Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Infection ??? a vous de me le dire

yoyothebest

Par yoyothebest
dans Analyses et éradication malwares

 Partager

Messages recommandés

yoyothebest Extrem Member

yoyothebest

Posté(e)
Posté(e) (modifié)

Bonjour,

j'utilise réguliérement zb help process, et sur les deux dernières versions il m'annonce des infections sur des analyses de ZHPDiag sur :

"

O44 - LFC:Last File Created 16/07/2009 - 17:16:54 ---A- C:\WINDOWS\System32\tmp.reg

O44 - LFC:Last File Created 16/07/2009 - 17:16:54 ---A- C:\WINDOWS\System32\tmp.txt

O61 - LFC:Last File Created 17/07/2009 - 09:09:05 ---A- C:\Documents And Settings\Administrateur\Application Data\uTorrent\settings.dat.old

O61 - LFC:Last File Created 17/07/2009 - 09:39:05 ---A- C:\Documents And Settings\Administrateur\Application Data\uTorrent\settings.dat

"

 

Après une anlyse d'antivir, MBA, Bitdefender et SmitfraudFix je ne trouve rien

est ce que vous voyez quelque chose ???? Merci

"

Rapport de ZHPDiag v1.23.15 par Nicolas Coolman

Enregistré le 17/07/2009 10:47:39

Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

Platform : Microsoft Windows XP (5.1.2600) Service Pack 3

MSIE: Internet Explorer v8.0.6001.18702

MFIE: Mozilla Firefox (3.5.1)

 

---\\ Processus lancés

C:\WINDOWS\system32\sw20.exe

C:\WINDOWS\system32\sw24.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Comodo\Firewall\CPF.exe

C:\Program Files\Hercules\Hercules Dualpix Chat and Show\Camservice.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Comodo\Firewall\cmdagent.exe

C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe

C:\WINDOWS\system32\services.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

 

---\\ Pages de démarrage d'Internet Explorer (R0)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

 

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

 

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

 

---\\ Applications démarrées automatiquement par le registre (O4)

O4 - HKLM\..\Run: [sW20] C:\WINDOWS\system32\sw20.exe

O4 - HKLM\..\Run: [sW24] C:\WINDOWS\system32\sw24.exe

O4 - HKLM\..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [COMODO Firewall Pro] C:\Program Files\Comodo\Firewall\CPF.exe" /background

O4 - HKLM\..\Run: [CamserviceHD] C:\Program Files\Hercules\Hercules Dualpix Chat and Show\Camservice.exe /startup

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKLM\..\policies\Explorer: [HonorAutoRunSetting] Data=1

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE

O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm

O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm

O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm

O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll,309

O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll,201

O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO

O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe,302

 

---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)

O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.google.fr

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: Microsoft XML Parser for Java (Microsoft XML Parser for Java) - file://C:\WINDOWS\Java\classes\xmldso.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1242326128125

O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1247428423109

O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab

O16 - DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} (Office Update Installation Engine) - http://office.microsoft.com/officeupdate/content/opuc4.cab

 

---\\ Protocole additionnel et piratage de protocole (O18)

O18 - cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll

O18 - dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll

O18 - gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll

O18 - mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll

O18 - mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~1\FICHIE~1\MICROS~1\WEBCOM~1\10\OWC10.DLL

O18 - mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\FICHIE~1\MICROS~1\WEBCOM~1\11\OWC11.DLL

O18 - sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll

O18 - tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll

O18 - wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll

O18 - Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll

O18 - text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\SHELL32.dll

O18 - text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.DLL

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: dimsntfy - C:\WINDOWS\System32\%SystemRoot%\System32\dimsntfy.dll

O20 - Winlogon Notify: LBTWlgn - c:\program files\fichiers communs\logishrd\bluetooth\LBTWlgn.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\System32\WgaLogon.dll

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

 

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Comodo Application Agent (CmdAgent) - C:\Program Files\Comodo\Firewall\cmdagent.exe

O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf

O23 - Service: NVIDIA Display Driver Service (NVSvc) - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Spouleur d'impression (Spooler) - C:\WINDOWS\system32\spoolsv.exe

O23 - Service: StarWind iSCSI Service (StarWindService) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GlaryInitialize.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{265FA29B-342E-4316-8F5C-C86B5EAC5ABE}.job

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Mise à jour de la version d’Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe

O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP

O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig

O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

O40 - ASIC: Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - C:\WINDOWS\system32\shmgrate.exe OCInstallUserConfigOE

O40 - ASIC: Microsoft VM - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - (not file)

O40 - ASIC: Rendu VML (Vector Graphics Rendering) - {10072CEC-8CC1-11D1-986E-00A0C955B42F} - (not file)

O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - C:\WINDOWS\system32\wmpdxm.dll

O40 - ASIC: Microsoft Windows Media Player 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\system32\wmpdxm.dll

O40 - ASIC: DirectAnimation - {283807B5-2C60-11D0-A31D-00AA00B92C03} - (not file)

O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\WINDOWS\system32\regsvr32.exe /s /n /i:/UserInstall C:\WINDOWS\system32\themeui.dll

O40 - ASIC: Liaison de données Dynamic HTML pour Java - {36f8ec70-c29a-11d1-b5c7-0000f8051515} - (not file)

O40 - ASIC: Offline Browsing Pack - {3af36230-a269-11d1-b5bf-0000f8051515} - (not file)

O40 - ASIC: Uniscribe - {3bf42070-b3b1-11d1-b5c5-0000f8051515} - (not file)

O40 - ASIC: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) - {411EDCF7-755D-414E-A74B-3DCD6583F589} - (not file)

O40 - ASIC: Création avancée - {4278c270-a269-11d1-b5bf-0000f8051515} - (not file)

O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install

O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT

O40 - ASIC: DirectShow - {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - (not file)

O40 - ASIC: DirectDrawEx - {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - (not file)

O40 - ASIC: Internet Explorer Help - {45ea75a0-a269-11d1-b5bf-0000f8051515} - (not file)

O40 - ASIC: Classes Java DirectAnimation - {4f216970-c90c-11d1-b5c7-0000f8051515} - (not file)

O40 - ASIC: Microsoft Windows Script 5.6 - {4f645220-306d-11d2-995d-00c04f98bbc9} - (not file)

O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser

O40 - ASIC: Internet Explorer Setup Tools - {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - (not file)

O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} - (not file)

O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub

O40 - ASIC: MSN Site Access - {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - (not file)

O40 - ASIC: .NET Framework - {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - (not file)

O40 - ASIC: .NET Framework - {72AD53CC-CCC0-3757-8480-9EE176866A7C} - (not file)

O40 - ASIC: Dossiers Web - {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - (not file)

O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install

O40 - ASIC: Mise à jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll

O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings

O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install

O40 - ASIC: Microsoft .NET Framework 1.1 Hotfix (KB928366) - {8D1D0E9A-C799-4D28-9E29-0061D1E66E43} - (not file)

O40 - ASIC: Dynamic HTML Data Binding - {9381D8F2-0288-11D0-9501-00AA00B911A5} - (not file)

O40 - ASIC: .NET Framework - {9A394342-4A68-4EBA-85A6-55B559F4E700} - (not file)

O40 - ASIC: .NET Framework - {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - (not file)

O40 - ASIC: Internet Explorer Core Fonts - {C9E9A340-D1F1-11D0-821E-444553540600} - (not file)

O40 - ASIC: .NET Framework - {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - (not file)

O40 - ASIC: Planificateur de tâches - {CC2A9BA0-3BDD-11D0-821E-444553540000} - (not file)

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} - C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx

O40 - ASIC: HTML Help - {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - (not file)

O40 - ASIC: Active Directory Service Interface - {E92B03AB-B707-11d2-9CBD-0000F87A369E} - (not file)

