files (x86)\InstallShield Installation Information\{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}\setup.exe" /z-uninstall
HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{D12E3E7F-1B13-4933-A915-16C7DD37A095}\setup.exe" /z-uninstall
HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{D12E3E7F-1B13-4933-A915-16C7DD37A095}\setup.exe" /z-uninstall
HP MediaSmart Webcam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
HP MediaSmart Webcam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
HP QuickWeb Installer-->MsiExec.exe /X{394FA67A-FF0A-4356-BB77-D85E5A300BDE}
HP Setup-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{E2831862-F131-4327-B9CC-FA30F587EB6C}\setup.exe" -l0x9 -removeonly
HP Software Framework-->MsiExec.exe /X{C3036565-A89C-41BB-BB5F-95ECE549D7FF}
HP Support Assistant-->"C:\Program Files (x86)\InstallShield Installation Information\{08DB3902-2CE0-474D-BCE3-0177766CE9F1}\setup.exe" -runfromtemp -l0x0409 -removeonly
HP Update-->MsiExec.exe /X{D46D081B-F60E-467E-A7C4-117B70D76731}
HP User Guides 0176-->MsiExec.exe /X{20B88A14-02F9-48D4-ACEC-6D8F5F3E8A83}
HPAsset component for HP Active Support Library-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
IDT Audio-->"C:\Program Files (x86)\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe" -remove -removeonly
Insaniquarium Deluxe-->"C:\Program Files (x86)\HP Games\Insaniquarium Deluxe\Uninstall.exe"
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Rapid Storage Technology-->C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Intel(R) Turbo Boost Technology Driver-->C:\Program Files (x86)\Intel\Intel(R) Turbo Boost Technology Driver\Uninstall\setup.exe -uninstall -iips
Internet Download Manager-->C:\Program Files (x86)\Internet Download Manager\Uninstall.exe
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020F0}
Java(TM) 6 Update 26-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216024FF}
JDownloader 0.9-->C:\Program Files (x86)\JDownloader\JDUninstall.exe
JDownloader-->C:\Program Files (x86)\JDownloader\uninstall.exe
Jewel Quest II-->"C:\Program Files (x86)\HP Games\Jewel Quest II\Uninstall.exe"
Jewel Quest Solitaire-->"C:\Program Files (x86)\HP Games\Jewel Quest Solitaire\Uninstall.exe"
Junk Mail filter update-->MsiExec.exe /I{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
LabelPrint-->"C:\Program Files (x86)\InstallShield Installation Information\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\Setup.exe" /z-uninstall
LabelPrint-->"C:\Program Files (x86)\InstallShield Installation Information\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\Setup.exe" /z-uninstall
LightScribe System Software-->MsiExec.exe /X{FA8BFB25-BF48-4F8B-8859-B30810745190}
Macromedia Flash Player 8-->RunDll32 advpack.dll,LaunchINFSection C:\Windows\INF\swflash.inf,DefaultUninstall,5
Magic Desktop-->C:\Windows\system32\ezMDUninstall.exe
Mahjongg Artifacts-->"C:\Program Files (x86)\HP Games\Mahjongg Artifacts\Uninstall.exe"
Microsoft Office 2010-->MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
MiPony 1.2.0-->C:\Program Files (x86)\MiPony\uninst.exe
mipony-plugin Toolbar-->C:\PROGRA~2\MIPONY~1\UNWISE.EXE /U C:\PROGRA~2\MIPONY~1\INSTALL.LOG
Movie Theme Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{3023EBDA-BF1B-4831-B347-E5018555F26E}\setup.exe" /z-uninstall
Movie Theme Pack for HP MediaSmart Video-->"C:\Program Files (x86)\InstallShield Installation Information\{3023EBDA-BF1B-4831-B347-E5018555F26E}\setup.exe" /z-uninstall /zMS
Mozilla Firefox 4.0.1 (x86 fr)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
MSVCRT_amd64-->MsiExec.exe /I{D0B44725-3666-492D-BEF6-587A14BD9BD9}
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Mystery P.I. - The Vegas Heist-->"C:\Program Files (x86)\HP Games\Mystery P.I. - The Vegas Heist\Uninstall.exe"
OpenOffice.org 3.2-->MsiExec.exe /I{266517E6-D866-439D-919C-B8B1A52E6080}
Penguins!-->"C:\Program Files (x86)\HP Games\Penguins!\Uninstall.exe"
PhotoNow!-->"C:\Program Files (x86)\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" /z-uninstall
PhotoNow!-->"C:\Program Files (x86)\InstallShield Installation Information\{D36DD326-7280-11D8-97C8-000129760CBE}\Setup.exe" /z-uninstall
Polar Bowler-->"C:\Program Files (x86)\HP Games\Polar Bowler\Uninstall.exe"
Power2Go-->"C:\Program Files (x86)\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" /z-uninstall
Power2Go-->"C:\Program Files (x86)\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" /z-uninstall
PowerDirector-->"C:\Program Files (x86)\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\Setup.exe" /z-uninstall
PowerDirector-->"C:\Program Files (x86)\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\Setup.exe" /z-uninstall
QuickTime-->MsiExec.exe /I{57752979-A1C9-4C02-856B-FBB27AC4E02C}
Realtek Ethernet Controller Driver For Windows 7-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
Realtek USB 2.0 Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe" -runfromtemp -removeonly
Recovery Manager-->"C:\Program Files (x86)\InstallShield Installation Information\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\setup.exe" /z-uninstall
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)-->c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD8D7C9A-E56A-3E7B-BA6D-FE68F13296E3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {F66C3466-1FDB-347C-B3AE-FB6C50627B10} /parameterfolder Client
Slingo Deluxe-->"C:\Program Files (x86)\HP Games\Slingo Deluxe\Uninstall.exe"
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)-->c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {A45DD0BE-3CD9-3F1E-B233-B90C6983AE77} /parameterfolder Client
Virtual Villagers - The Secret City-->"C:\Program Files (x86)\HP Games\Virtual Villagers - The Secret City\Uninstall.exe"
VirtualDub 1.9.6 Fr-->"C:\Program Files (x86)\VirtualDub\unins000.exe"
VirtualDub Plugin Pack 1.0.0.6 Fr-->"C:\Program Files (x86)\VirtualDub\unins001.exe"
VLC media player 1.1.8-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
VSO Image Resizer 4.0.3.6-->"C:\Program Files (x86)\VSO\Image Resizer 4\unins000.exe"
Wedding Dash-->"C:\Program Files (x86)\HP Games\Wedding Dash\Uninstall.exe"
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live FolderShare-->MsiExec.exe /X{2075CB0A-D26F-4DAA-B424-5079296B43BA}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Mail-->MsiExec.exe /I{9D56775A-93F3-44A3-8092-840E3826DE30}
Windows Live Mail-->MsiExec.exe /I{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
Windows Live Messenger-->MsiExec.exe /X{6057E21C-ABE9-4059-AE3E-3BEB9925E660}
Windows Live Messenger-->MsiExec.exe /X{EB4DF488-AAEF-406F-A341-CB2AAA315B90}
Windows Live Movie Maker-->MsiExec.exe /X{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Common-->MsiExec.exe /X{C893D8C0-1BA0-4517-B11C-E89B65E72F70}
Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live PIMT Platform-->MsiExec.exe /I{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{09F56A49-A7B1-4AAB-95B9-D13094254AD1}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live Writer Resources-->MsiExec.exe /X{62687B11-58B5-4A18-9BC3-9DF4CE03F194}
Windows Live Writer-->MsiExec.exe /X{3B9A92DA-6374-4872-B646-253F18624D5F}
Windows Live Writer-->MsiExec.exe /X{A726AE06-AAA3-43D1-87E3-70F510314F04}
Windows Live Writer-->MsiExec.exe /X{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
Windows Live-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Windows Live-->MsiExec.exe /I{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Zuma Deluxe-->"C:\Program Files (x86)\HP Games\Zuma Deluxe\Uninstall.exe"

======System event log======

Computer Name: JAUZE-PC
Event Code: 10009
Message: DCOM n’a pas pu communiquer avec l’ordinateur WIN-AM0UTKQ9RG6 en utilisant les protocoles configurés.
Record Number: 2822
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20101225212935.000000-000
Event Type: Erreur
User:

Computer Name: JAUZE-PC
Event Code: 10009
Message: DCOM n’a pas pu communiquer avec l’ordinateur WIN-AM0UTKQ9RG6 en utilisant les protocoles configurés.
Record Number: 2820
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20101225212827.000000-000
Event Type: Erreur
User:

Computer Name: JAUZE-PC
Event Code: 10009
Message: DCOM n’a pas pu communiquer avec l’ordinateur WIN-AM0UTKQ9RG6 en utilisant les protocoles configurés.
Record Number: 2819
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20101225212819.000000-000
Event Type: Erreur
User:

Computer Name: JAUZE-PC
Event Code: 10009
Message: DCOM n’a pas pu communiquer avec l’ordinateur WIN-AM0UTKQ9RG6 en utilisant les protocoles configurés.
Record Number: 2811
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20101225212712.000000-000
Event Type: Erreur
User:

Computer Name: JAUZE-PC
Event Code: 10009
Message: DCOM n’a pas pu communiquer avec l’ordinateur WIN-AM0UTKQ9RG6 en utilisant les protocoles configurés.
Record Number: 2808
Source Name: Microsoft-Windows-DistributedCOM
Time Written: 20101225212704.000000-000
Event Type: Erreur
User:

==
Contenus similaires
19 Juin 2011 12:41:42

Bonjour,

¤ Télécharge Ad-Remover (merci C_XX) sur ton Bureau : Ici
- Double-clique dessus pour le démarrer (Vista/7, clic-droit>Exécuter en tant qu' Administrateur)
- Lance la recherche et poste le rapport généré

A+
19 Juin 2011 18:17:55

Bonjour,
Merci pour ton aide alors voila le rapport de AD-REMOVER:

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 18:08:16 le 19/06/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
JAUZE@JAUZE-PC (Hewlett-Packard HP Pavilion dv6 Notebook PC)

============== RECHERCHE ==============


Dossier trouvé: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\conduit
Dossier trouvé: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\ConduitEngine
Dossier trouvé: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\extensions\engine@conduit.com
Fichier trouvé: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\searchplugins\conduit.xml
Dossier trouvé: C:\Users\JAUZE\AppData\LocalLow\Conduit
Dossier trouvé: C:\Program Files (x86)\Conduit

-- Fichier ouvert: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\Prefs.js --
Ligne trouvée: user_pref("CT2465030.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne trouvée: user_pref("CT2465030.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT246...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20...
Ligne trouvée: user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Ligne trouvée: user_pref("CommunityToolbar.IsEngineShown", true);
Ligne trouvée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Ligne trouvée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://www.bing.com/search?FORM=HPNTDF&P...
Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList", "CT2465030,ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList2", "CT2465030");
Ligne trouvée: user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Apr 14 2011 22:22:57 GMT+02...
Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sun Jun 19 2011 02:52:59 GMT+0200");
Ligne trouvée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.alert.locale", "en");
Ligne trouvée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jun 18 2011 22:02:31 GMT+0200");
Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Ligne trouvée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Ligne trouvée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Ligne trouvée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Ligne trouvée: user_pref("CommunityToolbar.alert.userId", "5e63480c-3e85-4c9c-83d4-b3b48e054c9b");
Ligne trouvée: user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Ligne trouvée: user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Ligne trouvée: user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2465030");
Ligne trouvée: user_pref("ConduitEngine.AppTrackingLastCheckTime", "Wed Mar 23 2011 21:45:21 GMT+0100");
Ligne trouvée: user_pref("ConduitEngine.CTID", "ConduitEngine");
Ligne trouvée: user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Thu Jun 16 2011 23:03:36 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.FirstServerDate", "01/21/2011 15");
Ligne trouvée: user_pref("ConduitEngine.FirstTime", true);
Ligne trouvée: user_pref("ConduitEngine.FirstTimeFF3", true);
Ligne trouvée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Ligne trouvée: user_pref("ConduitEngine.Initialize", true);
Ligne trouvée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Ligne trouvée: user_pref("ConduitEngine.InstalledDate", "Fri Jan 21 2011 13:00:27 GMT+0100");
Ligne trouvée: user_pref("ConduitEngine.IsMulticommunity", false);
Ligne trouvée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Ligne trouvée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
Ligne trouvée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sat Jun 18 2011 22:02:49 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.LastLogin_3.2.5.2", "Fri Jan 21 2011 13:00:28 GMT+0100");
Ligne trouvée: user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sun Jun 19 2011 18:04:33 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Ligne trouvée: user_pref("ConduitEngine.SettingsLastCheckTime", "Sun Jun 19 2011 18:04:33 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.UserID", "UN86299112734152990");
Ligne trouvée: user_pref("ConduitEngine.componentAlertEnabled", true);
Ligne trouvée: user_pref("ConduitEngine.engineLocale", "fr");
Ligne trouvée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sat Jun 18 2011 22:02:48 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sun Jun 19 2011 18:04:33 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.initDone", true);
Ligne trouvée: user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Ligne trouvée: user_pref("ConduitEngine.usagesFlag", 2);
Ligne trouvée: user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&Sea...
Ligne trouvée: user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&q=");
-- Fichier Fermé --


Clé trouvée: HKLM\Software\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}
Clé trouvée: HKLM\Software\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2465030
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKCU\Software\AppDataLow\Toolbar
Clé trouvée: HKCU\Software\AppDataLow\Software\Conduit
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [4.0.1 (fr)] ****

HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Searchplugins\fcmdSrch.xml ( hxxp://start.facemoods.com/?a=ddrnw&f=4&q={searchTerms}/)
Components\browsercomps.dll (Mozilla Foundation)
HKLM_Extensions|otis@digitalpersona.com - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\
HKCU_Extensions|mozilla_cc@internetdownloadmanager.com - C:\Users\JAUZE\AppData\Roaming\IDM\idmmzcc3

-- C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default --
Extensions\engine@conduit.com (Conduit Engine )
Extensions\ffxtlbr@Facemoods.com (Facemoods)
Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack (Awesome screenshot: Capture and Annotate)
Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} (Google Toolbar for Firefox)
Extensions\{90d46c30-9f25-4104-aea9-35c3f84477ff} (mipony-plugin Community Toolbar)
Searchplugins\conduit.xml (hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&SearchSource=3&q={searchTerms} /)
Prefs.js - browser.download.lastDir, C:\\Users\\JAUZE\\Documents
Prefs.js - browser.search.defaultenginename, Facemoods Search
Prefs.js - browser.search.defaulturl, hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&SearchSource=3&q={searchTerms}
Prefs.js - browser.search.selectedEngine, Google
Prefs.js - browser.startup.homepage, aliceadsl.fr
Prefs.js - browser.startup.homepage_override.buildID, 20110413222027
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0.1
Prefs.js - keyword.URL, hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&q=

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://fr.msn.com/?ocid=OIE9HP
HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/?ocid=OIE9HP
HKLM_Main|Default_Page_URL - hxxp://g.uk.msn.com/HPNOT/3
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://mivolo.com
HKCU_URLSearchHooks|{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKLM_URLSearchHooks|{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKCU_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "?" (?)
HKLM_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "mipony-plugin Customized Web Search" (hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT...)
HKCU_Toolbar\WebBrowser|{90D46C30-9F25-4104-AEA9-35C3F84477FF} (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll)
HKLM_Toolbar|{90d46c30-9f25-4104-aea9-35c3f84477ff} (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKLM_Toolbar|{32099AAC-C132-4136-9E9A-4E364A424E17} (C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll)
HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} ("C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll") (x)
HKLM_Toolbar|{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll)
HKCU_ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} - C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
HKCU_ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
HKLM_ElevationPolicy\b6fa2407-e448-4156-b52b-b12edc378859 - C:\Program Files (x86)\mipony-plugin\mipony-pluginToolbarHelper.exe (?)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{aa851425-0109-43f3-9ed2-7b7090125861} - C:\Program Files (x86)\Microsoft\BingBar\BingBar.exe (Microsoft Corporation.)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
HKLM_ElevationPolicy\{FFDF9EF3-3C3A-4f05-9A6E-5D3B778EC567} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe (facemoods.com)
HKLM_Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F} - "Envoyer à Bluetooth" (C:\Program Files\WIDCOMM\Bluetooth Software\bt_cold_icon.ico)
BHO\{0055C089-8582-441B-A0BF-17B458C2A3A8} - "IDMIEHlprObj Class" (C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll)
BHO\{395610AE-C624-4f58-B89E-23733EA00F9A} - "HP SimplePass Identity Protection Extension" (C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll)
BHO\{64182481-4F71-486b-A045-B233BD0DA8FC} - "CescrtHlpr Object" (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll)
BHO\{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
BHO\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "Bing Bar Helper" ("C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll") (x)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 1 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 19/06/2011 18:08:55 (13034 Octet(s))

Fin à: 18:10:00, 19/06/2011

============== E.O.F ==============
19 Juin 2011 20:09:42

Re,

- Double-clique sur Ad-Remover pour l' exécuter
- Lance le nettoyage et poste le rapport
19 Juin 2011 21:41:45

Voila le rapport :

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 21:32:45 le 19/06/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
JAUZE@JAUZE-PC (Hewlett-Packard HP Pavilion dv6 Notebook PC)

============== ACTION(S) ==============


Erreur suppression dossier: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\conduit
Dossier supprimé: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\ConduitEngine
Dossier supprimé: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\extensions\engine@conduit.com
Fichier supprimé: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\searchplugins\conduit.xml
Dossier supprimé: C:\Users\JAUZE\AppData\LocalLow\Conduit
Dossier supprimé: C:\Program Files (x86)\Conduit

(!) -- Fichiers temporaires supprimés.


-- Fichier ouvert: C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default\Prefs.js --
Ligne supprimée: user_pref("CT2465030.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne supprimée: user_pref("CT2465030.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT246...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20...
Ligne supprimée: user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Ligne supprimée: user_pref("CommunityToolbar.IsEngineShown", true);
Ligne supprimée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Ligne supprimée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://www.bing.com/search?FORM=HPNTDF&P...
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList", "CT2465030,ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList2", "CT2465030");
Ligne supprimée: user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu Apr 14 2011 22:22:57 GMT+02...
Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sun Jun 19 2011 02:52:59 GMT+0200");
Ligne supprimée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.alert.locale", "en");
Ligne supprimée: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jun 18 2011 22:02:31 GMT+0200");
Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Ligne supprimée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Ligne supprimée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Ligne supprimée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Ligne supprimée: user_pref("CommunityToolbar.alert.userId", "5e63480c-3e85-4c9c-83d4-b3b48e054c9b");
Ligne supprimée: user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Ligne supprimée: user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Ligne supprimée: user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2465030");
Ligne supprimée: user_pref("ConduitEngine.AppTrackingLastCheckTime", "Wed Mar 23 2011 21:45:21 GMT+0100");
Ligne supprimée: user_pref("ConduitEngine.CTID", "ConduitEngine");
Ligne supprimée: user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Thu Jun 16 2011 23:03:36 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.FirstServerDate", "01/21/2011 15");
Ligne supprimée: user_pref("ConduitEngine.FirstTime", true);
Ligne supprimée: user_pref("ConduitEngine.FirstTimeFF3", true);
Ligne supprimée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Ligne supprimée: user_pref("ConduitEngine.Initialize", true);
Ligne supprimée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Ligne supprimée: user_pref("ConduitEngine.InstalledDate", "Fri Jan 21 2011 13:00:27 GMT+0100");
Ligne supprimée: user_pref("ConduitEngine.IsMulticommunity", false);
Ligne supprimée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Ligne supprimée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
Ligne supprimée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sat Jun 18 2011 22:02:49 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.LastLogin_3.2.5.2", "Fri Jan 21 2011 13:00:28 GMT+0100");
Ligne supprimée: user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sun Jun 19 2011 21:04:31 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Ligne supprimée: user_pref("ConduitEngine.SettingsLastCheckTime", "Sun Jun 19 2011 21:04:31 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.UserID", "UN86299112734152990");
Ligne supprimée: user_pref("ConduitEngine.componentAlertEnabled", true);
Ligne supprimée: user_pref("ConduitEngine.engineLocale", "fr");
Ligne supprimée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sat Jun 18 2011 22:02:48 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sun Jun 19 2011 18:04:33 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.initDone", true);
Ligne supprimée: user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Ligne supprimée: user_pref("ConduitEngine.usagesFlag", 2);
Ligne supprimée: user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&Sea...
Ligne supprimée: user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&q=");
-- Fichier Fermé --


Clé supprimée: HKLM\Software\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}
Clé supprimée: HKLM\Software\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2465030
Clé supprimée: HKLM\Software\Conduit
Clé supprimée: HKCU\Software\AppDataLow\Toolbar
Clé supprimée: HKCU\Software\AppDataLow\Software\Conduit
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [4.0.1 (fr)] ****

HKLM_MozillaPlugins\Adobe Reader (x)
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Searchplugins\fcmdSrch.xml ( hxxp://start.facemoods.com/?a=ddrnw&f=4&q={searchTerms}/)
Components\browsercomps.dll (Mozilla Foundation)
HKLM_Extensions|otis@digitalpersona.com - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\
HKCU_Extensions|mozilla_cc@internetdownloadmanager.com - C:\Users\JAUZE\AppData\Roaming\IDM\idmmzcc3

-- C:\Users\JAUZE\AppData\Roaming\Mozilla\FireFox\Profiles\o7gvq566.default --
Extensions\ffxtlbr@Facemoods.com (Facemoods)
Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack (Awesome screenshot: Capture and Annotate)
Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} (Google Toolbar for Firefox)
Extensions\{90d46c30-9f25-4104-aea9-35c3f84477ff} (mipony-plugin Community Toolbar)
Prefs.js - browser.download.lastDir, C:\\Users\\JAUZE\\Documents
Prefs.js - browser.search.defaultenginename, Facemoods Search
Prefs.js - browser.search.selectedEngine, Google
Prefs.js - browser.startup.homepage, aliceadsl.fr
Prefs.js - browser.startup.homepage_override.buildID, 20110413222027
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0.1

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKLM_URLSearchHooks|{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKCU_SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} - "?" (?)
HKCU_Toolbar\WebBrowser|{90D46C30-9F25-4104-AEA9-35C3F84477FF} (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKCU_Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17} (C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll)
HKLM_Toolbar|{90d46c30-9f25-4104-aea9-35c3f84477ff} (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
HKLM_Toolbar|{32099AAC-C132-4136-9E9A-4E364A424E17} (C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll)
HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} ("C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll") (x)
HKLM_Toolbar|{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll)
HKCU_ElevationPolicy\{1902485B-CE75-42C1-BA2D-57E660793D9A} - C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Tonec Inc.)
HKCU_ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
HKLM_ElevationPolicy\b6fa2407-e448-4156-b52b-b12edc378859 - C:\Program Files (x86)\mipony-plugin\mipony-pluginToolbarHelper.exe (?)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{aa851425-0109-43f3-9ed2-7b7090125861} - C:\Program Files (x86)\Microsoft\BingBar\BingBar.exe (Microsoft Corporation.)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{E0DACC63-037F-46EE-AC02-E4C7B0FBFEB4} - C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
HKLM_ElevationPolicy\{FFDF9EF3-3C3A-4f05-9A6E-5D3B778EC567} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe (facemoods.com)
HKLM_Extensions\{CCA281CA-C863-46ef-9331-5C8D4460577F} - "Envoyer à Bluetooth" (C:\Program Files\WIDCOMM\Bluetooth Software\bt_cold_icon.ico)
BHO\{0055C089-8582-441B-A0BF-17B458C2A3A8} - "IDMIEHlprObj Class" (C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll)
BHO\{395610AE-C624-4f58-B89E-23733EA00F9A} - "HP SimplePass Identity Protection Extension" (C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll)
BHO\{64182481-4F71-486b-A045-B233BD0DA8FC} - "CescrtHlpr Object" (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll)
BHO\{90d46c30-9f25-4104-aea9-35c3f84477ff} - "mipony-plugin Toolbar" (C:\Program Files (x86)\mipony-plugin\tbmipo.dll)
BHO\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "Bing Bar Helper" ("C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll") (x)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 105 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 16 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 19/06/2011 21:32:49 (12892 Octet(s))
C:\Ad-Report-SCAN[1].txt - 19/06/2011 18:08:55 (13173 Octet(s))

Fin à: 21:34:20, 19/06/2011

============== E.O.F ==============




20 Juin 2011 23:45:33

Bonsoir,

Voila le rapport de l'examen rapide:

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Version de la base de données: 6905

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

20/06/2011 23:02:05
mbam-log-2011-06-20 (23-02-05).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 170017
Temps écoulé: 5 minute(s), 57 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)


Merci pour ton aide
21 Juin 2011 23:16:31

Bonsoir,
Il n'as trouver aucune menace.
Pourtant j'ai toujours le même problème de page d'accueil.
merci
A+
22 Juin 2011 07:45:50

Bonjour,

poste un dernier rapport RSIT.

