franck de Marseille

Bonjour, Voilà le point 1 : This log file is located at C:\rkill.log. Please post this only if requested to by the person helping you. Otherwise you can close this log when you wish. Ran as famille on 15/08/2010 at 10:43:10. Processes terminated by Rkill or while it was running: C:\Users\famille\AppData\Roaming\AnVi\avt.exe C:\Users\famille\Downloads\rkill.com Rkill completed on 15/08/2010 at 10:43:14.

Re bonjour, Un peu de précision : une des fenêtres qui s'ouvre fait référence à une pub "Antivirus" et semble sponsorisée par "PC Pro Best value" "Softpedia" et c'est entièrement en anglais. Le symbole est un bouclier vert avec dessus une coche blanche. Merci encore de votre aide

Bonjour, Je suis sous windows vista. J'ai une fenêtre qui s'ouvre régulièrement et qui me signale que je suis infecté par des chevaux de Troie et autres vers. Or je n'ai jamais téléchargé d'antivirus. J'aimerai en savoir plus sur ce logiciel (qui s'ouvre automatiquement) et pouvoir le virer de là car il s'ouvre à tout bout de champs et c'est pénible. Merci d'avance. Franck.

Bonsoir, Il n'y a pas (apparemment) de veille hybride sous vista. Ce que j'ai fait pour l'instant c'est d'avoir mis "jamais" à "éteindre écran" et "mettre l'ordinateur en veille". Je vais voir ce que cela donne. A bientôt.

Bonjour à tous, Un petit problème : Quand mon ordi passe en mode veille, au redémarrage le bureau n'apparait pas. Je suis obligé de faire un reset. Pouvez vous m'aider ? Je suis sous windows VISTA et hier j'ai fait une mise à jour "microsoft" de ma carte vidéo (NVIDIA GEFORCE GT230). Merci d'avance.

OK. Merci de votre aide. Je vous recontacterai si j'ai encore des soucis. Bonne continuation.

Bien le bonjour, Après ce week end glacial c'est la reprise. Voici donc l'analyse "Virustotal" : Antivirus Version Dernière mise à jour Résultat a-squared 4.5.0.48 2010.01.11 - AhnLab-V3 5.0.0.2 2010.01.10 - AntiVir 7.9.1.134 2010.01.10 - Antiy-AVL 2.0.3.7 2010.01.08 - Authentium 5.2.0.5 2010.01.10 - Avast 4.8.1351.0 2010.01.10 - AVG 8.5.0.430 2010.01.04 - BitDefender 7.2 2010.01.11 - CAT-QuickHeal 10.00 2010.01.11 - ClamAV 0.94.1 2010.01.11 - Comodo 3539 2010.01.11 - DrWeb 5.0.1.12222 2010.01.10 - eSafe 7.0.17.0 2010.01.10 - eTrust-Vet 35.2.7229 2010.01.11 - F-Prot 4.5.1.85 2010.01.10 - F-Secure 9.0.15370.0 2010.01.11 - Fortinet 4.0.14.0 2010.01.09 - GData 19 2010.01.11 - Ikarus T3.1.1.80.0 2010.01.11 - Jiangmin 13.0.900 2010.01.11 - K7AntiVirus 7.10.943 2010.01.09 - Kaspersky 7.0.0.125 2010.01.11 - McAfee 5857 2010.01.10 - McAfee+Artemis 5857 2010.01.10 - McAfee-GW-Edition 6.8.5 2010.01.11 - Microsoft 1.5302 2010.01.11 - NOD32 4759 2010.01.10 - Norman 6.04.03 2010.01.10 - nProtect 2009.1.8.0 2010.01.11 - Panda 10.0.2.2 2010.01.10 - PCTools 7.0.3.5 2010.01.11 - Rising 22.30.00.05 2010.01.11 - Sophos 4.49.0 2010.01.11 - Sunbelt 3.2.1858.2 2010.01.10 - Symantec 20091.2.0.41 2010.01.11 - TheHacker 6.5.0.3.146 2010.01.11 - TrendMicro 9.120.0.1004 2010.01.11 - VBA32 3.12.12.1 2010.01.11 - ViRobot 2010.1.11.2129 2010.01.11 - VirusBuster 5.0.21.0 2010.01.10 - Information additionnelle File size: 9680 bytes MD5...: 9b2a6147a22f7e696cc7538283de6346 SHA1..: 5606b654d7d391605bf34ed8bd9b89f79a87cf3f SHA256: 4bb6e018c36684172cddc456f90a1b4d14ba70711e47514921d919969d8ddeec ssdeep: 192:f2RlLahsLoHjPRpOv2JdQ8kJCkiAUWSyR90eLUyBOHfXPyaWXHW:uS8SPA27 Q8k0mUWSyM0FUHfXP/WXHW PEiD..: - PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x51e timedatestamp.....: 0x37f3f168 (Thu Sep 30 23:25:28 1999) machinetype.......: 0x14c (I386) ( 7 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x2e0 0x1032 0x1040 6.39 77432f21dc30c8aab69dcf5cb554e0bf .rdata 0x1320 0x140 0x140 3.29 c46cdfb1bc5856c25de4be7721ab168c .data 0x1460 0x1cc 0x1e0 2.48 c48df6cfe5a5f48f00a5ae710f39bb9e PAGE 0x1640 0x3bc 0x3c0 6.15 8681e5fda0e24c2d0f1ff5fdc1e80c2c INIT 0x1a00 0x4d6 0x4e0 5.25 29982325ece5a474a6576b3d42e850a0 .rsrc 0x1ee0 0x3d8 0x3e0 3.38 c2028ea2ac742f9c217bcdbc2d48837e .reloc 0x22c0 0x1e2 0x200 5.13 a0eb99148dcf69630d0f8f63e8f5a9ad ( 2 imports ) > ntoskrnl.exe: InterlockedExchange, KeSetEvent, IoAllocateMdl, IoDisconnectInterrupt, IoAllocateAdapterChannel, KeWaitForSingleObject, MmBuildMdlForNonPagedPool, MmMapLockedPages, MmMapLockedPagesSpecifyCache, IoReportResourceForDetection, MmUnmapIoSpace, MmMapIoSpace, ExAllocatePoolWithTag, IoGetCurrentProcess, KeInitializeEvent, IoCreateDevice, IoCreateSymbolicLink, _except_handler3, ProbeForRead, IofCompleteRequest, ExFreePool, RtlInitUnicodeString, IoDeleteSymbolicLink, IoDeleteDevice, IoFreeMdl, IoConnectInterrupt > HAL.dll: HalGetInterruptVector, HalReadDmaCounter, IoFlushAdapterBuffers, IoFreeAdapterChannel, KfRaiseIrql, KfLowerIrql, IoMapTransfer, HalGetAdapter, HalAllocateCommonBuffer, HalFreeCommonBuffer, HalGetBusDataByOffset, WRITE_PORT_ULONG, WRITE_PORT_USHORT, WRITE_PORT_UCHAR, READ_PORT_ULONG, READ_PORT_USHORT, READ_PORT_UCHAR, HalTranslateBusAddress, ExAcquireFastMutex, ExReleaseFastMutex ( 0 exports ) RDS...: NSRL Reference Data Set - pdfid.: - trid..: Win32 Executable Generic (68.0%) Generic Win/DOS Executable (15.9%) DOS Executable Generic (15.9%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%) sigcheck: publisher....: Microsoft Corporation copyright....: Copyright © Microsoft Corp. 1981-1999 product......: Microsoft® Windows ® 2000 Operating System description..: Network Card Detection driver original name: NETDTECT.SYS internal name: NETDTECT.SYS file version.: 5.00.2138.1 comments.....: n/a signers......: Microsoft Windows 2000 Publisher Microsoft Windows Verification Intermediate PCA Microsoft Root Authority signing date.: 8:05 PM 7/27/2000 verified.....: -

Bonjour, Dernier rapport MBAM : Malwarebytes' Anti-Malware 1.44 Version de la base de données: 3516 Windows 5.0.2195 Service Pack 4 Internet Explorer 6.0.2800.1106 08/01/2010 16:00:44 mbam-log-2010-01-08 (16-00-43).txt Type de recherche: Examen complet (C:\|D:\|F:\|) Eléments examinés: 187887 Temps écoulé: 1 hour(s), 23 minute(s), 4 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Bon week end et à Lundi !!!

Bonjour, Voilà ce dernier rapport : Logfile of The Avenger Version 2.0, © by Swandog46 http://swandog46.geekstogo.com Platform: Windows 2000 ******************* Script file opened successfully. Script file read successfully. Backups directory opened successfully at C:\Avenger ******************* Beginning to process script file: Rootkit scan active. No rootkits found! Completed script processing. ******************* Finished! Terminate.

Voilà le rapport MBAM : Malwarebytes' Anti-Malware 1.43 Version de la base de données: 3507 Windows 5.0.2195 Service Pack 4 Internet Explorer 6.0.2800.1106 07/01/2010 14:12:19 mbam-log-2010-01-07 (14-12-19).txt Type de recherche: Examen complet (C:\|D:\|F:\|) Eléments examinés: 187883 Temps écoulé: 1 hour(s), 35 minute(s), 2 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)