O40 - ASIC: RootsUpdate - {EF289A85-8E57-408d-BE47-73B55609861A} - (not file)

O40 - ASIC: .NET Framework - {F196AC50-7C95-42E1-9947-BDAB18BF3C8C} - (not file)

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: Suppresseur d'écho acoustique (Noyau Microsoft) (aec) - C:\WINDOWS\system32\drivers\aec.sys

O41 - Driver: (no object) (Ambfilt) - C:\WINDOWS\system32\drivers\Ambfilt.sys

O41 - Driver: Protocole client ARP 1394 (Arp1394) - C:\WINDOWS\system32\DRIVERS\arp1394.sys

O41 - Driver: Pilote de média asynchrone RAS (AsyncMac) - C:\WINDOWS\system32\DRIVERS\asyncmac.sys

O41 - Driver: Protocole client ATM ARP (Atmarpc) - C:\WINDOWS\system32\DRIVERS\atmarpc.sys

O41 - Driver: Pilote audio Stub (audstub) - C:\WINDOWS\system32\DRIVERS\audstub.sys

O41 - Driver: avgio (avgio) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys

O41 - Driver: avgntflt (avgntflt) - C:\WINDOWS\system32\DRIVERS\avgntflt.sys

O41 - Driver: avipbb (avipbb) - C:\WINDOWS\system32\DRIVERS\avipbb.sys

O41 - Driver: Hercules Filter Driver (camfilt2) - C:\WINDOWS\System32\Drivers\camfilt2.sys

O41 - Driver: Décodeur sous-titre fermé (CCDECODE) - C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

O41 - Driver: cpuz132 (cpuz132) - C:\WINDOWS\system32\drivers\cpuz132_x32.sys

O41 - Driver: (no object) (dmboot) - C:\WINDOWS\System32\drivers\dmboot.sys

O41 - Driver: Pilote de Gestionnaire de disque logique (dmio) - C:\WINDOWS\System32\drivers\dmio.sys

O41 - Driver: (no object) (dmload) - C:\WINDOWS\System32\drivers\dmload.sys

O41 - Driver: Synthétiseur DLS du noyau Microsoft (DMusic) - C:\WINDOWS\system32\drivers\DMusic.sys

O41 - Driver: Filtre de décodeur DRM (Noyau Microsoft) (drmkaud) - C:\WINDOWS\system32\drivers\drmkaud.sys

O41 - Driver: FltMgr (FltMgr) - C:\WINDOWS\system32\drivers\fltmgr.sys

O41 - Driver: giveio (giveio) - C:\WINDOWS\system32\giveio.sys

O41 - Driver: GMSIPCI (GMSIPCI) - N:\INSTALL\GMSIPCI.SYS

O41 - Driver: Classificateur de paquets générique (Gpc) - C:\WINDOWS\system32\DRIVERS\msgpc.sys

O41 - Driver: Pilote de bus Microsoft UAA pour High Definition Audio (HDAudBus) - C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

O41 - Driver: Pilote de classe HID Microsoft (hidusb) - C:\WINDOWS\system32\DRIVERS\hidusb.sys

O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys

O41 - Driver: Service for Realtek HD Audio (WDM) (IntcAzAudAddService) - C:\WINDOWS\system32\drivers\RtkHDAud.sys

O41 - Driver: Pilote de processeur Intel (intelppm) - C:\WINDOWS\system32\DRIVERS\intelppm.sys

O41 - Driver: Pilote du pare-feu Windows IPv6 (Ip6Fw) - C:\WINDOWS\system32\drivers\ip6fw.sys

O41 - Driver: Pilote de filtre de trafic IP (IpFilterDriver) - C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

O41 - Driver: Pilote de tunnelage IP dans IP (IpInIp) - C:\WINDOWS\system32\DRIVERS\ipinip.sys

O41 - Driver: Pilote IPSEC (IPSec) - C:\WINDOWS\system32\DRIVERS\ipsec.sys

O41 - Driver: Service énumérateur IR (IRENUM) - C:\WINDOWS\system32\DRIVERS\irenum.sys

O41 - Driver: Mélangeur audio Wave de noyau Microsoft (kmixer) - C:\WINDOWS\system32\drivers\kmixer.sys

O41 - Driver: Logitech SetPoint Keyboard Driver (L8042Kbd) - C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys

O41 - Driver: SetPoint PS/2 Mouse Filter Driver (L8042mou) - C:\WINDOWS\system32\DRIVERS\L8042mou.Sys

O41 - Driver: LBeepKE (LBeepKE) - C:\WINDOWS\System32\Drivers\LBeepKE.sys

O41 - Driver: Logitech SetPoint KMDF HID Filter Driver (LHidFilt) - C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys

O41 - Driver: Logitech SetPoint KMDF Mouse Filter Driver (LMouFilt) - C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys

O41 - Driver: SetPoint Mouse Filter Driver (LMouKE) - C:\WINDOWS\system32\DRIVERS\LMouKE.Sys

O41 - Driver: Logitech SetPoint KMDF USB Filter (LUsbFilt) - C:\WINDOWS\System32\Drivers\LUsbFilt.Sys

O41 - Driver: (no object) (Monfilt) - C:\WINDOWS\system32\drivers\Monfilt.sys

O41 - Driver: Pilote HID de souris (mouhid) - C:\WINDOWS\system32\DRIVERS\mouhid.sys

O41 - Driver: Redirecteur client WebDav (MRxDAV) - C:\WINDOWS\system32\DRIVERS\mrxdav.sys

O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

O41 - Driver: Proxy de service de répartition Microsoft (MSKSSRV) - C:\WINDOWS\system32\drivers\MSKSSRV.sys

O41 - Driver: Proxy d'horloge de répartition Microsoft (MSPCLOCK) - C:\WINDOWS\system32\drivers\MSPCLOCK.sys

O41 - Driver: Proxy de gestion de qualité de répartition Microsoft (MSPQM) - C:\WINDOWS\system32\drivers\MSPQM.sys

O41 - Driver: Pilote BIOS de gestion de systèmes Microsoft (mssmbios) - C:\WINDOWS\system32\DRIVERS\mssmbios.sys

O41 - Driver: Convertisseur en T/site-à-site de répartition Microsoft (MSTEE) - C:\WINDOWS\system32\drivers\MSTEE.sys

O41 - Driver: Codec NABTS/FEC VBI (NABTSFEC) - C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

O41 - Driver: Connection TV/vidéo Microsoft (NdisIP) - C:\WINDOWS\system32\DRIVERS\NdisIP.sys

O41 - Driver: Pilote TAPI NDIS d'accès distant (NdisTapi) - C:\WINDOWS\system32\DRIVERS\ndistapi.sys

O41 - Driver: NDIS mode utilisateur E/S Protocole (Ndisuio) - C:\WINDOWS\system32\DRIVERS\ndisuio.sys

O41 - Driver: Pilote réseau étendu NDIS d'accès distant (NdisWan) - C:\WINDOWS\system32\DRIVERS\ndiswan.sys

O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys

O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\system32\DRIVERS\netbt.sys

O41 - Driver: Pilote réseau 1394 (NIC1394) - C:\WINDOWS\system32\DRIVERS\nic1394.sys

O41 - Driver: (no object) (nv) - C:\WINDOWS\system32\DRIVERS\nv4_mini.sys

O41 - Driver: (no object) (nvata) - C:\WINDOWS\system32\DRIVERS\nvata.sys

O41 - Driver: NVIDIA nForce Networking Controller Driver (NVENETFD) - C:\WINDOWS\system32\DRIVERS\NVENETFD.sys

O41 - Driver: NVIDIA Network Bus Enumerator (nvnetbus) - C:\WINDOWS\system32\DRIVERS\nvnetbus.sys

O41 - Driver: Pilote de filtre de trafic IPX (NwlnkFlt) - C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

