bonjour,mon pc a depuis quelque temps la facheuse manie de ramer ,je suis plutot nul en informatique, est ce que quelqu'un pourrait m'aider svp?je joint un rapport hijack et zhp et s'il est possible de mieux le configurer toute les solutions sont les biens venues par avance merci
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:35:10, on 21/03/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe
C:\Users\DOM\Desktop\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_th36&r=27360211l905l0444z1l5f4732e429
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_th36&r=27360211l905l0444z1l5f4732e429
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_th36&r=27360211l905l0444z1l5f4732e429
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Shareaza Web Download Hook - {0EEDB912-C5FA-486F-8334-57288578C627} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\IPSBHO.DLL
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll
O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [VideoWebCamera] "C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe" -a
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe -update activex
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Download with &Shareaza - res://C:\Program Files (x86)\Shareaza\RazaWebHook32.dll/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer Group - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe
--
End of file - 24584 bytes
Rapport de ZHPDiag v1.27.1628 par Nicolas Coolman, Update du 05/03/2011
Run by DOM at 21/03/2011 22:40:16
Web site : ZHPDiag Outil de diagnostic
Contact : nicolascoolman@yahoo.fr
---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
---\\ System Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3002 MB (57% free)
System Restore: Activé (Enable)
System drive C: has 412 GB (90%) free of 453 GB
---\\ Logged in mode
Computer Name: DOM-PC
User Name: DOM
All Users Names: DOM, Administrateur,
Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
%AppData%=C:\Users\DOM\AppData\Roaming
%LocalAppData%=C:\Users\DOM\AppData\Local
%StartMenu%=C:\Users\DOM\AppData\Roaming\Microsoft\Windows\Start Menu
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 412 Go of 453 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
---\\ Recherche particulière de fichiers génériques
[MD5.AC4C51EB24AA95B77F705AB159189E24] - (.Microsoft Corporation - Explorateur Windows.) (.20/11/2010 14:24:45.) -- C:\Windows\Explorer.exe [2872320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.44214C94911C7CFB1D52CB64D5E8368D] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.20/11/2010 13:21:36.) -- C:\Windows\System32\wininet.dll [980992]
---\\ Processus lancés
[MD5.8E643FD5F38FA9A2EDA27268A1E9499F] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe [126392]
[MD5.17C5E2A94AA1B42D499A5396D67E0B61] - (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe [206208]
[MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [275768]
[MD5.9ECF375A6E4E74D056F4B54E76D58721] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696]
[MD5.522EEC6D2CAF10ADF7D9B6868A5BDEA9] - (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1300560]
[MD5.C680CEDEA1D74BA744CDC7417C4A1E91] - (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [258560]
[MD5.F2BAD445CC5120EB370360A37A7FEE2A] - (.Suyin - Video Web Camera.) -- C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe [1541472]
[MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064]
[MD5.3E4E76D2AD42B4D9C868A381F51B683A] - (.Dritek System Inc. - Launch Manager Worker.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe [297040]
[MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960]
[MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104]
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496]
[MD5.C613E69C3B191BB02C7A191741A1D024] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [673040]
[MD5.3621F2F6A733BFABDC58C97613B0166D] - (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe [116280]
[MD5.6CBF6DCC830A1C32EBCF7036A4978C8C] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe [234656]
[MD5.261A367C6004BC9F083F3AA5D99973E3] - (.Nicolas Coolman - Analyseur de rapports sécurité.) -- C:\Program Files (x86)\ZebHelpProcess\ZHP2.exe [891904]
[MD5.903E617600010767AE394F8083C9B1A7] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZebHelpProcess\ZHPDiag.exe [632320]
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G1 - GCS: Preference [user Data\Default] None
G0 - GCSP: Preference [user Data\Default][HomePage] about:Tabs
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKUS\S-1-5-21-2457555975-1631193541-3333612775-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-2457555975-1631193541-3333612775-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Shareaza Web Download Hook [64Bits] - {0EEDB912-C5FA-486F-8334-57288578C627} Clé orpheline
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe (.not file.)
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.)
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.)
O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PLFSetI] . (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe
O4 - HKLM\..\Wow6432Node\Run: [iAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Wow6432Node\Run: [backupManagerTray] . (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
O4 - HKLM\..\Wow6432Node\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [VideoWebCamera] . (.Suyin - Video Web Camera.) -- C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)
O4 - HKUS\S-1-5-21-2457555975-1631193541-3333612775-1000\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co..) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\DOM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\DOM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\DOM\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\DOM\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - packardbell.lnk . (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Download with &Shareaza - (.not file.) - C:\Program Files (x86)\Shareaza\RazaWebHook32.dll
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{4FD32838-D265-4828-AECA-96F013E24236}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{A4036485-10AC-4B7F-97AE-47DE2E5E170A}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{4FD32838-D265-4828-AECA-96F013E24236}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{A4036485-10AC-4B7F-97AE-47DE2E5E170A}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{4FD32838-D265-4828-AECA-96F013E24236}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{A4036485-10AC-4B7F-97AE-47DE2E5E170A}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Pas de propriétaire - Pas de description.) -- igfxdev.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: (FLEXnet Licensing Service) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: (GamesAppService) . (.WildTangent, Inc. - GamesAppService.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: (NIS) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe
O23 - Service: (NTI IScheduleSvc) . (.NewTech Infosystems, Inc. - Backup Manager Module.) - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
[MD5.5DD90DE1428E51A2132B09AECF46946E] [APT] [symantec Error Analyzer 17.8.0.5] (.Symantec Corporation.) -- C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\SymErr.exe
[MD5.5DD90DE1428E51A2132B09AECF46946E] [APT] [symantec Error Processor 17.8.0.5] (.Symantec Corporation.) -- C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\SymErr.exe
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (BHDrvx64) . (.Symantec Corporation - BASH Driver.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\BASHDefs\20110309.001\BHDrvx64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (ccHP) . (.Symantec Corporation - Common Client Hash Provider Driver.) - C:\Windows\system32\drivers\NISx64\1108000.005\ccHPx64.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (eeCtrl) . (.Symantec Corporation - Symantec Eraser Control Driver.) - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
O41 - Driver: (IDSVia64) . (.Symantec Corporation - IDS Core Driver.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\20110317.002\IDSvia64.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SRTSPX) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\system32\drivers\NISx64\1108000.005\SRTSPX64.sys
O41 - Driver: (SymIRON) . (.Symantec Corporation - Iron Driver.) - C:\Windows\system32\drivers\NISx64\1108000.005\Ironx64.sys
O41 - Driver: (SYMTDIv) . (.Symantec Corporation - Network Dispatch Driver.) - C:\Windows\system32\Drivers\NISx64\1108000.005\SYMTDIV.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {55D55008-E5F6-47D6-B16F-B2A40D4D145F}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Photoshop Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 8.0
O42 - Logiciel: Adobe Reader 9.4.3 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}
O42 - Logiciel: Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: Backup Manager Basic - (.NewTech Infosystems.) [HKLM][64Bits] -- {72B776E5-4530-4C4B-9453-751DF87D9D93}
O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078791
O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT078960
O42 - Logiciel: Bob the Builder Can-Do-Zoo - (.WildTangent.) [HKLM][64Bits] -- WT078964
O42 - Logiciel: Build-a-lot 2 - (.WildTangent.) [HKLM][64Bits] -- WT079363
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Chicken Invaders 3 - Revenge of the Yolk - (.WildTangent.) [HKLM][64Bits] -- WT079366
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Escape Rosecliff Island - (.WildTangent.) [HKLM][64Bits] -- WT079395
O42 - Logiciel: FATE - The Traitor Soul - (.WildTangent.) [HKLM][64Bits] -- WT079024
O42 - Logiciel: Faerie Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT079020
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities
O42 - Logiciel: HP Deskjet F2400 All-In-One Driver Software 13.0 Rel .6 - (.HP.) [HKLM] -- {CDBF8C2D-04B0-4F9B-9AE1-7422F7F0EC94}
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM] -- HP Print Projects
O42 - Logiciel: HP Smart Web Printing 4.5 - (.HP.) [HKLM] -- HP Smart Web Printing
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078806
O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Intel® Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Java 6 Update 24 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}
O42 - Logiciel: Jewel Quest - (.WildTangent.) [HKLM][64Bits] -- WT079064
O42 - Logiciel: Jewel Quest Solitaire 3 - (.WildTangent.) [HKLM][64Bits] -- WT079068
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- LManager
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT079397
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {3b4a19c2-e813-41b6-bdd1-e9792579b0e5}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}
O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}
O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}
O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}
O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}
O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}
O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}
O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}
O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348B586-C9AE-46CE-936C-A68E9426E214}
O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM][64Bits] -- {4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}
