Ordi très lent

franck de Marseille · le 6 janvier 2010

Bonjour et bonne année à tous !!

Mon ordinateur professionnel est très lent. J'ai l'impression qu"'un processus prend beaucoup de place.

Est ce scan32.exe ? Pouvez vous m'aider?

franck de Marseille · le 6 janvier 2010

Bonjour et bonne année à tous !!

Mon ordinateur professionnel est très lent. J'ai l'impression qu"'un processus prend beaucoup de place.

Est ce scan32.exe ? Pouvez vous m'aider?

Voici le rapport hijeckthis :

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 16:11:04, on 06/01/2010

Platform: Windows 2000 SP4 (WinNT 5.00.2195)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Boot mode: Normal

Running processes:

C:\WINNT\Explorer.EXE

C:\WINNT\System32\igfxtray.exe

C:\WINNT\System32\hkcmd.exe

C:\Program Files\Network Associates\Common Framework\udaterui.exe

C:\Program Files\OpenOffice.org 2.3\program\soffice.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Network Associates\Common Framework\McTray.exe

C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN

C:\WINNT\system32\Adobe\Shockwave 11\SwHelper_1150600.exe

C:\Documents and Settings\CMA_BUD12\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://login.live.com/login.srf?wa=wsignin...amp;bk=48570471

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll

O3 - Toolbar: @msdxmLC.dll,-1@1036,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx

O4 - HKLM\..\Run: [synchronization Manager] mobsync.exe /logon

O4 - HKLM\..\Run: [igfxTray] C:\WINNT\System32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe

O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\Network Associates\Common Framework\udaterui.exe" /StartedFromRunKey

O4 - HKLM\..\Run: [shStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE

O4 - HKCU\..\RunOnce: [shockwave Updater] "C:\WINNT\system32\Adobe\Shockwave 11\SwHelper_1150600.exe" -Update -1150600 -"Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" -"http://www.absoluflash.com/jeux-flash/special19.php?l640111=check1point&rena=t_19-cel-blaster.jpg&w=800&h=600"

O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')

O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm

O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1141026275609

O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game15.zylomgames.com/activex/zylomgamesplayer.cab

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = dgl.vdm

O17 - HKLM\System\CCS\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = dgl.vdm

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = vdm.mars,dgl.vdm,mairie-marseille.fr

O17 - HKLM\System\CS1\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254

O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = dgl.vdm

O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = vdm.mars,dgl.vdm,mairie-marseille.fr

O17 - HKLM\System\CS2\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = vdm.mars,dgl.vdm,mairie-marseille.fr

O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe

O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe

O23 - Service: EpsonNet Primitive Service (EpsonNet_Primitive_Service) - Unknown owner - C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe

O23 - Service: Service McAfee Framework (McAfeeFramework) - McAfee, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe

O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe

O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe

--

End of file - 4697 bytes

pear · le 6 janvier 2010

Bonjour,

Votre rapport n'est pas très bavard.

Plus d'informations sur la version complète de cet outil.

Téléchargez ZhpDiag de Coolman

Il ne nécessite aucune installation.

- Il peut être lancé depuis n'importe quelle unité de disque.

- Il peut être lancé d'une clé USB.

Cliquez sur letournevis

Dans la fenêtre qui s'ouvre, cochez tout.

Clic sur la Loupe pour lancer le scan

Au bout d'un moment ,vous aurez à accepter Sysinternal->I agree

Postez en le rapport qui apparait en cliquant l'appareil photo.

franck de Marseille · le 7 janvier 2010

Bonjour,

Votre rapport n'est pas très bavard.

Plus d'informations sur la version complète de cet outil.

Téléchargez ZhpDiag de Coolman

Il ne nécessite aucune installation.

- Il peut être lancé depuis n'importe quelle unité de disque.

- Il peut être lancé d'une clé USB.

Cliquez sur letournevis

Dans la fenêtre qui s'ouvre, cochez tout.

Clic sur la Loupe pour lancer le scan

Au bout d'un moment ,vous aurez à accepter Sysinternal->I agree

Postez en le rapport qui apparait en cliquant l'appareil photo.

Bonjour,

Je n'arrive pas à télécharger ....

J'essaye highjack sous administrateur.

franck de Marseille · le 7 janvier 2010

Bonjour,

Votre rapport n'est pas très bavard.

Plus d'informations sur la version complète de cet outil.

Téléchargez ZhpDiag de Coolman

Il ne nécessite aucune installation.

- Il peut être lancé depuis n'importe quelle unité de disque.

- Il peut être lancé d'une clé USB.

Cliquez sur letournevis

Dans la fenêtre qui s'ouvre, cochez tout.

Clic sur la Loupe pour lancer le scan

Au bout d'un moment ,vous aurez à accepter Sysinternal->I agree

Postez en le rapport qui apparait en cliquant l'appareil photo.

OUF j'y arrive !!!

voilà le rapport ZHPdiag :

Rapport de ZHPDiag v1.24.40 par Nicolas Coolman

Run by Administrateur at 07/01/2010 09:26:36

Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

Platform : Microsoft Windows 2000 (5.0.2195) Service Pack 4

MSIE: Internet Explorer v6.0.2800.1106

Boot mode: Normal (Normal boot)

Total RAM: 247 MB (47% free)

System drive C: has 2 GB (24%) free of 8 GB

---\\ Processus lancés

[MD5.96113C67D8D44AE1E35050F6BE9C0680] - C:\WINNT\System32\igfxtray.exe

[MD5.92A8471BE66D9072941F6347A1D0879E] - C:\WINNT\System32\hkcmd.exe

[MD5.19DFA4463D9FBA9E7046E8264D0656D8] - C:\Program Files\Network Associates\Common Framework\udaterui.exe

[MD5.C5BF330589172E4585D44FE8CFFBD57A] - C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe

[MD5.23AFE3A2F398B983903857D8B800DC0E] - C:\WINNT\System32\services.exe

[MD5.CD64CE62BE47DF0E9A459FD9002221FE] - C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe

[MD5.9C98BBE1E7233854CA8C4F50249CA1CD] - C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe

[MD5.4CD3EE64736B4D156DAC5C1D6EB60C24] - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe

[MD5.4AE1B4E0F6A5A290E6C1586B4E6E294E] - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe

[MD5.067A73B720E8840BD89A083F50F7E9A0] - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe

[MD5.1206706A25C5B32652B4F465EDE330E9] - C:\WINNT\System32\svchost.exe

[MD5.C43C52FA225030EA2E62E820C9D898CA] - C:\WINNT\System32\lsass.exe

[MD5.B3A6BC70F941A92DA318F3BD44362BCC] - C:\WINNT\system32\regsvc.exe

[MD5.3FE6A50EDC179C4260C85E354ADC0085] - C:\WINNT\system32\MSTask.exe

[MD5.FACFB75ECC070103619FA044E0B210D3] - C:\WINNT\system32\spoolsv.exe

[MD5.974EE1A488A7AF678F84826B588D4AF1] - C:\WINNT\System32\WBEM\WinMgmt.exe

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\WINNT\system32\userinit.exe,

---\\ Pages de démarrage d'Internet Explorer (R0)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - %SystemRoot%\system32\shdocvw.dll

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: @msdxmLC.dll,-1@1036,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx

---\\ Applications démarrées automatiquement par le registre (O4)

O4 - HKLM\..\Run: [synchronization Manager] mobsync.exe /logon

O4 - HKLM\..\Run: [igfxTray] C:\WINNT\System32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINNT\System32\hkcmd.exe

O4 - HKLM\..\Run: [McAfeeUpdaterUI] C:\Program Files\Network Associates\Common Framework\udaterui.exe" /StartedFromRunKey

O4 - HKLM\..\Run: [shStatEXE] C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE

O4 - HKCU\..\policies\Explorer: [NoDriveTypeAutoRun] Data=149

O4 - HKCU\..\policies\Explorer: [CDRAutoRun] Data=0

O4 - HKUS\S-1-5-18\..\Run: [internat.exe] internat.exe

O4 - HKUS\S-1-5-18\..\Run: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop

O4 - Global Startup: Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - ,4

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File - C:\WINNT\system32\rnr20.dll

O10 - WLSP:\000000000002\Winsock LSP File - C:\WINNT\system32\winrnr.dll

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: DirectAnimation Java Classes (DirectAnimation Java Classes) - file://C:\WINNT\Java\classes\dajava.cab

O16 - DPF: Microsoft XML Parser for Java (Microsoft XML Parser for Java) - file://C:\WINNT\Java\classes\xmldso.cab

O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/pub/shock...director/sw.cab

O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwa...director/sw.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1141026275609

O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game15.zylomgames.com/activex/zylomgamesplayer.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.macromedia.com/get/flash...ent/swflash.cab

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254

O17 - HKLM\System\CS1\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254

O17 - HKLM\System\CS2\Services\Tcpip\..\{00AAC9FB-B563-4DC3-A128-0544AC10CC59}: NameServer = 192.168.5.254

---\\ Protocole additionnel et piratage de protocole (O18)

O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINNT\system32\urlmon.dll

O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINNT\system32\urlmon.dll

O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll

O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll

O18 - Handler: vnd.ms.radio - {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINNT\System32\msdxm.ocx

O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINNT\system32\urlmon.dll

O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\shell32.dll

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: igfxcui - C:\WINNT\System32\igfxsrvc.dll

O20 - Winlogon Notify: wzcnotif - C:\WINNT\System32\wzcdlg.dll

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)