Re bonjour, Voilà mais je n'ai rien en rouge.... : GMER 1.0.15.15281 - http://www.gmer.net Rootkit scan 2010-01-07 11:44:38 Windows 5.0.2195 Service Pack 4 Running: gmer.exe; Driver: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\pwryrpog.sys ---- System - GMER 1.0.15 ---- SSDT 81348406 ZwCreateKey SSDT 813483FC ZwCreateThread SSDT 8134840B ZwDeleteKey SSDT 81348415 ZwDeleteValueKey SSDT 8134841A ZwLoadKey SSDT 813483E8 ZwOpenProcess SSDT 813483ED ZwOpenThread SSDT 81348424 ZwReplaceKey SSDT 8134841F ZwRestoreKey SSDT 81348410 ZwSetValueKey SSDT 813483F7 ZwTerminateProcess INT 0x1F \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064908 INT 0x37 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 800640B8 INT 0x3D \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80065254 INT 0x41 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 800650C8 INT 0x50 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064190 INT 0xC1 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 800642FC INT 0xD1 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80063964 INT 0xE1 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064858 INT 0xE3 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 800645D4 INT 0xFD \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064D64 INT 0xFE \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064EEC Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwCreateFile [0xB6A6B1A8] Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwCreateProcess [0xB6A6B1D0] Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwMapViewOfSection [0xB6A6B1FA] Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwOpenKey [0xB6A6B117] Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwProtectVirtualMemory [0xB6A6B1BC] Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwUnmapViewOfSection [0xB6A6B20E] Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwYieldExecution [0xB6A6B1E4] ---- Modules - GMER 1.0.15 ---- Module \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80062000-80076100 (82176 bytes) Module dmload.sys (NT Disk Manager Startup Driver/VERITAS Software Corp.) ED902000-ED904000 (8192 bytes) Module dmio.sys (Pilote E/S du Gestionnaire de disques NT/VERITAS Software Corp.) BFF99000-BFFBB000 (139264 bytes) Module disk.sys (PnP Disk Driver/Microsoft Corporation) ED690000-ED698000 (32768 bytes) Module \SystemRoot\System32\DRIVERS\ialmnt5.sys (Controller Hub for Intel Graphics Driver/Intel Corporation) BFE5D000-BFE71000 (81920 bytes) Module \SystemRoot\System32\DRIVERS\e1000nt5.sys (Intel® PRO/1000 Adapter NDIS 5 deserialized driver/Intel Corporation) BFE22000-BFE3B000 (102400 bytes) Module \SystemRoot\System32\Drivers\Cdr4_2K.SYS (CDR4_2k CDR Helper/Roxio) ED470000-ED47F000 (61440 bytes) Module \SystemRoot\System32\DRIVERS\cdrom.sys (SCSI CD-ROM Driver/Microsoft Corporation) ED700000-ED707000 (28672 bytes) Module \SystemRoot\System32\Drivers\Cdralw2k.SYS (CDRAL for Windows 2000 Kernel Driver/Roxio) ED710000-ED716000 (24576 bytes) Module \SystemRoot\system32\drivers\smwdm.sys (SoundMAX Integrated Digital Audio /Analog Devices, Inc.) BFDA1000-BFE22000 (528384 bytes) Module \SystemRoot\system32\drivers\aeaudio.sys (Andrea Audio Stub Driver/Andrea Electronics Corporation) ED90A000-ED90C000 (8192 bytes) Module \SystemRoot\System32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) ED770000-ED775000 (20480 bytes) Module \SystemRoot\system32\drivers\ialmsbw.sys (Intel Graphics Platform (SoftBIOS) Driver for Windows 2000® & Windows XP/Intel Corporation) B7C5B000-B7C72000 (94208 bytes) Module \SystemRoot\system32\drivers\ialmkchw.sys (Intel Graphics Chipset (KCH) Driver for Windows 2000® & Windows XP/Intel Corporation) B7C49000-B7C5B000 (73728 bytes) Module \SystemRoot\System32\DRIVERS\flpydisk.sys (Floppy Driver/Microsoft Corporation) ED7A8000-ED7AD000 (20480 bytes) Module \SystemRoot\System32\Drivers\mnmdd.SYS (Frame buffer simulator/Microsoft Corporation) EDA0E000-EDA0F000 (4096 bytes) Module \SystemRoot\system32\drivers\mfetdik.sys (Anti-Virus Mini-Firewall Driver/McAfee, Inc.) ED530000-ED53C000 (49152 bytes) Module \??\C:\Program_Files\McAfee\VirusScan_Enterprise\mferkdk.sys (VSCore Code Analysis Driver/McAfee, Inc.) ED6D0000-ED6D7000 (28672 bytes) Module \SystemRoot\system32\DRIVERS\avipbb.sys B7A0E000-B7A25000 (94208 bytes) Module \SystemRoot\System32\ialmdnt5.dll (Controller Hub for Intel Graphics Driver/Intel Corporation) B79DF000-B79F8000 (102400 bytes) Module \SystemRoot\System32\ialmrnt5.dll (Controller Hub for Intel Graphics Driver/Intel Corporation) ED580000-ED58D000 (53248 bytes) Module \SystemRoot\System32\ialmdev5.DLL (Component GHAL Driver/Intel Corporation) B79B7000-B79DF000 (163840 bytes) Module \SystemRoot\System32\ialmdd5.DLL (DirectDraw® Driver for Intel® Graphics Technology/Intel Corporation) B7930000-B79B7000 (552960 bytes) Module \SystemRoot\System32\Drivers\Aspi32.SYS (ASPI for WIN32 Kernel Driver/Adaptec) B7808000-B780C000 (16384 bytes) Module \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) B6A57000-B6A81000 (172032 bytes) Module \SystemRoot\System32\ATMFD.DLL (Windows NT OpenType/Type 1 Font Driver/Adobe Systems Incorporated) B6694000-B66DC000 (294912 bytes) Module \SystemRoot\system32\drivers\mfebopk.sys (Buffer Overflow Protection Driver/McAfee, Inc.) ED788000-ED78F000 (28672 bytes) Module \SystemRoot\system32\drivers\mfeapfk.sys (Access Protection Filter Driver/McAfee, Inc.) B67D6000-B67E5000 (61440 bytes) Module \SystemRoot\system32\drivers\mfeavfk.sys (Anti-Virus File System Filter Driver/McAfee, Inc.) B6588000-B6599000 (69632 bytes) Module \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\pwryrpog.sys (GMER) B654C000-B6563000 (94208 bytes) ---- Processes - GMER 1.0.15 ---- Process C:\WINNT\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 176 Library C:\WINNT\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 0x5FFF0000 Process C:\WINNT\system32\winlogon.exe (Application d'ouverture de session Windows NT/Microsoft Corporation) 196 Library C:\WINNT\system32\PROFMAP.dll (Userenv/Microsoft Corporation) 0x68EF0000 Library C:\WINNT\system32\msgina.dll (Application d'ouverture de session Windows NT/Microsoft Corporation) 0x76960000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\WINNT\system32\MSACM32.dll (Filtre audio ACM Microsoft/Microsoft Corporation) 0x773E0000 Process C:\WINNT\system32\services.exe (Applications Services et Contrôleur/Microsoft Corporation) 224 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\WINNT\system32\dmserver.dll (DLL Service gestionnaire de disque logique/VERITAS Software Corp.) 0x76860000 Library C:\WINNT\system32\cryptsvc.dll (Protected storage server/Microsoft Corporation) 0x76870000 Process C:\WINNT\system32\lsass.exe (Exécutable LSA et DLL serveur (version d'exportation)/Microsoft Corporation) 236 Library C:\WINNT\system32\lsass.exe (Exécutable LSA et DLL serveur (version d'exportation)/Microsoft Corporation) 0x01000000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Process C:\Program Files\Internet Explorer\IEXPLORE.EXE (Internet Explorer/Microsoft Corporation) 284 Library C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx 0x10000000 Library C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll (VSCore Script Scanner/McAfee, Inc.) 0x14490000 Library C:\WINNT\system32\MSACM32.dll (Filtre audio ACM Microsoft/Microsoft Corporation) 0x773E0000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\WINNT\system32\USP10.DLL (Uniscribe Unicode script processor/Microsoft Corporation) 0x66410000 Library C:\WINNT\system32\Macromed\Flash\Flash10b.ocx (Adobe Flash Player 10.0 r22/Adobe Systems, Inc.) 0x03630000 Process C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ZCTmp.Dir\gmer.exe 372 Library C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ZCTmp.Dir\gmer.exe 0x00400000 Process C:\WINNT\system32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 428 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Process C:\WINNT\system32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 456 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\WINNT\system32\E_SL2389.DLL (EPSON Bidirectional Monitor/SEIKO EPSON CORPORATION) 0x50400000 Library C:\WINNT\system32\pjlmon.dll (Spooler Setup DLL/Microsoft Corporation) 0x76A70000 Library C:\WINNT\system32\scnwpm.dll (SHARP TCP/IP Printer Port Monitor/Sharp Corporation) 0x00D20000 Library C:\WINNT\system32\SH2HLMON.DLL (Sharp Printer Driver/SHARP CORPORATION) 0x10000000 Process C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe 512 Library C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe 0x00400000 Library C:\WINNT\system32\eEBUtil.dll (DebugTrace Tool/SEIKO EPSON CORPORATION) 0x10000000 Library C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBRSVC.dll 0x00650000 Library C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBIPDev.dll (eEBAPI IP Communication Device/SEIKO EPSON CORPORATION) 0x00690000 Library C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBNWDev.dll 0x006E0000 Process C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe 524 Library C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe 0x00400000 Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000 Process C:\WINNT\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 560 Library C:\WINNT\System32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\WINNT\System32\ndptsp.tsp (Fournisseur de service TAPI proxy RNIS/Microsoft Corporation) 0x642A0000 Process C:\Program Files\EpsonNet\common\bin\emalmmon.exe 580 Library C:\Program Files\EpsonNet\common\bin\emalmmon.exe 0x00400000 Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000 Process C:\Program Files\EpsonNet\common\bin\emwchsrv.exe 588 Library C:\Program Files\EpsonNet\common\bin\emwchsrv.exe 0x00400000 Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000 Library C:\Program Files\EpsonNet\common\bin\xerces-c_1_6_0.dll (Shared Library for Xerces-C Version 1.6.0/Apache Software Foundation) 0x12000000 Library C:\Program Files\EpsonNet\common\bin\emmibgw.dll 0x005A0000 Library C:\WINNT\system32\EBAPI.dll 0x005F0000 Library C:\WINNT\system32\eEBUtil.dll (DebugTrace Tool/SEIKO EPSON CORPORATION) 0x00610000 Library C:\Program Files\EpsonNet\common\bin\EBUtil.dll (DebugTrace Tool/SEIKO EPSON CORPORATION) 0x00630000 Library C:\Program Files\EpsonNet\common\bin\empingi.dll 0x00660000 Library C:\Program Files\EpsonNet\common\bin\ctreestd.dll 0x00B50000 Process C:\Program Files\EpsonNet\EpsonNet SOAP Server\bin\emsoaprr.exe 596 Library C:\Program Files\EpsonNet\EpsonNet SOAP Server\bin\emsoaprr.exe 0x00400000 Library C:\Program Files\EpsonNet\common\bin\xerces-c_1_6_0.dll (Shared Library for Xerces-C Version 1.6.0/Apache Software Foundation) 0x12000000 Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000 Process C:\Program Files\EpsonNet\EpsonNet Web Pages Service\bin\ewpsrr.exe 708 Library C:\Program Files\EpsonNet\EpsonNet Web Pages Service\bin\ewpsrr.exe 0x00400000 Library C:\Program Files\EpsonNet\common\bin\xerces-c_1_6_0.dll (Shared Library for Xerces-C Version 1.6.0/Apache Software Foundation) 0x12000000 Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000 Process C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\apache.exe (Apache HTTP Server/Apache Software Foundation) 720 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\apache.exe (Apache HTTP Server/Apache Software Foundation) 0x00400000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libapr.dll (Apache Portability Runtime Library/Apache Software Foundation) 0x6EEC0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libaprutil.dll (Apache APR Utility Library/Apache Software Foundation) 0x6EE60000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libapriconv.dll (Apache APR I18N Conversion Library/Apache Software Foundation) 0x6EE50000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libhttpd.dll (Apache HTTP Server Core/Apache Software Foundation) 0x6FF00000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_access.so (access_module for Apache/Apache Software Foundation) 0x6FCF0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_actions.so (actions_module for Apache/Apache Software Foundation) 0x6FCE0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_alias.so (alias_module for Apache/Apache Software Foundation) 0x6FCD0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_asis.so (asis_module for Apache/Apache Software Foundation) 0x6FCC0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_auth.so (auth_module for Apache/Apache Software Foundation) 0x6FCB0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_autoindex.so (autoindex_module for Apache/Apache Software Foundation) 0x6FCA0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_cgi.so (cgi_module for Apache/Apache Software Foundation) 0x6FC90000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_dir.so (dir_module for Apache/Apache Software Foundation) 0x6FC80000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_env.so (env_module for Apache/Apache Software Foundation) 0x6FC70000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_imap.so (imap_module for Apache/Apache Software Foundation) 0x6FC60000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_include.so (include_module for Apache/Apache Software Foundation) 0x6FC50000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_isapi.so (isapi_module for Apache/Apache Software Foundation) 0x6FC40000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_log_config.so (log_config_module for Apache/Apache Software Foundation) 0x6FC30000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_mime.so (mime_module for Apache/Apache Software Foundation) 0x6FC20000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_negotiation.so (negotiation_module for Apache/Apache Software Foundation) 0x6FC10000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_setenvif.so (setenvif_module for Apache/Apache Software Foundation) 0x6FC00000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_userdir.so (userdir_module for Apache/Apache Software Foundation) 0x6FBF0000 Process C:\Program Files\Network Associates\Common Framework\McTray.exe (McAfee Security Agent Taskbar Extension/McAfee, Inc.) 724 Library C:\Program Files\Network Associates\Common Framework\McTray.exe (McAfee Security Agent Taskbar Extension/McAfee, Inc.) 0x00400000 Library C:\Program Files\Network Associates\Common Framework\JrMac.dll (McAfee Security Agent Taskbar Extension Library/McAfee, Inc.) 0x66900000 Process C:\Program Files\Network Associates\Common Framework\FrameworkService.exe (Framework Service/McAfee, Inc.) 748 Library C:\Program Files\Network Associates\Common Framework\FrameworkService.exe (Framework Service/McAfee, Inc.) 0x00400000 Library C:\Program Files\Network Associates\Common Framework\nailog3.dll (Debug Logging/McAfee, Inc.) 0x64880000 Library C:\Program Files\Network Associates\Common Framework\naxml3_71.dll (McAfee Agent naXML DLL/McAfee, Inc.) 0x64950000 Library C:\Program Files\Network Associates\Common Framework\naCmnLib3_71.dll (Common Library/McAfee, Inc.) 0x64830000 Library C:\Program Files\Network Associates\Common Framework\applib.dll (CMA Application Library/McAfee, Inc.) 0x64120000 Library C:\Program Files\Network Associates\Common Framework\cryptocme2.dll 0x10000000 Library C:\Program Files\Network Associates\Common Framework\040C\AgentRes.dll (Agent Subsystem Resources/McAfee, Inc.) 0x64100000 Library C:\Program Files\Network Associates\Common Framework\Logging.dll (Logging Subsystem/McAfee, Inc.) 0x64670000 Library C:\Program Files\Network Associates\Common Framework\UserSpace.Dll (User Space Controller Subsystem/McAfee, Inc.) 0x64B40000 Library C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory3.dll (Secure Framework Factory/McAfee, Inc.) 0x64A40000 Library C:\Program Files\Network Associates\Common Framework\Management.dll (Management Subsystem/McAfee, Inc.) 0x64680000 Library C:\Program Files\Network Associates\Common Framework\naPolicyManager.dll (Policy Manager/McAfee, Inc.) 0x648E0000 Library C:\Program Files\Network Associates\Common Framework\UpdateSubSys.Dll (McAfee Update Subsystem/McAfee, Inc.) 0x64AF0000 Library C:\Program Files\Network Associates\Common Framework\updater.dll (McAfee Agent Updater DLL/McAfee, Inc.) 0x64AA0000 Library C:\Program Files\Network Associates\Common Framework\ipcchannel.dll (McAfee Agent ipcchannel DLL/McAfee, Inc.) 0x64610000 Library C:\Program Files\Network Associates\Common Framework\boost_thread-vc71-mt-1_32.dll 0x64170000 Library C:\Program Files\Network Associates\Common Framework\mfeCmnLib71.dll (Common Library/McAfee, Inc.) 0x646C0000 Library C:\Program Files\Network Associates\Common Framework\Scheduler.dll (Scheduler Subsystem/McAfee, Inc.) 0x649F0000 Library C:\Program Files\Network Associates\Common Framework\Agent.dll (Agent Subsystem/McAfee, Inc.) 0x64000000 Library C:\Program Files\Network Associates\Common Framework\nainet.dll (CMA Internet Library/McAfee, Inc.) 0x64890000 Library C:\Program Files\Network Associates\Common Framework\mfecurl.dll (CMA CURLLIB/McAfee, Inc.) 0x64700000 Library C:\Program Files\Network Associates\Common Framework\mfezlib.dll (CMA ZLIB/McAfee, Inc.) 0x64740000 Library C:\Program Files\Network Associates\Common Framework\inetmgr.dll (CMA Internet Manager DLL/McAfee, Inc.) 0x64590000 Library C:\Program Files\Network Associates\Common Framework\naSPIPE.dll (Secure Pipe Library/McAfee, Inc.) 0x64920000 Library C:\Program Files\Network Associates\Common Framework\cmalib.dll (CMA Library/McAfee, Inc.) 0x641C0000 Library C:\Program Files\Network Associates\Common Framework\ListenServer.dll (Listen Server Subsystem/McAfee, Inc.) 0x64630000 Library C:\Program Files\Network Associates\Common Framework\TCSubSys.dll (TC Subsystem/McAfee, Inc.) 0x64A70000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\Program Files\Network Associates\Common Framework\Genevtinf3.dll (GenEvtInf Module/McAfee, Inc.) 0x64560000 Process C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\apache.exe (Apache HTTP Server/Apache Software Foundation) 836 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\apache.exe (Apache HTTP Server/Apache Software Foundation) 0x00400000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libapr.dll (Apache Portability Runtime Library/Apache Software Foundation) 0x6EEC0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libaprutil.dll (Apache APR Utility Library/Apache Software Foundation) 0x6EE60000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libapriconv.dll (Apache APR I18N Conversion Library/Apache Software Foundation) 0x6EE50000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libhttpd.dll (Apache HTTP Server Core/Apache Software Foundation) 0x6FF00000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_access.so (access_module for Apache/Apache Software Foundation) 0x6FCF0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_actions.so (actions_module for Apache/Apache Software Foundation) 0x6FCE0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_alias.so (alias_module for Apache/Apache Software Foundation) 0x6FCD0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_asis.so (asis_module for Apache/Apache Software Foundation) 0x6FCC0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_auth.so (auth_module for Apache/Apache Software Foundation) 0x6FCB0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_autoindex.so (autoindex_module for Apache/Apache Software Foundation) 