O42 - Logiciel: Norton Internet Security - (.Symantec Corporation.) [HKLM][64Bits] -- NIS
O42 - Logiciel: Norton Online Backup - (.Symantec.) [HKLM][64Bits] -- {C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}
O42 - Logiciel: Packard Bell Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent packardbell Master Uninstall
O42 - Logiciel: Packard Bell InfoCentre - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell InfoCentre
O42 - Logiciel: Packard Bell MyBackup - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {3DB0448D-AD82-4923-B305-D001E521A964}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}
O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Registration
O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell .) [HKLM][64Bits] -- Packard Bell Screensaver
O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{64EF903E-D00A-414C-94A4-FBA368FFCDC9}
O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- {64EF903E-D00A-414C-94A4-FBA368FFCDC9}
O42 - Logiciel: Packard Bell Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT079108
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT079116
O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM][64Bits] -- WT079120
O42 - Logiciel: Polar Pool - (.WildTangent.) [HKLM][64Bits] -- WT079124
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228
O42 - Logiciel: Video Web Camera - (.SuYin.) [HKLM][64Bits] -- {6D9021DC-CF1B-4148-8C80-6D8E8A8A33EB}
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WT079421
O42 - Logiciel: Virtual Villagers - A New Home - (.WildTangent.) [HKLM][64Bits] -- WT079177
O42 - Logiciel: Welcome Center - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Welcome Center
O42 - Logiciel: WildTangent Games App (Packard Bell Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}
O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}
O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}
O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}
O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}
O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}
O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}
O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}
O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}
O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}
O42 - Logiciel: Yahtzee - (.WildTangent.) [HKLM][64Bits] -- WT079184
O42 - Logiciel: ZebHelpProcess 2.46 - (.Nicolas Coolman.) [HKLM][64Bits] -- Zeb Help Process_is1
O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078833
O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {E0B19DF7-B1C7-4937-82C4-0E4B1E346965}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Acer]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Borland]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Dritek]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Magnet]
[HKCU\Software\MainConcept (Adobe2)]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\OEM]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Shareaza]
[HKCU\Software\Skype]
[HKCU\Software\Sonix]
[HKCU\Software\Suyin]
[HKCU\Software\Synaptics]
[HKCU\Software\Sysinternals]
[HKCU\Software\Trolltech]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Acer]
[HKLM\Software\Audible]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\OOBEOffer]
[HKLM\Software\OemSetup]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\Synaptics]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node]
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 25/02/2011 - 23:13:32 - [7184728] ----D- C:\Program Files\CCleaner
O43 - CFD: 05/02/2011 - 08:23:38 - [73912991] ----D- C:\Program Files\Common Files
O43 - CFD: 24/02/2011 - 20:53:56 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 09/02/2011 - 03:14:10 - [0] ----D- C:\Program Files\Google
O43 - CFD: 11/02/2011 - 22:06:06 - [4499093] ----D- C:\Program Files\HP
O43 - CFD: 24/02/2011 - 20:53:56 - [5183005] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/07/2009 - 08:45:56 - [148931122] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 26/07/2010 - 15:45:26 - [24266698] ----D- C:\Program Files\Packard Bell
O43 - CFD: 04/02/2011 - 16:35:02 - [252325] ----D- C:\Program Files\PB Accessory Store
O43 - CFD: 10/05/2010 - 07:34:32 - [1825075] ----D- C:\Program Files\Preload
O43 - CFD: 10/05/2010 - 07:23:56 - [15309052] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 06:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 05/02/2011 - 08:23:38 - [0] ----D- C:\Program Files\Symantec
O43 - CFD: 26/07/2010 - 15:44:14 - [28978855] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 24/02/2011 - 20:53:52 - [4039680] ----D- C:\Program Files\Windows Defender
O43 - CFD: 24/02/2011 - 20:53:56 - [9224824] ----D- C:\Program Files\Windows Journal
O43 - CFD: 08/02/2011 - 19:21:06 - [43896] ----D- C:\Program Files\Windows Live
O43 - CFD: 24/02/2011 - 20:53:58 - [6667776] ----D- C:\Program Files\Windows Mail
O43 - CFD: 24/02/2011 - 20:53:56 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 04/02/2011 - 16:34:42 - [12627636] ----D- C:\Program Files\Windows NT
O43 - CFD: 24/02/2011 - 20:53:56 - [5516056] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 24/02/2011 - 20:53:56 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 24/02/2011 - 20:53:58 - [7270453] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 08/02/2011 - 19:20:58 - [60081814] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 05/02/2011 - 08:23:38 - [1025416] ----D- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 27/07/2010 - 01:28:48 - [12194291] ----D- C:\Program Files\Common Files\System
O43 - CFD: 10/05/2010 - 07:34:32 - [160] ----D- C:\ProgramData\Acer
O43 - CFD: 15/02/2011 - 11:44:14 - [556405133] ----D- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 10/05/2010 - 07:36:36 - [8794] ----D- C:\ProgramData\BackupManager
O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 11/02/2011 - 22:16:02 - [15941779] ----D- C:\ProgramData\HP
O43 - CFD: 11/02/2011 - 22:11:40 - [8988] ----D- C:\ProgramData\HP Product Assistant
O43 - CFD: 17/02/2011 - 15:20:56 - [14142862] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 21/03/2011 - 00:15:30 - [1232246327] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 10/05/2010 - 07:43:20 - [11082989] ----D- C:\ProgramData\Nero
O43 - CFD: 05/02/2011 - 08:23:50 - [336929588] ----D- C:\ProgramData\Norton
O43 - CFD: 10/05/2010 - 07:48:18 - [612458] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 04/02/2011 - 16:36:26 - [700] ----D- C:\ProgramData\OEM
O43 - CFD: 10/05/2010 - 07:40:00 - [111258] ----D- C:\ProgramData\Packard Bell
O43 - CFD: 09/02/2011 - 03:14:10 - [1025] ----D- C:\ProgramData\Partner
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 24/02/2011 - 13:24:36 - [119] ----D- C:\ProgramData\Sun
O43 - CFD: 10/05/2010 - 07:46:54 - [865] ----D- C:\ProgramData\Symantec
O43 - CFD: 10/05/2010 - 07:34:44 - [36864] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 11/02/2011 - 22:18:16 - [206] ----D- C:\ProgramData\WEBREG
O43 - CFD: 16/03/2011 - 20:53:56 - [1961127269] ----D- C:\ProgramData\WildTangent
O43 - CFD: 06/02/2011 - 13:36:10 - [2271262] ----D- C:\Users\DOM\AppData\Roaming\Adobe
O43 - CFD: 05/02/2011 - 08:25:12 - [0] ----D- C:\Users\DOM\AppData\Roaming\Google
O43 - CFD: 11/02/2011 - 22:21:48 - [52060] ----D- C:\Users\DOM\AppData\Roaming\HP
O43 - CFD: 04/02/2011 - 16:35:52 - [0] ----D- C:\Users\DOM\AppData\Roaming\Identities
O43 - CFD: 04/02/2011 - 16:36:38 - [0] ----D- C:\Users\DOM\AppData\Roaming\Intel Corporation
O43 - CFD: 04/02/2011 - 16:36:28 - [1376] ----D- C:\Users\DOM\AppData\Roaming\Macromedia
O43 - CFD: 17/02/2011 - 15:21:02 - [3174] ----D- C:\Users\DOM\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 08:44:40 - [0] ----D- C:\Users\DOM\AppData\Roaming\Media Center Programs
O43 - CFD: 21/03/2011 - 00:15:30 - [1491845] -S--D- C:\Users\DOM\AppData\Roaming\Microsoft
O43 - CFD: 15/02/2011 - 12:11:18 - [1985688] ----D- C:\Users\DOM\AppData\Roaming\Nero
O43 - CFD: 08/02/2011 - 19:19:06 - [15] ----D- C:\Users\DOM\AppData\Roaming\Packard Bell
O43 - CFD: 11/02/2011 - 11:15:18 - [0] ----D- C:\Users\DOM\AppData\Roaming\Windows Live Writer
O43 - CFD: 11/02/2011 - 22:13:12 - [0] ----D- C:\Users\DOM\AppData\Roaming\Yahoo!
O43 - CFD: 26/07/2010 - 15:48:06 - [1463367284] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 08/03/2011 - 14:34:38 - [554186414] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 10/05/2010 - 07:35:24 - [66856] ----D- C:\Program Files (x86)\Cyberlink
O43 - CFD: 20/02/2011 - 18:51:42 - [195589204] ----D- C:\Program Files (x86)\HP
O43 - CFD: 26/07/2010 - 15:45:26 - [61101732] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 10/05/2010 - 06:39:30 - [19089861] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 24/02/2011 - 20:54:02 - [4594973] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 08/03/2011 - 14:33:30 - [88362895] ----D- C:\Program Files (x86)\Java
O43 - CFD: 10/05/2010 - 07:27:22 - [7639509] ----D- C:\Program Files (x86)\Launch Manager
O43 - CFD: 17/02/2011 - 15:23:38 - [4945820] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 26/07/2010 - 15:47:08 - [6423243] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 24/02/2011 - 20:57:54 - [38371963] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 26/07/2010 - 15:54:08 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 08/02/2011 - 20:14:04 - [15715] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 05/02/2011 - 13:32:12 - [0] ----D- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 10/05/2010 - 07:44:10 - [377644923] ----D- C:\Program Files (x86)\Nero
O43 - CFD: 10/05/2010 - 07:36:26 - [28189359] ----D- C:\Program Files (x86)\NewTech Infosystems
O43 - CFD: 10/05/2010 - 07:48:40 - [161667058] ----D- C:\Program Files (x86)\Norton Internet Security
O43 - CFD: 10/05/2010 - 07:48:18 - [25191931] ----D- C:\Program Files (x86)\NortonInstaller
O43 - CFD: 04/02/2011 - 16:35:06 - [106432] ----D- C:\Program Files (x86)\OEM
O43 - CFD: 26/07/2010 - 15:38:48 - [64342218] ----D- C:\Program Files (x86)\Packard Bell
O43 - CFD: 16/03/2011 - 20:23:06 - [334870476] ----D- C:\Program Files (x86)\Packard Bell Games
O43 - CFD: 10/05/2010 - 07:23:54 - [11797961] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 10/05/2010 - 07:35:24 - [25832787] ----D- C:\Program Files (x86)\Social Networks
O43 - CFD: 10/05/2010 - 07:46:54 - [2202256] ----D- C:\Program Files (x86)\Symantec
O43 - CFD: 10/05/2010 - 07:24:12 - [0] --H-D- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 05:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 26/07/2010 - 15:44:44 - [26594078] ----D- C:\Program Files (x86)\VideoWebCamera
O43 - CFD: 16/03/2011 - 20:22:44 - [10277935] ----D- C:\Program Files (x86)\WildTangent Games
O43 - CFD: 27/07/2010 - 01:28:48 - [524800] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 08/02/2011 - 19:22:22 - [146614464] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 24/02/2011 - 20:54:02 - [6181376] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 24/02/2011 - 20:54:02 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 24/02/2011 - 20:54:00 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 24/02/2011 - 20:54:02 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 24/02/2011 - 20:54:02 - [5994626] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 14/03/2011 - 07:07:42 - [0] ----D- C:\Program Files (x86)\Yahoo!
