HIJACKTHIS ET KEYLOGS
Fermé
skip01
Messages postés
315
Date d'inscription
lundi 22 février 2010
Statut
Membre
Dernière intervention
23 novembre 2022
-
14 mars 2011 à 21:50
Chris 94 Messages postés 50978 Date d'inscription mardi 8 janvier 2008 Statut Modérateur Dernière intervention 17 février 2023 - 17 mars 2011 à 19:16
Chris 94 Messages postés 50978 Date d'inscription mardi 8 janvier 2008 Statut Modérateur Dernière intervention 17 février 2023 - 17 mars 2011 à 19:16
A voir également:
- HIJACKTHIS ET KEYLOGS
- Hijackthis windows 10 - Télécharger - Antivirus & Antimalwares
- HIJACKTHIS tutorial ✓ - Forum Logiciels
- Rapport hijackthis - Forum Virus
- Hijackthis analyse ✓ - Forum Virus
3 réponses
Utilisateur anonyme
14 mars 2011 à 22:00
14 mars 2011 à 22:00
Bonsoir.
J'en ai une autre : Faire les vérifications moi-même ! :p
Utilise ce logiciel de diagnostic :
▶ Télécharge ZHPDiag (de Nicolas Coolman)
▶ Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
▶ Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
▶ Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
▶ Héberge le rapport ZHPDiag.txt sur ce site, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum.
J'en ai une autre : Faire les vérifications moi-même ! :p
Utilise ce logiciel de diagnostic :
▶ Télécharge ZHPDiag (de Nicolas Coolman)
▶ Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
▶ Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
▶ Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
▶ Héberge le rapport ZHPDiag.txt sur ce site, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum.
vicvance20
Messages postés
65
Date d'inscription
dimanche 6 février 2011
Statut
Membre
Dernière intervention
24 août 2012
5
14 mars 2011 à 21:58
14 mars 2011 à 21:58
Utilisateur anonyme
17 mars 2011 à 12:00
17 mars 2011 à 12:00
Skip, non tu n'es pas obligé, c'est bien pour ça qu'on en rigole, c'est ton pc, pas le notre ^^ Si tu ne veux pas nous croire quand on te dit que fixer une ligne ne sert pas à désinfecter, c'est ton soucis ;)
Maintenant, si tu veux suivre, fais déjà ceci :
AD-Remover :
Ce qu'il faut savoir sur les toolbars (barres d'outils)
▶ Télécharge AD-Remover (de C_XX) sur ton Bureau.
:!: Déconnecte toi et ferme toutes les applications en cours :!:
▶ Double-clique sur l'icône AD-Remover
▶ Au menu principal, clique sur "Nettoyer"
▶ Confirme le lancement de l'analyse et laisse l'outil travailler
▶ Poste le rapport qui apparait à la fin (il est aussi sauvegardé sous C:\Ad-report-CLEAN.txt )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
++
Maintenant, si tu veux suivre, fais déjà ceci :
AD-Remover :
Ce qu'il faut savoir sur les toolbars (barres d'outils)
▶ Télécharge AD-Remover (de C_XX) sur ton Bureau.
:!: Déconnecte toi et ferme toutes les applications en cours :!:
▶ Double-clique sur l'icône AD-Remover
▶ Au menu principal, clique sur "Nettoyer"
▶ Confirme le lancement de l'analyse et laisse l'outil travailler
▶ Poste le rapport qui apparait à la fin (il est aussi sauvegardé sous C:\Ad-report-CLEAN.txt )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
++
Chris 94
Messages postés
50978
Date d'inscription
mardi 8 janvier 2008
Statut
Modérateur
Dernière intervention
17 février 2023
7 323
17 mars 2011 à 12:13
17 mars 2011 à 12:13
Merci pour lui ! Belle patience :-)
juju666
Messages postés
35445
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
5 mai 2017
4 795
17 mars 2011 à 17:38
17 mars 2011 à 17:38
lol :-)
Kikou Chris, bisous mon lapin :o)
Kikou Chris, bisous mon lapin :o)
Chris 94
Messages postés
50978
Date d'inscription
mardi 8 janvier 2008
Statut
Modérateur
Dernière intervention
17 février 2023
7 323
17 mars 2011 à 19:16
17 mars 2011 à 19:16
;-)
14 mars 2011 à 22:02
14 mars 2011 à 22:09
15 mars 2011 à 01:07
15 mars 2011 à 03:59
15 mars 2011 à 18:03
Run by laruzi at 14/03/2011 23:30:27
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
GCIE: Google Chrome v10.0.648.133 (Defaut)
---\\ System Information
Windows 7 Home Premium Edition, 64-bit (Build 7600)
Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2940 MB (33% free)
System Restore: Activé (Enable)
System drive C: has 45 GB (30%) free of 149 GB
---\\ Logged in mode
Computer Name: LARUZI-TOSH
User Name: laruzi
All Users Names: laruzi, HomeGroupUser$, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
%AppData%=C:\Users\laruzi\AppData\Roaming
%LocalAppData%=C:\Users\laruzi\AppData\Local
%StartMenu%=C:\Users\laruzi\AppData\Roaming\Microsoft\Windows\Start Menu
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 45 Go of 149 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 142 Go of 149 Go)
E:\ CD-ROM drive (Not Inserted)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
---\\ Recherche particulière de fichiers génériques
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - (.Microsoft Corporation - Explorateur Windows.) (.31/10/2009 07:34:59.) -- C:
\Windows\Explorer.exe [2870272]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009
02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.78B9ADA2BC8946AF7B17678E0D07A773] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/12/2010
06:38:22.) -- C:\Windows\System32\wininet.dll [981504]
---\\ Processus lancés
[MD5.05973FB5F863CDB65852D88ADB383A33] - (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files
(x86)\Toshiba\TOSHIBA Online Product Information\TOPI.exe [4581280]
[MD5.2DFCB2393528446AEB9FB861A8FC39AB] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
[421160]
[MD5.3F654601A593A96BC4A47035B0829E69] - (.AOL Inc. - AOL.) -- C:\Program Files (x86)\Common Files\AOL\1294887516\ee
\aolsoftware.exe [41800]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files
(x86)\Common Files\Java\Java Update\jusched.exe [249064]
[MD5.37A9D42D8D406CFEE530B7DE563747FC] - (.Google Inc. - Google Chrome.) -- C:\Users\laruzi\AppData\Local\Google\Chrome
\Application\chrome.exe [1004088]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- C:\Windows\SysWOW64\rundll32.exe [44544]
[MD5.913AE47B65EEDE3B9427C3F5B7CF0D1A] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag
\ZHPDiag.exe [634880]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Users\laruzi\AppData
\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
M0 - MFSP: prefs.js [laruzi - jt0p1txv.default]
M2 - MFEP: prefs.js [laruzi - jt0p1txv.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.8.4
(.Michel Gutierrez.)