O41 - Driver: Pilote de transfert de trafic IPX (NwlnkFwd) - C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

O41 - Driver: Contrôleur hôte compatible IEE 1394 VIA OHCI (ohci1394) - C:\WINDOWS\system32\DRIVERS\ohci1394.sys

O41 - Driver: VSO Software pcouffin (pcouffin) - C:\WINDOWS\System32\Drivers\pcouffin.sys

O41 - Driver: Miniport réseau étendu (PPTP) (PptpMiniport) - C:\WINDOWS\system32\DRIVERS\raspptp.sys

O41 - Driver: Planificateur de paquets QoS (PSched) - C:\WINDOWS\system32\DRIVERS\psched.sys

O41 - Driver: Pilote de liaison parallèle directe (Ptilink) - C:\WINDOWS\system32\DRIVERS\ptilink.sys

O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\system32\DRIVERS\rasacd.sys

O41 - Driver: Miniport réseau étendu (L2TP) (Rasl2tp) - C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

O41 - Driver: Pilote PPPOE d'accès à distance (RasPppoe) - C:\WINDOWS\system32\DRIVERS\raspppoe.sys

O41 - Driver: Parallèle direct (Raspti) - C:\WINDOWS\system32\DRIVERS\raspti.sys

O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\system32\DRIVERS\rdbss.sys

O41 - Driver: Pilote de redirecteur de périphérique Terminal Server (rdpdr) - C:\WINDOWS\system32\DRIVERS\rdpdr.sys

O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\system32\DRIVERS\redbook.sys

O41 - Driver: Secdrv (Secdrv) - C:\WINDOWS\system32\DRIVERS\secdrv.sys

O41 - Driver: Pilote de filtre Serenum (serenum) - C:\WINDOWS\system32\DRIVERS\serenum.sys

O41 - Driver: Détrameur décalage BDA (SLIP) - C:\WINDOWS\system32\DRIVERS\SLIP.sys

O41 - Driver: Splitter audio du noyau Microsoft (splitter) - C:\WINDOWS\system32\drivers\splitter.sys

O41 - Driver: (no object) (sptd) - C:\WINDOWS\System32\Drivers\sptd.sys

O41 - Driver: Pilote de filtre de restauration système (sr) - C:\WINDOWS\system32\DRIVERS\sr.sys

O41 - Driver: Srv (Srv) - C:\WINDOWS\system32\DRIVERS\srv.sys

O41 - Driver: ssmdrv (ssmdrv) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys

O41 - Driver: BDA IPSink (streamip) - C:\WINDOWS\system32\DRIVERS\StreamIP.sys

O41 - Driver: Pilote de bus logiciel (swenum) - C:\WINDOWS\system32\DRIVERS\swenum.sys

O41 - Driver: Synthétiseur de table de sons GC noyau Microsoft (swmidi) - C:\WINDOWS\system32\drivers\swmidi.sys

O41 - Driver: Périphérique audio système du noyau Microsoft (sysaudio) - C:\WINDOWS\system32\drivers\sysaudio.sys

O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\system32\DRIVERS\tcpip.sys

O41 - Driver: Pilote de mise à jour microcode (Update) - C:\WINDOWS\system32\DRIVERS\update.sys

O41 - Driver: Pilote USB audio (WDM) (usbaudio) - C:\WINDOWS\system32\drivers\usbaudio.sys

O41 - Driver: Pilote parent générique USB Microsoft (usbccgp) - C:\WINDOWS\system32\DRIVERS\usbccgp.sys

O41 - Driver: Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0 (usbehci) - C:\WINDOWS\system32\DRIVERS\usbehci.sys

O41 - Driver: Concentrateur USB2 (usbhub) - C:\WINDOWS\system32\DRIVERS\usbhub.sys

O41 - Driver: Pilote miniport de contrôleur hôte ouvert USB Microsoft (usbohci) - C:\WINDOWS\system32\DRIVERS\usbohci.sys

O41 - Driver: Classe d'imprimantes USB Microsoft (usbprint) - C:\WINDOWS\system32\DRIVERS\usbprint.sys

O41 - Driver: Pilote de scanneur USB (usbscan) - C:\WINDOWS\system32\DRIVERS\usbscan.sys

O41 - Driver: Pilote de stockage de masse USB (usbstor) - C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

O41 - Driver: USB Video Device (WDM) (usbvideo) - C:\WINDOWS\System32\Drivers\usbvideo.sys

O41 - Driver: Pilote ARP IP d'accès distant (Wanarp) - C:\WINDOWS\system32\DRIVERS\wanarp.sys

O41 - Driver: Wdf01000 (Wdf01000) - C:\WINDOWS\system32\DRIVERS\Wdf01000.sys

O41 - Driver: Pilote WINMM de compatibilité audio WDM Microsoft (wdmaud) - C:\WINDOWS\system32\drivers\wdmaud.sys

O41 - Driver: WpdUsb (WpdUsb) - C:\WINDOWS\System32\Drivers\wpdusb.sys

O41 - Driver: Codec Teletext standard (WSTCODEC) - C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

O41 - Driver: Windows Driver Foundation - User-mode Driver Framework Platform Driver (WudfPf) - C:\WINDOWS\system32\DRIVERS\WudfPf.sys

O41 - Driver: Windows Driver Foundation - User-mode Driver Framework Reflector (WudfRd) - C:\WINDOWS\system32\DRIVERS\wudfrd.sys

 

---\\ Logiciels installés (O42)

O42 - Logiciel: 7-Zip 4.65

O42 - Logiciel: AIMP2

O42 - Logiciel: AVIcodec (remove only)

O42 - Logiciel: Adobe Flash Player 10 ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin

O42 - Logiciel: Adobe Shockwave Player 11.5

O42 - Logiciel: Ant Movie Catalog

O42 - Logiciel: Archiveur WinRAR

O42 - Logiciel: Aspell French Dictionary-0.50-3

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus

O42 - Logiciel: Bibliothèques GTK+ 2.14.7 rev a (supprimer uniquement)

O42 - Logiciel: Bit Che

O42 - Logiciel: CCleaner (remove only)

O42 - Logiciel: CDBurnerXP

O42 - Logiciel: CDDRV_Installer

O42 - Logiciel: COMODO Firewall Pro

O42 - Logiciel: CPUID HWMonitor 1.14

O42 - Logiciel: CanoScan Toolbox 4.0

O42 - Logiciel: Cobian Backup 9

O42 - Logiciel: DVD Flick 1.3.0.6

O42 - Logiciel: DVDFab Platinum 4.1.2.0

O42 - Logiciel: DivX Web Player

O42 - Logiciel: EPSON Logiciel imprimante

O42 - Logiciel: Eye On Network (désinstallation)

O42 - Logiciel: FileZilla Client 3.2.6.1

O42 - Logiciel: Free Download Manager 3.0

O42 - Logiciel: Glary Utilities 2.13.0.689

O42 - Logiciel: Hercules Dualpix Chat and Show

O42 - Logiciel: HijackThis 2.0.2

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

O42 - Logiciel: Hotfix for Windows XP (KB954550-v5)

O42 - Logiciel: IE7Pro

O42 - Logiciel: Java 6 Update 14

O42 - Logiciel: K-Lite Mega Codec Pack 5.0.0

O42 - Logiciel: KhalInstallWrapper

O42 - Logiciel: Kubuntu

O42 - Logiciel: Lecteur Windows Media 11

O42 - Logiciel: Logitech SetPoint

O42 - Logiciel: Malwarebytes' Anti-Malware

O42 - Logiciel: Microsoft .NET Framework 1.1

O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack

O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB928366)

O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2

O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - FRA

O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2

O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - FRA

O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft Office Professional Edition 2003

O42 - Logiciel: Microsoft Silverlight

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra

O42 - Logiciel: Mozilla Firefox (3.5.1)