O43 - CFD: 21/03/2011 - 22:40:24 - [100764152] ----D- C:\Program Files (x86)\ZebHelpProcess
O43 - CFD: 08/02/2011 - 19:20:58 - [60081814] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 05/02/2011 - 08:23:38 - [1025416] ----D- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 27/07/2010 - 01:28:48 - [12194291] ----D- C:\Program Files\Common Files\System
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.5B57EE89F048F1E178E4D7270C0D22D1] - 21/03/2011 - 22:04:31 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [9696]
O44 - LFC:[MD5.5B57EE89F048F1E178E4D7270C0D22D1] - 21/03/2011 - 22:04:31 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [9696]
O44 - LFC:[MD5.23000000000000000000000038EE1800] - 21/03/2011 - 22:00:59 ---A- . (...) -- C:\Windows\WindowsUpdate.log [341362]
O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 21/03/2011 - 21:57:13 ---A- . (...) -- C:\Windows\setupact.log [56]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 21/03/2011 - 21:57:13 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.42CC7EF53DE01B4723B3A0518448334C] - 21/03/2011 - 21:57:11 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.1F000000000000000000000038EE1800] - 21/03/2011 - 00:27:21 ---A- . (...) -- C:\PDOXUSRS.NET [13030]
O44 - LFC:[MD5.D4A25C763E9FF438D95330330A4C3190] - 21/03/2011 - 00:26:00 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.5136B53F5D0C6127ABF614A6A13904F7] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.EA3C875F02B52B64A7853792E508C95B] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106388]
O44 - LFC:[MD5.DDC94531AAC3AACC70DC33DE9EC9D449] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130754]
O44 - LFC:[MD5.27B8D0BA6C911FC9E4A85DC7CBE4CF35] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616008]
O44 - LFC:[MD5.9881AB8C039F1CF4AA3AB327E1A9774D] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704480]
O44 - LFC:[MD5.565077FDFD96369D1034598F449F3636] - 14/03/2011 - 07:13:35 ---A- . (...) -- C:\Windows\popcinfo.dat [10]
O44 - LFC:[MD5.42310101A4DB07CF89C7BFC9E8EA8A39] - 24/02/2011 - 20:58:20 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [271168]
O44 - LFC:[MD5.E1DCEE9E3EC0522DF24397BE1A64E449] - 24/02/2011 - 13:57:32 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\SysNative\dfshim.dll [1942856]
O44 - LFC:[MD5.E1DCEE9E3EC0522DF24397BE1A64E449] - 24/02/2011 - 13:57:24 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\System32\dfshim.dll [1130824]
O44 - LFC:[MD5.DD72849FE94E6F49732E1E9A6484FBAF] - 24/02/2011 - 13:56:26 ---A- . (.Microsoft - Filtre du convertisseur RDP (redirecteur).) -- C:\Windows\SysNative\DShowRdpFilter.dll [281600]
O44 - LFC:[MD5.DD72849FE94E6F49732E1E9A6484FBAF] - 24/02/2011 - 13:56:21 ---A- . (.Microsoft - Filtre du convertisseur RDP (redirecteur).) -- C:\Windows\System32\DShowRdpFilter.dll [252928]
O44 - LFC:[MD5.0A551CCDEF9D6F99A008B5B075354650] - 24/02/2011 - 13:56:00 ---A- . (.Microsoft - robocopy.) -- C:\Windows\SysNative\Robocopy.exe [128000]
O44 - LFC:[MD5.345BC7CADBE91E78B52497EF3B0D910B] - 24/02/2011 - 13:55:43 ---A- . (.Windows ® Codename Longhorn DDK provider - Services de gestion des polices.) -- C:\Windows\SysNative\fms.dll [116224]
O44 - LFC:[MD5.0A551CCDEF9D6F99A008B5B075354650] - 24/02/2011 - 13:55:39 ---A- . (.Microsoft - robocopy.) -- C:\Windows\System32\Robocopy.exe [98816]
O44 - LFC:[MD5.345BC7CADBE91E78B52497EF3B0D910B] - 24/02/2011 - 13:55:19 ---A- . (.Windows ® Codename Longhorn DDK provider - Services de gestion des polices.) -- C:\Windows\System32\fms.dll [93696]
O44 - LFC:[MD5.163A95975E1D8819E653AA3E961371CA] - 24/02/2011 - 13:55:16 ---A- . (.Twain Working Group - Gestionnaire de sources Twain_32 (Image Acq.) -- C:\Windows\twain_32.dll [51200]
O44 - LFC:[MD5.C5DEA5B95AF9AA981C88CAB94A58213E] - 20/11/2010 - 04:52:51 ---A- . (...) -- C:\Windows\SysNative\locale.nls [419880]
O44 - LFC:[MD5.C5DEA5B95AF9AA981C88CAB94A58213E] - 20/11/2010 - 04:52:32 ---A- . (...) -- C:\Windows\System32\locale.nls [419880]
O44 - LFC:[MD5.5C18CD22BE4628865FCB63337A6E5EF6] - 10/11/2010 - 02:48:34 ---A- . (...) -- C:\Windows\SysNative\ScavengeSpace.xml [10429]
O44 - LFC:[MD5.5EC92F0EAE3CA59F647C3CA5AA7CB053] - 05/11/2010 - 03:20:53 ---A- . (...) -- C:\Windows\SysNative\systemsf.ebd [347904]
O44 - LFC:[MD5.C236A8735A48B165A2A7724357DBE332] - 05/11/2010 - 03:20:45 ---A- . (...) -- C:\Windows\SysNative\RacRules.xml [105559]
O44 - LFC:[MD5.C236A8735A48B165A2A7724357DBE332] - 05/11/2010 - 03:20:45 ---A- . (...) -- C:\Windows\System32\RacRules.xml [105559]
O44 - LFC:[MD5.C059C6B7518A9D6DE3616A3143392FE6] - 10/06/2009 - 22:39:59 ---A- . (...) -- C:\Windows\System32\tcpbidi.xml [1041]
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.23EA41B11B1417E3BBD692A6E9C1698F] - 14/03/2011 - 17:19:03 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.43901EB1AB3A2B934DB32EB7E25FB7EE] - 16/03/2011 - 12:42:47 ---A- - C:\Windows\Prefetch\AgCx_SC2.db
O45 - LFCP:[MD5.B27381863F3B8F4A0622A233DBF9D6C9] - 16/03/2011 - 21:41:22 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.A10F2C3BB86B7B0435045118605C9E0C] - 16/03/2011 - 22:03:45 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-03D3FB87.pf
O45 - LFCP:[MD5.0B0CFBB3A38B597FFECF901AFD7F55F1] - 16/03/2011 - 22:03:50 ---A- - C:\Windows\Prefetch\SKIN.EXE-FEA4A412.pf
O45 - LFCP:[MD5.4A0357559FE60BE6CC6CF3E88086E509] - 17/03/2011 - 07:40:45 ---A- - C:\Windows\Prefetch\SETUP_WM.EXE-9832EE32.pf
O45 - LFCP:[MD5.DD5CAC505D13401058AAF6DE6663C8DE] - 17/03/2011 - 07:45:26 ---A- - C:\Windows\Prefetch\MCUI32.EXE-B0091783.pf
O45 - LFCP:[MD5.AA1685C2CF6A333CF3D5C3FF7E968470] - 17/03/2011 - 07:47:28 ---A- - C:\Windows\Prefetch\MFPMP.EXE-DAD29CCD.pf
O45 - LFCP:[MD5.2BEB1274886F7DF266669DC0713B54D9] - 17/03/2011 - 08:01:38 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-DAB4D60B.pf
O45 - LFCP:[MD5.768B86B008C2BDDEE80417F410695644] - 17/03/2011 - 21:34:29 ---A- - C:\Windows\Prefetch\NEROEXPRESS.EXE-22A9A71F.pf
O45 - LFCP:[MD5.A386D6075C4217DF398D3E239A2C5301] - 18/03/2011 - 00:00:10 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-51CCB287.pf
O45 - LFCP:[MD5.34D7594D4C1B060C586161DD5B87F1FB] - 18/03/2011 - 00:30:02 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6FD72002.pf
O45 - LFCP:[MD5.581BA788A07A64DE175A84C15D9F22FC] - 18/03/2011 - 02:24:38 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.18FDFD1F2AD22BF72E67960ED909AE13] - 18/03/2011 - 09:25:23 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-EBBA463B.pf
O45 - LFCP:[MD5.B23D190FF0500C73B898F94D6169E383] - 18/03/2011 - 09:27:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-B6001A63.pf
O45 - LFCP:[MD5.3BC683C6C4E523D47176AAE8B3A1F10E] - 18/03/2011 - 09:27:26 ---A- - C:\Windows\Prefetch\SHAREAZA.EXE-574DB4CC.pf
O45 - LFCP:[MD5.8595F689E124998683583394ED7FB8C0] - 18/03/2011 - 09:27:37 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf
O45 - LFCP:[MD5.A9DDB65FAC631C84FF694EBCF96896B1] - 18/03/2011 - 09:29:26 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-41C19BFB.pf
O45 - LFCP:[MD5.074DDCB526CD6F2DA98C211ECBED724E] - 18/03/2011 - 09:34:32 ---A- - C:\Windows\Prefetch\MBAM.EXE-493D9B94.pf
O45 - LFCP:[MD5.9A8E85A2467FFDFFA68AD1E4BB88F92B] - 18/03/2011 - 10:00:10 ---A- - C:\Windows\Prefetch\SDCLT.EXE-94EAE077.pf
O45 - LFCP:[MD5.843A7D0B42F3276963EE440728D8B448] - 18/03/2011 - 18:25:47 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0D53616E.pf
O45 - LFCP:[MD5.ED58458D033A2B7ED8E8A1D0CBAE2E07] - 18/03/2011 - 18:25:55 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf
O45 - LFCP:[MD5.45973D6567EC57EDEF38A14258E3B3F3] - 18/03/2011 - 18:25:58 ---A- - C:\Windows\Prefetch\CCSVCHST.EXE-9EB93181.pf
O45 - LFCP:[MD5.5B458E8BB09AED6F16CCBA891FF2F2FE] - 18/03/2011 - 18:30:16 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-DEBBE5F1.pf
O45 - LFCP:[MD5.6F2B3C2249FE51D38A047F966D7E4884] - 18/03/2011 - 18:36:38 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-3C4E5BEC.pf
O45 - LFCP:[MD5.9AE17BF22087F4C65D72AF8C5A5ED3A3] - 19/03/2011 - 11:26:21 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-EDA5A3D2.pf
O45 - LFCP:[MD5.0221BF4EA3BEB53FE1C1F8FBB3713F28] - 19/03/2011 - 12:11:52 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-425BC49B.pf
O45 - LFCP:[MD5.7292D40887F182A5B4BE0B9FF69DD433] - 19/03/2011 - 18:25:56 ---A- - C:\Windows\Prefetch\JAUCHECK.EXE-42B49A13.pf
O45 - LFCP:[MD5.8A8F693DEAE4B32AE24C96E25EE2FE11] - 19/03/2011 - 18:26:03 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-B96890A4.pf
O45 - LFCP:[MD5.424EE43B4062913DDBBB31EABB51E3E9] - 19/03/2011 - 18:26:05 ---A- - C:\Windows\Prefetch\JAVAW.EXE-CE5F3A8D.pf