O21 - SSODL: Network.ConnectionTray - {7007ACCF-3202-11D1-AAD2-00805FC1270E} - C:\WINNT\system32\NETSHELL.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - %SystemRoot%\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - stobject.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - %SystemRoot%\system32\browseui.dll

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: EpsonBidirectionalService (EpsonBidirectionalService) - C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe

O23 - Service: EpsonNet Primitive Service (EpsonNet_Primitive_Service) - C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe

O23 - Service: Service McAfee Framework (McAfeeFramework) - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe" /ServiceStart

O23 - Service: McAfee McShield (McShield) - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe

O23 - Service: McAfee Task Manager (McTaskManager) - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe

O23 - Service: Service d'accès à distance au Registre (RemoteRegistry) - C:\WINNT\system32\regsvc.exe

O23 - Service: Planificateur de tâches (Schedule) - C:\WINNT\system32\MSTask.exe

O23 - Service: Spouleur d'impression (Spooler) - C:\WINNT\system32\spoolsv.exe

O23 - Service: Infrastructure de gestion Windows (WinMgmt) - C:\WINNT\System32\WBEM\WinMgmt.exe

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Lecteur Windows Media - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINNT\inf\unregmp2.exe /ShowWMP

O40 - ASIC: Accès Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} - "C:\WINNT\system32\shmgrate.exe" OCInstallUserConfigIE

O40 - ASIC: Personnalisation du navigateur - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

O40 - ASIC: Accès Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - "C:\WINNT\system32\shmgrate.exe" OCInstallUserConfigOE

O40 - ASIC: KB941202 - {08a00762-7c1e-42c2-87f0-ca3600045cd7} - (not file)

O40 - ASIC: Microsoft VM - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - (not file)

O40 - ASIC: Internet Explorer Classes pour Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608555} - (not file)

O40 - ASIC: Fichier Lisez-moi d'Internet Explorer - {0fde1f56-0d59-4fd7-9624-e3df6b419d0e} - (not file)

O40 - ASIC: IEEX - {0fde1f56-0d59-4fd7-9624-e3df6b419d0f} - (not file)

O40 - ASIC: Rendu de graphismes vectoriels (VML) - {10072CEC-8CC1-11D1-986E-00A0C955B42F} - (not file)

O40 - ASIC: KB947864 - {110e3a85-a9d6-4220-a14a-d39588fa4763} - (not file)

O40 - ASIC: KB973354 - {1b0357b8-e3fb-4918-915c-a8eb232c273e} - (not file)

O40 - ASIC: KB956390 - {1d52d05a-f63b-496e-80ff-2f46fd261fd4} - (not file)

O40 - ASIC: KB976325 - {1d939273-21ce-4e7f-be14-490866ec66c2} - (not file)

O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - C:\WINNT\system32\wmpdxm.dll

O40 - ASIC: Lecteur Windows Media Microsoft 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINNT\system32\wmpdxm.dll

O40 - ASIC: Adobe Shockwave Director 10.1.4 - {233C1507-6A77-46A4-9443-F871F945D258} - C:\WINNT\system32\Adobe\Director\SwDir.dll

O40 - ASIC: KB933566 - {28023b22-f71e-43e8-8ea4-de315462878d} - (not file)

O40 - ASIC: DirectAnimation - {283807B5-2C60-11D0-A31D-00AA00B92C03} - C:\WINNT\System32\danim.dll

O40 - ASIC: Adobe Shockwave Director 10.1.4 - {2A202491-F00D-11cf-87CC-0020AFEECF20} - (not file)

O40 - ASIC: Liaison de données Dynamic HTML pour Java - {36f8ec70-c29a-11d1-b5c7-0000f8051515} - (not file)

O40 - ASIC: KB969897 - {390e5bb4-1d89-4343-b62d-b76303708a1d} - (not file)

O40 - ASIC: Module de navigation hors connexion - {3af36230-a269-11d1-b5bf-0000f8051515} - (not file)

O40 - ASIC: Uniscribe - {3bf42070-b3b1-11d1-b5c5-0000f8051515} - (not file)

O40 - ASIC: KB951066 - {3c0d61fe-1db3-4d0b-8477-3cb53eab9469} - (not file)

O40 - ASIC: KB974455 - {3e843540-63b3-42d7-9f4d-812ffd1e767a} - (not file)

O40 - ASIC: Création avancée - {4278c270-a269-11d1-b5bf-0000f8051515} - (not file)

O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install

O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINNT\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT

O40 - ASIC: DirectShow - {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - (not file)

O40 - ASIC: Microsoft DirectX - {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - (not file)

O40 - ASIC: DirectDrawEx - {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - (not file)

O40 - ASIC: Aide sur Internet Explorer - {45ea75a0-a269-11d1-b5bf-0000f8051515} - (not file)

O40 - ASIC: KB918899 - {4d64f3ba-f112-4efe-a02e-96680859937c} - (not file)

O40 - ASIC: Classes Java DirectAnimation - {4f216970-c90c-11d1-b5c7-0000f8051515} - (not file)

O40 - ASIC: Microsoft Windows Script 5.6 - {4f645220-306d-11d2-995d-00c04f98bbc9} - (not file)

O40 - ASIC: Microsoft Data Access Components KB870669 - {5f3c70b3-ac2f-432c-8f9c-1624df61f54f} - (not file)

O40 - ASIC: Outils d'installation Internet Explorer - {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - (not file)

O40 - ASIC: Améliorations pour la navigation - {630b1da0-b465-11d1-9948-00c04f98bbc9} - (not file)

O40 - ASIC: KB905495 - {685e3910-1f77-49b9-9434-50bcd95c51ab} - (not file)

O40 - ASIC: EnableRevocation - {6A5110B5-E14B-4268-A065-EF89FF33C325} - regsvr32.exe /s /n /i:"S 2 true 3 true 4 true 5 true 6 true 7 true" initpki.dll

O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} - rundll32.exe advpack.dll,LaunchINFSection C:\WINNT\INF\wmp.inf,PerUserStub

O40 - ASIC: Accès au site MSN - {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - (not file)

O40 - ASIC: KB939653 - {706b15de-aa6d-4c4f-8699-1b0a991228b7} - (not file)

O40 - ASIC: Dossiers Web - {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - (not file)

O40 - ASIC: Carnet d'adresses 5 - {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install

O40 - ASIC: KB922760 - {7d16667b-0ff7-4c6b-9fcf-775578e89cc2} - (not file)

O40 - ASIC: KB963027 - {7da6528e-45a6-4022-9e41-c45a8cf33eb5} - (not file)

O40 - ASIC: KB960714 - {80b81c71-14cd-41c3-9e8c-08b9e06d02ef} - (not file)

O40 - ASIC: Mise à jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll

O40 - ASIC: Internet Explorer 6 - {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINNT\system32\ie4uinit.exe

O40 - ASIC: KB938127 - {90b0bef8-22d6-40a8-92c8-155434fc112f} - (not file)

O40 - ASIC: KB925454 - {9311e53c-4c8c-4b8f-aa80-6b16de179d70} - (not file)

O40 - ASIC: Liaison de données DHTML - {9381D8F2-0288-11D0-9501-00AA00B911A5} - (not file)

O40 - ASIC: KB937143 - {95177e6d-aaa9-44d1-bebd-b380bce3be79} - (not file)

O40 - ASIC: CRLUpdate - {9EF0045A-CDD9-438e-95E6-02B9AFEC8E11} - C:\WINNT\system32\updcrl.exe -e -u C:\WINNT\system32\verisignpub1.crl

O40 - ASIC: W2KAppComp - {A00BF2EB-56EE-4fde-B5EA-6A8FA425B2A5} - (not file)

O40 - ASIC: KB923694 - {a5653fdf-8d3a-451b-937f-6c7534804953} - (not file)

O40 - ASIC: KB942615 - {a99b636e-f3ca-4adc-bcde-a4b451cd65d4} - (not file)

O40 - ASIC: KB928090 - {abd13515-07e0-476a-9b25-211dbe6d1c21} - (not file)

O40 - ASIC: KB958869 - {b6609c7e-4ad5-4b8b-9da5-9edbc50f7592} - (not file)

O40 - ASIC: KB950759 - {c1f0071f-505e-40bc-babe-3240af80b5cf} - (not file)

O40 - ASIC: Polices de base Internet Explorer - {C9E9A340-D1F1-11D0-821E-444553540600} - (not file)

O40 - ASIC: Planificateur de tâches - {CC2A9BA0-3BDD-11D0-821E-444553540000} - (not file)

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} - C:\WINNT\system32\Macromed\Flash\Flash10b.ocx

O40 - ASIC: KB948881 - {da53c936-c804-4f62-a1d2-6cf6d1591b66} - (not file)

O40 - ASIC: KB925486 - {dd772a76-bef3-44d7-8b39-502c8504c1f1} - (not file)

O40 - ASIC: Aide HTML - {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - (not file)

O40 - ASIC: KB958215 - {e41091c0-06d5-474f-836e-dd190348ea18} - (not file)

O40 - ASIC: Active Directory Service Interface - {E92B03AB-B707-11d2-9CBD-0000F87A369E} - (not file)

O40 - ASIC: KB931768 - {eb6ab742-eb17-446b-8ce7-dff2bc7cbf93} - (not file)

O40 - ASIC: Q832894 - {eddbec60-89cb-44ef-8291-0850fd28ff6a} - (not file)

