bonjour et merci de prendre du temps pour un inconnu... cela fait chaud au coeur
voici le rapport:Rapport de ZHPDiag v1.28.2421 par Nicolas Coolman, Update du 22/11/2011
Run by Administrateur at 24/11/2011 16:27:40
Web site : ZHPDiag Outil de diagnostic
State : Problème connexion internet
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 8.0 v8.0 (Defaut)
---\\ Windows Product Information
~ Langage: Français
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK
---\\ System Information
~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Sans échec (Fail-safe boot)
Total RAM: 1014 MB (60% free)
System Restore: Activé (Enable)
System drive C: has 60 GB (80%) free of 75 GB
---\\ Logged in mode
~ Computer Name: USER-B5FE331CA3
~ User Name: Administrateur
~ All Users Names: user, SUPPORT_388945a0, HelpAssistant, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Administrateur\Application Data\
~ %Desktop% : C:\Documents and Settings\Administrateur\Bureau\
~ %Favorites% : C:\Documents and Settings\Administrateur\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Administrateur\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Administrateur\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 60 Go of 75 Go)
D:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Free 7 Go of 7 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.24/11/2011 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (....) (.24/11/2011 - 03:34:20.) -- C:\WINDOWS\system32\rundll32.exe [33792]
[MD5.7DF35C3D173E799F97F208CC5F3B1C93] - (.Microsoft Corporation - Internet Extensions for Win32.) (.24/11/2011 - 00:41:31.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.24/11/2011 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.24/11/2011 - 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.24/11/2011 - 20:14:21.) -- C:\WINDOWS\system32\drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.24/11/2011 - 19:40:46.) -- C:\WINDOWS\system32\drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.24/11/2011 - 02:57:38.) -- C:\WINDOWS\system32\drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.24/11/2011 - 17:36:05.) -- C:\WINDOWS\system32\drivers\HDAudBus.sys [144384]
[MD5.0AE82DC81CC6B266E92EDF78C2A0ED11] - (....) (.24/11/2011 - 03:00:52.) -- C:\WINDOWS\system32\drivers\i8042prt.sys [54144]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.24/11/2011 - 19:57:15.) -- C:\WINDOWS\system32\drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.24/11/2011 - 20:19:42.) -- C:\WINDOWS\system32\drivers\IPSec.sys [75264]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.24/11/2011 - 20:21:00.) -- C:\WINDOWS\system32\drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.24/11/2011 - 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.24/11/2011 - 03:09:40.) -- C:\WINDOWS\system32\drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.24/11/2011 - 20:19:43.) -- C:\WINDOWS\system32\drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.24/11/2011 - 19:32:51.) -- C:\WINDOWS\system32\drivers\rdpdr.sys [196224]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.24/11/2011 - 02:56:04.) -- C:\WINDOWS\system32\drivers\volsnap.sys [53376]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 0/0
~ Mes musiques (My Musics) : 0/0
~ Mes Videos (My Video) : 0/0
~ Mes Favoris (My Favorites) : 0/0
~ Mes Documents (My Documents) : 1/37
~ Mon Bureau (My Desktop) : 0/0
~ Menu demarrer (Programs) : 5/15
~ Scan Hidden Files in 00mn 00s
---\\ Processus lancés
[MD5.1A6A0DEE6C16DAA8CC4294A77DA91575] - (.Lavasoft Limited - Ad-Aware Service Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2152152] [PID.]
[MD5.19844007867906927C838CB4E7AE014D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924632] [PID.1500]
[MD5.8DE1E2A40F6C54DA4D4A6134A6A08DC2] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [707072] [PID.1748]
~ Scan Processes Running in 00mn 01s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [user Data\Default] None
G0 - GCSP: Preference [user Data\Default][HomePage] Google
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\prefs.js
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\avg_igeared.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\babylon.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Administrateur] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.1.629.) -- C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@google.com/npPicasa2,version=2.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Picasa2\npPicasa2.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Picasa2\npPicasa3.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_29 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50524.0.) -- C:\Program Files\Microsoft Silverlight\4.0.50524.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=0.8.6b] - (.VideoLAN Team - Version 0.8.6b, copyright 1996-2006 The VideoLAN Team<br><a href="http.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Search Microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = Bing
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 18s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (...) -- (.not file.)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: RechercherWeb Toolbar - {8FFA7469-654F-423E-84FE-6A583CB1C284} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files\RechercherWeb Toolbar\tbcore3.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [NeroFilterCheck] . (.Nero AG - NeroCheck.) -- C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Monitor] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\WINDOWS\PixArt\Pac207\Monitor.exe
O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] . (.ArcSoft - ArcSoft Connect Daemon.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [Alcmtr] . (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- C:\WINDOWS\ALCMTR.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exetVDUtQkFSOUcrMS1GTCs5LVhPMzYrMS1GOU03Qys1LVFJWDErNC1YMjAxMCsyLUxJQys3Ny1TUDErMS1GTDEwKzEtVFVHKzMtQ0lQKzItU1AxUzIrMS1TUDFTMysxLVNVRCsxLVMxSSsxLVNVMysxLUREVCs1OTU5Ni1ERDEwRisxLVNUMTBGQVBQKzEtU1QxMEZPSSsx"&"prod=90"&"ver=10.0.1411
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe
O4 - HKCU\..\RunOnce: [NeroHomeFirstStart] . (.Nero AG - Nero Home.) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMFirstStart.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-842925246-682003330-839522115-500\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-842925246-682003330-839522115-500\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe
O4 - HKUS\S-1-5-21-842925246-682003330-839522115-500\..\RunOnce: [NeroHomeFirstStart] . (.Nero AG - Nero Home.) -- C:\Program Files\Fichiers communs\Ahead\Lib\NMFirstStart.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A94000000001}\SC_Reader.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
~ Scan Global Startup in 00mn 00s
---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\WINDOWS\system32\GPhotos.scr
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files\MI1933~1\Office12\EXCEL.exe
~ Scan IE Menu Contextuel in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: &Envoyer à OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - Broken Internet access because of LSP provider (.not file.) -- mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
~ Scan Winsock in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} (CamfrogWEB Advanced Unicode Control) - http://activex.camfrogweb.com/advanced/2.0.2.20/cfweb_activex.camfrogweb.com-advanced-2.0.2.20_instmodule.exe
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
~ Scan Objets ActiveX in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7E0F979F-E514-4B8C-B0FA-058D90278B62}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{7E0F979F-E514-4B8C-B0FA-058D90278B62}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{7E0F979F-E514-4B8C-B0FA-058D90278B62}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\WINDOWS\system32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Scan Winlogon in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: avast! Antivirus (avast! Antivirus) . (...) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (.not file.)
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (...) - C:\Program Files\Java\jre6\bin\jqs.exe (.not file.)
O23 - Service: Lavasoft Ad-Aware Service (Lavasoft Ad-Aware Service) . (.Lavasoft Limited - Ad-Aware Service Application.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (...) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (.not file.)
O23 - Service: Machine Debug Manager (MDM) . (...) - C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe (.not file.)
O23 - Service: SeaPort (SeaPort) . (...) - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (.not file.)
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
~ Scan Scheduled Task in 00mn 00s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Mise à jour de la version d’Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe
O40 - ASIC: Lecteur Windows Media - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media de Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - IEAK branding.) -- C:\WINDOWS\system32\iedkcs32.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (...) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (...) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (...) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Explorer par utilisateur.) -- C:\WINDOWS\system32\ie4uinit.exe.mui
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- c:\WINDOWS\system32\mscories.dll
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 11.0 r1.) -- C:\WINDOWS\system32\Macromed\Flash\Flash11c.ocx
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (. - .) - C:\WINDOWS\system32\drivers\afd.sys (.not file.)
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: (i8042prt) . (...) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (. - .) - C:\WINDOWS\system32\DRIVERS\imapi.sys (.not file.)
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\system32\DRIVERS\serial.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (redbook) . (. - .) - C:\WINDOWS\system32\DRIVERS\redbook.sys (.not file.)