0x6FCA0000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_cgi.so (cgi_module for Apache/Apache Software Foundation) 0x6FC90000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_dir.so (dir_module for Apache/Apache Software Foundation) 0x6FC80000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_env.so (env_module for Apache/Apache Software Foundation) 0x6FC70000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_imap.so (imap_module for Apache/Apache Software Foundation) 0x6FC60000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_include.so (include_module for Apache/Apache Software Foundation) 0x6FC50000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_isapi.so (isapi_module for Apache/Apache Software Foundation) 0x6FC40000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_log_config.so (log_config_module for Apache/Apache Software Foundation) 0x6FC30000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_mime.so (mime_module for Apache/Apache Software Foundation) 0x6FC20000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_negotiation.so (negotiation_module for Apache/Apache Software Foundation) 0x6FC10000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_setenvif.so (setenvif_module for Apache/Apache Software Foundation) 0x6FC00000 Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_userdir.so (userdir_module for Apache/Apache Software Foundation) 0x6FBF0000 Process C:\WINNT\Explorer.EXE (Explorateur Windows/Microsoft Corporation) 1904 Library C:\WINNT\system32\shim.dll (Shim Engine DLL/Microsoft Corporation) 0x77880000 Library C:\WINNT\system32\MSACM32.dll (Filtre audio ACM Microsoft/Microsoft Corporation) 0x773E0000 Library C:\Program Files\Network Associates\Common Framework\JrMac.dll (McAfee Security Agent Taskbar Extension Library/McAfee, Inc.) 0x66900000 Library C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll (VSCore Script Scanner/McAfee, Inc.) 0x14490000 Library C:\WINNT\system32\ACTIVEDS.dll (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx 0x10000000 Library C:\Program Files\OpenOffice.org 2.3\program\shlxthdl.dll (Sun Microsystems, Inc.) 0x62350000 Library C:\Program Files\OpenOffice.org 2.3\program\uwinapi.dll (Sun Microsystems, Inc.) 0x60400000 Library C:\Program Files\OpenOffice.org 2.3\program\stlport_vc7145.dll (STLport/STLport Consulting, Inc.) 0x61E70000 Library C:\WINNT\System32\igfxpph.dll (igfxpph Module/Intel Corporation) 0x03050000 Library C:\WINNT\System32\hccutils.DLL (hccutils Module/Intel Corporation) 0x03090000 Library C:\Program Files\ZipCentral\zccm.dll (ZipCentral Shell Extension/Johan Savås) 0x04B80000 Library C:\Program Files\McAfee\VirusScan Enterprise\shext.dll (Shell Extension/McAfee, Inc.) 0x15C20000 Process C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (Task Manager/McAfee, Inc.) 1932 Library C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (Task Manager/McAfee, Inc.) 0x00400000 Library C:\Program Files\McAfee\VirusScan Enterprise\LockDown.dll (Provides self-protection functionality/McAfee, Inc.) 0x140E0000 Library C:\Program Files\McAfee\VirusScan Enterprise\mytilus2.dll (Common Shell2 - Scanners' interface to the 5000 series engine/McAfee, Inc.) 0x14220000 Library C:\Program Files\McAfee\VirusScan Enterprise\mytilus.dll (Common Shell - Scanners' interface to the engine/McAfee, Inc.) 0x14180000 Library C:\Program Files\McAfee\VirusScan Enterprise\shutil.dll (VirusScan Shared Utility Library/McAfee, Inc.) 0x15C80000 Library C:\Program Files\McAfee\VirusScan Enterprise\wmain.dll (Shared Library/McAfee, Inc.) 0x161A0000 Library C:\Program Files\McAfee\VirusScan Enterprise\condl.dll (VirusScan Console Data Layer/McAfee, Inc.) 0x150C0000 Library C:\Program Files\McAfee\VirusScan Enterprise\RES0c00\McShield.dll (Resources for McShield/McAfee, Inc.) 0x14100000 Library C:\Program Files\McAfee\VirusScan Enterprise\MIDUtil.Dll (MID Config Applicator/McAfee, Inc.) 0x10000000 Library C:\Program Files\McAfee\VirusScan Enterprise\BBCpl.dll (Access Protection Console Plugin/McAfee, Inc.) 0x15000000 Library C:\Program Files\McAfee\VirusScan Enterprise\coptcpl.dll (Virus Scan Console Options/McAfee, Inc.) 0x15220000 Library C:\Program Files\McAfee\VirusScan Enterprise\EmCfgCpl.dll (VirusScan e-mail Scan/McAfee, Inc.) 0x15320000 Library C:\Program Files\McAfee\VirusScan Enterprise\nvpcpl.dll (VirusScan Unwanted Programs Policy Console Plugin/McAfee, Inc.) 0x15B20000 Library C:\Program Files\McAfee\VirusScan Enterprise\ftcfg.dll (Filter Configuration Resource Library/McAfee, Inc.) 0x153E0000 Library C:\Program Files\McAfee\VirusScan Enterprise\OASCpl.dll (VirusScan On-Access Scanner Console Plugin/McAfee, Inc.) 0x15BA0000 Library C:\Program Files\McAfee\VirusScan Enterprise\QuarCpl.dll (Quarantine Policy Console Plugin/McAfee, Inc.) 0x162A0000 Library C:\Program Files\McAfee\VirusScan Enterprise\vsodscpl.dll (VirusScan On-Demand Console Plugin/McAfee, Inc.) 0x15E60000 Library C:\Program Files\McAfee\VirusScan Enterprise\VsEvntUI.dll 0x15DA0000 Library C:\Program Files\McAfee\VirusScan Enterprise\NAEvent.dll (VSCore Alert Manager Interface/McAfee, Inc.) 0x14320000 Library C:\Program Files\McAfee\VirusScan Enterprise\ftl.dll (File Filter Library/McAfee, Inc.) 0x14080000 Library C:\Program Files\McAfee\VirusScan Enterprise\vsupdcpl.dll (VirusScan Update Console Plugin/McAfee, Inc.) 0x16100000 Library C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory3.dll (Secure Framework Factory/McAfee, Inc.) 0x64A40000 Process C:\Program Files\Network Associates\Common Framework\naPrdMgr.exe (NAI Product Manager/McAfee, Inc.) 1944 Library C:\Program Files\Network Associates\Common Framework\naPrdMgr.exe (NAI Product Manager/McAfee, Inc.) 0x00400000 Library C:\Program Files\Network Associates\Common Framework\naxml3_71.dll (McAfee Agent naXML DLL/McAfee, Inc.) 0x64950000 Library C:\Program Files\Network Associates\Common Framework\nailog3.dll (Debug Logging/McAfee, Inc.) 0x64880000 Library C:\Program Files\Network Associates\Common Framework\naCmnLib3_71.dll (Common Library/McAfee, Inc.) 0x64830000 Library C:\Program Files\Network Associates\Common Framework\applib.dll (CMA Application Library/McAfee, Inc.) 0x64120000 Library C:\Program Files\Network Associates\Common Framework\cryptocme2.dll 0x10000000 Library C:\Program Files\Network Associates\Common Framework\040C\AgentRes.dll (Agent Subsystem Resources/McAfee, Inc.) 0x64100000 Library C:\Program Files\Network Associates\Common Framework\agentplugin.dll (McAfee Agent Plugin/McAfee, Inc.) 0x640C0000 Library C:\Program Files\Network Associates\Common Framework\mfeCmnLib71.dll (Common Library/McAfee, Inc.) 0x646C0000 Library C:\Program Files\McAfee\VirusScan Enterprise\VsPlugin.dll (VirusScan Updater Notification Plugin/McAfee, Inc.) 0x15FE0000 Library C:\Program Files\Network Associates\McAfeeAvertStinger2451\SNGPlug.dll (McAfee AVERT Stinger Plug-in for ePO/Network Associates, Inc.) 0x017D0000 Library C:\Program Files\Network Associates\System Compliance Profiler\PtchScan.dll (McAfee System Compliance Profiler ePO plug-in/Networks Associates Technology, Inc.) 0x01AF0000 Library C:\Program Files\Network Associates\Common Framework\UpdPlug.Dll (UpdPlug Module/McAfee, Inc.) 0x64B10000 Library C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory3.dll (Secure Framework Factory/McAfee, Inc.) 0x64A40000 Library C:\Program Files\Network Associates\Common Framework\pcrplug.dll (Product Coverage Report/McAfee, Inc.) 0x649A0000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Process C:\WINNT\system32\MSTask.exe (Moteur du Planificateur de tâches/Microsoft Corporation) 2008 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Process C:\Program Files\Network Associates\Common Framework\McScript_InUse.exe (McAfee Agent Script Engine/McAfee, Inc.) 2020 Library C:\Program Files\Network Associates\Common Framework\McScript_InUse.exe (McAfee Agent Script Engine/McAfee, Inc.) 0x00400000 Library C:\Program Files\Network Associates\Common Framework\naCmnLib3_71.dll (Common Library/McAfee, Inc.) 0x64830000 Library C:\Program Files\Network Associates\Common Framework\naxml3_71.dll (McAfee Agent naXML DLL/McAfee, Inc.) 0x64950000 Library C:\Program Files\Network Associates\Common Framework\nailog3.dll (Debug Logging/McAfee, Inc.) 0x64880000 Library C:\Program Files\Network Associates\Common Framework\naziplib.dll (McAfee Agent naziplib DLL/McAfee, Inc.) 0x64980000 Library C:\Program Files\Network Associates\Common Framework\applib.dll (CMA Application Library/McAfee, Inc.) 0x64120000 Library C:\Program Files\Network Associates\Common Framework\ipcchannel.dll (McAfee Agent ipcchannel DLL/McAfee, Inc.) 0x64610000 Library C:\Program Files\Network Associates\Common Framework\boost_thread-vc71-mt-1_32.dll 0x64170000 Library C:\Program Files\Network Associates\Common Framework\cryptocme2.dll 0x10000000 Library C:\Program Files\Network Associates\Common Framework\040c\MueRes_InUse.dll (McAfee Update Engine Resouce Dll/McAfee, Inc.) 0x64820000 Library C:\Program Files\Network Associates\Common Framework\inetmgr.dll (CMA Internet Manager DLL/McAfee, Inc.) 0x64590000 Library C:\Program Files\Network Associates\Common Framework\nainet.dll (CMA Internet Library/McAfee, Inc.) 0x64890000 Library C:\Program Files\Network Associates\Common Framework\mfecurl.dll (CMA CURLLIB/McAfee, Inc.) 0x64700000 Library C:\Program Files\Network Associates\Common Framework\mfezlib.dll (CMA ZLIB/McAfee, Inc.) 0x64740000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Process C:\WINNT\system32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 2092 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Process C:\Program Files\Network Associates\Common Framework\udaterui.exe (Common User Interface/McAfee, Inc.) 2488 Library C:\Program Files\Network Associates\Common Framework\udaterui.exe (Common User Interface/McAfee, Inc.) 0x00400000 Library C:\Program Files\Network Associates\Common Framework\nailog3.dll (Debug Logging/McAfee, Inc.) 0x64880000 Library C:\Program Files\Network Associates\Common Framework\naCmnLib3_71.dll (Common Library/McAfee, Inc.) 0x64830000 Library C:\Program Files\Network Associates\Common Framework\naxml3_71.dll (McAfee Agent naXML DLL/McAfee, Inc.) 0x64950000 Library C:\Program Files\Network Associates\Common Framework\applib.dll (CMA Application Library/McAfee, Inc.) 0x64120000 Library C:\Program Files\Network Associates\Common Framework\cmalib.dll (CMA Library/McAfee, Inc.) 0x641C0000 Library C:\Program Files\Network Associates\Common Framework\cryptocme2.dll 0x10000000 Library C:\Program Files\Network Associates\Common Framework\040C\UpdRes.dll (Common UI Resources/McAfee, Inc.) 0x64B20000 Library C:\Program Files\Network Associates\Common Framework\040C\AgentRes.dll (Agent Subsystem Resources/McAfee, Inc.) 0x64100000 Library C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory3.dll (Secure Framework Factory/McAfee, Inc.) 0x64A40000 Process C:\WINNT\System32\igfxtray.exe (igfxTray Module/Intel Corporation) 2528 Library C:\WINNT\System32\igfxtray.exe (igfxTray Module/Intel Corporation) 0x00400000 Library C:\WINNT\System32\hccutils.DLL (hccutils Module/Intel Corporation) 0x10000000 Library C:\WINNT\System32\igfxdev.dll (igfxdev Module/Intel Corporation) 0x00E00000 Library C:\WINNT\System32\igfxsrvc.dll (igfxsrvc Module/Intel Corporation) 0x00EC0000 Library C:\WINNT\System32\igfxres.dll (xxxxres Module/Intel Corporation) 0x00F20000 Library C:\WINNT\System32\igfxress.dll (xxxxres Module/Intel Corporation) 0x00F60000 Process C:\WINNT\System32\hkcmd.exe (hkcmd Module/Intel Corporation) 2576 Library C:\WINNT\System32\hkcmd.exe (hkcmd Module/Intel Corporation) 0x00400000 Library C:\WINNT\System32\hccutils.DLL (hccutils Module/Intel Corporation) 0x10000000 Library C:\WINNT\System32\igfxdev.dll (igfxdev Module/Intel Corporation) 0x00DF0000 Library C:\WINNT\System32\igfxsrvc.dll (igfxsrvc Module/Intel Corporation) 0x00EB0000 Library C:\WINNT\System32\igfxhk.dll (igfxhk Module/Intel Corporation) 0x00F10000 Library C:\WINNT\System32\igfxres.dll (xxxxres Module/Intel Corporation) 0x00F40000 Process C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE (VirusScan tray icon/McAfee, Inc.) 2632 Library C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE (VirusScan tray icon/McAfee, Inc.) 0x00400000 Library C:\Program Files\McAfee\VirusScan Enterprise\LockDown.dll (Provides self-protection functionality/McAfee, Inc.) 0x140E0000 Library C:\Program Files\McAfee\VirusScan Enterprise\ftcfg.dll (Filter Configuration Resource Library/McAfee, Inc.) 0x153E0000 Library C:\Program Files\McAfee\VirusScan Enterprise\mytilus2.dll (Common Shell2 - Scanners' interface to the 5000 series engine/McAfee, Inc.) 0x14220000 Library C:\Program Files\McAfee\VirusScan Enterprise\mytilus.dll (Common Shell - Scanners' interface to the engine/McAfee, Inc.) 0x14180000 Library C:\Program Files\McAfee\VirusScan Enterprise\wmain.dll (Shared Library/McAfee, Inc.) 0x161A0000 Library C:\Program Files\McAfee\VirusScan Enterprise\shutil.dll (VirusScan Shared Utility Library/McAfee, Inc.) 0x15C80000 Library C:\Program Files\McAfee\VirusScan Enterprise\RES0c00\McShield.dll (Resources for McShield/McAfee, Inc.) 0x14100000 Library C:\Program Files\McAfee\VirusScan Enterprise\Graphics.dll (VirusScan Graphics/McAfee, Inc.) 0x154A0000 Process C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (On-Access Scanner service/McAfee, Inc.) 2828 Library C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (On-Access Scanner service/McAfee, Inc.) 0x00400000 Library C:\Program Files\McAfee\VirusScan Enterprise\LockDown.dll (Provides self-protection functionality/McAfee, Inc.) 0x140E0000 Library C:\Program Files\McAfee\VirusScan Enterprise\mytilus.dll (Common Shell - Scanners' interface to the engine/McAfee, Inc.) 0x14180000 Library C:\Program Files\McAfee\VirusScan Enterprise\mytilus2.dll (Common Shell2 - Scanners' interface to the 5000 series engine/McAfee, Inc.) 0x14220000 Library C:\Program Files\McAfee\VirusScan Enterprise\RES0c00\McShield.dll (Resources for McShield/McAfee, Inc.) 0x14100000 Library C:\Program Files\McAfee\VirusScan Enterprise\FTL.Dll (File Filter Library/McAfee, Inc.) 0x14080000 Library C:\Program Files\McAfee\VirusScan Enterprise\naiann.dll (VirusScan Enterprise Announcer./McAfee, Inc.) 0x15780000 Library C:\Program Files\McAfee\VirusScan Enterprise\VsEvntUI.dll 0x15DA0000 Library C:\Program Files\McAfee\VirusScan Enterprise\NAEvent.dll (VSCore Alert Manager Interface/McAfee, Inc.) 0x14320000 Library C:\Program Files\McAfee\VirusScan Enterprise\shutil.dll (VirusScan Shared Utility Library/McAfee, Inc.) 0x15C80000 Library C:\Program Files\McAfee\VirusScan Enterprise\wmain.dll (Shared Library/McAfee, Inc.) 0x161A0000 Library C:\Program Files\Network Associates\Common Framework\Genevtinf3.dll (GenEvtInf Module/McAfee, Inc.) 0x64560000 Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000 Library C:\Program Files\McAfee\VirusScan Enterprise\scriptsv.dll (VSCore Script Scanner/McAfee, Inc.) 0x14490000 Library C:\Program Files\McAfee\VirusScan Enterprise\mfebopa.dll (Buffer Overflow Protection Service/McAfee, Inc.) 0x603D0000 Library C:\Program Files\McAfee\VirusScan Enterprise\mfehida.dll (Host Intrusion Detection Link Driver Communication/McAfee, Inc.) 0x66240000 Library C:\Program Files\McAfee\VirusScan Enterprise\mfeapfa.dll (Access Protection Filter Driver API/McAfee, Inc.) 0x65490000 Library C:\Program Files\McAfee\VirusScan Enterprise\mfeavfa.dll (Anti Virus File System Filter Driver API/McAfee, Inc.) 0x6EFF0000 Library C:\Program Files\Fichiers communs\McAfee\Engine\mcscan32.dll (AV Scanning Engine/McAfee, Inc.) 0x12000000 ---- Services - GMER 1.0.15 ---- Service C:\WINNT\system32\drivers\aeaudio.sys (Andrea Audio Stub Driver/Andrea Electronics Corporation) [MANUAL] aeaudio Service (ASPI for WIN32 Kernel Driver/Adaptec) [AUTO] Aspi32 Service system32\DRIVERS\avipbb.sys [DISABLED] avipbb Service (CDR4_2k CDR Helper/Roxio) [sYSTEM] Cdr4_2K Service (CDRAL for Windows 2000 Kernel Driver/Roxio) [sYSTEM] Cdralw2k Service C:\WINNT\System32\DRIVERS\cdrom.sys (SCSI CD-ROM Driver/Microsoft Corporation) [sYSTEM] Cdrom Service C:\WINNT\System32\DRIVERS\disk.sys (PnP Disk Driver/Microsoft Corporation) [bOOT] Disk Service C:\WINNT\System32\dmadmin.exe (Processus du service Gestionnaire de disque logique/VERITAS Software Corp.) [MANUAL] dmadmin Service C:\WINNT\System32\drivers\dmboot.sys (Pilote de démarrage du gestionnaire de disque NT/VERITAS Software Corp.) [DISABLED] dmboot Service C:\WINNT\System32\drivers\dmio.sys (Pilote E/S du Gestionnaire de disques NT/VERITAS Software Corp.) [bOOT] dmio Service C:\WINNT\System32\drivers\dmload.sys (NT Disk Manager Startup Driver/VERITAS Software Corp.) [bOOT] dmload Service C:\WINNT\System32\DRIVERS\e1000nt5.sys (Intel® PRO/1000 Adapter NDIS 5 deserialized driver/Intel Corporation) [MANUAL] E1000 Service C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe [AUTO] EpsonBidirectionalService Service C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe [AUTO] EpsonNet_Primitive_Service Service C:\WINNT\System32\DRIVERS\flpydisk.sys (Floppy Driver/Microsoft Corporation) [MANUAL] Flpydisk Service C:\WINNT\System32\DRIVERS\ialmnt5.sys (Controller Hub for Intel Graphics Driver/Intel Corporation) [MANUAL] ialm Service IAS Service C:\Program Files\Network Associates\Common Framework\FrameworkService.exe (Framework Service/McAfee, Inc.) [AUTO] McAfeeFramework Service C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (On-Access Scanner service/McAfee, Inc.) [AUTO] McShield Service C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (Task Manager/McAfee, Inc.) [AUTO] McTaskManager Service C:\WINNT\system32\drivers\mfeapfk.sys (Access Protection Filter Driver/McAfee, Inc.) [MANUAL] mfeapfk Service C:\WINNT\system32\drivers\mfeavfk.sys (Anti-Virus File System Filter Driver/McAfee, Inc.) [MANUAL] mfeavfk Service C:\WINNT\system32\drivers\mfebopk.sys (Buffer Overflow Protection Driver/McAfee, Inc.) [MANUAL] mfebopk Service C:\WINNT\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) [MANUAL] mfehidk Service C:\Program Files\McAfee\VirusScan Enterprise\mferkdk.sys (VSCore Code Analysis Driver/McAfee, Inc.) [sYSTEM] mferkdk Service C:\WINNT\system32\drivers\mfetdik.sys (Anti-Virus Mini-Firewall Driver/McAfee, Inc.) [sYSTEM] mfetdik Service C:\WINNT\System32\lsass.exe (Exécutable LSA et DLL serveur (version d'exportation)/Microsoft Corporation) [MANUAL] Netlogon Service C:\WINNT\System32\lsass.exe (Exécutable LSA et DLL serveur (version d'exportation)/Microsoft Corporation) [MANUAL] NtLmSsp Service C:\WINNT\System32\lsass.exe (Exécutable LSA et DLL serveur (version d'exportation)/Microsoft Corporation) [AUTO] PolicyAgent Service C:\WINNT\System32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) [MANUAL] Ptilink Service C:\WINNT\system32\lsass.exe (Exécutable LSA et DLL serveur (version d'exportation)/Microsoft Corporation) [AUTO] SamSs Service [AUTO] SchedulingAgent Service [sYSTEM] sglfb Service C:\WINNT\system32\drivers\smwdm.sys (SoundMAX Integrated Digital Audio /Analog Devices, Inc.) [MANUAL] smwdm Service SNMP Service [sYSTEM] tga Service C:\WINNT\system32\drivers\ialmsbw.sys (Intel Graphics Platform (SoftBIOS) Driver for Windows 2000® & Windows XP/Intel Corporation) [sYSTEM] {6080A529-897E-4629-A488-ABA0C29B635E} Service C:\WINNT\system32\drivers\ialmkchw.sys (Intel Graphics Chipset (KCH) Driver for Windows 2000® & Windows XP/Intel Corporation) [MANUAL] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} ---- EOF - GMER 1.0.15 ----

