duver

Membres

Afficher le profil Afficher son activité

Compteur de contenus
1
Inscription
le 2 mai 2006
Dernière visite
le 8 mai 2011

duver's Achievements

Junior Member (3/12)

Réputation sur la communauté

Generic BT

duver a posté un sujet dans Analyses et éradication malwares

Bonjour, d'abord generic bt (lsnfier) détecter et supprimer par ad-aware search conduit supprimer avec ad-remove antivir = ras malwarebytes=ras ensuite traces de vundo détectées par zhp diag passage de combo-fix = 50 étapes ok maintenant l'ordi rame, rame....:au démarrage très très long pour arriver au logo vista sur internet UC chargée à 100% = lent, lent, très lent... voilà, voulais me débrouiller tout seul mais là je ne sais plus, voici dernier scan, merci bien. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:49:51, on 06/05/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Safe mode with network support Running processes: C:\Windows\Explorer.EXE C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Windows\system32\wbem\unsecapp.exe C:\Users\fanny\Desktop\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [sAOB Monitor] C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe" O4 - HKLM\..\Run: [service Scheduler2 Acronis] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe" O4 - HKLM\..\RunOnce: [GrpConv] grpconv -o O23 - Service: Service Scheduler2 Acronis (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Service Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\emdmgmt.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Service Google Update (gupdate1c9b88a5ee9810) (gupdate1c9b88a5ee9810) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%Systemroot%\system32\iprip.dll,-200 (iprip) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe O23 - Service: Centre de sécurité (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 17818 bytes Rapport de ZHPDiag v1.27.1847 par Nicolas Coolman, Update du 29/03/2011 Run by fanny at 06/05/2011 20:00:19 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 (Defaut) MFIE: Mozilla Firefox 4.0 v4.0 ---\\ System Information Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002) Processor: x86 Family 15 Model 72 Stepping 2, AuthenticAMD Operating System: 32 Bits Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot) Total RAM: 1917 MB (62% free) System Restore: Activé (Enable) System drive C: has 20 GB (20%) free of 99 GB ---\\ Logged in mode Computer Name: PC-DE-FANNY User Name: fanny All Users Names: moi, fanny, Administrateur, Unselected Option: None Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\fanny\AppData\Roaming %LocalAppData%=C:\Users\fanny\AppData\Local %StartMenu%=C:\Users\fanny\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 20 Go of 99 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 10 Go) E:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK ---\\ Recherche particulière de fichiers génériques [MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 07:27:36.) -- C:\Windows\Explorer.exe [2926592] [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.19/01/2008 08:33:37.) -- C:\Windows\System32\Wininit.exe [96768] [MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.09/04/2011 18:48:14.) -- C:\Windows\System32\wininet.dll [1126912] [MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368] [MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 07:32:26.) -- C:\Windows\System32\drivers\atapi.sys [19944] [MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 07:32:49.) -- C:\Windows\System32\drivers\ntfs.sys [1083880] ---\\ Processus lancés [MD5.B7B58B19709356438130B1F1592C535C] - (.Lavasoft Limited - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [1191216] [MD5.9A2347903D6EDB84C10F288BC0578C1C] - (.Trend Micro Inc. - HijackThis.) -- C:\Users\fanny\Desktop\HiJackThis.exe [388608] [MD5.DAF60E13E96ECB67F0EDAA89C6B01B8D] - (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\NOTEPAD.EXE [151040] [MD5.A1B99C650D1B6FD76DE4B527971D9619] - (.Nicolas Coolman - Analyseur de rapports sécurité.) -- C:\Program Files\ZebHelpProcess\ZHP2.exe [2885120] [MD5.426B27F63FDA2B1F70F5DACD61099015] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZebHelpProcess\ZHPDiag.exe [642048] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M3 - MFPP: Plugins - [fanny] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [fanny] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [fanny] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [fanny] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [fanny] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [fanny] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [fanny] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (.not file.) P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60310.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@neuf/vlc,version=0.8.6.1] - (.VideoLAN Team - Version 0.8.6a, copyright 1996-2006 The VideoLAN Team<br><a href="http.) -- C:\Program Files\Neuf\TV_PC\VLC\npvlc.dll P2 - FPN: [HKLM] [@pack.google.com/Google Updater;version=13] - (.Google - Google Updater plugin<br><a href="http://pack.google.com/">http://pack.) -- C:\Program Files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2105] - (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2571] - (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1739] - (.RealNetworks, Inc. - 6.0.12.1739.) -- C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.53\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.53\npGoogleUpdate3.dll P2 - FPN: [HKLM] [yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Yahoo!\Common\npyaxmpb.dll (.not file.) M2 - MFEP: prefs.js [fanny - i3u82woo.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.) M2 - MFEP: prefs.js [fanny - i3u82woo.default\{872b5b88-9db5-4310-bdd0-ac189557e5f5}] [] DVDVideoSoftTB Community Toolbar v3.3.3.2 (.Conduit Ltd..) M2 - MFEP: prefs.js [fanny - i3u82woo.default\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] [] DVDVideoSoft Menu v3.3.3.2 (.Copyright © 2010 DVDVideoSoft.) ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) G1 - GCS: Preference [user Data\Default] None G0 - GCSP: Preference [user Data\Default][HomePage] Google ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKUS\S-1-5-21-1835710922-88746640-245049138-1000\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Bing R1 - HKUS\S-1-5-21-1835710922-88746640-245049138-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\system32\ieframe.dll R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [sAOB Monitor] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe O4 - HKLM\..\Run: [TrueImageMonitor.exe] . (.Acronis - Acronis True Image Monitor.) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe O4 - HKLM\..\Run: [service Scheduler2 Acronis] . (.Acronis - Acronis Scheduler Helper.) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe O4 - HKLM\..\RunOnce: [GrpConv] Clé orpheline ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\fanny\Desktop\Acronis Online Backup.lnk . (.Acronis.) -- C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\ob_client_standard.exe O4 - Global Startup: C:\Users\fanny\Desktop\Acronis True Image Home 2011.lnk . (.Acronis.) -- C:\Program Files\Acronis\TrueImageHome\TrueImageLauncher.exe O4 - Global Startup: C:\Users\fanny\Desktop\AD-R.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe O4 - Global Startup: C:\Users\fanny\Desktop\AVIConverter.lnk . (...) -- C:\Program Files\AVIConverter\AVIConverter.exe (.not file.) O4 - Global Startup: C:\Users\fanny\Desktop\CyberLink MediaShow.lnk . (.CyberLink Corp..) -- C:\Program Files\CyberLink\MediaShow4\MediaShow.exe O4 - Global Startup: C:\Users\fanny\Desktop\DivX Movies.lnk . (...) -- C:\Users\fanny\Videos\DivX Movies O4 - Global Startup: C:\Users\fanny\Desktop\DVDVideoSoft Free Studio.lnk . (.DVDVideoSoft.com Limited.) -- C:\Program Files\Common Files\DVDVideoSoft\FreeStudioManager.exe O4 - Global Startup: C:\Users\fanny\Desktop\Démarrer AntiVir.lnk . (.Avira GmbH.) -- C:\Program Files\Avira\AntiVir Desktop\avcenter.exe O4 - Global Startup: C:\Users\fanny\Desktop\Editeur KaraFun.lnk . (...) -- C:\Program Files\KaraFun\KaraFun.exe (.not file.) O4 - Global Startup: C:\Users\fanny\Desktop\eToro.lnk . (...) -- C:\Program Files\eToro\AutoUpdater.exe (.not file.) O4 - Global Startup: C:\Users\fanny\Desktop\KaraFun.lnk . (...) -- C:\Program Files\KaraFun\KaraFun.exe (.not file.) O4 - Global Startup: C:\Users\fanny\Desktop\Virtualis.lnk . (.Orbiscom Ltd. All rights reserved..) -- C:\Program Files\Virtualis\CMB.exe O4 - Global Startup: C:\Users\fanny\Desktop\Zattoo.lnk . (...) -- C:\Program Files\Zattoo\Zattoo.exe (.not file.) O4 - Global Startup: C:\Users\fanny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Ad-Aware.lnk . (.Lavasoft Limited.) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe O4 - Global Startup: C:\Users\fanny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Users\fanny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung PC Studio 3.lnk . (...) -- C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe O4 - Global Startup: C:\Users\fanny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Zoner Photo Studio 9.lnk . (.ZONER software.) -- C:\Program Files\Zoner\Photo Studio 9\Program\Zps9.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{E6088C9D-029F-4A50-90B7-0C37068A998B}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CS1\Services\Tcpip\..\{E6088C9D-029F-4A50-90B7-0C37068A998B}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CS3\Services\Tcpip\..\{E6088C9D-029F-4A50-90B7-0C37068A998B}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241 ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (AcrSch2Svc) . (.Acronis - Acronis Scheduler 2.) - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe O23 - Service: (afcdpsrv) . (.Acronis - File Level CDP Manager Service.) - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\system32\Ati2evxx.exe O23 - Service: (DSBrokerService) . (.Pas de propriétaire - Gteko BrkrSvc Application.) - C:\Program Files\DellSupport\brkrsvc.exe O23 - Service: (gupdate1c9b88a5ee9810) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: (IDriverT) . (.Macrovision Corporation - IDriverT Module.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: (Lavasoft Ad-Aware Service) . (.Lavasoft Limited - Ad-Aware Service Application.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: (LVCOMSer) . (.Logitech Inc. - Logitech Video COM Service.) - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: (LVPrcSrv) . (.Logitech Inc. - Logitech LVPrcSrv Module..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: (LVSrvLauncher) . (.Logitech Inc. - LogitechService Launcher.) - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: (PCD5SRVC{FBEA8B78-1B22F121-05040104}) . (.PC-Doctor, Inc. - Kernel Driver.) - C:\PROGRA~1\DELLSU~2\HWDiag\bin\PCD5SRVC.pkms O23 - Service: (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: (RoxMediaDB9) . (.Sonic Solutions - RoxMediaDB9 Module.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: (RoxWatch9) . (.Sonic Solutions - RoxSniffer9 Module.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: (sprtsvc_DellSupportCenter) . (.SupportSoft, Inc. - SupportSoft Agent Service.) - C:\Program Files\Dell Support Center\bin\sprtsvc.exe O23 - Service: (STacSV) . (.SigmaTel, Inc. - STacSV Module.) - C:\Windows\system32\STacSV.exe O23 - Service: (stllssvr) . (.MicroVision Development, Inc. - SureThing Labelflash Disc Printer Service M.) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe O23 - Service: (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\system32\DRIVERS\xaudio.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Ad-Aware Update (Weekly).job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Google Software Updater.