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Ad-Aware - (.Lavasoft Limited.) [HKLM] -- {D56B3391-1DAB-4AB3-AFF5-D55457911BBB}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.3.3 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}
O42 - Logiciel: Adobe Reader 9.4.6 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: ArcSoft PhotoImpression 5 - (.ArcSoft.) [HKLM] -- {EA57EFB9-A257-4DD0-BC6D-0FA5625F3421}
O42 - Logiciel: ArcSoft VideoImpression 2 - (.ArcSoft.) [HKLM] -- {244E21B9-164C-4EC1-AED8-9BD64161E66D}
O42 - Logiciel: ArcSoft WebCam Companion 2 - (.ArcSoft.) [HKLM] -- {7814358B-1284-4305-AE5A-6667DBDF4771}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CamfrogWEB Advanced ActiveX Plugin (remove only) - (.Pas de propriétaire.) [HKLM] -- CFWebAdvancedU
O42 - Logiciel: File Type Assistant - (.Trusted Software.) [HKLM] -- Trusted Software Assistant_is1
O42 - Logiciel: FileZilla Client 3.3.0.1 - (.Pas de propriétaire.) [HKLM] -- FileZilla Client
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Pas de propriétaire.) [HKLM] -- HDMI
O42 - Logiciel: Java 6 Update 29 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}
O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160070}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619}
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 6 Service Pack 2 (KB973686) - (.Microsoft Corporation.) [HKLM] -- {56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISE_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- ENTERPRISE
O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISE_{14809F99-C601-4D4A-9391-F1E8FAA964C5}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISE_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {06E6E30D-B498-442F-A943-07DE41D7F785}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}
O42 - Logiciel: Mozilla Firefox 8.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 8.0 (x86 fr)
O42 - Logiciel: Nero 7 Essentials - (.Nero AG.) [HKLM] -- {B28B351F-1232-46EA-85EF-B8EA91641036}
O42 - Logiciel: NetAssistant - (.Freeze.com.) [HKLM] -- {1266764D-FC4F-4FA7-B63B-884D53B1680F}
O42 - Logiciel: OpenOffice.org 3.1 - (.OpenOffice.org.) [HKLM] -- {0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: PowerDVD - (.Pas de propriétaire.) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: RechercherWeb Toolbar - (.RechercherWeb Toolbar.) [HKLM] -- RechercherWeb Toolbar
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{7F207DCA-3399-40CB-A968-6E5991B1421A}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E8766951-2B6C-4022-86E8-80D2D1762B76}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}
O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5A4E43D5-858F-49BD-BA72-8F30E1793060}
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
O42 - Logiciel: Security Update for Microsoft Office Outlook 2007 (KB980376) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{48113C06-9BA2-4D54-A731-D1D2C5B3144A}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46}
O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB982124) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{289FA8BC-6A8E-4341-B194-EB26B49E9F5D}
O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB982135) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0112C750-A06F-4F92-9C40-E5C1EA9A70EB}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB969613) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
O42 - Logiciel: Skype web features - (.Skype Technologies S.A..) [HKLM] -- {541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}
O42 - Logiciel: Skype™ 4.1 - (.Skype Technologies S.A..) [HKLM] -- {D103C4BA-F905-437A-8049-DB24763BBE36}
O42 - Logiciel: SuperCopier2 - (.Pas de propriétaire.) [HKLM] -- SuperCopier2
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{329050A9-EF80-40F9-B633-74508F54C1FF}
O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (kb2202131) - (.Microsoft.) [HKLM] -- {90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A67392E8-282B-4BEF-8020-EF3DD664DE7B}
O42 - Logiciel: VideoLAN VLC media player 0.8.6b - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Webcam 1200 - (.Logitech.) [HKLM] -- {66D475AE-F18B-43A0-8BAF-61AF4403E339}
O42 - Logiciel: Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray - (.Microsoft Corporation.) [HKLM] -- KB952011
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\AVAST Software]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Google]
[HKCU\Software\Intel]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\Neuf]
[HKCU\Software\ODBC]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\WinRAR]
[HKLM\Software\685D6D1C-D73A-4F37-B7E5E53660311DDB]
[HKLM\Software\ALWIL Software]
[HKLM\Software\AVAST Software]
[HKLM\Software\AVG]
[HKLM\Software\Adobe]
[HKLM\Software\AppDataLow]
[HKLM\Software\ArcSoft]
[HKLM\Software\Audible]
[HKLM\Software\C07ft5Y]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Creative Tech]
[HKLM\Software\CyberLink]
[HKLM\Software\Debug]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EBP]
[HKLM\Software\FileZilla 3]
[HKLM\Software\Freeze.com]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\Joyland Casino]
[HKLM\Software\JreMetrics]
[HKLM\Software\Lavasoft]
[HKLM\Software\LightScribe]
[HKLM\Software\Logitech]
[HKLM\Software\MSI]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nero]
[HKLM\Software\Neuf]
[HKLM\Software\Nsc]
[HKLM\Software\ODBC]
[HKLM\Software\OfferBox]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\PDFCreator]
[HKLM\Software\PTECH]
[HKLM\Software\Pervasive Software]
[HKLM\Software\PixArt]
[HKLM\Software\Policies]
[HKLM\Software\Prestige Casino]
[HKLM\Software\Program Groups]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sammsoft]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Skype]
[HKLM\Software\SoftAssist]
[HKLM\Software\SoftShape]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\Thomson]
[HKLM\Software\TrendMicro]
[HKLM\Software\Trolltech]
[HKLM\Software\Uniblue]
[HKLM\Software\VideoLAN]
[HKLM\Software\W3i]
[HKLM\Software\William Hill Casino]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]
[HKLM\Software\ahead]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 01s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 28/05/2010 - 05:58:10 - [210638454] ----D- C:\Program Files\Adobe
O43 - CFD: 15/11/2011 - 10:31:58 - [26583] ----D- C:\Program Files\Alwil Software
O43 - CFD: 10/09/2009 - 07:29:44 - [478139783] ----D- C:\Program Files\ArcSoft
O43 - CFD: 20/10/2011 - 15:02:58 - [39] ----D- C:\Program Files\AVAST Software
O43 - CFD: 23/12/2010 - 14:05:52 - [21121576] ----D- C:\Program Files\AVG
O43 - CFD: 18/12/2009 - 11:32:32 - [2913016] ----D- C:\Program Files\CCleaner
O43 - CFD: 15/10/2009 - 08:50:38 - [6533042] ----D- C:\Program Files\CFWebAdvancedU
O43 - CFD: 26/08/2009 - 14:26:10 - [0] ----D- C:\Program Files\ComPlus Applications
O43 - CFD: 26/08/2009 - 15:29:36 - [16607380] ----D- C:\Program Files\CyberLink
O43 - CFD: 01/08/2011 - 14:56:08 - [1647104] ----D- C:\Program Files\DownVision
O43 - CFD: 23/09/2010 - 10:44:54 - [6709507] ----D- C:\Program Files\EBP
O43 - CFD: 23/09/2010 - 11:22:46 - [846098840] ----D- C:\Program Files\Fichiers communs
O43 - CFD: 28/06/2011 - 15:42:30 - [1985377] ----D- C:\Program Files\File Type Assistant
O43 - CFD: 18/12/2009 - 11:22:40 - [15430132] ----D- C:\Program Files\FileZilla FTP Client
O43 - CFD: 15/11/2011 - 10:39:42 - [3095544] ----D- C:\Program Files\Google
O43 - CFD: 18/12/2009 - 11:46:52 - [17934264] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 26/08/2009 - 15:07:10 - [64868] ----D- C:\Program Files\Intel
O43 - CFD: 20/10/2011 - 17:59:26 - [5256136] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 10/11/2011 - 13:46:40 - [155403553] ----D- C:\Program Files\Java
O43 - CFD: 28/11/2009 - 12:23:28 - [16664352] ----D- C:\Program Files\JRE
O43 - CFD: 07/11/2011 - 09:27:32 - [41706254] ----D- C:\Program Files\Lavasoft
O43 - CFD: 28/11/2009 - 17:18:56 - [2152579] ----D- C:\Program Files\Messenger
O43 - CFD: 14/07/2010 - 07:55:14 - [2540423] ----D- C:\Program Files\Microsoft
O43 - CFD: 18/12/2009 - 11:17:10 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 26/08/2009 - 14:28:48 - [0] ----D- C:\Program Files\microsoft frontpage