OUF j'y arrive !!! voilà le rapport ZHPdiag : Rapport de ZHPDiag v1.24.40 par Nicolas Coolman Run by Administrateur at 07/01/2010 09:26:36 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html Platform : Microsoft Windows 2000 (5.0.2195) Service Pack 4 MSIE: Internet Explorer v6.0.2800.1106 Boot mode: Normal (Normal boot) Total RAM: 247 MB (47% free) System drive C: has 2 GB (24%) free of 8 GB ---\\ Processus lancés [MD5.96113C67D8D44AE1E35050F6BE9C0680] - C:\WINNT\System32\igfxtray.exe [MD5.92A8471BE66D9072941F6347A1D0879E] - C:\WINNT\System32\hkcmd.exe [MD5.19DFA4463D9FBA9E7046E8264D0656D8] - C:\Program Files\Network Associates\Common Framework\udaterui.exe [MD5.C5BF330589172E4585D44FE8CFFBD57A] - C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe [MD5.23AFE3A2F398B983903857D8B800DC0E] - C:\WINNT\System32\services.exe [MD5.CD64CE62BE47DF0E9A459FD9002221FE] - C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe [MD5.9C98BBE1E7233854CA8C4F50249CA1CD] - C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe [MD5.4CD3EE64736B4D156DAC5C1D6EB60C24] - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe [MD5.4AE1B4E0F6A5A290E6C1586B4E6E294E] - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe [MD5.067A73B720E8840BD89A083F50F7E9A0] - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe [MD5.1206706A25C5B32652B4F465EDE330E9] - C:\WINNT\System32\svchost.exe [MD5.C43C52FA225030EA2E62E820C9D898CA] - C:\WINNT\System32\lsass.exe [MD5.B3A6BC70F941A92DA318F3BD44362BCC] - C:\WINNT\system32\regsvc.exe [MD5.3FE6A50EDC179C4260C85E354ADC0085] - C:\WINNT\system32\MSTask.exe [MD5.FACFB75ECC070103619FA044E0B210D3] - C:\WINNT\system32\spoolsv.exe [MD5.974EE1A488A7AF678F84826B588D4AF1] - C:\WINNT\System32\WBEM\WinMgmt.exe ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINNT\system32\userinit.exe, ---\\ Pages de démarrage d'Internet Explorer (R0) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home ---\\ Pages de recherche d'Internet Explorer (R1) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm ---\\ Internet Explorer URLSearchHook (R3) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - %SystemRoot%\system32\shdocvw.dll ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: @msdxmLC.dll,-1@1036,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx ---\\ Applications démarrées automatiquement par le registre (O4) O4 - HKLM\..\Run: [synchronization Manager] mobsync.exe /logon O4 - HKLM\..\Run: [igfxTray] C:\WINNT\System32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe O4 - HKLM\..\Run: [McAfeeUpdaterUI] C:\Program Files\Network Associates\Common Framework\udaterui.exe" /StartedFromRunKey O4 - HKLM\..\Run: [shStatEXE] C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE O4 - HKCU\..\policies\Explorer: [NoDriveTypeAutoRun] Data=149 O4 - HKCU\..\policies\Explorer: [CDRAutoRun] Data=0 O4 - HKUS\S-1-5-18\..\Run: [internat.exe] internat.exe O4 - HKUS\S-1-5-18\..\Run: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop O4 - Global Startup: Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - ,4 ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File - C:\WINNT\system32\rnr20.dll O10 - WLSP:\000000000002\Winsock LSP File - C:\WINNT\system32\winrnr.dll ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: DirectAnimation Java Classes (DirectAnimation Java Classes) - file://C:\WINNT\Java\classes\dajava.cab O16 - DPF: Microsoft XML Parser for Java (Microsoft XML Parser for Java) - file://C:\WINNT\Java\classes\xmldso.cab O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/pub/shock...director/sw.cab O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwa...director/sw.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1141026275609 O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game15.zylomgames.com/activex/zylomgamesplayer.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.macromedia.com/get/flash...ent/swflash.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254 O17 - HKLM\System\CS1\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254 O17 - HKLM\System\CS2\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINNT\system32\urlmon.dll O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINNT\system32\urlmon.dll O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll O18 - Handler: vnd.ms.radio - {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINNT\System32\msdxm.ocx O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINNT\system32\urlmon.dll O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\shell32.dll ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui - C:\WINNT\System32\igfxsrvc.dll O20 - Winlogon Notify: wzcnotif - C:\WINNT\System32\wzcdlg.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21) O21 - SSODL: Network.ConnectionTray - {7007ACCF-3202-11D1-AAD2-00805FC1270E} - C:\WINNT\system32\NETSHELL.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - %SystemRoot%\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - stobject.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - %SystemRoot%\system32\browseui.dll O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: EpsonBidirectionalService (EpsonBidirectionalService) - C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe O23 - Service: EpsonNet Primitive Service (EpsonNet_Primitive_Service) - C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe O23 - Service: Service McAfee Framework (McAfeeFramework) - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe" /ServiceStart O23 - Service: McAfee McShield (McShield) - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe O23 - Service: McAfee Task Manager (McTaskManager) - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe O23 - Service: Service d'accès à distance au Registre (RemoteRegistry) - C:\WINNT\system32\regsvc.exe O23 - Service: Planificateur de tâches (Schedule) - C:\WINNT\system32\MSTask.exe O23 - Service: Spouleur d'impression (Spooler) - C:\WINNT\system32\spoolsv.exe O23 - Service: Infrastructure de gestion Windows (WinMgmt) - C:\WINNT\System32\WBEM\WinMgmt.exe ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Lecteur Windows Media - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINNT\inf\unregmp2.exe /ShowWMP O40 - ASIC: Accès Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} - "C:\WINNT\system32\shmgrate.exe" OCInstallUserConfigIE O40 - ASIC: Personnalisation du navigateur - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP O40 - ASIC: Accès Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - "C:\WINNT\system32\shmgrate.exe" OCInstallUserConfigOE O40 - ASIC: KB941202 - {08a00762-7c1e-42c2-87f0-ca3600045cd7} - (not file) O40 - ASIC: Microsoft VM - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - (not file) O40 - ASIC: Internet Explorer Classes pour Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608555} - (not file) O40 - ASIC: Fichier Lisez-moi d'Internet Explorer - {0fde1f56-0d59-4fd7-9624-e3df6b419d0e} - (not file) O40 - ASIC: IEEX - {0fde1f56-0d59-4fd7-9624-e3df6b419d0f} - (not file) O40 - ASIC: Rendu de graphismes vectoriels (VML) - {10072CEC-8CC1-11D1-986E-00A0C955B42F} - (not file) O40 - ASIC: KB947864 - {110e3a85-a9d6-4220-a14a-d39588fa4763} - (not file) O40 - ASIC: KB973354 - {1b0357b8-e3fb-4918-915c-a8eb232c273e} - (not file) O40 - ASIC: KB956390 - {1d52d05a-f63b-496e-80ff-2f46fd261fd4} - (not file) O40 - ASIC: KB976325 - {1d939273-21ce-4e7f-be14-490866ec66c2} - (not file) O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - C:\WINNT\system32\wmpdxm.dll O40 - ASIC: Lecteur Windows Media Microsoft 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINNT\system32\wmpdxm.dll O40 - ASIC: Adobe Shockwave Director 10.1.4 - {233C1507-6A77-46A4-9443-F871F945D258} - C:\WINNT\system32\Adobe\Director\SwDir.dll O40 - ASIC: KB933566 - {28023b22-f71e-43e8-8ea4-de315462878d} - (not file) O40 - ASIC: DirectAnimation - {283807B5-2C60-11D0-A31D-00AA00B92C03} - C:\WINNT\System32\danim.dll O40 - ASIC: Adobe Shockwave Director 10.1.4 - {2A202491-F00D-11cf-87CC-0020AFEECF20} - (not file) O40 - ASIC: Liaison de données Dynamic HTML pour Java - {36f8ec70-c29a-11d1-b5c7-0000f8051515} - (not file) O40 - ASIC: KB969897 - {390e5bb4-1d89-4343-b62d-b76303708a1d} - (not file) O40 - ASIC: Module de navigation hors connexion - {3af36230-a269-11d1-b5bf-0000f8051515} - (not file) O40 - ASIC: Uniscribe - {3bf42070-b3b1-11d1-b5c5-0000f8051515} - (not file) O40 - ASIC: KB951066 - {3c0d61fe-1db3-4d0b-8477-3cb53eab9469} - (not file) O40 - ASIC: KB974455 - {3e843540-63b3-42d7-9f4d-812ffd1e767a} - (not file) O40 - ASIC: Création avancée - {4278c270-a269-11d1-b5bf-0000f8051515} - (not file) O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINNT\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT O40 - ASIC: DirectShow - {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - (not file) O40 - ASIC: Microsoft DirectX - {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - (not file) O40 - ASIC: DirectDrawEx - {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - (not file) O40 - ASIC: Aide sur Internet Explorer - {45ea75a0-a269-11d1-b5bf-0000f8051515} - (not file) O40 - ASIC: KB918899 - {4d64f3ba-f112-4efe-a02e-96680859937c} - (not file) O40 - ASIC: Classes Java DirectAnimation - {4f216970-c90c-11d1-b5c7-0000f8051515} - (not file) O40 - ASIC: Microsoft Windows Script 5.6 - {4f645220-306d-11d2-995d-00c04f98bbc9} - (not file) O40 - ASIC: Microsoft Data Access Components KB870669 - {5f3c70b3-ac2f-432c-8f9c-1624df61f54f} - (not file) O40 - ASIC: Outils d'installation Internet Explorer - {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - (not file) O40 - ASIC: Améliorations pour la navigation - {630b1da0-b465-11d1-9948-00c04f98bbc9} - (not file) O40 - ASIC: KB905495 - {685e3910-1f77-49b9-9434-50bcd95c51ab} - (not file) O40 - ASIC: EnableRevocation - {6A5110B5-E14B-4268-A065-EF89FF33C325} - regsvr32.exe /s /n /i:"S 2 true 3 true 4 true 5 true 6 true 7 true" initpki.dll O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} - rundll32.exe advpack.dll,LaunchINFSection C:\WINNT\INF\wmp.inf,PerUserStub O40 - ASIC: Accès au site MSN - {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - (not file) O40 - ASIC: KB939653 - {706b15de-aa6d-4c4f-8699-1b0a991228b7} - (not file) O40 - ASIC: Dossiers Web - {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - (not file) O40 - ASIC: Carnet d'adresses 5 - {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install O40 - ASIC: KB922760 - {7d16667b-0ff7-4c6b-9fcf-775578e89cc2} - (not file) O40 - ASIC: KB963027 - {7da6528e-45a6-4022-9e41-c45a8cf33eb5} - (not file) O40 - ASIC: KB960714 - {80b81c71-14cd-41c3-9e8c-08b9e06d02ef} - (not file) O40 - ASIC: Mise à jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll O40 - ASIC: Internet Explorer 6 - {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINNT\system32\ie4uinit.exe O40 - ASIC: KB938127 - {90b0bef8-22d6-40a8-92c8-155434fc112f} - (not file) O40 - ASIC: KB925454 - {9311e53c-4c8c-4b8f-aa80-6b16de179d70} - (not file) O40 - ASIC: Liaison de données DHTML - {9381D8F2-0288-11D0-9501-00AA00B911A5} - (not file) O40 - ASIC: KB937143 - {95177e6d-aaa9-44d1-bebd-b380bce3be79} - (not file) O40 - ASIC: CRLUpdate - {9EF0045A-CDD9-438e-95E6-02B9AFEC8E11} - C:\WINNT\system32\updcrl.exe -e -u C:\WINNT\system32\verisignpub1.crl O40 - ASIC: W2KAppComp - {A00BF2EB-56EE-4fde-B5EA-6A8FA425B2A5} - (not file) O40 - ASIC: KB923694 - {a5653fdf-8d3a-451b-937f-6c7534804953} - (not file) O40 - ASIC: KB942615 - {a99b636e-f3ca-4adc-bcde-a4b451cd65d4} - (not file) O40 - ASIC: KB928090 - {abd13515-07e0-476a-9b25-211dbe6d1c21} - (not file) O40 - ASIC: KB958869 - {b6609c7e-4ad5-4b8b-9da5-9edbc50f7592} - (not file) O40 - ASIC: KB950759 - {c1f0071f-505e-40bc-babe-3240af80b5cf} - (not file) O40 - ASIC: Polices de base Internet Explorer - {C9E9A340-D1F1-11D0-821E-444553540600} - (not file) O40 - ASIC: Planificateur de tâches - {CC2A9BA0-3BDD-11D0-821E-444553540000} - (not file) O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} - C:\WINNT\system32\Macromed\Flash\Flash10b.ocx O40 - ASIC: KB948881 - {da53c936-c804-4f62-a1d2-6cf6d1591b66} - (not file) O40 - ASIC: KB925486 - {dd772a76-bef3-44d7-8b39-502c8504c1f1} - (not file) O40 - ASIC: Aide HTML - {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - (not file) O40 - ASIC: KB958215 - {e41091c0-06d5-474f-836e-dd190348ea18} - (not file) O40 - ASIC: Active Directory Service Interface - {E92B03AB-B707-11d2-9CBD-0000F87A369E} - (not file) O40 - ASIC: KB931768 - {eb6ab742-eb17-446b-8ce7-dff2bc7cbf93} - (not file) O40 - ASIC: Q832894 - {eddbec60-89cb-44ef-8291-0850fd28ff6a} - (not file) O40 - ASIC: KB944533 - {ee714f0a-76c6-4126-a55e-1e43c11884a7} - (not file) O40 - ASIC: KB938464 - {f156e5b2-f52e-4094-800c-e7392fe62314} - (not file) O40 - ASIC: KB911567 - {f15ee071-deb7-4cbb-951f-431c98338d8e} - (not file) O40 - ASIC: KB976749 - {f351bc8e-a11b-44ba-a436-cee0d27e3abb} - (not file) O40 - ASIC: KB972260 - {f3d9c2d1-579f-4d41-95ba-5354eeb398d0} - (not file) O40 - ASIC: KB929969 - {f4de1058-dafc-4d16-b294-6ea1125bf3d3} - (not file) O40 - ASIC: Q330994 - {F5776D81-AE53-4935-8E84-B0B283D8BCEF} - (not file) O40 - ASIC: KB953838 - {fd4aedf6-1163-4f9c-bbf2-11aec5b873b0} - (not file) ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: Pilote de CD-ROM (Cdrom) - C:\WINDOWS\System32\DRIVERS\cdrom.sys O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys O41 - Driver: Pilote de la classe Clavier (Kbdclass) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys O41 - Driver: VSCore mferkdk (mferkdk) - C:\Program Files\McAfee\VirusScan Enterprise\mferkdk.sys O41 - Driver: McAfee Inc. (mfetdik) - C:\WINDOWS\system32\drivers\mfetdik.sys O41 - Driver: Pilote de la classe Souris (Mouclass) - C:\WINDOWS\System32\DRIVERS\mouclass.sys O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\System32\DRIVERS\netbios.sys O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\System32\DRIVERS\netbt.sys O41 - Driver: Pilote de port parallèle (Parport) - C:\WINDOWS\System32\DRIVERS\parport.sys O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\System32\DRIVERS\rasacd.sys O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\System32\DRIVERS\rdbss.sys O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\System32\DRIVERS\redbook.sys O41 - Driver: Pilote de port série (Serial) - C:\WINDOWS\System32\DRIVERS\serial.sys O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\System32\DRIVERS\tcpip.sys O41 - Driver: (no object) (VgaSave) - C:\WINNT\System32\drivers\vga.sys O41 - Driver: Intel® Graphics Platform (SoftBIOS) Driver ({6080A529-897E-4629-A488-ABA0C29B635E}) - C:\WINDOWS\system32\drivers\ialmsbw.sys O41 - Driver: avgio (avgio) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: avipbb (avipbb) - C:\WINDOWS\system32\DRIVERS\avipbb.sys O41 - Driver: ssmdrv (ssmdrv) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys ---\\ Logiciels installés (O42) O42 - Logiciel: Adobe Acrobat 5.0 O42 - Logiciel: Adobe Flash Player 10 ActiveX O42 - Logiciel: Adobe Shockwave Player 11.5 O42 - Logiciel: CCleaner O42 - Logiciel: EPSON Logiciel imprimante O42 - Logiciel: EpsonNet WebManager O42 - Logiciel: EpsonNet WinAssist V4 O42 - Logiciel: Hotfix for MDAC 2.53 (KB911562) O42 - Logiciel: Hotfix for MDAC 2.53 (KB927779) O42 - Logiciel: Intel® 82845G Graphics Driver Software O42 - Logiciel: Intel® PRO Ethernet Adapter and Software O42 - Logiciel: MSXML 4.0 SP2 (KB927978) O42 - Logiciel: MSXML 4.0 SP2 (KB936181) O42 - Logiciel: MSXML 4.0 SP2 (KB954430) O42 - Logiciel: McAfee Agent O42 - Logiciel: McAfee VirusScan Enterprise O42 - Logiciel: Microsoft Office 2000 Professional O42 - Logiciel: Microsoft PhotoDraw 2000 O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 O42 - Logiciel: OpenOffice.org 2.3 O42 - Logiciel: QuickTime O42 - Logiciel: SHARP AR-351/355/451/455 Series PS Printer Driver O42 - Logiciel: SoundMAX O42 - Logiciel: Windows 2000 Service Pack 4 O42 - Logiciel: Windows Installer 3.1 (KB893803) O42 - Logiciel: ZipCentral 4.01 ---\\ Contenu des dossiers Fichiers Communs (O43) O43 - CFD:Common File Directory ----D- C:\Program Files\Accessoires O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Analog Devices O43 - CFD:Common File Directory ----D- C:\Program Files\Avira O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications O43 - CFD:Common File Directory ----D- C:\Program Files\EPSON O43 - CFD:Common File Directory ----D- C:\Program Files\EpsonNet O43 - CFD:Common File Directory ---AD- C:\Program Files\Fichiers communs O43 - CFD:Common File Directory ----D- C:\Program Files\IncrediMail O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD:Common File Directory ----D- C:\Program Files\Intel O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer O43 - CFD:Common File Directory ----D- C:\Program Files\McAfee O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft AntiSpyware O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0 O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting O43 - CFD:Common File Directory ----D- C:\Program Files\Network Associates O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 2.3 O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime O43 - CFD:Common File Directory ----D- C:\Program Files\SHARP O43 - CFD:Common File Directory ----D- C:\Program Files\Snapshot Viewer O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT O43 - CFD:Common File Directory --HAD- C:\Program Files\WindowsUpdate O43 - CFD:Common File Directory ----D- C:\Program Files\ZipCentral O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adaptec Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Cisco Systems O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Designer O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\EPSON O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\McAfee O43 - CFD:Common File Directory ---AD- C:\Program Files\Fichiers Communs\Microsoft Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Network Associates O43 - CFD:Common File Directory ---AD- C:\Program Files\Fichiers Communs\ODBC O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:Last File Created 07/01/2010 - 07:44:05 ---A- C:\WINNT\WindowsUpdate.log O44 - LFC:Last File Created 05/01/2010 - 10:41:19 --H-- C:\WINNT\ShellIconCache O44 - LFC:Last File Created 04/01/2010 - 13:23:25 ---A- C:\WINNT\System32\FNTCACHE.DAT O44 - LFC:Last File Created 04/01/2010 - 12:03:31 ---A- C:\WINNT\System32\Perflib_Perfdata_9a8.dat O44 - LFC:Last File Created 28/12/2009 - 12:05:50 ---A- C:\WINNT\System32\Perflib_Perfdata_a10.dat O44 - LFC:Last File Created 23/12/2009 - 12:05:39 ---A- C:\WINNT\System32\Perflib_Perfdata_9a0.dat O44 - LFC:Last File Created 17/12/2009 - 16:14:00 ---A- C:\WINNT\randseed.rnd O44 - LFC:Last File Created 17/12/2009 - 11:50:49 ---A- C:\WINNT\FramePkg.exe ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sglfb.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\tga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nbf.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sglfb.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sglfb.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\tga.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vgasave.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\nbf.