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{3F3E7737-E989-46CC-87D4-30CC49476D36}.job ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys ---\\ Logiciels installés (O42) O42 - Logiciel: ATI PCI Express (3GIO) Filter Driver - (.AMD.) [HKLM] -- {E713653C-8312-4BC6-AFC9-ADE1F2F04AB9} O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- Ad-Aware O42 - Logiciel: Ad-Aware - (.Lavasoft.) [HKLM] -- {DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CamMaestro 3.01 DU PC Camera - (.Teconet.) [HKLM] -- InstallShield_{61AC5D41-DFA1-47BF-A6A8-4762FA8FBBDE} O42 - Logiciel: Canon MP Navigator 3.0 - (.Pas de propriétaire.) [HKLM] -- MP Navigator 3.0 O42 - Logiciel: Canon MP160 - (.Pas de propriétaire.) [HKLM] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP160 O42 - Logiciel: Canon Utilities Easy-PhotoPrint - (.Pas de propriétaire.) [HKLM] -- Easy-PhotoPrint O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM] -- InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB} O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM] -- {80E158EA-7181-40FE-A701-301CE6BE64AB} O42 - Logiciel: Enregistrement utilisateur de Canon MP160 - (.Pas de propriétaire.) [HKLM] -- Enregistrement utilisateur de Canon MP160 O42 - Logiciel: Gestionnaire de contacts professionnels pour Outlook 2007 SP2 - (.Microsoft Corporation.) [HKLM] -- Business Contact Manager O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROR_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROR_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Small Business Connectivity Components - (.Microsoft Corporation.) [HKLM] -- {A939D341-5A04-4E0A-BB55-3E65B386432D} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 - (.Microsoft Corporation.) [HKLM] -- Microsoft SQL Server 2005 O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) - (.Microsoft Corporation.) [HKLM] -- {480DBB60-F0B6-45F2-B26F-1A2E11197791} O42 - Logiciel: Microsoft SQL Server Native Client - (.Microsoft Corporation.) [HKLM] -- {1E2DA2E2-ABCD-461E-AD01-3D85D61DE5F6} O42 - Logiciel: Microsoft SQL Server VSS Writer - (.Microsoft Corporation.) [HKLM] -- {E91E7BCC-C5CD-465A-BB29-AD1EA07F283D} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {a0fe116e-9a8a-466f-aee0-625cb7c207e3} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C} O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: Mozilla Firefox 4.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 4.0 (x86 fr) O42 - Logiciel: NetWaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF} O42 - Logiciel: OGA Notifier 2.0.0048.0 - (.Microsoft Corporation.) [HKLM] -- {B2544A03-10D0-4E5E-BA69-0362FFC20D18} O42 - Logiciel: OpenOffice.org 2.2 - (.OpenOffice.org.) [HKLM] -- {BF516A44-48E3-4319-BBF6-B4B66E9F76FA} O42 - Logiciel: Orange Preload - (.Orange.) [HKLM] -- {38496EC2-78B7-412A-9398-FC6B7DB8E182} O42 - Logiciel: Outil de diagnostic de modem - (.Dell.) [HKLM] -- {F63A3748-B93D-4360-9AD4-B064481A5C7B} O42 - Logiciel: OutlookAddinSetup - (.CyberLink.) [HKLM] -- {9BDEF074-020E-458D-ADC5-8FF68E0C9B56} O42 - Logiciel: PC Camera - (.Nom de votre société.) [HKLM] -- InstallShield_{02BD1C19-5946-4420-BAE3-F742686B3D43} O42 - Logiciel: Programme de gestion Camera de Logitech® - (.Pas de propriétaire.) [HKLM] -- QcDrv O42 - Logiciel: QuickSet - (.Dell Inc..) [HKLM] -- {7F0C4457-8E64-491B-8D7B-991504365D1E} O42 - Logiciel: Roxio Creator BDAV Plugin - (.Roxio.) [HKLM] -- {880AF49C-34F7-4285-A8AD-8F7A3D1C33DC} O42 - Logiciel: Roxio Creator Copy - (.Roxio.) [HKLM] -- {619CDD8A-14B6-43a1-AB6C-0F4EE48CE048} O42 - Logiciel: Roxio Creator DE - (.Roxio.) [HKLM] -- {C8B0680B-CDAE-4809-9F91-387B6DE00F7C} O42 - Logiciel: Roxio Creator Data - (.Roxio.) [HKLM] -- {0D397393-9B50-4c52-84D5-77E344289F87} O42 - Logiciel: Roxio Creator Tools - (.Roxio.) [HKLM] -- {0394CDC8-FABD-4ed8-B104-03393876DFDF} O42 - Logiciel: Roxio Express Labeler - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} O42 - Logiciel: Roxio MyDVD DE - (.Roxio, Inc..) [HKLM] -- {D639085F-4B6E-4105-9F37-A0DBB023E2FB} O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E} O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile Modem O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0 O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem O42 - Logiciel: Samsung Mobile phone USB driver Software - (.Pas de propriétaire.) [HKLM] -- Samsung Mobile phone USB driver O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM] -- {C4A4722E-79F9-417C-BD72-8D359A090C97} O42 - Logiciel: ScanSoft OmniPage SE 4.0 - (.Nuance Communications, Inc..) [HKLM] -- {C1E693A4-B1D5-4DCD-B68D-2087835B7184} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{5C497F0B-2061-4CC9-A61C-6B45B867354D} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{CD769337-C8AC-46DB-A7DC-643E50089263} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{536FB502-775F-4494-BACE-C02CC90B7A5B} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2466156) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{CEF209AB-F96D-404F-B5CC-44057C057CA3} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{AD0DE453-0804-4495-9C91-33D0F9AA5463} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473 O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708 O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2464583) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{151E2FEA-C3A6-4CB6-BE6B-16651FDF04BE} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2464594) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{E6B7C11E-21E9-4BA0-9677-29AD603B953C} O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{3A4CDE54-2403-483D-8D9A-15E3264410DF} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA} O42 - Logiciel: Sibelius Scorch (ActiveX Only) - (.Sibelius Software.) [HKLM] -- {15CCBC5D-66A7-4131-8D36-E05F27B0E68F} O42 - Logiciel: SigmaTel Audio - (.SigmaTel.) [HKLM] -- {A462213D-EED4-42C2-9A60-7BDD4D4B0B17} O42 - Logiciel: Skype web features - (.Skype Technologies S.A..) [HKLM] -- {541DEAC0-5F3D-45E6-B7CB-94ECF3B96748} O42 - Logiciel: Skype™ 4.1 - (.Skype Technologies S.A..) [HKLM] -- {D103C4BA-F905-437A-8049-DB24763BBE36} O42 - Logiciel: Sonic Activation Module - (.Sonic Solutions.) [HKLM] -- {35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0} O42 - Logiciel: TV sur PC - (.Neuf.) [HKLM] -- Neuf_TV_PC O42 - Logiciel: URL Assistant - (.Pas de propriétaire.) [HKLM] -- {3EE33958-7381-4E7B-A4F3-6E43098E9E9C} O42 - Logiciel: Uninstall 1.0.0.1 - (.Pas de propriétaire.) [HKLM] -- Uninstall_is1 O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2412171) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{752A0B7C-BD24-4362-AC86-AB63FEE6F46F} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2522999) - (.Microsoft.) [HKLM] -- {91120000-0014-0000-0000-0000000FF1CE}_PROR_{CC8A81F7-5A36-4DE9-ABB3-5499132062C5} O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421} O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM] -- VLC media player O42 - Logiciel: Version d'évaluation de Microsoft Office Professional 2007 - (.Microsoft Corporation.) [HKLM] -- PROR O42 - Logiciel: Virtualis Crédit Mutuel - (.Pas de propriétaire.) [HKLM] -- Virtualis Crédit Mutuel O42 - Logiciel: Vista Codec Package - (..) [HKLM] -- {F9FD80CE-0448-4D4F-8BCD-77FC514C3F99} O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27} O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01 O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066} O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {F53D678E-238F-4A71-9742-08BB6774E9DC} O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {FCFBA290-CB48-4AF1-A241-2685AEDEDD66} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA} O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {61AD15B2-50DB-4686-A739-14FE180D4429} O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917} O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {AF844339-2F8A-4593-81B3-9F4C54038C4E} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9D56775A-93F3-44A3-8092-840E3826DE30} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C} O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {841F1FB4-FDF8-461C-A496-3E1CFD84C0B5} O42 - Logiciel: Windows Live Mesh - (.Microsoft Corporation.) [HKLM] -- {DECDCB7C-58CC-4865-91AF-627F9798FE48} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90} O42 - Logiciel: Windows Live Messenger Companion Core - (.Microsoft Corporation.) [HKLM] -- {78A96B4C-A643-4D0F-98C2-A8E16A6669F9} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3} O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {92EA4134-10D1-418A-91E1-5A0453131A38} O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3} O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70} O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1} O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {19A4A990-5343-4FF7-B3B5-6F046C091EDF} O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C} O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0} O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {AB93C51F-71F9-4A28-8134-FE1B5B9373E9} O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4} O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F} O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2} O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {3B9A92DA-6374-4872-B646-253F18624D5F} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {A726AE06-AAA3-43D1-87E3-70F510314F04} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF} O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194} O42 - Logiciel: Yahoo! Install Manager - (.Pas de propriétaire.) [HKLM] -- YInstHelper O42 - Logiciel: ZebHelpProcess 2.47 - (.Nicolas Coolman.) [HKLM] -- Zeb Help Process_is1 O42 - Logiciel: Zoner Photo Studio 9 - (.ZONER software.) [HKLM] -- Zoner Photo Studio 9_is1 O42 - Logiciel: bourse - (.Pas de propriétaire.) [HKLM] -- ST6UNST #1 O42 - Logiciel: ccc-Branding - (.ATI.) [HKLM] -- {4F5A53E6-3CBE-44D7-91AD-2E535348484F} ---\\ HKCU & HKLM Software Keys [HKCU\Software\?? ?? ???? ????? ??? ?? ????] [HKCU\Software\AC3Filter] [HKCU\Software\ATI Technologies Inc.] [HKCU\Software\ATI] [HKCU\Software\Acronis] [HKCU\Software\Ad-Remover] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Aurigma] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Yahoo] [HKCU\Software\AppDataLow\Software\iGraal] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Applications] [HKCU\Software\Avira] [HKCU\Software\Borland] [HKCU\Software\Broadcom] [HKCU\Software\Bugsplat] [HKCU\Software\Canon] [HKCU\Software\Casino Las Vegas] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CoreVorbis] [HKCU\Software\Cyberlink] [HKCU\Software\DELL] [HKCU\Software\Dell Computer Corporation] [HKCU\Software\DivXNetworks] [HKCU\Software\GNU] [HKCU\Software\GTek] [HKCU\Software\Gabest] [HKCU\Software\Google] [HKCU\Software\H+BEDV] [HKCU\Software\Haali] [HKCU\Software\IM Providers] [HKCU\Software\InstallShield] [HKCU\Software\JavaSoft] [HKCU\Software\Lavasoft] [HKCU\Software\Licenses] [HKCU\Software\Logitech] [HKCU\Software\Macrium] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Nero] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\RECISIO] [HKCU\Software\RealNetworks] [HKCU\Software\Roxio] [HKCU\Software\Samsung PC Studio] [HKCU\Software\Samsung] [HKCU\Software\ScanSoft] [HKCU\Software\Skype] [HKCU\Software\Sonic Solutions] [HKCU\Software\Sonic] [HKCU\Software\SupportSoft] [HKCU\Software\Synaptics] [HKCU\Software\Sysinternals] [HKCU\Software\Trolltech] [HKCU\Software\Veoh] [HKCU\Software\WinRAR SFX] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Yahoo] [HKCU\Software\ZONER] [HKCU\Software\Zattoo Inc.] [HKCU\Software\cybelsoft] [HKCU\Software\eMule] [HKCU\Software\etoro] [HKCU\Software\keyhole.com] [HKLM\Software\685D6D1C-D73A-4F37-B7E5E53660311DDB] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\Acronis] [HKLM\Software\Adobe] [HKLM\Software\America Online] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\ArcSoft] [HKLM\Software\Avira] [HKLM\Software\BAE] [HKLM\Software\BVRP Software, Inc] [HKLM\Software\Borland] [HKLM\Software\Broadcom] [HKLM\Software\BrowserChoice] [HKLM\Software\CA561B] [HKLM\Software\CDDB] [HKLM\Software\CXT] [HKLM\Software\Canon] [HKLM\Software\Casino Las Vegas] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Conexant Systems Inc ] [HKLM\Software\Conexant] [HKLM\Software\CyberLink] [HKLM\Software\Cygnus Solutions] [HKLM\Software\Debug] [HKLM\Software\Dell Computer Corporation] [HKLM\Software\Dell Computer] [HKLM\Software\Dell] [HKLM\Software\DivXNetworks] [HKLM\Software\DivX] [HKLM\Software\GNU] [HKLM\Software\GTek] [HKLM\Software\Google] [HKLM\Software\HaaliMkx] [HKLM\Software\Hewlett-Packard] [HKLM\Software\InstallShield] [HKLM\Software\InstalledOptions] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Lavasoft] [HKLM\Software\Logitech] [HKLM\Software\MCCI] [HKLM\Software\Macrium] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\McAfee.com] [HKLM\Software\MicroVision] [HKLM\Software\MimarSinan] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\Nero] [HKLM\Software\Neuf] [HKLM\Software\ODBC] [HKLM\Software\OpenOffice.org] [HKLM\Software\PC-Doctor] [HKLM\Software\PTECH] [HKLM\Software\Piriform] [HKLM\Software\PixArt] [HKLM\Software\Policies] [HKLM\Software\RECISIO] [HKLM\Software\RealNetworks] [HKLM\Software\RegisteredApplications] [HKLM\Software\Roxio] [HKLM\Software\S3R521] [HKLM\Software\Safer