M2 - MFEP: prefs.js [laruzi - jt0p1txv.default\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] [adblockplus] Adblock Plus v1.3.3
(.Wladimir Palant.)
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://start.facemoods.com
G2 - GCE: Preference [User Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] McAfee SiteAdvisor v.3.30.153.1 (Activé)
G2 - GCE: Preference [User Data\Default] [gahbbkmdcplcfehhbggidnjccefnmphk] beatles theme v.1 (Activé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.3.10 (Activé)
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKUS\S-1-5-21-3496102955-435019132-2993553950-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
http://start.facemoods.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation
- Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. -
SiteAdvisor.) (3,3,0,153) -- c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation -
Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live
\WindowsLiveLogin.dll
O2 - BHO: McAfee SiteAdvisor BHO [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, Inc. - SiteAdvisor.) -- c:
\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
O2 - BHO: Hotspot Shield Class [64Bits] - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} . (.Pas de propriétaire - Pas de
description.) -- C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: McAfee SiteAdvisor Toolbar [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. -
SiteAdvisor.) -- c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe (.not file.)
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.)
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.)
O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:
\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
O4 - HKLM\..\Run: [SmartAudio] . (.Pas de propriétaire - SAIICpl MFC Application.) -- C:\Program Files\CONEXANT\SAII
\SAIICpl.exe
O4 - HKLM\..\Run: [TPwrMain] . (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- C:\Program Files\TOSHIBA\Power Saver
\TPwrMain.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\Toshiba\SmoothView
\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] . (.TOSHIBA Corporation - TOSHIBA Flash Cards.) -- C:\Program Files\TOSHIBA\FlashCards
\TCrdMain.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics
\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TosReelTimeMonitor] . (.TOSHIBA Corporation - Monitor of TOSHIBA ReelTime.) -- C:\Program Files
\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
O4 - HKLM\..\Run: [TosNC] . (.TOSHIBA Corporation - Message Center.) -- C:\Program Files\Toshiba\BulletinBoard
\TosNcCore.exe
O4 - HKLM\..\Run: [Toshiba TEMPRO] . (.Toshiba Europe GmbH - Toshiba TEMPRO.) -- C:\Program Files (x86)\Toshiba TEMPRO
\TemproTray.exe
O4 - HKLM\..\Run: [SmartFaceVWatcher] . (.TOSHIBA Corporation - SmartFaceVWatcher.) -- C:\Program Files\Toshiba
\SmartFaceV\SmartFaceVWatcher.exe
O4 - HKLM\..\Run: [TosSENotify] . (.TOSHIBA Corporation - Pas de description.) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD
Alert\TosWaitSrv.exe
O4 - HKLM\..\Run: [TosVolRegulator] . (.TOSHIBA Corporation - Toshiba Volume Regulator.) -- C:\Program Files\TOSHIBA
\TosVolRegulator\TosVolRegulator.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
O4 - HKCU\..\Run: [TOSHIBA Online Product Information] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program
Files (x86)\Toshiba\TOSHIBA Online Product Information\TOPI.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live
\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\laruzi\AppData\Local
\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar
\sidebar.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite
\DTLite.exe
O4 - HKLM\..\Wow6432Node\Run: [ToshibaServiceStation] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [NBAgent] . (.Nero AG - Nero BackItUp.) -- c:\Program Files (x86)\Nero\Nero BackItUp & Burn
\Nero BackItUp\NBAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [TWebCamera] . (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files
(x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime
\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes
\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.)
-- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:
\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [HostManager] . (.AOL Inc. - AOL.) -- C:\Program Files (x86)\Common Files\AOL\1294887516\ee
\AOLSoftware.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program
Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:
\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe
O4 - HKUS\S-1-5-18\..\Run: [TOSHIBA Online Product Information] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:
\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows
Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows
Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-3496102955-435019132-2993553950-1000\..\Run: [TOSHIBA Online Product Information] . (.TOSHIBA - TOSHIBA
Online Product Information.) -- C:\Program Files (x86)\Toshiba\TOSHIBA Online Product Information\TOPI.exe
O4 - HKUS\S-1-5-21-3496102955-435019132-2993553950-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live
Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-3496102955-435019132-2993553950-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation
de Google.) -- C:\Users\laruzi\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-3496102955-435019132-2993553950-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau
Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-3496102955-435019132-2993553950-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.)
-- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
. (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk .
(.TOSHIBA Europe.) -- C:\Program Files (x86)\Toshiba\TRDCReminder\TRDCReminder.exe
---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk .
(.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\laruzi\Desktop\chrome.lnk . (.Google Inc..) -- C:\Users\laruzi\AppData\Local\Google\Chrome
\Application\chrome.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\AOL Desktop 9.6.lnk . (.AOL
Inc..) -- C:\Program Files (x86)\AOL Desktop 9.6\aol.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Camfrog Video Chat 5.5.lnk .
(.Camshare LC.) -- C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer
Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk .
(.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Opera.lnk . (.Opera
Software.) -- C:\Program Files (x86)\Opera\opera.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PokerStars.fr.lnk .
(.PokerStars.) -- C:\Program Files (x86)\PokerStars.FR\PokerStarsUpdate.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App -
toshiba.lnk . (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
O4 - Global Startup: C:\Users\laruzi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk .
(.Yahoo! Inc..) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Free Download Manager ile indir - (.not file.) - file:\\C:\Program Files (x86)\Free Download
Manager\dllink.htm
O8 - Extra context menu item: Free Download Manager ile seçileni indir - (.not file.) - file:\\C:\Program Files (x86)\Free
Download Manager\dlselected.htm
O8 - Extra context menu item: Free Download Manager ile tümünü indir - (.not file.) - file:\\C:\Program Files (x86)\Free
Download Manager\dlall.htm
O8 - Extra context menu item: Videoyu Free Download Manager ile indir - (.not file.) - file:\\C:\Program Files (x86)\Free
Download Manager\dlfvideo.htm
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows
\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft
Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows
\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de
messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows
\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows
\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) --
C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) --
C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour
\mdnsNSP.dll
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{291A3A77-0998-4603-B3A7-625436828198}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{291A3A77-0998-4603-B3A7-625436828198}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{291A3A77-0998-4603-B3A7-625436828198}: DhcpNameServer = 212.27.40.241
212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: dssrequest [64Bits] - {5513F07E-936B-4E52-9B00-067394E91CC5} . (.McAfee, Inc. - SiteAdvisor.) -- c:
\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
O18 - Handler: sacore [64Bits] - {5513F07E-936B-4E52-9B00-067394E91CC5} . (.McAfee, Inc. - SiteAdvisor.) -- c:
\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
O18 - Handler: skype-ie-addon-data [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.McAfee, Inc. - SiteAdvisor.) --
c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
O18 - Handler: skype4com [64Bits] - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.McAfee, Inc. - SiteAdvisor.) -- c:
\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Pas de propriétaire - Pas de description.) -- igfxdev.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AcuWVSScheduler) . (.Acunetix Ltd. - Acunetix WVS Scheduler.) - C:\Program Files (x86)\Acunetix\Web
Vulnerability Scanner 4\WVSScheduler.exe
O23 - Service: (AOL ACS) . (.AOL LLC - AOL Connectivity Service.) - C:\Program Files (x86)\Common Files\AOL\ACS
\AOLAcsd.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple
\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: (cfWiMAXService) . (.TOSHIBA CORPORATION - ConfigFree Service Process.) - C:\Program Files (x86)\TOSHIBA
\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: (CGVPNCliSrvc) . (.mobile concepts GmbH - CyberGhost VPN Client Service.) - C:\Program Files\S.A.D
\CyberGhost VPN\CGVPNCliService.exe
O23 - Service: (ConfigFree Service) . (.TOSHIBA CORPORATION - ConfigFree Service Process.) - C:\Program Files
(x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: (EhttpSrv) . (.ESET - ESET HTTP Server Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: (GamesAppService) . (.WildTangent, Inc. - GamesAppService.) - C:\Program Files (x86)\WildTangent Games
\App\GamesAppService.exe
O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (64-bit).) - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: (McAfee SiteAdvisor Service) . (.McAfee, Inc. - SiteAdvisor.) - c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - c:\Program Files
(x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: (TemproMonitoringService) . (.Toshiba Europe GmbH - Toshiba TEMPRO.) - C:\Program Files (x86)\Toshiba
TEMPRO\TemproSvc.exe
O23 - Service: (TMachInfo) . (.TOSHIBA Corporation - TSS TMachInfo Service.) - C:\Program Files (x86)\TOSHIBA\TOSHIBA
Service Station\TMachInfo.exe
O23 - Service: (TODDSrv) . (.TOSHIBA Corporation - TDCSrv Application.) - C:\Windows\system32\TODDSrv.exe
O23 - Service: (TosCoSrv) . (.TOSHIBA Corporation - TOSHIBA Power Saver.) - C:\Program Files\TOSHIBA\Power Saver
\TosCoSrv.exe
O23 - Service: (TOSHIBA HDD SSD Alert Service) . (.TOSHIBA Corporation - TosSmartSrv.exe.) - C:\Program Files\TOSHIBA
\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: (YahooAUService) . (.Yahoo! Inc. - AutoUpater Service Module.) - C:\Program Files (x86)\Yahoo!