O40 - ASIC: KB944533 - {ee714f0a-76c6-4126-a55e-1e43c11884a7} - (not file)

O40 - ASIC: KB938464 - {f156e5b2-f52e-4094-800c-e7392fe62314} - (not file)

O40 - ASIC: KB911567 - {f15ee071-deb7-4cbb-951f-431c98338d8e} - (not file)

O40 - ASIC: KB976749 - {f351bc8e-a11b-44ba-a436-cee0d27e3abb} - (not file)

O40 - ASIC: KB972260 - {f3d9c2d1-579f-4d41-95ba-5354eeb398d0} - (not file)

O40 - ASIC: KB929969 - {f4de1058-dafc-4d16-b294-6ea1125bf3d3} - (not file)

O40 - ASIC: Q330994 - {F5776D81-AE53-4935-8E84-B0B283D8BCEF} - (not file)

O40 - ASIC: KB953838 - {fd4aedf6-1163-4f9c-bbf2-11aec5b873b0} - (not file)

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: Pilote de CD-ROM (Cdrom) - C:\WINDOWS\System32\DRIVERS\cdrom.sys

O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys

O41 - Driver: Pilote de la classe Clavier (Kbdclass) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys

O41 - Driver: VSCore mferkdk (mferkdk) - C:\Program Files\McAfee\VirusScan Enterprise\mferkdk.sys

O41 - Driver: McAfee Inc. (mfetdik) - C:\WINDOWS\system32\drivers\mfetdik.sys

O41 - Driver: Pilote de la classe Souris (Mouclass) - C:\WINDOWS\System32\DRIVERS\mouclass.sys

O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys

O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\System32\DRIVERS\netbios.sys

O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\System32\DRIVERS\netbt.sys

O41 - Driver: Pilote de port parallèle (Parport) - C:\WINDOWS\System32\DRIVERS\parport.sys

O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\System32\DRIVERS\rasacd.sys

O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\System32\DRIVERS\rdbss.sys

O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\System32\DRIVERS\redbook.sys

O41 - Driver: Pilote de port série (Serial) - C:\WINDOWS\System32\DRIVERS\serial.sys

O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\System32\DRIVERS\tcpip.sys

O41 - Driver: (no object) (VgaSave) - C:\WINNT\System32\drivers\vga.sys

O41 - Driver: Intel® Graphics Platform (SoftBIOS) Driver ({6080A529-897E-4629-A488-ABA0C29B635E}) - C:\WINDOWS\system32\drivers\ialmsbw.sys

O41 - Driver: avgio (avgio) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys

O41 - Driver: avipbb (avipbb) - C:\WINDOWS\system32\DRIVERS\avipbb.sys

O41 - Driver: ssmdrv (ssmdrv) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: Adobe Acrobat 5.0

O42 - Logiciel: Adobe Flash Player 10 ActiveX

O42 - Logiciel: Adobe Shockwave Player 11.5

O42 - Logiciel: CCleaner

O42 - Logiciel: EPSON Logiciel imprimante

O42 - Logiciel: EpsonNet WebManager

O42 - Logiciel: EpsonNet WinAssist V4

O42 - Logiciel: Hotfix for MDAC 2.53 (KB911562)

O42 - Logiciel: Hotfix for MDAC 2.53 (KB927779)

O42 - Logiciel: Intel® 82845G Graphics Driver Software

O42 - Logiciel: Intel® PRO Ethernet Adapter and Software

O42 - Logiciel: MSXML 4.0 SP2 (KB927978)

O42 - Logiciel: MSXML 4.0 SP2 (KB936181)

O42 - Logiciel: MSXML 4.0 SP2 (KB954430)

O42 - Logiciel: McAfee Agent

O42 - Logiciel: McAfee VirusScan Enterprise

O42 - Logiciel: Microsoft Office 2000 Professional

O42 - Logiciel: Microsoft PhotoDraw 2000

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

O42 - Logiciel: OpenOffice.org 2.3

O42 - Logiciel: QuickTime

O42 - Logiciel: SHARP AR-351/355/451/455 Series PS Printer Driver

O42 - Logiciel: SoundMAX

O42 - Logiciel: Windows 2000 Service Pack 4

O42 - Logiciel: Windows Installer 3.1 (KB893803)

O42 - Logiciel: ZipCentral 4.01

---\\ Contenu des dossiers Fichiers Communs (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files\Accessoires

O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Analog Devices

O43 - CFD:Common File Directory ----D- C:\Program Files\Avira

O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications

O43 - CFD:Common File Directory ----D- C:\Program Files\EPSON

O43 - CFD:Common File Directory ----D- C:\Program Files\EpsonNet

O43 - CFD:Common File Directory ---AD- C:\Program Files\Fichiers communs

O43 - CFD:Common File Directory ----D- C:\Program Files\IncrediMail

O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Intel

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files\McAfee

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft AntiSpyware

O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio

O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting

O43 - CFD:Common File Directory ----D- C:\Program Files\Network Associates

O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 2.3

O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express

O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime

O43 - CFD:Common File Directory ----D- C:\Program Files\SHARP

O43 - CFD:Common File Directory ----D- C:\Program Files\Snapshot Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT

O43 - CFD:Common File Directory --HAD- C:\Program Files\WindowsUpdate

O43 - CFD:Common File Directory ----D- C:\Program Files\ZipCentral

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adaptec Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Cisco Systems

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Designer

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\EPSON

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\McAfee

O43 - CFD:Common File Directory ---AD- C:\Program Files\Fichiers Communs\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Network Associates

O43 - CFD:Common File Directory ---AD- C:\Program Files\Fichiers Communs\ODBC

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:Last File Created 07/01/2010 - 07:44:05 ---A- C:\WINNT\WindowsUpdate.log

O44 - LFC:Last File Created 05/01/2010 - 10:41:19 --H-- C:\WINNT\ShellIconCache

O44 - LFC:Last File Created 04/01/2010 - 13:23:25 ---A- C:\WINNT\System32\FNTCACHE.DAT

O44 - LFC:Last File Created 04/01/2010 - 12:03:31 ---A- C:\WINNT\System32\Perflib_Perfdata_9a8.dat

O44 - LFC:Last File Created 28/12/2009 - 12:05:50 ---A- C:\WINNT\System32\Perflib_Perfdata_a10.dat

O44 - LFC:Last File Created 23/12/2009 - 12:05:39 ---A- C:\WINNT\System32\Perflib_Perfdata_9a0.dat

O44 - LFC:Last File Created 17/12/2009 - 16:14:00 ---A- C:\WINNT\randseed.rnd

O44 - LFC:Last File Created 17/12/2009 - 11:50:49 ---A- C:\WINNT\FramePkg.exe

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sglfb.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\tga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nbf.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sglfb.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sglfb.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\tga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\nbf.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sglfb.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\tga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\sglfb.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\tga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\vgasave.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\nbf.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\sglfb.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\tga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\vgasave.sys

---\\ Image File Execution Options (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

---\\ Trojan Driver Search Data (TDSD) (O52)

O52 - TDSD:HKLM\...\Drivers\"timer"="timer.drv"

O52 - TDSD:HKLM\...\Drivers32\"midimapper"="midimap.dll"

O52 - TDSD:HKLM\...\Drivers32\"msacm.imaadpcm"="imaadp32.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msadpcm"="msadp32.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msg711"="msg711.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msgsm610"="msgsm32.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.trspch"="tssoft32.acm"

O52 - TDSD:HKLM\...\Drivers32\"vidc.cvid"="iccvid.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.iv31"="ir32_32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.iv32"="ir32_32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.mrle"="msrle32.dll"

O52 - TDSD:HKLM\...\Drivers32\"vidc.msvc"="msvidc32.dll"

O52 - TDSD:HKLM\...\Drivers32\"wavemapper"="msacm32.drv"

O52 - TDSD:HKLM\...\Drivers32\"msacm.lhacm"="lhacm.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.msg723"="msg723.acm"

O52 - TDSD:HKLM\...\Drivers32\"vidc.M263"="msh263.drv"

O52 - TDSD:HKLM\...\Drivers32\"vidc.M261"="msh261.drv"

O52 - TDSD:HKLM\...\Drivers32\"vidc.I420"="msh263.drv"

O52 - TDSD:HKLM\...\Drivers32\"msacm.iac2"="C:\WINNT\System32\iac25_32.ax"

O52 - TDSD:HKLM\...\Drivers32\"vidc.iv50"="ir50_32.dll"

O52 - TDSD:HKLM\...\Drivers32\"aux"="mmdrv.dll"

O52 - TDSD:HKLM\...\Drivers32\"wave1"=""

O52 - TDSD:HKLM\...\Drivers32\"wave2"=""

O52 - TDSD:HKLM\...\Drivers32\"wave3"=""

O52 - TDSD:HKLM\...\Drivers32\"wave4"=""

O52 - TDSD:HKLM\...\Drivers32\"wave5"=""

O52 - TDSD:HKLM\...\Drivers32\"wave6"=""

O52 - TDSD:HKLM\...\Drivers32\"wave7"=""

O52 - TDSD:HKLM\...\Drivers32\"wave8"=""

O52 - TDSD:HKLM\...\Drivers32\"wave9"=""

O52 - TDSD:HKLM\...\Drivers32\"midi1"=""

O52 - TDSD:HKLM\...\Drivers32\"midi2"=""

O52 - TDSD:HKLM\...\Drivers32\"midi3"=""

O52 - TDSD:HKLM\...\Drivers32\"midi4"=""