A+
22 Juin 2011 23:14:03

Bonsoir,
Merci pour ton aide, voila le rapport :

Logfile of random's system information tool 1.08 (written by random/random)
Run by JAUZE at 2011-06-22 23:11:47
Microsoft Windows 7 Édition Familiale Premium Service Pack 1
System drive C: has 391 GB (86%) free of 454 GB
Total RAM: 3894 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:11:57, on 22/06/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\JAUZE\Downloads\Programs\RSIT.exe
C:\Program Files (x86)\trend micro\JAUZE.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: HP SimplePass Identity Protection Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Envy Guides AutoPlay] C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [facemoods] "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe" /md I
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger avec Mipony - file://C:\Program Files (x86)\MiPony\Browser\IEContext.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Documention Flash Card Detection Service (hpdoccardsvc) - Hewlett-Packard Developement Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 26704 bytes

======Scheduled tasks folder======

C:\Windows\tasks\HPCeeScheduleForJAUZE.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2010-09-29 197984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP SimplePass Identity Protection Extension - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30 1262856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll [2010-10-26 262144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{90d46c30-9f25-4104-aea9-35c3f84477ff}]
mipony-plugin Toolbar - C:\Program Files (x86)\mipony-plugin\tbmipo.dll [2010-02-22 2353176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{90d46c30-9f25-4104-aea9-35c3f84477ff} - mipony-plugin Toolbar - C:\Program Files (x86)\mipony-plugin\tbmipo.dll [2010-02-22 2353176]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-05 988480]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-02-28 1089288]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll [2010-10-26 217088]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-01-22 98304]
"HP Envy Guides AutoPlay"=C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe [2010-03-24 76584]
"Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2010-01-25 61112]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
""= []
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
"facemoods"=C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe [2010-10-26 323584]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-01-27 1712184]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-11-10 4240760]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2010-09-29 3249504]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-06-17 2988928]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-05-18 52920]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableTaskMgr"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-06-21 20:42:04 ----D---- C:\Program Files (x86)\ESET
2011-06-20 22:53:04 ----D---- C:\Users\JAUZE\AppData\Roaming\Malwarebytes
2011-06-20 22:52:05 ----A---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2011-06-20 22:52:03 ----D---- C:\ProgramData\Malwarebytes
2011-06-20 22:51:58 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-06-19 21:32:49 ----A---- C:\Ad-Report-CLEAN[1].txt
2011-06-19 18:08:55 ----A---- C:\Ad-Report-SCAN[1].txt
2011-06-19 18:08:02 ----D---- C:\Program Files (x86)\Ad-Remover
2011-06-18 22:24:41 ----D---- C:\rsit
2011-06-18 22:24:41 ----D---- C:\Program Files (x86)\trend micro
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Common Files\Adobe
2011-06-17 04:48:41 ----HD---- C:\Windows\msdownld.tmp
2011-06-16 19:51:05 ----D---- C:\Program Files (x86)\Common Files\Java
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\java.exe
2011-06-16 13:01:22 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2011-06-16 13:01:20 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\wininet.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\wextract.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\webcheck.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\vbscript.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\url.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\pngfilt.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\occache.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msrating.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msls31.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtmler.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshta.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jscript9.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\inseng.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\imgutil.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iexpress.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iesysprep.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iesetup.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iernonce.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iepeers.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieapfltr.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieakui.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieaksie.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieakeng.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\IEAdvpack.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ie4uinit.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\icardie.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\dxtrans.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\dxtmsft.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\admparse.dll
2011-05-24 16:48:42 ----A---- C:\Windows\SysWOW64\poqexec.exe

======List of files/folders modified in the last 1 months======

2011-06-22 23:11:57 ----D---- C:\Windows\Prefetch
2011-06-22 23:11:55 ----D---- C:\Windows\Temp
2011-06-22 23:10:29 ----A---- C:\Windows\SysWOW64\log.txt
2011-06-21 20:45:24 ----D---- C:\Users\JAUZE\AppData\Roaming\DMCache
2011-06-21 20:42:04 ----RD---- C:\Program Files (x86)
2011-06-20 22:52:05 ----D---- C:\Windows\SysWOW64\drivers
2011-06-20 22:52:03 ----HD---- C:\ProgramData
2011-06-19 18:48:41 ----D---- C:\Windows\Microsoft.NET
2011-06-19 18:48:40 ----RSD---- C:\Windows\assembly
2011-06-19 02:46:45 ----D---- C:\Windows\winsxs
2011-06-19 02:42:12 ----SHD---- C:\Windows\Installer
2011-06-19 02:37:47 ----D---- C:\Windows\System32
2011-06-19 02:37:47 ----D---- C:\Windows\inf
2011-06-19 02:32:42 ----SHD---- C:\System Volume Information
2011-06-17 22:09:31 ----D---- C:\Program Files (x86)\EasyBits For Kids
2011-06-17 22:08:36 ----D---- C:\Users\JAUZE\AppData\Roaming\_MDLogs
2011-06-17 12:19:09 ----D---- C:\ProgramData\Adobe
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Common Files
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Adobe
2011-06-17 12:18:23 ----D---- C:\Windows\SysWOW64
2011-06-17 04:48:41 ----RD---- C:\Program Files
2011-06-17 04:48:41 ----D---- C:\Windows
2011-06-17 04:48:41 ----D---- C:\Program Files (x86)\Internet Explorer
2011-06-17 02:42:29 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-06-16 19:50:42 ----D---- C:\Program Files (x86)\Java
2011-06-15 18:04:21 ----D---- C:\Windows\rescache
2011-06-15 02:01:46 ----D---- C:\Windows\Logs
2011-06-15 02:01:45 ----D---- C:\Windows\servicing
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\wbem
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\migration
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\fr-FR
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\en-US
2011-06-15 02:00:05 ----D---- C:\Windows\PolicyDefinitions
2011-06-14 17:36:55 ----D---- C:\Windows\Tasks
2011-06-13 05:26:46 ----D---- C:\Program Files (x86)\Microsoft
2011-06-10 23:37:22 ----D---- C:\Program Files (x86)\JDownloader

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys []
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R1 DVMIO;DeviceVM IO Service; C:\Windows\system32\DRIVERS\dvmio.sys []
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys []
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 BthEnum;Pilote de bloc de demande Bluetooth; C:\Windows\system32\drivers\BthEnum.sys []
R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys []
R3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys []
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys []
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys []
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys []
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys []
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys []
R3 Point64;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point64.sys []
R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys []
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys []
S3 acy1kt3f;acy1kt3f; C:\Windows\SysWOW64\drivers\acy1kt3f.sys []
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
S3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys []
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys []
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys []
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 DpHost;@C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2009-12-30 444680]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2010-01-25 514232]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-11-15 126520]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe []
R2 HPWMISVC;HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-05-01 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 12784]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe [2010-01-14 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-01 2533400]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-01-06 1791280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-28 799800]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-01-04 238328]
S3 hpdoccardsvc;HP Documention Flash Card Detection Service; C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe [2010-03-24 83240]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []

-----------------EOF-----------------
23 Juin 2011 19:19:05

Bonjour,

as-tu fait la dernière màj de Firefox?

> 1) Télécharge :
CCleaner : Ici
Lance-le puis clique sur Options>Avancé et décoche Effacer uniquement les fichiers Temp de Windows datant de plus de 24 heures. Ferme le programme.

2) Lance CCleaner :
Dans le menu Nettoyeur, clique sur Analyse (laisse-le travailler) puis sur le bouton Lancer le nettoyage.
Fais cela plusieurs fois.

A+
24 Juin 2011 21:14:16

Bonsoir,
oui la dernière mise a jour Firefox est faite.
Ccleaner aussi.

Mais ca a rien régler a mon problème de page d'accueil MIVOLO.COM reviens a chaque lancement de firefox.

A+
27 Juin 2011 17:52:54

Bonjour,

http://forum.malekal.com/les-toolbars-est-pas-obligatoi...

Lance HijackThis et ferme toutes les fenêtres de programme.

Vérifie qu' il fera des sauvegardes : Dans Config, coche Make backups before fixing items (protéger les objets avant de fixer) puis clique sur les boutons Back (retour)+ Do a system scan only (scanner seulement) et coche les cases situées devant les lignes ci-dessous :

R3 - URLSearchHook: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
O2 - BHO: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O3 - Toolbar: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
O4 - HKLM\..\Run: [facemoods] "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe" /md I

Enfin clique sur Fix checked (fixer objet).

;) 

A+
27 Juin 2011 20:14:00

frederix a dit :
Bonjour,

http://forum.malekal.com/les-toolbars-est-pas-obligatoi...

Lance HijackThis et ferme toutes les fenêtres de programme.

Vérifie qu' il fera des sauvegardes : Dans Config, coche Make backups before fixing items (protéger les objets avant de fixer) puis clique sur les boutons Back (retour)+ Do a system scan only (scanner seulement) et coche les cases situées devant les lignes ci-dessous :

R3 - URLSearchHook: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
O2 - BHO: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O3 - Toolbar: mipony-plugin Toolbar - {90d46c30-9f25-4104-aea9-35c3f84477ff} - C:\Program Files (x86)\mipony-plugin\tbmipo.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
O4 - HKLM\..\Run: [facemoods] "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe" /md I

Enfin clique sur Fix checked (fixer objet).

;) 

A+




Bonjour,
C'est fait mais ça change rien, j'ai beau changer ma page d' accueille MIVOLO reviens toujours.
A+ et merci pour ton aide.
28 Juin 2011 07:50:10

Bonjour,

:??: 

Refais la deuxième manip' d' Ad-Remover.

A+
28 Juin 2011 22:32:08

Bonsoir,

Voila le rapport :


======= RAPPORT D'AD-REMOVER 2.0.0.0,D | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 19/05/10 à 19:20
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 22:22:20 le 28/06/2011 | Mode normal | Option: SCAN
Exécuté de: C:\Ad-Remover\ADR.exe
SE: Microsoft Windows 7 Édition Familiale Premium (Service Pack 1 - X64)
Nom du PC: JAUZE-PC (Hewlett-Packard HP Pavilion dv6 Notebook PC)
Utilisateur actuel: JAUZE
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.
.
.
.
.
============== SCAN ADDITIONNEL ==============
.
* Mozilla FireFox Version 5.0 (fr) *
.
C:\Users\JAUZE\..\o7gvq566.default\prefs.js - browser.download.lastDir: C:\\Users\\JAUZE\\Documents
C:\Users\JAUZE\..\o7gvq566.default\prefs.js - browser.search.defaultenginename: Facemoods Search
C:\Users\JAUZE\..\o7gvq566.default\prefs.js - browser.search.defaulturl: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&SearchSource=3&q={searchTerms}
C:\Users\JAUZE\..\o7gvq566.default\prefs.js - browser.search.selectedEngine: Google
C:\Users\JAUZE\..\o7gvq566.default\prefs.js - browser.startup.homepage: www.aliceadsl.fr
C:\Users\JAUZE\..\o7gvq566.default\prefs.js - browser.startup.homepage_override.buildID: 20110615151330
C:\Users\JAUZE\..\o7gvq566.default\prefs.js - browser.startup.homepage_override.mstone: rv:5.0
C:\Users\JAUZE\..\o7gvq566.default\prefs.js - keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&q=
.
.
* Internet Explorer Version 9.0.8112.16421 *
.
[HKCU\Software\Microsoft\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Do404Search: 0x01000000
Enable Browser Extensions: yes
Local Page: C:\Windows\system32\blank.htm
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
.
[HKLM\Software\Microsoft\Internet Explorer\Main]
.
AutoHide: yes
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\Windows\SysWOW64\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
.
[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm
.
========================================
.
C:\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Ad-Remover\Backup: 14 Fichier(s)
.
C:\Ad-Report-CLEAN[1].txt - 13098 Octet(s)
C:\Ad-Report-CLEAN[2].txt - 3067 Octet(s)
C:\Ad-Report-SCAN[1].txt - 13173 Octet(s)
C:\Ad-Report-SCAN[2].txt - 11867 Octet(s)
C:\Ad-Report-SCAN[3].txt - 2954 Octet(s)
C:\Ad-Report-SCAN[4].txt - 2937 Octet(s)
.
Fin à: 22:26:43, 28/06/2011
.
============== E.O.F - SCAN[4] ==============


A+
29 Juin 2011 07:53:59

Bonjour,

je vais aux infos...

A+
29 Juin 2011 18:59:43

Re,

fais la manip' de ComboFix (merci sUBs) et poste le rapport : Ici
30 Juin 2011 14:35:36

Voila mon rapport combo fix a analyser suite a mon sujet mivolo.

Par contre quand combo fix a eut terminer j'ai ete obliger de faire une restauration systeme car aucun programme voulais se lancer.


ComboFix 11-06-29.06 - JAUZE 29/06/2011 23:11:23.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.3894.2325 [GMT 2:00]
Lancé depuis: c:\users\JAUZE\Downloads\ComboFix_001.exe
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.
/wow section - STAGE 50
Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.
Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.
Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.
Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.
Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.
Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.
Le système ne peut trouver le fichier LockedB.
Le système ne peut trouver le fichier lockedB.
'.d.a.1.a.3.f.f.' n’est pas reconnu en tant que commande interne
ou externe, un programme exécutable ou un fichier de commandes.
'.0.\\.' n’est pas reconnu en tant que commande interne
ou externe, un programme exécutable ou un fichier de commandes.
Le système ne peut trouver le fichier LockedB.
Le système ne peut trouver le fichier LockedB.
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\users\JAUZE\Documents\cc_20110623_221956.reg
c:\windows\security\Database\tmp.edb
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-05-28 au 2011-06-29 ))))))))))))))))))))))))))))))))))))
.
.
2011-06-29 21:18 . 2011-06-29 21:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-29 21:09 . 2011-06-29 21:09 -------- d-----w- C:\ComboFix_001
2011-06-29 17:18 . 2011-06-29 17:18 -------- d-----w- c:\users\JAUZE\AppData\Local\{40A61231-C2F4-42CA-ADE2-1D284AD3FF47}
2011-06-28 20:31 . 2011-06-07 17:10 8873296 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{03972400-C856-4AA8-BFE3-FC28F4E92BC5}\mpengine.dll
2011-06-28 20:18 . 2011-06-28 20:19 -------- d-----w- c:\users\JAUZE\AppData\Local\{B365CF6C-CFB3-416E-A5D2-26D5B9F22636}
2011-06-27 20:43 . 2011-06-28 20:26 -------- d-----w- C:\Ad-Remover
2011-06-27 20:31 . 2011-06-27 20:31 512 ----a-w- C:\PhysicalDisk0_MBR.bin
2011-06-27 20:29 . 2011-06-27 20:31 -------- d-----w- c:\program files (x86)\ZHPDiag
2011-06-27 17:57 . 2011-06-27 17:57 -------- d-----w- c:\users\JAUZE\AppData\Local\{474D3E82-77CC-4354-A66F-E9BE534FBB4F}
2011-06-27 17:56 . 2011-06-27 17:56 -------- d-----w- c:\users\JAUZE\AppData\Local\{187139D5-1A60-4098-9F43-1D4563726EFF}
2011-06-26 19:27 . 2011-06-26 19:27 -------- d-----w- c:\users\JAUZE\AppData\Local\{4ADEF6BE-034B-40DD-A116-FA3FEA82F6FD}
2011-06-25 23:13 . 2011-06-25 23:14 -------- d-----w- c:\users\JAUZE\AppData\Local\{D497674B-5B69-4836-BCCB-B67DBD284E6E}
2011-06-25 10:56 . 2011-06-25 10:57 -------- d-----w- c:\users\JAUZE\AppData\Local\{8AE9A0FF-09EB-43D6-8BE4-31206E0DA652}
2011-06-24 20:23 . 2011-06-24 20:23 -------- d-----w- c:\users\JAUZE\AppData\Roaming\QuickScan
2011-06-24 09:43 . 2011-06-24 09:43 2106216 ----a-w- c:\program files (x86)\Mozilla Firefox\D3DCompiler_43.dll
2011-06-24 09:43 . 2011-06-24 09:43 1998168 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dx9_43.dll
2011-06-24 09:40 . 2011-06-24 09:40 -------- d-----w- c:\users\JAUZE\AppData\Local\{E105AE50-A3A9-4445-8FBD-029DBBC0AD6E}
2011-06-23 20:11 . 2011-06-23 20:11 -------- d-----w- c:\program files\CCleaner
2011-06-23 20:09 . 2011-06-23 21:14 -------- d-----w- c:\program files (x86)\Google
2011-06-23 19:31 . 2011-06-23 19:31 -------- d-----w- c:\users\JAUZE\AppData\Local\{E2F6D292-BAEA-4A80-A603-575FC201E854}
2011-06-22 21:09 . 2011-06-22 21:09 -------- d-----w- c:\users\JAUZE\AppData\Local\{2C28DDCC-33F4-4679-ABC0-09C56AF3ED0E}
2011-06-22 21:09 . 2011-06-22 21:09 -------- d-----w- c:\users\JAUZE\AppData\Local\{6E9D7BE9-854A-4FEA-8510-42821A4D5581}
2011-06-21 18:42 . 2011-06-21 18:42 -------- d-----w- c:\program files (x86)\ESET
2011-06-21 18:27 . 2011-06-21 18:27 -------- d-----w- c:\users\JAUZE\AppData\Local\{9ACB12CF-5100-4012-89A9-C68E425D02B3}
2011-06-21 18:27 . 2011-06-21 18:27 -------- d-----w- c:\users\JAUZE\AppData\Local\{0F7CE966-3E35-4C53-80E5-F8915BFC301F}
2011-06-20 20:53 . 2011-06-20 20:53 -------- d-----w- c:\users\JAUZE\AppData\Roaming\Malwarebytes
2011-06-20 20:52 . 2011-05-29 07:11 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-20 20:52 . 2011-06-20 20:52 -------- d-----w- c:\programdata\Malwarebytes
2011-06-20 20:51 . 2011-05-29 07:11 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-06-20 20:51 . 2011-06-20 20:52 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-06-20 20:46 . 2011-06-20 20:46 -------- d-----w- c:\users\JAUZE\AppData\Local\{EC255602-DEF2-4136-A32E-0B495CE558BD}
2011-06-19 16:08 . 2011-06-19 16:08 -------- d-----w- c:\program files (x86)\Ad-Remover
2011-06-19 16:03 . 2011-06-19 16:03 -------- d-----w- c:\users\JAUZE\AppData\Local\{DB06E3AB-FA24-4CE7-A009-9C7FBDAABD72}
2011-06-18 20:24 . 2011-06-27 20:38 -------- d-----w- c:\program files (x86)\trend micro
2011-06-18 20:24 . 2011-06-18 20:24 -------- d-----w- C:\rsit
2011-06-18 19:48 . 2011-06-18 19:48 -------- d-----w- c:\users\JAUZE\AppData\Local\{F9F832B2-6EF6-480B-9C16-9413739FEE2E}
2011-06-17 18:48 . 2011-06-17 18:48 -------- d-----w- c:\users\JAUZE\AppData\Local\{C129A61D-2BBB-4C16-A4F4-B4135AD97DF9}
2011-06-17 10:19 . 2011-06-17 10:19 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2011-06-17 02:48 . 2011-06-17 02:48 -------- d--h--w- c:\windows\msdownld.tmp
2011-06-17 02:31 . 2011-06-17 02:32 -------- d-----w- c:\users\JAUZE\AppData\Local\{E7E6E131-1EDF-4986-A73B-C1D036D01F24}
2011-06-16 17:51 . 2011-06-16 17:51 -------- d-----w- c:\program files (x86)\Common Files\Java
2011-06-16 10:28 . 2011-06-16 10:28 -------- d-----w- c:\users\JAUZE\AppData\Local\{2D9E14AC-D9DA-4FAE-8F3D-632EF692EEC8}
2011-06-15 21:47 . 2011-06-15 21:47 -------- d-----w- c:\users\JAUZE\AppData\Local\{E0340786-299B-4D3B-BF4A-3E2FFE5CEE0E}
2011-06-15 21:43 . 2011-06-15 21:43 -------- d-----w- c:\users\JAUZE\AppData\Local\{B4581FCF-12A2-4F7D-9F1E-81C8DFE7DF12}
2011-06-15 09:42 . 2011-06-15 09:42 -------- d-----w- c:\users\JAUZE\AppData\Local\{75BDAC66-A33D-4806-96C3-9623FFF3B07B}
2011-06-15 00:12 . 2011-06-15 00:12 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-06-15 00:00 . 2011-06-15 00:00 -------- d-----w- c:\windows\SysWow64\wbem\en-US
2011-06-15 00:00 . 2011-06-15 00:00 -------- d-----w- c:\windows\system32\wbem\en-US
2011-06-14 20:00 . 2011-06-14 20:00 -------- d-----w- c:\users\JAUZE\AppData\Local\{C6409D8C-88F9-480B-AB1E-CFF10AE5671D}
2011-06-14 19:59 . 2011-06-14 20:00 -------- d-----w- c:\users\JAUZE\AppData\Local\{FF94E10D-9BA4-4978-A0E6-7BC1B2F9AD99}
2011-06-14 07:59 . 2011-06-14 07:59 -------- d-----w- c:\users\JAUZE\AppData\Local\{4C3BAD3F-CBEF-48FA-B48F-FB6C073590B2}
2011-06-13 19:33 . 2011-06-13 19:33 -------- d-----w- c:\users\JAUZE\AppData\Local\{01C11DC6-D813-40C8-966A-5A91ABF3BF25}
2011-06-13 02:57 . 2011-06-13 02:57 -------- d-----w- c:\users\JAUZE\AppData\Local\{7CA8D554-5DE8-47E2-B297-C3F05BABD47D}
2011-06-12 13:18 . 2011-06-12 13:18 -------- d-----w- c:\users\JAUZE\AppData\Local\{F45962C5-13AF-4C17-A6B8-E659837E51FC}
2011-06-11 15:53 . 2011-06-11 15:53 -------- d-----w- c:\users\JAUZE\AppData\Local\{E02F60EA-BB1E-4F48-915C-144ECD21361E}
2011-06-10 17:59 . 2011-06-10 17:59 -------- d-----w- c:\users\JAUZE\AppData\Local\{434D8E15-0C8D-4F19-B4C5-0AF4C807E3DE}
2011-06-09 10:41 . 2011-06-09 10:41 -------- d-----w- c:\users\JAUZE\AppData\Local\{3A1B4B6F-D7AC-46ED-B892-74251B45960D}
2011-06-07 19:26 . 2011-06-07 19:27 -------- d-----w- c:\users\JAUZE\AppData\Local\{909693E1-A0B0-464A-BBB3-BDCD816AE4EB}
2011-06-06 10:55 . 2011-06-06 10:55 183696 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2011-06-06 10:55 . 2011-06-06 10:55 183696 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
2011-06-05 20:46 . 2011-06-05 20:46 -------- d-----w- c:\users\JAUZE\AppData\Local\{53D709AE-CE7F-4971-B84F-E7BD0024844E}
2011-06-05 00:02 . 2011-06-05 00:02 -------- d-----w- c:\users\JAUZE\AppData\Local\{23F2AA8D-0A1E-4B4D-804B-65CC50944F72}
2011-06-05 00:01 . 2011-06-05 00:01 -------- d-----w- c:\users\JAUZE\AppData\Local\{26721593-4193-475F-8CBC-0A81481A4404}
2011-06-04 12:01 . 2011-06-04 12:01 -------- d-----w- c:\users\JAUZE\AppData\Local\{B54F0C75-F403-458F-A3BA-1C602C4E078F}
2011-06-03 10:14 . 2011-06-03 10:14 -------- d-----w- c:\users\JAUZE\AppData\Local\{F3888F89-7DEE-40AB-B9FB-328CB6E924C9}
2011-06-01 01:08 . 2011-06-01 01:08 -------- d-----w- c:\users\JAUZE\AppData\Local\{001416B1-742C-429D-B137-63D8C4443F2A}
2011-05-31 13:07 . 2011-05-31 13:07 -------- d-----w- c:\users\JAUZE\AppData\Local\{C92B9EE3-A958-4E30-90BA-6BCA58EBE10F}
2011-05-31 00:29 . 2011-05-31 00:29 -------- d-----w- c:\users\JAUZE\AppData\Local\{1AED878B-2168-443F-A27F-1B28EF50EC34}
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-10 21:36 . 2011-01-07 13:48 2306328 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2011-06-10 21:36 . 2011-01-07 13:37 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2011-06-07 17:10 . 2011-01-07 16:48 8873296 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-05-04 02:52 . 2010-12-25 21:42 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-05-03 21:13 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2011-05-03 21:12 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-04-22 22:15 . 2011-05-25 08:40 27520 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-04-20 22:03 . 2011-04-20 22:03 2306328 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2011-04-20 22:03 . 2011-04-20 22:03 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2011-04-09 07:02 . 2011-05-12 09:55 5562240 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-04-09 06:58 . 2011-05-24 14:48 142336 ----a-w- c:\windows\system32\poqexec.exe
2011-04-09 06:02 . 2011-05-12 09:55 3967872 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-04-09 06:02 . 2011-05-12 09:55 3912576 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-04-09 05:56 . 2011-05-24 14:48 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-04-08 21:00 . 2011-04-08 21:00 464896 ----a-w- c:\windows\system32\ipcoin815.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-01-27 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-06-17 2988928]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"HP Envy Guides AutoPlay"="c:\program files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe" [2010-03-24 76584]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-01-25 61112]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 1082656]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R3 hpdoccardsvc;HP Documention Flash Card Detection Service;c:\program files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe [2010-03-24 83240]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Inspection réseau Microsoft;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-01 2533400]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-01-05 2184496]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 09:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2011-06-14 c:\windows\Tasks\HPCeeScheduleForJAUZE.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 01:53]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2010-09-29 20:53 99128 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"combofix"="c:\combofix_0013833c\CF26498.cfxxe" [X]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-22 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-22 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-01-22 410136]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-14 487424]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-05-18 172032]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 1436224]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2010-07-21 2327952]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Envoyer au périphérique &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Envoyer l'&image au périphérique Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Télécharger avec IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: Télécharger le contenu de video FLV avec IDM - c:\program files (x86)\Internet Download Manager\IEGetVL.htm
IE: Télécharger tous les liens avec IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\JAUZE\AppData\Roaming\Mozilla\Firefox\Profiles\o7gvq566.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.aliceadsl.fr
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2465030&q=
FF - user.js: yahoo.homepage.dontask - true
.
- - - - ORPHELINS SUPPRIMES - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe
AddRemove-{08DB3902-2CE0-474D-BCE3-0177766CE9F1} - c:\program files (x86)\InstallShield Installation Information\{08DB3902-2CE0-474D-BCE3-0177766CE9F1}\setup.exe
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_USERS\S-1-5-21-1208545177-2458381507-1022432816-1001_Classes\Wow6432Node\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):88,ae,8d,4c,99,d2,3f,75,d1,88,da,a6,b2,c7,16,04,cb,ee,7c,c6,ff,
57,7e,9c,57,fb,0e,a9,00,02,58,36,a9,40,c5,c7,0d,d1,c7,cc,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1208545177-2458381507-1022432816-1001_Classes\Wow6432Node\CLSID\{d65ef4c9-3cbc-4d5f-9341-d21c45e0165b}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\DigitalPersona\Bin\DPAgent.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Heure de fin: 2011-06-29 23:24:38 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-06-29 21:24
.
Avant-CF: 408 913 743 872 octets libres
Après-CF: 408 239 353 856 octets libres
.
- - End Of File - - 0ED98EBB21E85F66D67FEA91188FAF68

Merci pour votre aide.
a+
30 Juin 2011 20:13:35

cedric03160 a dit :
> Par contre quand combo fix a eut terminer j'ai ete obliger de faire une restauration systeme car aucun programme voulais se lancer.