Networking Limited] [HKLM\Software\Samsung Electronics Co., Ltd.] [HKLM\Software\Samsung] [HKLM\Software\ScanSoft] [HKLM\Software\SigmaTel] [HKLM\Software\Skype] [HKLM\Software\Sonic] [HKLM\Software\Sun Microsystems] [HKLM\Software\SupportSoft] [HKLM\Software\Synaptics] [HKLM\Software\TrendMicro] [HKLM\Software\VideoLAN] [HKLM\Software\Volatile] [HKLM\Software\X-AVCSD] [HKLM\Software\Yahoo] [HKLM\Software\ZONER] [HKLM\Software\ZSMC] [HKLM\Software\etoro] [HKLM\Software\illiminable] [HKLM\Software\mozilla.org] [HKLM\Software\swearware] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 16/05/2010 - 23:21:40 - [41761536] ----D- C:\Program Files\a-squared Free O43 - CFD: 23/04/2011 - 21:07:02 - [131550355] ----D- C:\Program Files\Acronis O43 - CFD: 18/04/2011 - 20:34:58 - [569230481] ----D- C:\Program Files\Ad-Remover O43 - CFD: 28/08/2007 - 14:32:16 - [250314716] ----D- C:\Program Files\Adobe O43 - CFD: 28/08/2007 - 14:29:56 - [2934159] ----D- C:\Program Files\AMD O43 - CFD: 30/01/2010 - 19:41:00 - [619975211] ----D- C:\Program Files\ArcSoft O43 - CFD: 28/08/2007 - 14:26:16 - [171294738] ----D- C:\Program Files\ATI Technologies O43 - CFD: 06/09/2009 - 17:16:26 - [172928984] ----D- C:\Program Files\Avira O43 - CFD: 17/04/2011 - 20:24:44 - [0] ----D- C:\Program Files\BAE O43 - CFD: 08/08/2010 - 13:41:26 - [3363163] ----D- C:\Program Files\Broadcom O43 - CFD: 30/01/2010 - 19:26:48 - [69632] ----D- C:\Program Files\CamMaestro 3.01 DU PC Camera O43 - CFD: 01/09/2007 - 18:53:02 - [59524846] ----D- C:\Program Files\Canon O43 - CFD: 01/09/2007 - 18:41:44 - [23588031] --H-D- C:\Program Files\CanonBJ O43 - CFD: 28/04/2011 - 16:16:38 - [3704864] ----D- C:\Program Files\CCleaner O43 - CFD: 03/05/2011 - 20:52:20 - [1222996246] ----D- C:\Program Files\Common Files O43 - CFD: 24/12/2009 - 01:54:34 - [321900320] ----D- C:\Program Files\CyberLink O43 - CFD: 28/08/2007 - 14:46:28 - [5415946] ----D- C:\Program Files\Dell O43 - CFD: 08/08/2010 - 14:13:46 - [89447841] ----D- C:\Program Files\Dell Support Center O43 - CFD: 28/08/2007 - 14:42:52 - [14580388] ----D- C:\Program Files\DellSupport O43 - CFD: 30/04/2011 - 20:29:18 - [960890] ----D- C:\Program Files\DivX O43 - CFD: 16/04/2011 - 20:54:48 - [153088] ----D- C:\Program Files\DVDVideoSoft O43 - CFD: 31/08/2007 - 12:09:40 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 30/04/2011 - 20:30:14 - [122260095] ----D- C:\Program Files\Google O43 - CFD: 30/01/2010 - 19:40:56 - [35856686] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 09/04/2011 - 19:52:02 - [5286276] ----D- C:\Program Files\Internet Explorer O43 - CFD: 26/02/2011 - 12:21:02 - [169860517] ----D- C:\Program Files\Java O43 - CFD: 27/04/2011 - 20:32:28 - [98786984] ----D- C:\Program Files\Lavasoft O43 - CFD: 21/12/2009 - 23:31:48 - [11919530] ----D- C:\Program Files\Logitech O43 - CFD: 01/05/2011 - 19:29:58 - [0] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 26/03/2011 - 20:58:58 - [21237210] ----D- C:\Program Files\Microsoft O43 - CFD: 03/09/2007 - 20:24:04 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 02/11/2006 - 14:37:36 - [93446071] ----D- C:\Program Files\Microsoft Games O43 - CFD: 03/01/2008 - 21:06:06 - [12167250] ----D- C:\Program Files\Microsoft IntelliPoint O43 - CFD: 06/03/2009 - 14:11:16 - [563733761] ----D- C:\Program Files\Microsoft Office O43 - CFD: 22/04/2011 - 20:26:48 - [38388859] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 06/03/2009 - 14:11:44 - [32287421] ----D- C:\Program Files\Microsoft Small Business O43 - CFD: 09/04/2011 - 19:18:32 - [243974700] ----D- C:\Program Files\Microsoft SQL Server O43 - CFD: 16/09/2009 - 00:26:12 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 06/03/2009 - 13:58:34 - [14904] ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD: 16/10/2009 - 00:24:54 - [151889282] ----D- C:\Program Files\Microsoft Works O43 - CFD: 27/06/2010 - 23:44:22 - [9707749] ----D- C:\Program Files\Microsoft.NET O43 - CFD: 28/08/2007 - 14:21:56 - [728224] ----D- C:\Program Files\Modem Diagnostic Tool O43 - CFD: 11/08/2010 - 21:23:42 - [99342446] ----D- C:\Program Files\Movie Maker O43 - CFD: 27/03/2011 - 11:30:34 - [33468605] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 02/11/2006 - 14:37:36 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 28/08/2007 - 14:21:08 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 21/04/2011 - 21:09:24 - [0] ----D- C:\Program Files\Nero O43 - CFD: 28/08/2007 - 14:22:32 - [4862283] ----D- C:\Program Files\NetWaiting O43 - CFD: 08/10/2007 - 20:03:34 - [43890947] ----D- C:\Program Files\Neuf O43 - CFD: 01/09/2007 - 17:06:34 - [289491109] ----D- C:\Program Files\OpenOffice.org 2.2 O43 - CFD: 01/09/2007 - 17:04:08 - [119706485] ---AD- C:\Program Files\OpenOffice.org 2.2 Installation Files O43 - CFD: 01/10/2007 - 19:32:58 - [69632] ----D- C:\Program Files\PC Camera O43 - CFD: 02/11/2006 - 14:37:36 - [38694657] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 28/08/2007 - 14:36:50 - [201894235] ----D- C:\Program Files\Roxio O43 - CFD: 20/09/2008 - 17:54:08 - [137930964] ----D- C:\Program Files\Samsung O43 - CFD: 01/09/2007 - 18:48:36 - [114234930] ----D- C:\Program Files\ScanSoft O43 - CFD: 20/05/2009 - 23:02:54 - [13170128] ----D- C:\Program Files\Sibelius Software O43 - CFD: 28/08/2007 - 14:26:20 - [24278556] ----D- C:\Program Files\SigmaTel O43 - CFD: 05/09/2009 - 10:24:20 - [35941453] R---D- C:\Program Files\Skype O43 - CFD: 22/04/2011 - 20:26:48 - [2884779] ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD: 28/08/2007 - 22:03:38 - [18028385] ----D- C:\Program Files\Synaptics O43 - CFD: 02/11/2006 - 15:01:56 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 23/04/2008 - 21:51:48 - [78880911] ----D- C:\Program Files\VideoLAN O43 - CFD: 21/01/2009 - 11:30:14 - [317270] ----D- C:\Program Files\Virtualis O43 - CFD: 16/11/2007 - 00:35:14 - [68427360] ----D- C:\Program Files\VistaCodecPack O43 - CFD: 27/03/2011 - 20:06:32 - [827627751] ----D- C:\Program Files\Windows AIK O43 - CFD: 06/09/2009 - 13:14:52 - [1016832] ----D- C:\Program Files\Windows Calendar O43 - CFD: 06/09/2009 - 13:14:50 - [2737152] ----D- C:\Program Files\Windows Collaboration O43 - CFD: 06/09/2009 - 13:14:34 - [4490624] ----D- C:\Program Files\Windows Defender O43 - CFD: 27/03/2011 - 20:06:22 - [449684] ----D- C:\Program Files\Windows Imaging O43 - CFD: 06/09/2009 - 13:14:48 - [7084664] ----D- C:\Program Files\Windows Journal O43 - CFD: 16/04/2011 - 20:53:14 - [184118052] ----D- C:\Program Files\Windows Live O43 - CFD: 16/09/2009 - 00:29:32 - [1084828] ----D- C:\Program Files\Windows Live Toolbar O43 - CFD: 16/04/2011 - 10:22:46 - [9116344] ----D- C:\Program Files\Windows Mail O43 - CFD: 15/10/2010 - 13:22:18 - [4498121] ----D- C:\Program Files\Windows Media Player O43 - CFD: 31/08/2007 - 12:09:40 - [7957544] ----D- C:\Program Files\Windows NT O43 - CFD: 06/09/2009 - 13:14:44 - [13528738] ----D- C:\Program Files\Windows Photo Gallery O43 - CFD: 17/11/2009 - 19:21:52 - [134144] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 06/09/2009 - 13:14:50 - [6527558] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 06/05/2011 - 20:01:08 - [105490514] ----D- C:\Program Files\ZebHelpProcess O43 - CFD: 02/04/2008 - 16:21:10 - [109303105] ----D- C:\Program Files\Zoner O43 - CFD: 23/04/2011 - 21:15:52 - [108961432] ----D- C:\Program Files\Common Files\Acronis O43 - CFD: 26/12/2007 - 22:08:02 - [295584] ----D- C:\Program Files\Common Files\Adobe O43 - CFD: 30/01/2010 - 19:43:50 - [5083378] ----D- C:\Program Files\Common Files\ArcSoft O43 - CFD: 16/04/2011 - 18:25:52 - [7675824] ----D- C:\Program Files\Common Files\Borland Shared O43 - CFD: 06/03/2009 - 13:58:34 - [92976] ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD: 31/08/2010 - 19:57:56 - [32285916] ----D- C:\Program Files\Common Files\DVDVideoSoft O43 - CFD: 28/08/2007 - 14:35:14 - [18088386] ----D- C:\Program Files\Common Files\InstallShield O43 - CFD: 26/02/2011 - 12:23:18 - [32864065] ----D- C:\Program Files\Common Files\Java O43 - CFD: 11/04/2008 - 21:43:00 - [72290833] ----D- C:\Program Files\Common Files\LogiShrd O43 - CFD: 12/11/2010 - 21:17:44 - [457514393] ----D- C:\Program Files\Common Files\microsoft shared O43 - CFD: 30/01/2010 - 19:26:46 - [1210824] ----D- C:\Program Files\Common Files\PCCamera O43 - CFD: 30/04/2011 - 20:20:18 - [459184] ----D- C:\Program Files\Common Files\PX Storage Engine O43 - CFD: 28/08/2007 - 14:33:52 - [150107061] ----D- C:\Program Files\Common Files\Roxio Shared O43 - CFD: 01/09/2007 - 18:49:16 - [185896] ----D- C:\Program Files\Common Files\ScanSoft Shared O43 - CFD: 02/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 05/09/2009 - 10:23:46 - [1959208] ----D- C:\Program Files\Common Files\Skype O43 - CFD: 28/08/2007 - 14:36:30 - [8009264] ----D- C:\Program Files\Common Files\Sonic Shared O43 - CFD: 02/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 08/08/2010 - 14:13:04 - [7466215] ----D- C:\Program Files\Common Files\supportsoft O43 - CFD: 28/08/2007 - 14:34:22 - [595968] ----D- C:\Program Files\Common Files\SureThing Shared O43 - CFD: 12/11/2010 - 21:22:48 - [47591343] ----D- C:\Program Files\Common Files\System O43 - CFD: 16/09/2009 - 00:19:30 - [229154059] ----D- C:\Program Files\Common Files\Windows Live O43 - CFD: 24/04/2011 - 16:54:10 - [22113] ----D- C:\ProgramData\Acronis O43 - CFD: 26/12/2007 - 22:07:58 - [1026] ----D- C:\ProgramData\Adobe O43 - CFD: 16/11/2007 - 00:35:12 - [4527] ----D- C:\ProgramData\Apple Computer O43 - CFD: 31/08/2007 - 12:09:40 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 06/09/2009 - 17:16:26 - [1734599] ----D- C:\ProgramData\Avira O43 - CFD: 31/08/2007 - 12:09:40 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 01/09/2007 - 18:44:38 - [16794973] --H-D- C:\ProgramData\CanonBJ O43 - CFD: 30/04/2011 - 20:39:02 - [6299] ----D- C:\ProgramData\CyberLink O43 - CFD: 08/08/2010 - 14:16:10 - [33271079] ----D- C:\ProgramData\Dell O43 - CFD: 30/04/2011 - 20:20:22 - [1254226] ----D- C:\ProgramData\DivX O43 - CFD: 31/08/2007 - 12:09:40 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 08/10/2007 - 22:05:06 - [0] ----D- C:\ProgramData\eMule O43 - CFD: 31/08/2007 - 12:09:40 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 30/04/2011 - 20:30:14 - [509552] ----D- C:\ProgramData\Google O43 - CFD: 05/05/2011 - 20:36:46 - [13766] ----D- C:\ProgramData\Google Updater O43 - CFD: 28/08/2007 - 14:42:48 - [32] ----D- C:\ProgramData\Gtek O43 - CFD: 28/08/2007 - 14:34:18 - [7735] ----D- C:\ProgramData\InstallShield O43 - CFD: 27/04/2011 - 20:32:28 - [358282217] ----D- C:\ProgramData\Lavasoft O43 - CFD: 11/04/2008 - 21:32:52 - [4089938] ----D- C:\ProgramData\LogiShrd O43 - CFD: 11/04/2008 - 21:32:52 - [5660586] ----D- C:\ProgramData\Logitech O43 - CFD: 17/03/2011 - 21:24:22 - [63296] ----D- C:\ProgramData\Macrium O43 - CFD: 08/08/2010 - 15:27:26 - [7734876] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 16/08/2010 - 15:32:38 - [136202] ----D- C:\ProgramData\McAfee O43 - CFD: 16/08/2010 - 15:32:40 - [829] ----D- C:\ProgramData\McAfee Security Scan O43 - CFD: 31/08/2007 - 12:09:40 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 22/03/2011 - 21:54:44 - [429705216] -S--D- C:\ProgramData\Microsoft O43 - CFD: 25/04/2011 - 19:59:32 - [62836] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 31/08/2007 - 12:09:40 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 27/03/2011 - 12:27:36 - [1092944] ----D- C:\ProgramData\Nero O43 - CFD: 05/12/2009 - 12:36:08 - [1116] ----D- C:\ProgramData\Office Genuine Advantage O43 - CFD: 08/08/2010 - 14:14:26 - [1235] ----D- C:\ProgramData\PC-Doctor O43 - CFD: 08/08/2010 - 14:14:26 - [0] ----D- C:\ProgramData\PCDr O43 - CFD: 22/12/2007 - 18:58:32 - [13579] ----D- C:\ProgramData\Recisio O43 - CFD: 28/08/2007 - 14:49:34 - [16896730] ----D- C:\ProgramData\Roxio O43 - CFD: 01/09/2007 - 18:49:20 - [123762] ----D- C:\ProgramData\ScanSoft O43 - CFD: 05/09/2009 - 10:23:28 - [47128260] ----D- C:\ProgramData\Skype O43 - CFD: 28/08/2007 - 14:33:58 - [1284] ----D- C:\ProgramData\Sonic O43 - CFD: 21/04/2011 - 21:26:46 - [7204] ----D- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 13/05/2010 - 11:16:24 - [224] ----D- C:\ProgramData\Sun O43 - CFD: 08/08/2010 - 14:14:50 - [11786133] ----D- C:\ProgramData\SupportSoft O43 - CFD: 24/12/2009 - 01:52:38 - [36864] ----D- C:\ProgramData\Temp O43 - CFD: 07/09/2008 - 19:35:42 - [99483] ----D- C:\ProgramData\Yahoo! Companion O43 - CFD: 24/04/2011 - 10:43:18 - [0] ----D- C:\Users\fanny\AppData\Roaming\Acronis O43 - CFD: 21/02/2008 - 16:34:00 - [199599] ----D- C:\Users\fanny\AppData\Roaming\Adobe