O45 - LFCP:[MD5.FDA0E6192DB51238A4FD428CC6AC5180] - 19/03/2011 - 18:52:54 ---A- - C:\Windows\Prefetch\ACROBROKER.EXE-6999C998.pf
O45 - LFCP:[MD5.8D27D5F74EA94761098A7338186A4D78] - 19/03/2011 - 18:52:57 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-F9223367.pf
O45 - LFCP:[MD5.0355AD38ACB2C179078CAB49254E3EE8] - 20/03/2011 - 09:05:03 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D9DCD0F3.pf
O45 - LFCP:[MD5.ABF7CA6DD09031733CB5FF2E2378D857] - 20/03/2011 - 09:06:18 ---A- - C:\Windows\Prefetch\CLEANMGR.EXE-1282D612.pf
O45 - LFCP:[MD5.B426E4810DB6CADAB31DDAA8BDEEADF8] - 20/03/2011 - 09:06:19 ---A- - C:\Windows\Prefetch\DISMHOST.EXE-13FCEA00.pf
O45 - LFCP:[MD5.A8BE47EAD55AFAFFBC25B5E45EC5EFE1] - 20/03/2011 - 09:07:08 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-67EC2DA7.pf
O45 - LFCP:[MD5.4740445031A623CC60569D16A8712B18] - 20/03/2011 - 09:07:11 ---A- - C:\Windows\Prefetch\DFRGUI.EXE-AD62D9FA.pf
O45 - LFCP:[MD5.4AC5A6152CDA468BA820030EB3EE79CE] - 20/03/2011 - 09:19:27 ---A- - C:\Windows\Prefetch\ASOELNCH.EXE-D76F4895.pf
O45 - LFCP:[MD5.E09FE7DFC78EF27DDFE1C7F43EC65D3C] - 20/03/2011 - 21:18:41 ---A- - C:\Windows\Prefetch\NCWMODULELIST.EXE-C3B5D348.pf
O45 - LFCP:[MD5.2DC750115E2E282D095889E38DF950A5] - 20/03/2011 - 23:04:08 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.6A9E6303A0A0FEF977C77C6763D341DE] - 20/03/2011 - 23:05:09 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.D170203FDB71177E8470B235AFADF190] - 20/03/2011 - 23:08:15 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2457555975-1631193541-3333612775-1000.db
O45 - LFCP:[MD5.6B63C5F00976AE8EDF079D2A31144F90] - 20/03/2011 - 23:08:15 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2457555975-1631193541-3333612775-1000.db
O45 - LFCP:[MD5.BDB38D54CDFDF1C6CD4B5E2DA420A8C5] - 20/03/2011 - 23:37:18 ---A- - C:\Windows\Prefetch\ZHPLITE.EXE-10E41244.pf
O45 - LFCP:[MD5.E393D05F968D6EA5C08908CE55F4566D] - 20/03/2011 - 23:37:18 ---A- - C:\Windows\Prefetch\ZHPLITE.TMP-C9884BAF.pf
O45 - LFCP:[MD5.64AABCBC898F44F05858D63FB3FF3C1B] - 20/03/2011 - 23:37:32 ---A- - C:\Windows\Prefetch\ADDALIAS.EXE-B123E120.pf
O45 - LFCP:[MD5.3EA5D76848D652E9958A2296E445566B] - 20/03/2011 - 23:37:32 ---A- - C:\Windows\Prefetch\MINIREG.EXE-208B4338.pf
O45 - LFCP:[MD5.A80EE48D8A4090168866BF8FDD64AB78] - 20/03/2011 - 23:42:25 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-661188F3.pf
O45 - LFCP:[MD5.824AB420D86C2CC35B00B8ACF14C5C57] - 20/03/2011 - 23:45:15 ---A- - C:\Windows\Prefetch\LADS.EXE-69ACEB7F.pf
O45 - LFCP:[MD5.259BE93E697768C047B79008280F070F] - 20/03/2011 - 23:45:16 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-6B5C2AD0.pf
O45 - LFCP:[MD5.76157091B839747177AEE219F7AC7534] - 20/03/2011 - 23:45:19 ---A- - C:\Windows\Prefetch\SIGCHECK.EXE-B47F0148.pf
O45 - LFCP:[MD5.7DF94DA8947F5B6922DBC9CCAA63BF44] - 20/03/2011 - 23:50:03 ---A- - C:\Windows\Prefetch\MBR.EXE-95722598.pf
O45 - LFCP:[MD5.38C088A50A64171A848F04AAC181CD27] - 20/03/2011 - 23:53:31 ---A- - C:\Windows\Prefetch\UNINS000.EXE-B7C729A4.pf
O45 - LFCP:[MD5.5DA7BC1D3AD69F23F4C455976F9CCEAE] - 20/03/2011 - 23:53:35 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-B8BCE167.pf
O45 - LFCP:[MD5.624DE4EBF905FA2820ACB696198DE44E] - 20/03/2011 - 23:57:07 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-576CF6B2.pf
O45 - LFCP:[MD5.B3F39AAF62FDE4AC7701F45A4A032468] - 20/03/2011 - 23:59:23 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A010D183.pf
O45 - LFCP:[MD5.E451A9F5FB838DA1DDA8DF8866922757] - 20/03/2011 - 23:59:26 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf
O45 - LFCP:[MD5.804541E407550BC5600A7EFA4574722F] - 20/03/2011 - 23:59:27 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6A249820.pf
O45 - LFCP:[MD5.B462F8C5B96D5A3D422AF7DE256B4431] - 21/03/2011 - 00:01:18 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-4469D777.pf
O45 - LFCP:[MD5.7E14D28F8BE225D17BB5E4C29FAD14CB] - 21/03/2011 - 00:13:08 ---A- - C:\Windows\Prefetch\ZHP_2.46.TMP-A924A795.pf
O45 - LFCP:[MD5.13A62CFE5A2929781A110F95A9990FB6] - 21/03/2011 - 00:13:31 ---A- - C:\Windows\Prefetch\ADDALIAS.EXE-CA3FF354.pf
O45 - LFCP:[MD5.EE411702BE8DD622BD0C96D4EE8D4ECB] - 21/03/2011 - 00:13:31 ---A- - C:\Windows\Prefetch\MINIREG.EXE-1F10FC8C.pf
O45 - LFCP:[MD5.2B1F58626A89F72D91948D7E29C21537] - 21/03/2011 - 00:26:00 ---A- - C:\Windows\Prefetch\MBRCHECK.EXE-ECF92C26.pf
O45 - LFCP:[MD5.A0816D232D85ADFE549CF07270E59D62] - 21/03/2011 - 00:26:45 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6E1A6101.pf
O45 - LFCP:[MD5.B92E338A601910B94B0BC8ADA2462DFF] - 21/03/2011 - 00:27:36 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf
O45 - LFCP:[MD5.74B09B7FF29A0F3AB7E41E7346757BE1] - 21/03/2011 - 00:47:51 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-F639BD7E.pf
O45 - LFCP:[MD5.D9E06CD12CC7EA8ED37D13CB42D38916] - 21/03/2011 - 00:47:51 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.1E0B1F021D9254054D87AA3569B104D7] - 21/03/2011 - 21:58:30 ---A- - C:\Windows\Prefetch\HPQTRA08.EXE-CEA16CB5.pf
O45 - LFCP:[MD5.B694A9600230C4F9BF42AFB91DEA9C9A] - 21/03/2011 - 21:58:30 ---A- - C:\Windows\Prefetch\IGFXEXT.EXE-C31ADD58.pf
O45 - LFCP:[MD5.35503BD6B2E4D384763A9F65CDC55466] - 21/03/2011 - 21:58:30 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-72B9DDB3.pf
O45 - LFCP:[MD5.92BD6886ABC0F4D6D4421236817D0D1B] - 21/03/2011 - 21:58:31 ---A- - C:\Windows\Prefetch\NOBUACTIVATION.EXE-C04CB489.pf
O45 - LFCP:[MD5.A9C5DA680EAF22177E638D2EEA9DCC69] - 21/03/2011 - 21:58:36 ---A- - C:\Windows\Prefetch\IASTORICON.EXE-1AEFF90D.pf
O45 - LFCP:[MD5.B21E8E1552C2DD53D31A59F4AABF89E8] - 21/03/2011 - 21:58:37 ---A- - C:\Windows\Prefetch\BACKUPMANAGERTRAY.EXE-2344B646.pf
O45 - LFCP:[MD5.E241D0324B70D41110D8D01C7C22B311] - 21/03/2011 - 21:58:37 ---A- - C:\Windows\Prefetch\LMANAGER.EXE-2C9803DF.pf
O45 - LFCP:[MD5.CBC1EDA176ABD2B3A731CA00C760C13D] - 21/03/2011 - 21:58:38 ---A- - C:\Windows\Prefetch\VIDEOWEBCAMERA.EXE-6BC6C15A.pf
O45 - LFCP:[MD5.92B49B498AF46E71CAF1742A4738DFAA] - 21/03/2011 - 21:58:41 ---A- - C:\Windows\Prefetch\LMWORKER.EXE-15877053.pf
O45 - LFCP:[MD5.66E27E14AC7A32CDD9009435244E39EF] - 21/03/2011 - 21:58:49 ---A- - C:\Windows\Prefetch\EPOWEREVENT.EXE-FE56A707.pf
O45 - LFCP:[MD5.3D2408DA4112C646ED5F5BFA0F04344D] - 21/03/2011 - 21:58:52 ---A- - C:\Windows\Prefetch\HPQSTE08.EXE-A880057E.pf
O45 - LFCP:[MD5.2110154AB143EA5F6EF500131EC7D0AD] - 21/03/2011 - 21:58:53 ---A- - C:\Windows\Prefetch\HPQBAM08.EXE-744309DA.pf
O45 - LFCP:[MD5.A7317EB55BBE6DE9A396521484E2539F] - 21/03/2011 - 21:58:55 ---A- - C:\Windows\Prefetch\HPQGPC01.EXE-ABA61901.pf
O45 - LFCP:[MD5.78ED29E4A05B2F61C9A0F2DA0971AA95] - 21/03/2011 - 21:58:59 ---A- - C:\Windows\Prefetch\CSC.EXE-F8803EEA.pf
O45 - LFCP:[MD5.5201A46827A12AD1AB606683EF56F6E3] - 21/03/2011 - 21:58:59 ---A- - C:\Windows\Prefetch\CVTRES.EXE-CB8485B0.pf
O45 - LFCP:[MD5.AF035F9344D32E7F96AB3F2C89015397] - 21/03/2011 - 21:59:24 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf
O45 - LFCP:[MD5.3915F2F8474ED2FFD586308631E80912] - 21/03/2011 - 21:59:25 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-16B291C4.pf
O45 - LFCP:[MD5.842CA46270E39FB3D341E87C8CC292AF] - 21/03/2011 - 21:59:31 ---A- - C:\Windows\Prefetch\WSCSTUB.EXE-D392CC4B.pf
O45 - LFCP:[MD5.BE25995F8078F004692FD80FA4316560] - 21/03/2011 - 21:59:35 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-C93872B4.pf
O45 - LFCP:[MD5.C35B73400BC090B7FD79D1741ED954DD] - 21/03/2011 - 21:59:36 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf
O45 - LFCP:[MD5.00511F68766967E196AFD03CFA3C7B87] - 21/03/2011 - 22:00:20 ---A- - C:\Windows\Prefetch\HPSWP_CLIPBOOK.EXE-54D7BE1C.pf
O45 - LFCP:[MD5.B162073D5A656E9A23B3C7B169B9F313] - 21/03/2011 - 22:00:29 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf
O45 - LFCP:[MD5.96034C2EDDD4F0AFB3904B2148EFD843] - 21/03/2011 - 22:00:40 ---A- - C:\Windows\Prefetch\FLASHUTIL10N_ACTIVEX.EXE-C52F29C5.pf
O45 - LFCP:[MD5.028453D08AAB1D4CAFE72C311791D3D7] - 21/03/2011 - 22:00:42 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-8FFB1633.pf
O45 - LFCP:[MD5.773D9B5D867895C85FAB9F47150F8FAB] - 21/03/2011 - 22:01:07 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-CDBFC0F7.pf
O45 - LFCP:[MD5.CFBC5E8F4E29F94678B34335C01B612F] - 21/03/2011 - 22:01:16 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf
O45 - LFCP:[MD5.FEF46AADEB0681CDB140E49D3CA47D3F] - 21/03/2011 - 22:01:23 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf
O45 - LFCP:[MD5.6666E125A9B2CE3C3165C3DEC615BB59] - 21/03/2011 - 22:02:34 ---A- - C:\Windows\Prefetch\CLTLMH.EXE-71CFE440.pf