Bonjour,

> :heink: 

Es-tu connecté en wifi, quel est ton fai?

Poste un rapport RSIT...

A+


30 Juin 2011 22:52:15

Bonsoir,

Oui je suis en wifi avec Alice.

Voila le rapport :

Logfile of random's system information tool 1.08 (written by random/random)
Run by JAUZE at 2011-06-30 22:50:32
Microsoft Windows 7 Édition Familiale Premium Service Pack 1
System drive C: has 391 GB (86%) free of 454 GB
Total RAM: 3894 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:50:33, on 30/06/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\JAUZE\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\JAUZE.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: HP SimplePass Identity Protection Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Envy Guides AutoPlay] C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Documention Flash Card Detection Service (hpdoccardsvc) - Hewlett-Packard Developement Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 24507 bytes

======Scheduled tasks folder======

C:\Windows\tasks\HPCeeScheduleForJAUZE.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2010-09-29 197984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP SimplePass Identity Protection Extension - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30 1262856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-01-22 98304]
"HP Envy Guides AutoPlay"=C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe [2010-03-24 76584]
"Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2010-01-25 61112]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
""= []
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-01-27 1712184]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-11-10 4240760]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-06-17 2988928]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-05-18 52920]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-06-29 23:24:40 ----D---- C:\Windows\temp
2011-06-29 23:24:38 ----A---- C:\ComboFix.txt
2011-06-29 23:10:15 ----A---- C:\Windows\zip.exe
2011-06-29 23:10:15 ----A---- C:\Windows\SWSC.exe
2011-06-29 23:10:15 ----A---- C:\Windows\SWREG.exe
2011-06-29 23:10:15 ----A---- C:\Windows\sed.exe
2011-06-29 23:10:15 ----A---- C:\Windows\PEV.exe
2011-06-29 23:10:15 ----A---- C:\Windows\NIRCMD.exe
2011-06-29 23:10:15 ----A---- C:\Windows\MBR.exe
2011-06-29 23:10:15 ----A---- C:\Windows\grep.exe
2011-06-29 23:10:08 ----SD---- C:\ComboFix_0013833C
2011-06-29 23:09:07 ----D---- C:\Windows\ERDNT
2011-06-29 23:09:06 ----SD---- C:\ComboFix_001
2011-06-29 23:08:19 ----D---- C:\Qoobox
2011-06-29 19:23:44 ----A---- C:\Windows\SysWOW64\drvinst.exe
2011-06-29 19:23:44 ----A---- C:\Windows\SysWOW64\devrtl.dll
2011-06-29 19:23:44 ----A---- C:\Windows\SysWOW64\devobj.dll
2011-06-29 19:23:44 ----A---- C:\Windows\SysWOW64\cfgmgr32.dll
2011-06-29 19:23:40 ----A---- C:\Windows\SysWOW64\mssrch.dll
2011-06-29 19:23:38 ----A---- C:\Windows\SysWOW64\tquery.dll
2011-06-29 19:23:38 ----A---- C:\Windows\SysWOW64\SearchProtocolHost.exe
2011-06-29 19:23:38 ----A---- C:\Windows\SysWOW64\SearchIndexer.exe
2011-06-29 19:23:38 ----A---- C:\Windows\SysWOW64\mssph.dll
2011-06-29 19:23:36 ----A---- C:\Windows\SysWOW64\SearchFilterHost.exe
2011-06-29 19:23:36 ----A---- C:\Windows\SysWOW64\mssvp.dll
2011-06-29 19:23:35 ----A---- C:\Windows\SysWOW64\mssphtb.dll
2011-06-29 19:23:34 ----A---- C:\Windows\SysWOW64\msscntrs.dll
2011-06-28 22:22:34 ----A---- C:\Ad-Report-SCAN[4].txt
2011-06-27 22:51:54 ----A---- C:\Ad-Report-CLEAN[2].txt
2011-06-27 22:43:15 ----A---- C:\Ad-Report-SCAN[3].txt
2011-06-27 22:43:00 ----D---- C:\Ad-Remover
2011-06-27 22:29:43 ----D---- C:\Program Files (x86)\ZHPDiag
2011-06-24 22:36:23 ----A---- C:\Ad-Report-SCAN[2].txt
2011-06-24 22:23:08 ----D---- C:\Users\JAUZE\AppData\Roaming\QuickScan
2011-06-23 22:09:50 ----D---- C:\Program Files (x86)\Google
2011-06-21 20:42:04 ----D---- C:\Program Files (x86)\ESET
2011-06-20 22:53:04 ----D---- C:\Users\JAUZE\AppData\Roaming\Malwarebytes
2011-06-20 22:52:05 ----A---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2011-06-20 22:52:03 ----D---- C:\ProgramData\Malwarebytes
2011-06-20 22:51:58 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-06-19 21:32:49 ----A---- C:\Ad-Report-CLEAN[1].txt
2011-06-19 18:08:55 ----A---- C:\Ad-Report-SCAN[1].txt
2011-06-19 18:08:02 ----D---- C:\Program Files (x86)\Ad-Remover
2011-06-18 22:24:41 ----D---- C:\rsit
2011-06-18 22:24:41 ----D---- C:\Program Files (x86)\trend micro
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Common Files\Adobe
2011-06-17 04:48:41 ----HD---- C:\Windows\msdownld.tmp
2011-06-16 19:51:05 ----D---- C:\Program Files (x86)\Common Files\Java
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\java.exe
2011-06-16 13:01:22 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2011-06-16 13:01:20 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\wininet.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\wextract.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\webcheck.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\vbscript.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\url.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\pngfilt.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\occache.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msrating.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msls31.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtmler.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshta.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jscript9.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\inseng.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\imgutil.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iexpress.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iesysprep.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iesetup.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iernonce.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iepeers.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieapfltr.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieakui.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieaksie.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieakeng.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\IEAdvpack.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ie4uinit.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\icardie.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\dxtrans.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\dxtmsft.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\admparse.dll

======List of files/folders modified in the last 1 months======

2011-06-30 22:50:33 ----D---- C:\Windows\Prefetch
2011-06-30 14:27:10 ----A---- C:\Windows\SysWOW64\log.txt
2011-06-30 14:25:07 ----D---- C:\Windows\winsxs
2011-06-30 14:24:41 ----D---- C:\Windows\SysWOW64
2011-06-30 14:24:41 ----D---- C:\Windows\System32
2011-06-30 14:24:39 ----RSD---- C:\Windows\Fonts
2011-06-29 23:41:08 ----SHD---- C:\System Volume Information
2011-06-29 23:30:47 ----D---- C:\Windows\Tasks
2011-06-29 23:30:46 ----D---- C:\Windows
2011-06-29 23:30:13 ----D---- C:\Windows\inf
2011-06-29 23:30:12 ----SHD---- C:\$RECYCLE.BIN
2011-06-29 23:30:12 ----D---- C:\Windows\registration
2011-06-29 23:30:12 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-06-29 23:30:08 ----RD---- C:\Users
2011-06-29 23:30:06 ----RD---- C:\Program Files (x86)
2011-06-29 23:30:06 ----RD---- C:\Program Files
2011-06-29 23:30:06 ----HD---- C:\ProgramData
2011-06-29 23:30:06 ----D---- C:\SwSetup
2011-06-29 23:04:39 ----D---- C:\Users\JAUZE\AppData\Roaming\DMCache
2011-06-27 22:22:15 ----D---- C:\Users\JAUZE\AppData\Roaming\Mipony
2011-06-24 22:35:52 ----SHD---- C:\Windows\Installer
2011-06-24 21:47:32 ----D---- C:\Program Files (x86)\JDownloader
2011-06-23 23:14:08 ----D---- C:\ProgramData\Google
2011-06-23 22:23:47 ----SD---- C:\ProgramData\Microsoft
2011-06-23 22:23:47 ----D---- C:\Program Files (x86)\Microsoft
2011-06-23 22:15:28 ----D---- C:\Windows\Logs
2011-06-23 22:15:28 ----D---- C:\Windows\debug
2011-06-20 22:52:05 ----D---- C:\Windows\SysWOW64\drivers
2011-06-19 18:48:41 ----D---- C:\Windows\Microsoft.NET
2011-06-19 18:48:40 ----RSD---- C:\Windows\assembly
2011-06-17 22:09:31 ----D---- C:\Program Files (x86)\EasyBits For Kids
2011-06-17 22:08:36 ----D---- C:\Users\JAUZE\AppData\Roaming\_MDLogs
2011-06-17 12:19:09 ----D---- C:\ProgramData\Adobe
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Common Files
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Adobe
2011-06-17 04:48:41 ----D---- C:\Program Files (x86)\Internet Explorer
2011-06-17 02:42:29 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-06-16 19:50:42 ----D---- C:\Program Files (x86)\Java
2011-06-15 18:04:21 ----D---- C:\Windows\rescache
2011-06-15 02:01:45 ----D---- C:\Windows\servicing
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\wbem
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\migration
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\fr-FR
2011-06-15 02:00:06 ----D---- C:\Windows\SysWOW64\en-US
2011-06-15 02:00:05 ----D---- C:\Windows\PolicyDefinitions

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys []
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R1 DVMIO;DeviceVM IO Service; C:\Windows\system32\DRIVERS\dvmio.sys []
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys []
R3 Accelerometer;HP Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 BthEnum;Pilote de bloc de demande Bluetooth; C:\Windows\system32\drivers\BthEnum.sys []
R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys []
R3 btwaudio;Périphérique audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys []
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys []
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys []
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys []
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdpmd64.sys []
R3 Point64;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point64.sys []
R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys []
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 WinUSB;WinUSB Service; C:\Windows\system32\DRIVERS\WinUSB.sys []
S3 alnjm3ua;alnjm3ua; C:\Windows\SysWOW64\drivers\alnjm3ua.sys []
S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
S3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys []
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys []
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys []
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys []
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 873248]
R2 DpHost;@C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128; C:\Program Files\DigitalPersona\Bin\DpHostW.exe [2009-12-30 444680]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\System32\ezSharedSvcHost.exe [2010-01-25 514232]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-11-15 126520]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe []
R2 HPWMISVC;HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-01-22 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-05-01 325656]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 12784]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe [2010-01-14 244736]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-01 2533400]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\Windows\system32\vcsFPService.exe [2010-01-06 1791280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-28 799800]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2010-01-04 238328]
S3 hpdoccardsvc;HP Documention Flash Card Detection Service; C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe [2010-03-24 83240]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []

-----------------EOF-----------------
30 Juin 2011 22:57:05

Bonsoir,

Oui je suis en wifi avec Alice.

Voila le rapport :

Logfile of random's system information tool 1.08 (written by random/random)
Run by JAUZE at 2011-06-30 22:50:32
Microsoft Windows 7 Édition Familiale Premium Service Pack 1
System drive C: has 391 GB (86%) free of 454 GB
Total RAM: 3894 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:50:33, on 30/06/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\JAUZE\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\JAUZE.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: HP SimplePass Identity Protection Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Envy Guides AutoPlay] C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Program Files\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Documention Flash Card Detection Service (hpdoccardsvc) - Hewlett-Packard Developement Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Unknown owner - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 24507 bytes

======Scheduled tasks folder======

C:\Windows\tasks\HPCeeScheduleForJAUZE.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2010-09-29 197984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP SimplePass Identity Protection Extension - C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30 1262856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-01-22 98304]
"HP Envy Guides AutoPlay"=C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe [2010-03-24 76584]
"Easybits Recovery"=C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [2010-01-25 61112]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08 54576]
""= []
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-01-27 1712184]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2010-01-22 2363392]
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2010-11-10 4240760]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-06-17 2988928]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{E54729E8-BB3D-4270-9D49-7389EA579090}"=C:\Windows\SysWow64\EZUPBH~1.DLL [2010-05-18 52920]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-06-29 23:24:40 ----D---- C:\Windows\temp
2011-06-29 23:24:38 ----A---- C:\ComboFix.txt
2011-06-29 23:10:15 ----A---- C:\Windows\zip.exe
2011-06-29 23:10:15 ----A---- C:\Windows\SWSC.exe
2011-06-29 23:10:15 ----A---- C:\Windows\SWREG.exe
2011-06-29 23:10:15 ----A---- C:\Windows\sed.exe
2011-06-29 23:10:15 ----A---- C:\Windows\PEV.exe
2011-06-29 23:10:15 ----A---- C:\Windows\NIRCMD.exe
2011-06-29 23:10:15 ----A---- C:\Windows\MBR.exe
2011-06-29 23:10:15 ----A---- C:\Windows\grep.exe
2011-06-29 23:10:08 ----SD---- C:\ComboFix_0013833C
2011-06-29 23:09:07 ----D---- C:\Windows\ERDNT
2011-06-29 23:09:06 ----SD---- C:\ComboFix_001
2011-06-29 23:08:19 ----D---- C:\Qoobox
2011-06-29 19:23:44 ----A---- C:\Windows\SysWOW64\drvinst.exe
2011-06-29 19:23:44 ----A---- C:\Windows\SysWOW64\devrtl.dll
2011-06-29 19:23:44 ----A---- C:\Windows\SysWOW64\devobj.dll
2011-06-29 19:23:44 ----A---- C:\Windows\SysWOW64\cfgmgr32.dll
2011-06-29 19:23:40 ----A---- C:\Windows\SysWOW64\mssrch.dll
2011-06-29 19:23:38 ----A---- C:\Windows\SysWOW64\tquery.dll
2011-06-29 19:23:38 ----A---- C:\Windows\SysWOW64\SearchProtocolHost.exe
2011-06-29 19:23:38 ----A---- C:\Windows\SysWOW64\SearchIndexer.exe
2011-06-29 19:23:38 ----A---- C:\Windows\SysWOW64\mssph.dll
2011-06-29 19:23:36 ----A---- C:\Windows\SysWOW64\SearchFilterHost.exe
2011-06-29 19:23:36 ----A---- C:\Windows\SysWOW64\mssvp.dll
2011-06-29 19:23:35 ----A---- C:\Windows\SysWOW64\mssphtb.dll
2011-06-29 19:23:34 ----A---- C:\Windows\SysWOW64\msscntrs.dll
2011-06-28 22:22:34 ----A---- C:\Ad-Report-SCAN[4].txt
2011-06-27 22:51:54 ----A---- C:\Ad-Report-CLEAN[2].txt
2011-06-27 22:43:15 ----A---- C:\Ad-Report-SCAN[3].txt
2011-06-27 22:43:00 ----D---- C:\Ad-Remover
2011-06-27 22:29:43 ----D---- C:\Program Files (x86)\ZHPDiag
2011-06-24 22:36:23 ----A---- C:\Ad-Report-SCAN[2].txt
2011-06-24 22:23:08 ----D---- C:\Users\JAUZE\AppData\Roaming\QuickScan
2011-06-23 22:09:50 ----D---- C:\Program Files (x86)\Google
2011-06-21 20:42:04 ----D---- C:\Program Files (x86)\ESET
2011-06-20 22:53:04 ----D---- C:\Users\JAUZE\AppData\Roaming\Malwarebytes
2011-06-20 22:52:05 ----A---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2011-06-20 22:52:03 ----D---- C:\ProgramData\Malwarebytes
2011-06-20 22:51:58 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-06-19 21:32:49 ----A---- C:\Ad-Report-CLEAN[1].txt
2011-06-19 18:08:55 ----A---- C:\Ad-Report-SCAN[1].txt
2011-06-19 18:08:02 ----D---- C:\Program Files (x86)\Ad-Remover
2011-06-18 22:24:41 ----D---- C:\rsit
2011-06-18 22:24:41 ----D---- C:\Program Files (x86)\trend micro
2011-06-17 12:19:04 ----D---- C:\Program Files (x86)\Common Files\Adobe
2011-06-17 04:48:41 ----HD---- C:\Windows\msdownld.tmp
2011-06-16 19:51:05 ----D---- C:\Program Files (x86)\Common Files\Java
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-06-16 19:50:44 ----A---- C:\Windows\SysWOW64\java.exe
2011-06-16 13:01:22 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2011-06-16 13:01:20 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\wininet.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\wextract.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\webcheck.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\vbscript.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\url.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\SetIEInstalledDate.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\pngfilt.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\occache.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msrating.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msls31.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtmler.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\mshta.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jscript9.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\inseng.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\imgutil.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iexpress.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieUnatt.exe
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iesysprep.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iesetup.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iernonce.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iepeers.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2011-06-15 01:58:38 ----A---- C:\Windows\SysWOW64\ieapfltr.dll
2011-06-15 01:58:3
30 Juin 2011 23:05:41

Bonsoir,

comment va ton Pc?

A+
1 Juillet 2011 20:43:39

Bonjour,

où en es-tu?

A+
1 Juillet 2011 21:34:16

Bonsoir,

C'est toujours pareil a chaque demarage de firefox la page d'acceuil est toujours MIVOLO même si je remet celle d'Alice.

A+
2 Juillet 2011 11:33:53

Bonjour,
Voila le rapport:

Rapport de ZHPDiag v1.27.2361 par Nicolas Coolman, Update du 01/07/2011
Run by JAUZE at 02/07/2011 11:17:04
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.h...


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 5.0 v (Defaut)

---\\ System Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3893 MB (55% free)
System Restore: Activé (Enable)
System drive C: has 382 GB (86%) free of 443 GB

---\\ Logged in mode
Computer Name: JAUZE-PC
User Name: JAUZE
All Users Names: JAUZE, HomeGroupUser$, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=C:\Users\JAUZE\AppData\Roaming
%LocalAppData%=C:\Users\JAUZE\AppData\Local
%StartMenu%=C:\Users\JAUZE\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 382 Go of 443 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 22 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
F:\ CD-ROM drive (Not Inserted)
G:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Internet Extensions for Win32.) (.15/06/2011 - 00:58:38.) -- C:\Windows\system32\wininet.dll [1126912]



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/43
~ Mes Favoris (My Favorites) : 8/494
~ Mes Documents (My Documents) : 5/445
~ Mon Bureau (My Desktop) : 1/5
~ Menu demarrer (Programs) : 7/34



---\\ Processus lancés
[MD5.65AAB982F6C11EB02A8BEFF50A9FAF78] - (.DigitalPersona, Inc. - DigitalPersona Local Agent.) -- C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe [623368]
[MD5.BDF37B36AC60A7D97161A103B14CEE65] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392]
[MD5.F34E7705751BB413283434697BF8E55D] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696]
[MD5.89878DAA9C5B4DF0BCB92B7B3936C272] - (.Hewlett-Packard Development Company, L.P. - HP ENVY Guides Flash Storage Autoplay.) -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe [76584]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696]
[MD5.F0B80497A0598B45D0CB58C9DD2CC28D] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1590840]
[MD5.7B18D3342ECC0F9BB20DCF913E541093] - (.Broadcom Corporation. - Bluetooth Headset Skype Proxy.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe [13600]
[MD5.6C9CD3ECBA6732661C8BBE37A877A2BD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632]
[MD5.000B70598782452D2EBD26918F551041] - (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [92024]
[MD5.4486AD32BB05628967695FCA1BADD46E] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856]
[MD5.9462CE5872A7FD2B1CD0180877E8DE22] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [656896]



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\JAUZE\AppData\Roaming\Mozilla\Firefox\Profiles\o7gvq566.default\prefs.js
M3 - MFPP: Plugins - [JAUZE] -- C:\Users\JAUZE\AppData\Roaming\Mozilla\Firefox\Profiles\o7gvq566.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [JAUZE] -- C:\Users\JAUZE\AppData\Roaming\Mozilla\Firefox\Profiles\o7gvq566.default\searchplugins\daemon-search.xml
M0 - MFSP: prefs.js [JAUZE - o7gvq566.default] wwW.aliceadsl.fr
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\foxmarks@kei.com] [] Xmarks v (.Todd Agulnick.)
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack] [] Awesome screenshot: Capture and Annotate v2.3 (.Diigo Team.)
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20110512W (.Google Inc..)
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.3.8.20110620112826 (.Yahoo!.)
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.3 (.Michel Gutierrez.)



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll



---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: HP SimplePass Identity Protection Extension [64Bits] - {395610AE-C624-4f58-B89E-23733EA00F9A} . (.DigitalPersona, Inc. - DigitalPersona OTS Feedback component.) -- C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Tonec Inc. - IDM BHO Module.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: HP SimplePass Identity Protection Extension [64Bits] - {395610AE-C624-4f58-B89E-23733EA00F9A} . (.DigitalPersona, Inc. - DigitalPersona OTS Feedback component.) -- C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: DAEMON Tools Toolbar [64Bits] - {32099AAC-C132-4136-9E9A-4E364A424E17} . (.Pas de propriétaire - ToolBand Module.) -- C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll



---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe (.not file.)
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.)
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.)
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [HP Quick Launch] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [SmartMenu] . (.Pas de propriétaire - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [HPToneControl] . (.Hewlett-Packard - Tone Control.) -- C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] . (...) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- c:\Program Files\Microsoft IntelliPoint\ipoint.exe
O4 - HKCU\..\Run: [HPAdvisorDock] . (.Pas de propriétaire - HP Advisor Dock.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Envy Guides AutoPlay] . (.Hewlett-Packard Development Company, L.P. - HP ENVY Guides Flash Storage Autoplay.) -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [HPAdvisorDock] . (.Pas de propriétaire - HP Advisor Dock.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [SUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk . (...) -- C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe (.not file.)