O42 - Logiciel: Mozilla Thunderbird (2.0.0.22)

O42 - Logiciel: NVIDIA Drivers

O42 - Logiciel: NVIDIA PhysX

O42 - Logiciel: Nero 6 Ultra Edition

O42 - Logiciel: PDFCreator

O42 - Logiciel: PhotoFiltre

O42 - Logiciel: Pidgin

O42 - Logiciel: Realtek High Definition Audio Driver

O42 - Logiciel: Recuva (remove only)

O42 - Logiciel: SIW version 2009-05-12

O42 - Logiciel: SSC Service Utility v4.30

O42 - Logiciel: Spybot - Search & Destroy

O42 - Logiciel: TeamViewer 4

O42 - Logiciel: TeraCopy 2.0

O42 - Logiciel: TuneUp Utilities 2009

O42 - Logiciel: UltraEdit-32

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

O42 - Logiciel: VC80CRTRedist - 8.0.50727.762

O42 - Logiciel: VLC media player 1.0.0

O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474)

O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130)

O42 - Logiciel: Windows Internet Explorer 8

O42 - Logiciel: Windows Media Format 11 runtime

O42 - Logiciel: XnView 1.96.2

O42 - Logiciel: ZebHelpProcess 2.34

O42 - Logiciel: adsl TV

O42 - Logiciel: filehippo.com Update Checker

 

---\\ Contenu des dossiers Fichiers Communs (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Ahead

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Borland Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DivX Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\EPSON

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\GTK

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Logishrd

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Wise Installation Wizard

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:Last File Created 01/06/2009 - 14:25:42 ---A- C:\WINDOWS\system.ini

O44 - LFC:Last File Created 01/06/2009 - 14:25:42 ---A- C:\WINDOWS\win.ini

O44 - LFC:Last File Created 02/06/2009 - 10:17:27 ---A- C:\WINDOWS\System32\WS2Fix.exe

O44 - LFC:Last File Created 02/06/2009 - 17:11:16 ---A- C:\WINDOWS\System32\ff_vfw.dll

O44 - LFC:Last File Created 03/06/2009 - 20:10:33 ---A- C:\WINDOWS\System32\quartz.dll

O44 - LFC:Last File Created 04/06/2009 - 15:39:54 ---A- C:\WINDOWS\System32\NVUNINST.EXE

O44 - LFC:Last File Created 07/07/2009 - 16:10:56 ---A- C:\WINDOWS\System32\MRT.exe

O44 - LFC:Last File Created 08/06/2009 - 06:28:34 ---A- C:\WINDOWS\System32\PerfStringBackup.INI

O44 - LFC:Last File Created 08/06/2009 - 06:28:34 ---A- C:\WINDOWS\System32\perfc009.dat

O44 - LFC:Last File Created 08/06/2009 - 06:28:34 ---A- C:\WINDOWS\System32\perfc00C.dat

O44 - LFC:Last File Created 08/06/2009 - 06:28:34 ---A- C:\WINDOWS\System32\perfh009.dat

O44 - LFC:Last File Created 08/06/2009 - 06:28:34 ---A- C:\WINDOWS\System32\perfh00C.dat

O44 - LFC:Last File Created 08/06/2009 - 06:29:05 ---A- C:\WINDOWS\System32\deploytk.dll

O44 - LFC:Last File Created 08/06/2009 - 06:29:05 ---A- C:\WINDOWS\System32\java.exe

O44 - LFC:Last File Created 08/06/2009 - 06:29:05 ---A- C:\WINDOWS\System32\javacpl.cpl

O44 - LFC:Last File Created 08/06/2009 - 06:29:05 ---A- C:\WINDOWS\System32\javaw.exe

O44 - LFC:Last File Created 08/06/2009 - 06:29:05 ---A- C:\WINDOWS\System32\javaws.exe

O44 - LFC:Last File Created 08/06/2009 - 20:49:32 ---A- C:\WINDOWS\is-E7UUP.exe

O44 - LFC:Last File Created 08/06/2009 - 20:49:32 ---A- C:\WINDOWS\is-E7UUP.lst

O44 - LFC:Last File Created 08/06/2009 - 20:49:32 ---A- C:\WINDOWS\is-E7UUP.msg

O44 - LFC:Last File Created 09/06/2009 - 17:12:07 ---A- C:\WINDOWS\System32\bdod.bin

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\drivers\nv4_mini.sys

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nv4_disp.dll

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvapi.dll

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvcod.dll

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvcodins.dll

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvcuda.dll

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvcuvenc.dll

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvcuvid.dll

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvdata.bin

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvdisp.nvu

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvoglnt.dll

O44 - LFC:Last File Created 10/06/2009 - 05:03:00 ---A- C:\WINDOWS\System32\nvudisp.exe

O44 - LFC:Last File Created 10/06/2009 - 07:28:48 ---A- C:\WINDOWS\System32\nvmccs.dll

O44 - LFC:Last File Created 10/06/2009 - 07:28:50 ---A- C:\WINDOWS\System32\NvwsApps.xml

O44 - LFC:Last File Created 10/06/2009 - 07:28:50 ---A- C:\WINDOWS\System32\nvcolor.exe

O44 - LFC:Last File Created 10/06/2009 - 07:28:50 ---A- C:\WINDOWS\System32\nvcpl.dll

O44 - LFC:Last File Created 10/06/2009 - 07:28:50 ---A- C:\WINDOWS\System32\nvmctray.dll

O44 - LFC:Last File Created 10/06/2009 - 07:28:50 ---A- C:\WINDOWS\System32\nvsvc32.exe

O44 - LFC:Last File Created 10/06/2009 - 07:28:52 ---A- C:\WINDOWS\System32\nvdisps.dll

O44 - LFC:Last File Created 10/06/2009 - 07:28:58 ---A- C:\WINDOWS\System32\nvgames.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:00 ---A- C:\WINDOWS\System32\nvmccss.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:02 ---A- C:\WINDOWS\System32\nvmobls.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:06 ---A- C:\WINDOWS\System32\nvvitvs.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:12 ---A- C:\WINDOWS\System32\nvwss.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:20 ---A- C:\WINDOWS\System32\nvwddi.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:30 ---A- C:\WINDOWS\System32\nvcpl.cpl

O44 - LFC:Last File Created 10/06/2009 - 07:29:30 ---A- C:\WINDOWS\System32\nvcplui.exe

O44 - LFC:Last File Created 10/06/2009 - 07:29:32 ---A- C:\WINDOWS\System32\nview.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:32 ---A- C:\WINDOWS\System32\nvtuicpl.cpl

O44 - LFC:Last File Created 10/06/2009 - 07:29:34 ---A- C:\WINDOWS\System32\keystone.exe

O44 - LFC:Last File Created 10/06/2009 - 07:29:34 ---A- C:\WINDOWS\System32\nvappbar.exe

O44 - LFC:Last File Created 10/06/2009 - 07:29:34 ---A- C:\WINDOWS\System32\nvshell.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:34 ---A- C:\WINDOWS\System32\nvwdmcpl.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:34 ---A- C:\WINDOWS\System32\nvwimg.dll

O44 - LFC:Last File Created 10/06/2009 - 07:29:34 ---A- C:\WINDOWS\System32\nwiz.exe

O44 - LFC:Last File Created 13/07/2009 - 12:36:12 ---A- C:\WINDOWS\System32\drivers\mbam.sys

O44 - LFC:Last File Created 13/07/2009 - 12:36:34 ---A- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

O44 - LFC:Last File Created 13/07/2009 - 18:54:07 ---A- C:\WINDOWS\System32\drivers\ssmdrv.sys

O44 - LFC:Last File Created 15/06/2009 - 14:15:50 ---A- C:\WINDOWS\opuc.dll

O44 - LFC:Last File Created 15/07/2009 - 19:05:27 -S-A- C:\WINDOWS\bootstat.dat

O44 - LFC:Last File Created 15/07/2009 - 19:05:31 ---A- C:\WINDOWS\System32\NvApps.xml