\SoftwareUpdate\YahooAUService.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3496102955-435019132-2993553950-
1000Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3496102955-435019132-2993553950-
1000UA.job
[MD5.A7E406711790197712D376B44A9FBB0B] [APT] [ConfigFree Startup Programs] (.TOSHIBA CORPORATION.) -- C:\Program Files
(x86)\TOSHIBA\ConfigFree\NDSTray.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3496102955-435019132-2993553950-1000Core]
(.Google Inc..) -- C:\Users\laruzi\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3496102955-435019132-2993553950-1000UA]
(.Google Inc..) -- C:\Users\laruzi\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] [APT] [Scheduled Update for Ask Toolbar] (.Pas de propriétaire.) -- C:\Program
Files (x86)\Ask.com\UpdateTask.exe (.not file.)
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for
WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:
\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache
Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (ehdrv) . (.ESET - ESET Helper driver.) - C:\Windows\System32\DRIVERS\ehdrv.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS
\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:
\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows
\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) -
C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire
t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows
\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:
\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver
Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows
\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS
\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS
\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP
Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows
\System32\DRIVERS\wfplwf.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: AIMP2 - (.AIMP DevTeam.) [HKLM][64Bits] -- AIMP2
O42 - Logiciel: AOL Uninstaller (Choose which Products to Remove) - (.AOL Inc..) [HKLM][64Bits] -- AOL Uninstaller
O42 - Logiciel: ActivePerl 5.10.0 Build 1001 - (.ActiveState.) [HKLM][64Bits] -- {E2BD3BFB-8D1D-410D-B2F1-3BE80B7FFF72}
O42 - Logiciel: Acunetix Web Vulnerability Scanner 4.0 - (.Acunetix.) [HKLM][64Bits] -- {248744A5-185B-4D36-8AF3-
54FC28813BA0}_is1
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player
ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop CS5 Portable - (.Adobe.) [HKLM][64Bits] -- {61172A5D-60AA-43BE-958F-90451024E768}_is1
O42 - Logiciel: Adobe Reader 9.4.2 - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44
-A94000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {963BFE7E-C350-4346-B43C-B02358306A45}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..)
[HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT083929
O42 - Logiciel: BitLord 1.1 - (.www.bitlord.com.) [HKLM][64Bits] -- BitLord
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}
O42 - Logiciel: CamStudio 2.0 Fr - (.Pas de propriétaire.) [HKLM][64Bits] -- CamStudio 2.0 Fr_is1
O42 - Logiciel: Camfrog Video Chat 5.5 - (.Camshare LC.) [HKLM][64Bits] -- Camfrog 5.5
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT083877
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA
O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1
O42 - Logiciel: CyberGhost VPN - (.S.A.D. GmbH.) [HKLM] -- CyberGhost VPN_is1
O42 - Logiciel: Diner Dash 2 Restaurant Rescue - (.WildTangent.) [HKLM][64Bits] -- WT083916
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WT083945
O42 - Logiciel: Free Download Manager 3.0 - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- Free Download Manager_is1
O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM][64Bits] -- GOM Player
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {1EE04769-91C4-4A06-92B7-
FCAFE6BABDD9}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {133742BA-6F46-4D3E-85AF-
78631D9AD8B8}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-
9C76-B9AC9A5886EA}
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) [HKLM][64Bits] -- JDownloader
O42 - Logiciel: Java(TM) 6 Update 24 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM][64Bits] -- WildTangent toshiba Master Uninstall
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WT083910
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-
4BE906D59619}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-
8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-
8C11F044BDEC}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: McAfee SiteAdvisor - (.McAfee, Inc..) [HKLM] -- {35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}
O42 - Logiciel: McAfee SiteAdvisor - (.McAfee, Inc..) [HKLM][64Bits] -- {35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}
O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM][64Bits] -- Messenger Plus! Live