---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JAUZE\Desktop\MBRCheck.lnk . (...) -- C:\Program Files (x86)\ZHPDiag\mbrcheck.exe
O4 - Global Startup: C:\Users\JAUZE\Desktop\ZHPDiag.lnk . (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe
O4 - Global Startup: C:\Users\JAUZE\Desktop\ZHPFix.lnk . (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VirtualDub.lnk . (...) -- C:\Program Files (x86)\VirtualDub\VirtualDub.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VSO Image Resizer 4.lnk . (.VSO Software SARL.) -- C:\Program Files (x86)\VSO\Image Resizer 4\Resize.exe



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Télécharger avec IDM . (...) -- C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM . (...) -- C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM . (...) -- C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{88652363-64BF-45C9-8970-3683D1DC265A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{88652363-64BF-45C9-8970-3683D1DC265A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{88652363-64BF-45C9-8970-3683D1DC265A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (...) -- igfxdev.dll



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: SAS Core Service (!SASCORE) . (.SUPERAntiSpyware.com - Core Service.) - C:\Program Files\SUPERAntiSpyware\SASCORE64.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: (AMD External Events Utility) . (...) - C:\Windows\system32\atiesrxx.exe (.not file.)
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: C:\Program Files\DigitalPersona\Bin\DpHostW.exe (DpHost) . (.DigitalPersona, Inc. - DigitalPersona Local Host.) - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard Company - HP Support Assistant.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service (HP Wireless Assistant Service) . (.Hewlett-Packard - HPPA_Service.) - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Service (hpsrv) . (...) - C:\Windows\system32\Hpservice.exe (.not file.)
O23 - Service: HPWMISVC (HPWMISVC) . (...) - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) . (.Validity Sensors, Inc. - Validity Sensors Fingerprint Service.) - C:\Windows\system32\vcsFPService.exe



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForJAUZE.job
[MD5.00000000000000000000000000000000] [APT] [CLMLSvc] (...) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [DVDAgent] (...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (.not file.)
[MD5.BEAEC745256D3158495FEE10BA673E7C] [APT] [HPCeeScheduleForJAUZE] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [Registration] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [ServicePlan] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (DVMIO) . (.DeviceVM, Inc. - DVMIO virtual device driver for 64bit.) - C:\Windows\System32\DRIVERS\dvmio.sys
O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\Windows\System32\DRIVERS\MpFilter.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SASDIFSV) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV64.SYS.) - C:\Program Files\SUPERAntiSpyware\SASDIFSV64.sys
O41 - Driver: (SASKUTIL) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL64.SYS.) - C:\Program Files\SUPERAntiSpyware\SASKUTIL64.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys



---\\ Logiciels installés (O42)
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.0) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
O42 - Logiciel: Agatha Christie - Death on the Nile - (.WildTangent.) [HKLM][64Bits] -- WT083492
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082192
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT082124
O42 - Logiciel: Broadcom 2070 Bluetooth 2.1 + EDR - (.Broadcom Corporation.) [HKLM] -- {9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
O42 - Logiciel: Bus Driver - (.WildTangent.) [HKLM][64Bits] -- WT082439
O42 - Logiciel: CA Yahoo! Anti-Spy (remove only) - (.CA, Inc..) [HKLM][64Bits] -- cayahooantispy
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {C1A0D5F7-02F3-4D95-872A-0E56CF968DC6}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082200
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Toolbar
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM][64Bits] -- WT082396
O42 - Logiciel: Dream Chronicles - (.WildTangent.) [HKLM][64Bits] -- WT083521
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WT082141
O42 - Logiciel: Farming Simulator 2011 - (.GIANTS Software.) [HKLM][64Bits] -- FarmingSimulator2011FR_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Gem Shop - (.WildTangent.) [HKLM][64Bits] -- WT083529
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM] -- {8FCDACA0-E090-4A9A-AC71-A96E7371DC6E}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP DVB-T TV Tuner 8.0.64.43 - (.Pas de propriétaire.) [HKLM][64Bits] -- HP DVB-T TV Tuner
O42 - Logiciel: HP ENVY Document Card Utilities - (.Hewlett-Packard.) [HKLM][64Bits] -- {FEC7B56F-A010-4866-809E-F5082CF5BB8C}
O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM][64Bits] -- My HP Game Console
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Movies and TV - (.Hewlett-Packard.) [HKLM] -- {4B4E2FA2-3B1E-4147-99DB-5033981D8C2F}
O42 - Logiciel: HP MediaSmart Music - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}
O42 - Logiciel: HP MediaSmart Music - (.Hewlett-Packard.) [HKLM][64Bits] -- {91A34181-9FAD-43AB-A35F-E7A8945B7E1C}
O42 - Logiciel: HP MediaSmart Photo - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}
O42 - Logiciel: HP MediaSmart Photo - (.Hewlett-Packard.) [HKLM][64Bits] -- {6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM] -- {731A1D36-BF17-4C76-B7E7-CC055AF8C54E}
O42 - Logiciel: HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}
O42 - Logiciel: HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {D12E3E7F-1B13-4933-A915-16C7DD37A095}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard.) [HKLM] -- {10F539B1-31AF-43BF-9F0C-0EB66E918922}
O42 - Logiciel: HP QuickWeb Installer - (.DeviceVM Inc..) [HKLM][64Bits] -- {394FA67A-FF0A-4356-BB77-D85E5A300BDE}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {E2831862-F131-4327-B9CC-FA30F587EB6C}
O42 - Logiciel: HP SimplePass Identity Protection - (.DigitalPersona, Inc..) [HKLM] -- {F20DF0CA-5929-4C26-A501-FDB19FDF0A50}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {C3036565-A89C-41BB-BB5F-95ECE549D7FF}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {08DB3902-2CE0-474D-BCE3-0177766CE9F1}
O42 - Logiciel: HP Tone Control - (.Hewlett-Packard Company.) [HKLM] -- {9207D4A1-586E-49CA-A002-FC9F475AB1A3}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HP User Guides 0176 - (.Hewlett-Packard.) [HKLM][64Bits] -- {20B88A14-02F9-48D4-ACEC-6D8F5F3E8A83}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {6ECE2119-D131-484C-839A-39F9C5E5FA0A}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082222
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM][64Bits] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}
O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) [HKLM][64Bits] -- JDownloader
O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM][64Bits] -- 1489-3350-5074-6281
O42 - Logiciel: Java(TM) 6 Update 17 (64-bit) - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86416017FF}
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216020F0}
O42 - Logiciel: Java(TM) 6 Update 26 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WT083514
O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT083510
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {FA8BFB25-BF48-4F8B-8859-B30810745190}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Macromedia Flash Player 8 - (.Macromedia.) [HKLM][64Bits] -- ShockwaveFlash
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT082409
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -- {774088D4-0777-4D78-904D-E435B318F5D2}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {0450B7B0-AC71-44A4-AB40-4DD678DF3A8C}
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {E77543EE-6FB5-4FF6-AB70-635392C8C756}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {FCAB9F73-BF5D-4E3D-92E7-B0F35C568F20}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM][64Bits] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {8338783A-0968-3B85-AFC7-BAAE0A63DC50}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM][64Bits] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {350AA351-21FA-3270-8B7A-835434E766AD}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Mozilla Firefox 5.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 5.0 (x86 fr)
O42 - Logiciel: Mystery P.I. - The Vegas Heist - (.WildTangent.) [HKLM][64Bits] -- WT082414
O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM][64Bits] -- {266517E6-D866-439D-919C-B8B1A52E6080}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT082168
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM][64Bits] -- {D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT082172
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: SUPERAntiSpyware - (.SUPERAntiSpyware.com.) [HKLM] -- {CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082427
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228
O42 - Logiciel: VLC media player 1.1.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: VSO Image Resizer 4.0.3.6 - (.VSO-Software.) [HKLM][64Bits] -- {8969CD6F-5B75-40B9-8701-86ECA4C1F263}_is1
O42 - Logiciel: Validity Sensors DDK - (.Validity Sensors, Inc..) [HKLM] -- {EE5017A6-7525-4EE9-99DA-2EF1F6C16B1B}
O42 - Logiciel: Virtual Villagers - The Secret City - (.WildTangent.) [HKLM][64Bits] -- WT082241
O42 - Logiciel: VirtualDub 1.9.6 Fr - (.Trad-Fr.) [HKLM][64Bits] -- {1FF7993C-23B1-4C91-B1F6-09D13C57A06A}_is1
O42 - Logiciel: VirtualDub Plugin Pack 1.0.0.6 Fr - (.Trad-Fr.) [HKLM][64Bits] -- {D6E6B04E-0498-4794-B272-2EDE12E02837}_is1
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WT082422
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) - (.Broadcom.) [HKLM] -- 6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (12/16/2009 6.2.0.9414) - (.Broadcom.) [HKLM] -- 7E38E30BB92ED94B21CF062A7386554CBA991FEB
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082246
O42 - Logiciel: [HKLM\Software\EasyBits Magic Desktop] - (.Pas de propriétaire.) [HKLM][64Bits] -- ESET Online Scanner

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Monitored]
[HKCU\Software\AppDataLow\Software\settings]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\BitDefender]
[HKCU\Software\CA Yahoo! Anti-Spy]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DT Soft]
[HKCU\Software\Digital River]
[HKCU\Software\DigitalPersona]
[HKCU\Software\DownloadManager]
[HKCU\Software\ESET]
[HKCU\Software\EasyBits]
[HKCU\Software\Freeware]
[HKCU\Software\GNU]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\LightScribe]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\SUPERAntiSpyware.com]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\VSO]
[HKCU\Software\VirtualDub.org]
[HKCU\Software\Widcomm]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\dskMetrics]
[HKCU\Software\ej-technologies]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\CA Yahoo! Anti-Spy]
[HKLM\Software\CXT]
[HKLM\Software\Caphyon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\DEVICEVM]
[HKLM\Software\DT Soft]
[HKLM\Software\DeviceVM]
[HKLM\Software\DigitalPersona]
[HKLM\Software\EasyBits]
[HKLM\Software\Eset]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LightScribe]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\P2G_Upgrade]
[HKLM\Software\PDR_Upgrade]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Product_Upgrade]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SUPERAntiSpyware.com]
[HKLM\Software\Sonic]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\Swearware]
[HKLM\Software\Synaptics]
[HKLM\Software\Trad-FR]
[HKLM\Software\TrendMicro]
[HKLM\Software\VSO]
[HKLM\Software\Validity]
[HKLM\Software\VideoLAN]
[HKLM\Software\Widcomm]
[HKLM\Software\WildTangent]
[HKLM\Software\Win32 Services]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\ej-technologies]
[HKLM\Software\mozilla.org]



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/06/2010 - 01:43:04 - [23088925] ----D- C:\Program Files\ATI
O43 - CFD: 23/06/2011 - 22:11:56 - [7422296] ----D- C:\Program Files\CCleaner
O43 - CFD: 14/07/2009 - 05:20:10 - [37232342] ----D- C:\Program Files\Common Files
O43 - CFD: 08/06/2010 - 01:49:48 - [679904] ----D- C:\Program Files\DIFX
O43 - CFD: 08/06/2010 - 02:17:24 - [28092540] ----D- C:\Program Files\DigitalPersona
O43 - CFD: 03/05/2011 - 23:26:06 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 08/06/2010 - 02:01:58 - [25936250] ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 06/01/2011 - 23:38:30 - [43642024] ----D- C:\Program Files\IDT
O43 - CFD: 15/06/2011 - 11:41:26 - [6415214] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 18/05/2010 - 13:17:22 - [79722654] ----D- C:\Program Files\Java
O43 - CFD: 08/06/2010 - 11:33:26 - [149237810] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 07/02/2011 - 23:40:52 - [39218502] ----D- C:\Program Files\Microsoft IntelliPoint
O43 - CFD: 06/01/2011 - 22:46:48 - [22492668] ----D- C:\Program Files\Microsoft Security Client
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 14/07/2009 - 07:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 01/07/2011 - 19:21:30 - [57562290] ----D- C:\Program Files\SUPERAntiSpyware
O43 - CFD: 08/06/2010 - 01:45:08 - [67917531] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 08/06/2010 - 01:46:16 - [19519816] ----D- C:\Program Files\Validity Sensors
O43 - CFD: 08/06/2010 - 01:49:56 - [145270131] ----D- C:\Program Files\WIDCOMM
O43 - CFD: 03/05/2011 - 23:26:04 - [4039680] ----D- C:\Program Files\Windows Defender
O43 - CFD: 07/01/2011 - 00:58:54 - [43896] ----D- C:\Program Files\Windows Live
O43 - CFD: 03/05/2011 - 23:26:06 - [6667776] ----D- C:\Program Files\Windows Mail
O43 - CFD: 03/05/2011 - 23:26:06 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 25/12/2010 - 23:24:18 - [12627636] ----D- C:\Program Files\Windows NT
O43 - CFD: 03/05/2011 - 23:26:06 - [5516056] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 03/05/2011 - 23:26:06 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 03/05/2011 - 23:26:06 - [11374631] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 06/01/2011 - 23:34:54 - [5742497] ----D- C:\Program Files\WinRAR
O43 - CFD: 17/06/2011 - 02:43:00 - [24426581] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 18/05/2010 - 20:07:12 - [12194291] ----D- C:\Program Files\Common Files\System
O43 - CFD: 03/04/2011 - 14:08:20 - [162047] ----D- C:\ProgramData\!SASCORE
O43 - CFD: 17/06/2011 - 12:19:10 - [479] ----D- C:\ProgramData\Adobe
O43 - CFD: 09/01/2011 - 00:13:58 - [20614656] ----D- C:\ProgramData\Apple
O43 - CFD: 09/01/2011 - 00:15:02 - [26896384] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 08/06/2010 - 01:48:54 - [11227] ----D- C:\ProgramData\Atheros
O43 - CFD: 08/06/2010 - 02:28:08 - [187] ----D- C:\ProgramData\ATI
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 25/12/2010 - 23:40:38 - [147227] ----D- C:\ProgramData\CyberLink
O43 - CFD: 19/01/2011 - 00:08:24 - [1420] ----D- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 18/01/2011 - 23:58:14 - [1252] ----D- C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 08/06/2010 - 02:17:20 - [40600776] ----D- C:\ProgramData\Downloaded Installations
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 23/06/2011 - 23:14:10 - [0] ----D- C:\ProgramData\Google
O43 - CFD: 11/01/2011 - 21:20:50 - [62404725] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 08/06/2010 - 02:17:24 - [3531665] ----D- C:\ProgramData\Macrovision
O43 - CFD: 20/06/2011 - 22:52:04 - [6862916] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 23/06/2011 - 22:23:48 - [1637867810] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 06/01/2011 - 22:32:36 - [336] ----D- C:\ProgramData\Norton
O43 - CFD: 08/06/2010 - 02:07:34 - [9213778] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 25/12/2010 - 23:43:12 - [259] ----D- C:\ProgramData\Sun
O43 - CFD: 03/04/2011 - 14:08:24 - [0] ----D- C:\ProgramData\SUPERAntiSpyware.com
O43 - CFD: 08/06/2010 - 02:07:20 - [782691] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 08/06/2010 - 02:16:30 - [1958563612] ----D- C:\ProgramData\WildTangent
O43 - CFD: 11/01/2011 - 21:16:40 - [35253750] ----D- C:\ProgramData\{23D58E70-3B83-4B83-A227-68770F84F5EC}
O43 - CFD: 18/05/2010 - 11:02:26 - [20272988] ----D- C:\ProgramData\{657095DF-DBDB-4B17-8245-B38845C97069}
O43 - CFD: 04/05/2011 - 22:16:58 - [1842806] ----D- C:\Users\JAUZE\AppData\Roaming\Adobe
O43 - CFD: 25/12/2010 - 23:33:12 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\ATI
O43 - CFD: 25/12/2010 - 23:40:26 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\CyberLink
O43 - CFD: 19/01/2011 - 00:13:26 - [1077] ----D- C:\Users\JAUZE\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 18/01/2011 - 23:55:14 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 25/12/2010 - 23:24:44 - [24] ----D- C:\Users\JAUZE\AppData\Roaming\DigitalPersona
O43 - CFD: 29/06/2011 - 23:04:40 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\DMCache
O43 - CFD: 05/05/2011 - 12:09:24 - [111913] ----D- C:\Users\JAUZE\AppData\Roaming\Hewlett-Packard
O43 - CFD: 11/01/2011 - 21:08:22 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\HP Support Assistant
O43 - CFD: 11/01/2011 - 21:16:12 - [108824] ----D- C:\Users\JAUZE\AppData\Roaming\hpqlog
O43 - CFD: 11/01/2011 - 21:08:24 - [1376] ----D- C:\Users\JAUZE\AppData\Roaming\HpUpdate
O43 - CFD: 25/12/2010 - 23:31:44 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\Identities
O43 - CFD: 05/05/2011 - 01:30:12 - [236274848] ----D- C:\Users\JAUZE\AppData\Roaming\IDM
O43 - CFD: 25/12/2010 - 23:33:16 - [2216] ----D- C:\Users\JAUZE\AppData\Roaming\Macromedia
O43 - CFD: 20/06/2011 - 22:53:06 - [2117] ----D- C:\Users\JAUZE\AppData\Roaming\Malwarebytes
O43 - CFD: 08/06/2010 - 11:33:26 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\Media Center Programs
O43 - CFD: 04/05/2011 - 22:16:58 - [1042312] -S--D- C:\Users\JAUZE\AppData\Roaming\Microsoft
O43 - CFD: 27/06/2011 - 22:22:16 - [5965] ----D- C:\Users\JAUZE\AppData\Roaming\Mipony
O43 - CFD: 25/12/2010 - 23:36:52 - [37798477] ----D- C:\Users\JAUZE\AppData\Roaming\Mozilla
O43 - CFD: 10/01/2011 - 13:58:40 - [2395683] ----D- C:\Users\JAUZE\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/06/2011 - 22:23:10 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\QuickScan
O43 - CFD: 03/04/2011 - 14:08:24 - [86589831] ----D- C:\Users\JAUZE\AppData\Roaming\SUPERAntiSpyware.com
O43 - CFD: 04/05/2011 - 22:58:52 - [1115585] ----D- C:\Users\JAUZE\AppData\Roaming\vlc
O43 - CFD: 06/02/2011 - 19:31:36 - [5089] ----D- C:\Users\JAUZE\AppData\Roaming\VSO
O43 - CFD: 11/01/2011 - 20:58:02 - [295] ----D- C:\Users\JAUZE\AppData\Roaming\Windows Live Writer
O43 - CFD: 06/01/2011 - 23:35:02 - [1237116] ----D- C:\Users\JAUZE\AppData\Roaming\WinRAR
O43 - CFD: 17/06/2011 - 22:08:38 - [8624] ----D- C:\Users\JAUZE\AppData\Roaming\_MDLogs
O43 - CFD: 04/05/2011 - 22:05:52 - [15329906] ----D- C:\Users\JAUZE\AppData\Local\Adobe
O43 - CFD: 09/01/2011 - 00:14:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\Apple
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Application Data
O43 - CFD: 07/01/2011 - 15:33:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\Apps
O43 - CFD: 25/12/2010 - 23:33:12 - [73587] ----D- C:\Users\JAUZE\AppData\Local\ATI
O43 - CFD: 25/12/2010 - 23:32:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\Broadcom
O43 - CFD: 17/03/2011 - 22:09:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\Diagnostics
O43 - CFD: 25/12/2010 - 23:24:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\DigitalPersona
O43 - CFD: 23/06/2011 - 22:24:22 - [514] ----D- C:\Users\JAUZE\AppData\Local\Google
O43 - CFD: 07/01/2011 - 15:40:20 - [754226] ----D- C:\Users\JAUZE\AppData\Local\Hewlett-Packard
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Historique
O43 - CFD: 23/06/2011 - 22:23:48 - [447610552] ----D- C:\Users\JAUZE\AppData\Local\Microsoft
O43 - CFD: 10/04/2011 - 16:12:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\Moonchild Productions
O43 - CFD: 25/12/2010 - 23:36:44 - [200279010] ----D- C:\Users\JAUZE\AppData\Local\Mozilla
O43 - CFD: 02/07/2011 - 11:16:38 - [4590824] ----D- C:\Users\JAUZE\AppData\Local\Temp
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Temporary Internet Files
O43 - CFD: 27/06/2011 - 20:06:24 - [622] ----D- C:\Users\JAUZE\AppData\Local\VirtualStore
O43 - CFD: 02/07/2011 - 11:08:12 - [61440] ----D- C:\Users\JAUZE\AppData\Local\Windows Live
O43 - CFD: 07/01/2011 - 14:49:30 - [372494] ----D- C:\Users\JAUZE\AppData\Local\Windows Live Writer
O43 - CFD: 01/06/2011 - 03:08:36 - [0] ----D- C:\Users\JAUZE\AppData\Local\{001416B1-742C-429D-B137-63D8C4443F2A}
O43 - CFD: 12/05/2011 - 11:50:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\{00D1AF6A-3C8B-4527-BA66-4B33894E732F}
O43 - CFD: 13/06/2011 - 21:33:30 - [0] ---
2 Juillet 2011 12:51:49

Re,

le rapport de ZHPDiag est incomplet.
2 Juillet 2011 17:14:07

Voila le rapport

Rapport de ZHPDiag v1.27.2361 par Nicolas Coolman, Update du 01/07/2011
Run by JAUZE at 02/07/2011 17:11:38
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.h...


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 5.0 v (Defaut)

---\\ System Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3893 MB (49% free)
System Restore: Activé (Enable)
System drive C: has 382 GB (86%) free of 443 GB

---\\ Logged in mode
Computer Name: JAUZE-PC
User Name: JAUZE
All Users Names: JAUZE, HomeGroupUser$, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=C:\Users\JAUZE\AppData\Roaming
%LocalAppData%=C:\Users\JAUZE\AppData\Local
%StartMenu%=C:\Users\JAUZE\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 382 Go of 443 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 22 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
F:\ CD-ROM drive (Not Inserted)
G:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Internet Extensions for Win32.) (.15/06/2011 - 00:58:38.) -- C:\Windows\system32\wininet.dll [1126912]



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/43
~ Mes Favoris (My Favorites) : 8/494
~ Mes Documents (My Documents) : 5/445
~ Mon Bureau (My Desktop) : 1/5
~ Menu demarrer (Programs) : 7/34



---\\ Processus lancés
[MD5.65AAB982F6C11EB02A8BEFF50A9FAF78] - (.DigitalPersona, Inc. - DigitalPersona Local Agent.) -- C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe [623368]
[MD5.BDF37B36AC60A7D97161A103B14CEE65] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392]
[MD5.F34E7705751BB413283434697BF8E55D] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696]
[MD5.89878DAA9C5B4DF0BCB92B7B3936C272] - (.Hewlett-Packard Development Company, L.P. - HP ENVY Guides Flash Storage Autoplay.) -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe [76584]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696]
[MD5.F0B80497A0598B45D0CB58C9DD2CC28D] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1590840]
[MD5.7B18D3342ECC0F9BB20DCF913E541093] - (.Broadcom Corporation. - Bluetooth Headset Skype Proxy.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe [13600]
[MD5.6C9CD3ECBA6732661C8BBE37A877A2BD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632]
[MD5.000B70598782452D2EBD26918F551041] - (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe [92024]
[MD5.4486AD32BB05628967695FCA1BADD46E] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856]
[MD5.9462CE5872A7FD2B1CD0180877E8DE22] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [656896]



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\JAUZE\AppData\Roaming\Mozilla\Firefox\Profiles\o7gvq566.default\prefs.js
M3 - MFPP: Plugins - [JAUZE] -- C:\Users\JAUZE\AppData\Roaming\Mozilla\Firefox\Profiles\o7gvq566.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [JAUZE] -- C:\Users\JAUZE\AppData\Roaming\Mozilla\Firefox\Profiles\o7gvq566.default\searchplugins\daemon-search.xml
M0 - MFSP: prefs.js [JAUZE - o7gvq566.default] wwW.aliceadsl.fr
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\foxmarks@kei.com] [] Xmarks v (.Todd Agulnick.)
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack] [] Awesome screenshot: Capture and Annotate v2.3 (.Diigo Team.)
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\{3112ca9c-de6d-4884-a869-9855de68056c}] [] Google Toolbar for Firefox v7.1.20110512W (.Google Inc..)
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}] [yahoo.ytff] Yahoo! Toolbar v2.3.8.20110620112826 (.Yahoo!.)
M2 - MFEP: prefs.js [JAUZE - o7gvq566.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.3 (.Michel Gutierrez.)