O44 - LFC:Last File Created 15/07/2009 - 20:49:04 ---A- C:\WINDOWS\System32\wpa.dbl

O44 - LFC:Last File Created 15/07/2009 - 22:40:46 ---A- C:\WINDOWS\NeroDigital.ini

O44 - LFC:Last File Created 16/06/2009 - 15:40:01 ---A- C:\WINDOWS\System32\fontsub.dll

O44 - LFC:Last File Created 16/06/2009 - 15:40:01 ---A- C:\WINDOWS\System32\t2embed.dll

O44 - LFC:Last File Created 16/07/2009 - 17:16:54 ---A- C:\WINDOWS\System32\tmp.reg

O44 - LFC:Last File Created 16/07/2009 - 17:16:54 ---A- C:\WINDOWS\System32\tmp.txt

O44 - LFC:Last File Created 17/06/2009 - 15:21:57 ---A- C:\WINDOWS\System32\giveio.sys

O44 - LFC:Last File Created 24/05/2009 - 21:14:51 ---A- C:\WINDOWS\WMSysPr9.prx

O44 - LFC:Last File Created 24/05/2009 - 21:18:07 ---A- C:\WINDOWS\System32\nscompat.tlb

O44 - LFC:Last File Created 24/05/2009 - 21:18:08 ---A- C:\WINDOWS\System32\amcompat.tlb

O44 - LFC:Last File Created 24/06/2009 - 17:39:36 ---A- C:\WINDOWS\nsreg.dat

O44 - LFC:Last File Created 26/06/2009 - 20:19:24 ---A- C:\WINDOWS\ODBC.INI

O44 - LFC:Last File Created 26/06/2009 - 20:41:42 ---A- C:\WINDOWS\System32\FNTCACHE.DAT

O44 - LFC:Last File Created 29/05/2009 - 22:31:52 ---A- C:\WINDOWS\System32\xvidcore.dll

O44 - LFC:Last File Created 29/05/2009 - 22:37:40 ---A- C:\WINDOWS\System32\xvidvfw.dll

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:Last File Created Prefetch 15/07/2009 - 19:01:02 ---A- C:\WINDOWS\Prefetch\LOGONUI.EXE-0AF22957.pf

O45 - LFCP:Last File Created Prefetch 15/07/2009 - 19:06:37 ---A- C:\WINDOWS\Prefetch\ALG.EXE-0F138680.pf

O45 - LFCP:Last File Created Prefetch 15/07/2009 - 19:06:37 ---A- C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:Last File Created Prefetch 15/07/2009 - 19:06:37 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-1619A94E.pf

O45 - LFCP:Last File Created Prefetch 15/07/2009 - 19:06:37 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-35A483DA.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 16:48:14 ---A- C:\WINDOWS\Prefetch\PIDGIN.EXE-280DB919.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:15:40 ---A- C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:16:46 ---A- C:\WINDOWS\Prefetch\FIND.EXE-0EC32F1E.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:16:48 ---A- C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:16:55 ---A- C:\WINDOWS\Prefetch\REGEDIT.EXE-1B606482.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:17:17 ---A- C:\WINDOWS\Prefetch\DUMPHIVE.EXE-2B5148FE.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:17:21 ---A- C:\WINDOWS\Prefetch\SWREG.EXE-1EB1B019.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:17:22 ---A- C:\WINDOWS\Prefetch\CSCRIPT.EXE-1C26180C.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:18:43 ---A- C:\WINDOWS\Prefetch\FINDSTR.EXE-0CA6274B.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:36:36 ---A- C:\WINDOWS\Prefetch\FILEZILLA.EXE-1028A4F4.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:58:30 ---A- C:\WINDOWS\Prefetch\REGSVR32.EXE-25EEFE2F.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 17:58:30 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-4489B61B.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 18:49:39 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-2577D203.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 20:39:31 ---A- C:\WINDOWS\Prefetch\CONTROL.EXE-013DBFB5.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 20:39:39 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-3D97474F.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 20:39:39 ---A- C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 20:39:41 ---A- C:\WINDOWS\Prefetch\HELPER.EXE-0F70C40E.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 21:15:41 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-451FC2C0.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 21:16:40 ---A- C:\WINDOWS\Prefetch\XNVIEW.EXE-18AD42DD.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 21:42:23 ---A- C:\WINDOWS\Prefetch\WINRAR.EXE-39C6DAD9.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 22:08:02 ---A- C:\WINDOWS\Prefetch\UPDATECHECKER.EXE-16A4997A.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 22:12:52 ---A- C:\WINDOWS\Prefetch\BIT_CHE.EXE-0E527FEA.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 22:12:59 ---A- C:\WINDOWS\Prefetch\GUARDGUI.EXE-00ECD849.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 22:13:00 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-03BCD058.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 22:14:01 ---A- C:\WINDOWS\Prefetch\AVCENTER.EXE-1A970FA0.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 22:27:50 ---A- C:\WINDOWS\Prefetch\IEXPLORE.EXE-27122324.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 22:28:01 ---A- C:\WINDOWS\Prefetch\FDM.EXE-0654E435.pf

O45 - LFCP:Last File Created Prefetch 16/07/2009 - 22:39:03 ---A- C:\WINDOWS\Prefetch\UTORRENT.EXE-3888D1B0.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 01:36:42 ---A- C:\WINDOWS\Prefetch\Layout.ini

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 05:14:30 ---A- C:\WINDOWS\Prefetch\JAVA.EXE-0C263507.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:01:50 ---A- C:\WINDOWS\Prefetch\FIREFOX.EXE-28641590.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:01:53 ---A- C:\WINDOWS\Prefetch\UPDATER.EXE-1AE1C5E0.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:01:57 ---A- C:\WINDOWS\Prefetch\HELPER.EXE-0415776D.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:01:59 ---A- C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:02:30 ---A- C:\WINDOWS\Prefetch\FLASHGOT.EXE-005D7E8D.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:02:33 ---A- C:\WINDOWS\Prefetch\JQSNOTIFY.EXE-24AE4A36.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:06:22 ---A- C:\WINDOWS\Prefetch\PHOTOFILTRE.EXE-00101112.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:06:35 ---A- C:\WINDOWS\Prefetch\E_S00MT2.EXE-0DF19D90.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:06:35 ---A- C:\WINDOWS\Prefetch\E_S00RN2.EXE-3821C577.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:18:48 ---A- C:\WINDOWS\Prefetch\THUNDERBIRD.EXE-38CA75D9.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:26:30 ---A- C:\WINDOWS\Prefetch\VLC.EXE-22DF01AA.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:27:06 ---A- C:\WINDOWS\Prefetch\TERACOPY.EXE-0FC60D98.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:28:50 ---A- C:\WINDOWS\Prefetch\CCLEANER.EXE-0BCE437C.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:33:10 ---A- C:\WINDOWS\Prefetch\MSFEEDSSYNC.EXE-25E13438.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:47:31 ---A- C:\WINDOWS\Prefetch\ZHP2.EXE-3374FBD7.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 09:47:43 ---A- C:\WINDOWS\Prefetch\ZHPDIAG.EXE-0180118E.pf

O45 - LFCP:Last File Created Prefetch 17/07/2009 - 23:07:56 ---A- C:\WINDOWS\Prefetch\LOGON.SCR-151EFAEA.pf

 

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

 

---\\ Export de clé d'application autorisée (ECAA)(O47)

O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

O47 - AAKE:Key Export SP - "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"

O47 - AAKE:Key Export SP - "C:\Program Files\IEPro\MiniDM.exe"="C:\Program Files\IEPro\MiniDM.exe:*:Enabled:MiniDM"

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

 