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sglfb.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\tga.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vgasave.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\sglfb.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\tga.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\vgasave.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\nbf.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\sglfb.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\tga.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\vgasave.sys ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ Trojan Driver Search Data (TDSD) (O52) O52 - TDSD:HKLM\...\Drivers\"timer"="timer.drv" O52 - TDSD:HKLM\...\Drivers32\"midimapper"="midimap.dll" O52 - TDSD:HKLM\...\Drivers32\"msacm.imaadpcm"="imaadp32.acm" O52 - TDSD:HKLM\...\Drivers32\"msacm.msadpcm"="msadp32.acm" O52 - TDSD:HKLM\...\Drivers32\"msacm.msg711"="msg711.acm" O52 - TDSD:HKLM\...\Drivers32\"msacm.msgsm610"="msgsm32.acm" O52 - TDSD:HKLM\...\Drivers32\"msacm.trspch"="tssoft32.acm" O52 - TDSD:HKLM\...\Drivers32\"vidc.cvid"="iccvid.dll" O52 - TDSD:HKLM\...\Drivers32\"vidc.iv31"="ir32_32.dll" O52 - TDSD:HKLM\...\Drivers32\"vidc.iv32"="ir32_32.dll" O52 - TDSD:HKLM\...\Drivers32\"vidc.mrle"="msrle32.dll" O52 - TDSD:HKLM\...\Drivers32\"vidc.msvc"="msvidc32.dll" O52 - TDSD:HKLM\...\Drivers32\"wavemapper"="msacm32.drv" O52 - TDSD:HKLM\...\Drivers32\"msacm.lhacm"="lhacm.acm" O52 - TDSD:HKLM\...\Drivers32\"msacm.msg723"="msg723.acm" O52 - TDSD:HKLM\...\Drivers32\"vidc.M263"="msh263.drv" O52 - TDSD:HKLM\...\Drivers32\"vidc.M261"="msh261.drv" O52 - TDSD:HKLM\...\Drivers32\"vidc.I420"="msh263.drv" O52 - TDSD:HKLM\...\Drivers32\"msacm.iac2"="C:\WINNT\System32\iac25_32.ax" O52 - TDSD:HKLM\...\Drivers32\"vidc.iv50"="ir50_32.dll" O52 - TDSD:HKLM\...\Drivers32\"aux"="mmdrv.dll" O52 - TDSD:HKLM\...\Drivers32\"wave1"="" O52 - TDSD:HKLM\...\Drivers32\"wave2"="" O52 - TDSD:HKLM\...\Drivers32\"wave3"="" O52 - TDSD:HKLM\...\Drivers32\"wave4"="" O52 - TDSD:HKLM\...\Drivers32\"wave5"="" O52 - TDSD:HKLM\...\Drivers32\"wave6"="" O52 - TDSD:HKLM\...\Drivers32\"wave7"="" O52 - TDSD:HKLM\...\Drivers32\"wave8"="" O52 - TDSD:HKLM\...\Drivers32\"wave9"="" O52 - TDSD:HKLM\...\Drivers32\"midi1"="" O52 - TDSD:HKLM\...\Drivers32\"midi2"="" O52 - TDSD:HKLM\...\Drivers32\"midi3"="" O52 - TDSD:HKLM\...\Drivers32\"midi4"="" O52 - TDSD:HKLM\...\Drivers32\"midi5"="" O52 - TDSD:HKLM\...\Drivers32\"midi6"="" O52 - TDSD:HKLM\...\Drivers32\"midi7"="" O52 - TDSD:HKLM\...\Drivers32\"midi8"="" O52 - TDSD:HKLM\...\Drivers32\"midi9"="" O52 - TDSD:HKLM\...\Drivers32\"aux1"="" O52 - TDSD:HKLM\...\Drivers32\"aux2"="" O52 - TDSD:HKLM\...\Drivers32\"aux3"="" O52 - TDSD:HKLM\...\Drivers32\"aux4"="" O52 - TDSD:HKLM\...\Drivers32\"aux5"="" O52 - TDSD:HKLM\...\Drivers32\"aux6"="" O52 - TDSD:HKLM\...\Drivers32\"aux7"="" O52 - TDSD:HKLM\...\Drivers32\"aux8"="" O52 - TDSD:HKLM\...\Drivers32\"aux9"="" O52 - TDSD:HKLM\...\Drivers32\"mixer1"="" O52 - TDSD:HKLM\...\Drivers32\"mixer2"="" O52 - TDSD:HKLM\...\Drivers32\"mixer3"="" O52 - TDSD:HKLM\...\Drivers32\"mixer4"="" O52 - TDSD:HKLM\...\Drivers32\"mixer5"="" O52 - TDSD:HKLM\...\Drivers32\"mixer6"="" O52 - TDSD:HKLM\...\Drivers32\"mixer7"="" O52 - TDSD:HKLM\...\Drivers32\"mixer8"="" O52 - TDSD:HKLM\...\Drivers32\"mixer9"="" O52 - TDSD:HKLM\...\Drivers32\"wdmaud.drv"="wdmaud.drv" O52 - TDSD:HKLM\...\Drivers32\"wave"="wdmaud.drv" O52 - TDSD:HKLM\...\Drivers32\"midi"="wdmaud.drv" O52 - TDSD:HKLM\...\Drivers32\"mixer"="wdmaud.drv" O52 - TDSD:HKLM\...\Drivers32\"msacm.sl_anet"="sl_anet.acm" O52 - TDSD:HKLM\...\Drivers32\"msacm.l3acm"="C:\WINNT\system32\l3codeca.acm" O52 - TDSD:HKLM\...\Drivers32\"VIDC.MP42"="mpg4c32.dll" O52 - TDSD:HKLM\...\Drivers32\"VIDC.MPG4"="mpg4c32.dll" O52 - TDSD:HKLM\...\Drivers32\"VIDC.UYVY"="msyuv.dll" O52 - TDSD:HKLM\...\Drivers32\"VIDC.YUY2"="msyuv.dll" O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVYU"="msyuv.dll" O52 - TDSD:HKLM\...\drivers.desc\"C:\WINNT\System32\iac25_32.ax"="Indeo® audio software" O52 - TDSD:HKLM\...\drivers.desc\"ir50_32.dll"="Indeo® video 5.10" O52 - TDSD:HKLM\...\drivers.desc\"wdmaud.drv"="SoundMAX Integrated Digital Audio" O52 - TDSD:HKLM\...\drivers.desc\"l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" O52 - TDSD:HKLM\...\drivers.desc\"mpg4c32.dll"="Microsoft MPEG-4 Video Codec v1" O52 - TDSD:HKLM\...\drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" O52 - TDSD:HKLM\...\drivers.desc\"C:\WINNT\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll ---\\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (MWPE) (O56) O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=149 O56 - MWPE:[HKCU\...\Policies\Explorer] - "CDRAutoRun"=0 ---\\ Liste des Drivers Système (SDL) (O58) O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a302.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a303.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a304.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a305.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a306.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a307.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a308.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a309.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a310.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a311.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a312.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\acpi.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\acpiec.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\aeaudio.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\AFD.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ASPI32.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\asyncmac.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\atapi.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\atmarpc.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\atmlane.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\atmuni.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\audstub.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\avgntflt.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\bdasup.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\beep.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ccdecode.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdaudio.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdfs.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdr4_2K.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdralw2k.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdrom.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cinemst2.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\class2.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\classpnp.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\DISK.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\diskdump.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\diskperf.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\DLC.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\dmboot.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\dmio.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\dmload.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\DMusic.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\dxapi.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\e1000nt5.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\efs.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\EPNUSB01.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\fastfat.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\fdc.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\flpydisk.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\fsvga.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\fs_rec.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ftdisk.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\hidclass.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\hidparse.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\hidusb.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\i8042prt.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ialmkchw.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ialmnt5.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ialmsbw.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ipfltdrv.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ipinip.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ipnat.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ipsec.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\irda.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\irenum.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\irsir.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\isapnp.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\kbdclass.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\kmixer.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ks.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ksecdd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\lvcam.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\lvcodek.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\lvsound.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mf.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfeapfk.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfeavfk.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfebopk.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfehidk.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfetdik.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mnmdd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\modem.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mouclass.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mouhid.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mountmgr.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mpe.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mrxsmb.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\msdv.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\msfs.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\msgpc.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\msircomm.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mskssrv.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mspclock.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\MSPQM.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mstee.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mup.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nabtsfec.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nbf.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndis.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndisip.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndistapi.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndiswan.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndproxy.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\netbios.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\netbt.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\netdtect.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nmnt.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\npfs.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ntfs.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\null.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwlnkflt.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwlnkfwd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\NWLNKIPX.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwlnknb.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwlnkspx.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwrdr.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\parallel.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\parport.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\partmgr.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\parvdm.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\pci.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\pciide.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\pciidex.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\pcmcia.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\portcls.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\psched.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ptilink.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rasacd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rasirda.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rasl2tp.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\raspptp.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\raspti.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rawwan.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rca.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rdbss.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\redbook.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rootmdm.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\SCSIPORT.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\serenum.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\serial.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\sfloppy.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\sfmatalk.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\slip.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\smclib.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\smsens.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\smwdm.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\sonydcam.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\SRV.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\stream.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\streamip.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\streams.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\swenum.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\swmidi.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\sysaudio.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tape.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tcpip.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tdi.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tosdvd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tsbvcap.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\udfs.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\uhcd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\UPDATE.SYS O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbcamd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbehci.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbhub.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbhub20.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbintel.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbport.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbprint.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbstor.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\vch.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\vdmindvd.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\vga.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\videoprt.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wa301a.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wa301b.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wanarp.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wdmaud.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wmilib.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ws2ifsl.sys O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wstcodec.sys ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC:Last File Created 04/01/2010 - 08:22:14 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@sgplus[1].txt O61 - LFC:Last File Created 04/01/2010 - 08:23:52 ---A- C:\Documents And Settings\CMA_BUD12\Favoris\franck\Ville de Marseille - Intranet Municipal.url O61 - LFC:Last File Created 04/01/2010 - 11:11:20 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@axabanque[2].txt O61 - LFC:Last File Created 04/01/2010 - 12:05:05 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@h.msn[1].txt O61 - LFC:Last File Created 04/01/2010 - 12:14:57 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\Acr60.tmp O61 - LFC:Last File Created 04/01/2010 - 12:16:30 ---A- C:\Documents And Settings\Administrateur\UserData\index.dat O61 - LFC:Last File Created 04/01/2010 - 12:16:57 ---A- C:\Documents And Settings\Administrateur\UserData\AVQNATAJ\pmocntr[1].xml O61 - LFC:Last File Created 04/01/2010 - 12:25:29 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012010010420100105\index.dat O61 - LFC:Last File Created 04/01/2010 - 13:01:25 ---A- C:\Documents And Settings\Administrateur\Local Settings\Temp\dd_vcredistMSI2528.txt O61 - LFC:Last File Created 04/01/2010 - 13:01:26 ---A- C:\Documents And Settings\Administrateur\Local Settings\Temp\dd_vcredistUI2528.txt O61 - LFC:Last File Created 04/01/2010 - 13:24:32 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\{A14CD6FC-3BA8-4703-87BF-E3247CE382F5}.ini O61 - LFC:Last File Created 04/01/2010 - 14:36:47 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@ie.search.msn[1].txt O61 - LFC:Last File Created 04/01/2010 - 14:37:19 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.bing[1].txt O61 - LFC:Last File Created 04/01/2010 - 14:37:32 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@c.bing[1].txt O61 - LFC:Last File Created 04/01/2010 - 14:37:34 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@bing[2].txt O61 - LFC:Last File Created 04/01/2010 - 14:42:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Flash Player\#SharedObjects\DRCB92Y4\static.ak.fbcdn.net\swf\XdComm.swf\cache.sol O61 - LFC:Last File Created 04/01/2010 - 14:42:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#static.ak.fbcdn.net\settings.sol O61 - LFC:Last File Created 04/01/2010 - 14:42:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol O61 - LFC:Last File Created 04/01/2010 - 14:47:48 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@social.ohmydollz[2].txt O61 - LFC:Last File Created 04/01/2010 - 14:49:10 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@eveiletjeux[1].txt O61 - LFC:Last File Created 04/01/2010 - 14:50:01 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@msnportal.112.2o7[1].txt O61 - LFC:Last File Created 04/01/2010 - 14:50:03 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@scorecardresearch[1].txt O61 - LFC:Last File Created 04/01/2010 - 14:50:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@c.msn[1].txt O61 - LFC:Last File Created 04/01/2010 - 14:57:20 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\cache\org.openoffice.Office.Logging.dat O61 - LFC:Last File Created 04/01/2010 - 14:57:22 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\config\javasettings_Windows_x86.xml O61 - LFC:Last File Created 04/01/2010 - 14:57:22 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Logging.xcu O61 - LFC:Last File Created 04/01/2010 - 14:57:26 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\cache\org.openoffice.Office.UI.DbuCommands.dat