O52 - TDSD:HKLM\...\Drivers32\"midi5"=""

O52 - TDSD:HKLM\...\Drivers32\"midi6"=""

O52 - TDSD:HKLM\...\Drivers32\"midi7"=""

O52 - TDSD:HKLM\...\Drivers32\"midi8"=""

O52 - TDSD:HKLM\...\Drivers32\"midi9"=""

O52 - TDSD:HKLM\...\Drivers32\"aux1"=""

O52 - TDSD:HKLM\...\Drivers32\"aux2"=""

O52 - TDSD:HKLM\...\Drivers32\"aux3"=""

O52 - TDSD:HKLM\...\Drivers32\"aux4"=""

O52 - TDSD:HKLM\...\Drivers32\"aux5"=""

O52 - TDSD:HKLM\...\Drivers32\"aux6"=""

O52 - TDSD:HKLM\...\Drivers32\"aux7"=""

O52 - TDSD:HKLM\...\Drivers32\"aux8"=""

O52 - TDSD:HKLM\...\Drivers32\"aux9"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer1"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer2"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer3"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer4"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer5"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer6"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer7"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer8"=""

O52 - TDSD:HKLM\...\Drivers32\"mixer9"=""

O52 - TDSD:HKLM\...\Drivers32\"wdmaud.drv"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"wave"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"midi"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"mixer"="wdmaud.drv"

O52 - TDSD:HKLM\...\Drivers32\"msacm.sl_anet"="sl_anet.acm"

O52 - TDSD:HKLM\...\Drivers32\"msacm.l3acm"="C:\WINNT\system32\l3codeca.acm"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.MP42"="mpg4c32.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.MPG4"="mpg4c32.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.UYVY"="msyuv.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.YUY2"="msyuv.dll"

O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVYU"="msyuv.dll"

O52 - TDSD:HKLM\...\drivers.desc\"C:\WINNT\System32\iac25_32.ax"="Indeo® audio software"

O52 - TDSD:HKLM\...\drivers.desc\"ir50_32.dll"="Indeo® video 5.10"

O52 - TDSD:HKLM\...\drivers.desc\"wdmaud.drv"="SoundMAX Integrated Digital Audio"

O52 - TDSD:HKLM\...\drivers.desc\"l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec"

O52 - TDSD:HKLM\...\drivers.desc\"mpg4c32.dll"="Microsoft MPEG-4 Video Codec v1"

O52 - TDSD:HKLM\...\drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec"

O52 - TDSD:HKLM\...\drivers.desc\"C:\WINNT\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec"

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=149

O56 - MWPE:[HKCU\...\Policies\Explorer] - "CDRAutoRun"=0

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a302.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a303.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a304.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a305.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a306.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a307.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a308.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a309.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a310.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a311.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\a312.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\acpi.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\acpiec.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\aeaudio.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\AFD.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ASPI32.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\asyncmac.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\atapi.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\atmarpc.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\atmlane.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\atmuni.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\audstub.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\avgntflt.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\bdasup.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\beep.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ccdecode.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdaudio.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdfs.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdr4_2K.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdralw2k.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cdrom.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\cinemst2.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\class2.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\classpnp.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\DISK.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\diskdump.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\diskperf.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\DLC.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\dmboot.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\dmio.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\dmload.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\DMusic.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\dxapi.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\e1000nt5.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\efs.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\EPNUSB01.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\fastfat.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\fdc.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\flpydisk.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\fsvga.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\fs_rec.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ftdisk.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\hidclass.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\hidparse.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\hidusb.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\i8042prt.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ialmkchw.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ialmnt5.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ialmsbw.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ipfltdrv.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ipinip.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ipnat.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ipsec.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\irda.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\irenum.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\irsir.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\isapnp.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\kbdclass.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\kmixer.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ks.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ksecdd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\lvcam.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\lvcodek.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\lvsound.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mf.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfeapfk.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfeavfk.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfebopk.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfehidk.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mfetdik.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mnmdd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\modem.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mouclass.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mouhid.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mountmgr.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mpe.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mrxsmb.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\msdv.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\msfs.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\msgpc.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\msircomm.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mskssrv.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mspclock.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\MSPQM.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mstee.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\mup.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nabtsfec.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nbf.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndis.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndisip.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndistapi.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndiswan.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ndproxy.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\netbios.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\netbt.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\netdtect.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nmnt.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\npfs.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ntfs.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\null.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwlnkflt.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwlnkfwd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\NWLNKIPX.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwlnknb.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwlnkspx.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\nwrdr.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\parallel.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\parport.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\partmgr.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\parvdm.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\pci.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\pciide.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\pciidex.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\pcmcia.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\portcls.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\psched.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ptilink.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rasacd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rasirda.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rasl2tp.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\raspptp.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\raspti.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rawwan.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rca.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rdbss.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\redbook.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\rootmdm.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\SCSIPORT.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\serenum.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\serial.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\sfloppy.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\sfmatalk.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\slip.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\smclib.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\smsens.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\smwdm.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\sonydcam.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\SRV.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\stream.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\streamip.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\streams.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\swenum.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\swmidi.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\sysaudio.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tape.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tcpip.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tdi.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tosdvd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\tsbvcap.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\udfs.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\uhcd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\UPDATE.SYS

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbcamd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbehci.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbhub.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbhub20.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbintel.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbport.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbprint.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\usbstor.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\vch.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\vdmindvd.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\vga.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\videoprt.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wa301a.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wa301b.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wanarp.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wdmaud.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wmilib.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\ws2ifsl.sys

O58 - SDL:System Drivers List - C:\WINNT\system32\drivers\wstcodec.sys

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 04/01/2010 - 08:22:14 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@sgplus[1].txt

O61 - LFC:Last File Created 04/01/2010 - 08:23:52 ---A- C:\Documents And Settings\CMA_BUD12\Favoris\franck\Ville de Marseille - Intranet Municipal.url

O61 - LFC:Last File Created 04/01/2010 - 11:11:20 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@axabanque[2].txt

O61 - LFC:Last File Created 04/01/2010 - 12:05:05 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@h.msn[1].txt

O61 - LFC:Last File Created 04/01/2010 - 12:14:57 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\Acr60.tmp

O61 - LFC:Last File Created 04/01/2010 - 12:16:30 ---A- C:\Documents And Settings\Administrateur\UserData\index.dat

O61 - LFC:Last File Created 04/01/2010 - 12:16:57 ---A- C:\Documents And Settings\Administrateur\UserData\AVQNATAJ\pmocntr[1].xml

O61 - LFC:Last File Created 04/01/2010 - 12:25:29 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012010010420100105\index.dat

O61 - LFC:Last File Created 04/01/2010 - 13:01:25 ---A- C:\Documents And Settings\Administrateur\Local Settings\Temp\dd_vcredistMSI2528.txt

O61 - LFC:Last File Created 04/01/2010 - 13:01:26 ---A- C:\Documents And Settings\Administrateur\Local Settings\Temp\dd_vcredistUI2528.txt

O61 - LFC:Last File Created 04/01/2010 - 13:24:32 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\{A14CD6FC-3BA8-4703-87BF-E3247CE382F5}.ini

O61 - LFC:Last File Created 04/01/2010 - 14:36:47 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@ie.search.msn[1].txt

O61 - LFC:Last File Created 04/01/2010 - 14:37:19 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.bing[1].txt

O61 - LFC:Last File Created 04/01/2010 - 14:37:32 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@c.bing[1].txt

O61 - LFC:Last File Created 04/01/2010 - 14:37:34 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@bing[2].txt

O61 - LFC:Last File Created 04/01/2010 - 14:42:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Flash Player\#SharedObjects\DRCB92Y4\static.ak.fbcdn.net\swf\XdComm.swf\cache.sol

O61 - LFC:Last File Created 04/01/2010 - 14:42:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#static.ak.fbcdn.net\settings.sol

O61 - LFC:Last File Created 04/01/2010 - 14:42:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol

O61 - LFC:Last File Created 04/01/2010 - 14:47:48 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@social.ohmydollz[2].txt

O61 - LFC:Last File Created 04/01/2010 - 14:49:10 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@eveiletjeux[1].txt

O61 - LFC:Last File Created 04/01/2010 - 14:50:01 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@msnportal.112.2o7[1].txt

O61 - LFC:Last File Created 04/01/2010 - 14:50:03 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@scorecardresearch[1].txt

O61 - LFC:Last File Created 04/01/2010 - 14:50:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@c.msn[1].txt

O61 - LFC:Last File Created 04/01/2010 - 14:57:20 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\cache\org.openoffice.Office.Logging.dat

O61 - LFC:Last File Created 04/01/2010 - 14:57:22 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\config\javasettings_Windows_x86.xml

O61 - LFC:Last File Created 04/01/2010 - 14:57:22 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Logging.xcu

O61 - LFC:Last File Created 04/01/2010 - 14:57:26 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\cache\org.openoffice.Office.UI.DbuCommands.dat

O61 - LFC:Last File Created 04/01/2010 - 15:04:37 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@xiti[1].txt

O61 - LFC:Last File Created 04/01/2010 - 15:04:48 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.cheriefm[1].txt

O61 - LFC:Last File Created 04/01/2010 - 15:08:35 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@cheriefm[2].txt

O61 - LFC:Last File Created 04/01/2010 - 15:17:58 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@boursoramabanque.solution.weborama[2].txt

O61 - LFC:Last File Created 04/01/2010 - 15:32:11 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@facebook[1].txt