O45 - LFCP:[MD5.678CF24ADD2E97578F5E0CEC00BF378E] - 21/03/2011 - 22:10:18 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-31898C74.pf
O45 - LFCP:[MD5.2C390FF0F6E5A027BDAC7D112D4E666C] - 21/03/2011 - 22:10:18 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf
O45 - LFCP:[MD5.C6B2B20B300A0A012FCC68DD0E9F15EB] - 21/03/2011 - 22:12:22 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D49D3641.pf
O45 - LFCP:[MD5.25730A52387C8B92F7324A9FC5B4623F] - 21/03/2011 - 22:12:27 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf
O45 - LFCP:[MD5.E24BBB18F7A2DA2624D005061ED87B62] - 21/03/2011 - 22:23:05 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-A033F7A0.pf
O45 - LFCP:[MD5.92F9A36EDB6353455684E0730BC82AEC] - 21/03/2011 - 22:31:09 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf
O45 - LFCP:[MD5.B11443C9E57C2CFD8CCCD7BDA2821CE3] - 21/03/2011 - 22:33:14 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.BEB9454E5172900F3C91FC162AC13844] - 21/03/2011 - 22:33:14 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.E01BE8DC05AC2E35E411AD01FCF7BD9C] - 21/03/2011 - 22:33:14 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.706B33BD602DF84677118E05A0C24E8B] - 21/03/2011 - 22:33:14 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.1ED8CFF740A22588A4A1171124A73DA4] - 21/03/2011 - 22:35:01 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf
O45 - LFCP:[MD5.EBE0E290ADD4150B1D46FD8FB8C07DC9] - 21/03/2011 - 22:35:02 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf
O45 - LFCP:[MD5.4C8694662E4546D37D8C31AF11C9A163] - 21/03/2011 - 22:35:02 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf
O45 - LFCP:[MD5.51F0FB42C8C001D373D024C833356554] - 21/03/2011 - 22:35:15 ---A- - C:\Windows\Prefetch\HIJACKTHIS.EXE-807A6A3E.pf
O45 - LFCP:[MD5.D062FE9FD3DBA78C508FF08543F611AD] - 21/03/2011 - 22:35:16 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4B6CB38A.pf
O45 - LFCP:[MD5.25BCF67911A3350DFF83CE1F2A497ED7] - 21/03/2011 - 22:35:20 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-032BB3D8.pf
O45 - LFCP:[MD5.237CE12F49E3432ABCA7393259A744E4] - 21/03/2011 - 22:35:34 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-63B92852.pf
O45 - LFCP:[MD5.8C88161B5C571ADBE01C60415FD23F0D] - 21/03/2011 - 22:36:50 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-C5670914.pf
O45 - LFCP:[MD5.34595F4A9E4663C7EBC191FBCFA4C3A6] - 21/03/2011 - 22:37:28 ---A- - C:\Windows\Prefetch\ALU.EXE-FEA633E4.pf
O45 - LFCP:[MD5.CC27C92EAE72D92BACF24F40569456E3] - 21/03/2011 - 22:37:31 ---A- - C:\Windows\Prefetch\SD.EXE-96A677D5.pf
O45 - LFCP:[MD5.AA69BCB56892D8B86187001EFB4AB071] - 21/03/2011 - 22:37:35 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf
O45 - LFCP:[MD5.DB53CC25511EF5C77B717CC42189E4F3] - 21/03/2011 - 22:37:52 ---A- - C:\Windows\Prefetch\CONSENT.EXE-40419367.pf
O45 - LFCP:[MD5.C0AEDCAE7E5127512958364A9808512A] - 21/03/2011 - 22:37:57 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6389524F.pf
O45 - LFCP:[MD5.C8E62C07CFDD27F9764515B97E801FDE] - 21/03/2011 - 22:38:03 ---A- - C:\Windows\Prefetch\ZHP_2.46.TMP-64519CA7.pf
O45 - LFCP:[MD5.D59303161CD59B165C73349B128BF5DD] - 21/03/2011 - 22:39:28 ---A- - C:\Windows\Prefetch\ZHP_2.46.EXE-1290BB7B.pf
O45 - LFCP:[MD5.72C0A2645AE0D6FD77A5334EAA25F05D] - 21/03/2011 - 22:39:28 ---A- - C:\Windows\Prefetch\ZHP_2.46.TMP-B7081C55.pf
O45 - LFCP:[MD5.2CB9EF5623BB7D3BBAB31971A24E7CDC] - 21/03/2011 - 22:39:51 ---A- - C:\Windows\Prefetch\ZHP2.EXE-F0FD9B9F.pf
O45 - LFCP:[MD5.CCC84A6D8C00659CB8D980947F199551] - 21/03/2011 - 22:40:19 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-2C401B7E.pf
O45 - LFCP:[MD5.65E711FB122CCDFFA0E73F334871449F] - 21/03/2011 - 22:40:22 ---A- - C:\Windows\Prefetch\CMD.EXE-6D6290C5.pf
O45 - LFCP:[MD5.6E46F3EB107206F9678E99C5258850A4] - 21/03/2011 - 22:40:22 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf
O45 - LFCP:[MD5.6C893313B9FAF5F42F899B78C151033B] - 21/03/2011 - 22:40:22 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-DC1676CD.pf
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]
O58 - SDL:[MD5.6EC6D772EAE38DC17C14AED9B178D24B] - 20/11/2010 - 14:32:46 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]
O58 - SDL:[MD5.1142A21DB581A84EA5597B03A26EBAA0] - 20/11/2010 - 14:32:47 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]
O58 - SDL:[MD5.5074CCA8927D5ED5D102EC48BB771E3F] - 02/03/2010 - 07:11:36 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1593384]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]
O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 20/11/2010 - 14:33:35 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720]
O58 - SDL:[MD5.1384872112E8E7FD5786ECEB8BDDF4C9] - 13/04/2010 - 17:44:22 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [540696]
O58 - SDL:[MD5.3DF4395A7CF8B7A72A5F4606366B8C2D] - 20/11/2010 - 14:33:38 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]
O58 - SDL:[MD5.2D18C9E1F23970DE32D78D3B1CDDA0A7] - 02/09/2009 - 04:54:18 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [7369728]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]
O58 - SDL:[MD5.55480B9C63F3F91A8EBBADCBF28FE581] - 22/02/2010 - 11:03:44 ---A- . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controller.) -- C:\Windows\system32\drivers\L1C62x64.sys [75304]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]
O58 - SDL:[MD5.3D3C4B63F11F63F50253E734F0ACE9F2] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [24152]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]
O58 - SDL:[MD5.64DDD0DEE976302F4BD93E5EFCC2F013] - 06/05/2009 - 00:46:08 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [18432]
O58 - SDL:[MD5.5D9FD91F3D38DC9DA01E3CB5FA89CD48] - 20/11/2010 - 14:33:48 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]
O58 - SDL:[MD5.F7CD50FE7139F07E77DA8AC8033D1832] - 20/11/2010 - 14:33:48 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]
O58 - SDL:[MD5.1768CCC0CCDA73A5B3D7A17A3C52E870] - 23/03/2010 - 12:40:02 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [2304416]
O58 - SDL:[MD5.DB30AA4DAA0D492FA5D7717D8181FFA1] - 02/09/2009 - 02:58:08 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys [225280]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]
O58 - SDL:[MD5.C1D8E28B2C2ADFAEC4BA89E9FDA69BD6] - 14/07/2009 - 01:00:40 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\serial.sys [94208]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]
O58 - SDL:[MD5.3F9D5FE52585E2653E59FDBFDF09A94C] - 05/02/2011 - 08:23:37 ---A- . (.Symantec Corporation - Symantec Event Library.) -- C:\Windows\system32\drivers\SYMEVENT64x86.SYS [173104]
O58 - SDL:[MD5.BCF305959B53B200CEB2AD25AD22F8A7] - 18/06/2009 - 13:12:32 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [272432]
O58 - SDL:[MD5.2E22C1FD397A5A9FFEF55E9D1FC96C00] - 06/05/2009 - 00:46:08 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16896]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]
O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [38224]
O58 - SDL:[MD5.DB30AA4DAA0D492FA5D7717D8181FFA1] - 02/09/2009 - 02:58:08 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\SysWOW64\drivers\RtsUStor.sys [225280]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC:Last File Created 18/03/2011 - 00:39:14 ---A- C:\Users\DOM\Downloads\soprano\Soprano - Je suis seul.mp3 [3474408]
O61 - LFC:Last File Created 18/03/2011 - 00:39:16 ---A- C:\Users\DOM\Downloads\soprano\Soprano - Hiro (Qualite CD).mp3 [7206323]
O61 - LFC:Last File Created 18/03/2011 - 00:44:40 ---A- C:\Users\DOM\Downloads\soprano\Techno-Crazy Shit- Tribal 1 this track rocks ( techno tekno acid rave jungle dj drum bass electronic funk vinyl dance industrial trance juno beat tech vs remix hardcore }.mp3 [1447936]
O61 - LFC:Last File Created 18/03/2011 - 01:52:34 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\definfo.dat [34]
O61 - LFC:Last File Created 18/03/2011 - 01:52:34 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\newdefs-trigger\trigger.dat [0]
O61 - LFC:Last File Created 18/03/2011 - 01:52:35 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\usage.dat [253]
O61 - LFC:Last File Created 18/03/2011 - 01:52:35 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IPS\IDSSettg.BAK [3236]
O61 - LFC:Last File Created 18/03/2011 - 01:52:35 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IPS\IDSSettg.dat [3236]
O61 - LFC:Last File Created 18/03/2011 - 02:16:48 ---A- C:\Users\DOM\Downloads\electro\Electro House 2010 (HOT MIX__) DJ BL3ND_HD.mp3 [13018220]
O61 - LFC:Last File Created 18/03/2011 - 04:03:48 ---A- C:\Users\DOM\Downloads\soprano\Magic System Feat. Soprano - Chérie Coco(1).mp3 [3634165]