O61 - LFC:Last File Created 04/01/2010 - 15:04:37 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@xiti[1].txt O61 - LFC:Last File Created 04/01/2010 - 15:04:48 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.cheriefm[1].txt O61 - LFC:Last File Created 04/01/2010 - 15:08:35 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@cheriefm[2].txt O61 - LFC:Last File Created 04/01/2010 - 15:17:58 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@boursoramabanque.solution.weborama[2].txt O61 - LFC:Last File Created 04/01/2010 - 15:32:11 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@facebook[1].txt O61 - LFC:Last File Created 04/01/2010 - 15:40:30 ---A- C:\Documents And Settings\Default User\Cookies\index.dat O61 - LFC:Last File Created 04/01/2010 - 15:40:30 ---A- C:\Documents And Settings\Default User\Local Settings\Historique\History.IE5\index.dat O61 - LFC:Last File Created 04/01/2010 - 15:43:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@notifier.avira[2].txt O61 - LFC:Last File Created 04/01/2010 - 16:12:10 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@msn[2].txt O61 - LFC:Last File Created 05/01/2010 - 08:42:26 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@ems6[1].txt O61 - LFC:Last File Created 05/01/2010 - 08:42:43 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@estat[1].txt O61 - LFC:Last File Created 05/01/2010 - 08:44:33 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.auchan[2].txt O61 - LFC:Last File Created 05/01/2010 - 08:44:42 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@auchan[2].txt O61 - LFC:Last File Created 05/01/2010 - 10:23:34 ---A- C:\Documents And Settings\CMA_BUD12\Recent\http--msg-jaune.vdm.mars-attach-Barème%20applicable%20au%2005-01-2010.docsid=5PrW1CPn64M&mbox=INBOX&charset=escaped_unicode&uid=847&number=4&filename=Bar%E8me%20applicable%20au%2005-01-2010.doc.lnk O61 - LFC:Last File Created 05/01/2010 - 10:23:37 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Word.pip O61 - LFC:Last File Created 05/01/2010 - 10:29:17 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012010010520100106\index.dat O61 - LFC:Last File Created 05/01/2010 - 10:29:54 ---A- C:\Documents And Settings\Administrateur\Local Settings\Temp\AVSETUP_4b43063a\setup.log O61 - LFC:Last File Created 05/01/2010 - 10:33:42 -SH-- C:\Documents And Settings\Administrateur\Recent\Desktop.ini O61 - LFC:Last File Created 05/01/2010 - 11:23:44 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\wecerr.txt O61 - LFC:Last File Created 05/01/2010 - 11:24:10 ---A- C:\Documents And Settings\CMA_BUD12\Recent\http--msg-jaune.vdm.mars-attach-Barème%20applicable%20au%2006-01-2010.docsid=XT3Cusj59e4&mbox=INBOX&charset=escaped_unicode&uid=848&number=4&filename=Bar%E8me%20applicable%20au%2006-01-2010.doc.lnk O61 - LFC:Last File Created 05/01/2010 - 11:24:11 ---A- C:\Documents And Settings\CMA_BUD12\Recent\Internet Explorer (4).lnk O61 - LFC:Last File Created 05/01/2010 - 11:29:12 ---A- C:\Documents And Settings\CMA_BUD12\Recent\Loisirs Hiver[1] (2).lnk O61 - LFC:Last File Created 05/01/2010 - 11:29:12 ---A- C:\Documents And Settings\CMA_BUD12\Recent\U95VOGCY.lnk O61 - LFC:Last File Created 05/01/2010 - 11:29:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Récents\Loisirs Hiver[1].lnk O61 - LFC:Last File Created 05/01/2010 - 11:29:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Récents\U0PB7MH7.lnk O61 - LFC:Last File Created 05/01/2010 - 11:32:16 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Récents\Loisirs Hiver.lnk O61 - LFC:Last File Created 05/01/2010 - 11:32:18 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Récents\Bureau.lnk O61 - LFC:Last File Created 05/01/2010 - 11:33:33 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\uno_packages\cache\stamp.sys O61 - LFC:Last File Created 05/01/2010 - 11:33:39 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\uno_packages\cache\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\Windows_x86rc O61 - LFC:Last File Created 05/01/2010 - 11:33:39 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\uno_packages\cache\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\unorc O61 - LFC:Last File Created 05/01/2010 - 11:35:11 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Setup.xcu O61 - LFC:Last File Created 05/01/2010 - 11:35:44 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Recovery.xcu O61 - LFC:Last File Created 05/01/2010 - 11:35:44 ---A- C:\Documents And Settings\CMA_BUD12\Recent\Loisirs Hiver.lnk O61 - LFC:Last File Created 05/01/2010 - 11:35:45 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Views.xcu O61 - LFC:Last File Created 05/01/2010 - 15:29:13 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Adobe\Flash Player\AssetCache\5UZY8VA3\1846548181EAE8A4BB86AFC74FD021D9A0F6DFA6.heu O61 - LFC:Last File Created 05/01/2010 - 15:37:55 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@auto.search.msn[1].txt O61 - LFC:Last File Created 05/01/2010 - 15:45:18 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.vente-en-ligne-esf[1].txt O61 - LFC:Last File Created 05/01/2010 - 16:00:46 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@caisse-epargne[2].txt O61 - LFC:Last File Created 05/01/2010 - 16:06:24 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.caisse-epargne[2].txt O61 - LFC:Last File Created 05/01/2010 - 16:07:34 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@axabanqueglobal.solution.weborama[2].txt O61 - LFC:Last File Created 05/01/2010 - 16:07:39 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@clients.axabanque[1].txt O61 - LFC:Last File Created 05/01/2010 - 16:07:58 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@weborama[1].txt O61 - LFC:Last File Created 05/01/2010 - 16:09:08 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@apmebf[2].txt O61 - LFC:Last File Created 05/01/2010 - 16:09:22 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Shockwave Player\Shockwave Log O61 - LFC:Last File Created 05/01/2010 - 16:10:10 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@zylom[2].txt O61 - LFC:Last File Created 05/01/2010 - 16:10:29 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\AAX14A.tmp O61 - LFC:Last File Created 05/01/2010 - 16:10:47 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\DesktopProtection\AccessProtectionLog.txt O61 - LFC:Last File Created 05/01/2010 - 16:12:52 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Shockwave Player\dirapi.mch O61 - LFC:Last File Created 06/01/2010 - 08:35:16 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@fr.msn[2].txt O61 - LFC:Last File Created 06/01/2010 - 08:35:29 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@emedia[2].txt O61 - LFC:Last File Created 06/01/2010 - 08:58:10 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Jobs.xcu O61 - LFC:Last File Created 06/01/2010 - 12:29:14 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@eurobilltracker[1].txt O61 - LFC:Last File Created 06/01/2010 - 12:29:14 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@fr.eurobilltracker[2].txt O61 - LFC:Last File Created 06/01/2010 - 12:50:05 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.kadokado[2].txt O61 - LFC:Last File Created 06/01/2010 - 12:50:56 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@kadokado[2].txt O61 - LFC:Last File Created 06/01/2010 - 12:51:13 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@20minutes[1].txt O61 - LFC:Last File Created 06/01/2010 - 14:10:36 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.flexiweb[2].txt O61 - LFC:Last File Created 06/01/2010 - 14:12:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@pc-infopratique[1].txt O61 - LFC:Last File Created 06/01/2010 - 14:13:36 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@forum-windows[1].txt O61 - LFC:Last File Created 06/01/2010 - 14:23:18 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\uno_packages\cache\log.txt O61 - LFC:Last File Created 06/01/2010 - 14:28:36 -SH-- C:\Documents And Settings\Administrateur\Local Settings\Temporary Internet Files\desktop.ini O61 - LFC:Last File Created 06/01/2010 - 14:30:28 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@xiti[1].txt O61 - LFC:Last File Created 06/01/2010 - 14:30:30 ---A- C:\Documents And Settings\Administrateur\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol O61 - LFC:Last File Created 06/01/2010 - 14:56:30 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@ftv-publicite[1].txt O61 - LFC:Last File Created 06/01/2010 - 14:56:31 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@www.spartoo[1].txt O61 - LFC:Last File Created 06/01/2010 - 14:56:32 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@meteo.france2[2].txt O61 - LFC:Last File Created 06/01/2010 - 14:56:38 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@spartoo[1].txt O61 - LFC:Last File Created 06/01/2010 - 15:57:05 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012010010620100107\index.dat O61 - LFC:Last File Created 06/01/2010 - 16:08:43 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@libellules[1].txt O61 - LFC:Last File Created 06/01/2010 - 16:09:33 ---A- C:\Documents And Settings\CMA_BUD12\Recent\HiJackThis.lnk O61 - LFC:Last File Created 06/01/2010 - 16:09:41 ---A- C:\Documents And Settings\CMA_BUD12\Bureau\HiJackThis.exe O61 - LFC:Last File Created 06/01/2010 - 16:09:42 ---A- C:\Documents And Settings\Administrateur\Bureau\HiJackThis.exe O61 - LFC:Last File Created 06/01/2010 - 16:11:00 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\_ZCTmp.Dir\_ZC000.TMP O61 - LFC:Last File Created 06/01/2010 - 16:11:04 ---A- C:\Documents And Settings\CMA_BUD12\Bureau\hijackthis.log O61 - LFC:Last File Created 06/01/2010 - 16:16:43 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@login.live[2].txt O61 - LFC:Last File Created 06/01/2010 - 16:16:49 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@mail.live[1].txt O61 - LFC:Last File Created 06/01/2010 - 16:17:45 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@msn[3].txt O61 - LFC:Last File Created 06/01/2010 - 16:19:56 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\MSW25F.tmp O61 - LFC:Last File Created 06/01/2010 - 16:42:05 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\DesktopProtection\OnDemandScanLog.txt O61 - LFC:Last File Created 06/01/2010 - 20:49:26 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\catalog.z O61 - LFC:Last File Created 06/01/2010 - 20:53:05 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Server.xml O61 - LFC:Last File Created 06/01/2010 - 20:53:16 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Compiled.xml O61 - LFC:Last File Created 07/01/2010 - 00:35:42 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\McScript_backup.log O61 - LFC:Last File Created 07/01/2010 - 07:00:01 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CMABUD122_backup.log O61 - LFC:Last File Created 07/01/2010 - 08:01:38 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\PrdMgr_CMABUD122_backup.log O61 - LFC:Last File Created 07/01/2010 - 08:16:13 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Adobe\Shockwave Player 11\Shockwave Log O61 - LFC:Last File Created 07/01/2010 - 08:24:09 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@marseille[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:24:23 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@verify[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:24:39 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@google[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:38:53 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@telechargement.zebulon[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:38:53 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@tradedoubler[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:39:11 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@server.iad.liveperson[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:39:12 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@19452074[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:39:51 -SH-- C:\Documents And Settings\Administrateur\ntuser.ini O61 - LFC:Last File Created 07/01/2010 - 08:40:15 -SHA- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Internet Explorer\Desktop.htt O61 - LFC:Last File Created 07/01/2010 - 08:40:55 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Common.xcu O61 - LFC:Last File Created 07/01/2010 - 08:42:00 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\index.dat O61 - LFC:Last File Created 07/01/2010 - 08:42:00 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Historique\History.IE5\index.dat O61 - LFC:Last File Created 07/01/2010 - 08:42:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@live[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:48:40 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@verify[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:49:14 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.commentcamarche[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:52:32 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@commentcamarche[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:53:21 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@google[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:54:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@piwik[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:54:17 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@forum.malekal[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:01 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@nuggad[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:07 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@affiliation.fotovista[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:07 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@sdv[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:08 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@bubblestat[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:08 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@futura-sciences[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:08 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.pixmania[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@forums.futura-sciences[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:36 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@pixmania[1].txt O61 - LFC:Last File Created 07/01/2010 - 08:55:56 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Historique\History.IE5\MSHist012010010720100108\index.dat O61 - LFC:Last File Created 07/01/2010 - 08:58:56 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@telechargement.zebulon[2].txt O61 - LFC:Last File Created 07/01/2010 - 08:58:56 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@tradedoubler[2].txt O61 - LFC:Last File Created 07/01/2010 - 09:03:55 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@zebulon[1].txt O61 - LFC:Last File Created 07/01/2010 - 09:04:05 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@forum.zebulon[2].txt O61 - LFC:Last File Created 07/01/2010 - 09:05:07 --HA- C:\Documents And Settings\CMA_BUD12\NTUSER.DAT O61 - LFC:Last File Created 07/01/2010 - 09:05:08 --HA- C:\Documents And Settings\CMA_BUD12\ntuser.dat.LOG O61 - LFC:Last File Created 07/01/2010 - 09:05:11 -SHA- C:\Documents And Settings\CMA_BUD12\ntuser.ini O61 - LFC:Last File Created 07/01/2010 - 09:05:14 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CMABUD122_error.log O61 - LFC:Last File Created 07/01/2010 - 09:06:59 ---A- C:\Documents And Settings\Administrateur\Cookies\index.dat O61 - LFC:Last File Created 07/01/2010 - 09:06:59 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\index.dat O61 - LFC:Last File Created 07/01/2010 - 09:09:20 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@bubblestat[1].txt O61 - LFC:Last File Created 07/01/2010 - 09:14:13 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@zebulon[1].txt O61 - LFC:Last File Created 07/01/2010 - 09:14:57 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@forum.zebulon[1].txt O61 - LFC:Last File Created 07/01/2010 - 09:19:31 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\DesktopProtection\BufferOverflowProtectionLog.txt O61 - LFC:Last File Created 07/01/2010 - 09:21:19 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\DesktopProtection\OnAccessScanLog.txt O61 - LFC:Last File Created 07/01/2010 - 09:23:17 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012010010720100108\index.dat O61 - LFC:Last File Created 07/01/2010 - 09:24:18 ---A- C:\Documents And Settings\Administrateur\Bureau\ZHPDiag.zip O61 - LFC:Last File Created 07/01/2010 - 09:24:34 ---A- C:\Documents And Settings\Administrateur\Recent\ZHPDiag.zip.lnk O61 - LFC:Last File Created 07/01/2010 - 09:25:33 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\LastPropsSentToServer.xml O61 - LFC:Last File Created 07/01/2010 - 09:25:33 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\NextProp.xml O61 - LFC:Last File Created 07/01/2010 - 09:26:05 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\SiteStat.xml O61 - LFC:Last File Created 07/01/2010 - 09:26:07 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Agent.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:07 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\28.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\30.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\32.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\34.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\30.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\32.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\34.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:09 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\EPOAGENT3000_DEPLOYMENT_28.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:10 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\28.ini O61 - LFC:Last File Created 07/01/2010 - 09:26:26 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\LastProp.xml O61 - LFC:Last File Created 07/01/2010 - 09:26:53 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Current\SPAMSAFE1000\SK_det.mcs O61 - LFC:Last File Created 07/01/2010 - 09:27:28 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\AgentEvents\2010010709272853100000B40.xml O61 - LFC:Last File Created 07/01/2010 - 09:27:28 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\McScript_error.log O61 - LFC:Last File Created 07/01/2010 - 09:27:28 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\UpdateHistory.ini O61 - LFC:Last File Created 07/01/2010 - 09:27:29 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\PrdMgr_CMABUD122.log O61 - LFC:Last File Created 07/01/2010 - 09:27:31 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\McScript.log O61 - LFC:Last File Created 07/01/2010 - 09:30:34 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CMABUD122.log O61 - LFC:Last File Created 07/01/2010 - 09:30:34 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CMABUD122.xml ---\\ Liste des outils de nettoyage (LATC) (O63) O63 - Logiciel: HijackThis 2.0.2 O63 - Logiciel: Dial-a-fix End of the scan: 828 lines