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4
Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-
1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] --
{4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-
A1C8A0C4D570}
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Starter 2010 - Français - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140011-0066-
040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office « Démarrer en un clic » 2010 - (.Microsoft Corporation.) [HKLM] -- {90140000-006D-040C-
1000-0000000FF1CE}
O42 - Logiciel: Microsoft Office « Démarrer en un clic » 2010 - (.Microsoft Corporation.) [HKLM][64Bits] --
Office14.Click2Run
O42 - Logiciel: Microsoft Reader - (.Pas de propriétaire.) [HKLM][64Bits] -- {B6F7DBE7-2FE2-458F-A738-B10832746036}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-
B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft VC9 runtime libraries - (.AOL Inc..) [HKLM][64Bits] -- {AA027AE9-DD20-4677-AA72-D760A358320B}
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] --
{B6E3757B-5E77-3915-866A-CCFC4B8D194C}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {071c9b48-7c32-4621
-a0ac-3f809523288f}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {7299052b-02a4-
4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-
493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] --
{EE936C7A-EA40-31D5-9B65-8E3E089C3828}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {350AA351
-21FA-3270-8B7A-835434E766AD}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] --
{8220EEFE-38CD-377E-8595-13398D740ACE}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits]
-- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] --
Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Mozilla Firefox (3.6.15) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox (3.6.15)
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {62bc2d02-3331-4da7-8501-0713eb644a47}
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {0420F95C-11FF-4E02-B967-6CC22B188F9F}
O42 - Logiciel: Nero BackItUp and Burn - (.Nero AG.) [HKLM][64Bits] -- {E08CC458-41FB-4BB5-9B08-2C83DB55A5B9}
O42 - Logiciel: Nero BurnRights - (.Nero AG.) [HKLM][64Bits] -- {397516AE-7DFE-4F90-84E0-BD616D559434}
O42 - Logiciel: Nero BurnRights - (.Nero AG.) [HKLM][64Bits] -- {7829DB6F-A066-4E40-8912-CB07887C20BB}
O42 - Logiciel: Nero BurnRights Help - (.Nero AG.) [HKLM][64Bits] -- {F6BDD7C5-89ED-4569-9318-469AA9732572}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}
O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {6C3CF7AC-5AB0-42D9-93C0-68166A57AFB6}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {51E2F9B3-A972-4F58-B4EF-4D9676D9F5D1}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348B586-C9AE-46CE-936C-A68E9426E214}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM][64Bits] -- {266517E6-D866-439D-919C-B8B1A52E6080}
O42 - Logiciel: OpenSSL 0.9.8e - (.OpenSSL Win32 Installer Team.) [HKLM][64Bits] -- OpenSSL_is1
O42 - Logiciel: Opera 11.00 - (.Opera Software ASA.) [HKLM][64Bits] -- {1EE88B84-7BE5-4FB5-8DEA-B81D5409D62E}
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {205C6BDD-7B73-42DE-
8505-9A093F35A238}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT083958
O42 - Logiciel: Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM][64Bits] --
eu.myphotobook.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1
O42 - Logiciel: Photo Service - powered by myphotobook - (.myphotobook GmbH.) [HKLM][64Bits] -- {9DA0961E-FCFE-EEF2-04AA-
32631F7CEC9E}
O42 - Logiciel: Plants vs. Zombies - (.WildTangent.) [HKLM][64Bits] -- WT083925
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}
O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM][64Bits] -- PokerStars.fr
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT083959
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {E7004147-2CCA-431C-AA05-2AB166B9785D}
O42 - Logiciel: Raptor 3 - (.madmax.) [HKLM][64Bits] -- Raptor_is1
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-
1091A8127911}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.)
[HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Shutter - (.[den4b] Denis Kozlov.) [HKLM][64Bits] -- Shutter_is1
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM][64Bits] -- {981029E0-7FC9-4CF3-AB39-6F133621921A}
O42 - Logiciel: Skype(TM) 4.2 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {D103C4BA-F905-437A-8049-DB24763BBE36}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM] -- {C14518AF-1A0F-4D39-8011-69BAA01CD380}
O42 - Logiciel: TOSHIBA Bulletin Board - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{C14518AF-1A0F-4D39-8011
-69BAA01CD380}
O42 - Logiciel: TOSHIBA ConfigFree - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {607BE7BF-7C28-4ADB-A4A0-385962B901C3}
O42 - Logiciel: TOSHIBA Disc Creator - (.TOSHIBA Corporation.) [HKLM] -- {5DA0E02F-970B-424B-BF41-513A5018E4C0}