O61 - LFC:Last File Created 18/03/2011 - 09:27:21 -SH-- C:\Users\DOM\Downloads\desktop.ini [432]
O61 - LFC:Last File Created 18/03/2011 - 09:34:34 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\local.dat [94]
O61 - LFC:Last File Created 18/03/2011 - 09:34:34 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref [6407589]
O61 - LFC:Last File Created 18/03/2011 - 09:34:45 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\config.dat [778]
O61 - LFC:Last File Created 18/03/2011 - 09:34:45 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\link.txt [115]
O61 - LFC:Last File Created 18/03/2011 - 09:34:45 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\news.txt [78]
O61 - LFC:Last File Created 18/03/2011 - 10:13:51 ---A- C:\Users\DOM\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-03-18 (10-13-51).txt [1063]
O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\DAAlert.dat [6802]
O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\EmailErr.dat [126]
O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\NasStatistics.dat [126]
O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\SMode.dat [4104]
O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\SModeApp.dat [126]
O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\UserTrustActions.dat [126]
O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\ced.dat [126]
O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\ncosites.dat [116]
O61 - LFC:Last File Created 19/03/2011 - 11:26:05 ----- C:\Users\DOM\AppData\Local\Temp\~DF673FCDB1A0FAE08A.TMP [163840]
O61 - LFC:Last File Created 19/03/2011 - 18:55:24 ---A- C:\Users\DOM\Documents\CPAT_seance3-1.pdf [47427]
O61 - LFC:Last File Created 19/03/2011 - 18:56:52 ---A- C:\Users\DOM\Documents\A9304.pdf [743522]
O61 - LFC:Last File Created 19/03/2011 - 18:57:47 ---A- C:\Users\DOM\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents [3072]
O61 - LFC:Last File Created 19/03/2011 - 19:49:14 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\QBackup\index.qbs [18000400]
O61 - LFC:Last File Created 20/03/2011 - 09:15:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\FOIMaster.db.bak [145408]
O61 - LFC:Last File Created 20/03/2011 - 21:18:57 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\ErrorManagement\SQClient.dat [5916]
O61 - LFC:Last File Created 20/03/2011 - 21:18:57 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\ErrorManagement\log.dat [8946]
O61 - LFC:Last File Created 20/03/2011 - 21:19:23 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\MrClean.db.bak [11347968]
O61 - LFC:Last File Created 20/03/2011 - 23:37:34 ---A- C:\Users\DOM\AppData\Local\Temp\BDE4266.BAK [396]
O61 - LFC:Last File Created 21/03/2011 - 00:05:57 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSubSDK\{BAB24654-4D6C-437A-8623-234BD6C1B7A2} [31088]
O61 - LFC:Last File Created 21/03/2011 - 00:06:05 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSubSDK\{13FEE537-39D3-4346-9E93-AFD9AC319B2F} [31088]
O61 - LFC:Last File Created 21/03/2011 - 00:16:54 ---A- C:\Users\DOM\AppData\Roaming\Microsoft\HTML Help\hh.dat [8590]
O61 - LFC:Last File Created 21/03/2011 - 00:47:40 --HA- C:\Users\DOM\AppData\Local\IconCache.db [3260907]
O61 - LFC:Last File Created 21/03/2011 - 00:47:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\ClientIDS.dat [125366]
O61 - LFC:Last File Created 21/03/2011 - 00:47:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\firewall.dat [126]
O61 - LFC:Last File Created 21/03/2011 - 00:47:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\navscan.dat [35591]
O61 - LFC:Last File Created 21/03/2011 - 00:47:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\navthr.dat [3066]
O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\dbinfo.BAK [988]
O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\dbinfo.DAT [988]
O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\settings_17.8.0.5.BAK [52332]
O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\settings_17.8.0.5.dat [52332]
O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\BashHeuristic.dat [126]
O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\DADown.dat [18213]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\BASH\ShdSettg.dat [1083660]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\EmailProxy-Options.dat [180]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccJobMgr\ccJobMgr.dat [153004]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\user.BAK [316]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\user.DAT [316]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSubSDKConfiguration.dat [388764]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Connections\connections.dat [140]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{0693F93A-DEFD-22EE-B444-87D156D89593}.dat [492]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{0EE02A82-DEFD-22EE-A5D1-BCD156D89593}.dat [484]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{12589686-DEFD-22EE-9DA6-DDD156D89593}.dat [316]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{15150957-2A4A-4090-907E-CF14E7013A21}.dat [636]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{1EC30809-4D73-45e5-9FB7-4556BF2591F7}.dat [532]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{2F090208-20DC-42f0-BBD8-B68B472F7215}.dat [1036]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{352A29CB-F796-4122-A5C1-F8001F96A569}.dat [540]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{3AA31D7B-6C7D-4024-B1CC-E1055FA92A87}.dat [572]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{472D8358-D03B-4175-BD36-D479E4BBE105}.dat [428]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{511C2222-DEFD-22EE-B154-4A6A546B9793}.dat [1212]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{5779E169-C4E2-4487-B4B1-55A24863F4C6}.dat [316]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{591D2F72-6BF6-4E6D-AEE1-2C53200DE57E}.dat [564]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{5B8ECE68-E541-4109-81B9-4A024890F603}.dat [1220]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{5BD0D294-A689-4606-B58C-47A511ED1C14}.dat [484]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{5BD0D294-BEEF-4606-B58C-47A511ED1C14}.dat [1052]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{65190544-26C3-43a4-A78A-694964901607}.dat [412]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{65A6D59C-2C88-4a89-AB84-AA71433E4ABC}.dat [316]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{691538C6-034F-4d32-9A14-A53B8BAF68AF}.dat [476]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{69EDD4E1-116E-4773-A0AC-C59945720C2A}.dat [916]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{6A585666-3EAE-44c3-8821-711CCE3F2873}.dat [516]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{6C76977D-A5FD-452b-AAAF-51799B8EA9B4}.dat [540]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{6C817099-B8B4-4137-A53F-68B7EA75EC55}.dat [524]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{6E3396BD-C6A6-4f0f-9254-267F9058FEC4}.dat [1220]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{70623C4D-9D8A-4025-91D1-3307B948E7DD}.dat [484]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{70623C4D-BEEF-4025-91D1-3307B948E7DD}.dat [1052]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{71B3DD3A-BC1F-40cc-A74F-C0C30DFCE7D5}.dat [452]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{722AAC6D-419F-4e3d-A305-FDCBFBCA1877}.dat [524]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{7C40284F-C1DE-459c-A195-6D854DB8C783}.dat [508]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{89E020E9-BE3E-40cc-9C00-66A3FBA23106}.dat [1036]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{93545EED-DE0A-4efa-B44D-68C5CBF1D4F7}.dat [556]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{9BDDC6E8-4FBD-4449-A8CC-142376A325D5}.dat [1308]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{A96E24EE-101F-4f7f-887C-30680DCFF3E4}.dat [420]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{D418C996-433A-42df-8D3C-E1A24C0AD3C0}.dat [484]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{D4F4CC32-7A41-4684-AE57-41E59E9B4503}.dat [508]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{E038CE1B-EBFC-4b2d-BD0F-D9902DA5868C}.dat [492]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{E644497C-3550-4a24-B153-CB0F7A64ADFD}.dat [1044]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{E6941702-E564-4caf-84E1-572AEB95826F}.dat [484]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{EAFE83C3-B87E-4f46-BFF6-41D267B682F1}.dat [572]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{F9AF8C8D-BEEF-40db-A228-0F22ECC66E88}.dat [1052]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{F9AF8C8D-DED9-40db-A228-0F22ECC66E88}.dat [508]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\LuReg\{221C5684-9CB7-4e17-A839-71C374CAA376}.dat [516]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\LuReg\{D06948D5-FB30-4721-9983-45F86F6D2D85}.dat [508]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\LueDyn.dat [40452]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCO\WADomain.dat [3885596]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NPC\InstOpts.dat [1356]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NPC\Settings.dat [1140]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NPC\Support.dat [452]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NUM\Settings.dat [324]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\CAVENode.dat [820]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\LCset.dat [22500]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\ProdExcl.dat [204]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\asDynam.dat [876]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\set-priv.dat [35844]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\watchdog.dat [452]