O61 - LFC:Last File Created 04/01/2010 - 15:40:30 ---A- C:\Documents And Settings\Default User\Cookies\index.dat

O61 - LFC:Last File Created 04/01/2010 - 15:40:30 ---A- C:\Documents And Settings\Default User\Local Settings\Historique\History.IE5\index.dat

O61 - LFC:Last File Created 04/01/2010 - 15:43:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@notifier.avira[2].txt

O61 - LFC:Last File Created 04/01/2010 - 16:12:10 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@msn[2].txt

O61 - LFC:Last File Created 05/01/2010 - 08:42:26 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@ems6[1].txt

O61 - LFC:Last File Created 05/01/2010 - 08:42:43 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@estat[1].txt

O61 - LFC:Last File Created 05/01/2010 - 08:44:33 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.auchan[2].txt

O61 - LFC:Last File Created 05/01/2010 - 08:44:42 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@auchan[2].txt

O61 - LFC:Last File Created 05/01/2010 - 10:23:34 ---A- C:\Documents And Settings\CMA_BUD12\Recent\http--msg-jaune.vdm.mars-attach-Barème%20applicable%20au%2005-01-2010.docsid=5PrW1CPn64M&mbox=INBOX&charset=escaped_unicode&uid=847&number=4&filename=Bar%E8me%20applicable%20au%2005-01-2010.doc.lnk

O61 - LFC:Last File Created 05/01/2010 - 10:23:37 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Word.pip

O61 - LFC:Last File Created 05/01/2010 - 10:29:17 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012010010520100106\index.dat

O61 - LFC:Last File Created 05/01/2010 - 10:29:54 ---A- C:\Documents And Settings\Administrateur\Local Settings\Temp\AVSETUP_4b43063a\setup.log

O61 - LFC:Last File Created 05/01/2010 - 10:33:42 -SH-- C:\Documents And Settings\Administrateur\Recent\Desktop.ini

O61 - LFC:Last File Created 05/01/2010 - 11:23:44 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\wecerr.txt

O61 - LFC:Last File Created 05/01/2010 - 11:24:10 ---A- C:\Documents And Settings\CMA_BUD12\Recent\http--msg-jaune.vdm.mars-attach-Barème%20applicable%20au%2006-01-2010.docsid=XT3Cusj59e4&mbox=INBOX&charset=escaped_unicode&uid=848&number=4&filename=Bar%E8me%20applicable%20au%2006-01-2010.doc.lnk

O61 - LFC:Last File Created 05/01/2010 - 11:24:11 ---A- C:\Documents And Settings\CMA_BUD12\Recent\Internet Explorer (4).lnk

O61 - LFC:Last File Created 05/01/2010 - 11:29:12 ---A- C:\Documents And Settings\CMA_BUD12\Recent\Loisirs Hiver[1] (2).lnk

O61 - LFC:Last File Created 05/01/2010 - 11:29:12 ---A- C:\Documents And Settings\CMA_BUD12\Recent\U95VOGCY.lnk

O61 - LFC:Last File Created 05/01/2010 - 11:29:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Récents\Loisirs Hiver[1].lnk

O61 - LFC:Last File Created 05/01/2010 - 11:29:41 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Récents\U0PB7MH7.lnk

O61 - LFC:Last File Created 05/01/2010 - 11:32:16 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Récents\Loisirs Hiver.lnk

O61 - LFC:Last File Created 05/01/2010 - 11:32:18 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Office\Récents\Bureau.lnk

O61 - LFC:Last File Created 05/01/2010 - 11:33:33 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\uno_packages\cache\stamp.sys

O61 - LFC:Last File Created 05/01/2010 - 11:33:39 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\uno_packages\cache\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\Windows_x86rc

O61 - LFC:Last File Created 05/01/2010 - 11:33:39 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\uno_packages\cache\registry\com.sun.star.comp.deployment.component.PackageRegistryBackend\unorc

O61 - LFC:Last File Created 05/01/2010 - 11:35:11 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Setup.xcu

O61 - LFC:Last File Created 05/01/2010 - 11:35:44 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Recovery.xcu

O61 - LFC:Last File Created 05/01/2010 - 11:35:44 ---A- C:\Documents And Settings\CMA_BUD12\Recent\Loisirs Hiver.lnk

O61 - LFC:Last File Created 05/01/2010 - 11:35:45 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Views.xcu

O61 - LFC:Last File Created 05/01/2010 - 15:29:13 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Adobe\Flash Player\AssetCache\5UZY8VA3\1846548181EAE8A4BB86AFC74FD021D9A0F6DFA6.heu

O61 - LFC:Last File Created 05/01/2010 - 15:37:55 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@auto.search.msn[1].txt

O61 - LFC:Last File Created 05/01/2010 - 15:45:18 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.vente-en-ligne-esf[1].txt

O61 - LFC:Last File Created 05/01/2010 - 16:00:46 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@caisse-epargne[2].txt

O61 - LFC:Last File Created 05/01/2010 - 16:06:24 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.caisse-epargne[2].txt

O61 - LFC:Last File Created 05/01/2010 - 16:07:34 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@axabanqueglobal.solution.weborama[2].txt

O61 - LFC:Last File Created 05/01/2010 - 16:07:39 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@clients.axabanque[1].txt

O61 - LFC:Last File Created 05/01/2010 - 16:07:58 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@weborama[1].txt

O61 - LFC:Last File Created 05/01/2010 - 16:09:08 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@apmebf[2].txt

O61 - LFC:Last File Created 05/01/2010 - 16:09:22 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Shockwave Player\Shockwave Log

O61 - LFC:Last File Created 05/01/2010 - 16:10:10 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@zylom[2].txt

O61 - LFC:Last File Created 05/01/2010 - 16:10:29 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\AAX14A.tmp

O61 - LFC:Last File Created 05/01/2010 - 16:10:47 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\DesktopProtection\AccessProtectionLog.txt

O61 - LFC:Last File Created 05/01/2010 - 16:12:52 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Macromedia\Shockwave Player\dirapi.mch

O61 - LFC:Last File Created 06/01/2010 - 08:35:16 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@fr.msn[2].txt

O61 - LFC:Last File Created 06/01/2010 - 08:35:29 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@emedia[2].txt

O61 - LFC:Last File Created 06/01/2010 - 08:58:10 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Jobs.xcu

O61 - LFC:Last File Created 06/01/2010 - 12:29:14 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@eurobilltracker[1].txt

O61 - LFC:Last File Created 06/01/2010 - 12:29:14 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@fr.eurobilltracker[2].txt

O61 - LFC:Last File Created 06/01/2010 - 12:50:05 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.kadokado[2].txt

O61 - LFC:Last File Created 06/01/2010 - 12:50:56 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@kadokado[2].txt

O61 - LFC:Last File Created 06/01/2010 - 12:51:13 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@20minutes[1].txt

O61 - LFC:Last File Created 06/01/2010 - 14:10:36 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.flexiweb[2].txt

O61 - LFC:Last File Created 06/01/2010 - 14:12:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@pc-infopratique[1].txt

O61 - LFC:Last File Created 06/01/2010 - 14:13:36 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@forum-windows[1].txt

O61 - LFC:Last File Created 06/01/2010 - 14:23:18 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\uno_packages\cache\log.txt

O61 - LFC:Last File Created 06/01/2010 - 14:28:36 -SH-- C:\Documents And Settings\Administrateur\Local Settings\Temporary Internet Files\desktop.ini

O61 - LFC:Last File Created 06/01/2010 - 14:30:28 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@xiti[1].txt

O61 - LFC:Last File Created 06/01/2010 - 14:30:30 ---A- C:\Documents And Settings\Administrateur\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol

O61 - LFC:Last File Created 06/01/2010 - 14:56:30 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@ftv-publicite[1].txt

O61 - LFC:Last File Created 06/01/2010 - 14:56:31 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@www.spartoo[1].txt

O61 - LFC:Last File Created 06/01/2010 - 14:56:32 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@meteo.france2[2].txt

O61 - LFC:Last File Created 06/01/2010 - 14:56:38 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@spartoo[1].txt

O61 - LFC:Last File Created 06/01/2010 - 15:57:05 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012010010620100107\index.dat

O61 - LFC:Last File Created 06/01/2010 - 16:08:43 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@libellules[1].txt

O61 - LFC:Last File Created 06/01/2010 - 16:09:33 ---A- C:\Documents And Settings\CMA_BUD12\Recent\HiJackThis.lnk

O61 - LFC:Last File Created 06/01/2010 - 16:09:41 ---A- C:\Documents And Settings\CMA_BUD12\Bureau\HiJackThis.exe

O61 - LFC:Last File Created 06/01/2010 - 16:09:42 ---A- C:\Documents And Settings\Administrateur\Bureau\HiJackThis.exe

O61 - LFC:Last File Created 06/01/2010 - 16:11:00 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\_ZCTmp.Dir\_ZC000.TMP

O61 - LFC:Last File Created 06/01/2010 - 16:11:04 ---A- C:\Documents And Settings\CMA_BUD12\Bureau\hijackthis.log

O61 - LFC:Last File Created 06/01/2010 - 16:16:43 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@login.live[2].txt

O61 - LFC:Last File Created 06/01/2010 - 16:16:49 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@mail.live[1].txt

O61 - LFC:Last File Created 06/01/2010 - 16:17:45 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@msn[3].txt

O61 - LFC:Last File Created 06/01/2010 - 16:19:56 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Temp\MSW25F.tmp