---\\ Déni du service (Local Security Authority) (LSA) (O48)

O48 - LSA:Local Security Authority Authentication Packages - C:\WINDOWS\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages - C:\WINDOWS\System32\scecli.dll

 

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\rdpdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\rdpdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\vgasave.sys

 

---\\ Image File Execution Options (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

 

---\\ Trojan Driver Search Data (TDSD) (O52)

O52 - TDSD:HKLM\...\Drivers\"timer"="timer.drv"

O52 - TDSD:HKLM\...\Drivers32\"midimapper"="midimap.dll"

O52 - TDSD:HKLM\...\Drivers32\"msacm.imaadpcm"="imaadp32.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msadpcm"="msadp32.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msg711"="msg711.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msgsm610"="msgsm32.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.trspch"="tssoft32.acm"

O52 - TDSD:HKLM\...\Drivers32\"vidc.cvid"="iccvid.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.I420"="msh263.drv"

O52 - TDSD:HKLM\...\Drivers32\"vidc.iv31"="ir32_32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.iv32"="ir32_32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.iv41"="ir41_32.ax"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.IYUV"="iyuv_32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.mrle"="msrle32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.msvc"="msvidc32.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.UYVY"="msyuv.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.YUY2"="msyuv.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVU9"="tsbyuv.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVYU"="msyuv.dll"

O52 - TDSD:HKLM\...\Drivers32\"wavemapper"="msacm32.drv"

O52 - TDSD:HKLM\...\Drivers32\"MSVideo8"="VfWWDM32.dll"

O52 - TDSD:HKLM\...\Drivers32\"wave"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"midi"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"mixer"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"aux"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msg723"="msg723.acm"

O52 - TDSD:HKLM\...\Drivers32\"vidc.M263"="msh263.drv"

O52 - TDSD:HKLM\...\Drivers32\"vidc.M261"="msh261.drv"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msaudio1"="msaud32.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.sl_anet"="sl_anet.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax"

O52 - TDSD:HKLM\...\Drivers32\"vidc.iv50"="ir50_32.dll"

O52 - TDSD:HKLM\...\Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.wmv3"="wmv9vcm.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.MPG4"="Mpg4c32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.MP42"="Mpg4c32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.MP43"="Mpg4c32.dll"

O52 - TDSD:HKLM\...\Drivers32\"wave1"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"midi1"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"mixer1"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"aux1"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"wave2"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"midi2"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"mixer2"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"aux2"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"wave3"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"midi3"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"mixer3"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"aux3"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.DIVX"="divx.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.XVID"="xvidvfw.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.YV12"="yv12vfw.dll"

O52 - TDSD:HKLM\...\Drivers32\"msacm.ac3acm"="ac3acm.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.lameacm"="lameACM.acm"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.FFDS"="ff_vfw.dll"

O52 - TDSD:HKLM\...\drivers.desc\"vfwwdm32.dll"="Vidéo WDM pour le pilote de capture Windows (Win32)"

O52 - TDSD:HKLM\...\drivers.desc\"wdmaud.drv"="Périphérique audio USB"

O52 - TDSD:HKLM\...\drivers.desc\"msaud32.acm"="Windows Media Audio Codec"

O52 - TDSD:HKLM\...\drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec"

O52 - TDSD:HKLM\...\drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software"

O52 - TDSD:HKLM\...\drivers.desc\"ir50_32.dll"="Indeo® video 5.10"

O52 - TDSD:HKLM\...\drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec"

O52 - TDSD:HKLM\...\drivers.desc\"wmv9vcm.dll"="Microsoft Windows Media Video 9"

O52 - TDSD:HKLM\...\drivers.desc\"MPG4c32.dll"="MS-MPEG-4 MPEG-4 Video Codec"

O52 - TDSD:HKLM\...\drivers.desc\"divx.dll"="DivX 6.8.5"

O52 - TDSD:HKLM\...\drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec 1.2.2"

O52 - TDSD:HKLM\...\drivers.desc\"lameACM.acm"="Lame ACM MP3 CODEC v3.98.2"

O52 - TDSD:HKLM\...\drivers.desc\"ac3acm.acm"="AC-3 ACM Codec"

O52 - TDSD:HKLM\...\drivers.desc\"ff_vfw.dll"="ffdshow video encoder"

 

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

 

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

 

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoRecentDocsMenu"=1

O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoLowDiskSpaceChecks"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "HonorAutoRunSetting"=1

 

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\1394bus.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\acpi.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\acpiec.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\aec.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\afd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\Ambfilt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\amdk6.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\amdk7.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\arp1394.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\asyncmac.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\atapi.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\atmarpc.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\atmepvc.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\atmlane.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\atmuni.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\audstub.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\avgntdd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\avgntflt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\avgntmgr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\avipbb.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\beep.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\bridge.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\camfilt2.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\cbidf2k.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ccdecode.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\cdaudio.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\cdfs.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\cdrom.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\cinemst2.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\classpnp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\cmdmon.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\cpqdap01.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\cpuz132_x32.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\crusoe.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\disk.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\diskdump.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\dmboot.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\dmio.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\dmload.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\dmusic.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\drmk.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\drmkaud.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\dxapi.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\dxg.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\dxgthk.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\enum1394.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\fastfat.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\fdc.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\fips.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\FlashSys.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\flpydisk.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\fltmgr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\fsvga.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\fs_rec.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ftdisk.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\hdaudbus.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\hdaudio.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\hidclass.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\hidparse.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\hidusb.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\http.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\i8042prt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\imapi.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\inspect.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\intelppm.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ip6fw.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ipfltdrv.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ipinip.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ipnat.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ipsec.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\irenum.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\isapnp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\kbdclass.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\kmixer.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ks.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ksecdd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\L8042Kbd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\L8042mou.Sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\LBeepKE.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\LHidFilt.Sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\LMouFilt.Sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\LMouKE.Sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\LUsbFilt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mbam.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mbamswissarmy.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mcd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mf.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mnmdd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\modem.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\Monfilt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mouclass.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mouhid.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mountmgr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mqac.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mrxdav.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mrxsmb.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\msfs.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\msgpc.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mskssrv.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mspclock.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mspqm.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mssmbios.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mstee.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\mup.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nabtsfec.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ndis.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ndisip.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ndistapi.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ndisuio.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ndiswan.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ndproxy.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\netbios.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\netbt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nic1394.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nikedrv.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nmnt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\npfs.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ntfs.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\null.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nv4_mini.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nvata.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nvatabus.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\NVENETFD.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nvnetbus.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nvnrm.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nvsnpu.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nvtcp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nwlnkflt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nwlnkfwd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nwlnkipx.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nwlnknb.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nwlnkspx.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\nwrdr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ohci1394.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\oprghdlr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\p3.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\parport.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\partmgr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\parvdm.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\pci.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\pciide.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\pciidex.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\pcmcia.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\pcouffin.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\portcls.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\processr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\psched.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ptilink.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rasacd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rasl2tp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\raspppoe.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\raspptp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\raspti.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rawwan.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rdbss.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rdpcdd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rdpdr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rdpwd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\redbook.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rio8drv.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\riodrv.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rmcast.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rndismp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\rootmdm.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\RtkHDAud.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\scsiport.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\sdbus.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\secdrv.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\serenum.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\serial.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\sffdisk.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\sffp_sd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\sfloppy.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\slip.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\smclib.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\sonydcam.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\splitter.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\sptd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\sr.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\srv.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ssmdrv.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\stream.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\streamip.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\swenum.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\swmidi.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\sysaudio.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tape.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tcpip.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tcpip6.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tdi.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tdpipe.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tdtcp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\termdd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tosdvd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tsbvcap.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\tunmp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\udfs.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\update.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usb8023.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbaudio.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbcamd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbcamd2.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbccgp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbehci.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbhub.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbintel.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbohci.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbport.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbprint.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbscan.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbstor.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\usbvideo.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\vdmindvd.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\vga.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\videoprt.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\volsnap.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\wanarp.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\wdmaud.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\wmilib.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\wpdusb.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ws2ifsl.sys