Bonjour, Je n'arrive pas à télécharger .... J'essaye highjack sous administrateur.

Voici le rapport hijeckthis : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:11:04, on 06/01/2010 Platform: Windows 2000 SP4 (WinNT 5.00.2195) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Boot mode: Normal Running processes: C:\WINNT\Explorer.EXE C:\WINNT\System32\igfxtray.exe C:\WINNT\System32\hkcmd.exe C:\Program Files\Network Associates\Common Framework\udaterui.exe C:\Program Files\OpenOffice.org 2.3\program\soffice.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Network Associates\Common Framework\McTray.exe C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN C:\WINNT\system32\Adobe\Shockwave 11\SwHelper_1150600.exe C:\Documents and Settings\CMA_BUD12\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://login.live.com/login.srf?wa=wsignin...amp;bk=48570471 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll O3 - Toolbar: @msdxmLC.dll,-1@1036,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx O4 - HKLM\..\Run: [synchronization Manager] mobsync.exe /logon O4 - HKLM\..\Run: [igfxTray] C:\WINNT\System32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\udaterui.exe" /StartedFromRunKey O4 - HKLM\..\Run: [shStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE O4 - HKCU\..\RunOnce: [shockwave Updater] "C:\WINNT\system32\Adobe\Shockwave 11\SwHelper_1150600.exe" -Update -1150600 -"Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" -"http://www.absoluflash.com/jeux-flash/special19.php?l640111=check1point&rena=t_19-cel-blaster.jpg&w=800&h=600" O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user') O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1141026275609 O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game15.zylomgames.com/activex/zylomgamesplayer.cab O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = dgl.vdm O17 - HKLM\System\CCS\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = dgl.vdm O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = vdm.mars,dgl.vdm,mairie-marseille.fr O17 - HKLM\System\CS1\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = dgl.vdm O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = vdm.mars,dgl.vdm,mairie-marseille.fr O17 - HKLM\System\CS2\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = vdm.mars,dgl.vdm,mairie-marseille.fr O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe O23 - Service: EpsonNet Primitive Service (EpsonNet_Primitive_Service) - Unknown owner - C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe O23 - Service: Service McAfee Framework (McAfeeFramework) - McAfee, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe -- End of file - 4697 bytes