O43 - CFD: 06/07/2011 - 18:41:06 - [702641402] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 04/06/2010 - 23:16:18 - [38274027] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 10/09/2009 - 13:06:54 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 10/09/2009 - 13:07:40 - [2188837] ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 18/12/2009 - 10:48:52 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 18/12/2009 - 10:45:14 - [67476831] ----D- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 18/12/2009 - 13:19:04 - [3726168] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 18/12/2009 - 10:47:52 - [8152064] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 18/08/2010 - 08:14:22 - [10374874] ----D- C:\Program Files\Movie Maker
O43 - CFD: 14/11/2011 - 10:19:24 - [39672617] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 15/09/2009 - 13:22:42 - [26521] ----D- C:\Program Files\MSBuild
O43 - CFD: 09/09/2009 - 11:12:06 - [21471559] ----D- C:\Program Files\MSN
O43 - CFD: 26/08/2009 - 14:25:30 - [8745735] ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD: 15/09/2009 - 13:20:04 - [6849] ----D- C:\Program Files\MSXML 6.0
O43 - CFD: 26/08/2009 - 17:26:26 - [338876389] ----D- C:\Program Files\Nero
O43 - CFD: 28/11/2009 - 17:13:36 - [3285523] ----D- C:\Program Files\NetMeeting
O43 - CFD: 26/08/2009 - 14:25:38 - [1804] ----D- C:\Program Files\Online Services
O43 - CFD: 28/11/2009 - 12:23:26 - [385258898] ----D- C:\Program Files\OpenOffice.org 3
O43 - CFD: 15/12/2010 - 10:38:08 - [4379321] ----D- C:\Program Files\Outlook Express
O43 - CFD: 18/12/2009 - 11:53:08 - [21625852] ----D- C:\Program Files\PDFCreator
O43 - CFD: 15/05/2011 - 16:37:58 - [99290872] ----D- C:\Program Files\Picasa2
O43 - CFD: 26/08/2009 - 15:19:20 - [62413172] ----D- C:\Program Files\Realtek
O43 - CFD: 20/10/2011 - 15:19:46 - [7407903] ----D- C:\Program Files\RechercherWeb Toolbar
O43 - CFD: 15/09/2009 - 13:22:36 - [36400897] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 26/08/2009 - 14:27:24 - [1025] ----D- C:\Program Files\Services en ligne
O43 - CFD: 04/05/2011 - 11:14:42 - [3158016] ----D- C:\Program Files\Sexy-tchat
O43 - CFD: 04/02/2011 - 14:31:06 - [14912306] ----D- C:\Program Files\SFR
O43 - CFD: 18/09/2009 - 10:38:28 - [35865177] R---D- C:\Program Files\Skype
O43 - CFD: 10/11/2011 - 16:14:48 - [9357483] ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 26/08/2009 - 15:30:22 - [1233769] ----D- C:\Program Files\SuperCopier2
O43 - CFD: 26/08/2009 - 15:06:02 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 26/08/2009 - 15:29:14 - [85393899] ----D- C:\Program Files\VideoLAN
O43 - CFD: 10/09/2009 - 07:21:26 - [6347732] ----D- C:\Program Files\Webcam 1200
O43 - CFD: 31/01/2011 - 11:13:28 - [136712839] ----D- C:\Program Files\Windows Live
O43 - CFD: 13/10/2010 - 19:08:50 - [3581070] ----D- C:\Program Files\Windows Media Connect 2
O43 - CFD: 13/10/2010 - 19:34:04 - [8621274] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 28/11/2009 - 17:13:32 - [3942655] ----D- C:\Program Files\Windows NT
O43 - CFD: 26/08/2009 - 14:27:26 - [0] --H-D- C:\Program Files\WindowsUpdate
O43 - CFD: 26/08/2009 - 15:29:16 - [3619783] ----D- C:\Program Files\WinRAR
O43 - CFD: 26/08/2009 - 14:28:48 - [0] ----D- C:\Program Files\xerox
O43 - CFD: 24/11/2011 - 16:28:08 - [7902679] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 28/05/2010 - 05:59:12 - [6252030] ----D- C:\Program Files\Fichiers Communs\Adobe
O43 - CFD: 26/08/2009 - 17:28:12 - [94974143] ----D- C:\Program Files\Fichiers Communs\Ahead
O43 - CFD: 10/09/2009 - 07:29:22 - [9609764] ----D- C:\Program Files\Fichiers Communs\ArcSoft
O43 - CFD: 18/12/2009 - 10:48:52 - [92976] ----D- C:\Program Files\Fichiers Communs\DESIGNER
O43 - CFD: 26/08/2009 - 15:28:56 - [3187420] ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD: 08/05/2010 - 22:48:24 - [32325352] ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD: 13/10/2011 - 14:46:40 - [7146110] ----D- C:\Program Files\Fichiers Communs\LightScribe
O43 - CFD: 31/01/2011 - 11:09:56 - [254077173] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD: 26/08/2009 - 14:26:46 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD: 26/08/2009 - 16:20:02 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD: 26/08/2009 - 14:26:50 - [8106] ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD: 18/09/2009 - 10:37:52 - [1959208] ----D- C:\Program Files\Fichiers Communs\Skype
O43 - CFD: 26/08/2009 - 16:20:00 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD: 18/12/2009 - 13:16:50 - [41360161] ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD: 10/09/2009 - 13:03:46 - [391035008] ----D- C:\Program Files\Fichiers Communs\Windows Live
O43 - CFD: 15/11/2011 - 16:39:46 - [25791] ----D- C:\Documents and Settings\Administrateur\Application Data\.clamwin
O43 - CFD: 21/10/2011 - 10:48:10 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Adobe
O43 - CFD: 15/11/2011 - 18:07:36 - [0] ----D- C:\Documents and Settings\Administrateur\Application Data\Identities
O43 - CFD: 21/10/2011 - 10:48:12 - [456] ----D- C:\Documents and Settings\Administrateur\Application Data\Macromedia
O43 - CFD: 15/11/2011 - 18:07:52 - [295725] -S--D- C:\Documents and Settings\Administrateur\Application Data\Microsoft
O43 - CFD: 15/11/2011 - 11:48:24 - [14689059] ----D- C:\Documents and Settings\Administrateur\Application Data\Mozilla
O43 - CFD: 15/11/2011 - 17:20:36 - [86880] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Adobe
O43 - CFD: 15/11/2011 - 10:33:22 - [6663709] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google
O43 - CFD: 15/11/2011 - 18:07:40 - [45182017] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft
O43 - CFD: 18/12/2009 - 13:17:04 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft Help
O43 - CFD: 15/11/2011 - 11:48:22 - [5684858] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla
O43 - CFD: 15/11/2011 - 10:33:02 - [0] ----D- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Temp
~ Scan Program Folder in 00mn 16s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.943078551C0D478F846182D150E41B40] - 24/11/2011 - 16:25:31 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [113234]
O44 - LFC:[MD5.6D0C1CA9D727CA610BA840830DB28CAF] - 24/11/2011 - 16:21:39 -SHA- . (...) -- C:\WINDOWS\system32\c_48082.nl_ [48016]
O44 - LFC:[MD5.63A06C9A09EC58C84A0D311C4EB7E1A5] - 24/11/2011 - 16:21:34 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl [13646]
O44 - LFC:[MD5.B439CFECBDC45C75BA05CD0C100CE44A] - 24/11/2011 - 16:21:28 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.32622066622D13A39117E97BAC3391D1] - 24/11/2011 - 16:21:00 ---A- . (...) -- C:\aaw7boot.log [9093]
O44 - LFC:[MD5.EE4963E36418C6CBC1973401ABB7A955] - 23/11/2011 - 15:39:04 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [841]
O44 - LFC:[MD5.CB17A47D090938A02DACB066D6D5A124] - 23/11/2011 - 14:12:22 ---A- . (...) -- C:\WINDOWS\system32\rp_rules.dat [44]
O44 - LFC:[MD5.8A3D5B46FF8C9CED46304F1EBB5F9AFE] - 23/11/2011 - 14:12:22 ---A- . (...) -- C:\WINDOWS\system32\rp_stats.dat [64]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/11/2011 - 16:29:13 ---A- . (...) -- C:\WINDOWS\3965975199 [0]
O44 - LFC:[MD5.486E0B1BC94C346E5C352C295388C803] - 15/11/2011 - 10:58:31 ---A- . (...) -- C:\WINDOWS\system32\config.nt [3072]
O44 - LFC:[MD5.8F71A250C4A8257EE0CDA01F6791B3E9] - 14/11/2011 - 11:57:40 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl [414368]
O44 - LFC:[MD5.7F8ABCF4C7DDA8881FC1C152D0F3F2CA] - 10/11/2011 - 14:53:30 ---A- . (...) -- C:\WINDOWS\win.ini [1068]
O44 - LFC:[MD5.8CE4E3136D71323AFB0D97CC678C9688] - 10/11/2011 - 14:53:25 ---A- . (...) -- C:\PA207.DAT [304160]
O44 - LFC:[MD5.9D1379B60113E70C75592B02538E84D6] - 10/11/2011 - 13:46:40 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\system32\java.exe [145184]
O44 - LFC:[MD5.9225A1067BC2858575B9787BB3ECC4FD] - 10/11/2011 - 13:46:40 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\system32\javaw.exe [145184]
O44 - LFC:[MD5.AFBF77A659ABEA37EBE3994656970CF2] - 10/11/2011 - 13:46:40 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\WINDOWS\system32\javaws.exe [157472]
O44 - LFC:[MD5.8BD7ACFF1C26CE5EF0AE438E20165F69] - 10/11/2011 - 13:46:39 ---A- . (...) -- C:\WINDOWS\system32\jupdate-1.6.0_29-b11.log [3133]
O44 - LFC:[MD5.C324F24924675A18B4876A7346FEE23A] - 09/11/2011 - 15:55:43 ---A- . (...) -- C:\WINDOWS\system32\lsdelete.exe [16432]