O61 - LFC:Last File Created 06/01/2010 - 16:42:05 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\DesktopProtection\OnDemandScanLog.txt

O61 - LFC:Last File Created 06/01/2010 - 20:49:26 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\catalog.z

O61 - LFC:Last File Created 06/01/2010 - 20:53:05 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Server.xml

O61 - LFC:Last File Created 06/01/2010 - 20:53:16 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Compiled.xml

O61 - LFC:Last File Created 07/01/2010 - 00:35:42 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\McScript_backup.log

O61 - LFC:Last File Created 07/01/2010 - 07:00:01 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CMABUD122_backup.log

O61 - LFC:Last File Created 07/01/2010 - 08:01:38 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\PrdMgr_CMABUD122_backup.log

O61 - LFC:Last File Created 07/01/2010 - 08:16:13 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\Adobe\Shockwave Player 11\Shockwave Log

O61 - LFC:Last File Created 07/01/2010 - 08:24:09 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@marseille[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:24:23 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@verify[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:24:39 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@google[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:38:53 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@telechargement.zebulon[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:38:53 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@tradedoubler[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:39:11 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@server.iad.liveperson[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:39:12 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@19452074[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:39:51 -SH-- C:\Documents And Settings\Administrateur\ntuser.ini

O61 - LFC:Last File Created 07/01/2010 - 08:40:15 -SHA- C:\Documents And Settings\CMA_BUD12\Application Data\Microsoft\Internet Explorer\Desktop.htt

O61 - LFC:Last File Created 07/01/2010 - 08:40:55 ---A- C:\Documents And Settings\CMA_BUD12\Application Data\OpenOffice.org2\user\registry\data\org\openoffice\Office\Common.xcu

O61 - LFC:Last File Created 07/01/2010 - 08:42:00 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\index.dat

O61 - LFC:Last File Created 07/01/2010 - 08:42:00 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Historique\History.IE5\index.dat

O61 - LFC:Last File Created 07/01/2010 - 08:42:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@live[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:48:40 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@verify[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:49:14 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.commentcamarche[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:52:32 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@commentcamarche[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:53:21 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@google[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:54:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@piwik[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:54:17 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@forum.malekal[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:01 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@nuggad[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:07 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@affiliation.fotovista[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:07 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@sdv[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:08 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@bubblestat[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:08 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@futura-sciences[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:08 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@www.pixmania[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:09 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@forums.futura-sciences[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:36 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@pixmania[1].txt

O61 - LFC:Last File Created 07/01/2010 - 08:55:56 ---A- C:\Documents And Settings\CMA_BUD12\Local Settings\Historique\History.IE5\MSHist012010010720100108\index.dat

O61 - LFC:Last File Created 07/01/2010 - 08:58:56 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@telechargement.zebulon[2].txt

O61 - LFC:Last File Created 07/01/2010 - 08:58:56 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@tradedoubler[2].txt

O61 - LFC:Last File Created 07/01/2010 - 09:03:55 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@zebulon[1].txt

O61 - LFC:Last File Created 07/01/2010 - 09:04:05 ---A- C:\Documents And Settings\CMA_BUD12\Cookies\cma_bud12@forum.zebulon[2].txt

O61 - LFC:Last File Created 07/01/2010 - 09:05:07 --HA- C:\Documents And Settings\CMA_BUD12\NTUSER.DAT

O61 - LFC:Last File Created 07/01/2010 - 09:05:08 --HA- C:\Documents And Settings\CMA_BUD12\ntuser.dat.LOG

O61 - LFC:Last File Created 07/01/2010 - 09:05:11 -SHA- C:\Documents And Settings\CMA_BUD12\ntuser.ini

O61 - LFC:Last File Created 07/01/2010 - 09:05:14 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CMABUD122_error.log

O61 - LFC:Last File Created 07/01/2010 - 09:06:59 ---A- C:\Documents And Settings\Administrateur\Cookies\index.dat

O61 - LFC:Last File Created 07/01/2010 - 09:06:59 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\index.dat

O61 - LFC:Last File Created 07/01/2010 - 09:09:20 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@bubblestat[1].txt

O61 - LFC:Last File Created 07/01/2010 - 09:14:13 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@zebulon[1].txt

O61 - LFC:Last File Created 07/01/2010 - 09:14:57 ---A- C:\Documents And Settings\Administrateur\Cookies\administrateur@forum.zebulon[1].txt

O61 - LFC:Last File Created 07/01/2010 - 09:19:31 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\DesktopProtection\BufferOverflowProtectionLog.txt

O61 - LFC:Last File Created 07/01/2010 - 09:21:19 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\DesktopProtection\OnAccessScanLog.txt

O61 - LFC:Last File Created 07/01/2010 - 09:23:17 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\MSHist012010010720100108\index.dat

O61 - LFC:Last File Created 07/01/2010 - 09:24:18 ---A- C:\Documents And Settings\Administrateur\Bureau\ZHPDiag.zip

O61 - LFC:Last File Created 07/01/2010 - 09:24:34 ---A- C:\Documents And Settings\Administrateur\Recent\ZHPDiag.zip.lnk

O61 - LFC:Last File Created 07/01/2010 - 09:25:33 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\LastPropsSentToServer.xml

O61 - LFC:Last File Created 07/01/2010 - 09:25:33 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\NextProp.xml

O61 - LFC:Last File Created 07/01/2010 - 09:26:05 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\SiteStat.xml

O61 - LFC:Last File Created 07/01/2010 - 09:26:07 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Agent.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:07 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\28.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\30.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\32.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\34.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\30.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\32.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:08 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\34.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:09 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\EPOAGENT3000_DEPLOYMENT_28.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:10 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Task\TaskInternalData\28.ini

O61 - LFC:Last File Created 07/01/2010 - 09:26:26 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\LastProp.xml

O61 - LFC:Last File Created 07/01/2010 - 09:26:53 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Current\SPAMSAFE1000\SK_det.mcs

O61 - LFC:Last File Created 07/01/2010 - 09:27:28 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\AgentEvents\2010010709272853100000B40.xml

O61 - LFC:Last File Created 07/01/2010 - 09:27:28 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\McScript_error.log

O61 - LFC:Last File Created 07/01/2010 - 09:27:28 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\UpdateHistory.ini

O61 - LFC:Last File Created 07/01/2010 - 09:27:29 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\PrdMgr_CMABUD122.log

O61 - LFC:Last File Created 07/01/2010 - 09:27:31 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\McScript.log

O61 - LFC:Last File Created 07/01/2010 - 09:30:34 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CMABUD122.log

O61 - LFC:Last File Created 07/01/2010 - 09:30:34 ---A- C:\Documents And Settings\All Users\Application Data\Network Associates\Common Framework\Db\Agent_CMABUD122.xml

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: HijackThis 2.0.2

O63 - Logiciel: Dial-a-fix

End of the scan: 828 lines

pear · le 7 janvier 2010

Bonjour,

Un rootkit!

Créez un sur C:`\ un dossier nommé Gmer

Télécharger gmer

vers C:\gmer

Clic droit sur fichier téléchargé->Extraire ici

Avant toute utilisation de GMER, veuillez désactiver votre antivirus, antispyware sous peine de crash.

Double-clic sur gmer.exe

L'onglet Rootkit/Malware permet de lancer un scan anti-rootkit.

Clic sur l'onglet "rootkit"

Ne scanner que la partition système pour gagner du temps.

Faites un clic droit dans la fenêtre vide et dans options cliquez"Only non Ms Files"

Clic sur Scan

Les informations sur le scan s'affichent alors, les éléments détectés comme rootkit apparaissent en rouge dans chaque section.

C'est ce qu'il faudra copier.

Le bouton Copy permet de récupérer le résultat pour effectuer un copier/coller.

Le bouton Save permet l'enregistrement du rapport sur votre disque au format texte.

Collez le résultat dans un prochain message

franck de Marseille · le 7 janvier 2010

Bonjour,

Un rootkit!

Créez un sur C:`\ un dossier nommé Gmer

Télécharger gmer

vers C:\gmer

Clic droit sur fichier téléchargé->Extraire ici

Avant toute utilisation de GMER, veuillez désactiver votre antivirus, antispyware sous peine de crash.

Double-clic sur gmer.exe

L'onglet Rootkit/Malware permet de lancer un scan anti-rootkit.

Clic sur l'onglet "rootkit"

Ne scanner que la partition système pour gagner du temps.

Faites un clic droit dans la fenêtre vide et dans options cliquez"Only non Ms Files"

Clic sur Scan

Les informations sur le scan s'affichent alors, les éléments détectés comme rootkit apparaissent en rouge dans chaque section.

C'est ce qu'il faudra copier.

Le bouton Copy permet de récupérer le résultat pour effectuer un copier/coller.

Le bouton Save permet l'enregistrement du rapport sur votre disque au format texte.