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM] -- {F67FA545-D8E5-4209-86B1-AEE045D1003F}
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{F67FA545-D8E5-4209-
86B1-AEE045D1003F}
O42 - Logiciel: TOSHIBA HDD/SSD Alert - (.TOSHIBA Corporation.) [HKLM] -- {D4322448-B6AF-4316-B859-D8A0E84DCB38}
O42 - Logiciel: TOSHIBA HDD/SSD Alert - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{D4322448-B6AF-4316-B859-
D8A0E84DCB38}
O42 - Logiciel: TOSHIBA Hardware Setup - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {8E9CEA3B-EBD1-439C-A01D-830CB39613C6}
O42 - Logiciel: TOSHIBA Media Controller - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {983CD6FE-8320-4B80-A8F6-
0D0366E0AA22}
O42 - Logiciel: TOSHIBA Media Controller Plug-in - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {F26FDF57-483E-42C8-A9C9-
EEE1EDB256E0}
O42 - Logiciel: TOSHIBA Online Product Information - (.TOSHIBA.) [HKLM][64Bits] -- {2290A680-4083-410A-ADCC-7092C67FC052}
O42 - Logiciel: TOSHIBA Recovery Media Creator - (.TOSHIBA Corporation.) [HKLM] -- {B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}
O42 - Logiciel: TOSHIBA Recovery Media Creator Reminder - (.TOSHIBA.) [HKLM][64Bits] -- InstallShield_{773970F1-5EBA-4474
-ADEE-1EA3B0A59492}
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM] -- {A0E99122-25C1-4CA4-9063-499A2A814EB6}
O42 - Logiciel: TOSHIBA ReelTime - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{A0E99122-25C1-4CA4-9063-
499A2A814EB6}
O42 - Logiciel: TOSHIBA Service Station - (.TOSHIBA.) [HKLM][64Bits] -- {AC6569FA-6919-442A-8552-073BE69E247A}
O42 - Logiciel: TOSHIBA Supervisor Password - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {073B89C3-BA88-41B5-965F-
B35A88EAE838}
O42 - Logiciel: TOSHIBA TEMPRO - (.Toshiba Europe GmbH.) [HKLM][64Bits] -- {3A9B3B6D-3C08-4283-AF50-FD82C49DD71E}
O42 - Logiciel: TOSHIBA Value Added Package - (.TOSHIBA Corporation.) [HKLM][64Bits] -- InstallShield_{066CFFF8-12BF-4390
-A673-75F95EFF188E}
O42 - Logiciel: TOSHIBA Web Camera Application - (.TOSHIBA Corporation.) [HKLM][64Bits] -- {5E6F6CF3-BACC-4144-868C-
E14622C658F3}
O42 - Logiciel: TRORMCLauncher - (.Pas de propriétaire.) [HKLM][64Bits] -- InstallShield_{E65C7D8E-186D-484B-BEA8-
DEF0331CE600}
O42 - Logiciel: Toshiba Assist - (.TOSHIBA CORPORATION.) [HKLM][64Bits] -- {1B87C40B-A60B-4EF3-9A68-706CF4B69978}
O42 - Logiciel: Toshiba Manuals - (.TOSHIBA.) [HKLM][64Bits] -- {90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-
7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: VLC media player 1.1.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: WildTangent Games App (Toshiba Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-
0832142C9AA8}.WildTangent Games App-toshiba
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {3175E049-F9A9-4A3D-
8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {76810709-A7D3-468D-9167-
A1780C1E766C}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {9B48B0AC-C813-4174-9042-
476A887592C7}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {445B183D-F4F1-45C8-B9DB-
F11355CA657B}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {230B83A5-7D88-4B95-B71E-
F44C0C78B002}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {4634B21A-CC07-4396-890C-2B8168661FEA}
O42 - Logiciel: Yahoo! Messenger - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Messenger
O42 - Logiciel: Yahoo! Software Update - (.Pas de propriétaire.) [HKLM][64Bits] -- Yahoo! Software Update
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT083890
O42 - Logiciel: eBay - (.eBay Inc..) [HKLM][64Bits] -- {FDE58148-57E7-43BF-879A-29CCE818C078}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {B6EFD9A5-2ECE-4C22-BAEC-D16E73EA2013}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\America Online]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\BitLord]
[HKCU\Software\Borland]
[HKCU\Software\Camfrog]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CodeGear]
[HKCU\Software\DT Soft]
[HKCU\Software\ESET]
[HKCU\Software\Electronic Arts]
[HKCU\Software\FreeDownloadManager.ORG]
[HKCU\Software\GRETECH]
[HKCU\Software\GigaMind]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Opera Software]
[HKCU\Software\PartyFrance]
[HKCU\Software\Patchou]
[HKCU\Software\Policies]
[HKCU\Software\S.A.D]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\Synaptics]
[HKCU\Software\TOSHIBA]
[HKCU\Software\TeamViewer]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WildTangent]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\Audible]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conexant]
[HKLM\Software\Cyberlink]
[HKLM\Software\ESET]
[HKLM\Software\GEAR Software]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Internet Download Manager]
[HKLM\Software\McAfee.com]
[HKLM\Software\McAfee]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\S.A.D]