Bonjour et bonne année à tous !! Mon ordinateur professionnel est très lent. J'ai l'impression qu"'un processus prend beaucoup de place. Est ce scan32.exe ? Pouvez vous m'aider?

Bonjour, pour répondre à ZONK je vais passer sous "seven". Je suis actuellement sous windows vista home premium 64 bit.

Bonjour à tous, Mon antivirus pré chargé "Mcafee" se termine dans 9 jours. Pouvez vous m'indiquer un bon antivirus pas trop cher afin que je puisse protéger a peu près efficacement mon ordi? D'avance merci.

Bonjour, Je suis sur firefox et j'ai des soucis d'affichage. J'explique par exemple sur le site zebulon.fr dans la liste des messages, au lieu d'avoir les symboles j'ai en toute lettres "new posts" ou "closed" etc etc etc. Sur d'autre sites je n'ai par exemple pas les photos qui s'affichent. Pouvez vous m'aider ?

Bonjour, Le problème c'est que le service technique de Kaspersky m'a dit que cela ne tournerai pas sous Windows Vista Home Prémium

Bonjour, Ben oui nous nous sommes lancés. Jusqu'ici tout va bien nous en sommes content. Affaire à suivre !!!

Bonjour à tous, Je viens de changer mon ordi sur lequel il y a mcafee de monté pour une période d'essai. J'aimerai savoir quel est le meilleur antivirus avec un bon rapport qualité/prix. J'avais Kaspersky sur mon ancien ordi, dois je garder?

Bonjour à tous, Je viens de changer mon ordi sur lequel il y a mcafee de monté pour une période d'essai. J'aimerai savoir quel est le meilleur antivirus avec un bon rapport qualité/prix. J'avais Kaspersky sur mon ancien ordi, dois je garder?

Bonjour, Nous utilisons essentiellement notre ordi pour surfer sur le net, utiliser tableur et de quoi ecrire utilisation surtout destinée à nos étudiants de fils !! Utilisation egalement pour regarder des videos ou des films en streaming. Les quelques jeux se bornent a des jeux en flash (style miniclip) Nous voulons aussi un ordi silencieux et qui ne chauffe pas (STOP aux Athlon !!!)

Bonjour, Pouvez vous me dire ce que vous pensez de cet ordi ? il est a 699 euros D'avance merci CARACTÉRISTIQUES TECHNIQUES Processeur Référence du processeur Intel Core 2 Quad 8200 Processeur INTEL Core 2 Quad Type de mémoire vive installée DDR-3 Mémoire vive (Go) 8 Go Instructions d'utilisation sur la mémoire vive La mémoire peut ne pas être entierement disponible en raison des besoins en ressources du système Mémoire vive (RAM) 8Go Disque dur Capacité du disque dur 1 Tera Interface du disque dur S-ATA II Vitesse de rotation 7200 tr/min Capacité du 2eme disque dur Non, pas de 2eme disque dur installé Vidéo Contrôleur graphique Nvidia GeForce GT230 Fabricant du chipset graphique NVIDIA Port de la carte graphique Intégré à la carte mère Mémoire vidéo Jusqu’à 2955Mo- TGM Gestion de la mémoire vidéo Prise en charge de la mémoire vidéo dédiée puis allocation dynamique Mémoire totale vidéo 2955Mo Sortie vidéo numérique (DVI) Oui Connecteur VGA pour écran Oui pour connecter un moniteur externe Connecteur HDMI Oui Télécommande Non Carte Son Chipset son Intégré, Realtek ALC888S High Définition 7.1 Sur carte séparée Non Nombre d'enceintes Enceintes non fournies avec l'unité centrale Micro intégré Non Autre(s) caractéristique(s) technique(s) Dolby Home Theater Ecran Fourni avec un écran Oui Optique Type de graveur(s) DVDRW 16X DL (technologie Label Flash) Norme de gravure Dual +/- Fonction de gravure Information non communiquée par le fabriquant Méthode(s) d'écriture ±R et ±RW double Layer Communication Modem Aucun modem installé Connecteur réseau LAN Ethernet 10 BASE-T/100 BASE-TX/1000 BASE-T Gigabit Ethernet (PORT RJ 45) Solution sans fil Pas de solution Wifi installée Connexion bluetooth Non Connectique Lecteur de cartes Oui Type de lecteur 16 en 1 Port(s) USB 8 Type de port USB USB 2.0 (haut débit) Port(s) FireWire / IEEE 1394 Oui 1 port FireWire 400 PS/2 Oui (2 port) Prise casque Oui (1 port) Prise micro Oui (1 port) Clavier Multimédia Souris Optique USB Caractéristiques physiques Système d'exploitation fourni Windows Vista Premium Autre(s) logiciel(s) fournis Acer eRecovery Management, Acer Arcade Deluxe, Adobe Reader Autre(s) logiciel(s) fournis Mc Afee Internet Sécurity Suite 2009 (offre d'essai 60 jours), Microsoft Office 2007 Trial with Micr Autre(s) logiciel(s) fournis NTI Media Maker Autre(s) logiciel(s) fournis eSobi, CyberLink PowerDirector4 DE, CyberLink MediaShow DEX, MyWinLocker Instruction de mise en route Pensez à faire une sauvegarde de vos logiciels pré-installés Instruction de mise en route Les logiciels mentionnés sont pré-installés ou livrés sur un support amovible Utilisation suggérée Pour regarder la Tv : visualisation et enregistrement, musique numérique Type d'assistance offert 1 AN avec assistance telephonique gratuite Contenu du colis Logiciel(s) pré-installé(s), accessoires fournis précédemment cités, guide d'installation rapide, câ Référence fabricant ASPIRE M3800-EK79

Ben moi qui cherche du silencieux....je crois que c'est rapé !!! Vers quoi il faut que je me dirige ? j'ai un budget de 500€. Pour faire du multimedia, bureautique, ecouter musique et regarder film...