Collez le résultat dans un prochain message

Re bonjour,

Voilà mais je n'ai rien en rouge.... :

GMER 1.0.15.15281 - http://www.gmer.net

Rootkit scan 2010-01-07 11:44:38

Windows 5.0.2195 Service Pack 4

Running: gmer.exe; Driver: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\pwryrpog.sys

---- System - GMER 1.0.15 ----

SSDT 81348406 ZwCreateKey

SSDT 813483FC ZwCreateThread

SSDT 8134840B ZwDeleteKey

SSDT 81348415 ZwDeleteValueKey

SSDT 8134841A ZwLoadKey

SSDT 813483E8 ZwOpenProcess

SSDT 813483ED ZwOpenThread

SSDT 81348424 ZwReplaceKey

SSDT 8134841F ZwRestoreKey

SSDT 81348410 ZwSetValueKey

SSDT 813483F7 ZwTerminateProcess

INT 0x1F \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064908

INT 0x37 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 800640B8

INT 0x3D \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80065254

INT 0x41 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 800650C8

INT 0x50 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064190

INT 0xC1 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 800642FC

INT 0xD1 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80063964

INT 0xE1 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064858

INT 0xE3 \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 800645D4

INT 0xFD \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064D64

INT 0xFE \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80064EEC

Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwCreateFile [0xB6A6B1A8]

Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwCreateProcess [0xB6A6B1D0]

Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwMapViewOfSection [0xB6A6B1FA]

Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwOpenKey [0xB6A6B117]

Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwProtectVirtualMemory [0xB6A6B1BC]

Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwUnmapViewOfSection [0xB6A6B20E]

Code \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) ZwYieldExecution [0xB6A6B1E4]

---- Modules - GMER 1.0.15 ----

Module \WINNT\System32\hal.dll (Hardware Abstraction Layer DLL/Microsoft Corporation) 80062000-80076100 (82176 bytes)

Module dmload.sys (NT Disk Manager Startup Driver/VERITAS Software Corp.) ED902000-ED904000 (8192 bytes)

Module dmio.sys (Pilote E/S du Gestionnaire de disques NT/VERITAS Software Corp.) BFF99000-BFFBB000 (139264 bytes)

Module disk.sys (PnP Disk Driver/Microsoft Corporation) ED690000-ED698000 (32768 bytes)

Module \SystemRoot\System32\DRIVERS\ialmnt5.sys (Controller Hub for Intel Graphics Driver/Intel Corporation) BFE5D000-BFE71000 (81920 bytes)

Module \SystemRoot\System32\DRIVERS\e1000nt5.sys (Intel® PRO/1000 Adapter NDIS 5 deserialized driver/Intel Corporation) BFE22000-BFE3B000 (102400 bytes)

Module \SystemRoot\System32\Drivers\Cdr4_2K.SYS (CDR4_2k CDR Helper/Roxio) ED470000-ED47F000 (61440 bytes)

Module \SystemRoot\System32\DRIVERS\cdrom.sys (SCSI CD-ROM Driver/Microsoft Corporation) ED700000-ED707000 (28672 bytes)

Module \SystemRoot\System32\Drivers\Cdralw2k.SYS (CDRAL for Windows 2000 Kernel Driver/Roxio) ED710000-ED716000 (24576 bytes)

Module \SystemRoot\system32\drivers\smwdm.sys (SoundMAX Integrated Digital Audio /Analog Devices, Inc.) BFDA1000-BFE22000 (528384 bytes)

Module \SystemRoot\system32\drivers\aeaudio.sys (Andrea Audio Stub Driver/Andrea Electronics Corporation) ED90A000-ED90C000 (8192 bytes)

Module \SystemRoot\System32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) ED770000-ED775000 (20480 bytes)

Module \SystemRoot\system32\drivers\ialmsbw.sys (Intel Graphics Platform (SoftBIOS) Driver for Windows 2000® & Windows XP/Intel Corporation) B7C5B000-B7C72000 (94208 bytes)

Module \SystemRoot\system32\drivers\ialmkchw.sys (Intel Graphics Chipset (KCH) Driver for Windows 2000® & Windows XP/Intel Corporation) B7C49000-B7C5B000 (73728 bytes)

Module \SystemRoot\System32\DRIVERS\flpydisk.sys (Floppy Driver/Microsoft Corporation) ED7A8000-ED7AD000 (20480 bytes)

Module \SystemRoot\System32\Drivers\mnmdd.SYS (Frame buffer simulator/Microsoft Corporation) EDA0E000-EDA0F000 (4096 bytes)

Module \SystemRoot\system32\drivers\mfetdik.sys (Anti-Virus Mini-Firewall Driver/McAfee, Inc.) ED530000-ED53C000 (49152 bytes)

Module \??\C:\Program_Files\McAfee\VirusScan_Enterprise\mferkdk.sys (VSCore Code Analysis Driver/McAfee, Inc.) ED6D0000-ED6D7000 (28672 bytes)

Module \SystemRoot\system32\DRIVERS\avipbb.sys B7A0E000-B7A25000 (94208 bytes)

Module \SystemRoot\System32\ialmdnt5.dll (Controller Hub for Intel Graphics Driver/Intel Corporation) B79DF000-B79F8000 (102400 bytes)

Module \SystemRoot\System32\ialmrnt5.dll (Controller Hub for Intel Graphics Driver/Intel Corporation) ED580000-ED58D000 (53248 bytes)

Module \SystemRoot\System32\ialmdev5.DLL (Component GHAL Driver/Intel Corporation) B79B7000-B79DF000 (163840 bytes)

Module \SystemRoot\System32\ialmdd5.DLL (DirectDraw® Driver for Intel® Graphics Technology/Intel Corporation) B7930000-B79B7000 (552960 bytes)

Module \SystemRoot\System32\Drivers\Aspi32.SYS (ASPI for WIN32 Kernel Driver/Adaptec) B7808000-B780C000 (16384 bytes)

Module \SystemRoot\system32\drivers\mfehidk.sys (Host Intrusion Detection Link Driver/McAfee, Inc.) B6A57000-B6A81000 (172032 bytes)

Module \SystemRoot\System32\ATMFD.DLL (Windows NT OpenType/Type 1 Font Driver/Adobe Systems Incorporated) B6694000-B66DC000 (294912 bytes)

Module \SystemRoot\system32\drivers\mfebopk.sys (Buffer Overflow Protection Driver/McAfee, Inc.) ED788000-ED78F000 (28672 bytes)

Module \SystemRoot\system32\drivers\mfeapfk.sys (Access Protection Filter Driver/McAfee, Inc.) B67D6000-B67E5000 (61440 bytes)

Module \SystemRoot\system32\drivers\mfeavfk.sys (Anti-Virus File System Filter Driver/McAfee, Inc.) B6588000-B6599000 (69632 bytes)

Module \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\pwryrpog.sys (GMER) B654C000-B6563000 (94208 bytes)

---- Processes - GMER 1.0.15 ----

Process C:\WINNT\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 176

Library C:\WINNT\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 0x5FFF0000

Process C:\WINNT\system32\winlogon.exe (Application d'ouverture de session Windows NT/Microsoft Corporation) 196

Library C:\WINNT\system32\PROFMAP.dll (Userenv/Microsoft Corporation) 0x68EF0000

Library C:\WINNT\system32\msgina.dll (Application d'ouverture de session Windows NT/Microsoft Corporation) 0x76960000

Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Library C:\WINNT\system32\MSACM32.dll (Filtre audio ACM Microsoft/Microsoft Corporation) 0x773E0000

Process C:\WINNT\system32\services.exe (Applications Services et Contrôleur/Microsoft Corporation) 224

Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Library C:\WINNT\system32\dmserver.dll (DLL Service gestionnaire de disque logique/VERITAS Software Corp.) 0x76860000

Library C:\WINNT\system32\cryptsvc.dll (Protected storage server/Microsoft Corporation) 0x76870000

Process C:\WINNT\system32\lsass.exe (Exécutable LSA et DLL serveur (version d'exportation)/Microsoft Corporation) 236

Library C:\WINNT\system32\lsass.exe (Exécutable LSA et DLL serveur (version d'exportation)/Microsoft Corporation) 0x01000000

Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Process C:\Program Files\Internet Explorer\IEXPLORE.EXE (Internet Explorer/Microsoft Corporation) 284

Library C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx 0x10000000

Library C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll (VSCore Script Scanner/McAfee, Inc.) 0x14490000

Library C:\WINNT\system32\MSACM32.dll (Filtre audio ACM Microsoft/Microsoft Corporation) 0x773E0000

Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Library C:\WINNT\system32\USP10.DLL (Uniscribe Unicode script processor/Microsoft Corporation) 0x66410000

Library C:\WINNT\system32\Macromed\Flash\Flash10b.ocx (Adobe Flash Player 10.0 r22/Adobe Systems, Inc.) 0x03630000

Process C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ZCTmp.Dir\gmer.exe 372

Library C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ZCTmp.Dir\gmer.exe 0x00400000

Process C:\WINNT\system32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 428

Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Process C:\WINNT\system32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 456

Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Library C:\WINNT\system32\E_SL2389.DLL (EPSON Bidirectional Monitor/SEIKO EPSON CORPORATION) 0x50400000

Library C:\WINNT\system32\pjlmon.dll (Spooler Setup DLL/Microsoft Corporation) 0x76A70000

Library C:\WINNT\system32\scnwpm.dll (SHARP TCP/IP Printer Port Monitor/Sharp Corporation) 0x00D20000

Library C:\WINNT\system32\SH2HLMON.DLL (Sharp Printer Driver/SHARP CORPORATION) 0x10000000

Process C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe 512

Library C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBSVC.exe 0x00400000

Library C:\WINNT\system32\eEBUtil.dll (DebugTrace Tool/SEIKO EPSON CORPORATION) 0x10000000

Library C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBRSVC.dll 0x00650000

Library C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBIPDev.dll (eEBAPI IP Communication Device/SEIKO EPSON CORPORATION) 0x00690000