[HKLM\Software\SOFTWARE]
[HKLM\Software\SiteAdvisor]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\TOSHIBA]
[HKLM\Software\Toshiba Tempro]
[HKLM\Software\Wow6432Node]
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 24/11/2010 - 22:25:18 - [195927] ----D- C:\Program Files\Bonjour
O43 - CFD: 05/01/2011 - 16:28:14 - [89523899] ----D- C:\Program Files\Common Files
O43 - CFD: 07/04/2010 - 12:38:34 - [33828404] ----D- C:\Program Files\CONEXANT
O43 - CFD: 14/07/2009 - 16:35:28 - [90257428] ----D- C:\Program Files\DVD Maker
O43 - CFD: 15/01/2011 - 21:20:18 - [60820624] ----D- C:\Program Files\ESET
O43 - CFD: 24/11/2010 - 12:57:32 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 10/02/2011 - 04:25:20 - [5174937] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 24/11/2010 - 22:27:08 - [1938027] ----D- C:\Program Files\iPod
O43 - CFD: 24/11/2010 - 22:27:32 - [2345448] ----D- C:\Program Files\iTunes
O43 - CFD: 07/04/2010 - 13:07:36 - [148930098] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 14/12/2010 - 18:02:22 - [1584815] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 07/04/2010 - 12:29:10 - [2178436] ----D- C:\Program Files\PlayReady
O43 - CFD: 14/07/2009 - 06:32:40 - [36253865] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 04/01/2011 - 19:23:42 - [63590107] ----D- C:\Program Files\S.A.D
O43 - CFD: 07/04/2010 - 12:44:22 - [31323877] ----D- C:\Program Files\Synaptics
O43 - CFD: 17/08/2010 - 04:06:04 - [421247748] ----D- C:\Program Files\TOSHIBA
O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 14/07/2009 - 16:24:10 - [4039168] ----D- C:\Program Files\Windows Defender
O43 - CFD: 14/07/2009 - 16:35:28 - [9224824] ----D- C:\Program Files\Windows Journal
O43 - CFD: 15/12/2010 - 14:44:18 - [6667264] ----D- C:\Program Files\Windows Mail
O43 - CFD: 25/11/2010 - 12:03:56 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 24/11/2010 - 12:57:32 - [12627124] ----D- C:\Program Files\Windows NT
O43 - CFD: 14/07/2009 - 16:24:10 - [5516568] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:40 - [235008] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 14/07/2009 - 16:24:10 - [8016512] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 24/11/2010 - 22:25:30 - [6246191] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 14/12/2010 - 18:02:22 - [70656267] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 14/07/2009 - 16:24:10 - [12009971] ----D- C:\Program Files\Common Files\System
O43 - CFD: 26/11/2010 - 16:53:46 - [769] ----D- C:\ProgramData\Adobe
O43 - CFD: 13/01/2011 - 04:00:04 - [291499981] ----D- C:\ProgramData\AOL
O43 - CFD: 13/01/2011 - 03:58:58 - [0] ----D- C:\ProgramData\AOL OCP
O43 - CFD: 24/11/2010 - 22:25:08 - [33803264] ----D- C:\ProgramData\Apple
O43 - CFD: 24/11/2010 - 22:27:08 - [67191918] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 17/08/2010 - 03:58:14 - [26038] ----D- C:\ProgramData\Atheros
O43 - CFD: 24/11/2010 - 12:57:32 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 24/11/2010 - 19:07:04 - [287] ----D- C:\ProgramData\Conexant
O43 - CFD: 24/11/2010 - 16:21:02 - [1536] ----D- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 15/01/2011 - 21:20:18 - [82156103] ----D- C:\ProgramData\ESET
O43 - CFD: 24/11/2010 - 12:57:32 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 21/02/2011 - 07:22:38 - [2796] ----D- C:\ProgramData\FreeDownloadManager.ORG
O43 - CFD: 24/11/2010 - 13:04:48 - [9725] ----D- C:\ProgramData\IsolatedStorage
O43 - CFD: 13/01/2011 - 04:00:10 - [49] ----D- C:\ProgramData\Macromedia
O43 - CFD: 17/01/2011 - 05:57:38 - [13762907] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 08/02/2011 - 19:38:32 - [794950] ----D- C:\ProgramData\McAfee
O43 - CFD: 24/11/2010 - 12:57:32 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 25/11/2010 - 20:35:52 - [2197523] ----D- C:\ProgramData\Messenger Plus!
O43 - CFD: 14/12/2010 - 18:03:12 - [2429978891] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 24/11/2010 - 12:57:32 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 07/04/2010 - 12:57:00 - [11473383] ----D- C:\ProgramData\Nero
O43 - CFD: 04/12/2010 - 20:03:12 - [0] ----D- C:\ProgramData\PlayFirst
O43 - CFD: 07/04/2010 - 13:08:02 - [22966758] ----D- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 24/11/2010 - 15:15:10 - [224] ----D- C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 17/08/2010 - 04:04:26 - [6952496] ----D- C:\ProgramData\Toshiba
O43 - CFD: 24/11/2010 - 13:04:48 - [2940] ----D- C:\ProgramData\TOSHIBA Tempro
O43 - CFD: 24/11/2010 - 12:57:54 - [1636] ----D- C:\ProgramData\ToshibaEurope
O43 - CFD: 15/12/2010 - 01:42:32 - [0] ----D- C:\ProgramData\VirtualizedApplications
O43 - CFD: 04/12/2010 - 22:20:28 - [8243615] ----D- C:\ProgramData\Wild Tangent
O43 - CFD: 04/12/2010 - 22:19:50 - [543973006] ----D- C:\ProgramData\WildTangent
O43 - CFD: 25/12/2010 - 22:42:08 - [609047] ----D- C:\ProgramData\Yahoo!
O43 - CFD: 27/01/2011 - 15:52:18 - [6978282] ----D- C:\Users\laruzi\AppData\Roaming\Adobe
O43 - CFD: 27/02/2011 - 17:43:32 - [91688] ----D- C:\Users\laruzi\AppData\Roaming\AIMP
O43 - CFD: 13/01/2011 - 04:11:38 - [495480] ----D- C:\Users\laruzi\AppData\Roaming\AOL
O43 - CFD: 24/11/2010 - 22:28:18 - [263001] ----D- C:\Users\laruzi\AppData\Roaming\Apple Computer
O43 - CFD: 11/12/2010 - 00:52:56 - [565797] ----D- C:\Users\laruzi\AppData\Roaming\Camfrog
O43 - CFD: 24/11/2010 - 19:12:22 - [2426] ----D- C:\Users\laruzi\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 21/02/2011 - 06:15:48 - [0] ----D- C:\Users\laruzi\AppData\Roaming\DMCache
O43 - CFD: 13/03/2011 - 16:42:38 - [13944] ----D- C:\Users\laruzi\AppData\Roaming\Free Download Manager
O43 - CFD: 24/11/2010 - 13:14:38 - [785] ----D- C:\Users\laruzi\AppData\Roaming\GRETECH
O43 - CFD: 24/11/2010 - 13:01:10 - [0] ----D- C:\Users\laruzi\AppData\Roaming\Identities
O43 - CFD: 07/04/2010 - 13:04:06 - [322913] ----D- C:\Users\laruzi\AppData\Roaming\Macromedia
O43 - CFD: 17/01/2011 - 05:58:08 - [27386] ----D- C:\Users\laruzi\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 16:35:06 - [0] ----D- C:\Users\laruzi\AppData\Roaming\Media Center Programs
O43 - CFD: 21/02/2011 - 00:07:54 - [15500059] -S--D- C:\Users\laruzi\AppData\Roaming\Microsoft
O43 - CFD: 21/02/2011 - 06:50:12 - [6550605] ----D- C:\Users\laruzi\AppData\Roaming\Mozilla
O43 - CFD: 20/01/2011 - 13:50:38 - [114000] ----D- C:\Users\laruzi\AppData\Roaming\Mozilla-Cache
O43 - CFD: 24/11/2010 - 14:25:04 - [1926248] ----D- C:\Users\laruzi\AppData\Roaming\Nero
O43 - CFD: 24/11/2010 - 17:20:14 - [2298067] ----D- C:\Users\laruzi\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/11/2010 - 13:08:50 - [256730] ----D- C:\Users\laruzi\AppData\Roaming\Opera
O43 - CFD: 04/12/2010 - 20:03:12 - [73057] ----D- C:\Users\laruzi\AppData\Roaming\PlayFirst
O43 - CFD: 12/03/2011 - 23:31:54 - [2667055] ----D- C:\Users\laruzi\AppData\Roaming\Skype
O43 - CFD: 12/03/2011 - 23:31:02 - [13704] ----D- C:\Users\laruzi\AppData\Roaming\skypePM
O43 - CFD: 11/03/2011 - 01:42:30 - [1308397] ----D- C:\Users\laruzi\AppData\Roaming\SoftGrid Client
O43 - CFD: 10/12/2010 - 18:53:28 - [220124] ----D- C:\Users\laruzi\AppData\Roaming\TeamViewer
O43 - CFD: 24/11/2010 - 13:04:46 - [3238747] ----D- C:\Users\laruzi\AppData\Roaming\Toshiba
O43 - CFD: 14/12/2010 - 18:03:54 - [0] ----D- C:\Users\laruzi\AppData\Roaming\TP
O43 - CFD: 22/02/2011 - 19:56:34 - [1165424] ----D- C:\Users\laruzi\AppData\Roaming\vlc
O43 - CFD: 07/02/2011 - 16:37:12 - [0] ----D- C:\Users\laruzi\AppData\Roaming\WinBatch
O43 - CFD: 24/11/2010 - 16:32:54 - [12] ----D- C:\Users\laruzi\AppData\Roaming\WinRAR
O43 - CFD: 25/12/2010 - 23:11:16 - [516596] ----D- C:\Users\laruzi\AppData\Roaming\Yahoo!
O43 - CFD: 12/02/2011 - 18:48:04 - [57448] ----D- C:\Users\laruzi\AppData\Roaming\YoudaGames
O43 - CFD: 02/02/2011 - 18:16:20 - [27591498] ----D- C:\Program Files (x86)\Acunetix
O43 - CFD: 17/01/2011 - 16:58:24 - [0] ----D- C:\Program Files (x86)\Ad-Remover
O43 - CFD: 27/01/2011 - 15:46:02 - [558177401] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 07/02/2011 - 21:24:02 - [9616125] ----D- C:\Program Files (x86)\AIMP2
O43 - CFD: 13/01/2011 - 03:58:36 - [1660] ----D- C:\Program Files (x86)\AOL
O43 - CFD: 25/01/2011 - 08:46:02 - [68513775] ----D- C:\Program Files (x86)\AOL Desktop 9.6
O43 - CFD: 24/11/2010 - 22:25:44 - [2306366] ----D- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 17/08/2010 - 03:58:06 - [3113563] ----D- C:\Program Files (x86)\Atheros
O43 - CFD: 25/12/2010 - 22:44:06 - [346968] ----D- C:\Program Files (x86)\Bing Bar Installer
O43 - CFD: 24/11/2010 - 13:19:46 - [5417272] ----D- C:\Program Files (x86)\BitLord
O43 - CFD: 24/11/2010 - 22:25:18 - [617151] ----D- C:\Program Files (x86)\Bonjour
O43 - CFD: 24/11/2010 - 13:14:30 - [31706692] ----D- C:\Program Files (x86)\Camfrog
O43 - CFD: 24/11/2010 - 13:16:08 - [8387864] ----D- C:\Program Files (x86)\CamStudio
O43 - CFD: 07/02/2010 - 09:57:44 - [2233887895] ----D- C:\Program Files (x86)\CForce V1.00
O43 - CFD: 08/03/2011 - 18:58:18 - [827412309] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 02/03/2011 - 13:52:20 - [30845923] ----D- C:\Program Files (x86)\ConvertHelper
O43 - CFD: 24/11/2010 - 16:21:44 - [10308220] ----D- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 26/02/2011 - 19:06:24 - [2407144] ----D- C:\Program Files (x86)\DOSBox-0.63
O43 - CFD: 07/04/2010 - 13:07:48 - [220807] ----D- C:\Program Files (x86)\eBay
O43 - CFD: 21/02/2011 - 07:22:52 - [19425522] ----D- C:\Program Files (x86)\Free Download Manager
O43 - CFD: 24/11/2010 - 13:13:52 - [20783