O43 - CFD: 13/03/2011 - 21:12:12 - [0] ----D- C:\Users\fanny\AppData\Roaming\ATI O43 - CFD: 04/03/2011 - 20:59:24 - [0] ----D- C:\Users\fanny\AppData\Roaming\Avira O43 - CFD: 24/12/2009 - 02:01:52 - [0] ----D- C:\Users\fanny\AppData\Roaming\CyberLink O43 - CFD: 04/06/2010 - 01:04:02 - [125952] ----D- C:\Users\fanny\AppData\Roaming\DivX O43 - CFD: 07/05/2010 - 16:54:44 - [267] ----D- C:\Users\fanny\AppData\Roaming\DVDVideoSoftIEHelpers O43 - CFD: 24/03/2008 - 00:04:50 - [0] ----D- C:\Users\fanny\AppData\Roaming\Google O43 - CFD: 01/09/2007 - 11:06:54 - [2115915] --H-D- C:\Users\fanny\AppData\Roaming\GTek O43 - CFD: 31/08/2007 - 12:11:50 - [0] ----D- C:\Users\fanny\AppData\Roaming\Identities O43 - CFD: 30/04/2011 - 20:36:24 - [0] ----D- C:\Users\fanny\AppData\Roaming\InstallShield O43 - CFD: 01/09/2007 - 11:21:58 - [606] ----D- C:\Users\fanny\AppData\Roaming\Macromedia O43 - CFD: 08/08/2010 - 15:27:42 - [336278] ----D- C:\Users\fanny\AppData\Roaming\Malwarebytes O43 - CFD: 02/11/2006 - 14:37:36 - [0] ----D- C:\Users\fanny\AppData\Roaming\Media Center Programs O43 - CFD: 29/03/2011 - 20:21:56 - [4211727] -S--D- C:\Users\fanny\AppData\Roaming\Microsoft O43 - CFD: 08/08/2010 - 13:04:34 - [16584258] ----D- C:\Users\fanny\AppData\Roaming\Mozilla O43 - CFD: 27/03/2011 - 13:23:38 - [124334] ----D- C:\Users\fanny\AppData\Roaming\Nero O43 - CFD: 01/05/2011 - 20:29:56 - [2361450] ----D- C:\Users\fanny\AppData\Roaming\OpenOffice.org2 O43 - CFD: 31/08/2007 - 19:13:44 - [1057374] ----D- C:\Users\fanny\AppData\Roaming\Roxio O43 - CFD: 20/09/2008 - 17:55:40 - [209022] ----D- C:\Users\fanny\AppData\Roaming\Samsung O43 - CFD: 01/09/2007 - 18:49:22 - [0] ----D- C:\Users\fanny\AppData\Roaming\ScanSoft O43 - CFD: 05/09/2009 - 10:25:18 - [482] ----D- C:\Users\fanny\AppData\Roaming\Skype O43 - CFD: 20/10/2010 - 01:25:52 - [77273] ----D- C:\Users\fanny\AppData\Roaming\vlc O43 - CFD: 28/02/2008 - 18:46:04 - [0] ----D- C:\Users\fanny\AppData\Roaming\WinRAR O43 - CFD: 21/07/2008 - 14:28:40 - [2820137] ----D- C:\Users\fanny\AppData\Roaming\Zoner ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.24EF120054893E7700FCFD7FF8EF1200] - 06/05/2011 - 18:55:35 ---A- . (...) -- C:\PDOXUSRS.NET [13030] O44 - LFC:[MD5.79EA974FB9DB86B518FDAD88A0FF9363] - 06/05/2011 - 18:07:52 ---A- . (...) -- C:\Windows\ntbtlog.txt [66100] O44 - LFC:[MD5.5AFC3471E0573FD13F455B4D43FC2315] - 06/05/2011 - 18:06:19 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.CC9CB765ED6ED3F637808FB6065E71CF] - 06/05/2011 - 18:04:55 ---A- . (...) -- C:\aaw7boot.log [157167] O44 - LFC:[MD5.91FD0357BD635C124E720BBD2799CBC2] - 05/05/2011 - 21:41:45 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [3696] O44 - LFC:[MD5.91FD0357BD635C124E720BBD2799CBC2] - 05/05/2011 - 21:41:44 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [3696] O44 - LFC:[MD5.F056E83FDD52D639485547C125537664] - 05/05/2011 - 21:41:22 ---A- . (...) -- C:\Windows\WindowsUpdate.log [44488] O44 - LFC:[MD5.BC2C55C093A18575BE9E23A9ABEE1AEE] - 05/05/2011 - 20:14:16 ---A- . (...) -- C:\Windows\System32\perfc009.dat [122436] O44 - LFC:[MD5.1DF9C2CFD2795B05E403833BB7391D22] - 05/05/2011 - 20:14:16 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [150346] O44 - LFC:[MD5.B156D7D7961847589D0CC2D17F7FB740] - 05/05/2011 - 20:14:16 ---A- . (...) -- C:\Windows\System32\perfh009.dat [645608] O44 - LFC:[MD5.31D89B96387F24039E3DECEAF9CF5FEE] - 05/05/2011 - 20:14:16 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [736284] O44 - LFC:[MD5.0C8AE8D1FAA3513EBDEF4C4286F36D36] - 05/05/2011 - 20:14:13 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1647934] O44 - LFC:[MD5.CB17A47D090938A02DACB066D6D5A124] - 04/05/2011 - 19:23:37 ---A- . (...) -- C:\Windows\System32\rp_rules.dat [44] O44 - LFC:[MD5.8A3D5B46FF8C9CED46304F1EBB5F9AFE] - 04/05/2011 - 19:23:37 ---A- . (...) -- C:\Windows\System32\rp_stats.dat [64] O44 - LFC:[MD5.0D545D874256E511654B6C034CE70050] - 03/05/2011 - 20:20:01 ---A- . (...) -- C:\ComboFix.txt [16885] O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 03/05/2011 - 20:02:15 ---A- . (...) -- C:\Windows\system.ini [215] O44 - LFC:[MD5.AE72E8619CB31D84DA25E2435E55003C] - 03/05/2011 - 19:43:05 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [31232] O44 - LFC:[MD5.01D95A1F8CF13D07CC564AABB36BCC0B] - 03/05/2011 - 19:43:05 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [161792] O44 - LFC:[MD5.B7517DB073B28F5696A1E5528ABEB5D0] - 03/05/2011 - 19:43:05 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [136704] O44 - LFC:[MD5.B1A9CF0B6F80611D31987C247EC630B4] - 03/05/2011 - 19:38:27 ---A- . (.SteelWerX - Freeware implementation of XCACLS.) -- C:\Windows\SWXCACLS.exe [212480] O44 - LFC:[MD5.3CB5C9548E79217407C05F5E57243050] - 01/05/2011 - 19:25:02 ---A- . (...) -- C:\Ad-Report-CLEAN[4].txt [4172] O44 - LFC:[MD5.FA7C0103F1A72691C1C63BB61936DA61] - 01/05/2011 - 19:20:55 ---A- . (...) -- C:\Ad-Report-SCAN[4].txt [3942] O44 - LFC:[MD5.566758C0F5F033930C0A880634B8B6F5] - 30/04/2011 - 19:41:47 ---A- . (...) -- C:\ZHPRegY57.zhp [1694] O44 - LFC:[MD5.388147C5CD233120AE2EC9F118676B7D] - 30/04/2011 - 19:41:43 ---A- . (...) -- C:\ZHPRegY56.zhp [1694] O44 - LFC:[MD5.2254EC67BB512E4DCA6904C8BD0CFA5A] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY46.zhp [3158] O44 - LFC:[MD5.4882F5BCFF27EAC382AFD9FEDED3D902] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY47.zhp [3164] O44 - LFC:[MD5.5FE80926A06165AA182891BDA824A196] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY48.zhp [3142] O44 - LFC:[MD5.212D28B437D74499A37CAC0A3E994E18] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY49.zhp [3166] O44 - LFC:[MD5.77A274B986BDA892EFD5FAA6E12D2116] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY50.zhp [3164] O44 - LFC:[MD5.21C695E6FDC6AB327BB2E0EF9C0DCAFC] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY51.zhp [3168] O44 - LFC:[MD5.927154B05083B647577708FCCA7D99EC] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY52.zhp [3166] O44 - LFC:[MD5.AE60583FCEFA1BD19A9A36CCFD9AA185] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY53.zhp [3166] O44 - LFC:[MD5.60A7DB2DDED27CAD95447AA1159D0A11] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY54.zhp [3168] O44 - LFC:[MD5.54BB832C0721A1FFF704C7A4B0B1F086] - 30/04/2011 - 19:41:35 ---A- . (...) -- C:\ZHPRegY55.zhp [3152] O44 - LFC:[MD5.753A01BC9784E9620BA9285FF6BCECC0] - 30/04/2011 - 19:41:34 ---A- . (...) -- C:\ZHPRegY41.zhp [1596] O44 - LFC:[MD5.E46D24631B1CBC64795C858BBB4C3980] - 30/04/2011 - 19:41:34 ---A- . (...) -- C:\ZHPRegY42.zhp [3156] O44 - LFC:[MD5.E5A83CB4FE69993712F6F545E0519865] - 30/04/2011 - 19:41:34 ---A- . (...) -- C:\ZHPRegY43.zhp [3154] O44 - LFC:[MD5.AEC6F408F6781623AC3D2EA02D71E191] - 30/04/2011 - 19:41:34 ---A- . (...) -- C:\ZHPRegY44.zhp [3106] O44 - LFC:[MD5.EF3B7BCB08F77FCBD913415770E3EDF2] - 30/04/2011 - 19:41:34 ---A- . (...) -- C:\ZHPRegY45.zhp [3502] O44 - LFC:[MD5.2BEBADFC71E94FC217D9ABADC46B9908] - 30/04/2011 - 19:41:30 ---A- . (...) -- C:\ZHPRegY40.zhp [1664] O44 - LFC:[MD5.A8B470ADBB602851A272A1F4ED952394] - 30/04/2011 - 19:41:26 ---A- . (...) -- C:\ZHPRegY39.zhp [1664] O44 - LFC:[MD5.3A8581F9A86282FEC46EA2BF42838764] - 30/04/2011 - 19:40:48 ---A- . (...) -- C:\ZHPRegY38.zhp [1664] O44 - LFC:[MD5.0053F5626D7F4507CA677B6997938D1D] - 30/04/2011 - 19:40:29 ---A- . (...) -- C:\ZHPRegY37.zhp [1664] O44 - LFC:[MD5.7BB6BDB557AD85CEFE8521621CF6A452] - 30/04/2011 - 19:40:11 ---A- . (...) -- C:\ZHPRegY36.zhp [1664] O44 - LFC:[MD5.25B4FB617EA774AAB6BB763007EC9892] - 30/04/2011 - 19:40:00 ---A- . (...) -- C:\ZHPRegY35.zhp [1664] O44 - LFC:[MD5.DA3AAE616AF8A14845F4605DA61536FA] - 30/04/2011 - 19:39:57 ---A- . (...) -- C:\ZHPRegY34.zhp [1664] O44 - LFC:[MD5.A57562A8D588D0E462B46ADEEB033B9E] - 30/04/2011 - 19:39:50 ---A- . (...) -- C:\ZHPRegY32.zhp [3532] O44 - LFC:[MD5.CE539C7304FCC27202E2655E48953964] - 30/04/2011 - 19:39:50 ---A- . (...) -- C:\ZHPRegY33.zhp [2962] O44 - LFC:[MD5.43DCC11FBE1B2E6CA8E0E2230D684F45] - 30/04/2011 - 19:39:48 ---A- . (...) -- C:\ZHPRegY30.zhp [3838] O44 - LFC:[MD5.78AF48A90E06C24D36964F4D12829A3D] - 30/04/2011 - 19:39:48 ---A- . (...) -- C:\ZHPRegY31.zhp [3882] O44 - LFC:[MD5.C12A6CBF6DD19890EE28058819D15CD3] - 30/04/2011 - 19:39:12 ---A- . (...) -- C:\ZHPRegY29.zhp [2922] O44 - LFC:[MD5.100E1110E816E5A3F9D8C0C15791E96A] - 30/04/2011 - 19:36:25 ---A- . (...) -- C:\ZHPRegY26.zhp [3162] O44 - LFC:[MD5.041A912411CAA523544D6F2C7D9A71FF] - 30/04/2011 - 19:36:25 ---A- . (...) -- C:\ZHPRegY27.zhp [2978] O44 - LFC:[MD5.00363DB8BE30D75451111218A82F1E40] - 30/04/2011 - 19:36:25 ---A- . (...) -- C:\ZHPRegY28.zhp [2982] O44 - LFC:[MD5.513F7B1BADB4661C1948732A16C16E99] - 30/04/2011 - 19:36:18 ---A- . (...) -- C:\ZHPRegY20.zhp [3356] O44 - LFC:[MD5.389F8B9369AC067CA087A7353C6A7C9C] - 30/04/2011 - 19:36:18 ---A- . (...) -- C:\ZHPRegY21.zhp [3368] O44 - LFC:[MD5.C32A8595CF3FCF3D5EA8B431A888235F] - 30/04/2011 - 19:36:18 ---A- . (...) -- C:\ZHPRegY22.zhp [3356] O44 - LFC:[MD5.8E0C4F23A50869DE699748445E4427DA] - 30/04/2011 - 19:36:18 ---A- . (...) -- C:\ZHPRegY23.zhp [3360] O44 - LFC:[MD5.7C359A75D2FB1E601B1964727ECCF3F3] - 30/04/2011 - 19:36:18 ---A- . (...) -- C:\ZHPRegY24.zhp [3352] O44 - LFC:[MD5.47751B57072A88ACC4F413076132B23A] - 30/04/2011 - 19:36:18 ---A- . (...) -- C:\ZHPRegY25.zhp [2944] O44 - LFC:[MD5.26D1DAFB9FB8FA4588394653EEA778C7] - 30/04/2011 - 19:36:17 ---A- . (...) -- C:\ZHPRegY14.zhp [3998] O44 - LFC:[MD5.429AB5942DCCF9B12989E37D9281E5E6] - 30/04/2011 - 19:36:17 ---A- . (...) -- C:\ZHPRegY15.zhp [3738] O44 - LFC:[MD5.4C860AE05E618A5FF9A0378198261D04] - 30/04/2011 - 19:36:17 ---A- . (...) -- C:\ZHPRegY16.zhp [3006] O44 - LFC:[MD5.9FEE7218FA055689EFB0E16E3CE22A5E] - 30/04/2011 - 19:36:17 ---A- . (...) -- C:\ZHPRegY17.zhp [3268] O44 - LFC:[MD5.BDD794EF16E0CF99C379DCF0FBC666AE] - 30/04/2011 - 19:36:17 ---A- . (...) -- C:\ZHPRegY18.zhp [4120] O44 - LFC:[MD5.67B84A99D50094DB06F1DD2D60E5E246] - 30/04/2011 - 19:36:17 ---A- . (...) -- C:\ZHPRegY19.zhp [2948] O44 - LFC:[MD5.2B0C12670AAEA8862C1A55C8A4D609CC] - 30/04/2011 - 19:30:28 ---A- . (...) -- C:\ZHPRegY13.zhp [1076] O44 - LFC:[MD5.A25E9831D3576EF396709082ECB508B9] - 30/04/2011 - 19:30:15 ---A- . (...) -- C:\ZHPRegY11.zhp [2918] O44 - LFC:[MD5.6184C31C9CA699FEC6149AED91C16563] - 30/04/2011 - 19:30:15 ---A- . (...) -- C:\ZHPRegY12.zhp [3024] O44 - LFC:[MD5.7440AD1D30ABE8A4BF921C1ED764C079] - 30/04/2011 - 19:30:11 ---A- . (...) -- C:\ZHPRegY10.zhp [3010] O44 - LFC:[MD5.479654113BA6930B3F9ACA52B003746F] - 30/04/2011 - 19:30:11 ---A- . (...) -- C:\ZHPRegY9.zhp [4668] O44 - LFC:[MD5.F99DDD5E4F807B43E8B85DCD5F4B59EA] - 28/04/2011 - 08:22:33 ---A- . (.Microsoft - Legacy GDF resource DLL.) -- C:\Windows\System32\GameUXLegacyGDFs.dll [4240384] O44 - LFC:[MD5.C1AE5D1F53285D79A0B73A62AF20734F] - 28/04/2011 - 08:09:33 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\Windows\System32\drivers\SBREDrv.sys [98392] O44 - LFC:[MD5.71ABEFEDA90E159FD56937943EE745DB] - 28/04/2011 - 08:09:31 ---A- . (...) -- C:\Windows\System32\lsdelete.exe [16432] O44 - LFC:[MD5.529B9401CD86EF2BFA718E2F42C503DA] - 27/04/2011 - 09:09:29 ---A- . (...) -- C:\Ad-Report-CLEAN[3].txt [4600] O44 - LFC:[MD5.C0E71D7BA4FEC29F87F740396340738D] - 27/04/2011 - 08:56:30 ---A- . (...) -- C:\Ad-Report-SCAN[3].txt [4489] O44 - LFC:[MD5.1C7404438E3031FED084DBA4D8F45116] - 25/04/2011 - 19:01:48 ---A- . (...) -- C:\ZHPRegY6.zhp [2992] O44 - LFC:[MD5.E816FEFFAF7E7E550195E375EE6F0C4E] - 25/04/2011 - 19:01:48 ---A- . (...) -- C:\ZHPRegY7.zhp [3542] O44 - LFC:[MD5.3E56C0C07C2828CD657D10F92EA912C7] - 25/04/2011 - 19:01:48 ---A- . (...) -- C:\ZHPRegY8.zhp [3380] O44 - LFC:[MD5.BA0DA0D0594093BD59C0F3DEE8DD0C60] - 25/04/2011 - 19:01:31 ---A- . (...) -- C:\ZHPRegY4.zhp [1588] O44 - LFC:[MD5.D2CB64F5DB67CD96CB79D7DBCD5F27C4] - 25/04/2011 - 19:01:31 ---A- . (...) -- C:\ZHPRegY5.zhp [2806] O44 - LFC:[MD5.FBE88A57491326EBCB8FA0636055B240] - 25/04/2011 - 19:01:25 ---A- . (...) -- C:\ZHPRegY3.zhp [1556] O44 - LFC:[MD5.FC2142498D0E54371F5E52CCB5E1A7D2] - 25/04/2011 - 19:01:19 ---A- . (...) -- C:\ZHPRegY2.zhp [4326] O44 - LFC:[MD5.7BAE87BE1372FFC417BB53D6D437A790] - 25/04/2011 - 19:00:45 ---A- . (...) -- C:\ZHPRegY1.zhp [3168] O44 - LFC:[MD5.4EC9FC4F01F10310CF04771D86730F02] - 25/04/2011 - 19:00:41 ---A- . (...) -- C:\ZHPRegY0.zhp [1884] O44 - LFC:[MD5.FAC81627B37A5475DAA673A46C8CEE36] - 25/04/2011 - 18:46:36 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.8DA68534FEB0A34CE4605DE0DF826012] - 24/04/2011 - 19:55:21 ---A- . (...) -- C:\Ad-Report-CLEAN[2].txt [7194] O44 - LFC:[MD5.7D911ACD2A333B731D4B807780CF1250] - 24/04/2011 - 19:31:13 ---A- . (...) -- C:\Ad-Report-SCAN[2].txt [7031] O44 - LFC:[MD5.53696AD8FFC5FAC51949A525FF65A689] - 23/04/2011 - 20:15:52 ---A- . (.Acronis - File Level CDP Kernel Helper.) -- C:\Windows\System32\drivers\afcdp.sys [167968] O44 - LFC:[MD5.431801FCC97034E04A6EFF81136578D7] - 23/04/2011 - 20:15:39 ---A- . (.Acronis - Acronis Try&Decide Volume Filter Driver.) -- C:\Windows\System32\drivers\tdrpm273.sys [752128] O44 - LFC:[MD5.A34D7024BB7140EC785C86BC065D4F60] - 23/04/2011 - 20:15:36 ---A- . (.Acronis - Acronis Backup Archive Explorer.) -- C:\Windows\System32\drivers\timntr.sys [600928] O44 - LFC:[MD5.EB49860E776CE860DC3CFB9EDB1BA517] - 23/04/2011 - 20:15:20 ---A- . (.Acronis - Acronis Snapshot API.) -- C:\Windows\System32\drivers\snapman.sys [170528] O44 - LFC:[MD5.8A35CC7243E5EF7899DE0FB152A52E7A] - 18/04/2011 - 19:40:52 ---A- . (...) -- C:\Ad-Report-CLEAN[1].txt [13106] O44 - LFC:[MD5.DDE27FDC2AD5D3A67559E9CE64A3D044] - 18/04/2011 - 19:36:22 ---A- . (...) -- C:\Ad-Report-SCAN[1].txt [13239] O44 - LFC:[MD5.B212F604735F94695CC93A5E83EDA397] - 16/04/2011 - 09:26:35 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [468008] O44 - LFC:[MD5.B44A7AC9E801C38F54F7340351313E85] - 15/04/2011 - 19:43:34 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [292864] O44 - LFC:[MD5.54F73529D65E5EB41FFC28C4EDDF069F] - 15/04/2011 - 19:43:32 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304] O44 - LFC:[MD5.ECD81B99477AB4A93D7838EB40B870D0] - 09/04/2011 - 18:48:34 ---A- . (...) -- C:\Windows\System32\icrav03.rat [8798] O44 - LFC:[MD5.6D21D0A95286DCD09E354B612F592EB7] - 09/04/2011 - 18:48:34 ---A- . (...) -- C:\Windows\System32\ticrf.rat [1988] O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 09/04/2011 - 18:48:10 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822] O44 - LFC:[MD5.9DAA7218961710008D7385B01BD3F386] - 08/11/2010 - 00:20:24 ---A- . (...) -- C:\Windows\MBR.exe [89088] O44 - LFC:[MD5.F1FBA6185A6A2BC6456970914875078E] - 26/04/2010 - 14:58:12 ---A- . (...) -- C:\Windows\PEV.exe [256512] O44 - LFC:[MD5.8C25E347F5E2C2BCA9B5258A68B72AE7] - 20/01/1999 - 04:01:00 ---A- . (...) -- C:\Windows\System32\DBCLIENT.DLL [210032] O44 - LFC:[MD5.4BC02BD73338C3A26265F5C64DBEC770] - 12/11/1999 - 04:11:00 ---A- . (...) -- C:\Windows\System32\BDEADMIN.CPL [183808] O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 07:00:00 ---A- . (...) -- C:\Windows\grep.exe [80412] O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 07:00:00 ---A- . (...) -- C:\Windows\sed.exe [98816] O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 07:00:00 ---A- . (...) -- C:\Windows\zip.exe [68096] ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.B6995CB5D2C6EC36B5C23A43F110FFE6] - 01/05/2011 - 19:28:00 ---A- - C:\Windows\Prefetch\SWRITER.EXE-3AFC3C6D.pf O45 - LFCP:[MD5.02983AD255E54E2CBCDBD75687CB2400] - 01/05/2011 - 19:28:08 ---A- - C:\Windows\Prefetch\SOFFICE.EXE-BCAD5300.pf O45 - LFCP:[MD5.F25B480B85E5AC8275D67E88E8010444] - 01/05/2011 - 19:28:31 ---A- - C:\Windows\Prefetch\SOFFICE.BIN-B03B6BDB.pf O45 - LFCP:[MD5.C7EFF3873FD5C09C201E66F902F7788B] - 01/05/2011 - 19:30:16 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-B307E1CC.pf O45 - LFCP:[MD5.F0D53C184AC462F061BEDEC75C7009D4] - 01/05/2011 - 19:30:39 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-DEBBE5F1.pf O45 - LFCP:[MD5.353EC74BC8A54FD76404F7BC3C2738D0] - 01/05/2011 - 19:30:42 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-D7C621F8.pf O45 - LFCP:[MD5.A53A626EF2CF1EB246DFB9E8026A3644] - 05/05/2011 - 19:36:33 ---A- - C:\Windows\Prefetch\GOOGLEUPDATER.EXE-FE559EEC.pf O45 - LFCP:[MD5.64495FB44AF409384847A9921DBC92DB] - 05/05/2011 - 19:39:42 ---A- - C:\Windows\Prefetch\SPRTCMD.EXE-340347A8.pf O45 - LFCP:[MD5.BC52029B86C35010E7E37677F56A60DA] - 05/05/2011 - 19:41:03 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-653F973D.pf O45 - LFCP:[MD5.81253252ABC684A3A884D6FAEAF52E81] - 05/05/2011 - 19:44:11 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-17691DFE.pf O45 - LFCP:[MD5.91527F54BE1F9C51C25785AD4A6D3F0D] - 05/05/2011 - 19:45:52 ---A- - C:\Windows\Prefetch\CONTROL.EXE-6EA5489A.pf O45 - LFCP:[MD5.EA9815E9EB50E06A5DBAAC650E1A422E] - 05/05/2011 - 19:49:12 ---A- - C:\Windows\Prefetch\SETUP.EXE-2C97F1C6.pf O45 - LFCP:[MD5.B72142F3C2217A6E545A48877D38FBF1] - 05/05/2011 - 19:49:15 ---A- - C:\Windows\Prefetch\AVGNT.EXE-425E56A1.pf O45 - LFCP:[MD5.6568A0D2AECC7A13A13D7EC8DE50AB34] - 05/05/2011 - 19:49:34 ---A- - C:\Windows\Prefetch\UPDATE.EXE-C51D5E40.pf O45 - LFCP:[MD5.6CD8A7EDCABF1A34EA1CA7F3EAFE1C35] - 05/05/2011 - 19:49:49 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-BC50C179.pf O45 - LFCP:[MD5.666CA5FEFFFFEA7A9966661B5C9F4035] - 05/05/2011 - 19:51:17 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf O45 - LFCP:[MD5.77961F8140E2A34DBAEB328DD5B2A42B] - 05/05/2011 - 19:52:31 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-5D573F0E.pf O45 - LFCP:[MD5.93D4FC5DC2696314C15D0055445C2B2D] - 05/05/2011 - 20:01:31 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf O45 - LFCP:[MD5.3E03B7F06F73220030FEABA0D2442200] - 05/05/2011 - 20:01:31 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-72B9DDB3.pf O45 - LFCP:[MD5.72D126C2C26FA65522E98896D7715DF2] - 05/05/2011 - 20:01:54 ---A- - C:\Windows\Prefetch\AWSC.EXE-A02D7A9F.pf O45 - LFCP:[MD5.7F5C59D32467EAF1C4D16FD44A6DA1D1] - 05/05/2011 - 20:02:05 ---A- - C:\Windows\Prefetch\MPNOTIFY.EXE-B290F693.pf O45 - LFCP:[MD5.7714A5D693F3A2F8BE8FA5CB72EA265F] - 05/05/2011 - 20:02:15 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-5CD29207.pf O45 - LFCP:[MD5.574E28468C1614B39EE501DA48DF3007] - 05/05/2011 - 20:02:16 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-D9202100.pf O45 - LFCP:[MD5.1B8A52E6DB2B96FB3086CA4D0D0E8F33] - 05/05/2011 - 20:02:24 ---A- - C:\Windows\Prefetch\LVCOMSER.EXE-F282D8F9.pf O45 - LFCP:[MD5.69675B33387634BB536B73A68B1F4143] - 05/05/2011 - 20:02:25 ---A- - C:\Windows\Prefetch\USERINIT.EXE-5114915C.pf O45 - LFCP:[MD5.C4AEB49E0AAFA6276B5C7E4DCBCD5EDC] - 05/05/2011 - 20:02:28 ---A- - C:\Windows\Prefetch\DWM.EXE-314E93C5.pf O45 - LFCP:[MD5.C9A13C3C3D9F32E7DB37A892846D18FA] - 05/05/2011 - 20:02:31 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf O45 - LFCP:[MD5.5EEDE5EC2A1CFB8927B3F2FBC167C1CF] - 05/05/2011 - 20:02:38 ---A- - C:\Windows\Prefetch\PRESENTATIONSETTINGS.EXE-EF41B35E.pf O45 - LFCP:[MD5.754570684BDB240B49525C52FC5E1AE4] - 05/05/2011 - 20:02:42 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4B6CB38A.pf O45 - LFCP:[MD5.9D1ABFC97CCDBA948B56C9D89FEF62AC] - 05/05/2011 - 20:02:42 ---A- - C:\Windows\Prefetch\VERCLSID.EXE-AB0FD091.pf O45 - LFCP:[MD5.7B18684ECECE9343FC1162B4B643AB07] - 05/05/2011 - 20:02:59 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf O45 - LFCP:[MD5.F871604D4E30989FF23DEA981C0FC5A9] - 05/05/2011 - 20:03:10 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-EDA5A3D2.pf O45 - LFCP:[MD5.C018E7591DF9CC80D1FA9BD6F4EA46DB] - 05/05/2011 - 20:03:12 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-B29A0C52.pf O45 - LFCP:[MD5.8DC3FEDEDFED2A3F18770DDA8F3F278B] - 05/05/2011 - 20:03:14 ---A- - C:\Windows\Prefetch\SPRTSVC.EXE-C1AC7B98.pf O45 - LFCP:[MD5.EC3E37796692A1AE3393DCCF9545E4DD] - 05/05/2011 - 20:03:21 ---A- - C:\Windows\Prefetch\AAWTRAY.EXE-AE63BC5E.pf O45 - LFCP:[MD5.1CBC2A28731CEB895E89D4E2D682164A] - 05/05/2011 - 20:06:16 ---A- - C:\Windows\Prefetch\AVSCAN.EXE-A539614D.pf O45 - LFCP:[MD5.B003EE826FBE4740CC4FCB12ED49936C] - 05/05/2011 - 20:06:16 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf O45 - LFCP:[MD5.6874684F8284AE6891C160DE4F380969] - 05/05/2011 - 20:06:16 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf O45 - LFCP:[MD5.5BAC42A9BC45D202FC855A6C187AC696] - 05/05/2011 - 20:06:17 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf O45 - LFCP:[MD5.5C7DB6210FAAC1423FD5B66D3582BE59] - 05/05/2011 - 20:07:49 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6A249820.pf O45 - LFCP:[MD5.08E152B0C25E5B3B206D206DFC587645] - 05/05/2011 - 20:19:45 ---A- - C:\Windows\Prefetch\SDCLT.EXE-94EAE077.pf O45 - LFCP:[MD5.4ABD23BE4239B55460BA3CDFA5FCE457] - 05/05/2011 - 20:19:47 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-CFE81CB7.pf O45 - LFCP:[MD5.E7EEEDBAF3C9E8A16BB4C0335E0FF2BC] - 05/05/2011 - 20:19:56 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf O45 - LFCP:[MD5.92EFA8835E9BB8FC766498CA5EFD58EF] - 05/05/2011 - 20:20:10 ---A- - C:\Windows\Prefetch\WERCON.EXE-C87ACD13.pf O45 - LFCP:[MD5.13FB748B5C1AF8996898FD3A0094053E] - 05/05/2011 - 21:16:14 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf O45 - LFCP:[MD5.06FB20DBC031AEC40B55A122C2C5FFF9] - 05/05/2011 - 21:21:41 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-737A6CD7.pf O45 - LFCP:[MD5.71AFE3B3FD53C7094701732E46CB2053] - 05/05/2011 - 21:26:02 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1835710922-88746640-245049138-1001.db O45 - LFCP:[MD5.25505E54236D7A1E4F324F3E645F4EE6] - 05/05/2011 - 21:26:16 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1835710922-88746640-245049138-1001.db O45 - LFCP:[MD5.1B69B8E4B908A449C9AD378041CB77E3] - 05/05/2011 - 21:29:27 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-66015FD1.pf O45 - LFCP:[MD5.3233EAA6BBB58FA8968B898A3B4E9FD0] - 05/05/2011 - 21:29:34 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf O45 - LFCP:[MD5.D7245689AC3EA542C2479E8BB7AE93B5] - 05/05/2011 - 21:33:24 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-4C8500BA.pf O45 - LFCP:[MD5.067C810EC085C215F7A2FFBFC9E9E755] - 05/05/2011 - 21:35:24 ---A- - C:\Windows\Prefetch\AVWSC.EXE-04E21D4D.pf O45 - LFCP:[MD5.0AF8153366C24AC9F7BCDE5AD85B2148] - 05/05/2011 - 21:37:41 ---A- - C:\Windows\Prefetch\CONSENT.EXE-40419367.pf O45 - LFCP:[MD5.37077F92534B9D65B207905D10EDA808] - 05/05/2011 - 21:38:19 ---A- - C:\Windows\Prefetch\CCLEANER.EXE-DD6AC7E5.pf O45 - LFCP:[MD5.9E64701672C1F93009CA18D64AD6600D] - 05/05/2011 - 21:40:32 ---A- - C:\Windows\Prefetch\LVPRCSRV.EXE-72698635.pf O45 - LFCP:[MD5.544EA2C6842405DE552514F948B52AE2] - 05/05/2011 - 21:40:41 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-F639BD7E.pf O45 - LFCP:[MD5.6BBB8FFEDA10DD9328314F21BA5B29C6] - 05/05/2011 - 21:40:51 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6389524F.pf O45 - LFCP:[MD5.2263D74C3043AB4CB9271E8533ED9B27] - 05/05/2011 - 21:41:03 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-155C56CF.pf O45 - LFCP:[MD5.DBBE2EDBA75D5931E9A7159CD9CFB944] - 05/05/2011 - 21:41:13 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf O45 - LFCP:[MD5.6AA0AFCB1E5FB8715C85DE7F6A33D422] - 05/05/2011 - 21:41:27 ---A- - C:\Windows\Prefetch\AgRobust.db O45 - LFCP:[MD5.77DB94589933D49C0E08681A31F7CDBF] - 05/05/2011 - 21:41:27 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin O45 - LFCP:[MD5.3E96C1E089E02BC3F0EF603D5E4279B3] - 05/05/2011 - 21:41:39 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db O45 - LFCP:[MD5.0E85592AF65ACE03FED8CEE91D1466AA] - 05/05/2011 - 21:41:42 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db O45 - LFCP:[MD5.B75B3187CFE2FDB65554D61915DBCB31] - 05/05/2011 - 21:41:44 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db O45 - LFCP:[MD5.6B6AB6D1E28825D5607A420AB518FE0E] - 16/04/2011 - 20:50:13 ---A- - C:\Windows\Prefetch\SKYPENAMES.EXE-A6EFF040.pf O45 - LFCP:[MD5.A1DF6D12525BBADC5E8F1DABF60980C6] - 20/04/2011 - 19:29:01 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-1835710922-88746640-245049138-1001.snp.db O45 - LFCP:[MD5.7C33501617718AD66A60DB6C5C0C005B] - 20/04/2011 - 19:45:35 ---A- - C:\Windows\Prefetch\AgCx_SC3_FAEAEE98.db O45 - LFCP:[MD5.F79FC62D5A2F53258968F5EA2D11DC73] - 23/04/2011 - 18:36:34 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx O45 - LFCP:[MD5.FE44DE9E7FFDDE24F9324E59E72EEC69] - 23/04/2011 - 18:37:35 ---A- - C:\Windows\Prefetch\AgCx_SC1.db O45 - LFCP:[MD5.421746EEF849FB85136E1B12B0FDF57F] - 24/04/2011 - 16:13:34 ---A- - C:\Windows\Prefetch\Layout.ini O45 - LFCP:[MD5.87F2DB18EDDE706014A99E313A4C11D6] - 24/04/2011 - 16:13:45 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-3D9E8D72.pf O45 - LFCP:[MD5.27DC1596D1E5A2A6A449A1C13E64B71C] - 24/04/2011 - 16:13:46 ---A- - C:\Windows\Prefetch\DFRGNTFS.EXE-ACFD6573.pf O45 - LFCP:[MD5.886A9E921487973781362BD0744133AB] - 24/04/2011 - 17:35:58 ---A- - C:\Windows\Prefetch\ROXIO_CENTRAL33.EXE-78691C36.pf O45 - LFCP:[MD5.6AF7FA05BED5BEECAA29D8A31D5644B6] - 24/04/2011 - 17:38:18 ---A- - C:\Windows\Prefetch\ROXMEDIADB9.EXE-B955ED34.pf O45 - LFCP:[MD5.34EF880943D95B54B55412589151A1D7] - 24/04/2011 - 17:46:13 ---A- - C:\Windows\Prefetch\TRUEIMAGEHOMENOTIFY.EXE-199EA887.pf O45 - LFCP:[MD5.16154DC56580019A3E6EC20E711F1A4B] - 24/04/2011 - 17:46:14 ---A- - C:\Windows\Prefetch\TRUEIMAGEHOMESERVICE.EXE-FF945B2F.pf O45 - LFCP:[MD5.4EB62B948416D37577A352E105FD396E] - 24/04/2011 - 17:58:10 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-5B90AC01.pf O45 - LFCP:[MD5.B5B2A4FF79FD2173C470BB1FFDF97B53] - 24/04/2011 - 18:22:17 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1835710922-88746640-245049138-1000.db O45 - LFCP:[MD5.6013158A5302D5D2EF6B41C8E930870A] - 24/04/2011 - 18:22:19 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1835710922-88746640-245049138-1000.db O45 - LFCP:[MD5.33A45FD06A58FDDFCA89CA2717AF3101] - 24/04/2011 - 18:52:52 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-41C19BFB.pf O45 - LFCP:[MD5.A9B0A437630A5D0C370A2D21E604662E] - 24/04/2011 - 19:00:43 ---A- - C:\Windows\Prefetch\SMSS.EXE-B5B810DB.pf O45 - LFCP:[MD5.EC6B39FC6E6B9AA30076780364C1CF8D] - 24/04/2011 - 19:00:44 ---A- - C:\Windows\Prefetch\CSRSS.EXE-F3C368CB.pf O45 - LFCP:[MD5.A93AC330CBB66509A3A770201BD36912] - 24/04/2011 - 19:00:50 ---A- - C:\Windows\Prefetch\WINLOGON.EXE-DEDDC9B6.pf O45 - LFCP:[MD5.234AA569FC5A22AA03799D1285DF8394] - 24/04/2011 - 19:01:05 ---A- - C:\Windows\Prefetch\ATI2EVXX.EXE-31E4DF5C.pf O45 - LFCP:[MD5.D20D29B6BFB881CC64500933B5AD7F64] - 24/04/2011 - 19:33:23 ---A- - C:\Windows\Prefetch\MAIN.EXE-2D7E91E6.pf O45 - LFCP:[MD5.A692189676DA7B3BE533A8394B35551D] - 24/04/2011 - 19:33:42 ---A- - C:\Windows\Prefetch\ERUNT.EXE-A253CF7D.pf O45 - LFCP:[MD5.8F11E8AB25C3CA3E54641E118315D816] - 25/04/2011 - 18:18:13 ---A- - C:\Windows\Prefetch\TRUEIMAGELAUNCHER.EXE-0FCF1E9F.pf O45 - LFCP:[MD5.2172A276695499D19AB62D3F7FF613B1] - 25/04/2011 - 18:18:14 ---A- - C:\Windows\Prefetch\WISPTIS.EXE-467FEFF4.pf O45 - LFCP:[MD5.67AFB52727410D3FDCF7E24B8E971E7A] - 25/04/2011 - 18:18:22 ---A- - C:\Windows\Prefetch\TRUEIMAGE.EXE-17B78ECD.pf O45 - LFCP:[MD5.FE9D94C1B90551903CCC19093AE46B60] - 25/04/2011 - 18:18:42 ---A- - C:\Windows\Prefetch\TRUEIMAGETOOLS.EXE-74CB5182.pf O45 - LFCP:[MD5.A98590C375314D6DDE640D8F8D9934C5] - 25/04/2011 - 18:22:25 ---A- - C:\Windows\Prefetch\CDRECORD2.EXE-E0C3F038.pf O45 - LFCP:[MD5.50661EDB978CD42361BFE38C00CAC18E] - 25/04/2011 - 18:22:27 ---A- - C:\Windows\Prefetch\READCD.EXE-BBC529FF.pf O45 - LFCP:[MD5.94CEADB6448D6DC8129BE85D41039A26] - 25/04/2011 - 18:22:37 ---A- - C:\Windows\Prefetch\GROWISOFS.EXE-882B45DF.pf O45 - LFCP:[MD5.6F79F19250261CFA52AF0B0308FBACEA] - 25/04/2011 - 18:25:57 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-3D9961C3.pf O45 - LFCP:[MD5.AE8A2D4CC9BEB1776C0DF2124EE36D43] - 25/04/2011 - 18:26:07 ---A- - C:\Windows\Prefetch\BDEADMIN.EXE-71823FF7.pf O45 - LFCP:[MD5.7480F1FB1FF74BDA00BB9EE71752CAD5] - 25/04/2011 - 18:29:07 ---A- - C:\Windows\Prefetch\HIJACKTHIS.EXE-047EA1DA.pf O45 - LFCP:[MD5.B64A33034E747520DC3CF35A258B4C84] - 25/04/2011 - 18:29:40 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-C5670914.pf O45 - LFCP:[MD5.27C0F356154BA2527F5D53D0CBA4D8AF] - 25/04/2011 - 18:35:36 ---A- - C:\Windows\Prefetch\ZHPL_2.47.03.TMP-35733BDB.pf O45 - LFCP:[MD5.28D00EDD2EF8D85FF348E5385FE79163] - 25/04/2011 - 18:35:42 ---A- - C:\Windows\Prefetch\ZHPL_2.47.03.EXE-E909F79D.pf O45 - LFCP:[MD5.88D7B471C7B82669C89B4BE0AE6E9449] - 25/04/2011 - 18:35:43 ---A- - C:\Windows\Prefetch\ZHPL_2.47.03.TMP-4A57043B.pf O45 - LFCP:[MD5.50952F2DF312184085FFD4E9787108BF] - 25/04/2011 - 18:36:33 ---A- - C:\Windows\Prefetch\ZHP2.EXE-81247C6C.pf O45 - LFCP:[MD5.8C57EA87F2D88C93AEADBA3BC9527075] - 25/04/2011 - 18:44:11 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-3542FC73.pf O45 - LFCP:[MD5.0C29B46C5D937BFD0FE1849A32EEBCB4] - 25/04/2011 - 18:46:25 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-9BC128FD.pf O45 - LFCP:[MD5.D6E96D5BC171FE160B1CDCE4821D7EAF] - 25/04/2011 - 18:46:32 ---A- - C:\Windows\Prefetch\NSLOOKUP.EXE-6BC3CE14.pf O45 - LFCP:[MD5.8F8D15F1DB5023389F59091C4F90A30E] - 25/04/2011 - 18:46:36 ---A- - C:\Windows\Prefetch\MBRCHECK.EXE-1D5E2A53.pf O45 - LFCP:[MD5.41FA43360E8D095AF7467BAD4081A3F4] - 25/04/2011 - 18:46:44 ---A- - C:\Windows\Prefetch\MBR.EXE-29478A2D.pf O45 - LFCP:[MD5.66F399877F4C5587C066B22163D3FCB6] - 25/04/2011 - 18:55:04 ---A- - C:\Windows\Prefetch\ZHPFIX.EXE-BBB4C4ED.pf O45 - LFCP:[MD5.E794EC6ADD53BCD33FC7EEF2C012731A] - 25/04/2011 - 18:57:31 ---A- - C:\Windows\Prefetch\CMD.EXE-0BD30981.pf O45 - LFCP:[MD5.0410327ED443A7BEE80C54FAE0C7087F] - 25/04/2011 - 18:57:31 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-8B6144A9.pf O45 - LFCP:[MD5.F986F0C8298D2B8D850263C065175B16] - 25/04/2011 - 18:59:26 ---A- - C:\Windows\Prefetch\MSOHTMED.EXE-B6CD34E1.pf O45 - LFCP:[MD5.7D964829E0276DE3F394AD7BB151EEE7] - 25/04/2011 - 18:59:41 ---A- - C:\Windows\Prefetch\MSI1A53.TMP-67ED90C3.pf O45 - LFCP:[MD5.8B9F2B2D3E4D2AE34221429D3A2A65B2] - 25/04/2011 - 18:59:54 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5EC4EEB1.pf O45 - LFCP:[MD5.B8BE761804C2CA69F886EDFA98D2B0DD] - 25/04/2011 - 19:00:43 ---A- - C:\Windows\Prefetch\SETUP.EXE-22817112.pf O45 - LFCP:[MD5.B1D098DFF37676FD701A4156804A2B75] - 25/04/2011 - 19:00:52 ---A- - C:\Windows\Prefetch\_IS2C4E.EXE-81E10DE7.pf O45 - LFCP:[MD5.F4E779EE2FFC63C9D2E4EEAB22FC6986] - 25/04/2011 - 19:00:55 ---A- - C:\Windows\Prefetch\FLASHUTIL10I_ACTIVEX.EXE-126FEE28.pf O45 - LFCP:[MD5.C4ADF215AF9F0B238DFE5EA69F6E308A] - 25/04/2011 - 19:01:17 ---A- - C:\Windows\Prefetch\FLASHUTIL10O_PLUGIN.EXE-F08FA115.pf O45 - LFCP:[MD5.3FDF046B83ED6257174D9A735C0FCAE5] - 25/04/2011 - 19:01:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5901849D.pf O45 - LFCP:[MD5.7FD30B629DC887127426CEBAE3A5B19A] - 25/04/2011 - 19:01:29 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-D5B13C12.pf O45 - LFCP:[MD5.B0A9BD612FD33EDC2746FDF9090DEF8F] - 25/04/2011 - 19:01:49 ---A- - C:\Windows\Prefetch\UNINST.EXE-CAA9CA59.pf O45 - LFCP:[MD5.2D22AAA5876A7582E50AB4C65B2F14F7] - 25/04/2011 - 19:01:54 ---A- - C:\Windows\Prefetch\AU_.EXE-0D84DB1E.pf O45 - LFCP:[MD5.E229427C461DBF8350F8D1A311D6E453] - 25/04/2011 - 19:02:01 ---A- - C:\Windows\Prefetch\IDRIVER.EXE-6E2A50F0.pf O45 - LFCP:[MD5.BB45A80EEBBC0B889E48393B9D8AF1DA] - 25/04/2011 - 19:02:06 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A010D183.pf O45 - LFCP:[MD5.6265213CECF30AD65C48B71E00D31744] - 27/04/2011 - 18:52:36 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-708A2547.pf O45 - LFCP:[MD5.9305FE3E514CE91DE4DE4AD2968B7E38] - 27/04/2011 - 19:01:27 ---A- - C:\Windows\Prefetch\LAVASOFT_ADAWAREFREE_V9.0.EXE-6DADF7F7.pf O45 - LFCP:[MD5.75932B64739DFAE0CA0036BCCE659861] - 27/04/2011 - 19:10:56 ---A- - C:\Windows\Prefetch\MBAM.EXE-938BB081.pf O45 - LFCP:[MD5.ED7A16F52B5E984FA55F66EC2AABF855] - 27/04/2011 - 19:19:02 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-DAB4D60B.pf O45 - LFCP:[MD5.02AF44AE6F7129F3378A1505FAB5FA59] - 27/04/2011 - 19:19:03 ---A- - C:\Windows\Prefetch\AD-AWARE90INSTALL.EXE-14CF8269.pf O45 - LFCP:[MD5.4DED5F74621A77E9982DEA53191D37CC] - 27/04/2011 - 19:26:36 ---A- - C:\Windows\Prefetch\LAVASOFTGCHELPER.EXE-43686480.pf O45 - LFCP:[MD5.B3ABE80605E237BDF8C93B0D695E9D12] - 27/04/2011 - 19:29:49 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-8FFB1633.pf O45 - LFCP:[MD5.EDEA97B34D9A445FD23B052DCF2912D2] - 28/04/2011 - 08:11:01 ---A- - C:\Windows\Prefetch\MPAS-D_BD1.EXE-779EC0BD.pf O45 - LFCP:[MD5.CB95A6F98E144491F60AC39B45CBD89E] - 28/04/2011 - 08:11:04 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-1A221860.pf O45 - LFCP:[MD5.58D998BE713ADFF6D563F899705535E7] - 28/04/2011 - 08:11:04 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-5D0450B3.pf O45 - LFCP:[MD5.D133241F17FC70830C3FF5B4AB6307DD] - 28/04/2011 - 08:12:54 ---A- - C:\Windows\Prefetch\AAWSERVICE.EXE-BCD1C39B.pf O45 - LFCP:[MD5.9454FECE1DF0694E1E0EFB9590B3E46C] - 28/04/2011 - 08:12:56 ---A- - C:\Windows\Prefetch\AD-AWARE.EXE-2F4FBB7B.pf O45 - LFCP:[MD5.F4A8005C84311EE0670DE02F9116C716] - 28/04/2011 - 08:13:22 ---A- - C:\Windows\Prefetch\AUTOLAUNCH.EXE-8BEFF985.pf O45 - LFCP:[MD5.C386C957D72BDA8B8A7D17A894425DE3] - 28/04/2011 - 08:13:41 ---A- - C:\Windows\Prefetch\AAWWSC.EXE-4FA5806F.pf O45 - LFCP:[MD5.C1281444FC196C73A42932AD5AEC576B] - 28/04/2011 - 14:46:08 ---A- - C:\Windows\Prefetch\AD-AWAREADMIN.EXE-D0D13FD8.pf O45 - LFCP:[MD5.36FA611057D8E3E2001F3447605DB9C2] - 28/04/2011 - 15:11:02 ---A- - C:\Windows\Prefetch\LPREMOVE.EXE-570BDFF7.pf O45 - LFCP:[MD5.019F1E15735FDDF3D3D5C0021312E755] - 28/04/2011 - 15:11:02 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-C6EE3785.pf O45 - LFCP:[MD5.C77B5A09E8A0EC4DBD006BE016C67877] - 28/04/2011 - 15:14:41 ---A- - C:\Windows\Prefetch\CCSETUP306.EXE-A7D785EA.pf O45 - LFCP:[MD5.3DD71CF1CBD4E3A8D5327398BC78B3C2] - 28/04/2011 - 15:16:03 ---A- - C:\Windows\Prefetch\NSD99F.TMP-729C120C.pf O45 - LFCP:[MD5.78DC2FA110401607B1301FD067A7DB91] - 28/04/2011 - 15:16:03 ---A- - C:\Windows\Prefetch\PING.EXE-4A8A6853.pf O45 - LFCP:[MD5.A20E69CA581785116B473D2234B71822] - 28/04/2011 - 15:16:06 ---A- - C:\Windows\Prefetch\CONIME.EXE-7C90FA24.pf ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"VIDC.I420"="lvcodec2.dll" . (.Logitech Inc. - Video Codec.) -- C:\Windows\System32\lvcodec2.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\Windows\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.vorbis"="vorbis.acm" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\xvidvfw.dll O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\Windows\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"vorbis.acm"="Ogg Vorbis Audio CODEC" . (.HMS http://hp.vector.co.jp/authors/VA012897 - Ogg Vorbis CODEC for MSACM.) -- C:\Windows\System32\vorbis.acm O52 - TDSD: \drivers.desc\"xvidvfw.dll"="XviD MPEG-4 Video Codec" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\xvidvfw.dll O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\Ad-Watch [Key] . (.Lavasoft Limited - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe O53 - SMSR:HKLM\...\startupreg\BrowserChoice [Key] . (.Microsoft Corporation - Choix de navigateur .) -- C:\Windows\System32\browserchoice.exe O53 - SMSR:HKLM\...\startupreg\dellsupportcenter [Key] . (.SupportSoft, Inc. - Pas de description.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe O53 - SMSR:HKLM\...\startupreg\ehTray.exe [Key] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O53 - SMSR:HKLM\...\startupreg\IntelliPoint [Key] . (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft IntelliPoint\ipoint.exe O53 - SMSR:HKLM\...\startupreg\ISUSScheduler [Key] . (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe O53 - SMSR:HKLM\...\startupreg\LogitechQuickCamRibbon [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Logitech\QuickCam\Quickcam.exe O53 - SMSR:HKLM\...\startupreg\MSConfig [Key] . (.Microsoft Corporation - Utilitaire de configuration système.) -- C:\Windows\System32\msconfig.exe O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O53 - SMSR:HKLM\...\startupreg\SSBkgdUpdate [Key] . (.Nuance Communications, Inc. - SSBkgdUpdate.) -- C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O53 - SMSR:HKLM\...\startupreg\SynTPEnh [Key] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O53 - SMSR:HKLM\...\startupreg\Windows Defender [Key] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1 O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [420968] O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297576] O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [98408] O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [147048] O58 - SDL:[MD5.53696AD8FFC5FAC51949A525FF65A689] - 23/04/2011 - 20:15:52 ---A- . (.Acronis - File Level CDP Kernel Helper.) -- C:\Windows\system32\drivers\afcdp.sys [167968] O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [67688] O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [67688] O58 - SDL:[MD5.1A105F6D20189320D80E1C36635FE1DD] - 21/03/2007 - 07:13:08 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [2411520] O58 - SDL:[MD5.4AA1EB65481C392955939E735D27118B] - 30/10/2006 - 10:23:12 ---A- . (.ATI Technologies Inc. - ATI PCIE Driver for ATI PCIE chipset.) -- C:\Windows\system32\drivers\AtiPcie.sys [7680] O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 05/03/2011 - 12:44:51 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [61960] O58 - SDL:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 31/03/2011 - 19:12:29 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [137656] O58 - SDL:[MD5.CD4646067CC7DCBA1907FA0ACF7E3966] - 21/11/2006 - 13:25:44 ---A- . (.Broadcom Corporation - Broadcom Corporation NDIS 5.1 ethernet driver.) -- C:\Windows\system32\drivers\bcm4sbxp.sys [45568] O58 - SDL:[MD5.746F59822A5187510471FC46889B8CC9] - 21/03/2007 - 20:33:54 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL6.SYS [534016] O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568] O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248] O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808] O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336] O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160] O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904] O58 - SDL:[MD5.7967A05D7937438A4CD65AB99F5C73C2] - 03/01/2001 - 11:06:18 ---A- . (.D-Link Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\system32\drivers\CA500AV.SYS [148385] O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdr4_xp.sys [2432] O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdralw2k.sys [2560] O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272] O58 - SDL:[MD5.DFEABB7CFFFADEA4A912AB95BDC3177A] - 25/02/2007 - 12:10:48 -S-A- . (.Gteko Ltd. - GUniDriver.) -- C:\Windows\system32\drivers\dsunidrv.sys [5376] O58 - SDL:[MD5.7505290504C8E2D172FA378CC0497BCC] - 02/11/2006 - 08:30:55 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\e1e6032.sys [200704] O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G60I32.sys [117760] O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [316520] O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [37480] O58 - SDL:[MD5.7845D2385F4DC7DFB3CCAF0C2FA4948E] - 03/11/2006 - 03:42:18 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\HSXHWAZL.sys [206848] O58 - SDL:[MD5.4DACA8F07537D4D7E3534BB99294AA26] - 03/11/2006 - 03:42:08 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\HSX_CNXT.sys [659968] O58 - SDL:[MD5.E9E589C9AB799F52E18F057635A2B362] - 03/11/2006 - 03:43:30 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\HSX_DPV.sys [986624] O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [232040] O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576] O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944] O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944] O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [65640] O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [65640] O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [65640] O58 - SDL:[MD5.C5D5EA6A29523E0F6016741E9851C6DB] - 19/07/2007 - 01:39:15 ---A- . (.Logitech Inc. - Audio filter for Express Plus.) -- C:\Windows\system32\drivers\lv302af.sys [13848] O58 - SDL:[MD5.3F96DCD4AC98C8E0D3C03C24FD49A2FE] - 19/07/2007 - 01:39:15 ---A- . (.Logitech Inc. - Logitech QuickCam Driver.) -- C:\Windows\system32\drivers\LV302V32.SYS [1278104] O58 - SDL:[MD5.EB0855D1C75940D4F992D02FFC522E81] - 19/07/2007 - 01:39:38 ---A- . (.Logitech Inc. - Logitech Video Driver.) -- C:\Windows\system32\drivers\LV561AV.SYS [490776] O58 - SDL:[MD5.FB548FF809634BFA866312B37D8A18AE] - 20/07/2007 - 23:37:56 ---A- . (.Logitech Inc. - Logitech Kernel Audio Processing Filter Driver.) -- C:\Windows\system32\drivers\Lvckap.sys [2109592] O58 - SDL:[MD5.FE3FB994F8702D9E37648927819B74B8] - 20/07/2007 - 23:39:50 ---A- . (.Logitech Inc. - Logitech Machine Vision Engine Loader.) -- C:\Windows\system32\drivers\LVMVdrv.sys [2142488] O58 - SDL:[MD5.C7EA51F1AB10B0B2B443F4D5589FC1A5] - 18/07/2007 - 16:42:42 ---A- . (...) -- C:\Windows\system32\drivers\LVPr2Mon.sys [25624] O58 - SDL:[MD5.CAEF4C05BA2C1ACAD4EBCAA4261CD55D] - 19/07/2007 - 01:44:00 ---A- . (.Logitech Inc. - USB Statistic Driver.) -- C:\Windows\system32\drivers\LVUSBSta.sys [41752] O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [20952] O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224] O58 - SDL:[MD5.0CEA2D0D3FA284B85ED5B68365114F76] - 19/06/2006 - 22:26:58 ---A- . (.Conexant - Diagnostic Interface x86 Driver.) -- C:\Windows\system32\drivers\mdmxsdk.sys [12672] O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [28776] O58 - SDL:[MD5.D9A4B085739F0531957D104AA7F05FC5] - 03/01/2001 - 11:06:18 ---A- . (.D-Link Corporation - D-Link DSC Upload Driver.) -- C:\Windows\system32\drivers\minbulk.sys [10810] O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384] O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160] O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608] O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [88680] O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [40040] O58 - SDL:[MD5.DCA942C0A19A0AD2ABCD9ACF94EB4B10] - 05/12/2006 - 10:34:42 ---A- . (.PixArt Imaging Inc. - PFC027.) -- C:\Windows\system32\drivers\PFC027.SYS [507136] O58 - SDL:[MD5.FEFFCFDC528764A04C8ED63D5FA6E711] - 24/07/2006 - 03:00:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\system32\drivers\pxhelp20.sys [36528] O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [900712] O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088] O58 - SDL:[MD5.D85E3FA9F5B1F29BB4ED185C450D1470] - 15/11/2006 - 09:16:24 ---A- . (.REDC - RICOH MMC Driver.) -- C:\Windows\system32\drivers\rimmptsk.sys [32256] O58 - SDL:[MD5.DB8EB01C58C9FADA00C70B1775278AE0] - 15/11/2006 - 04:42:46 ---A- . (.REDC - RICOH MS Driver.) -- C:\Windows\system32\drivers\rimsptsk.sys [43520] O58 - SDL:[MD5.6C1F93C0760C9F79A1869D07233DF39D] - 15/11/2006 - 02:35:20 ---A- . (.REDC - RICOH XD SM Driver.) -- C:\Windows\system32\drivers\rixdptsk.sys [37376] O58 - SDL:[MD5.C1AE5D1F53285D79A0B73A62AF20734F] - 28/04/2011 - 08:09:33 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\Windows\system32\drivers\SBREDrv.sys [98392] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [38504] O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [71784] O58 - SDL:[MD5.EB49860E776CE860DC3CFB9EDB1BA517] - 23/04/2011 - 20:15:20 ---A- . (.Acronis - Acronis Snapshot API.) -- C:\Windows\system32\drivers\snapman.sys [170528] O58 - SDL:[MD5.D6870895FE46A464A19141440EB6CC1E] - 03/07/2007 - 15:54:24 ---A- . (.MCCI Corporation - SAMSUNG USB Composite Device Driver.) -- C:\Windows\system32\drivers\sscdbus.sys [80552] O58 - SDL:[MD5.38BA174E60FDA4219EFC917D514C2E28] - 03/07/2007 - 15:56:00 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\sscdcm.sys [9256] O58 - SDL:[MD5.38BA174E60FDA4219EFC917D514C2E28] - 03/07/2007 - 15:56:00 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\sscdcmnt.sys [9256] O58 - SDL:[MD5.0FE167362E4689B716CDC8D93ADEDDA8] - 03/07/2007 - 15:57:24 ---A- . (.MCCI Corporation - SAMSUNG Mobile Modem Filter Driver.) -- C:\Windows\system32\drivers\sscdmdfl.sys [11944] O58 - SDL:[MD5.55A15707E32B6709242AD127E62CA55A] - 03/07/2007 - 15:58:20 ---A- . (.MCCI Corporation - SAMSUNG Mobile Modem WDM.) -- C:\Windows\system32\drivers\sscdmdm.sys [106792] O58 - SDL:[MD5.F85B5BA4753C3E6B2B5BFCA410A458A4] - 03/07/2007 - 16:00:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\sscdwh.sys [9256] O58 - SDL:[MD5.F85B5BA4753C3E6B2B5BFCA410A458A4] - 03/07/2007 - 16:00:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\sscdwhnt.sys [9256] O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 17/06/2010 - 15:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.14622AE81C72B08691EEDAABC1D4A129] - 02/05/2007 - 10:12:34 ---A- . (.MCCI Corporation - SAMSUNG Mobile USB Device II 1.0 Driver.) -- C:\Windows\system32\drivers\ssm_bus.sys [83592] O58 - SDL:[MD5.79B3761947FFDA77F2EF2225C1A1DFB1] - 02/05/2007 - 10:12:34 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssm_cm.sys [12424] O58 - SDL:[MD5.79B3761947FFDA77F2EF2225C1A1DFB1] - 02/05/2007 - 10:12:34 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssm_cmnt.sys [12424] O58 - SDL:[MD5.43EE5E9FDA61A5E0EAC4C1DE699E6E4D] - 02/05/2007 - 10:12:36 ---A- . (.MCCI Corporation - SAMSUNG Mobile USB Modem II 1.0 Filter Driver.) -- C:\Windows\system32\drivers\ssm_mdfl.sys [15112] O58 - SDL:[MD5.918CFD32C7FEB174F356A0A6FAD11F4B] - 02/05/2007 - 10:12:36 ---A- . (.MCCI Corporation - SAMSUNG Mobile USB Modem II 1.0 Driver.) -- C:\Windows\system32\drivers\ssm_mdm.sys [109704] O58 - SDL:[MD5.029711A9A56D300E1DC60EC65121403E] - 02/05/2007 - 10:12:36 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssm_wh.sys [12424] O58 - SDL:[MD5.029711A9A56D300E1DC60EC65121403E] - 02/05/2007 - 10:12:36 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssm_whnt.sys [12424] O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 24/07/2006 - 15:05:00 ---A- . (...) -- C:\Windows\system32\drivers\StarOpen.sys [5632] O58 - SDL:[MD5.3CFEA727795243364BB6A7F9A091FAA3] - 06/03/2007 - 21:38:52 ---A- . (.SigmaTel, Inc. - NDRC.) -- C:\Windows\system32\drivers\stwrt.sys [323584] O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944] O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848] O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920] O58 - SDL:[MD5.DD17B63F26430E179EF6BDEF5AC735BD] - 28/04/2007 - 01:35:56 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [182456] O58 - SDL:[MD5.431801FCC97034E04A6EFF81136578D7] - 23/04/2011 - 20:15:39 ---A- . (.Acronis - Acronis Try&Decide Volume Filter Driver.) -- C:\Windows\system32\drivers\tdrpm273.sys [752128] O58 - SDL:[MD5.A34D7024BB7140EC785C86BC065D4F60] - 23/04/2011 - 20:15:36 ---A- . (.Acronis - Acronis Backup Archive Explorer.) -- C:\Windows\system32\drivers\timntr.sys [600928] O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [235112] O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408] O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816] O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys [112232] O58 - SDL:[MD5.46D67209550973257601A533E2AC5785] - 02/11/2006 - 08:41:49 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL3.SYS [200704] O58 - SDL:[MD5.5C7BDCF5864DB00323FE2D90FA26A8A2] - 02/11/2006 - 08:41:48 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT3.SYS [654336] O58 - SDL:[MD5.EC36F1D542ED4252390D446BF6D4DFD0] - 02/11/2006 - 08:41:50 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV3.SYS [987648] O58 - SDL:[MD5.5A7FF9A18FF6D7E0527FE3ABF9204EF8] - 05/08/2006 - 01:39:10 ---A- . (.Conexant Systems, Inc. - Modem Audio Device Driver.) -- C:\Windows\system32\drivers\XAudio.sys [8192] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097] O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768] O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537] O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146] O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952] O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672] O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776] O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536] O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC:Last File Created 03/05/2011 - 20:26:23 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Scan_2011-05-03-20-13-58.log [174] O61 - LFC:Last File Created 03/05/2011 - 20:26:23 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Service_2011-05-03-20-13-58.log [154] O61 - LFC:Last File Created 04/05/2011 - 19:23:19 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Statistics\3-0-00011B0E.lsf [1156] O61 - LFC:Last File Created 04/05/2011 - 19:23:57 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Scan_2011-05-04-20-23-19.log [174] O61 - LFC:Last File Created 04/05/2011 - 19:23:57 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Service_2011-05-04-20-23-19.log [154] O61 - LFC:Last File Created 04/05/2011 - 19:23:58 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Update.log [165038] O61 - LFC:Last File Created 04/05/2011 - 19:46:03 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Scan_2011-05-04-20-23-57.log [174] O61 - LFC:Last File Created 04/05/2011 - 19:46:03 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Service_2011-05-04-20-23-57.log [154] O61 - LFC:Last File Created 05/05/2011 - 19:34:18 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Statistics\3-0-0000B588.lsf [13601] O61 - LFC:Last File Created 05/05/2011 - 19:34:20 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Statistics\3-0-0000BAD5.lsf [6938] O61 - LFC:Last File Created 05/05/2011 - 19:36:11 ---A- C:\Users\All Users\Acronis\TrueImageHome\ArchiveExplorer\2011-05-05-20-36-09.log [125] O61 - LFC:Last File Created 05/05/2011 - 19:55:00 --HA- C:\Users\moi\AppData\Local\IconCache.db [2487011] O61 - LFC:Last File Created 05/05/2011 - 19:55:34 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\rc.dat [9] O61 - LFC:Last File Created 05/05/2011 - 19:55:37 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Scan_2011-05-05-20-34-17.log [174] O61 - LFC:Last File Created 05/05/2011 - 19:55:37 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Service_2011-05-05-20-34-17.log [154] O61 - LFC:Last File Created 05/05/2011 - 20:02:24 ---A- C:\Users\moi\AppData\Local\temp\moi.bmp [31832] O61 - LFC:Last File Created 05/05/2011 - 20:03:15 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\news.dat [728] O61 - LFC:Last File Created 05/05/2011 - 20:03:24 ---A- C:\Users\All Users\SupportSoft\DellSupportCenter\SYSTEM\updates\updates.state [208] O61 - LFC:Last File Created 05/05/2011 - 20:03:38 ---A- C:\Users\All Users\Acronis\TrueImageHome\ArchiveExplorer\2011-05-05-21-03-36.log [125] O61 - LFC:Last File Created 05/05/2011 - 21:40:45 ---A- C:\Users\moi\AppData\Roaming\OpenOffice.org2\user\registry\data\org\openoffice\Office\Common.xcu [58439] O61 - LFC:Last File Created 05/05/2011 - 21:41:07 --HA- C:\Users\moi\ntuser.dat.LOG1 [262144] O61 - LFC:Last File Created 05/05/2011 - 21:41:08 -SHA- C:\Users\moi\ntuser.dat [4456448] O61 - LFC:Last File Created 05/05/2011 - 21:41:23 ---A- C:\Users\All Users\Acronis\TrueImageHome\Logs\afcdpsrv.log [4293] O61 - LFC:Last File Created 05/05/2011 - 21:41:28 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\rp_rules.dat [44] O61 - LFC:Last File Created 05/05/2011 - 21:41:28 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\rp_stats.dat [470] O61 - LFC:Last File Created 05/05/2011 - 21:41:29 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\quarantine.dat [3296] O61 - LFC:Last File Created 05/05/2011 - 21:41:29 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\whitelist.dat [9] O61 - LFC:Last File Created 05/05/2011 - 21:41:31 ---A- C:\Users\All Users\SupportSoft\DellSupportCenter\SYSTEM\state\logs\sprtcmd.log [988047] O61 - LFC:Last File Created 05/05/2011 - 21:41:48 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Debug.log [517548] O61 - LFC:Last File Created 05/05/2011 - 21:41:58 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Scan_2011-05-05-21-00-17.log [174] O61 - LFC:Last File Created 05/05/2011 - 21:41:58 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Service_2011-05-05-21-00-17.log [154] O61 - LFC:Last File Created 06/05/2011 - 18:06:39 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Scan_2011-05-06-19-06-32.log [2] O61 - LFC:Last File Created 06/05/2011 - 18:06:39 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\Service_2011-05-06-19-06-32.log [2] O61 - LFC:Last File Created 06/05/2011 - 18:07:31 ---A- C:\Users\fanny\AppData\Local\temp\fanny.bmp [31832] O61 - LFC:Last File Created 06/05/2011 - 18:17:07 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Backup\backup.dat [462] O61 - LFC:Last File Created 06/05/2011 - 18:17:07 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Backup\userinit.exe.117c65cb6109b4a65a5f9bcc2027c463.0e135526e9785d085bcd9aede6fbcbf9.aawbackup [25092] O61 - LFC:Last File Created 06/05/2011 - 18:40:47 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Statistics\1-6-00214578.lsf [1830] O61 - LFC:Last File Created 06/05/2011 - 18:40:48 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\Logs\runningScanLog.log [0] O61 - LFC:Last File Created 06/05/2011 - 18:40:48 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\statistics.dat [314128] O61 - LFC:Last File Created 06/05/2011 - 18:46:43 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\settings.dat [82329] O61 - LFC:Last File Created 06/05/2011 - 18:46:43 ---A- C:\Users\All Users\Lavasoft\Ad-Aware\usage_statistics.dat [34282] O61 - LFC:Last File Created 06/05/2011 - 18:46:43 ---A- C:\Users\All Users\Lavasoft\License\guid.dat [72] O61 - LFC:Last File Created 06/05/2011 - 18:47:24 ---A- C:\Users\fanny\AppData\Local\temp\~DF11F2.tmp [114688] O61 - LFC:Last File Created 06/05/2011 - 18:55:42 ---A- C:\Users\fanny\AppData\Local\temp\INMEM000.REM [0] ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - C:\Windows\System32\DRIVERS\afcdp.sys - afcdp (afcdp) .(.Acronis - File Level CDP Kernel Helper.) - LEGACY_AFCDP O64 - Services: CurCS - C:\Program Files\Avira\AntiVir Desktop\sched.exe - Avira AntiVir Planificateur (AntiVirSchedulerService) .(.Avira GmbH - Antivirus Scheduler.) - LEGACY_ANTIVIRSCHEDULERSERVICE O64 - Services: CurCS - C:\Program Files\Avira\AntiVir Desktop\avguard.exe - Avira AntiVir Guard (AntiVirService) .(.Avira GmbH - Antivirus On-Access Service.) - LEGACY_ANTIVIRSERVICE O64 - Services: CurCS - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio (avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avgntflt.sys - avgntflt (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avipbb.sys - avipbb (avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP O64 - Services: CurCS - C:\Users\fanny\AppData\Local\Temp\catchme.sys (.not file.) - catchme (catchme) .(...) - LEGACY_CATCHME O64 - Services: CurCS - (.not file.) - DellBIOS (DellBIOS) .(...) - LEGACY_DELLBIOS O64 - Services: CurCS - C:\Windows\System32\DRIVERS\dsunidrv.sys - DellSupport UniDriver (dsunidrv) .(.Gteko Ltd. - GUniDriver.) - LEGACY_DSUNIDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Software Updater (gusvc) .(.Google - gusvc.) - LEGACY_GUSVC O64 - Services: CurCS - C:\Windows\System32\DRIVERS\LVPr2Mon.sys - Logitech LVPr2Mon Driver (LVPr2Mon) .(...) - LEGACY_LVPR2MON O64 - Services: CurCS - (.not file.) - mbr (mbr) .(...) - LEGACY_MBR O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfeavfk) .(...) - LEGACY_MFEAVFK O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfebopk) .(...) - LEGACY_MFEBOPK O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfehidk) .(...) - LEGACY_MFEHIDK O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfesmfk) .(...) - LEGACY_MFESMFK O64 - Services: CurCS - (.not file.) - MPFP (MPFP) .(...) - LEGACY_MPFP O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - C:\PROGRA~1\DELLSU~2\HWDiag\bin\PCD5SRVC.pkms - PCD5SRVC{FBEA8B78-1B22F121-05040104} - PCDR Kernel Mode Service Helper Driver (PCD5SRVC{FBEA8B78-1B22F121-05040104}) .(.PC-Doctor, Inc. - Kernel Driver.) - LEGACY_PCD5SRVC{FBEA8B78- O64 - Services: CurCS - C:\Windows\System32\Drivers\PxHelp20.sys - PxHelp20 (PxHelp20) .(.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) - LEGACY_PXHELP20 O64 - Services: CurCS - C:\Program Files\CyberLink\Shared Files\RichVideo.exe - Cyberlink RichVideo Service(CRVS) (RichVideo) .(.Pas de propriétaire - RichVideo Module.) - LEGACY_RICHVIDEO O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR O64 - Services: CurCS - C:\Windows\System32\DRIVERS\ssmdrv.sys - ssmdrv (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\STAROPEN.sys - StarOpen (StarOpen) .(...) - LEGACY_STAROPEN O64 - Services: CurCS - C:\Windows\System32\DRIVERS\xaudio.sys - XAudio (XAudio) .(.Conexant Systems, Inc. - Modem Audio Device Driver.) - LEGACY_XAUDIO ---\\ Liste des fichiers non signés (O65) O65 - LUF:17/09/2006 (.Pas de propriétaire - CddbFileTagger Module.) (2, 0, 0, 3) - c:\windows\system32\CddbFileTaggerRoxio.dll O65 - LUF:17/09/2006 (.Pas de propriétaire - CddbPlaylist2 Module.) (2, 4, 1, 9) - c:\windows\system32\CddbPlaylist2Roxio.dll O65 - LUF:08/11/2001 (.Pas de propriétaire - Install 1.5M DSC (thumbnail) TWAIN Driver Application.) (1, 0, 0, 1) - c:\windows\system32\Dualunis.exe O65 - LUF:25/01/2005 (.Pas de propriétaire - .) (1, 0, 0, 1) - c:\windows\system32\PA207USD.DLL ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <FirefoxHTML>[HKLM\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {A292424A-6F41-466F-8754-63F2BF9BB3BA} - (Live Search) - Bing ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe O87 - FAEL: "TCP Query User{4927BA9D-E005-47A2-9AEC-0D7E15DBEDA2}C:\program files\skype\phone\skype.exe" | In - Private - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe O87 - FAEL: "UDP Query User{BEE5461C-147F-41A6-B6C0-72CD2B7936FA}C:\program files\skype\phone\skype.exe" | In - Private - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "TCP Query User{7162D2E8-96BE-4F75-8F40-347BF57DB5B5}C:\program files\skype\phone\skype.exe" | In - Public - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe O87 - FAEL: "UDP Query User{ABF75FBB-C20D-4330-BC9E-E461040CC88B}C:\program files\skype\phone\skype.exe" | In - Public - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe O87 - FAEL: "TCP Query User{91E03A3E-768C-491D-873E-A27F153A80ED}C:\program files\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe O87 - FAEL: "UDP Query User{3B9D4194-207B-4294-9C27-1F8233620950}C:\program files\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe O87 - FAEL: "TCP Query User{CFE9FCE9-EA19-4D3C-81F2-C07124DD7BD5}C:\program files\internet explorer\iexplore.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe O87 - FAEL: "UDP Query User{467356F9-0602-4BA1-B00C-6516B455097D}C:\program files\internet explorer\iexplore.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "{A9898CC0-50F6-4099-B920-9E0AAE9D8A10}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe O87 - FAEL: "{7CE8330F-8EDF-4250-98B3-B638589A5A8D}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{753A2730-082C-4B15-BABD-308AB41686FF}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Mesh Operating Environment.) -- C:\Program Files\Windows Live\Mesh\MOE.exe ---\\ Scan Additionnel (O88) Database Version : 2903 - (29/03/2011) [HKLM\Software\Classes\toolband.easyhidebtn] =>Toolbar.Agent [HKLM\Software\Classes\toolband.easyhidebtn.1] =>Toolbar.Agent [HKLM\Software\Classes\toolband.localizer] =>Toolbar.Agent [HKLM\Software\Classes\toolband.localizer.1] =>Toolbar.Agent [HKLM\Software\Classes\toolband.namehighlighter] =>Toolbar.Agent [HKLM\Software\Classes\toolband.namehighlighter.1] =>Toolbar.Agent [HKLM\Software\Classes\toolband.namehighlighterstatistics] =>Toolbar.Agent [HKLM\Software\Classes\toolband.namehighlighterstatistics.1] =>Toolbar.Agent [HKLM\Software\Classes\toolband.skypeiehelper] =>Toolbar.Agent [HKLM\Software\Classes\toolband.skypeiehelper.1] =>Toolbar.Agent [HKLM\Software\Classes\toolband.snameproxy] =>Toolbar.Agent [HKLM\Software\Classes\toolband.snameproxy.1] =>Toolbar.Agent ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Auto 01/02/2011 804928 | (AcrSch2Svc) . (.Acronis.) - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe SS - | Auto 23/04/2011 3246040 | (afcdpsrv) . (.Acronis.) - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe SS - | Auto 05/05/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SS - | Auto 31/03/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SS - | Auto 21/03/2007 565248 | (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe SS - | Disabled 28/02/2011 183560 | (BBSvc) . (.Microsoft Corporation..) - C:\Program Files\Microsoft\BingBar\BBSvc.exe SS - | Disabled 19/03/2007 70656 | (DSBrokerService) . (...) - C:\Program Files\DellSupport\brkrsvc.exe SS - | Auto 08/04/2009 133104 | (gupdate1c9b88a5ee9810) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 08/04/2009 133104 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Auto 08/04/2009 183280 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Demand 22/10/2004 73728 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe SR - | Auto 28/04/2011 2146496 | (Lavasoft Ad-Aware Service) . (.Lavasoft Limited.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe SS - | Auto 20/07/2007 186904 | (LVCOMSer) . (.Logitech Inc..) - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe SS - | Auto 20/07/2007 137752 | (LVPrcSrv) . (.Logitech Inc..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe SS - | Auto 20/07/2007 141848 | (LVSrvLauncher) . (.Logitech Inc..) - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe SS - | Demand 05/11/2008 22904 | (PCD5SRVC{FBEA8B78-1B22F121-05040104}) . (.PC-Doctor, Inc..) - C:\PROGRA~1\DELLSU~2\HWDiag\bin\PCD5SRVC.pkms SS - | Demand 24/10/2008 244904 | (RichVideo) . (...) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe SS - | Demand 05/11/2006 880640 | (RoxMediaDB9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe SS - | Auto 05/11/2006 159744 | (RoxWatch9) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe SS - | Auto 30/01/2009 201968 | (sprtsvc_DellSupportCenter) . (.SupportSoft, Inc..) - C:\Program Files\Dell Support Center\bin\sprtsvc.exe SS - | Auto 06/03/2007 90112 | (STacSV) . (.SigmaTel, Inc..) - C:\Windows\system32\STacSV.exe SS - | Demand 14/09/2006 73728 | (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe SS - | Auto 19/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe SS - | Auto 05/08/2006 386560 | (XAudioService) . (.Conexant Systems, Inc..) - C:\Windows\system32\DRIVERS\xaudio.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by fanny at 06/05/2011 20:43:54 Use the desktop link 'MBRCheck' to have full report Dump file Name : C:\PhysicalDisk0_MBR.bin End of the scan (1439 lines in 43mn 35s)(0)
- le 7 mai 2011

Connexion

duver

Compteur de contenus

Inscription

Dernière visite

duver's Achievements

Junior Member (3/12)

Réputation sur la communauté

Generic BT

Zebulon

Outils en ligne

Naviguer