Library C:\Program Files\Fichiers communs\EPSON\eEBAPI\eEBNWDev.dll 0x006E0000

Process C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe 524

Library C:\Program Files\EpsonNet\common\bin\ensrvmgr.exe 0x00400000

Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000

Process C:\WINNT\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 560

Library C:\WINNT\System32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Library C:\WINNT\System32\ndptsp.tsp (Fournisseur de service TAPI proxy RNIS/Microsoft Corporation) 0x642A0000

Process C:\Program Files\EpsonNet\common\bin\emalmmon.exe 580

Library C:\Program Files\EpsonNet\common\bin\emalmmon.exe 0x00400000

Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000

Process C:\Program Files\EpsonNet\common\bin\emwchsrv.exe 588

Library C:\Program Files\EpsonNet\common\bin\emwchsrv.exe 0x00400000

Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000

Library C:\Program Files\EpsonNet\common\bin\xerces-c_1_6_0.dll (Shared Library for Xerces-C Version 1.6.0/Apache Software Foundation) 0x12000000

Library C:\Program Files\EpsonNet\common\bin\emmibgw.dll 0x005A0000

Library C:\WINNT\system32\EBAPI.dll 0x005F0000

Library C:\WINNT\system32\eEBUtil.dll (DebugTrace Tool/SEIKO EPSON CORPORATION) 0x00610000

Library C:\Program Files\EpsonNet\common\bin\EBUtil.dll (DebugTrace Tool/SEIKO EPSON CORPORATION) 0x00630000

Library C:\Program Files\EpsonNet\common\bin\empingi.dll 0x00660000

Library C:\Program Files\EpsonNet\common\bin\ctreestd.dll 0x00B50000

Process C:\Program Files\EpsonNet\EpsonNet SOAP Server\bin\emsoaprr.exe 596

Library C:\Program Files\EpsonNet\EpsonNet SOAP Server\bin\emsoaprr.exe 0x00400000

Library C:\Program Files\EpsonNet\common\bin\xerces-c_1_6_0.dll (Shared Library for Xerces-C Version 1.6.0/Apache Software Foundation) 0x12000000

Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000

Process C:\Program Files\EpsonNet\EpsonNet Web Pages Service\bin\ewpsrr.exe 708

Library C:\Program Files\EpsonNet\EpsonNet Web Pages Service\bin\ewpsrr.exe 0x00400000

Library C:\Program Files\EpsonNet\common\bin\xerces-c_1_6_0.dll (Shared Library for Xerces-C Version 1.6.0/Apache Software Foundation) 0x12000000

Library C:\Program Files\EpsonNet\common\bin\entrace.dll 0x10000000

Process C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\apache.exe (Apache HTTP Server/Apache Software Foundation) 720

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\apache.exe (Apache HTTP Server/Apache Software Foundation) 0x00400000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libapr.dll (Apache Portability Runtime Library/Apache Software Foundation) 0x6EEC0000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libaprutil.dll (Apache APR Utility Library/Apache Software Foundation) 0x6EE60000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libapriconv.dll (Apache APR I18N Conversion Library/Apache Software Foundation) 0x6EE50000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\libhttpd.dll (Apache HTTP Server Core/Apache Software Foundation) 0x6FF00000

Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_access.so (access_module for Apache/Apache Software Foundation) 0x6FCF0000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_actions.so (actions_module for Apache/Apache Software Foundation) 0x6FCE0000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_alias.so (alias_module for Apache/Apache Software Foundation) 0x6FCD0000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_asis.so (asis_module for Apache/Apache Software Foundation) 0x6FCC0000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_auth.so (auth_module for Apache/Apache Software Foundation) 0x6FCB0000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_autoindex.so (autoindex_module for Apache/Apache Software Foundation) 0x6FCA0000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_cgi.so (cgi_module for Apache/Apache Software Foundation) 0x6FC90000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_dir.so (dir_module for Apache/Apache Software Foundation) 0x6FC80000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_env.so (env_module for Apache/Apache Software Foundation) 0x6FC70000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_imap.so (imap_module for Apache/Apache Software Foundation) 0x6FC60000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_include.so (include_module for Apache/Apache Software Foundation) 0x6FC50000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_isapi.so (isapi_module for Apache/Apache Software Foundation) 0x6FC40000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_log_config.so (log_config_module for Apache/Apache Software Foundation) 0x6FC30000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_mime.so (mime_module for Apache/Apache Software Foundation) 0x6FC20000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_negotiation.so (negotiation_module for Apache/Apache Software Foundation) 0x6FC10000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_setenvif.so (setenvif_module for Apache/Apache Software Foundation) 0x6FC00000

Library C:\Program Files\EpsonNet\EpsonNet HTTP Server\modules\mod_userdir.so (userdir_module for Apache/Apache Software Foundation) 0x6FBF0000

Process C:\Program Files\Network Associates\Common Framework\McTray.exe (McAfee Security Agent Taskbar Extension/McAfee, Inc.) 724

Library C:\Program Files\Network Associates\Common Framework\McTray.exe (McAfee Security Agent Taskbar Extension/McAfee, Inc.) 0x00400000

Library C:\Program Files\Network Associates\Common Framework\JrMac.dll (McAfee Security Agent Taskbar Extension Library/McAfee, Inc.) 0x66900000

Process C:\Program Files\Network Associates\Common Framework\FrameworkService.exe (Framework Service/McAfee, Inc.) 748

Library C:\Program Files\Network Associates\Common Framework\FrameworkService.exe (Framework Service/McAfee, Inc.) 0x00400000

Library C:\Program Files\Network Associates\Common Framework\nailog3.dll (Debug Logging/McAfee, Inc.) 0x64880000

Library C:\Program Files\Network Associates\Common Framework\naxml3_71.dll (McAfee Agent naXML DLL/McAfee, Inc.) 0x64950000

Library C:\Program Files\Network Associates\Common Framework\naCmnLib3_71.dll (Common Library/McAfee, Inc.) 0x64830000

Library C:\Program Files\Network Associates\Common Framework\applib.dll (CMA Application Library/McAfee, Inc.) 0x64120000

Library C:\Program Files\Network Associates\Common Framework\cryptocme2.dll 0x10000000

Library C:\Program Files\Network Associates\Common Framework\040C\AgentRes.dll (Agent Subsystem Resources/McAfee, Inc.) 0x64100000

Library C:\Program Files\Network Associates\Common Framework\Logging.dll (Logging Subsystem/McAfee, Inc.) 0x64670000

Library C:\Program Files\Network Associates\Common Framework\UserSpace.Dll (User Space Controller Subsystem/McAfee, Inc.) 0x64B40000

Library C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory3.dll (Secure Framework Factory/McAfee, Inc.) 0x64A40000

Library C:\Program Files\Network Associates\Common Framework\Management.dll (Management Subsystem/McAfee, Inc.) 0x64680000

Library C:\Program Files\Network Associates\Common Framework\naPolicyManager.dll (Policy Manager/McAfee, Inc.) 0x648E0000

Library C:\Program Files\Network Associates\Common Framework\UpdateSubSys.Dll (McAfee Update Subsystem/McAfee, Inc.) 0x64AF0000

Library C:\Program Files\Network Associates\Common Framework\updater.dll (McAfee Agent Updater DLL/McAfee, Inc.) 0x64AA0000

Library C:\Program Files\Network Associates\Common Framework\ipcchannel.dll (McAfee Agent ipcchannel DLL/McAfee, Inc.) 0x64610000

Library C:\Program Files\Network Associates\Common Framework\boost_thread-vc71-mt-1_32.dll 0x64170000

Library C:\Program Files\Network Associates\Common Framework\mfeCmnLib71.dll (Common Library/McAfee, Inc.) 0x646C0000

Library C:\Program Files\Network Associates\Common Framework\Scheduler.dll (Scheduler Subsystem/McAfee, Inc.) 0x649F0000

Library C:\Program Files\Network Associates\Common Framework\Agent.dll (Agent Subsystem/McAfee, Inc.) 0x64000000

Library C:\Program Files\Network Associates\Common Framework\nainet.dll (CMA Internet Library/McAfee, Inc.) 0x64890000

Library C:\Program Files\Network Associates\Common Framework\mfecurl.dll (CMA CURLLIB/McAfee, Inc.) 0x64700000

Library C:\Program Files\Network Associates\Common Framework\mfezlib.dll (CMA ZLIB/McAfee, Inc.) 0x64740000

Library C:\Program Files\Network Associates\Common Framework\inetmgr.dll (CMA Internet Manager DLL/McAfee, Inc.) 0x64590000

Library C:\Program Files\Network Associates\Common Framework\naSPIPE.dll (Secure Pipe Library/McAfee, Inc.) 0x64920000

Library C:\Program Files\Network Associates\Common Framework\cmalib.dll (CMA Library/McAfee, Inc.) 0x641C0000

Library C:\Program Files\Network Associates\Common Framework\ListenServer.dll (Listen Server Subsystem/McAfee, Inc.) 0x64630000

Library C:\Program Files\Network Associates\Common Framework\TCSubSys.dll (TC Subsystem/McAfee, Inc.) 0x64A70000

Library C:\WINNT\system32\ACTIVEDS.DLL (DLL de la couche de routage AD/Microsoft Corporation) 0x77380000

Library C:\Program Files\Network Associates\Common Framework\Genevtinf3.dll (GenEvtInf Module/McAfee, Inc.) 0x64560000

Process C:\Program Files\EpsonNet\EpsonNet HTTP Server\bin\apache.exe (Apache HTTP Server/Apache Software Foundation) 836