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll



---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,C:\Program Files (x86)\DigitalPersona\Bin\DPAgent.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: HP SimplePass Identity Protection Extension [64Bits] - {395610AE-C624-4f58-B89E-23733EA00F9A} . (.DigitalPersona, Inc. - DigitalPersona OTS Feedback component.) -- C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Tonec Inc. - IDM BHO Module.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: HP SimplePass Identity Protection Extension [64Bits] - {395610AE-C624-4f58-B89E-23733EA00F9A} . (.DigitalPersona, Inc. - DigitalPersona OTS Feedback component.) -- C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: DAEMON Tools Toolbar [64Bits] - {32099AAC-C132-4136-9E9A-4E364A424E17} . (.Pas de propriétaire - ToolBand Module.) -- C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll



---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe (.not file.)
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.)
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.)
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [HP Quick Launch] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [SmartMenu] . (.Pas de propriétaire - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [HPToneControl] . (.Hewlett-Packard - Tone Control.) -- C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] . (...) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- c:\Program Files\Microsoft IntelliPoint\ipoint.exe
O4 - HKCU\..\Run: [HPAdvisorDock] . (.Pas de propriétaire - HP Advisor Dock.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Envy Guides AutoPlay] . (.Hewlett-Packard Development Company, L.P. - HP ENVY Guides Flash Storage Autoplay.) -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [HPAdvisorDock] . (.Pas de propriétaire - HP Advisor Dock.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-1208545177-2458381507-1022432816-1001\..\Run: [SUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk . (...) -- C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe (.not file.)



---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JAUZE\Desktop\MBRCheck.lnk . (...) -- C:\Program Files (x86)\ZHPDiag\mbrcheck.exe
O4 - Global Startup: C:\Users\JAUZE\Desktop\ZHPDiag.lnk . (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe
O4 - Global Startup: C:\Users\JAUZE\Desktop\ZHPFix.lnk . (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VirtualDub.lnk . (...) -- C:\Program Files (x86)\VirtualDub\VirtualDub.exe
O4 - Global Startup: C:\Users\JAUZE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VSO Image Resizer 4.lnk . (.VSO Software SARL.) -- C:\Program Files (x86)\VSO\Image Resizer 4\Resize.exe



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Télécharger avec IDM . (...) -- C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM . (...) -- C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM . (...) -- C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{88652363-64BF-45C9-8970-3683D1DC265A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{88652363-64BF-45C9-8970-3683D1DC265A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{88652363-64BF-45C9-8970-3683D1DC265A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (...) -- igfxdev.dll



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: SAS Core Service (!SASCORE) . (.SUPERAntiSpyware.com - Core Service.) - C:\Program Files\SUPERAntiSpyware\SASCORE64.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
O23 - Service: (AMD External Events Utility) . (...) - C:\Windows\system32\atiesrxx.exe (.not file.)
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: C:\Program Files\DigitalPersona\Bin\DpHostW.exe (DpHost) . (.DigitalPersona, Inc. - DigitalPersona Local Host.) - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard Company - HP Support Assistant.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service (HP Wireless Assistant Service) . (.Hewlett-Packard - HPPA_Service.) - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Service (hpsrv) . (...) - C:\Windows\system32\Hpservice.exe (.not file.)
O23 - Service: HPWMISVC (HPWMISVC) . (...) - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) . (.Validity Sensors, Inc. - Validity Sensors Fingerprint Service.) - C:\Windows\system32\vcsFPService.exe



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForJAUZE.job
[MD5.00000000000000000000000000000000] [APT] [CLMLSvc] (...) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [DVDAgent] (...) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (.not file.)
[MD5.BEAEC745256D3158495FEE10BA673E7C] [APT] [HPCeeScheduleForJAUZE] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [Registration] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.725F95C28682C89CDA455E580B247D41] [APT] [ServicePlan] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe
[MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
[MD5.FDC7C934ADB8C3B51A3C21781B608673] [APT] [PC Tuneup] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (DVMIO) . (.DeviceVM, Inc. - DVMIO virtual device driver for 64bit.) - C:\Windows\System32\DRIVERS\dvmio.sys
O41 - Driver: (MpFilter) . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) - C:\Windows\System32\DRIVERS\MpFilter.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SASDIFSV) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV64.SYS.) - C:\Program Files\SUPERAntiSpyware\SASDIFSV64.sys
O41 - Driver: (SASKUTIL) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL64.SYS.) - C:\Program Files\SUPERAntiSpyware\SASKUTIL64.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys



---\\ Logiciels installés (O42)
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.0) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}
O42 - Logiciel: Agatha Christie - Death on the Nile - (.WildTangent.) [HKLM][64Bits] -- WT083492
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082192
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT082124
O42 - Logiciel: Broadcom 2070 Bluetooth 2.1 + EDR - (.Broadcom Corporation.) [HKLM] -- {9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
O42 - Logiciel: Bus Driver - (.WildTangent.) [HKLM][64Bits] -- WT082439
O42 - Logiciel: CA Yahoo! Anti-Spy (remove only) - (.CA, Inc..) [HKLM][64Bits] -- cayahooantispy
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {C1A0D5F7-02F3-4D95-872A-0E56CF968DC6}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082200
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Toolbar
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: DVD Menu Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM][64Bits] -- WT082396
O42 - Logiciel: Dream Chronicles - (.WildTangent.) [HKLM][64Bits] -- WT083521
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WT082141
O42 - Logiciel: Farming Simulator 2011 - (.GIANTS Software.) [HKLM][64Bits] -- FarmingSimulator2011FR_is1
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: Gem Shop - (.WildTangent.) [HKLM][64Bits] -- WT083529
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM] -- {8FCDACA0-E090-4A9A-AC71-A96E7371DC6E}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP DVB-T TV Tuner 8.0.64.43 - (.Pas de propriétaire.) [HKLM][64Bits] -- HP DVB-T TV Tuner
O42 - Logiciel: HP ENVY Document Card Utilities - (.Hewlett-Packard.) [HKLM][64Bits] -- {FEC7B56F-A010-4866-809E-F5082CF5BB8C}
O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM][64Bits] -- My HP Game Console
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart DVD - (.Hewlett-Packard.) [HKLM][64Bits] -- {DCCAD079-F92C-44DA-B258-624FC6517A5A}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Internet TV - (.Hewlett-Packard.) [HKLM][64Bits] -- {E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}
O42 - Logiciel: HP MediaSmart Movies and TV - (.Hewlett-Packard.) [HKLM] -- {4B4E2FA2-3B1E-4147-99DB-5033981D8C2F}
O42 - Logiciel: HP MediaSmart Music - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}
O42 - Logiciel: HP MediaSmart Music - (.Hewlett-Packard.) [HKLM][64Bits] -- {91A34181-9FAD-43AB-A35F-E7A8945B7E1C}
O42 - Logiciel: HP MediaSmart Photo - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}
O42 - Logiciel: HP MediaSmart Photo - (.Hewlett-Packard.) [HKLM][64Bits] -- {6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}
O42 - Logiciel: HP MediaSmart SmartMenu - (.Hewlett-Packard.) [HKLM] -- {731A1D36-BF17-4C76-B7E7-CC055AF8C54E}
O42 - Logiciel: HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}
O42 - Logiciel: HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {D12E3E7F-1B13-4933-A915-16C7DD37A095}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP MediaSmart Webcam - (.Hewlett-Packard.) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard.) [HKLM] -- {10F539B1-31AF-43BF-9F0C-0EB66E918922}
O42 - Logiciel: HP QuickWeb Installer - (.DeviceVM Inc..) [HKLM][64Bits] -- {394FA67A-FF0A-4356-BB77-D85E5A300BDE}
O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {E2831862-F131-4327-B9CC-FA30F587EB6C}
O42 - Logiciel: HP SimplePass Identity Protection - (.DigitalPersona, Inc..) [HKLM] -- {F20DF0CA-5929-4C26-A501-FDB19FDF0A50}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {C3036565-A89C-41BB-BB5F-95ECE549D7FF}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {08DB3902-2CE0-474D-BCE3-0177766CE9F1}
O42 - Logiciel: HP Tone Control - (.Hewlett-Packard Company.) [HKLM] -- {9207D4A1-586E-49CA-A002-FC9F475AB1A3}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731}
O42 - Logiciel: HP User Guides 0176 - (.Hewlett-Packard.) [HKLM][64Bits] -- {20B88A14-02F9-48D4-ACEC-6D8F5F3E8A83}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {6ECE2119-D131-484C-839A-39F9C5E5FA0A}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM][64Bits] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082222
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM][64Bits] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}
O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) [HKLM][64Bits] -- JDownloader
O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM][64Bits] -- 1489-3350-5074-6281
O42 - Logiciel: Java(TM) 6 Update 17 (64-bit) - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F86416017FF}
O42 - Logiciel: Java(TM) 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216020F0}
O42 - Logiciel: Java(TM) 6 Update 26 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WT083514
O42 - Logiciel: Jewel Quest Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT083510
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {FA8BFB25-BF48-4F8B-8859-B30810745190}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Macromedia Flash Player 8 - (.Macromedia.) [HKLM][64Bits] -- ShockwaveFlash
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT082409
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Antimalware - (.Microsoft Corporation.) [HKLM] -- {774088D4-0777-4D78-904D-E435B318F5D2}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {0450B7B0-AC71-44A4-AB40-4DD678DF3A8C}
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {E77543EE-6FB5-4FF6-AB70-635392C8C756}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {FCAB9F73-BF5D-4E3D-92E7-B0F35C568F20}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM][64Bits] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {8338783A-0968-3B85-AFC7-BAAE0A63DC50}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM][64Bits] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {350AA351-21FA-3270-8B7A-835434E766AD}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Movie Theme Pack for HP MediaSmart Video - (.Hewlett-Packard.) [HKLM][64Bits] -- {3023EBDA-BF1B-4831-B347-E5018555F26E}
O42 - Logiciel: Mozilla Firefox 5.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 5.0 (x86 fr)
O42 - Logiciel: Mystery P.I. - The Vegas Heist - (.WildTangent.) [HKLM][64Bits] -- WT082414
O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM][64Bits] -- {266517E6-D866-439D-919C-B8B1A52E6080}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT082168
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: PhotoNow! - (.CyberLink Corp..) [HKLM][64Bits] -- {D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT082172
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: Realtek Ethernet Controller Driver For Windows 7 - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: SUPERAntiSpyware - (.SUPERAntiSpyware.com.) [HKLM] -- {CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082427
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228
O42 - Logiciel: VLC media player 1.1.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: VSO Image Resizer 4.0.3.6 - (.VSO-Software.) [HKLM][64Bits] -- {8969CD6F-5B75-40B9-8701-86ECA4C1F263}_is1
O42 - Logiciel: Validity Sensors DDK - (.Validity Sensors, Inc..) [HKLM] -- {EE5017A6-7525-4EE9-99DA-2EF1F6C16B1B}
O42 - Logiciel: Virtual Villagers - The Secret City - (.WildTangent.) [HKLM][64Bits] -- WT082241
O42 - Logiciel: VirtualDub 1.9.6 Fr - (.Trad-Fr.) [HKLM][64Bits] -- {1FF7993C-23B1-4C91-B1F6-09D13C57A06A}_is1
O42 - Logiciel: VirtualDub Plugin Pack 1.0.0.6 Fr - (.Trad-Fr.) [HKLM][64Bits] -- {D6E6B04E-0498-4794-B272-2EDE12E02837}_is1
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WT082422
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) - (.Broadcom.) [HKLM] -- 6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (12/16/2009 6.2.0.9414) - (.Broadcom.) [HKLM] -- 7E38E30BB92ED94B21CF062A7386554CBA991FEB
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT082246
O42 - Logiciel: [HKLM\Software\EasyBits Magic Desktop] - (.Pas de propriétaire.) [HKLM][64Bits] -- ESET Online Scanner

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Monitored]
[HKCU\Software\AppDataLow\Software\settings]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\BitDefender]
[HKCU\Software\CA Yahoo! Anti-Spy]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DT Soft]
[HKCU\Software\Digital River]
[HKCU\Software\DigitalPersona]
[HKCU\Software\DownloadManager]
[HKCU\Software\ESET]
[HKCU\Software\EasyBits]
[HKCU\Software\Freeware]
[HKCU\Software\GNU]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\LightScribe]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\SUPERAntiSpyware.com]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\VSO]
[HKCU\Software\VirtualDub.org]
[HKCU\Software\Widcomm]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\dskMetrics]
[HKCU\Software\ej-technologies]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\CA Yahoo! Anti-Spy]
[HKLM\Software\CXT]
[HKLM\Software\Caphyon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\DEVICEVM]
[HKLM\Software\DT Soft]
[HKLM\Software\DeviceVM]
[HKLM\Software\DigitalPersona]
[HKLM\Software\EasyBits]
[HKLM\Software\Eset]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LightScribe]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\P2G_Upgrade]
[HKLM\Software\PDR_Upgrade]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Product_Upgrade]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SUPERAntiSpyware.com]
[HKLM\Software\Sonic]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\Swearware]
[HKLM\Software\Synaptics]
[HKLM\Software\Trad-FR]
[HKLM\Software\TrendMicro]
[HKLM\Software\VSO]
[HKLM\Software\Validity]
[HKLM\Software\VideoLAN]
[HKLM\Software\Widcomm]
[HKLM\Software\WildTangent]
[HKLM\Software\Win32 Services]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node]
[HKLM\Software\ej-technologies]
[HKLM\Software\mozilla.org]



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 08/06/2010 - 01:43:04 - [23088925] ----D- C:\Program Files\ATI
O43 - CFD: 23/06/2011 - 22:11:56 - [7422296] ----D- C:\Program Files\CCleaner
O43 - CFD: 14/07/2009 - 05:20:10 - [37232342] ----D- C:\Program Files\Common Files
O43 - CFD: 08/06/2010 - 01:49:48 - [679904] ----D- C:\Program Files\DIFX
O43 - CFD: 08/06/2010 - 02:17:24 - [28092540] ----D- C:\Program Files\DigitalPersona
O43 - CFD: 03/05/2011 - 23:26:06 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 08/06/2010 - 02:01:58 - [25936250] ----D- C:\Program Files\Hewlett-Packard
O43 - CFD: 06/01/2011 - 23:38:30 - [43642024] ----D- C:\Program Files\IDT
O43 - CFD: 15/06/2011 - 11:41:26 - [6415214] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 18/05/2010 - 13:17:22 - [79722654] ----D- C:\Program Files\Java
O43 - CFD: 08/06/2010 - 11:33:26 - [149237810] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 07/02/2011 - 23:40:52 - [39218502] ----D- C:\Program Files\Microsoft IntelliPoint
O43 - CFD: 06/01/2011 - 22:46:48 - [22492668] ----D- C:\Program Files\Microsoft Security Client
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 14/07/2009 - 07:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 01/07/2011 - 19:21:30 - [57562290] ----D- C:\Program Files\SUPERAntiSpyware
O43 - CFD: 08/06/2010 - 01:45:08 - [67917531] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 08/06/2010 - 01:46:16 - [19519816] ----D- C:\Program Files\Validity Sensors
O43 - CFD: 08/06/2010 - 01:49:56 - [145270131] ----D- C:\Program Files\WIDCOMM
O43 - CFD: 03/05/2011 - 23:26:04 - [4039680] ----D- C:\Program Files\Windows Defender
O43 - CFD: 07/01/2011 - 00:58:54 - [43896] ----D- C:\Program Files\Windows Live
O43 - CFD: 03/05/2011 - 23:26:06 - [6667776] ----D- C:\Program Files\Windows Mail
O43 - CFD: 03/05/2011 - 23:26:06 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 25/12/2010 - 23:24:18 - [12627636] ----D- C:\Program Files\Windows NT
O43 - CFD: 03/05/2011 - 23:26:06 - [5516056] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 03/05/2011 - 23:26:06 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 03/05/2011 - 23:26:06 - [11374631] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 06/01/2011 - 23:34:54 - [5742497] ----D- C:\Program Files\WinRAR
O43 - CFD: 17/06/2011 - 02:43:00 - [24426581] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 18/05/2010 - 20:07:12 - [12194291] ----D- C:\Program Files\Common Files\System
O43 - CFD: 03/04/2011 - 14:08:20 - [162047] ----D- C:\ProgramData\!SASCORE
O43 - CFD: 17/06/2011 - 12:19:10 - [479] ----D- C:\ProgramData\Adobe
O43 - CFD: 09/01/2011 - 00:13:58 - [20614656] ----D- C:\ProgramData\Apple
O43 - CFD: 09/01/2011 - 00:15:02 - [26896384] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 08/06/2010 - 01:48:54 - [11227] ----D- C:\ProgramData\Atheros
O43 - CFD: 08/06/2010 - 02:28:08 - [187] ----D- C:\ProgramData\ATI
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 25/12/2010 - 23:40:38 - [147227] ----D- C:\ProgramData\CyberLink
O43 - CFD: 19/01/2011 - 00:08:24 - [1420] ----D- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 18/01/2011 - 23:58:14 - [1252] ----D- C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 08/06/2010 - 02:17:20 - [40600776] ----D- C:\ProgramData\Downloaded Installations
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 23/06/2011 - 23:14:10 - [0] ----D- C:\ProgramData\Google
O43 - CFD: 11/01/2011 - 21:20:50 - [62404725] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 08/06/2010 - 02:17:24 - [3531665] ----D- C:\ProgramData\Macrovision
O43 - CFD: 20/06/2011 - 22:52:04 - [6862916] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 23/06/2011 - 22:23:48 - [1637884384] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 25/12/2010 - 23:24:18 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 06/01/2011 - 22:32:36 - [336] ----D- C:\ProgramData\Norton
O43 - CFD: 08/06/2010 - 02:07:34 - [9213778] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 25/12/2010 - 23:43:12 - [259] ----D- C:\ProgramData\Sun
O43 - CFD: 03/04/2011 - 14:08:24 - [0] ----D- C:\ProgramData\SUPERAntiSpyware.com
O43 - CFD: 08/06/2010 - 02:07:20 - [782691] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 08/06/2010 - 02:16:30 - [1958563612] ----D- C:\ProgramData\WildTangent
O43 - CFD: 11/01/2011 - 21:16:40 - [35253750] ----D- C:\ProgramData\{23D58E70-3B83-4B83-A227-68770F84F5EC}
O43 - CFD: 18/05/2010 - 11:02:26 - [20272988] ----D- C:\ProgramData\{657095DF-DBDB-4B17-8245-B38845C97069}
O43 - CFD: 04/05/2011 - 22:16:58 - [1842806] ----D- C:\Users\JAUZE\AppData\Roaming\Adobe
O43 - CFD: 25/12/2010 - 23:33:12 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\ATI
O43 - CFD: 25/12/2010 - 23:40:26 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\CyberLink
O43 - CFD: 19/01/2011 - 00:13:26 - [1077] ----D- C:\Users\JAUZE\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 18/01/2011 - 23:55:14 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 25/12/2010 - 23:24:44 - [24] ----D- C:\Users\JAUZE\AppData\Roaming\DigitalPersona
O43 - CFD: 29/06/2011 - 23:04:40 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\DMCache
O43 - CFD: 05/05/2011 - 12:09:24 - [111913] ----D- C:\Users\JAUZE\AppData\Roaming\Hewlett-Packard
O43 - CFD: 11/01/2011 - 21:08:22 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\HP Support Assistant
O43 - CFD: 11/01/2011 - 21:16:12 - [108824] ----D- C:\Users\JAUZE\AppData\Roaming\hpqlog
O43 - CFD: 11/01/2011 - 21:08:24 - [1376] ----D- C:\Users\JAUZE\AppData\Roaming\HpUpdate
O43 - CFD: 25/12/2010 - 23:31:44 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\Identities
O43 - CFD: 05/05/2011 - 01:30:12 - [236274848] ----D- C:\Users\JAUZE\AppData\Roaming\IDM
O43 - CFD: 25/12/2010 - 23:33:16 - [2216] ----D- C:\Users\JAUZE\AppData\Roaming\Macromedia
O43 - CFD: 20/06/2011 - 22:53:06 - [2117] ----D- C:\Users\JAUZE\AppData\Roaming\Malwarebytes
O43 - CFD: 08/06/2010 - 11:33:26 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\Media Center Programs
O43 - CFD: 04/05/2011 - 22:16:58 - [1042319] -S--D- C:\Users\JAUZE\AppData\Roaming\Microsoft
O43 - CFD: 27/06/2011 - 22:22:16 - [5965] ----D- C:\Users\JAUZE\AppData\Roaming\Mipony
O43 - CFD: 25/12/2010 - 23:36:52 - [37848509] ----D- C:\Users\JAUZE\AppData\Roaming\Mozilla
O43 - CFD: 10/01/2011 - 13:58:40 - [2395683] ----D- C:\Users\JAUZE\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/06/2011 - 22:23:10 - [0] ----D- C:\Users\JAUZE\AppData\Roaming\QuickScan
O43 - CFD: 03/04/2011 - 14:08:24 - [86589831] ----D- C:\Users\JAUZE\AppData\Roaming\SUPERAntiSpyware.com
O43 - CFD: 04/05/2011 - 22:58:52 - [1115585] ----D- C:\Users\JAUZE\AppData\Roaming\vlc
O43 - CFD: 06/02/2011 - 19:31:36 - [5089] ----D- C:\Users\JAUZE\AppData\Roaming\VSO
O43 - CFD: 11/01/2011 - 20:58:02 - [295] ----D- C:\Users\JAUZE\AppData\Roaming\Windows Live Writer
O43 - CFD: 06/01/2011 - 23:35:02 - [1237116] ----D- C:\Users\JAUZE\AppData\Roaming\WinRAR
O43 - CFD: 17/06/2011 - 22:08:38 - [8624] ----D- C:\Users\JAUZE\AppData\Roaming\_MDLogs
O43 - CFD: 04/05/2011 - 22:05:52 - [15329906] ----D- C:\Users\JAUZE\AppData\Local\Adobe
O43 - CFD: 09/01/2011 - 00:14:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\Apple
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Application Data
O43 - CFD: 07/01/2011 - 15:33:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\Apps
O43 - CFD: 25/12/2010 - 23:33:12 - [73587] ----D- C:\Users\JAUZE\AppData\Local\ATI
O43 - CFD: 25/12/2010 - 23:32:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\Broadcom
O43 - CFD: 17/03/2011 - 22:09:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\Diagnostics
O43 - CFD: 25/12/2010 - 23:24:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\DigitalPersona
O43 - CFD: 23/06/2011 - 22:24:22 - [514] ----D- C:\Users\JAUZE\AppData\Local\Google
O43 - CFD: 07/01/2011 - 15:40:20 - [754226] ----D- C:\Users\JAUZE\AppData\Local\Hewlett-Packard
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Historique
O43 - CFD: 23/06/2011 - 22:23:48 - [448265219] ----D- C:\Users\JAUZE\AppData\Local\Microsoft
O43 - CFD: 10/04/2011 - 16:12:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\Moonchild Productions
O43 - CFD: 25/12/2010 - 23:36:44 - [203906297] ----D- C:\Users\JAUZE\AppData\Local\Mozilla
O43 - CFD: 02/07/2011 - 17:11:20 - [4592703] ----D- C:\Users\JAUZE\AppData\Local\Temp
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Temporary Internet Files
O43 - CFD: 27/06/2011 - 20:06:24 - [622] ----D- C:\Users\JAUZE\AppData\Local\VirtualStore
O43 - CFD: 02/07/2011 - 11:08:12 - [61440] ----D- C:\Users\JAUZE\AppData\Local\Windows Live
O43 - CFD: 07/01/2011 - 14:49:30 - [372494] ----D- C:\Users\JAUZE\AppData\Local\Windows Live Writer
O43 - CFD: 01/06/2011 - 03:08:36 - [0] ----D- C:\Users\JAUZE\AppData\Local\{001416B1-742C-429D-B137-63D8C4443F2A}
O43 - CFD: 12/05/2011 - 11:50:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\{00D1AF6A-3C8B-4527-BA66-4B33894E732F}
O43 - CFD: 13/06/2011 - 21:33:30 - [0] ----D- C:\User
2 Juillet 2011 17:47:59

Le rapport de ZHPDiag est toujours incomplet, poste-le en plusieurs parties.
2 Juillet 2011 21:16:09

Voila la suite :