O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\SRTSP\SrtspSet.dat [3916]
O61 - LFC:Last File Created 21/03/2011 - 00:47:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSubSDK\submissions.idx [4638072]
O61 - LFC:Last File Created 21/03/2011 - 10:26:57 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\SymWhite.irn [6969344]
O61 - LFC:Last File Created 21/03/2011 - 10:28:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\iron.grd [234]
O61 - LFC:Last File Created 21/03/2011 - 10:28:25 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\iron.sig [2611]
O61 - LFC:Last File Created 21/03/2011 - 10:28:25 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\virscan1.dat [16]
O61 - LFC:Last File Created 21/03/2011 - 20:10:09 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\20110321.007\virscan1.dat [32]
O61 - LFC:Last File Created 21/03/2011 - 20:10:10 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\20110321.007\v.grd [1336]
O61 - LFC:Last File Created 21/03/2011 - 20:10:15 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\20110321.007\v.sig [2611]
O61 - LFC:Last File Created 21/03/2011 - 21:57:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccGEvt\Global\LM2.dat [8844]
O61 - LFC:Last File Created 21/03/2011 - 21:57:23 R--A- C:\Users\All Users\BackupManager\Logs\SyncJob.log [8794]
O61 - LFC:Last File Created 21/03/2011 - 21:57:24 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\Sampler.dat [11252]
O61 - LFC:Last File Created 21/03/2011 - 21:57:28 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccGLog\LM.dat [4716]
O61 - LFC:Last File Created 21/03/2011 - 21:57:28 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\CAVDNode.dat [15228]
O61 - LFC:Last File Created 21/03/2011 - 21:57:31 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\symnetdrv\LocationMap.dat [148]
O61 - LFC:Last File Created 21/03/2011 - 21:57:40 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\symnetdrv\RULE_BAK.dat [51604]
O61 - LFC:Last File Created 21/03/2011 - 21:57:46 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\symnetdrv\RULE_CUR.dat [52484]
O61 - LFC:Last File Created 21/03/2011 - 21:57:50 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ErrorInstances\14680AD2\481691D5-17CC-4581-BF9A-59CC26C91C61.dat [35017]
O61 - LFC:Last File Created 21/03/2011 - 21:57:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\ErrorManagement\Queue\SQ_{B853ADDA-71B6-4E8E-8C0A-A2A93FC20FDF}\SQInfo.DAT [150]
O61 - LFC:Last File Created 21/03/2011 - 21:57:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\ErrorManagement\Queue\SQ_{B853ADDA-71B6-4E8E-8C0A-A2A93FC20FDF}\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}.etl [196608]
O61 - LFC:Last File Created 21/03/2011 - 21:58:18 ---A- C:\Users\All Users\Symantec\Norton Online Backup\NobuActivation.ini [865]
O61 - LFC:Last File Created 21/03/2011 - 21:58:18 ---A- C:\Users\DOM\AppData\Local\Temp\boost_interprocess\INI_FILE_MUTEX [20]
O61 - LFC:Last File Created 21/03/2011 - 21:58:19 ---A- C:\Users\DOM\AppData\Local\Temp\LManager.log [0]
O61 - LFC:Last File Created 21/03/2011 - 21:58:27 ---A- C:\Users\DOM\AppData\Local\Temp\MAR7203.tmp [1313]
O61 - LFC:Last File Created 21/03/2011 - 21:58:29 ---A- C:\Users\DOM\AppData\Local\Temp\aipflib.log [0]
O61 - LFC:Last File Created 21/03/2011 - 21:58:30 ---A- C:\Users\DOM\AppData\Local\Temp\LMworker.log [0]
O61 - LFC:Last File Created 21/03/2011 - 21:58:30 ---A- C:\Users\DOM\AppData\Local\Temp\~DF1E920799885A1B1C.TMP [163840]
O61 - LFC:Last File Created 21/03/2011 - 21:58:31 ---A- C:\Users\DOM\AppData\Local\Temp\MAR8037.tmp [1285]
O61 - LFC:Last File Created 21/03/2011 - 21:58:43 ---A- C:\Users\DOM\AppData\Local\Temp\hpqddusr.log [318]
O61 - LFC:Last File Created 21/03/2011 - 21:58:55 ---A- C:\Users\All Users\HP\ProductAssistant\data\EventStore.xml [178134]
O61 - LFC:Last File Created 21/03/2011 - 21:58:56 ---A- C:\Users\DOM\AppData\Local\Temp\RedboxLog.txt [2904]
O61 - LFC:Last File Created 21/03/2011 - 22:01:53 ---A- C:\Users\DOM\AppData\Local\Temp\AdobeARM.log [1642]
O61 - LFC:Last File Created 21/03/2011 - 22:03:25 ---A- C:\Users\DOM\AppData\Local\Temp\jusched.log [401]
O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20antispam$20definitions_microdefsb.curdefs_symalllanguages_livetri.zip [3661]
O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20ips$20definitions_microdefsb.curdefs_symalllanguages_livetri.zip [2681]
O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20iron$20whitelist_microdefsb.curdefs_symalllanguages_livetri.zip [3624]
O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20virus$20definitions$20x64_microdefsb.curdefs_symalllanguages_livetri.zip [5091]
O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20web$20protection$20definitions_microdefsb.curdefs_symalllanguages_livetri.zip [4219]
O61 - LFC:Last File Created 21/03/2011 - 22:07:43 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20iron$20revocation$20list_microdefsb.curdefs_symalllanguages_livetri.zip [7559]
O61 - LFC:Last File Created 21/03/2011 - 22:07:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\catalog.dat [305]
O61 - LFC:Last File Created 21/03/2011 - 22:07:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\v.grd [301]
O61 - LFC:Last File Created 21/03/2011 - 22:07:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\v.sig [2611]
O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\symaveng.cat [8809]
O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\symaveng.inf [1062]
O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\v.grd [5257]
O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\v.sig [2611]
O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\virscant.dat [32]
O61 - LFC:Last File Created 21/03/2011 - 22:07:58 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\ESRDEF.BIN [7108596]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TCDEFS.DAT [14832917]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TCSCAN7.DAT [23413265]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TCSCAN8.DAT [164769]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TCSCAN9.DAT [561066]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TINF.DAT [453]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TINFL.DAT [1957]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TSCAN1.DAT [74342]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN.INF [106244]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN1.DAT [1049425]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN2.DAT [574464]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN3.DAT [157232]
O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN4.DAT [320343]
O61 - LFC:Last File Created 21/03/2011 - 22:08:00 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN5.DAT [16068807]
O61 - LFC:Last File Created 21/03/2011 - 22:08:00 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN6.DAT [397913]
O61 - LFC:Last File Created 21/03/2011 - 22:08:01 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN7.DAT [131604689]
O61 - LFC:Last File Created 21/03/2011 - 22:08:02 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN8.DAT [997442]
O61 - LFC:Last File Created 21/03/2011 - 22:08:02 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN9.DAT [5419522]