O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\wstcodec.sys

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 07/07/2009 - 18:15:54 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}\FlashGot_License.txt

O61 - LFC:Last File Created 07/07/2009 - 18:15:54 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}\GPL.txt

O61 - LFC:Last File Created 07/07/2009 - 18:15:54 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}\chrome.manifest

O61 - LFC:Last File Created 07/07/2009 - 18:15:54 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}\components\flashgotService.js

O61 - LFC:Last File Created 07/07/2009 - 18:15:54 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}\defaults\preferences\flashgot.js

O61 - LFC:Last File Created 07/07/2009 - 18:15:54 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}\install.js

O61 - LFC:Last File Created 07/07/2009 - 18:15:54 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}\install.rdf

O61 - LFC:Last File Created 07/07/2009 - 18:49:43 ---A- C:\Documents And Settings\Administrateur\Application Data\Thunderbird\Profiles\o2ugdpix.default\Mail\pop.gmail.com\Inbox

O61 - LFC:Last File Created 07/07/2009 - 18:49:43 ---A- C:\Documents And Settings\Administrateur\Application Data\Thunderbird\Profiles\o2ugdpix.default\Mail\pop.gmail.com\Trash

O61 - LFC:Last File Created 07/07/2009 - 19:48:59 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Audio\Set Audio mode to DirectX (default).lnk

O61 - LFC:Last File Created 07/07/2009 - 19:48:59 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Audio\Set Audio mode to Waveout.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:48:59 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Interface\Set Main Interface to Skinnable.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Bureau\VLC media player.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Documentation.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Interface\Set Main Interface to Qt (default).lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Reset VLC media player preferences and cache files.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Video\Set Video mode to Direct3D (no hardware acceleration).lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Video\Set Video mode to Direct3D.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Video\Set Video mode to DirectX (no hardware acceleration).lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Video\Set Video mode to DirectX (no video overlay).lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Video\Set Video mode to DirectX.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Quick Settings\Video\Set Video mode to OpenGL.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\Release Notes.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\VLC media player.lnk

O61 - LFC:Last File Created 07/07/2009 - 19:49:00 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Multimedia\VideoLAN\VideoLAN Website.lnk

O61 - LFC:Last File Created 08/07/2009 - 00:45:36 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}\chrome\flashgot.jar

O61 - LFC:Last File Created 08/07/2009 - 08:11:29 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\mimeTypes.rdf

O61 - LFC:Last File Created 08/07/2009 - 08:55:56 ---A- C:\Documents And Settings\Administrateur\Application Data\IEPro\conf.ini

O61 - LFC:Last File Created 08/07/2009 - 08:56:13 -S-A- C:\Documents And Settings\Administrateur\Application Data\Microsoft\CryptnetUrlCache\Content\08E382DC40DC2B571439BB7A5449C239

O61 - LFC:Last File Created 08/07/2009 - 08:56:13 -S-A- C:\Documents And Settings\Administrateur\Application Data\Microsoft\CryptnetUrlCache\MetaData\08E382DC40DC2B571439BB7A5449C239

O61 - LFC:Last File Created 08/07/2009 - 08:56:43 -S-A- C:\Documents And Settings\Administrateur\Application Data\Microsoft\CryptnetUrlCache\Content\5553AF14BD4C3B1DE599145FD14950E0

O61 - LFC:Last File Created 08/07/2009 - 08:56:43 -S-A- C:\Documents And Settings\Administrateur\Application Data\Microsoft\CryptnetUrlCache\MetaData\5553AF14BD4C3B1DE599145FD14950E0

O61 - LFC:Last File Created 08/07/2009 - 17:59:45 ---A- C:\Documents And Settings\Administrateur\Application Data\Microsoft\Office\PowerP11.pip

O61 - LFC:Last File Created 08/07/2009 - 17:59:49 ---A- C:\Documents And Settings\Administrateur\Application Data\Microsoft\Office\Récent\Temp.lnk

O61 - LFC:Last File Created 08/07/2009 - 19:29:55 -S-A- C:\Documents And Settings\Administrateur\Application Data\Microsoft\CryptnetUrlCache\Content\25DC8EBAAF0977851B37F37B2F6458F4

O61 - LFC:Last File Created 08/07/2009 - 19:29:55 -S-A- C:\Documents And Settings\Administrateur\Application Data\Microsoft\CryptnetUrlCache\MetaData\25DC8EBAAF0977851B37F37B2F6458F4

O61 - LFC:Last File Created 08/07/2009 - 19:36:53 ---A- C:\Documents And Settings\Administrateur\Application Data\Thunderbird\Profiles\o2ugdpix.default\Mail\pop.mail.yahoo.fr\Sent

O61 - LFC:Last File Created 09/07/2009 - 18:00:49 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\CORALINE_DVDR-2009070714225800-0000000000\000000014b

O61 - LFC:Last File Created 09/07/2009 - 18:00:49 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\CORALINE_DVDR-2009070714225800-0000000000\0000005951

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000000014d

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000000b908

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\0000019746

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e6cb

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e709

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e71f

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e727

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e73d

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e745

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e75c

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e764

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e77a

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e782

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e798

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e7a0

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e7b7

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e7bf

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e7d6

O61 - LFC:Last File Created 09/07/2009 - 18:01:06 ---A- C:\Documents And Settings\Administrateur\Application Data\dvdcss\PORCO_ROSSO-2009063018541100-0000000000\000022e7de

O61 - LFC:Last File Created 09/07/2009 - 18:37:06 ----- C:\Documents And Settings\Administrateur\Application Data\uTorrent\Blackmail.torrent

O61 - LFC:Last File Created 09/07/2009 - 18:37:45 ----- C:\Documents And Settings\Administrateur\Application Data\uTorrent\Blackmail 2.torrent

O61 - LFC:Last File Created 09/07/2009 - 18:38:09 ----- C:\Documents And Settings\Administrateur\Application Data\uTorrent\boin lecture.torrent

O61 - LFC:Last File Created 09/07/2009 - 18:39:41 ----- C:\Documents And Settings\Administrateur\Application Data\uTorrent\Can Can Bunny Extra.torrent

O61 - LFC:Last File Created 09/07/2009 - 18:40:19 ----- C:\Documents And Settings\Administrateur\Application Data\uTorrent\Cool Devices.torrent

O61 - LFC:Last File Created 09/07/2009 - 18:40:32 ----- C:\Documents And Settings\Administrateur\Application Data\uTorrent\Dark Future.torrent

O61 - LFC:Last File Created 15/07/2009 - 21:48:54 ---A- C:\Documents And Settings\Administrateur\Application Data\uTorrent\rss.dat.old

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Configuration.ini

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Bots.sbe

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Cookies.sbe

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\FileExt.sbe

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Links.sbe

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Single.sbe

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\SystemInternals.sbe

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\WaitFor.sbe

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Immunization.ini

O61 - LFC:Last File Created 15/07/2009 - 21:55:02 --HA- C:\Documents And Settings\eMule_Secure\NTUSER.DAT

O61 - LFC:Last File Created 16/07/2009 - 11:23:58 ---A- C:\Documents And Settings\Administrateur\Application Data\AIMP\Bookmarks.ini

O61 - LFC:Last File Created 16/07/2009 - 11:23:58 ---A- C:\Documents And Settings\Administrateur\Application Data\AIMP\EQLib.ini

O61 - LFC:Last File Created 16/07/2009 - 11:23:58 ---A- C:\Documents And Settings\Administrateur\Application Data\AIMP\ML\AIMP_ML.INI

O61 - LFC:Last File Created 16/07/2009 - 11:23:58 ---A- C:\Documents And Settings\Administrateur\Application Data\AIMP\PLS\1 - Default.plc