O43 - CFD: 13/06/2011 - 21:33:30 - [0] ----D- C:\Users\JAUZE\AppData\Local\{01C11DC6-D813-40C8-966A-5A91ABF3BF25}
O43 - CFD: 08/05/2011 - 20:37:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{02A30183-123A-4E09-A397-9F3E31EC77DB}
O43 - CFD: 20/04/2011 - 00:11:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{04B3BD2F-1D84-4280-AA83-0701B752797C}
O43 - CFD: 12/04/2011 - 01:02:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{08A54D80-5F25-4EBE-A2CE-71C0E81ABC67}
O43 - CFD: 04/05/2011 - 21:04:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{0D299711-8648-4405-BD8C-DDCD95E95A13}
O43 - CFD: 06/04/2011 - 11:17:56 - [0] ----D- C:\Users\JAUZE\AppData\Local\{0E029444-F909-4E63-BC73-55BA4F5640E7}
O43 - CFD: 21/06/2011 - 20:27:16 - [0] ----D- C:\Users\JAUZE\AppData\Local\{0F7CE966-3E35-4C53-80E5-F8915BFC301F}
O43 - CFD: 16/04/2011 - 12:40:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{10CD5701-E003-4AAF-8D3A-E5268651E67B}
O43 - CFD: 17/04/2011 - 13:51:06 - [0] ----D- C:\Users\JAUZE\AppData\Local\{12C03C47-5E3E-4370-8C96-6D51DEE4B1B0}
O43 - CFD: 28/05/2011 - 15:02:30 - [0] ----D- C:\Users\JAUZE\AppData\Local\{14DA7E0A-E87C-4868-B838-6124AEC8D581}
O43 - CFD: 25/05/2011 - 22:23:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\{152E6310-23CE-4E6D-A130-BD9B64BD47D3}
O43 - CFD: 27/06/2011 - 19:56:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{187139D5-1A60-4098-9F43-1D4563726EFF}
O43 - CFD: 27/05/2011 - 18:17:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{19728E4D-3CED-4143-8A1A-D0FC976A1D18}
O43 - CFD: 07/04/2011 - 12:00:22 - [0] ----D- C:\Users\JAUZE\AppData\Local\{1AEC1317-DA37-4D8E-AA10-6AA5BECB7A93}
O43 - CFD: 31/05/2011 - 02:29:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{1AED878B-2168-443F-A27F-1B28EF50EC34}
O43 - CFD: 12/04/2011 - 13:02:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{1C3C0952-B57F-49E7-BB42-35721664F60C}
O43 - CFD: 05/06/2011 - 02:02:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{23F2AA8D-0A1E-4B4D-804B-65CC50944F72}
O43 - CFD: 17/04/2011 - 00:40:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{24F91D6F-A27D-4DD5-BD5C-9C66D659F327}
O43 - CFD: 02/05/2011 - 10:45:50 - [0] ----D- C:\Users\JAUZE\AppData\Local\{253F7E8A-2D2D-4F87-9D06-B928198948D7}
O43 - CFD: 20/04/2011 - 00:10:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{2653B2AD-6A78-49C4-8E8C-F705D244515E}
O43 - CFD: 05/06/2011 - 02:01:56 - [0] ----D- C:\Users\JAUZE\AppData\Local\{26721593-4193-475F-8CBC-0A81481A4404}
O43 - CFD: 03/04/2011 - 11:47:56 - [0] ----D- C:\Users\JAUZE\AppData\Local\{273EEA93-5D85-49A2-89C3-5F63CAEEB46F}
O43 - CFD: 22/06/2011 - 23:09:42 - [0] ----D- C:\Users\JAUZE\AppData\Local\{2C28DDCC-33F4-4679-ABC0-09C56AF3ED0E}
O43 - CFD: 14/04/2011 - 13:05:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{2C83C09A-2DC7-4A8F-8673-ACF917F97BE1}
O43 - CFD: 16/06/2011 - 12:28:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{2D9E14AC-D9DA-4FAE-8F3D-632EF692EEC8}
O43 - CFD: 30/04/2011 - 22:36:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{32EB0A83-FC2C-4D59-8AF7-4B0342C0BDF3}
O43 - CFD: 20/04/2011 - 23:55:42 - [0] ----D- C:\Users\JAUZE\AppData\Local\{3616A422-9E5A-4991-B0A8-BF36B58CC9E7}
O43 - CFD: 09/06/2011 - 12:42:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{3A1B4B6F-D7AC-46ED-B892-74251B45960D}
O43 - CFD: 18/04/2011 - 01:51:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{3E229A88-2B5E-47BF-AED1-358E12A9EA06}
O43 - CFD: 29/06/2011 - 19:18:16 - [0] ----D- C:\Users\JAUZE\AppData\Local\{40A61231-C2F4-42CA-ADE2-1D284AD3FF47}
O43 - CFD: 14/04/2011 - 13:05:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{40AA2699-2ED4-4F45-A55D-31A0850F1894}
O43 - CFD: 15/04/2011 - 01:06:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\{411156C4-F1A0-47DB-B4DF-B94999556095}
O43 - CFD: 01/05/2011 - 22:44:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{41711E6B-562C-484F-B093-47926EEAA091}
O43 - CFD: 10/06/2011 - 19:59:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{434D8E15-0C8D-4F19-B4C5-0AF4C807E3DE}
O43 - CFD: 01/07/2011 - 19:19:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{43A1FDB4-F12B-4E3A-8FE8-5905A05361D1}
O43 - CFD: 27/06/2011 - 19:57:22 - [0] ----D- C:\Users\JAUZE\AppData\Local\{474D3E82-77CC-4354-A66F-E9BE534FBB4F}
O43 - CFD: 11/04/2011 - 13:01:12 - [0] ----D- C:\Users\JAUZE\AppData\Local\{49243000-D3A3-4364-BC58-D24017304046}
O43 - CFD: 29/05/2011 - 03:03:20 - [0] ----D- C:\Users\JAUZE\AppData\Local\{4AA77A05-EB92-4639-BDC8-3CC5B22515CA}
O43 - CFD: 26/06/2011 - 21:27:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\{4ADEF6BE-034B-40DD-A116-FA3FEA82F6FD}
O43 - CFD: 14/06/2011 - 09:59:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{4C3BAD3F-CBEF-48FA-B48F-FB6C073590B2}
O43 - CFD: 18/05/2011 - 13:46:06 - [0] ----D- C:\Users\JAUZE\AppData\Local\{4D632382-1E9A-4719-9341-7D947E2BDEA1}
O43 - CFD: 05/06/2011 - 22:46:16 - [0] ----D- C:\Users\JAUZE\AppData\Local\{53D709AE-CE7F-4971-B84F-E7BD0024844E}
O43 - CFD: 04/04/2011 - 13:39:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{542EF912-ACA4-4F78-B39B-DB932DB98FA2}
O43 - CFD: 02/05/2011 - 10:45:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{5491FCEF-D44C-4FEE-AA00-DA1DDEF81F0C}
O43 - CFD: 26/05/2011 - 15:46:56 - [0] ----D- C:\Users\JAUZE\AppData\Local\{5599FF2C-9900-4076-BBEC-09666D063BD5}
O43 - CFD: 25/04/2011 - 00:16:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{569879CF-3669-435F-BDC2-471871605D57}
O43 - CFD: 09/05/2011 - 19:58:36 - [0] ----D- C:\Users\JAUZE\AppData\Local\{58E8C9FB-50AA-4EC4-9CF6-8A3A9754821B}
O43 - CFD: 02/07/2011 - 11:07:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{5965FE5B-8B6E-4C29-9705-8BAAECF5D50F}
O43 - CFD: 04/05/2011 - 09:04:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{5D50E4D3-4C01-469D-B1E9-E99D1BB980B5}
O43 - CFD: 01/05/2011 - 22:44:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6215AA1C-EC05-4D51-9146-B3857DB7F0B4}
O43 - CFD: 04/05/2011 - 21:04:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{623A7E46-0144-4303-AD61-65EEDE10EAAC}
O43 - CFD: 01/05/2011 - 10:44:04 - [0] ----D- C:\Users\JAUZE\AppData\Local\{64937E50-CA11-4B3E-9E10-0E23B909DCB9}
O43 - CFD: 28/05/2011 - 15:02:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{65F918B1-E663-4D21-B5F9-5BD412FC1CC2}
O43 - CFD: 18/04/2011 - 16:11:12 - [0] ----D- C:\Users\JAUZE\AppData\Local\{68050214-E705-4C8C-B5A7-5511687460E6}
O43 - CFD: 11/04/2011 - 01:00:22 - [0] ----D- C:\Users\JAUZE\AppData\Local\{699A1096-26AF-40BA-A6F6-6B0E6AB32ECA}
O43 - CFD: 29/05/2011 - 15:04:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6D6578C7-EC7C-4514-8360-0C9AFC304621}
O43 - CFD: 15/04/2011 - 01:06:26 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6D8D4F54-9BCE-4C97-8E5D-484155B03ACF}
O43 - CFD: 12/04/2011 - 01:01:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6E8C33BA-4F1E-4995-A2FF-DFA15827D293}
O43 - CFD: 22/06/2011 - 23:09:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6E9D7BE9-854A-4FEA-8510-42821A4D5581}
O43 - CFD: 03/05/2011 - 12:33:06 - [0] ----D- C:\Users\JAUZE\AppData\Local\{718D7D2A-B2AB-49E4-A795-E6F67B0B2030}
O43 - CFD: 15/06/2011 - 11:42:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{75BDAC66-A33D-4806-96C3-9623FFF3B07B}
O43 - CFD: 13/06/2011 - 04:57:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{7CA8D554-5DE8-47E2-B297-C3F05BABD47D}
O43 - CFD: 29/04/2011 - 10:15:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{81AF8BCE-1A07-4A3D-9DDA-9696C5588D86}
O43 - CFD: 19/05/2011 - 16:14:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8601F6A0-A6E4-4449-AAF9-324EC92BCF0F}
O43 - CFD: 31/03/2011 - 17:39:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{870AB46B-F9A7-4075-875C-6E597E8ADAE9}
O43 - CFD: 30/04/2011 - 22:36:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\{89F2DED0-5AD7-435E-BA91-5A5BB37E8B0E}
O43 - CFD: 27/04/2011 - 12:41:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8A3D8B18-628B-475E-93B5-343BA3876A5F}
O43 - CFD: 25/06/2011 - 12:57:04 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8AE9A0FF-09EB-43D6-8BE4-31206E0DA652}
O43 - CFD: 08/04/2011 - 13:13:06 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8E1FF085-230B-4A00-90CF-7FDD1B60D844}
O43 - CFD: 13/05/2011 - 10:23:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8E9D5ABA-78B5-4571-AF0A-3C655DF5663E}
O43 - CFD: 07/06/2011 - 21:27:20 - [0] ----D- C:\Users\JAUZE\AppData\Local\{909693E1-A0B0-464A-BBB3-BDCD816AE4EB}
O43 - CFD: 03/05/2011 - 00:32:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{967563A0-71EF-4CBE-86A8-B03CB45DC521}
O43 - CFD: 21/06/2011 - 20:27:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{9ACB12CF-5100-4012-89A9-C68E425D02B3}
O43 - CFD: 03/05/2011 - 12:32:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{9C661AB4-D9C4-4007-AA49-CF4D58797930}
O43 - CFD: 02/04/2011 - 11:41:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A0047741-702A-44B3-9FBC-0EAEF06F9049}
O43 - CFD: 05/04/2011 - 19:31:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A1C4246B-9AEB-48FF-B551-FA41F0B846C7}
O43 - CFD: 08/05/2011 - 20:33:30 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A30ABB61-359B-44A0-9F28-EFC8797E6EF2}
O43 - CFD: 06/05/2011 - 11:00:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A4A65FA1-3B3C-463B-B79C-288ED7845DC0}
O43 - CFD: 21/05/2011 - 13:13:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A628CC31-3BE2-4ED3-810B-621B9E692D3D}
O43 - CFD: 02/07/2011 - 11:08:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B0EE88D9-B6A5-47B6-A8B8-4A370220BC91}
O43 - CFD: 09/04/2011 - 12:43:04 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B1B9DF82-B4A5-4D1A-A162-F948A5375A8F}
O43 - CFD: 28/06/2011 - 22:19:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B365CF6C-CFB3-416E-A5D2-26D5B9F22636}
O43 - CFD: 28/04/2011 - 18:43:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B366E146-F7D7-47D4-B60B-41E93992944D}
O43 - CFD: 11/04/2011 - 13:01:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B390A762-413D-4BCF-B341-EA6AD34C01F5}
O43 - CFD: 01/04/2011 - 12:40:20 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B3967A22-291F-461A-AE53-AAB909E214D3}
O43 - CFD: 15/06/2011 - 23:43:24 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B4581FCF-12A2-4F7D-9F1E-81C8DFE7DF12}
O43 - CFD: 04/06/2011 - 14:01:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B54F0C75-F403-458F-A3BA-1C602C4E078F}
O43 - CFD: 17/04/2011 - 00:41:08 - [0] ----D- C:\Users\JAUZE\AppData\Local\{BE07AB82-DB6A-483E-BA2F-B48D7BED04D9}
O43 - CFD: 17/06/2011 - 20:48:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C129A61D-2BBB-4C16-A4F4-B4135AD97DF9}
O43 - CFD: 12/04/2011 - 13:02:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C1C52B6D-187F-4E2D-9CFC-DC4FF20B37A2}
O43 - CFD: 18/04/2011 - 01:51:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C3689202-B543-456C-8AD2-BB66AD018883}
O43 - CFD: 30/04/2011 - 10:35:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C3C1DB38-782D-4A3D-9476-42E52F860515}
O43 - CFD: 14/06/2011 - 22:00:24 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C6409D8C-88F9-480B-AB1E-CFF10AE5671D}
O43 - CFD: 31/05/2011 - 15:07:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C92B9EE3-A958-4E30-90BA-6BCA58EBE10F}
O43 - CFD: 14/04/2011 - 01:05:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C9A86734-99E7-452A-A55C-5706567DAD64}
O43 - CFD: 25/05/2011 - 22:24:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C9DC5CA9-1831-483F-BFD8-66E8BE86AB26}
O43 - CFD: 13/04/2011 - 13:04:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{CAE64C6C-A90D-4FC2-8062-E9442795CADB}
O43 - CFD: 23/04/2011 - 12:18:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{CD6D819F-C077-47B7-B45C-7891F37376C8}
O43 - CFD: 25/05/2011 - 10:23:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{CD887537-1D6D-4F03-AA11-21F446D82F1D}
O43 - CFD: 07/05/2011 - 19:01:42 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D0CDC78D-EBF3-40D1-9337-6FD6A64D020B}
O43 - CFD: 13/04/2011 - 01:03:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D3ECD913-7798-496A-A7E1-2107E43637B8}
O43 - CFD: 05/05/2011 - 12:04:42 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D481BAC6-696F-4820-ADE1-7FFB48DF4366}
O43 - CFD: 26/06/2011 - 01:14:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D497674B-5B69-4836-BCCB-B67DBD284E6E}
O43 - CFD: 13/04/2011 - 01:03:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D637D0BA-E725-44DD-BF2A-C6C87275BBBE}
O43 - CFD: 23/05/2011 - 16:53:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D81CF8D4-B0DC-4AF7-8081-D3A6D4B7B59D}
O43 - CFD: 19/04/2011 - 12:10:20 - [0] ----D- C:\Users\JAUZE\AppData\Local\{DA8A855C-C81D-4548-B71A-F7D4DA878AAA}
O43 - CFD: 19/06/2011 - 18:03:36 - [0] ----D- C:\Users\JAUZE\AppData\Local\{DB06E3AB-FA24-4CE7-A009-9C7FBDAABD72}
O43 - CFD: 26/04/2011 - 15:45:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{DD2448ED-90E4-4F17-9168-174F04B3D4C3}
O43 - CFD: 10/04/2011 - 00:43:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\{DE09F123-2B70-450B-90C4-B724C452C3A2}
O43 - CFD: 11/06/2011 - 17:53:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E02F60EA-BB1E-4F48-915C-144ECD21361E}
O43 - CFD: 15/06/2011 - 23:47:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E0340786-299B-4D3B-BF4A-3E2FFE5CEE0E}
O43 - CFD: 24/06/2011 - 11:40:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E105AE50-A3A9-4445-8FBD-029DBBC0AD6E}
O43 - CFD: 23/06/2011 - 21:31:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E2F6D292-BAEA-4A80-A603-575FC201E854}
O43 - CFD: 30/06/2011 - 14:26:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E2F9453D-5818-409D-96FC-E2F94F8D5585}
O43 - CFD: 17/06/2011 - 04:32:08 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E7E6E131-1EDF-4986-A73B-C1D036D01F24}
O43 - CFD: 20/06/2011 - 22:46:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{EC255602-DEF2-4136-A32E-0B495CE558BD}
O43 - CFD: 16/05/2011 - 16:01:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{EE83D7D2-4B8A-4D74-88ED-F8FD60AA9143}
O43 - CFD: 30/05/2011 - 11:58:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{EF930714-3155-4BAC-8173-05F82BC0B1D3}
O43 - CFD: 24/05/2011 - 16:46:04 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F0EBC865-149D-41C3-8F5D-4C9A8A22D89F}
O43 - CFD: 25/04/2011 - 15:59:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F1070A79-1556-44A2-9ED4-DABCDA9BE89B}
O43 - CFD: 03/06/2011 - 12:14:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F3888F89-7DEE-40AB-B9FB-328CB6E924C9}
O43 - CFD: 12/06/2011 - 15:18:24 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F45962C5-13AF-4C17-A6B8-E659837E51FC}
O43 - CFD: 22/04/2011 - 18:41:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F55A59F9-17A2-4499-8CA7-20F7F37F5BFD}
O43 - CFD: 20/05/2011 - 21:57:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F6A17549-233D-441A-B023-11A03EEBA6EC}
O43 - CFD: 26/05/2011 - 15:46:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F8721250-7C1A-4863-9822-9FC9AF8ADB42}
O43 - CFD: 18/06/2011 - 21:48:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F9F832B2-6EF6-480B-9C16-9413739FEE2E}
O43 - CFD: 10/04/2011 - 12:59:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{FE25494D-D4C2-4C33-8DCF-3AEA5C2CF6AA}
O43 - CFD: 07/05/2011 - 18:58:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{FF7CB492-96A3-4C7E-81DF-0EBBB74FB5E4}
O43 - CFD: 14/06/2011 - 22:00:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{FF94E10D-9BA4-4978-A0E6-7BC1B2F9AD99}
O43 - CFD: 10/04/2011 - 00:43:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{FFD5B513-FC4F-4F43-ADC3-6F14E26088D3}
O43 - CFD: 04/05/2011 - 22:05:52 - [15329906] ----D- C:\Users\JAUZE\AppData\Local\Adobe
O43 - CFD: 09/01/2011 - 00:14:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\Apple
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Application Data
O43 - CFD: 07/01/2011 - 15:33:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\Apps
O43 - CFD: 25/12/2010 - 23:33:12 - [73587] ----D- C:\Users\JAUZE\AppData\Local\ATI
O43 - CFD: 25/12/2010 - 23:32:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\Broadcom
O43 - CFD: 17/03/2011 - 22:09:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\Diagnostics
O43 - CFD: 25/12/2010 - 23:24:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\DigitalPersona
O43 - CFD: 23/06/2011 - 22:24:22 - [514] ----D- C:\Users\JAUZE\AppData\Local\Google
O43 - CFD: 07/01/2011 - 15:40:20 - [754226] ----D- C:\Users\JAUZE\AppData\Local\Hewlett-Packard
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Historique
O43 - CFD: 23/06/2011 - 22:23:48 - [448045697] ----D- C:\Users\JAUZE\AppData\Local\Microsoft
O43 - CFD: 10/04/2011 - 16:12:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\Moonchild Productions
O43 - CFD: 25/12/2010 - 23:36:44 - [205099340] ----D- C:\Users\JAUZE\AppData\Local\Mozilla
O43 - CFD: 02/07/2011 - 21:09:58 - [4722386] ----D- C:\Users\JAUZE\AppData\Local\Temp
O43 - CFD: 25/12/2010 - 23:24:32 - [0] -SH-D- C:\Users\JAUZE\AppData\Local\Temporary Internet Files
O43 - CFD: 27/06/2011 - 20:06:24 - [622] ----D- C:\Users\JAUZE\AppData\Local\VirtualStore
O43 - CFD: 02/07/2011 - 11:08:12 - [49152] ----D- C:\Users\JAUZE\AppData\Local\Windows Live
O43 - CFD: 07/01/2011 - 14:49:30 - [372494] ----D- C:\Users\JAUZE\AppData\Local\Windows Live Writer
O43 - CFD: 01/06/2011 - 03:08:36 - [0] ----D- C:\Users\JAUZE\AppData\Local\{001416B1-742C-429D-B137-63D8C4443F2A}
O43 - CFD: 12/05/2011 - 11:50:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\{00D1AF6A-3C8B-4527-BA66-4B33894E732F}
O43 - CFD: 13/06/2011 - 21:33:30 - [0] ----D- C:\Users\JAUZE\AppData\Local\{01C11DC6-D813-40C8-966A-5A91ABF3BF25}
O43 - CFD: 08/05/2011 - 20:37:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{02A30183-123A-4E09-A397-9F3E31EC77DB}
O43 - CFD: 20/04/2011 - 00:11:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{04B3BD2F-1D84-4280-AA83-0701B752797C}
O43 - CFD: 12/04/2011 - 01:02:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{08A54D80-5F25-4EBE-A2CE-71C0E81ABC67}
O43 - CFD: 04/05/2011 - 21:04:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{0D299711-8648-4405-BD8C-DDCD95E95A13}
O43 - CFD: 06/04/2011 - 11:17:56 - [0] ----D- C:\Users\JAUZE\AppData\Local\{0E029444-F909-4E63-BC73-55BA4F5640E7}
O43 - CFD: 21/06/2011 - 20:27:16 - [0] ----D- C:\Users\JAUZE\AppData\Local\{0F7CE966-3E35-4C53-80E5-F8915BFC301F}
O43 - CFD: 16/04/2011 - 12:40:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{10CD5701-E003-4AAF-8D3A-E5268651E67B}
O43 - CFD: 17/04/2011 - 13:51:06 - [0] ----D- C:\Users\JAUZE\AppData\Local\{12C03C47-5E3E-4370-8C96-6D51DEE4B1B0}
O43 - CFD: 28/05/2011 - 15:02:30 - [0] ----D- C:\Users\JAUZE\AppData\Local\{14DA7E0A-E87C-4868-B838-6124AEC8D581}
O43 - CFD: 25/05/2011 - 22:23:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\{152E6310-23CE-4E6D-A130-BD9B64BD47D3}
O43 - CFD: 27/06/2011 - 19:56:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{187139D5-1A60-4098-9F43-1D4563726EFF}
O43 - CFD: 27/05/2011 - 18:17:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{19728E4D-3CED-4143-8A1A-D0FC976A1D18}
O43 - CFD: 07/04/2011 - 12:00:22 - [0] ----D- C:\Users\JAUZE\AppData\Local\{1AEC1317-DA37-4D8E-AA10-6AA5BECB7A93}
O43 - CFD: 31/05/2011 - 02:29:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{1AED878B-2168-443F-A27F-1B28EF50EC34}
O43 - CFD: 12/04/2011 - 13:02:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{1C3C0952-B57F-49E7-BB42-35721664F60C}
O43 - CFD: 05/06/2011 - 02:02:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{23F2AA8D-0A1E-4B4D-804B-65CC50944F72}
O43 - CFD: 17/04/2011 - 00:40:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{24F91D6F-A27D-4DD5-BD5C-9C66D659F327}
O43 - CFD: 02/05/2011 - 10:45:50 - [0] ----D- C:\Users\JAUZE\AppData\Local\{253F7E8A-2D2D-4F87-9D06-B928198948D7}
O43 - CFD: 20/04/2011 - 00:10:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{2653B2AD-6A78-49C4-8E8C-F705D244515E}
O43 - CFD: 05/06/2011 - 02:01:56 - [0] ----D- C:\Users\JAUZE\AppData\Local\{26721593-4193-475F-8CBC-0A81481A4404}
O43 - CFD: 03/04/2011 - 11:47:56 - [0] ----D- C:\Users\JAUZE\AppData\Local\{273EEA93-5D85-49A2-89C3-5F63CAEEB46F}
O43 - CFD: 22/06/2011 - 23:09:42 - [0] ----D- C:\Users\JAUZE\AppData\Local\{2C28DDCC-33F4-4679-ABC0-09C56AF3ED0E}
O43 - CFD: 14/04/2011 - 13:05:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{2C83C09A-2DC7-4A8F-8673-ACF917F97BE1}
O43 - CFD: 16/06/2011 - 12:28:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{2D9E14AC-D9DA-4FAE-8F3D-632EF692EEC8}
O43 - CFD: 30/04/2011 - 22:36:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{32EB0A83-FC2C-4D59-8AF7-4B0342C0BDF3}
O43 - CFD: 20/04/2011 - 23:55:42 - [0] ----D- C:\Users\JAUZE\AppData\Local\{3616A422-9E5A-4991-B0A8-BF36B58CC9E7}
O43 - CFD: 09/06/2011 - 12:42:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{3A1B4B6F-D7AC-46ED-B892-74251B45960D}
O43 - CFD: 18/04/2011 - 01:51:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{3E229A88-2B5E-47BF-AED1-358E12A9EA06}
O43 - CFD: 29/06/2011 - 19:18:16 - [0] ----D- C:\Users\JAUZE\AppData\Local\{40A61231-C2F4-42CA-ADE2-1D284AD3FF47}
O43 - CFD: 14/04/2011 - 13:05:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{40AA2699-2ED4-4F45-A55D-31A0850F1894}
O43 - CFD: 15/04/2011 - 01:06:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\{411156C4-F1A0-47DB-B4DF-B94999556095}
O43 - CFD: 01/05/2011 - 22:44:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{41711E6B-562C-484F-B093-47926EEAA091}
O43 - CFD: 10/06/2011 - 19:59:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{434D8E15-0C8D-4F19-B4C5-0AF4C807E3DE}
O43 - CFD: 01/07/2011 - 19:19:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{43A1FDB4-F12B-4E3A-8FE8-5905A05361D1}
O43 - CFD: 27/06/2011 - 19:57:22 - [0] ----D- C:\Users\JAUZE\AppData\Local\{474D3E82-77CC-4354-A66F-E9BE534FBB4F}
O43 - CFD: 11/04/2011 - 13:01:12 - [0] ----D- C:\Users\JAUZE\AppData\Local\{49243000-D3A3-4364-BC58-D24017304046}
O43 - CFD: 29/05/2011 - 03:03:20 - [0] ----D- C:\Users\JAUZE\AppData\Local\{4AA77A05-EB92-4639-BDC8-3CC5B22515CA}
O43 - CFD: 26/06/2011 - 21:27:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\{4ADEF6BE-034B-40DD-A116-FA3FEA82F6FD}
O43 - CFD: 14/06/2011 - 09:59:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{4C3BAD3F-CBEF-48FA-B48F-FB6C073590B2}
O43 - CFD: 18/05/2011 - 13:46:06 - [0] ----D- C:\Users\JAUZE\AppData\Local\{4D632382-1E9A-4719-9341-7D947E2BDEA1}
O43 - CFD: 05/06/2011 - 22:46:16 - [0] ----D- C:\Users\JAUZE\AppData\Local\{53D709AE-CE7F-4971-B84F-E7BD0024844E}
O43 - CFD: 04/04/2011 - 13:39:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{542EF912-ACA4-4F78-B39B-DB932DB98FA2}
O43 - CFD: 02/05/2011 - 10:45:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{5491FCEF-D44C-4FEE-AA00-DA1DDEF81F0C}
O43 - CFD: 26/05/2011 - 15:46:56 - [0] ----D- C:\Users\JAUZE\AppData\Local\{5599FF2C-9900-4076-BBEC-09666D063BD5}
O43 - CFD: 25/04/2011 - 00:16:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{569879CF-3669-435F-BDC2-471871605D57}
O43 - CFD: 09/05/2011 - 19:58:36 - [0] ----D- C:\Users\JAUZE\AppData\Local\{58E8C9FB-50AA-4EC4-9CF6-8A3A9754821B}
O43 - CFD: 02/07/2011 - 11:07:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{5965FE5B-8B6E-4C29-9705-8BAAECF5D50F}
O43 - CFD: 04/05/2011 - 09:04:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{5D50E4D3-4C01-469D-B1E9-E99D1BB980B5}
O43 - CFD: 01/05/2011 - 22:44:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6215AA1C-EC05-4D51-9146-B3857DB7F0B4}
O43 - CFD: 04/05/2011 - 21:04:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{623A7E46-0144-4303-AD61-65EEDE10EAAC}
O43 - CFD: 01/05/2011 - 10:44:04 - [0] ----D- C:\Users\JAUZE\AppData\Local\{64937E50-CA11-4B3E-9E10-0E23B909DCB9}
O43 - CFD: 28/05/2011 - 15:02:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{65F918B1-E663-4D21-B5F9-5BD412FC1CC2}
O43 - CFD: 18/04/2011 - 16:11:12 - [0] ----D- C:\Users\JAUZE\AppData\Local\{68050214-E705-4C8C-B5A7-5511687460E6}
O43 - CFD: 11/04/2011 - 01:00:22 - [0] ----D- C:\Users\JAUZE\AppData\Local\{699A1096-26AF-40BA-A6F6-6B0E6AB32ECA}
O43 - CFD: 29/05/2011 - 15:04:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6D6578C7-EC7C-4514-8360-0C9AFC304621}
O43 - CFD: 15/04/2011 - 01:06:26 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6D8D4F54-9BCE-4C97-8E5D-484155B03ACF}
O43 - CFD: 12/04/2011 - 01:01:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6E8C33BA-4F1E-4995-A2FF-DFA15827D293}
O43 - CFD: 22/06/2011 - 23:09:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{6E9D7BE9-854A-4FEA-8510-42821A4D5581}
O43 - CFD: 03/05/2011 - 12:33:06 - [0] ----D- C:\Users\JAUZE\AppData\Local\{718D7D2A-B2AB-49E4-A795-E6F67B0B2030}
O43 - CFD: 15/06/2011 - 11:42:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{75BDAC66-A33D-4806-96C3-9623FFF3B07B}
O43 - CFD: 13/06/2011 - 04:57:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{7CA8D554-5DE8-47E2-B297-C3F05BABD47D}
O43 - CFD: 29/04/2011 - 10:15:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{81AF8BCE-1A07-4A3D-9DDA-9696C5588D86}
O43 - CFD: 19/05/2011 - 16:14:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8601F6A0-A6E4-4449-AAF9-324EC92BCF0F}
O43 - CFD: 31/03/2011 - 17:39:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{870AB46B-F9A7-4075-875C-6E597E8ADAE9}
O43 - CFD: 30/04/2011 - 22:36:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\{89F2DED0-5AD7-435E-BA91-5A5BB37E8B0E}
O43 - CFD: 27/04/2011 - 12:41:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8A3D8B18-628B-475E-93B5-343BA3876A5F}
O43 - CFD: 25/06/2011 - 12:57:04 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8AE9A0FF-09EB-43D6-8BE4-31206E0DA652}
O43 - CFD: 08/04/2011 - 13:13:06 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8E1FF085-230B-4A00-90CF-7FDD1B60D844}
O43 - CFD: 13/05/2011 - 10:23:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{8E9D5ABA-78B5-4571-AF0A-3C655DF5663E}
O43 - CFD: 07/06/2011 - 21:27:20 - [0] ----D- C:\Users\JAUZE\AppData\Local\{909693E1-A0B0-464A-BBB3-BDCD816AE4EB}
O43 - CFD: 03/05/2011 - 00:32:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{967563A0-71EF-4CBE-86A8-B03CB45DC521}
O43 - CFD: 21/06/2011 - 20:27:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{9ACB12CF-5100-4012-89A9-C68E425D02B3}
O43 - CFD: 03/05/2011 - 12:32:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{9C661AB4-D9C4-4007-AA49-CF4D58797930}
O43 - CFD: 02/04/2011 - 11:41:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A0047741-702A-44B3-9FBC-0EAEF06F9049}
O43 - CFD: 05/04/2011 - 19:31:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A1C4246B-9AEB-48FF-B551-FA41F0B846C7}
O43 - CFD: 08/05/2011 - 20:33:30 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A30ABB61-359B-44A0-9F28-EFC8797E6EF2}
O43 - CFD: 06/05/2011 - 11:00:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A4A65FA1-3B3C-463B-B79C-288ED7845DC0}
O43 - CFD: 21/05/2011 - 13:13:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{A628CC31-3BE2-4ED3-810B-621B9E692D3D}
O43 - CFD: 02/07/2011 - 11:08:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B0EE88D9-B6A5-47B6-A8B8-4A370220BC91}
O43 - CFD: 09/04/2011 - 12:43:04 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B1B9DF82-B4A5-4D1A-A162-F948A5375A8F}
O43 - CFD: 28/06/2011 - 22:19:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B365CF6C-CFB3-416E-A5D2-26D5B9F22636}
O43 - CFD: 28/04/2011 - 18:43:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B366E146-F7D7-47D4-B60B-41E93992944D}
O43 - CFD: 11/04/2011 - 13:01:00 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B390A762-413D-4BCF-B341-EA6AD34C01F5}
O43 - CFD: 01/04/2011 - 12:40:20 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B3967A22-291F-461A-AE53-AAB909E214D3}
O43 - CFD: 15/06/2011 - 23:43:24 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B4581FCF-12A2-4F7D-9F1E-81C8DFE7DF12}
O43 - CFD: 04/06/2011 - 14:01:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{B54F0C75-F403-458F-A3BA-1C602C4E078F}
O43 - CFD: 17/04/2011 - 00:41:08 - [0] ----D- C:\Users\JAUZE\AppData\Local\{BE07AB82-DB6A-483E-BA2F-B48D7BED04D9}
O43 - CFD: 17/06/2011 - 20:48:38 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C129A61D-2BBB-4C16-A4F4-B4135AD97DF9}
O43 - CFD: 12/04/2011 - 13:02:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C1C52B6D-187F-4E2D-9CFC-DC4FF20B37A2}
O43 - CFD: 18/04/2011 - 01:51:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C3689202-B543-456C-8AD2-BB66AD018883}
O43 - CFD: 30/04/2011 - 10:35:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C3C1DB38-782D-4A3D-9476-42E52F860515}
O43 - CFD: 14/06/2011 - 22:00:24 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C6409D8C-88F9-480B-AB1E-CFF10AE5671D}
O43 - CFD: 31/05/2011 - 15:07:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C92B9EE3-A958-4E30-90BA-6BCA58EBE10F}
O43 - CFD: 14/04/2011 - 01:05:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C9A86734-99E7-452A-A55C-5706567DAD64}
O43 - CFD: 25/05/2011 - 22:24:02 - [0] ----D- C:\Users\JAUZE\AppData\Local\{C9DC5CA9-1831-483F-BFD8-66E8BE86AB26}
O43 - CFD: 13/04/2011 - 13:04:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{CAE64C6C-A90D-4FC2-8062-E9442795CADB}
O43 - CFD: 23/04/2011 - 12:18:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{CD6D819F-C077-47B7-B45C-7891F37376C8}
O43 - CFD: 25/05/2011 - 10:23:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{CD887537-1D6D-4F03-AA11-21F446D82F1D}
O43 - CFD: 07/05/2011 - 19:01:42 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D0CDC78D-EBF3-40D1-9337-6FD6A64D020B}
O43 - CFD: 13/04/2011 - 01:03:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D3ECD913-7798-496A-A7E1-2107E43637B8}
O43 - CFD: 05/05/2011 - 12:04:42 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D481BAC6-696F-4820-ADE1-7FFB48DF4366}
O43 - CFD: 26/06/2011 - 01:14:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D497674B-5B69-4836-BCCB-B67DBD284E6E}
O43 - CFD: 13/04/2011 - 01:03:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D637D0BA-E725-44DD-BF2A-C6C87275BBBE}
O43 - CFD: 23/05/2011 - 16:53:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{D81CF8D4-B0DC-4AF7-8081-D3A6D4B7B59D}
O43 - CFD: 19/04/2011 - 12:10:20 - [0] ----D- C:\Users\JAUZE\AppData\Local\{DA8A855C-C81D-4548-B71A-F7D4DA878AAA}
O43 - CFD: 19/06/2011 - 18:03:36 - [0] ----D- C:\Users\JAUZE\AppData\Local\{DB06E3AB-FA24-4CE7-A009-9C7FBDAABD72}
O43 - CFD: 26/04/2011 - 15:45:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{DD2448ED-90E4-4F17-9168-174F04B3D4C3}
O43 - CFD: 10/04/2011 - 00:43:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\{DE09F123-2B70-450B-90C4-B724C452C3A2}
O43 - CFD: 11/06/2011 - 17:53:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E02F60EA-BB1E-4F48-915C-144ECD21361E}
O43 - CFD: 15/06/2011 - 23:47:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E0340786-299B-4D3B-BF4A-3E2FFE5CEE0E}
O43 - CFD: 24/06/2011 - 11:40:58 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E105AE50-A3A9-4445-8FBD-029DBBC0AD6E}
O43 - CFD: 23/06/2011 - 21:31:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E2F6D292-BAEA-4A80-A603-575FC201E854}
O43 - CFD: 30/06/2011 - 14:26:18 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E2F9453D-5818-409D-96FC-E2F94F8D5585}
O43 - CFD: 17/06/2011 - 04:32:08 - [0] ----D- C:\Users\JAUZE\AppData\Local\{E7E6E131-1EDF-4986-A73B-C1D036D01F24}
O43 - CFD: 20/06/2011 - 22:46:34 - [0] ----D- C:\Users\JAUZE\AppData\Local\{EC255602-DEF2-4136-A32E-0B495CE558BD}
O43 - CFD: 16/05/2011 - 16:01:40 - [0] ----D- C:\Users\JAUZE\AppData\Local\{EE83D7D2-4B8A-4D74-88ED-F8FD60AA9143}
O43 - CFD: 30/05/2011 - 11:58:44 - [0] ----D- C:\Users\JAUZE\AppData\Local\{EF930714-3155-4BAC-8173-05F82BC0B1D3}
O43 - CFD: 24/05/2011 - 16:46:04 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F0EBC865-149D-41C3-8F5D-4C9A8A22D89F}
O43 - CFD: 25/04/2011 - 15:59:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F1070A79-1556-44A2-9ED4-DABCDA9BE89B}
O43 - CFD: 03/06/2011 - 12:14:54 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F3888F89-7DEE-40AB-B9FB-328CB6E924C9}
O43 - CFD: 12/06/2011 - 15:18:24 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F45962C5-13AF-4C17-A6B8-E659837E51FC}
O43 - CFD: 22/04/2011 - 18:41:28 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F55A59F9-17A2-4499-8CA7-20F7F37F5BFD}
O43 - CFD: 20/05/2011 - 21:57:14 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F6A17549-233D-441A-B023-11A03EEBA6EC}
O43 - CFD: 26/05/2011 - 15:46:32 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F8721250-7C1A-4863-9822-9FC9AF8ADB42}
O43 - CFD: 18/06/2011 - 21:48:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{F9F832B2-6EF6-480B-9C16-9413739FEE2E}
O43 - CFD: 10/04/2011 - 12:59:46 - [0] ----D- C:\Users\JAUZE\AppData\Local\{FE25494D-D4C2-4C33-8DCF-3AEA5C2CF6AA}
O43 - CFD: 07/05/2011 - 18:58:48 - [0] ----D- C:\Users\JAUZE\AppData\Local\{FF7CB492-96A3-4C7E-81DF-0EBBB74FB5E4}
O43 - CFD: 14/06/2011 - 22:00:10 - [0] ----D- C:\Users\JAUZE\AppData\Local\{FF94E10D-9BA4-4978-A0E6-7BC1B2F9AD99}
O43 - CFD: 10/04/2011 - 00:43:52 - [0] ----D- C:\Users\JAUZE\AppData\Local\{FFD5B513-FC4F-4F43-ADC3-6F14E26088D3}
O43 - CFD: 19/06/2011 - 18:08:10 - [88198341] ----D- C:\Program Files (x86)\Ad-Remover
O43 - CFD: 17/06/2011 - 12:19:06 - [166029265] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 09/01/2011 - 00:14:00 - [2221118] ----D- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 08/06/2010 - 01:48:52 - [1573190] ----D- C:\Program Files (x86)\Atheros
O43 - CFD: 08/06/2010 - 01:44:44 - [89645083] ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 07/01/2011 - 15:17:00 - [18705242] ----D- C:\Program Files (x86)\CA Yahoo! Anti-Spy
O43 - CFD: 17/06/2011 - 12:19:06 - [564055187] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 08/06/2010 - 02:07:22 - [1470563881] ----D- C:\Program Files (x86)\CyberLink
O43 - CFD: 23/01/2011 - 23:05:06 - [12086938] ----D- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 19/01/2011 - 00:04:30 - [0] ----D- C:\Program Files (x86)\DAEMON Tools Pro
O43 - CFD: 23/01/2011 - 23:05:06 - [4049149] ----D- C:\Program Files (x86)\DAEMON Tools Toolbar
O43 - CFD: 08/06/2010 - 02:17:30 - [49012723] ----D- C:\Program Files (x86)\DigitalPersona
O43 - CFD: 08/06/2010 - 02:08:56 - [516970304] ----D- C:\Program Files (x86)\Downloaded Installations
O43 - CFD: 17/06/2011 - 22:09:32 - [104341630] ----D- C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 21/06/2011 - 20:42:06 - [118908281] ----D- C:\Program Files (x86)\ESET
O43 - CFD: 23/01/2011 - 23:09:52 - [796918618] ----D- C:\Program Files (x86)\Farming Simulator 2011
O43 - CFD: 23/06/2011 - 23:14:10 - [0] ----D- C:\Program Files (x86)\Google
O43 - CFD: 05/05/2011 - 12:10:12 - [1769888496] ----D- C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 08/06/2010 - 01:49:14 - [4740251] ----D- C:\Program Files (x86)\Hp
O43 - CFD: 08/06/2010 - 02:16:52 - [292345513] ----D- C:\Program Files (x86)\HP Games
O43 - CFD: 11/01/2011 - 21:20:58 - [278459058] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 08/06/2010 - 01:45:38 - [21378591] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 06/01/2011 - 23:36:44 - [7407806] ----D- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 17/06/2011 - 04:48:42 - [6271811] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 16/06/2011 - 19:50:44 - [180047921] ----D- C:\Program Files (x86)\Java
O43 - CFD: 24/06/2011 - 21:47:34 - [60320982] ----D- C:\Program Files (x86)\JDownloader
O43 - CFD: 10/01/2011 - 13:56:34 - [16295712] ----D- C:\Program Files (x86)\JRE
O43 - CFD: 20/06/2011 - 22:52:08 - [7580195] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 23/06/2011 - 22:23:48 - [0] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 18/05/2010 - 11:45:00 - [6423243] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 06/01/2011 - 22:46:46 - [1003136] ----D- C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 17/06/2011 - 02:42:30 - [38411899] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 18/05/2010 - 10:39:00 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 08/01/2011 - 13:31:56 - [15715] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 29/06/2011 - 23:30:14 - [36409503] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 08/06/2010 - 02:05:08 - [1161160] ----D- C:\Program Files (x86)\MSN Toolbar Installer
O43 - CFD: 07/01/2011 - 01:01:12 - [0] ----D- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 25/12/2010 - 23:26:28 - [20836629] R---D- C:\Program Files (x86)\Online Services
O43 - CFD: 10/01/2011 - 13:56:32 - [388118317] ----D- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 09/01/2011 - 00:15:48 - [76322555] ----D- C:\Program Files (x86)\QuickTime
O43 - CFD: 08/06/2010 - 01:47:50 - [10579032] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 30/06/2011 - 22:50:34 - [801725] ----D- C:\Program Files (x86)\trend micro
O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 02/04/2011 - 16:46:14 - [83580374] ----D- C:\Program Files (x86)\VideoLAN
O43 - CFD: 02/04/2011 - 18:49:02 - [5932614] ----D- C:\Program Files (x86)\VirtualDub
O43 - CFD: 06/02/2011 - 19:13:56 - [36245956] ----D- C:\Program Files (x86)\VSO
O43 - CFD: 18/05/2010 - 20:07:12 - [524800] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/03/2011 - 22:19:24 - [146221717] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 03/05/2011 - 23:26:08 - [6181376] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 03/05/2011 - 23:26:08 - [5336849] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 03/05/2011 - 23:26:08 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 03/05/2011 - 23:26:08 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 03/05/2011 - 23:26:08 - [5994678] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 02/07/2011 - 21:09:56 - [4795369] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 17/06/2011 - 12:19:18 - [3606170] ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 18/05/2010 - 12:17:06 - [31787256] ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 09/01/2011 - 00:14:12 - [54774793] ----D- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 18/05/2010 - 10:35:24 - [2075653] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 16/06/2011 - 19:51:06 - [1258951] ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 08/06/2010 - 01:54:10 - [36801635] ----D- C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 07/01/2011 - 00:58:46 - [11063434] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 08/06/2010 - 01:45:22 - [161212] ----D- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 07/01/2011 - 15:14:24 - [812296] ----D- C:\Program Files (x86)\Common Files\Scanner
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 18/05/2010 - 20:07:12 - [10245619] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 18/05/2010 - 10:36:32 - [370361683] ----D- C:\Program Files (x86)\Common Files\Windows Live