O61 - LFC:Last File Created 21/03/2011 - 22:08:02 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\WHATSNEW.TXT [41089]
O61 - LFC:Last File Created 21/03/2011 - 22:08:08 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\definfo.dat [34]
O61 - LFC:Last File Created 21/03/2011 - 22:08:08 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\newdefs-trigger\trigger.dat [0]
O61 - LFC:Last File Created 21/03/2011 - 22:08:10 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\BASH\BHREGISTRYINFO.DB [146432]
O61 - LFC:Last File Created 21/03/2011 - 22:08:10 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\VIRSCAN1.DAT [16]
O61 - LFC:Last File Created 21/03/2011 - 22:08:11 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\lu.blrm.4 [775362]
O61 - LFC:Last File Created 21/03/2011 - 22:08:11 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\usage.dat [37]
O61 - LFC:Last File Created 21/03/2011 - 22:08:12 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\lu.intsigs [52952]
O61 - LFC:Last File Created 21/03/2011 - 22:08:12 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\lu.spamhunter.4 [293514]
O61 - LFC:Last File Created 21/03/2011 - 22:08:12 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\v.grd [569]
O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\v.sig [2611]
O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\definfo.dat [34]
O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\newdefs-trigger\trigger.dat [0]
O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\Revoke.irn [265216]
O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\catalog.dat [299]
O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\v.grd [367]
O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\v.sig [2611]
O61 - LFC:Last File Created 21/03/2011 - 22:08:14 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\virscan1.dat [16]
O61 - LFC:Last File Created 21/03/2011 - 22:08:14 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\definfo.dat [34]
O61 - LFC:Last File Created 21/03/2011 - 22:08:14 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\newdefs-trigger\trigger.dat [0]
O61 - LFC:Last File Created 21/03/2011 - 22:08:15 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\definfo.dat [34]
O61 - LFC:Last File Created 21/03/2011 - 22:08:15 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\newdefs-trigger\trigger.dat [0]
O61 - LFC:Last File Created 21/03/2011 - 22:08:15 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\usage.dat [37]
O61 - LFC:Last File Created 21/03/2011 - 22:08:19 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\definfo.dat [34]
O61 - LFC:Last File Created 21/03/2011 - 22:08:19 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\newdefs-trigger\trigger.dat [0]
O61 - LFC:Last File Created 21/03/2011 - 22:08:32 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\usage.dat [28]
O61 - LFC:Last File Created 21/03/2011 - 22:08:32 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\usage.dat [33]
O61 - LFC:Last File Created 21/03/2011 - 22:08:36 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\usage.dat [34]
O61 - LFC:Last File Created 21/03/2011 - 22:10:12 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\diStRptr\diStRptr.dat [372]
O61 - LFC:Last File Created 21/03/2011 - 22:10:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\lccfg.dat [4308]
O61 - LFC:Last File Created 21/03/2011 - 22:10:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\volatile.DAT [1108]
O61 - LFC:Last File Created 21/03/2011 - 22:10:44 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\cltDynam.dat [26308]
O61 - LFC:Last File Created 21/03/2011 - 22:18:38 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\tagfiles\20110321.023.sst [1853]
O61 - LFC:Last File Created 21/03/2011 - 22:28:18 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCO\nppw.dat [643813]
O61 - LFC:Last File Created 21/03/2011 - 22:28:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\NcoDefs.ncz [2422520]
O61 - LFC:Last File Created 21/03/2011 - 22:28:34 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCO\WADB.dat [132]
O61 - LFC:Last File Created 21/03/2011 - 22:28:36 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCO\WACert.dat [9372]
O61 - LFC:Last File Created 21/03/2011 - 22:35:08 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\BASH\BHLINKS.DB [171008]
O61 - LFC:Last File Created 21/03/2011 - 22:37:22 ---A- C:\Users\All Users\Packard Bell\Packard Bell Updater\_UpdaterService_CFG.ini [94]
O61 - LFC:Last File Created 21/03/2011 - 22:37:22 ---A- C:\Users\All Users\Packard Bell\Packard Bell Updater\_UpdaterService_LOG.txt [111164]
O61 - LFC:Last File Created 21/03/2011 - 22:38:27 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\FOIMaster.db [147456]
O61 - LFC:Last File Created 21/03/2011 - 22:38:27 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\performance.db [4068352]
O61 - LFC:Last File Created 21/03/2011 - 22:39:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\BASH\BASHV2.DB [1294336]
O61 - LFC:Last File Created 21/03/2011 - 22:39:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IRON\Iron.db [16440320]
O61 - LFC:Last File Created 21/03/2011 - 22:39:42 ---A- C:\Users\DOM\AppData\Local\Temp\INMEM000.REM [0]
O61 - LFC:Last File Created 21/03/2011 - 22:40:41 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IRON\IronState.dat [5052]
O61 - LFC:Last File Created 21/03/2011 - 22:40:45 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\MrClean.db [11347968]
O61 - LFC:Last File Created 21/03/2011 - 22:43:41 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\streamset.dat [4357]
O61 - LFC:Last File Created 21/03/2011 - 22:43:41 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\Download.Resumption.Lue [31658]
O61 - LFC:Last File Created 21/03/2011 - 22:43:41 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202009$20streaming$20virus$20definitions_1.0_symalllanguages_livetri.zip [3743]
O61 - LFC:Last File Created 21/03/2011 - 22:43:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VersionInfo.dat [164]
O61 - LFC:Last File Created 21/03/2011 - 22:43:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\tagfiles\20110321.024.sst [2504]
O61 - LFC:Last File Created 21/03/2011 - 22:43:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Logs\Log.Lue [683980]
---\\ Observateur d'évènement d'application (O66)
O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing
O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} [DefaultScope] - (Google) - Google
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.)
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)
O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{14A786FB-5F19-4274-AA54-81168896B1ED}" | In - Public - P6 - FALSE | .(.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) -- C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "{DF0D9751-58B3-4AA3-B430-4424433CBABB}" | In - Public - P17 - FALSE | .(.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe
O87 - FAEL: "{2947FCCD-5A7C-4233-A965-148ECA6D968F}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{B1E7BB6D-75D9-4848-948F-FC0DC451A801}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
O87 - FAEL: "{6B08852C-D1A8-43C3-AA82-E1788E7E1595}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)
O87 - FAEL: "{D5A07EB5-B0FB-4147-A320-EB6F6802D00F}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{EF22E14F-303F-4953-9EA0-2783BD0F4BF6}" | In - None - P6 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 09/10/2009 169312 | (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
SR - | Auto 03/03/2010 325200 | (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
SR - | Auto 23/04/2010 867360 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
SS - | Demand 26/07/2010 867080 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SR - | Auto 08/01/2010 23584 | (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
SR - | Auto 13/04/2010 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 15/01/2010 935208 | Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 09/03/2010 250368 | (NTI IScheduleSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
SR - | Auto 29/01/2010 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover
Run by DOM at 21/03/2011 22:52:31
device: opened successfully
user: error reading MBR
Disk trace:
error: Read Descripteur non valide
kernel: error reading MBR
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by DOM at 21/03/2011 22:52:31
Use the desktop link 'MBRCheck' to have full report
Dump file Name : C:\PhysicalDisk0_MBR.bin
End of the scan (1152 lines in 12mn 15s)(0)