O61 - LFC:Last File Created 16/07/2009 - 11:23:58 ---A- C:\Documents And Settings\Administrateur\Application Data\AIMP\aimp_lastfm.ini

O61 - LFC:Last File Created 16/07/2009 - 11:24:23 ---A- C:\Documents And Settings\Administrateur\Application Data\Thunderbird\Profiles\o2ugdpix.default\downloads.rdf

O61 - LFC:Last File Created 16/07/2009 - 12:17:54 ---A- C:\Documents And Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\XPC.mfl

O61 - LFC:Last File Created 16/07/2009 - 12:20:30 ----- C:\Documents And Settings\Administrateur\Application Data\uTorrent\Porn.Stars.At.Home.torrent

O61 - LFC:Last File Created 16/07/2009 - 14:12:04 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\tyxpxx9i.default\bookmarkbackups\bookmarks-2009-07-16.json

 

 

End of the scan: 1780 lines

 

"

Modifié par yoyothebest

pear Devil Member !

pear

Posté(e)
Posté(e)

Bonjour,

 

O44 - LFC:Last File Created 16/07/2009 - 17:16:54 ---A- C:\WINDOWS\System32\tmp.reg

O44 - LFC:Last File Created 16/07/2009 - 17:16:54 ---A- C:\WINDOWS\System32\tmp.txt

O61 - LFC:Last File Created 17/07/2009 - 09:09:05 ---A- C:\Documents And Settings\Administrateur\Application Data\uTorrent\settings.dat.old

O61 - LFC:Last File Created 17/07/2009 - 09:39:05 ---A- C:\Documents And Settings\Administrateur\Application Data\uTorrent\settings.dat

Vous pouvez supprimer cela à la main,non?

Pour les 44:

 

 

Télécharger Usb Fix de C_XX & Chiquitine29, sur le bureau

Installez le.

Vous devez désactiver la protection en temps réel de votre Antivirus qui peut considérer certains composants de ce logiciel comme néfastes.

* Pour cela, faites un clic droit sur l'icône de l'antivirus en bas à droite à côté de l'horloge puis Disable Guard ou Shield ou Résident...

Si vous utilisez Spybot

Pour désactiver TeaTimer qui ne set à rien et peut faire échouer une désinfection:!

Afficher d'abord le Mode Avancé dans SpyBot

->Options Avancées :

- >menu Mode, Mode Avancé.

Une colonne de menus apparaît dans la partie gauche :

- >cliquer sur Outils,

- >cliquer sur Résident,

Dans Résident :

- >décocher Résident "TeaTimer" pour le désactiver.

 

Si vous êtes Sous Vista:

Désactivez le contrôle des comptes utilisateurs (Vous le réactiverez par la suite):

http://www.zebulon.fr/astuces/220-desactiv...dans-vista.html

- Démarrer puis panneau de configuration->"Comptes d'utilisateurs"

- Cliquer ensuite sur désactiver et valider.

 

Lancer l'installation avec les paramètres par défault

Brancher les périphériques externes (clé USB, disque dur externe, etc...) sans les ouvrir

Faire un Clic-droit sur le raccourci Usbfix sur le bureau et choisir "Exécuter en tant qu'administrateur".

 

Lancer l' option 1(Recherche)

le rapport UsbFix.txt est sauvegardé à la racine du disque .

Faites en un copier/coller dans le bloc notes pour le poster.

Ensuite,

Lancer l'option 2(Suppression)

Le bureau disparait et le pc redémarre

Patientez le temps du scan.

le rapport UsbFix.txt est sauvegardé à la racine du disque

Faites en un copier/coller dans le bloc notes pour le poster.

 

Vaccination

Pour vous éviter une infection ultérieure:

Lancer l' Option (vaccination)

 

Prévention:

Désactiver l'autorun sur tous les lecteur (USB, CD, DVD, SATA, Firewire, etc.

Pour cela:

Copier/coller ,dans le bloc notes,ce qui suit ,(en vert)sans ligne blanche au début.

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion­\Policies\Explorer]

"NoDriveTypeAutoRun"=dword:000000ff

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion­\Policies\Explorer]

"NoDriveTypeAutoRun"=dword:000000ff

Enregistrez sur le bureau sous regis.reg.

Attention;c'est regis.reg et non regis.txt ou regis.reg.txt

Cliquez droit sur le fichier ->fusionner

Acceptez la modification du Régistre:

Pour Désinstaller

Double clic sur le raccourci UsbFix sur le bureau

Lancer l' option 5 ( Désinstaller ) ....

yoyothebest Extrem Member

yoyothebest

Posté(e)
  • Auteur
Posté(e)
Bonjour,

 

O44 - LFC:Last File Created 16/07/2009 - 17:16:54 ---A- C:\WINDOWS\System32\tmp.reg

O44 - LFC:Last File Created 16/07/2009 - 17:16:54 ---A- C:\WINDOWS\System32\tmp.txt

 

Vous pouvez supprimer cela à la main,non?

C'est fait

 

Lancer l' option 1(Recherche)

le rapport UsbFix.txt est sauvegardé à la racine du disque .

Faites en un copier/coller dans le bloc notes pour le poster.

 

"

############################## | UsbFix V6.008 |

 

# User : Administrateur (Administrateurs) # EOMPC-03FBB20F2

# Update on 17/07/09 by Chiquitine29 & C_XX

# Start at: 12:56:57 | 17/07/2009

# Website : http://pagesperso-orange.fr/NosTools/index.html

 

# Intel® Core2 CPU 6600 @ 2.40GHz

# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3

# Internet Explorer 8.0.6001.18702

# Windows Firewall Status : Disabled

# AV : AntiVir Desktop 9.0.1.26 [ Enabled | Updated ]

# FW : COMODO Firewall Pro[ Enabled ]2.3.035

 

# C:\ # Disque fixe local # 27,68 Go (16,91 Go free) # NTFS

# D:\ # Disque fixe local # 41,75 Go (14,45 Go free) # NTFS

# E:\ # Disque fixe local # 48,83 Go (23,61 Go free) # NTFS

# F:\ # Disque fixe local # 48,83 Go (28,92 Go free) # NTFS

# G:\ # Disque fixe local # 48,83 Go (25,6 Go free) # NTFS

# H:\ # Disque fixe local # 16,94 Go (10,56 Go free) # NTFS

# I:\ # Disque amovible

# J:\ # Disque amovible

# K:\ # Disque amovible

# L:\ # Disque amovible

# M:\ # Disque CD-ROM

# N:\ # Disque CD-ROM

# O:\ # Disque CD-ROM

 

############################## | Processus actifs |

 

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Comodo\Firewall\CPF.exe

C:\Program Files\Hercules\Hercules Dualpix Chat and Show\Camservice.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\Java\jre6\bin\jusched.exe

C:\WINDOWS\system32\RUNDLL32.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Program Files\Comodo\Firewall\cmdagent.exe

C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\PROGRA~1\FREEDO~1\fdm.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

 

################## | Fichiers # Dossiers infectieux |

 

 

################## | C:\Documents and Settings\Administrateur\Temporary Internet Files |

 

 

################## | All Drives ... |

 

 

################## | Registre # Clés Run infectieuses |

 

Présent ! HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe

 

################## | Registre # Mountpoints2 |

 

 

################## | Etat / Services / Informations |

 

# Affichage des fichiers cachés : OK

# Mode sans echec : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )

# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )

# Ip6Fw -> Start = 3 ( Good = 2 | Bad = 4 )

# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )

# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )

# (!) wscsvc -> Start = 4 ( Good = 2 | Bad = 4 )

 

 

################## | Cracks / Keygens / Serials |

 

 

################## | ! Fin du rapport # UsbFix V6.008 ! |

 

"

A première vue rien

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...