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.14EE1800FEFFFFFF57494E444F577E31] - 02/07/2011 - 16:10:27 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1063941]
O44 - LFC:[MD5.0316B454F10D1587F8D46A7DDE1A85C6] - 02/07/2011 - 10:13:57 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [23248]
O44 - LFC:[MD5.0316B454F10D1587F8D46A7DDE1A85C6] - 02/07/2011 - 10:13:57 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [23248]
O44 - LFC:[MD5.E570239983AA75E89B105CE43F92F21F] - 02/07/2011 - 10:06:40 ---A- . (...) -- C:\Windows\setupact.log [448]
O44 - LFC:[MD5.2810A3706B9B77EA28223DF6362BA54D] - 02/07/2011 - 10:06:39 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.C8E2648118200564EDF3AF6BFB0F09B8] - 30/06/2011 - 13:25:01 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [305056]
O44 - LFC:[MD5.50EF3CD64657E8760C843A247411C05C] - 29/06/2011 - 22:24:38 ---A- . (...) -- C:\ComboFix.txt [26202]
O44 - LFC:[MD5.753BC16326FEE4A421ACB636CCD602F4] - 29/06/2011 - 22:10:15 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [60416]
O44 - LFC:[MD5.A46842C9B0C567A5A9584E83A163560C] - 29/06/2011 - 22:10:15 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [518144]
O44 - LFC:[MD5.0297C72529807322B152F517FDB0A9FC] - 29/06/2011 - 22:10:15 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [406528]
O44 - LFC:[MD5.A302A8998597F45A80204973EF85D71C] - 28/06/2011 - 21:26:43 ---A- . (...) -- C:\Ad-Report-SCAN[4].txt [3061]
O44 - LFC:[MD5.ECEF58D294931C36FF203D6C9B5B0EA9] - 28/06/2011 - 03:34:24 ---A- . (...) -- C:\Windows\PFRO.log [1836]
O44 - LFC:[MD5.4F7EFB077D883A259ABC83FB96507D86] - 27/06/2011 - 21:55:23 ---A- . (...) -- C:\Ad-Report-CLEAN[2].txt [3067]
O44 - LFC:[MD5.EF00202EE1D6A4C90ABD67E016C2C8FF] - 27/06/2011 - 21:47:04 ---A- . (...) -- C:\Ad-Report-SCAN[3].txt [2954]
O44 - LFC:[MD5.470B4FC6BF38B3F4BF7E86D145EDC2FD] - 27/06/2011 - 21:31:16 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 27/06/2011 - 18:55:36 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.F042EE4C8D66248D9B86DCF52ABAE416] - 26/06/2011 - 07:45:56 ---A- . (...) -- C:\Windows\PEV.exe [256000]
O44 - LFC:[MD5.28E4125E39E0712320F7B773F50483C5] - 24/06/2011 - 21:37:15 ---A- . (...) -- C:\Ad-Report-SCAN[2].txt [11867]
O44 - LFC:[MD5.E0FFC0A3E6C15D73EDEECE9359A9BC21] - 19/06/2011 - 20:34:21 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [13098]
O44 - LFC:[MD5.1C7070B6D8538D782FD7FB19CEB07155] - 19/06/2011 - 17:10:00 ---A- . (...) -- C:\Ad-Report-SCAN[1].txt [13173]
O44 - LFC:[MD5.C2292D79CB8AD98657B3C5BC4BD60827] - 19/06/2011 - 01:37:47 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1590836]
O44 - LFC:[MD5.043B1D7CDD1EACDD9736D479F4ED02E6] - 19/06/2011 - 01:37:47 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [109332]
O44 - LFC:[MD5.84454309EED64AA9C3DB6295C1811B65] - 19/06/2011 - 01:37:47 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [133834]
O44 - LFC:[MD5.C1FA588E154DACDBB8042A42E0694F72] - 19/06/2011 - 01:37:47 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [622250]
O44 - LFC:[MD5.4EF062A58673E9C6944C26368835AAF3] - 19/06/2011 - 01:37:47 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [710952]
O44 - LFC:[MD5.4A898BBD5E28E1AA2C913A13610D4129] - 16/06/2011 - 18:50:44 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe [145184]
O44 - LFC:[MD5.12CFBDBC5F7E12B0C1E55ADAF2E35354] - 16/06/2011 - 18:50:44 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe [145184]
O44 - LFC:[MD5.09DD45FF5EB0A8BAFB2D65A9F9460615] - 16/06/2011 - 18:50:44 ---A- . (.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe [157472]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 15/06/2011 - 00:58:38 ---A- . (...) -- C:\Windows\SysNative\ieuinit.inf [72822]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 15/06/2011 - 00:58:38 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]
O44 - LFC:[MD5.0277C027A26428DB64EF4F64F52BB4FD] - 07/11/2010 - 18:20:24 ---A- . (...) -- C:\Windows\MBR.exe [208896]
O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\grep.exe [80412]
O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\sed.exe [98816]
O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\zip.exe [68096]



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\procexp90.Sys . (...) -- C:\Windows\System32\Drivers\procexp90.Sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\procexp90.Sys . (...) -- C:\Windows\System32\Drivers\procexp90.Sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{45c607c9-2711-11e0-ac9e-70f3955708ee}\AutoRun\command. (...) -- G:\cdstart.exe (.not file.)