O44 - LFC:[MD5.0505DA5D357F18A5D42FC5DEDE6BC9A0] - 09/11/2011 - 15:55:43 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [101720]
O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 09/11/2011 - 15:26:26 ---A- . (...) -- C:\WINDOWS\system.ini [227]
O44 - LFC:[MD5.D3BCEE679ED4285FFB025FC71C1F073B] - 09/11/2011 - 15:26:26 -SH-- . (...) -- C:\boot.ini [216]
O44 - LFC:[MD5.336ABE8721CBC3110F1C6426DA633417] - 07/11/2011 - 09:36:11 ---A- . (.Lavasoft AB - Boot Driver.) -- C:\WINDOWS\system32\drivers\Lbd.sys [64512]
O44 - LFC:[MD5.C99146D84B8548A3418CFE1E21730E71] - 30/10/2011 - 23:13:43 ---A- . (...) -- C:\WINDOWS\system32\d3d9caps.dat [664]
O44 - LFC:[MD5.FB1C1945B01240CD4158AE6EEA1747A1] - 30/10/2011 - 18:04:13 ---A- . (...) -- C:\WINDOWS\system32\perfc009.dat [88276]
O44 - LFC:[MD5.788A122137A9DD98BB9508F1989AE3D2] - 30/10/2011 - 18:04:13 ---A- . (...) -- C:\WINDOWS\system32\perfc00C.dat [104944]
O44 - LFC:[MD5.882C7CDD6BFA3688E6C903E4ACA32E1A] - 30/10/2011 - 18:04:13 ---A- . (...) -- C:\WINDOWS\system32\perfh009.dat [500768]
O44 - LFC:[MD5.FADB4373C554B1A0B44F0000A1D8BE9A] - 30/10/2011 - 18:04:13 ---A- . (...) -- C:\WINDOWS\system32\perfh00C.dat [574662]
O44 - LFC:[MD5.0E127ABF3BDE3E65A07AA2514AB8C7EB] - 30/10/2011 - 18:04:12 ---A- . (...) -- C:\WINDOWS\system32\PerfStringBackup.INI [1284704]
O44 - LFC:[MD5.0AE82DC81CC6B266E92EDF78C2A0ED11] - 14/04/2008 - 03:00:52 ---A- . (...) -- C:\WINDOWS\system32\drivers\i8042prt.sys [54144]
~ Scan Files in 00mn 09s
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.CF8951D163BD84D9DA4E8CE276E04DE9] - 15/11/2011 - 10:29:48 ---A- - C:\WINDOWS\Prefetch\PLUGIN-CONTAINER.EXE-15EDC9DD.pf
O45 - LFCP:[MD5.E6002C6C085D5D6CEDF4C96DC2D7F885] - 15/11/2011 - 10:46:55 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-451FC2C0.pf
O45 - LFCP:[MD5.2C088EEB0B253E7E91E463D639A4F2AB] - 15/11/2011 - 10:47:04 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-4665EBDC.pf
O45 - LFCP:[MD5.EBA06CE8DF2042357B8235A64ADBCDF8] - 15/11/2011 - 10:47:20 ---A- - C:\WINDOWS\Prefetch\SETUP_AV_FREE_FRE.EXE-176128FC.pf
O45 - LFCP:[MD5.D366C18900F63C45F30271A109CC6FFC] - 15/11/2011 - 10:47:34 ---A- - C:\WINDOWS\Prefetch\AVAST.SETUP-08897EB2.pf
O45 - LFCP:[MD5.BFCC5C53237E53F71867DD75D0A42192] - 15/11/2011 - 10:47:49 ---A- - C:\WINDOWS\Prefetch\INSTALL.EXE-0481520A.pf
O45 - LFCP:[MD5.63B9EB08BF0D346DBBF6F6C2B4C63428] - 15/11/2011 - 10:47:49 ---A- - C:\WINDOWS\Prefetch\VCREDIST_X86_SP1.EXE-05B622CC.pf
O45 - LFCP:[MD5.96F7D7DBF2B87EEB015F501B5E256BCB] - 15/11/2011 - 10:48:08 ---A- - C:\WINDOWS\Prefetch\AVSX.EXE-0B7E6794.pf
O45 - LFCP:[MD5.99C7C351CEB68AE22518527C0BBB886B] - 15/11/2011 - 10:48:08 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATESETUP.EXE-30758D5B.pf
O45 - LFCP:[MD5.69FF298145B60E6A4242DD269CDFC411] - 15/11/2011 - 10:48:09 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-0891E2AB.pf
O45 - LFCP:[MD5.F9F5D72281AD98205EF99393916293B5] - 15/11/2011 - 10:48:23 ---A- - C:\WINDOWS\Prefetch\AVASTSVC.EXE-27503149.pf
O45 - LFCP:[MD5.769B8B77EA31ED18514DAEF0A8C835E3] - 15/11/2011 - 10:48:37 ---A- - C:\WINDOWS\Prefetch\AVASTUI.EXE-065207CB.pf
O45 - LFCP:[MD5.97F223584B80C6F731EB863F12975CCD] - 15/11/2011 - 10:58:20 ---A- - C:\WINDOWS\Prefetch\AVAST.SETUP-01FBC16A.pf
O45 - LFCP:[MD5.FE8CCC7D57E3C55A68559762F4E610ED] - 15/11/2011 - 10:58:29 ---A- - C:\WINDOWS\Prefetch\ASWRUNDLL.EXE-33BAD243.pf
O45 - LFCP:[MD5.3F620B0E3E1793A77825E2E7E033F3C1] - 15/11/2011 - 11:05:16 ---A- - C:\WINDOWS\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf
O45 - LFCP:[MD5.CED76FD223EC5EBFCFB8DDF3206AE1B9] - 15/11/2011 - 11:06:21 ---A- - C:\WINDOWS\Prefetch\MSCONFIG.EXE-35E4DAE9.pf
O45 - LFCP:[MD5.ECA91965AF8EDB4F4477114EB442B1ED] - 15/11/2011 - 11:38:51 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2418241-X86.EXE-04924BE8.pf
O45 - LFCP:[MD5.2BC5DE2359FD579A2063E9D0F8AC035E] - 15/11/2011 - 11:40:32 ---A- - C:\WINDOWS\Prefetch\NDP35SP1-KB2416473-X86.EXE-328F63A2.pf
O45 - LFCP:[MD5.023BF2F2337D34E931A46530D8EAADEB] - 15/11/2011 - 11:42:42 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2572073-X86.EXE-2A97DEE5.pf
O45 - LFCP:[MD5.3E2710BA01DF3EFB7B1452322A3A92FA] - 15/11/2011 - 11:44:01 ---A- - C:\WINDOWS\Prefetch\SILVERLIGHT.EXE-3A90EF1A.pf
O45 - LFCP:[MD5.70A94652ACF83C09AF761F2C682CA20A] - 15/11/2011 - 11:45:04 ---A- - C:\WINDOWS\Prefetch\MSIPATCHREGFIX-X86.EXE-2ADB4CCC.pf
O45 - LFCP:[MD5.A1CA57F45B2067F42183082953D368F6] - 15/11/2011 - 11:45:27 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2539631-X86.EXE-325EC0D1.pf
O45 - LFCP:[MD5.29ED3ED94A2DBF41554F4B69C85108C8] - 15/11/2011 - 11:46:50 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2518864-X86.EXE-2AE02B85.pf
O45 - LFCP:[MD5.C3688A4012FC2B835AF2EA073124EDB0] - 15/11/2011 - 13:38:25 ---A- - C:\WINDOWS\Prefetch\NETSH.EXE-085CFFDE.pf
O45 - LFCP:[MD5.69FF1C4204AA0A8A420738BDE0B0C5A5] - 15/11/2011 - 13:40:05 ---A- - C:\WINDOWS\Prefetch\PRESETUP.EXE-239ACB61.pf
O45 - LFCP:[MD5.5C7E0AC5AB789D28D0C9AC6FCAF5549C] - 15/11/2011 - 13:40:06 ---A- - C:\WINDOWS\Prefetch\APNSTUB.EXE-35EAA74D.pf
O45 - LFCP:[MD5.45DC188414C0BA5A2177779CC2BE9F67] - 15/11/2011 - 13:40:06 ---A- - C:\WINDOWS\Prefetch\SETUP.EXE-1DB3CDC1.pf
O45 - LFCP:[MD5.5F35C0EA9FB92DB28AD513246BA86183] - 15/11/2011 - 13:41:17 ---A- - C:\WINDOWS\Prefetch\FACT.EXE-207B0E32.pf
O45 - LFCP:[MD5.3DA6CB11DE300478BFD34790B9D103E5] - 15/11/2011 - 13:44:56 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-3B315295.pf
O45 - LFCP:[MD5.3786AA269EF42EEC54B95BE05003BEB3] - 15/11/2011 - 13:45:55 ---A- - C:\WINDOWS\Prefetch\HELPSVC.EXE-2878DDA2.pf
O45 - LFCP:[MD5.AFFC82AB7982A06876F11DC24C71DF78] - 15/11/2011 - 13:46:18 ---A- - C:\WINDOWS\Prefetch\MMC.EXE-035AE997.pf
O45 - LFCP:[MD5.ABC2BF32205D3680A0216579293EC927] - 15/11/2011 - 13:47:47 ---A- - C:\WINDOWS\Prefetch\HELPCTR.EXE-3862B6F5.pf
O45 - LFCP:[MD5.0A100AA97EAD4DC8CE1D31008605D743] - 15/11/2011 - 14:01:00 ---A- - C:\WINDOWS\Prefetch\SAUPDATE.EXE-01D42FCF.pf
O45 - LFCP:[MD5.E5D8086222B640F1465A2F1B7DADC529] - 15/11/2011 - 14:01:00 ---A- - C:\WINDOWS\Prefetch\UPDATETASK.EXE-154F922C.pf
O45 - LFCP:[MD5.3B35CF4A822E91503251A6423B5CBCB0] - 15/11/2011 - 14:17:01 ---A- - C:\WINDOWS\Prefetch\MSI14.TMP-284832A4.pf
O45 - LFCP:[MD5.FB5074B4B3F91DF2970E38AACF62AA38] - 15/11/2011 - 15:10:52 ---A- - C:\WINDOWS\Prefetch\CLAMWIN.EXE-3B72D770.pf
O45 - LFCP:[MD5.E9737BCFD4E062C61FDC5B730D8D90AE] - 15/11/2011 - 15:10:52 ---A- - C:\WINDOWS\Prefetch\CLAMWINPORTABLE.EXE-395A7210.pf
O45 - LFCP:[MD5.3635FA4C7F21EF011FB58E7FBBAB8D8D] - 15/11/2011 - 15:10:52 ---A- - C:\WINDOWS\Prefetch\FRESHCLAM.EXE-1835AE6B.pf
O45 - LFCP:[MD5.846E558D673F1699F5CFC35F7A9D8F78] - 15/11/2011 - 15:27:38 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-447CB350.pf
O45 - LFCP:[MD5.5D1A8F3214FB7539A32ECFA9CEC1D869] - 15/11/2011 - 15:30:55 ---A- - C:\WINDOWS\Prefetch\NET.EXE-01A53C2F.pf
O45 - LFCP:[MD5.DA0D601FF17545106990B5B14D6899CC] - 15/11/2011 - 15:30:55 ---A- - C:\WINDOWS\Prefetch\NET1.EXE-029B9DB4.pf
O45 - LFCP:[MD5.49D0D467617CB21ADC63BC9217924323] - 15/11/2011 - 15:31:20 ---A- - C:\WINDOWS\Prefetch\AD-AWARE.EXE-3122AD3A.pf
O45 - LFCP:[MD5.0FE3DFABB7CF6B4A2C09A3562D480150] - 15/11/2011 - 15:31:25 ---A- - C:\WINDOWS\Prefetch\AUTOLAUNCH.EXE-24D2557C.pf
O45 - LFCP:[MD5.F8798FE126129CCC34827A8E39A61D52] - 15/11/2011 - 15:33:22 ---A- - C:\WINDOWS\Prefetch\REGSVR32.EXE-25EEFE2F.pf
O45 - LFCP:[MD5.0FB7C404F364658D02F02FFA469594A5] - 15/11/2011 - 15:34:46 ---A- - C:\WINDOWS\Prefetch\REGEDIT.EXE-1B606482.pf
O45 - LFCP:[MD5.314C4446874739C363B8C2ED91459CAC] - 15/11/2011 - 15:38:18 ---A- - C:\WINDOWS\Prefetch\DUMPREP.EXE-1B46F901.pf
O45 - LFCP:[MD5.4FBDC85078720D67BB30315DE9D23178] - 15/11/2011 - 15:38:18 ---A- - C:\WINDOWS\Prefetch\DWWIN.EXE-30875ADC.pf
O45 - LFCP:[MD5.429E6C2DD84980182239D74F35CFCFAF] - 15/11/2011 - 15:38:33 ---A- - C:\WINDOWS\Prefetch\HIJACKTHIS.EXE-20AB7051.pf
O45 - LFCP:[MD5.97F742FA82EC81E48B04F371320BA46F] - 15/11/2011 - 15:38:55 ---A- - C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf
O45 - LFCP:[MD5.2E09F612B02E3DEE69D75254708A8C23] - 15/11/2011 - 15:43:42 ---A- - C:\WINDOWS\Prefetch\9DIAGS.EXE-2F86E66A.pf
O45 - LFCP:[MD5.840DD0FB36297922CAE050CC2C2018E6] - 15/11/2011 - 15:50:02 ---A- - C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf
O45 - LFCP:[MD5.12C1ADCB9F99D8109662B5476B9B8951] - 15/11/2011 - 15:55:28 ---A- - C:\WINDOWS\Prefetch\CLEANMGR.EXE-1F86EA8E.pf
O45 - LFCP:[MD5.2ECCC6EB033953700021A6B7782AF88C] - 15/11/2011 - 15:55:54 ---A- - C:\WINDOWS\Prefetch\SPIDER.EXE-2D998CA6.pf
O45 - LFCP:[MD5.E073C861A3DD601051C745EE4C33A92B] - 15/11/2011 - 15:59:03 ---A- - C:\WINDOWS\Prefetch\DW20.EXE-0F7C73AD.pf
O45 - LFCP:[MD5.04E8616C055B450CD498C50A4562AE94] - 15/11/2011 - 16:05:17 ---A- - C:\WINDOWS\Prefetch\AVIRA_ANTIVIRUS_PERSONAL_FR.E-21500C21.pf
O45 - LFCP:[MD5.C138916354B90ACCCEC9DFAC15291A1B] - 15/11/2011 - 16:05:42 ---A- - C:\WINDOWS\Prefetch\PRESETUP.EXE-06AD3E80.pf
O45 - LFCP:[MD5.520C8214D1F91DFE349C1940256C5CE0] - 15/11/2011 - 16:05:43 ---A- - C:\WINDOWS\Prefetch\SETUP.EXE-2297452F.pf
O45 - LFCP:[MD5.742B942B1EA8864A9C7B53F83EB2E26F] - 15/11/2011 - 16:05:45 ---A- - C:\WINDOWS\Prefetch\APNSTUB.EXE-13B1053A.pf
O45 - LFCP:[MD5.01E1482426E4E0C8621AD47E3262D3D7] - 15/11/2011 - 16:10:09 ---A- - C:\WINDOWS\Prefetch\GOOGLECRASHHANDLER.EXE-0A0BA35C.pf
O45 - LFCP:[MD5.28BE29FCCBAA76DFC7BAF50899A05FA7] - 15/11/2011 - 16:10:16 ---A- - C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf
O45 - LFCP:[MD5.93420ABCDD0D3037542F4785832816FF] - 15/11/2011 - 16:10:18 ---A- - C:\WINDOWS\Prefetch\SVCHOST.EXE-3530F672.pf
O45 - LFCP:[MD5.6E548D886BEEBC7883B88886C33C05FD] - 15/11/2011 - 16:10:20 ---A- - C:\WINDOWS\Prefetch\UNSECAPP.EXE-1A95A33B.pf
O45 - LFCP:[MD5.6B112F6968E60BEEAC2D1216CCC5A448] - 15/11/2011 - 16:10:23 ---A- - C:\WINDOWS\Prefetch\AAWTRAY.EXE-1858AE3F.pf
O45 - LFCP:[MD5.0D7DDBB61B25B1B181EECADECFC7ED58] - 15/11/2011 - 16:17:40 ---A- - C:\WINDOWS\Prefetch\CCLEANER.EXE-0BCE437C.pf
O45 - LFCP:[MD5.06EF48F80ADEF047555FCA3D670263DC] - 15/11/2011 - 16:18:29 ---A- - C:\WINDOWS\Prefetch\SOL.EXE-1C0C14EB.pf
O45 - LFCP:[MD5.120A413DDB35310DD15A053476A9D0D8] - 15/11/2011 - 17:05:29 ---A- - C:\WINDOWS\Prefetch\WINRAR.EXE-39C6DAD9.pf
O45 - LFCP:[MD5.39B0FD5C2276DBA2425E75D3FC2C7094] - 15/11/2011 - 17:05:34 ---A- - C:\WINDOWS\Prefetch\AVGMFAPX.EXE-13B15FFA.pf
O45 - LFCP:[MD5.9A559F7E522A075DFA83C2E3588E6A74] - 15/11/2011 - 18:00:35 ---A- - C:\WINDOWS\Prefetch\OUTLOOK.EXE-39385AAC.pf
O45 - LFCP:[MD5.443C4B017558EF7C6BE02C2B9EDB3DB2] - 15/11/2011 - 18:11:59 ---A- - C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf
O45 - LFCP:[MD5.5CCCAA95397146186B1C06CE0350C24D] - 15/11/2011 - 18:24:58 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-39A90745.pf
O45 - LFCP:[MD5.518F877C9A237C5DB32124158AECC948] - 15/11/2011 - 18:25:45 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-300B13B9.pf
O45 - LFCP:[MD5.23FD588FC87E5E97821ACF0350230066] - 15/11/2011 - 18:25:46 ---A- - C:\WINDOWS\Prefetch\AVGMFAPX.EXE-09078034.pf
O45 - LFCP:[MD5.EB4743CC52934D866150F62EE1112FDC] - 15/11/2011 - 18:25:48 ---A- - C:\WINDOWS\Prefetch\AVG_FREE_STB_ALL_2012_1831_CN-08F4F1D5.pf
O45 - LFCP:[MD5.A6AAA05711EF98C56A7EF190D7B16A1E] - 15/11/2011 - 18:26:06 ---A- - C:\WINDOWS\Prefetch\AVGMFAPX.EXE-30F02DA4.pf
O45 - LFCP:[MD5.A74374B552E868AD0DCCF234779F702D] - 15/11/2011 - 18:30:59 ---A- - C:\WINDOWS\Prefetch\TASKMGR.EXE-20256C55.pf
O45 - LFCP:[MD5.D9E44375EED8474F4AFF7D12E61C5E37] - 17/11/2011 - 12:58:48 ---A- - C:\WINDOWS\Prefetch\LOGONUI.EXE-0AF22957.pf
O45 - LFCP:[MD5.D3C9F9FAF210F1BE095BC3C31FC24ED7] - 17/11/2011 - 15:41:15 ---A- - C:\WINDOWS\Prefetch\AAWSERVICE.EXE-3B93EBA3.pf
O45 - LFCP:[MD5.35B9DAE13962F36A8711387C9F4EA65C] - 17/11/2011 - 15:41:15 ---A- - C:\WINDOWS\Prefetch\AD-AWAREADMIN.EXE-102E374C.pf
O45 - LFCP:[MD5.CE3A0AD4690390C53FFFF2DC040999CD] - 17/11/2011 - 15:41:15 ---A- - C:\WINDOWS\Prefetch\ARCCON.AC-16447E78.pf
O45 - LFCP:[MD5.6E365106BBF2E6F8B9AF40BDDF113DC9] - 17/11/2011 - 15:41:15 ---A- - C:\WINDOWS\Prefetch\AWSC.EXE-2892B6C7.pf
O45 - LFCP:[MD5.7BEBE2DCD38A96D5BFB0A8FA11635E25] - 17/11/2011 - 15:41:15 ---A- - C:\WINDOWS\Prefetch\MSNMSGR.EXE-030AB647.pf
O45 - LFCP:[MD5.8B46C0FBCB3F0919C51A61D8034A8C05] - 17/11/2011 - 15:41:15 ---A- - C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.AA9FE86E5F5639F1444057D87ED72DEE] - 17/11/2011 - 15:41:38 ---A- - C:\WINDOWS\Prefetch\WLCOMM.EXE-04AE9009.pf
O45 - LFCP:[MD5.5A5E242D454F209BD3B39A1A05B8FFB3] - 17/11/2011 - 15:41:43 ---A- - C:\WINDOWS\Prefetch\CONTROL.EXE-013DBFB5.pf
O45 - LFCP:[MD5.AC55CDC5FD5C05F621E692CDA9812961] - 17/11/2011 - 15:41:44 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-1831A4F3.pf
O45 - LFCP:[MD5.B2A3BB8E665D0D6A5342DF1CA9BCFDEC] - 17/11/2011 - 15:41:45 ---A- - C:\WINDOWS\Prefetch\IPCONFIG.EXE-2395F30B.pf
O45 - LFCP:[MD5.EE8617FEA497E9B0C34CADB4EFCDC4D6] - 17/11/2011 - 15:41:47 ---A- - C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf
O45 - LFCP:[MD5.331C8DB268910B43D1F1AC58C8F2F5D7] - 17/11/2011 - 15:42:03 ---A- - C:\WINDOWS\Prefetch\FIREFOX.EXE-28641590.pf
O45 - LFCP:[MD5.436C99B8989657240D6D1A53B037A9A3] - 17/11/2011 - 15:42:19 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-13DA0E71.pf
O45 - LFCP:[MD5.19EFF72088B1C47DF555FE81CF78E778] - 17/11/2011 - 15:59:22 ---A- - C:\WINDOWS\Prefetch\WINMINE.EXE-0A3838A4.pf
O45 - LFCP:[MD5.E384221B0FF4944D595296AC6061952B] - 17/11/2011 - 17:26:16 ---A- - C:\WINDOWS\Prefetch\Layout.ini
O45 - LFCP:[MD5.D06B63E60975104B01074E4726285E7B] - 17/11/2011 - 17:26:26 ---A- - C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf
O45 - LFCP:[MD5.0340128BCC12C144D1D560BF38D16E8F] - 17/11/2011 - 17:26:27 ---A- - C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf
O45 - LFCP:[MD5.31BF5EB7389BB68B9A61CF601AD4FDBA] - 17/11/2011 - 17:53:05 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-1E123D86.pf
O45 - LFCP:[MD5.C1177964DE3CE8ABE0E5CCC9FD323B74] - 17/11/2011 - 18:10:15 ---A- - C:\WINDOWS\Prefetch\MSHEARTS.EXE-0D7FE295.pf
O45 - LFCP:[MD5.28C59E2B40E1B60B0E0E1FA33CB3521C] - 17/11/2011 - 18:12:00 ---A- - C:\WINDOWS\Prefetch\NMINDEXSTORESVR.EXE-22A7DEEF.pf
O45 - LFCP:[MD5.30E3883AB86F7587C4B54829810ED6A1] - 17/11/2011 - 18:12:00 ---A- - C:\WINDOWS\Prefetch\WSCNTFY.EXE-1B24F5EB.pf
~ Scan Prefetcher in 00mn 04s
---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O47 - AAKE:Key Export SP - "C:\Program Files\NetMeeting\conf.exe" [Disabled] .(.Microsoft Corporation - Windows® NetMeeting®.) -- C:\Program Files\NetMeeting\conf.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\dpvsetup.exe" [Enabled] .(.Microsoft Corporation - Microsoft DirectPlay Voice Test.) -- C:\WINDOWS\system32\dpvsetup.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\rundll32.exe" [Enabled] Clé orpheline
O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Groove.) -- C:\Program Files\Microsoft Office\Office12\GROOVE.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe
O47 - AAKE:Key Export SP - "C:\PVSW\Bin\w3dbsmgr.exe" [Enabled] .(...) -- C:\PVSW\Bin\w3dbsmgr.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Google\Google Earth\client\googleearth.exe" [Enabled] .(...) -- C:\Program Files\Google\Google Earth\client\googleearth.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
O47 - AAKE:Key Export SP - "C:\Program Files\VideoLAN\VLC\vlc.exe" [Enabled] .(...) -- C:\Program Files\VideoLAN\VLC\vlc.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgmfapx.exe" [Enabled] .(...) -- C:\Program Files\AVG\AVG10\avgmfapx.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\DownVision\DownVision.exe" [Enabled] .(.Pas de propriétaire - DownVision.) -- C:\Program Files\DownVision\DownVision.exe
O47 - AAKE:Key Export SP - "C:\Program Files\AVG\AVG10\avgui.exe" [Enabled] .(...) -- C:\Program Files\AVG\AVG10\avgui.exe
O47 - AAKE:Key Export SP - "C:\Program Files\SFR\Kit\9launch.exe" [Enabled] .(.SFR - Lanceur de connexion SFR.) -- C:\Program Files\SFR\Kit\9launch.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Toolbar\wltuser.exe" [Disabled] .(.Microsoft Corporation - Windows Live Toolbar User Elevation Helper.) -- C:\Program Files\Windows Live\Toolbar\wltuser.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Internet Explorer\iexplore.exe" [Disabled] .(...) -- C:\Program Files\Internet Explorer\iexplore.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE" [Disabled] .(...) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\WINDOWS\pchealth\helpctr\binaries\HelpHost.exe" [Enabled] .(.Microsoft Corporation - Microsoft Help Center Hosting Server.) -- C:\WINDOWS\pchealth\helpctr\binaries\HelpHost.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Bureau\install_avg--674-avgfreexalla.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Bureau\install_avg--674-avgfreexalla.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Media Player\wmplayer.exe" [Enabled] .(.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Spybot - Search & Destroy\SDUpdate.exe" [Enabled] .(...) -- C:\Program Files\Spybot - Search & Destroy\SDUpdate.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\POWERPNT.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office PowerPoint.) -- C:\Program Files\Microsoft Office\Office12\POWERPNT.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\dwwin.exe" [Enabled] .(.Microsoft Corporation - Microsoft Application Error Reporting.) -- C:\WINDOWS\system32\dwwin.exe
O47 - AAKE:Key Export SP - "C:\Program Files\SFR\Kit\9props.exe" [Enabled] .(.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\SFR\Kit\9props.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Contacts\wlcomm.exe" [Enabled] .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Plugin Manager\skypePM.exe" [Enabled] .(.Skype Technologies - Skype Extras Manager.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe" [Enabled] .(.Microsoft Corporation - Microsoft Help and Support Center.) -- C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Java\jre6\bin\javaw.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Java\Java Update\jaucheck.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Update Client Checker.) -- C:\Program Files\Fichiers communs\Java\Java Update\jaucheck.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ArcCon.ac" [Enabled] .(.ArcSoft - ArcSoft Connect Notifier.) -- C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ArcCon.ac
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\is-ET2HN.tmp\ApnStub.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\is-ET2HN.tmp\ApnStub.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\AskSLib.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\AskSLib.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Ask.com\Updater\Updater.exe" [Enabled] .(...) -- C:\Program Files\Ask.com\Updater\Updater.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\AskPartnerCobrandingTool.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\{86D4B82A-ABED-442A-BE86-96357B70F4
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\mshta.exe" [Enabled] .(.Microsoft Corporation - Microsoft ® HTML Application host.) -- C:\WINDOWS\system32\mshta.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\WINWORD.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Word.) -- C:\Program Files\Microsoft Office\Office12\WINWORD.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\7zS2.tmp\avgmfapx.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\7zS2.tmp\avgmfapx.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\msiexec.exe" [Enabled] .(.Microsoft Corporation - Windows® installer.) -- C:\WINDOWS\system32\msiexec.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\7zS1A.tmp\Setup.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\7zS1A.tmp\Setup.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\HouseCall\housecall.bin" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\HouseCall\housecall.bin (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\AVAST Software\Avast\AvastUI.exe" [Enabled] .(...) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\WINDOWS\avxoscan\avxlive.exe" [Enabled] .(.Pas de propriétaire - AVX Live 20 MFC Application.) -- C:\WINDOWS\avxoscan\avxlive.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\7zS19.tmp\avgmfapx.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\7zS19.tmp\avgmfapx.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\AVAST Software\Avast\Setup\avast.setup" [Enabled] .(...) -- C:\Program Files\AVAST Software\Avast\Setup\avast.setup (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Microsoft Shared\DW\DW20.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Application Error Reporting.) -- C:\Program Files\Fichiers communs\Microsoft Shared\DW\DW20.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\7zS24.tmp\avgmfapx.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\7zS24.tmp\avgmfapx.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\7zS3.tmp\avgmfapx.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\7zS3.tmp\avgmfapx.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Picasa2\PicasaUpdater.exe" [Enabled] .(.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaUpdater.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Picasa2\Picasa3.exe" [Enabled] .(.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\Picasa3.exe
O47 - AAKE:Key Export SP - "C:\Program Files\SFR\Kit\9diags.exe" [Enabled] .(.SFR - Utilitaire de diagnostics neufbox.) -- C:\Program Files\SFR\Kit\9diags.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\7zS4.tmp\avgmfapx.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\7zS4.tmp\avgmfapx.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\All Users\Application Data\MFAData\SelfUpd\avgmfapx.exe" [Enabled] .(.AVG Technologies CZ, s.r.o..) -- C:\Documents and Settings\All Users\Application Data\MFAData\SelfUpd\avgmfapx.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [Enabled] .(.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O47 - AAKE:Key Export SP - "I:\ClamWinPortable\App\clamwin\bin\freshclam.exe" [Enabled] .(.Pas de propriétaire - ClamWin Antivirus.) -- I:\ClamWinPortable\App\clamwin\bin\freshclam.exe
O47 - AAKE:Key Export SP - "C:\Program Files\CCleaner\CCleaner.exe" [Enabled] .(.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Bureau\ClamWinPortable\App\clamwin\bin\freshclam.exe" [Enabled] .(..) -- C:\Documents and Settings\user\Bureau\ClamWinPortable\App\clamwin\bin\freshclam.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Java\Java Update\jucheck.exe" [Enabled] .(.Sun Microsystems, Inc. - Java Update Checker.) -- C:\Program Files\Fichiers communs\Java\Java Update\jucheck.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe" [Enabled] .(.Lavasoft Limited - Ad-Aware Admin Application.) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\jre-6u29-windows-i586-iftw-rv.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\jre-6u29-windows-i586-iftw-rv.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\ApnStub.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\ApnStub.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Mozilla Firefox\firefox.exe" [Enabled] .(.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Mozilla Firefox\plugin-container.exe" [Enabled] .(...) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\Macromed\Flash\FlashUtil11c_Plugin.exe" [Enabled] .(.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 11.0 r1.) -- C:\WINDOWS\system32\Macromed\Flash\FlashUtil11c_Plugin.exe
O47 - AAKE:Key Export SP - "C:\Documents and Settings\user\Local Settings\Temp\7zS7.tmp\avgmfapx.exe" [Enabled] .(...) -- C:\Documents and Settings\user\Local Settings\Temp\7zS7.tmp\avgmfapx.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Google\Chrome\Application\chrome.exe" [Disabled] .(...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" [Enabled] .(...) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Alwil Software\Avast5\Setup\avast.setup" [Enabled] .(...) -- C:\Program Files\Alwil Software\Avast5\Setup\avast.setup (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Administrateur\Local Settings\Temp\_av_sfx.tm~a01408\avast.setup" [Enabled] .(...) -- C:\Documents and Settings\Administrateur\Local Settings\Temp\_av_sfx.tm~a01408\avast.setup (.not file.)
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe
O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
~ Scan Keys in 00mn 02s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\system32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Kerberos Security Package.) -- C:\WINDOWS\system32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\system32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\WINDOWS\system32\wdigest.dll
~ Scan Keys in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.)
~ Scan CSB in 00mn 00s
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ Scan IFEO in 00mn 00s
---\\ MountPoints2 Shell Key (O51) (None)
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.)
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
~ Scan Keys in 00mn 00s
---\\ ShareTools MSconfig StartupReg (O53) (None)
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
~ Scan Keys in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1
~ Scan Keys in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.A7B8A3A79D35215D798A300DF49ED23F] - 24/11/2011 - 13:58:56 ---A- . (.Arcsoft, Inc. - Arcsoft® ASPI Shell.) -- C:\WINDOWS\system32\drivers\afc.sys [11776]
O58 - SDL:[MD5.F6AF59D6EEE5E1C304F7F73706AD11D8] - 24/11/2011 - 13:10:12 ---A- . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\system32\drivers\Ambfilt.sys [1684736]
O58 - SDL:[MD5.92A964547B96D697E5E9ED43B4297F5A] - 24/11/2011 - 11:50:20 ---A- . (.Brother Industries Ltd. - Brother USB Scanner Driver.) -- C:\WINDOWS\system32\drivers\BrScnUsb.sys [15295]
O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 24/11/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528]
O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 24/11/2011 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776]
O58 - SDL:[MD5.0AE82DC81CC6B266E92EDF78C2A0ED11] - 24/11/2011 - 03:00:52 ---A- . (...) -- C:\WINDOWS\system32\drivers\i8042prt.sys [54144]
O58 - SDL:[MD5.0F68E2EC713F132FFB19E45415B09679] - 24/11/2011 - 04:32:12 R--A- . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\system32\drivers\igxpmp32.sys [5854688]
O58 - SDL:[MD5.336ABE8721CBC3110F1C6426DA633417] - 24/11/2011 - 15:25:12 ---A- . (.Lavasoft AB - Boot Driver.) -- C:\WINDOWS\system32\drivers\Lbd.sys [64512]
O58 - SDL:[MD5.9FA7207D1B1ADEAD88AE8EED9CDBBAA5] - 24/11/2011 - 08:41:48 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\system32\drivers\Monfilt.sys [1389056]
O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 24/11/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032]
O58 - SDL:[MD5.07C02C892E8E1A72D6BF35004F0E9C5E] - 24/11/2011 - 02:13:18 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\PCASp50.sys [20096]
O58 - SDL:[MD5.509039B85C95E6E85CB7A8E3465FB702] - 24/11/2011 - 15:32:08 ---A- . (.PixArt Imaging Inc. - PFC027.) -- C:\WINDOWS\system32\drivers\PFC027.SYS [611584]
O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 24/11/2011 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792]
O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 24/11/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032]
O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 24/11/2011 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032]
O58 - SDL:[MD5.185641AD7E80BFCE0AA545D3EC79D557] - 24/11/2011 - 14:51:42 R--A- . (.Realtek Semiconductor Corporation - Realtek 10/100/1000 NDIS 5.1 Driver.) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys [115328]
O58 - SDL:[MD5.662B65EEB8D070BD1162A7B63859AFCF] - 24/11/2011 - 10:27:26 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys [4968448]
O58 - SDL:[MD5.0505DA5D357F18A5D42FC5DEDE6BC9A0] - 24/11/2011 - 15:55:43 ---A- . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\WINDOWS\system32\drivers\SBREDrv.sys [101720]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 24/11/2011 - 17:39:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.A31246180E61140AD7FF9DD7EDF1F6A1] - 24/11/2011 - 05:09:00 ---A- . (.Trend Micro Inc. - TrendMicro Common Module NoTrap Build.) -- C:\WINDOWS\system32\drivers\tmcomm.sys [200976]
O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 24/11/2011 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376]
O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 24/11/2011 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097]
O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912]
O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537]
O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146]
O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000]
O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560]
O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648]
O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424]
O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 24/11/2011 - 13:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560]
~ Scan Drivers in 00mn 07s
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC:Last File Created 14/11/2011 - 16:21:47 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\index.dat [32768]
O61 - LFC:Last File Created 15/11/2011 - 15:36:48 ---A- C:\Documents And Settings\user\Cookies\index.dat [49152]
O61 - LFC:Last File Created 15/11/2011 - 16:21:36 ---A- C:\Documents And Settings\NetworkService\Cookies\index.dat [16384]
O61 - LFC:Last File Created 15/11/2011 - 16:21:36 ---A- C:\Documents And Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat [16384]
O61 - LFC:Last File Created 15/11/2011 - 16:21:36 -SHA- C:\Documents And Settings\user\IETldCache\index.dat [262144]
O61 - LFC:Last File Created 15/11/2011 - 16:21:47 ---A- C:\Documents And Settings\Administrateur\Cookies\index.dat [32768]
O61 - LFC:Last File Created 23/11/2011 - 14:12:01 -SHA- C:\Documents And Settings\user\Application Data\Microsoft\Credentials\S-1-5-21-842925246-682003330-839522115-1004\Credentials [516]
O61 - LFC:Last File Created 23/11/2011 - 14:12:01 -SHA- C:\Documents And Settings\user\Application Data\Microsoft\Protect\S-1-5-21-842925246-682003330-839522115-1004\584c0d57-b566-4866-8805-83dbd191a654 [388]
O61 - LFC:Last File Created 23/11/2011 - 14:12:01 -SHA- C:\Documents And Settings\user\Application Data\Microsoft\Protect\S-1-5-21-842925246-682003330-839522115-1004\Preferred [24]
O61 - LFC:Last File Created 23/11/2011 - 14:12:01 -SHA- C:\Documents And Settings\user\Local Settings\Application Data\Microsoft\Credentials\S-1-5-21-842925246-682003330-839522115-1004\Credentials [2346]
O61 - LFC:Last File Created 23/11/2011 - 14:12:14 -SHA- C:\Documents And Settings\user\Local Settings\Historique\History.IE5\MSHist012011112320111124\index.dat [32768]
O61 - LFC:Last File Created 23/11/2011 - 14:19:33 ---A- C:\Documents And Settings\user\Local Settings\Temp\9TDebug.txt [19124]
O61 - LFC:Last File Created 23/11/2011 - 14:31:11 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Quarantine\redbook.sys.b48e2635b33d5f3ce18f64d568297de8.ba2268b1bed2a3da5978c43560a5e76a.aawqff [58756]
O61 - LFC:Last File Created 23/11/2011 - 14:31:11 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Statistics\1-7-00128390.lsf [2103]
O61 - LFC:Last File Created 23/11/2011 - 14:32:06 ---A- C:\Documents And Settings\user\Application Data\Mozilla\Firefox\Profiles\cpb7yi4k.default\bookmarkbackups\bookmarks-2011-11-23.json [20976]
O61 - LFC:Last File Created 23/11/2011 - 14:34:22 ---A- C:\Documents And Settings\user\Local Settings\Application Data\Mozilla\Firefox\Profiles\cpb7yi4k.default\urlclassifier3.sqlite [51105792]
O61 - LFC:Last File Created 23/11/2011 - 14:34:23 ---A- C:\Documents And Settings\user\Application Data\Mozilla\Firefox\Profiles\cpb7yi4k.default\cert8.db [196608]
O61 - LFC:Last File Created 23/11/2011 - 14:34:23 ---A- C:\Documents And Settings\user\Application Data\Mozilla\Firefox\Profiles\cpb7yi4k.default\cookies.sqlite [524288]
O61 - LFC:Last File Created 23/11/2011 - 14:34:23 ---A- C:\Documents And Settings\user\Application Data\Mozilla\Firefox\Profiles\cpb7yi4k.default\key3.db [16384]
O61 - LFC:Last File Created 23/11/2011 - 14:34:23 ---A- C:\Documents And Settings\user\Application Data\Mozilla\Firefox\Profiles\cpb7yi4k.default\localstore.rdf [13082]
O61 - LFC:Last File Created 23/11/2011 - 14:34:23 ---A- C:\Documents And Settings\user\Application Data\Mozilla\Firefox\Profiles\cpb7yi4k.default\prefs.js [37899]
O61 - LFC:Last File Created 23/11/2011 - 14:34:23 ---A- C:\Documents And Settings\user\Local Settings\Application Data\Mozilla\Firefox\Profiles\cpb7yi4k.default\OfflineCache\index.sqlite [11264]
O61 - LFC:Last File Created 23/11/2011 - 14:39:28 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\MiniMessage\3 [132]
O61 - LFC:Last File Created 23/11/2011 - 14:45:36 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Quarantine\AAWService.exe.a46b34dea5cc38dcac3903abc1d77d0.1a6adee6c16daa8cc4294a77da91575.aawqff [2152164]
O61 - LFC:Last File Created 23/11/2011 - 14:45:39 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Defs\Extended\SBFC.dat [1302]
O61 - LFC:Last File Created 23/11/2011 - 14:45:41 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Statistics\1-7-001FC3B6.lsf [2224]
O61 - LFC:Last File Created 23/11/2011 - 15:36:40 ---A- C:\Documents And Settings\user\Mes documents\spider.sav [572]
O61 - LFC:Last File Created 23/11/2011 - 15:37:50 ---A- C:\Documents And Settings\user\Recent\1log1.txt.lnk [456]
O61 - LFC:Last File Created 23/11/2011 - 15:39:00 --HA- C:\Documents And Settings\user\Local Settings\Application Data\IconCache.db [4240656]
O61 - LFC:Last File Created 23/11/2011 - 15:39:04 --HA- C:\Documents And Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [1024]
O61 - LFC:Last File Created 24/11/2011 - 15:39:04 ---A- C:\Documents And Settings\user\ntuser.dat [10747904]
O61 - LFC:Last File Created 24/11/2011 - 15:39:06 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\rp_rules.dat [875]
O61 - LFC:Last File Created 24/11/2011 - 15:39:06 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\rp_stats.dat [1629]
O61 - LFC:Last File Created 24/11/2011 - 15:39:07 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\quarantine.dat [7496]
O61 - LFC:Last File Created 24/11/2011 - 15:39:07 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\whitelist.dat [9]
O61 - LFC:Last File Created 24/11/2011 - 15:39:11 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\rc.dat [9]
O61 - LFC:Last File Created 24/11/2011 - 16:21:43 --HA- C:\Documents And Settings\user\ntuser.dat.LOG [1024]
O61 - LFC:Last File Created 24/11/2011 - 16:21:47 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Statistics\3-0-0000F55C.lsf [10003]
O61 - LFC:Last File Created 24/11/2011 - 16:21:47 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\usage_statistics.dat [9]
O61 - LFC:Last File Created 24/11/2011 - 16:21:47 -SHA- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012011111420111121\index.dat [32768]
O61 - LFC:Last File Created 24/11/2011 - 16:21:47 -SHA- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012011112420111125\index.dat [32768]
O61 - LFC:Last File Created 24/11/2011 - 16:21:52 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\License\guid.dat [72]
O61 - LFC:Last File Created 24/11/2011 - 16:22:40 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Quarantine\AAWQF20111124162240.aawqif [2242]
O61 - LFC:Last File Created 24/11/2011 - 16:22:44 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Backup\backup.dat [614]
O61 - LFC:Last File Created 24/11/2011 - 16:22:44 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\Backup\userinit.exe.117c65cb6109b4a65a5f9bcc2027c463.e74ddb12188c2ff57a78624dbf7332fc.aawbackup [26628]
O61 - LFC:Last File Created 24/11/2011 - 16:22:45 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\settings.dat [82313]
O61 - LFC:Last File Created 24/11/2011 - 16:22:45 ---A- C:\Documents And Settings\All Users\Application Data\Lavasoft\Ad-Aware\statistics.dat [1486643]
O61 - LFC:Last File Created 24/11/2011 - 16:23:05 ---A- C:\Documents And Settings\Administrateur\Recent\Win32 agent mpq - Forums Zebulon.fr.htm.lnk [364]
O61 - LFC:Last File Created 24/11/2011 - 16:23:06 ---A- C:\Documents And Settings\Administrateur\Recent\USB DISK (I).lnk [187]
O61 - LFC:Last File Created 24/11/2011 - 16:23:07 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\places.sqlite-shm [32768]
O61 - LFC:Last File Created 24/11/2011 - 16:23:08 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\mimeTypes.rdf [3225]
O61 - LFC:Last File Created 24/11/2011 - 16:23:09 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\pluginreg.dat [7851]
O61 - LFC:Last File Created 24/11/2011 - 16:23:10 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\cookies.sqlite [524288]
O61 - LFC:Last File Created 24/11/2011 - 16:23:10 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\cookies.sqlite-shm [32768]
O61 - LFC:Last File Created 24/11/2011 - 16:23:10 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\cookies.sqlite-wal [590288]
O61 - LFC:Last File Created 24/11/2011 - 16:23:58 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\prefs.js [4133]
O61 - LFC:Last File Created 24/11/2011 - 16:23:59 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\places.sqlite [10485760]
O61 - LFC:Last File Created 24/11/2011 - 16:23:59 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\places.sqlite-wal [557496]
O61 - LFC:Last File Created 24/11/2011 - 16:24:13 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\v0v2vqug.default\sessionstore.js [3152]
O61 - LFC:Last File Created 24/11/2011 - 16:25:01 ---A- C:\Documents And Settings\All Users\Bureau\MBRCheck.lnk [673]
O61 - LFC:Last File Created 24/11/2011 - 16:25:01 ---A- C:\Documents And Settings\All Users\Bureau\ZHPDiag.lnk [666]
O61 - LFC:Last File Created 24/11/2011 - 16:25:01 ---A- C:\Documents And Settings\All Users\Bureau\ZHPFix.lnk [661]
O61 - LFC:Last File Created 24/11/2011 - 16:25:01 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\ZHP\ZHPDiag.lnk [489]
~ Scan Files in 02mn 26s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis
O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ Scan ADS in 00mn 00s
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - ??/??/???? - C:\WINDOWS\system32\drivers\afd.sys (.not file.) - AFD (AFD) .(...) - LEGACY_AFD
O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\drivers\dmboot.sys - dmboot(dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT
O64 - Services: CurCS - 02/03/2006 - C:\WINDOWS\system32\drivers\dmload.sys - dmload(dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD
O64 - Services: CurCS - ??/??/???? - H:\INSTALL\GMSIPCI.sys (.not file.) - GMSIPCI (GMSIPCI) .(...) - LEGACY_GMSIPCI
O64 - Services: CurCS - 15/11/2011 - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate)(gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE
O64 - Services: CurCS - 04/01/2007 - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Updater Service(gusvc) .(.Google - gusvc.) - LEGACY_GUSVC
O64 - Services: CurCS - ??/??/???? - C:\Program Files\Java\jre6\bin\jqs.exe (.not file.) - Java Quick Starter (JavaQuickStarterService) .(...) - LEGACY_JAVAQUICKSTARTERSERVICE
O64 - Services: CurCS - 18/08/2011 - C:\WINDOWS\system32\DRIVERS\Lbd.sys - Lbd(Lbd) .(.Lavasoft AB - Boot Driver.) - LEGACY_LBD
O64 - Services: CurCS - ??/??/???? - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (.not file.) - LightScribeService Direct Disc Labeling Service (LightScribeService) .(...) - LEGACY_LIGHTSCRIBESERVICE
O64 - Services: CurCS - ??/??/???? - C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe (.not file.) - Machine Debug Manager (MDM) .(...) - LEGACY_MDM
O64 - Services: CurCS - ??/??/???? - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (.not file.) - NMIndexingService (NMIndexingService) .(...) - LEGACY_NMINDEXINGSERVICE
O64 - Services: CurCS - ??/??/???? - C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.exe (.not file.) - Office Source Engine (ose) .(...) - LEGACY_OSE
O64 - Services: CurCS - ??/??/???? - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (.not file.) - SeaPort (SeaPort) .(...) - LEGACY_SEAPORT
~ Scan Services in 00mn 02s
---\\ Liste des fichiers non signés (O65) (None)
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
~ Scan Keys in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe
~ Scan Keys in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (Customized Search) - Rechercher Web
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (AVG Secure Search) - iGeared – A Community Toolbar for Smart Webmasters
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (Customized Search) - Rechercher Web
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (AVG Secure Search) - iGeared – A Community Toolbar for Smart Webmasters
~ Scan Keys in 00mn 00s
---\\ Crack & Keygen Files (O82)
C:\Microgaming\Casino\BJBallroom\local\fr\clariondescriptions\txt_desc_crackerjack1.dat
C:\Microgaming\Casino\CasinoShare\local\en\clariondescriptions\txt_desc_crackerjack1.dat
C:\Microgaming\Casino\RoyalVegas\local\fr\clariondescriptions\txt_desc_crackerjack1.dat
C:\Microgaming\Casino\BJBallroom\local\fr\clariondescriptions\txt_desc_crackerjack1.dat
C:\Microgaming\Casino\CasinoShare\local\en\clariondescriptions\txt_desc_crackerjack1.dat
C:\Microgaming\Casino\RoyalVegas\local\fr\clariondescriptions\txt_desc_crackerjack1.dat
~ Scan Files in 00mn 53s
---\\ Recherche des services démarrés par Svchost (O83)
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (...) -- C:\WINDOWS\System32\appmgmts.dll [0]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\System32\audiosrv.dll [42496]
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [77824]
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\System32\cryptsvc.dll [62464]
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\System32\dmserver.dll [24576]
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\System32\dhcpcsvc.dll [127488]
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\System32\ersvc.dll [23040]
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - Pas de description.) -- C:\WINDOWS\system32\es.dll [253952]
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [135680]
O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\System32\hidserv.dll [21504]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\System32\srvsvc.dll [99840]
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\System32\wkssvc.dll [132096]
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\System32\msgsvc.dll [33792]
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\System32\netman.dll [198144]
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\System32\mswsock.dll [247808]
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [88576]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [186368]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\System32\mprdim.dll [53248]
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560]
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\WINDOWS\System32\seclogon.dll [18944]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\WINDOWS\System32\ipnathlp.dll [332800]
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\WINDOWS\System32\tapisrv.dll [249856]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [135680]
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112]
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176]
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\System32\wzcsvc.dll [483840]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [145408]
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896]
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\System32\xmlprov.dll [129024]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\WINDOWS\system32\qmgr.dll [409088]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [135680]
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400]
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [27136]
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\System32\qagentrt.dll [293376]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\System32\kmsvc.dll [61440]
~ Scan Services in 00mn 00s
---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.77D31FB654A53DBFB151C7A8E11E3A02] [sPRF][17/07/2009] (.Adobe Systems Incorporated - Adobe® Flash® Player ActiveX Installer.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [1962160]
[MD5.D4B7A651CB12B6C1A4FEB9FB5115CFE7] [sPRF][12/07/2000] (...) -- C:\WINDOWS\Downloaded Program Files\fxfileop.dll [36864]
[MD5.8945CCA5FC4F25168E8B6F401EFAF51F] [sPRF][22/02/2007] (.Microsoft Corporation - Zone.com Stats Client for MSN Messenger.) -- C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll [304544]
[MD5.81093A8A1719E11B22B586E10BFDC523] [sPRF][31/10/2001] (...) -- C:\WINDOWS\Downloaded Program Files\uninst.bat [118]
~ Scan Files in 00mn 01s
---\\ Scan Additionnel (O88)
Database Version : 8854 - (22/11/2011)
Clés trouvées (Keys found) : 66
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0
[HKLM\Software\Classes\AppID\TbCommonUtils.DLL] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\TbHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\OfferBox Browser] =>PUP.OfferBox
[HKLM\Software\Classes\TbCommonUtils.CommonUtils] =>Toolbar.Agent
[HKLM\Software\Classes\TbCommonUtils.CommonUtils.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbDownloadManager] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbDownloadManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbPropertyManager] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbPropertyManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbRequest] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbRequest.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbTask] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbTask.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.ToolbarHelper] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.ToolbarHelper.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.CT2612669] =>Adware.Hotbar
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SearchProviderManager] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SearchProviderManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook] =>Toolbar.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook] =>Adware.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1] =>Adware.Agent
[HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{08858AF6-42AD-4914-95D2-AC3AB0DC8E28}] =>Adware.MyWebSearch
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}] =>Adware.MyWebSearch
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}] =>Hijacker.Seeearch
[HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}] =>Hijacker.Seeearch
[HKLM\Software\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware. BullseyeToolbar
[HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}] =>Adware.SocialSkinz
[HKLM\Software\freeze.com] =>Adware.BHO
[HKLM\Software\OfferBox] =>PUP.OfferBox
~ Scan Additionnel in 00mn 07s
---\\ Recherche détournement de DNS routeur (O89)
Serveur : UnKnown
Address: 127.0.0.1
~ Scan DNS in 00mn 00s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 0 | C:\WINDOWS\3965975199:1610980371.exe (9ffa63ec) . (...) - C:\WINDOWS\3965975199:1610980371.exe
SS - | Auto 0 | (avast! Antivirus) . (...) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SS - | Demand 0 | (avast! Mail Scanner) . (...) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SS - | Demand 0 | (avast! Web Scanner) . (...) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
SS - | Demand 24/11/2011 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Auto 24/11/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 24/11/2011 136120 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Auto 0 | (JavaQuickStarterService) . (...) - C:\Program Files\Java\jre6\bin\jqs.exe
SR - | Auto 24/11/2011 2152152 | (Lavasoft Ad-Aware Service) . (.Lavasoft Limited.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
SS - | Auto 0 | (LightScribeService) . (...) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
SS - | Auto 0 | (MDM) . (...) - C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
SS - | Demand 0 | (NMIndexingService) . (...) - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
SS - | Demand 0 | (ose) . (...) - C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.exe
SS - | Auto 0 | (SeaPort) . (...) - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
~ Scan Services in 00mn 00s
---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover
Run by Administrateur at 24/11/2011 16:33:45
device: opened successfully
user: MBR read successfully
Disk trace:
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys
1 nt!IofCallDriver[0x804E13B9] -> \Device\Harddisk0\DR0[0x86F7BAB8]
3 CLASSPNP[0xF750CFD7] -> nt!IofCallDriver[0x804E13B9] -> \Device\00000062[0x86FA5410]
5 ACPI[0xF7482620] -> nt!IofCallDriver[0x804E13B9] -> \Device\Ide\IdeDeviceP3T0L0-10[0x86F6C940]
kernel: MBR read successfully
user & kernel MBR OK
~ Scan MBR in 00mn 02s
---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Administrateur at 24/11/2011 16:33:47
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 04s
End of the scan (1447 lines in 06mn 06s)(6)