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "EnableShellExecuteHooks"=1



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.1CFFE9C06E66A57DAE1452E449A58240] - 08/06/2010 - 12:48:50 ---A- . (.Hewlett-Packard - HP Accelerometer.) -- C:\Windows\system32\drivers\Accelerometer.sys [41272]
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 10/06/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 13/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 13/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]
O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 27/04/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 10/06/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]
O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 27/04/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 13/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 13/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]
O58 - SDL:[MD5.0ACC06FCF46F64ED4F11E57EE461C1F4] - 08/06/2010 - 08:34:00 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1542656]
O58 - SDL:[MD5.FB7602C5C508BE281368AAE0B61B51C6] - 30/09/2009 - 18:34:32 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys [121872]
O58 - SDL:[MD5.52679612D742BF74CA1BA6AB86DDF431] - 22/01/2010 - 18:13:24 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [6233088]
O58 - SDL:[MD5.414E0788920A8C856032BE2CBF29F984] - 22/01/2010 - 17:07:56 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys [161280]
O58 - SDL:[MD5.52679612D742BF74CA1BA6AB86DDF431] - 22/01/2010 - 18:13:24 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atipmdag.sys [6233088]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 14/07/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 14/07/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 14/07/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 14/07/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 14/07/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]
O58 - SDL:[MD5.AF838D8029AE7C27470862D63FA54D24] - 08/06/2010 - 19:22:34 ---A- . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\system32\drivers\btwaudio.sys [98344]
O58 - SDL:[MD5.5C849BD7C78791C5CEE9F4651D7FE38D] - 08/06/2010 - 19:22:36 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\system32\drivers\btwavdt.sys [132648]
O58 - SDL:[MD5.6149301DC3F81D6F9667A3FBAC410975] - 08/06/2010 - 19:22:40 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\system32\drivers\btwl2cap.sys [35104]
O58 - SDL:[MD5.3E1991AFA851A36DC978B0A1B0535C8B] - 08/06/2010 - 19:22:44 ---A- . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\system32\drivers\btwrchid.sys [21160]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]
O58 - SDL:[MD5.A298AEA9FCA253E7EFF040A08C7C6376] - 08/06/2010 - 19:30:10 --HA- . (.DeviceVM, Inc. - DVMIO virtual device driver for 64bit.) -- C:\Windows\system32\drivers\dvmio.sys [20056]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 10/06/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 14/07/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]
O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 01/05/2010 - 02:21:00 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\system32\drivers\HECIx64.sys [56344]
O58 - SDL:[MD5.05712FDDBD45A5864EB326FAABC6A4E3] - 08/06/2010 - 12:49:08 ---A- . (.Hewlett-Packard - HP Disk Filter - SATA/RAID.) -- C:\Windows\system32\drivers\hpdskflt.sys [30008]
O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 03/05/2011 - 14:33:35 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720]
O58 - SDL:[MD5.1384872112E8E7FD5786ECEB8BDDF4C9] - 08/06/2010 - 08:44:22 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [540696]
O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 27/04/2011 - 07:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]
O58 - SDL:[MD5.39842DD1FAC3D00546078782A1A742A9] - 29/09/2010 - 21:53:37 ---A- . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\system32\drivers\idmwfp.sys [91936]
O58 - SDL:[MD5.6CBFC48E5C663EA8493AE3E75A6BF511] - 22/01/2010 - 17:08:28 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [8034368]
O58 - SDL:[MD5.6CBFC48E5C663EA8493AE3E75A6BF511] - 22/01/2010 - 17:08:28 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdpmd64.sys [8034368]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 13/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]
O58 - SDL:[MD5.36FDF367A1DABFF903E2214023D71368] - 26/10/2009 - 21:39:44 ---A- . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\system32\drivers\Impcd.sys [151936]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 13/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 13/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 13/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 13/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]
O58 - SDL:[MD5.ED49FD1373DE93617A1F6D128D98FE4D] - 20/06/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 10/06/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 13/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]
O58 - SDL:[MD5.64428DFDAF6E88366CB51F45A79C5F69] - 10/06/2009 - 21:35:28 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\netw5v64.sys [5434368]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 13/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]
O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 27/04/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]
O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 27/04/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 10/06/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 13/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]
O58 - SDL:[MD5.777FC2C418465404E3D8A290DC247D24] - 08/06/2010 - 02:45:06 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys [295424]
O58 - SDL:[MD5.907C4464381B5EBDFDC60F6C7D0DEDFC] - 08/06/2010 - 23:31:04 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys [232992]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 14/07/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 10/06/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 13/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]
O58 - SDL:[MD5.14EE1800FEFFFFFF00000000C4F01800] - 18/01/2011 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [834544]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 13/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]
O58 - SDL:[MD5.936A4D05F7A790B8AAB3B6BE61651E0E] - 08/06/2010 - 08:38:52 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\system32\drivers\stwrt64.sys [505856]
O58 - SDL:[MD5.33E6A285DAA5134D8EA2247914C86C09] - 17/12/2010 - 01:28:38 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [1403440]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 10/06/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]
O58 - SDL:[MD5.0C4540311E11664B245A263E1154CEF8] - 14/07/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL6.SYS [292864]
O58 - SDL:[MD5.18E40C245DBFAF36FD0134A7EF2DF396] - 14/07/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT6.SYS [740864]
O58 - SDL:[MD5.02071D207A9858FBE3A48CBFD59C4A04] - 14/07/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV6.SYS [1485312]
O58 - SDL:[MD5.B3EEACF62445E24FBB2CD4B0FB4DB026] - 10/06/2009 - 21:35:33 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\Windows\system32\drivers\yk62x64.sys [389120]
O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 20/06/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [39984]



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: Ad-Remover By C_XX - (.C_XX.) [HKLM][64Bits] -- Ad-Remover
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM][64Bits] -- HijackThis
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1
O63 - Logiciel: RSIT - (.random/random.)



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (.Microsoft Corporation - Wim file system Driver.) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKLM\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe



---\\ Search Browser Infection (O69)
O69 - SBI: prefs.js [JAUZE - o7gvq566.default] user_pref("CT2465030.SearchEngine", "Search||http://search.conduit.com/Results.aspx?
O69 - SBI: prefs.js [JAUZE - o7gvq566.default] user_pref("CT2465030
2 Juillet 2011 21:17:11

et la fin :

---\\ Search Browser Infection (O69)
O69 - SBI: prefs.js [JAUZE - o7gvq566.default] user_pref("CT2465030.SearchEngine", "Search||http://search.conduit.com/Results.aspx?
O69 - SBI: prefs.js [JAUZE - o7gvq566.default] user_pref("CT2465030.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?
O69 - SBI: prefs.js [JAUZE - o7gvq566.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT246503...
O69 - SBI: prefs.js [JAUZE - o7gvq566.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT246503...");
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {D03B1227-C94A-4DE0-BFB7-2BD5D9F03139} [DefaultScope] - (Bing) - http://www.bing.com



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.BB97B0C74FE44C77992033C9961A61B8] [SPRF] (...) -- C:\Users\JAUZE\Desktop\ZHP_uninstall.exe [344169]



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.)
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)
O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)
O87 - FAEL: "{D911A0C8-8C9D-4003-847C-76873F317A91}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{71A5AF8D-94E0-4EEA-839D-07DAEB1C9626}" | In - Public - P6 - TRUE | .(.EasyBits Software AS - EasyBits My First Browser.) -- C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe
O87 - FAEL: "{F127A184-9F9D-44AF-839E-72775A63CD31}" | In - Public - P17 - TRUE | .(.EasyBits Software AS - EasyBits My First Browser.) -- C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe
O87 - FAEL: "{7A2A644A-80D1-4324-947A-E4FD4F99E823}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP DVDSmart Main Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
O87 - FAEL: "{C37DBD05-6C15-43BE-949F-301C73FF08C0}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP MediaSmart Music Main Program.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\HPTouchSmartMusic.exe
O87 - FAEL: "{49471CED-DBA8-49FB-ADC6-FD21E860BEB5}" | In - None - P6 - TRUE | .(.CyberLink Corp. - HP MediaSmart TV.) -- C:\Program Files (x86)\Hewlett-Packard\Media\iTV\HPiTV.exe
O87 - FAEL: "{CACA43AE-B39B-4BBE-AC41-DBF212865C43}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "TCP Query User{9211B466-2D98-4BB8-8AEF-CC8F866B2EF5}C:\program files\java\jre6\bin\javaw.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe
O87 - FAEL: "UDP Query User{6A2A7EF1-84EC-4EBE-A15E-82D3F0FB19E6}C:\program files\java\jre6\bin\javaw.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe
O87 - FAEL: "{E9B716E5-251F-4831-B013-6301DD70E63B}" | In - Private - P6 - TRUE | .(.GIANTS Software GmbH - GIANTS Launcher.) -- C:\Program Files (x86)\Farming Simulator 2011\FarmingSimulator2011.exe
O87 - FAEL: "{29E39106-FBFC-48E2-966D-D86729675378}" | In - Private - P17 - TRUE | .(.GIANTS Software GmbH - GIANTS Launcher.) -- C:\Program Files (x86)\Farming Simulator 2011\FarmingSimulator2011.exe
O87 - FAEL: "{8F8C5A67-4022-402B-B27C-00EB267D884E}" | In - Private - P6 - TRUE | .(.GIANTS Software GmbH - GIANTS Game Engine.) -- C:\Program Files (x86)\Farming Simulator 2011\game.exe
O87 - FAEL: "{7FE874E6-0E76-4F30-8267-D7809425DE82}" | In - Private - P17 - TRUE | .(.GIANTS Software GmbH - GIANTS Game Engine.) -- C:\Program Files (x86)\Farming Simulator 2011\game.exe
O87 - FAEL: "TCP Query User{0A087841-6ABE-46F6-A6F5-CFEE152800C2}C:\program files (x86)\internet download manager\idman.exe" | In - Private - P6 - TRUE | .(.Tonec Inc..) -- C:\program files (x86)\internet download manager\idman.exe
O87 - FAEL: "UDP Query User{CBB46610-153E-4EBF-9EBD-02FBC2B753AF}C:\program files (x86)\internet download manager\idman.exe" | In - Private - P17 - TRUE | .(.Tonec Inc..) -- C:\program files (x86)\internet download manager\idman.exe



---\\ Scan Additionnel (O88)
Database Version : 8476 - (01/07/2011)
Clés trouvées (Keys found) : 3
Valeurs trouvées (Values found) : 2
Dossiers trouvés (Folders found) : 2
Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}] =>Toolbar.Facemood
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}] =>Toolbar.Facemood
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{32099aac-c132-4136-9e9a-4e364a424e17} =>Toolbar.Agent
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{32099aac-c132-4136-9e9a-4e364a424e17} =>Toolbar.Agent
C:\Program Files (x86)\DAEMON Tools Toolbar =>Toolbar.Agent
C:\Users\JAUZE\AppData\Roaming\Mozilla\Firefox\Profiles\o7gvq566.default\Conduit =>Toolbar.Conduit



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 29/06/2010 128752 | (!SASCORE) . (.SUPERAntiSpyware.com.) - C:\Program Files\SUPERAntiSpyware\SASCORE64.exe
SR - | Auto 17/06/2011 64952 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 08/06/2010 89600 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
SR - | Auto 30/12/1899 0 | (AMD External Events Utility) . (.AMD.) - C:\Windows\system32\atiesrxx.exe
SR - | Auto 08/06/2010 873248 | (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - | Auto 08/06/2010 444680 | C:\Program Files\DigitalPersona\Bin\DpHostW.exe (DpHost) . (.DigitalPersona, Inc..) - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
SR - | Auto 18/05/2010 514232 | (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe
SS - | Demand 08/06/2010 238328 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
SR - | Auto 11/01/2011 126520 | (HP Health Check Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
SR - | Auto 18/05/2010 102968 | (HP Wireless Assistant Service) . (.Hewlett-Packard.) - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
SS - | Demand 18/05/2010 83240 | (hpdoccardsvc) . (.Hewlett-Packard Developement Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
SR - | Auto 05/05/2011 94264 | (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
SR - | Demand 05/05/2011 799800 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 30/12/1899 0 | (hpsrv) . (.Hewlett-Packard.) - C:\Windows\system32\Hpservice.exe
SR - | Auto 08/06/2010 20480 | (HPWMISVC) . (...) - C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 08/06/2010 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SR - | Auto 08/06/2010 325656 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 08/06/2010 244736 | (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
SR - | Auto 08/06/2010 2533400 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 08/06/2010 1791280 | (vcsFPService) . (.Validity Sensors, Inc..) - C:\Windows\system32\vcsFPService.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by JAUZE at 02/07/2011 21:10:45

device: opened successfully
user: error reading MBR

Disk trace:
error: Read Descripteur non valide
kernel: error reading MBR



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by JAUZE at 02/07/2011 21:10:47

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin



---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
O58 - SDL:[MD5.14EE1800FEFFFFFF00000000C4F01800] - 18/01/2011 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [834544]



End of the scan (1425 lines in 00mn 59s)(0)
3 Juillet 2011 12:49:49

Bonjour,

télécharge UsbFix (merci El Desaparecido) : Ici

# Connecte tous tes périphériques externes (clé Usb, disque dur...), sans les ouvrir
# Double-clique sur le raccourci présent sur le Bureau
# Choisis l' option 1 (Recherche) et laisse-le travailler
# Poste le rapport (également sauvegardé à la racine de C)

process.exe est détecté par certains antivirus (AntiVir, Dr. Web, Kaspersky Anti-Virus...) comme étant un RiskTool. Il ne s' agit pas d' un virus, mais d' un utilitaire destiné à mettre fin des processus. Mis entre de mauvaises mains il pourrait arrêter des logiciels de sécurité (antivirus, firewall...), d' où l' alerte émise.

A+
3 Juillet 2011 14:33:21

Merci voila le rapport :


############################## | UsbFix 7.048 | [Recherche]

Utilisateur: JAUZE (Administrateur) # JAUZE-PC [Hewlett-Packard HP Pavilion dv6 Notebook PC]
Mis à jour le 11/06/2011 par TeamXscript
Lancé à 14:26:20 | 03/07/2011
Site Web: http://www.teamxscript.org
Submit your sample: http://www.teamxscript.org/Upload.php
Contact: TeamXscript.ElDesaparecido@gmail.com

CPU: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
CPU 2: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
Internet Explorer 9.0.8112.16421

Pare-feu Windows: Activé
RAM -> 3894 Mo
C:\ (%systemdrive%) -> Disque fixe # 443 Go (382 Go libre(s) - 86%) [] # NTFS
D:\ -> Disque fixe # 22 Go (3 Go libre(s) - 15%) [RECOVERY] # NTFS
E:\ -> Disque fixe # 99 Mo (89 Mo libre(s) - 89%) [HP_TOOLS] # FAT32
F:\ -> CD-ROM
G:\ -> CD-ROM

################## | Éléments infectieux |


################## | Registre |


################## | Mountpoints2 |

HKCU\.\.\.\.\Explorer\MountPoints2\{45c607c9-2711-11e0-ac9e-70f3955708ee}
Shell\AutoRun\Command = G:\cdstart.exe


################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | E.O.F |


A+
3 Juillet 2011 15:17:49

Re,

# Connecte tous tes périphériques externes, sans les ouvrir
# Double-clique sur le raccourci d' UsbFix
# Choisis l' option 2 (Suppression)
# Ton bureau va disparaître et le Pc redémarrer
# Laisse-le travailler
# Poste le rapport

;) 
3 Juillet 2011 15:27:05

Voila le rapport :

############################## | UsbFix 7.048 | [Suppression]

Utilisateur: JAUZE (Administrateur) # JAUZE-PC [Hewlett-Packard HP Pavilion dv6 Notebook PC]
Mis à jour le 11/06/2011 par TeamXscript
Lancé à 15:19:57 | 03/07/2011
Site Web: http://www.teamxscript.org
Submit your sample: http://www.teamxscript.org/Upload.php
Contact: TeamXscript.ElDesaparecido@gmail.com

CPU: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
CPU 2: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
Internet Explorer 9.0.8112.16421

Pare-feu Windows: Activé
RAM -> 3894 Mo
C:\ (%systemdrive%) -> Disque fixe # 443 Go (382 Go libre(s) - 86%) [] # NTFS
D:\ -> Disque fixe # 22 Go (3 Go libre(s) - 15%) [RECOVERY] # NTFS
E:\ -> Disque fixe # 99 Mo (89 Mo libre(s) - 89%) [HP_TOOLS] # FAT32
F:\ -> CD-ROM
G:\ -> CD-ROM

################## | Éléments infectieux |

Supprimé! C:\$RECYCLE.BIN\S-1-5-21-1208545177-2458381507-1022432816-1001
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-1208545177-2458381507-1022432816-500
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2668788161-2478455293-3709502279-500
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-1208545177-2458381507-1022432816-1001

################## | Registre |


################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{45c607c9-2711-11e0-ac9e-70f3955708ee}

################## | Listing |

[03/07/2011 - 15:20:33 | SHD ] C:\$RECYCLE.BIN
[28/06/2011 - 22:26:24 | D ] C:\Ad-Remover
[19/06/2011 - 21:34:21 | N | 13098] C:\Ad-Report-CLEAN[1].txt
[27/06/2011 - 22:55:23 | N | 3067] C:\Ad-Report-CLEAN[2].txt
[19/06/2011 - 18:10:00 | N | 13173] C:\Ad-Report-SCAN[1].txt
[24/06/2011 - 22:37:15 | N | 11867] C:\Ad-Report-SCAN[2].txt
[27/06/2011 - 22:47:04 | N | 2954] C:\Ad-Report-SCAN[3].txt
[28/06/2011 - 22:26:43 | N | 3061] C:\Ad-Report-SCAN[4].txt
[19/05/2010 - 00:12:08 | D ] C:\boot
[14/07/2009 - 03:38:58 | RASH | 383562] C:\bootmgr
[07/01/2011 - 01:01:53 | D ] C:\cda899225fa7cf09f172396cfa5e
[29/06/2011 - 23:24:38 | N | 26202] C:\ComboFix.txt
[29/06/2011 - 23:09:50 | D ] C:\ComboFix_001
[29/06/2011 - 23:30:12 | D ] C:\ComboFix_0013833C
[14/07/2009 - 07:08:56 | SHD ] C:\Documents and Settings
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1028.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1031.txt
[07/11/2007 - 09:00:40 | N | 10134] C:\eula.1033.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1036.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1040.txt
[07/11/2007 - 09:00:40 | N | 118] C:\eula.1041.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1042.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.2052.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.3082.txt
[07/11/2007 - 09:00:40 | N | 1110] C:\globdata.ini
[03/07/2011 - 14:20:13 | ASH | 3062255616] C:\hiberfil.sys
[08/06/2010 - 02:27:03 | D ] C:\HP
[07/11/2007 - 09:44:20 | N | 855040] C:\install.exe
[07/11/2007 - 09:00:40 | N | 843] C:\install.ini
[07/11/2007 - 09:44:20 | N | 75280] C:\install.res.1028.dll
[07/11/2007 - 09:44:20 | N | 95248] C:\install.res.1031.dll
[07/11/2007 - 09:44:20 | N | 90128] C:\install.res.1033.dll
[07/11/2007 - 09:44:20 | N | 96272] C:\install.res.1036.dll
[07/11/2007 - 09:44:20 | N | 94224] C:\install.res.1040.dll
[07/11/2007 - 09:44:20 | N | 80400] C:\install.res.1041.dll
[07/11/2007 - 09:44:20 | N | 78864] C:\install.res.1042.dll
[07/11/2007 - 09:44:20 | N | 74768] C:\install.res.2052.dll
[07/11/2007 - 09:44:20 | N | 95248] C:\install.res.3082.dll
[08/06/2010 - 02:27:01 | D ] C:\Intel
[03/07/2011 - 14:20:16 | ASH | 4083007488] C:\pagefile.sys
[14/07/2009 - 05:20:08 | D ] C:\PerfLogs
[27/06/2011 - 22:31:16 | N | 512] C:\PhysicalDisk0_MBR.bin
[29/06/2011 - 23:30:06 | D ] C:\Program Files
[29/06/2011 - 23:30:06 | D ] C:\Program Files (x86)
[29/06/2011 - 23:30:06 | HD ] C:\ProgramData
[29/06/2011 - 23:24:41 | D ] C:\Qoobox
[25/12/2010 - 23:25:53 | D ] C:\Recovery
[18/06/2011 - 22:24:59 | D ] C:\rsit
[29/06/2011 - 23:30:06 | D ] C:\SwSetup
[03/07/2011 - 14:31:43 | SHD ] C:\System Volume Information
[25/12/2010 - 23:25:57 | D ] C:\SYSTEM.SAV
[03/07/2011 - 15:20:33 | D ] C:\UsbFix
[03/07/2011 - 15:19:58 | A | 4236] C:\UsbFix.txt
[29/06/2011 - 23:30:08 | D ] C:\Users
[07/11/2007 - 09:00:40 | N | 5686] C:\vcredist.bmp
[07/11/2007 - 09:50:40 | N | 1927956] C:\VC_RED.cab
[07/11/2007 - 09:53:12 | N | 242176] C:\VC_RED.MSI
[29/06/2011 - 23:30:46 | D ] C:\Windows
[03/07/2011 - 15:20:33 | D ] D:\$RECYCLE.BIN
[25/12/2010 - 23:31:37 | D ] D:\boot
[14/07/2009 - 20:39:00 | ASH | 383562] D:\bootmgr
[25/12/2010 - 23:31:37 | N | 0] D:\BT_HP.FLG
[08/06/2010 - 13:03:51 | N | 483] D:\CSP.DAT
[08/06/2010 - 13:23:46 | N | 14126] D:\DeployRp.log
[25/12/2010 - 23:31:37 | D ] D:\hp
[28/06/2011 - 22:29:53 | N | 21] D:\HPSF_Rep.txt
[25/12/2010 - 23:31:36 | N | 22] D:\language.ini
[25/12/2010 - 23:31:37 | D ] D:\preload
[25/12/2010 - 23:31:37 | D ] D:\Recovery
[08/06/2010 - 13:23:41 | N | 0] D:\RPCONFIG.LOG
[25/12/2010 - 13:18:16 | SHD ] D:\System Volume Information
[25/12/2010 - 23:31:37 | D ] D:\system.sav
[08/06/2010 - 01:49:42 | D ] E:\Hewlett-Packard
[25/12/2010 - 22:31:42 | SHD ] E:\$RECYCLE.BIN
[28/06/2011 - 22:29:56 | N | 21] E:\HPSF_Rep.txt

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)
D:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)
E:\Autorun.inf -> Vaccin créé par UsbFix (TeamXscript)

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_JAUZE-PC.zip
http://www.teamxscript.org/Upload.php
Merci de votre contribution.

################## | E.O.F |



Merci
3 Juillet 2011 16:02:53

Télécharge TDSSKiller depuis ce lien : Ici

- Extrais de l' archive téléchargée le fichier TDSSKiller.exe et place-le sur le Bureau
- Fais un double-clic dessus pour le lancer

L' écran s' affiche :


- Clique sur Start scan pour lancer l' analyse
- Lorsque l' outil a terminé son travail et que
des nuisibles auront été trouvés,
vérifie que l' option est sélectionnée
puis clique sur les boutons et
- Poste le rapport (contenu du fichier SystemDrive\TDSSKiller.Version_Date_Heure_log.txt)

Ps : Merci nickW
3 Juillet 2011 16:09:45

Il n'as rien trouver
3 Juillet 2011 23:53:07

Bonsoir,

je suis de nouveau allé aux infos.

A+
4 Juillet 2011 19:24:17

Bonjour,

la suite ce soir ou demain.

A+
4 Juillet 2011 21:22:41

Bonsoir,
Il me dit juste qu'il n'as rien trouver sans me donner de rapport.
A+
5 Juillet 2011 08:53:13

Bonjour,

le problème est-il avec tous les navigateurs et ce depuis combien de jours?

A+
5 Juillet 2011 13:00:03

Bonjour,
je me sert que de firefox et le probleme dur depuis le debut de notre conversation.
A+
5 Juillet 2011 21:50:35

Bonsoir,
Des que je lance le safe mode firefox se lance bien sur ma page d'accueil, mais j'ai pas la fenetre "poursuivre en mode sans echec".
Le probleme du mode normal peut venir d'ou alors?
Merci
a+
      • 1 / 2
      • 2
      • Dernier
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS