Trojan récalcitrant, demande d'analyse de log

[greenman]

Bonjour à tous,

 

Voilà après quelques temps passer à me documenter sur ce site en ce qui concerne l'optimisation windows et la sécurité, j'ai entamé un grand nettoyage de mon réseau familial. J'envoie ce message depuis le boulot, je ne peux donc pas faire de scan autre avant ce soir, pour les infos manquantes, il faudra que je vérifie aussi si je ne les ai pas en tête.

Le poste commun, un HP fixe Windows XP avec les dernières MAJ, équipé d'Antivir et Malwarebyte's (MAJ manuel avant les tests), pare-feu Windows actif laissant passé uniquement IE8, Firefox3.6, Thunderbird (2.X, je sais plus lequel) , Antivir, Malwarebyte's, Spybot et infrastructure Upnp.

 

J'ai effectué deux désinfections (26 décembre, hier) pour causes de ralentissement réseaux et de Popup Addsite. En suivant le dossier suivant

http://www.zebulon.fr/dossiers/65-desinfecter-windows.html.

 

La première fois tout est rentré dans l'ordre pendant environ deux semaine, puis certains problèmes sont revenus :

1. (Il y a deux semaines) Addsite gardait firefox ouvert dans la liste des process, même après fermeture et indiquait quand on essayait d'ouvrir une nouvelle page qu'il était déjà en cours d'execution. Ce message s'affiche a nouveau mais plus les popup Addsite.

2. (Depuis trois jours) Saturation du réseau familial. A telle point que j'éprouve des difficulé à me connecter en CPL (depuis mon pc) alors que ce poste est en WIFI (certes très proche de la LiveBox). Ma soeur en Wifi ausi mais plus loin ne capte plus du tout de signal. Ce problème se présente dès que le HP est connecté au réseau.

 

Hier soir, j'ai fouiller un peu partout dans le PC, à la recherche d'anomalies dans Windows et dans le pare-feu windows, j'avais un "System" coché comme si de rien était... Il n'y était pas y a un mois, cela aurait éveillé ma curiosité/vigilance

J'ai également constaté que les MAJ Firefox ne se faisaient pas (bloqué en version 1.9), même à la main... J'ai donc désinstaller firefox via la suppression de programme de Windows en supprimant toutes les infos de Firefox (marque-page et tout). Il restait un dossier Mozilla Firefox dans program files, ce dossier, quand j'ai tenté de le supprimer, m'a renvoyer un message comme quoi ces fichiers pouvaient servir à d'autres logiciels. ayant à coté Thunderbird, je n'ai rien touché. Pour le moment.

J'ai installé la version 3.6

 

J'ai lancé après MAJ de Spybot Malwarebyte's et Antivir à la main. Il a fallu que j'autorise l'updater d'antivir dans le pare-feu Windows pour qu'il arrête de chercher dans le vide alors que le programme général Démarrer Anitivr était déjà autorisé. Bizarre ...

 

--> Mode sans échec :

Passage de Malwarebyte's me trouve un trojan que j'ai supprimé depuis ce logiciel.

Passage de Spybot, m'a trouvé un autre problème sur un BHO, que j'ai corrigé avec Spybot.

Passage d'Antivir, n'a rien donné (0 virus problème, un avertissement concernant le pagefile.sys inaccessible...

 

Au rédémarrage j'ai effectué un scan avec HiJackThis, il me semblait qu'on pouvait en faire avec Malwarebyte's mais j'ai pas retrouver comment, et j'avais un train à prendre . Donc je pourrais faire d'autre scan de ce type ce soir, mais pour l'instant je vous donne celui là :

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 08:47:51, on 28/01/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Panda USB Vaccine\USBVaccine.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\WINDOWS\arservice.exe

C:\WINDOWS\system32\CTsvcCDA.EXE

C:\WINDOWS\eHome\ehRecvr.exe

C:\WINDOWS\eHome\ehSched.exe

C:\WINDOWS\System32\FTRTSVC.exe

C:\PROGRA~1\Iomega\System32\AppServices.exe

C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Iomega\AutoDisk\ADService.exe

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\system32\dllhost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.adobe.com/support/techdocs/330714.html

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html

O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm

O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)

O15 - Trusted Zone: http://www.bitdefender.com

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/...can8/oscan8.cab

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe

O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE

O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Program Files\Iomega\AutoDisk\ADService.exe

 

--

End of file - 7950 bytes

 

Voilà j'espère qu'il y a assez d'information, je consulterais souvent les réponses aujourd'hui et je serais devant le Pc en question à 19h30 ce soir.

 

Merci d'avance!

Modifié le 28 janvier 2010 par greenman

[greenman]

Up! Notamment si il faut un autre utilitaire pour le log, dites-moi lequel que je le télécharge au boulot!

 

Pour l'analyse je serais dispo à 19h!

Merci

[greenman]

Ah je sais j'ai dû oublié de dire s'il vous plait, désolé ^^

 

Je mets un vrai log avec l'outil de ZHPDiag dans 5 minutes au plus.

Merci d'avance

[greenman]

Voila le log complet comme j'ai vu faire dans un autre message :

 

Rapport de ZHPDiag v1.25.05 par Nicolas Coolman

Run by HP_Administrateur at 28/01/2010 20:00:16

Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

Platform : Microsoft Windows XP (5.1.2600) Service Pack 3

MSIE: Internet Explorer v8.0.6001.18702

MFIE: Mozilla Firefox (3.6)

 

Boot mode: Normal (Normal boot)

Total RAM: 1022 MB (47% free)

System drive C: has 193 GB (85%) free of 226 GB

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 193 Go of 226 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 6 Go)

E:\ CD-ROM drive (Not Inserted)

F:\ Floppy drive, Flash card reader, USB Key (Inserted)

G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

 

---\\ Processus lancés

[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

[MD5.2BD5E1E68614DBC6B320597856ED6EA7] - (.Pas de propriétaire - Module de lancement de commandes.) -- C:\Program Files\Wanadoo\Shell.exe

[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[MD5.59DC5BB82E4C8E0B3EADCFDBC44BA6E4] - (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

[MD5.E616A6A6E91B0A86F2F6217CDE835FFE] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe

[MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe

[MD5.9F9AA480BAAF48695B920C425FFE5425] - (.Microsoft - ARSVC Application.) -- C:\WINDOWS\arservice.exe

[MD5.B1C9B1A2EDD766FABFAEF059CB5D5A6E] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe

[MD5.EAEC61C02BDFB8A1140A47CC9E517150] - (.Pas de propriétaire - ATI Smart.) -- C:\WINDOWS\system32\ati2sgag.exe

[MD5.E4BDF223CD75478BF44567B4D5C2634D] - (.Microsoft Corporation - Generic Host Process for Win32 Services.) -- C:\WINDOWS\System32\svchost.exe

[MD5.3C8B6609712F4FF78E521F6DCFC4032B] - (.Creative Technology Ltd - Creative Service for CDROM Access.) -- C:\WINDOWS\system32\CTsvcCDA.EXE

[MD5.5D1347AA5AE6E2F77D7F4F8372D95AC9] - (.Microsoft Corporation - Media Center Receiver Service.) -- C:\WINDOWS\eHome\ehRecvr.exe

[MD5.980EEEA91776357518892C5544768E2B] - (.Microsoft Corporation - Service de planification Media Center.) -- C:\WINDOWS\eHome\ehSched.exe

[MD5.C3FB1D70CB88722267949694BA51759E] - (.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\WINDOWS\system32\services.exe

[MD5.D1261099E03EEE90976EA19002995B89] - (.France Telecom - FTRTSVC NT Service.) -- C:\WINDOWS\System32\FTRTSVC.exe

[MD5.19EF7FB809D3073EE60F85464E9C4C51] - (.Iomega Corporation - AppServices.) -- C:\PROGRA~1\Iomega\System32\AppServices.exe

[MD5.575ED0F5DCB34E5C243D2A7EBC860484] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

[MD5.52404CC76E9D53843BDF97564BB16BED] - (.Microsoft Corporation - MCRD Device Service.) -- C:\WINDOWS\ehome\mcrdsvc.exe

[MD5.2D091A99624FB9E7EEF0A86D872EC0C3] - (.HP - PML Driver.) -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE

[MD5.91E6024D6D4DCDECDB36C43ECF9BBECB] - (.Microsoft Corporation - LSA Shell (Export Version).) -- C:\WINDOWS\system32\lsass.exe

[MD5.460E4CE148BD07218DA0B6A3D31885A9] - (.Microsoft Corporation - Spooler SubSystem App.) -- C:\WINDOWS\system32\spoolsv.exe

[MD5.B624180218BB196AD9869D5D6B454318] - (.Iomega Corporation - Active Disk Service.) -- C:\Program Files\Iomega\AutoDisk\ADService.exe

 

---\\ Pages de démarrage d'Internet Explorer (R0)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home

 

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

 

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (.Pas de propriétaire - SearchPageURL Module.) (1, 0, 0, 1) -- C:\PROGRA~1\Wanadoo\SEARCH~1.DLL

R3 - URLSearchHook: Search Class - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18876 (longhorn_ie8_gdr.091218-1700)) -- C:\WINDOWS\system32\ieframe.dll

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: (no name) - {1E796980-9CC5-11D1-A83F-00C04FC99D61} . (.Pas de propriétaire - Pas de description.) --

 

---\\ Applications démarrées automatiquement par le registre (O4)

O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

O4 - HKCU\..\Run: [WOOKIT] . (.Pas de propriétaire - Module de lancement de commandes.) -- C:\Program Files\Wanadoo\Shell.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.EXE

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.EXE

 

---\\ Restriction de l'accès aux options IE par l'Administrateur (O6)

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restriction présente

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE

O8 - Extra context menu item: Google Sidewiki... - (.no file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} . (.no file.) - (.not file.)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.no file.) - (.not file.)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.no file.) - (.not file.)

O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\conn_support.ico

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.no file.) - (.not file.)

O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

 

---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)

O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

 

---\\ Site dans la Zone de confiance d'Internet Explorer (O15)

O15 - Trusted Zone: [HKCU\...\Domains] bitdefender.com

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - (.No file.) - http://download.bitdefender.com/resources/...can8/oscan8.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - (.No file.) - http://fpdownload.macromedia.com/pub/shock...ash/swflash.cab

 

---\\ Protocole additionnel et piratage de protocole (O18)

O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\system32\msvidctl.dll

O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\Windows\system32\inetcomm.dll

O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll

O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft ® HTML Viewer.) -- C:\Windows\system32\mshtml.dll

O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\system32\msvidctl.dll

O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll

O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll

O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\system32\SHELL32.dll

O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\WINDOWS\System32\Ati2evxx.dll

O20 - Winlogon Notify: dimsntfy . (.Pas de propriétaire - Pas de description.) -- (.no file.)

O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\System32\WgaLogon.dll

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll

 

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Pas de propriétaire - Pas de description.) -- %SystemRoot%\system32\browseui.dll

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: ARSVC (ARSVC) . (.Microsoft - ARSVC Application.) - C:\WINDOWS\arservice.exe

O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart (ATI Smart) . (.Pas de propriétaire - ATI Smart.) - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: Creative Service for CDROM Access (Creative Service for CDROM Access) . (.Creative Technology Ltd - Creative Service for CDROM Access.) - C:\WINDOWS\system32\CTsvcCDA.EXE

O23 - Service: France Telecom Routing Table Service (FTRTSVC) . (.France Telecom - FTRTSVC NT Service.) - C:\WINDOWS\System32\FTRTSVC.exe

O23 - Service: Iomega App Services (Iomega App Services) . (.Iomega Corporation - AppServices.) - C:\PROGRA~1\Iomega\System32\AppServices.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: Pml Driver HPZ12 (Pml Driver HPZ12) . (.HP - PML Driver.) - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE

O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) . (.Iomega Corporation - Active Disk Service.) - C:\Program Files\Iomega\AutoDisk\ADService.exe

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\PandaUSBVaccine.job

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Mise à jour de la version d’Internet Explorer - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} . (.Microsoft Corporation - IE Per User Active Setup Uninstall Utility.) -- C:\WINDOWS\system32\ieudinit.exe

O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Utilitaire d'installation du Lecteur Windows Media de Microsoft.) -- C:\WINDOWS\inf\unregmp2.exe

O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ie4uinit.exe.mui,-21

O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\iedkcs32.dll.mui,-3052

O40 - ASIC: Outlook Express - >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} . (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre1.6.0_07\bin\regutils.dll

O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll

O40 - ASIC: Microsoft Windows Media Player 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\WINDOWS\system32\wmpdxm.dll

O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\WINDOWS\system32\themeui.dll

O40 - ASIC: Media Center - {407408d4-94ed-4d86-ab69-a7f649d112ee} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\inf\mcdftreg.inf

O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe

O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- advpack.dll

O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- advpack.dll

O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\WINDOWS\system32\msieftp.dll

O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- advpack.dll

O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} . (.Microsoft Corporation - Bibliothèque d'installation Outlook Express.) -- C:\Program Files\Outlook Express\setup50.exe

O40 - ASIC: Mise à jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll

O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ie4uinit.exe.mui,-20

O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\WINDOWS\system32\mscories.dll

O40 - ASIC: Fax - {8b15971b-5355-4c82-8c07-7e181ea07608} . (.Pas de propriétaire - Pas de description.) -- advpack.dll

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 9.0 r115.) -- C:\WINDOWS\system32\Macromed\Flash\Flash9e.ocx

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: AFD (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\System32\drivers\afd.sys

O41 - Driver: avgio (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys

O41 - Driver: avipbb (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\WINDOWS\system32\DRIVERS\avipbb.sys

O41 - Driver: Pilote de CD-ROM (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\system32\DRIVERS\cdrom.sys

O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys

O41 - Driver: Pilote de filtre de gravure CD (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\system32\DRIVERS\imapi.sys

O41 - Driver: Pilote de processeur Intel (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\system32\DRIVERS\intelppm.sys

O41 - Driver: Pilote IPSEC (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\system32\DRIVERS\ipsec.sys

O41 - Driver: Pilote de la classe Clavier (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys

O41 - Driver: Pilote HID de clavier (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys

O41 - Driver: Pilote de la classe Souris (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\system32\DRIVERS\mouclass.sys

O41 - Driver: MRXSMB (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

O41 - Driver: Interface NetBIOS (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\system32\DRIVERS\netbios.sys

O41 - Driver: NetBIOS sur TCP/IP (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\system32\DRIVERS\netbt.sys

O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\system32\DRIVERS\rasacd.sys

O41 - Driver: Rdbss (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\system32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys

O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\system32\DRIVERS\redbook.sys

O41 - Driver: Pilote de port série (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\system32\DRIVERS\serial.sys

O41 - Driver: ssmdrv (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys

O41 - Driver: Pilote du protocole TCP/IP (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\system32\DRIVERS\tcpip.sys

O41 - Driver: Pilote de périphérique terminal (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\system32\DRIVERS\termdd.sys

O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\System32\drivers\vga.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\System32\drivers\vga.sys

 

---\\ Logiciels installés (O42)

O42 - Logiciel: ATI Catalyst Control Center - (.Pas de propriétaire.)

O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.)

O42 - Logiciel: Active Disk - (.Pas de propriétaire.)

O42 - Logiciel: Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742) - (.Adobe Systems, Inc.)

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Reader 8.1.2 - Français - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Reader 8.1.2 Security Update 1 (KB403742) - (.Pas de propriétaire.)

O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.)

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.)

O42 - Logiciel: CDex extraction audio - (.Pas de propriétaire.)

O42 - Logiciel: Connexion Facile à Internet - (.Hewlett-Packard.)

O42 - Logiciel: Contextual Tool Adssite - (.Pas de propriétaire.)

O42 - Logiciel: Creative MediaSource - (.Pas de propriétaire.)

O42 - Logiciel: Enhanced Multimedia Keyboard Solution - (.Pas de propriétaire.)

O42 - Logiciel: GdiplusUpgrade - (.Hewlett-Packard.)

O42 - Logiciel: GemMaster Mystic - (.Pas de propriétaire.)

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..)

O42 - Logiciel: HP Appareils photos Photosmart 5.0 - (.HP.)

O42 - Logiciel: HP Deskjet Printer Preload - (.Hewlett-Packard Company.)

O42 - Logiciel: HP DigitalMedia Archive - (.Hewlett-Packard.)

O42 - Logiciel: HP Document Viewer 5.3 - (.HP.)

O42 - Logiciel: HP Image Zone 5.3 - (.HP.)

O42 - Logiciel: HP Image Zone for Media Center PC - (.Pas de propriétaire.)

O42 - Logiciel: HP Imaging Device Functions 5.3 - (.HP.)

O42 - Logiciel: HP PSC & OfficeJet 5.3.B - (.HP.)

O42 - Logiciel: HP Photosmart 330,380,420,470,7800,8000,8200 Series - (.HP.)

O42 - Logiciel: HP Solution Center & Imaging Support Tools 5.3 - (.HP.)

O42 - Logiciel: HP Tunes - (.Hewlett-Packard Company.)

O42 - Logiciel: HP Update - (.Hewlett-Packard.)

O42 - Logiciel: HPTunesAddIn - (.Hewlett-Packard Development Company, L.P..)

O42 - Logiciel: High Definition Audio - KB888111 - (.Microsoft Corporation.)

O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.)

O42 - Logiciel: Hotfix for Windows Media Player 10 (KB903157) - (.Microsoft Corporation.)

O42 - Logiciel: Intel® PRO Network Connections Drivers - (.Pas de propriétaire.)

O42 - Logiciel: InterVideo WinDVD Player - (.InterVideo Inc..)

O42 - Logiciel: IomegaWare 4.0.2 - (.Pas de propriétaire.)

O42 - Logiciel: J2SE Runtime Environment 5.0 - (.Sun Microsystems, Inc..)

O42 - Logiciel: J2SE Runtime Environment 5.0 Update 6 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Java 6 Update 3 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Java 6 Update 4 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Java 6 Update 5 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Java SE Runtime Environment 6 Update 1 - (.Sun Microsystems, Inc..)

O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.)

O42 - Logiciel: MSN - (.Pas de propriétaire.)

O42 - Logiciel: MSXML 4.0 SP2 (KB925672) - (.Microsoft Corporation.)

O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.)

O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.)

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.)

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.)

O42 - Logiciel: MainConcept for Software Encoder - (.MainConcept.)

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.)

O42 - Logiciel: Microsoft .NET Framework 1.0 Hotfix (KB953295) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.)

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.)

O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.)

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297) - (.Pas de propriétaire.)

O42 - Logiciel: Microsoft Away Mode - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.)

O42 - Logiciel: Mozilla Firefox (3.6) - (.Mozilla.)

O42 - Logiciel: Mozilla Thunderbird (2.0.0.23) - (.Mozilla.)

O42 - Logiciel: Neverwinter Nights - (.Pas de propriétaire.)

O42 - Logiciel: Otto - (.Pas de propriétaire.)

O42 - Logiciel: Outil de connexion Wanadoo - (.Pas de propriétaire.)

O42 - Logiciel: PC-Doctor 5 for Windows - (.PC-Doctor.)

O42 - Logiciel: PS2 - (.Pas de propriétaire.)

O42 - Logiciel: Panda USB Vaccine 1.0.1.4 - (.Panda Security.)

O42 - Logiciel: Python 2.2 pywin32 extensions (build 203) - (.Pas de propriétaire.)

O42 - Logiciel: Python 2.2.3 - (.PythonLabs at Zope Corporation.)

O42 - Logiciel: QuickTime - (.Pas de propriétaire.)

O42 - Logiciel: SAGEM Wi-Fi 11g USB adapter (Driver) - (.Pas de propriétaire.)

O42 - Logiciel: Sonic Encoders - (.Sonic Solutions.)

O42 - Logiciel: Sonic Express Labeler - (.Sonic Solutions.)

O42 - Logiciel: Sonic MyDVD Plus - (.Sonic Solutions.)

O42 - Logiciel: Sonic RecordNow Audio - (.Sonic Solutions.)

O42 - Logiciel: Sonic RecordNow Copy - (.Sonic Solutions.)

O42 - Logiciel: Sonic RecordNow Data - (.Sonic Solutions.)

O42 - Logiciel: Sonic Update Manager - (.Sonic Solutions.)

O42 - Logiciel: Sound Blaster X-Fi - (.Pas de propriétaire.)

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.)

O42 - Logiciel: StarOffice 8 - (.Sun Microsystems.)

O42 - Logiciel: StickyNote - (.Pas de propriétaire.)

O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.)

O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.)

O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.)

O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.)

O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.)

O42 - Logiciel: Windows XP Media Center Edition 2005 KB925766 - (.Microsoft Corporation.)

O42 - Logiciel: Windows XP Media Center Edition 2005 KB973768 - (.Microsoft Corporation.)

O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.)

O42 - Logiciel: iTunes - (.Apple Computer, Inc..)

O42 - Logiciel: muvee autoProducer 4.0 - (.muvee Technologies.)

O42 - Logiciel: muvee autoProducer unPlugged 1.1 - HPD - (.muvee Technologies.)

 

---\\ Contenu des dossiers Fichiers Communs (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software

O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files\Avira

O43 - CFD:Common File Directory ----D- C:\Program Files\CDex_170b2

O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications

O43 - CFD:Common File Directory ----D- C:\Program Files\Creative

O43 - CFD:Common File Directory ----D- C:\Program Files\Easy Internet signup

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs

O43 - CFD:Common File Directory ----D- C:\Program Files\FrenchOtto

O43 - CFD:Common File Directory ----D- C:\Program Files\GemMasterFrench

O43 - CFD:Common File Directory ----D- C:\Program Files\Google

O43 - CFD:Common File Directory ----D- C:\Program Files\HP

O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files\InterVideo

O43 - CFD:Common File Directory ----D- C:\Program Files\Iomega

O43 - CFD:Common File Directory ----D- C:\Program Files\iPod

O43 - CFD:Common File Directory ----D- C:\Program Files\iTunes

O43 - CFD:Common File Directory ----D- C:\Program Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files\MainConcept

O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger

O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker

O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox

O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Thunderbird

O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files\MSN

O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone

O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files\muvee Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting

O43 - CFD:Common File Directory ----D- C:\Program Files\Online Services

O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 2.0

O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express

O43 - CFD:Common File Directory ----D- C:\Program Files\Panda USB Vaccine

O43 - CFD:Common File Directory ----D- C:\Program Files\PC-Doctor 5 for Windows

O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime

O43 - CFD:Common File Directory ----D- C:\Program Files\SAGEM

O43 - CFD:Common File Directory ----D- C:\Program Files\SAGEM Wi-Fi USB 802.11g

O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne

O43 - CFD:Common File Directory ----D- C:\Program Files\Simple Sudoku

O43 - CFD:Common File Directory ----D- C:\Program Files\Sonic

O43 - CFD:Common File Directory ----D- C:\Program Files\SpaceMonger

O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD:Common File Directory ----D- C:\Program Files\Sun

O43 - CFD:Common File Directory ----D- C:\Program Files\Symantec

O43 - CFD:Common File Directory ----D- C:\Program Files\Trend Micro

O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Wanadoo

O43 - CFD:Common File Directory ----D- C:\Program Files\Wanadoo Messager

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Plus

O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate

O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR

O43 - CFD:Common File Directory ----D- C:\Program Files\xerox

O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Hewlett-Packard

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\HP

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InterVideo

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java

O43 - CFD:Common File Directory ---AD- C:\Program Files\Fichiers Communs\LightScribe

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\muvee Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Sonic Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SureThing Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Symantec Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\TiVo Shared

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.00000000000000000000000000000000] - 28/01/2010 - 19:59:14 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log

O44 - LFC:[MD5.70D3345E5AC174B8513E81EBEF25A7D6] - 28/01/2010 - 19:58:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\wpa.dbl

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/01/2010 - 19:57:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\0.log

O44 - LFC:[MD5.00000000000000000000000000000000] - 28/01/2010 - 19:57:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiadebug.log

O44 - LFC:[MD5.00000000000000000000000000000000] - 28/01/2010 - 19:57:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiaservc.log

O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 28/01/2010 - 19:57:04 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat

O44 - LFC:[MD5.90F812E1B2BD8FAD7AE59C0A6F3E242A] - 28/01/2010 - 08:48:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\BMXState-{00000002-00000000-00000004-00001102-00000005-00241102}.rfx

O44 - LFC:[MD5.90F812E1B2BD8FAD7AE59C0A6F3E242A] - 28/01/2010 - 08:48:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\BMXStateBkp-{00000002-00000000-00000004-00001102-00000005-00241102}.rfx

O44 - LFC:[MD5.B5408533239219EFF1C2316D1B5D52E4] - 28/01/2010 - 08:48:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\DVCState-{00000002-00000000-00000004-00001102-00000005-00241102}.rfx

O44 - LFC:[MD5.1D355AD1CA06ABA385530EAC67021F76] - 28/01/2010 - 08:48:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\settings.sfm

O44 - LFC:[MD5.1D355AD1CA06ABA385530EAC67021F76] - 28/01/2010 - 08:48:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\settingsbkup.sfm

O44 - LFC:[MD5.8D0DB82237C5FA07AFCB8268D06CC24B] - 27/01/2010 - 22:40:21 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ntbtlog.txt

O44 - LFC:[MD5.2F4A13C832B7A789830307FC6227DE2F] - 27/01/2010 - 22:01:33 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupapi.log

O44 - LFC:[MD5.8F468F133555C4382A12101A3A24FD52] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\FaxSetup.log

O44 - LFC:[MD5.4677A52C734EF8325346AD20B5315018] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB978207-IE8.log

O44 - LFC:[MD5.4A6596078DC71DA3492646F7567828A6] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\MedCtrOC.log

O44 - LFC:[MD5.8864484504BD1B971ED231F79E8AC0D1] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\comsetup.log

O44 - LFC:[MD5.492175A0C595468C97EF4224B64EBF12] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ehOCGen.log

O44 - LFC:[MD5.AE1AD27200496644AB97BADE3FB18196] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\iis6.log

O44 - LFC:[MD5.520C51CDAAA6AC0141292D79F9FE3E8E] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.log

O44 - LFC:[MD5.0FA9AAFE6C9EE5D0CD692935948F720F] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msgsocm.log

O44 - LFC:[MD5.EF44C0B23DBCC970F2CAEF173F4F160A] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\netfxocm.log

O44 - LFC:[MD5.0AA728F7742DB780F9BEDEA3813C1EFF] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ntdtcsetup.log

O44 - LFC:[MD5.C9BF1A04F6E3984AF8C3840F328D5082] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocgen.log

O44 - LFC:[MD5.F9F2DCA1187887F3F2312F2487CD8C9D] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocmsn.log

O44 - LFC:[MD5.74ED754A7D9885A82721BB0E5D9A8F6B] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\plusoc.log

O44 - LFC:[MD5.7E87C2EDFEBB6E92CBF4E70A1FC1D6DA] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\tabletoc.log

O44 - LFC:[MD5.DE39FDB5B8E02B35F260171447B5E16D] - 21/01/2010 - 22:50:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\tsoc.log

O44 - LFC:[MD5.9AEE786C2D8880CE2D8D89422F7941C9] - 21/01/2010 - 22:50:08 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msmqinst.log

O44 - LFC:[MD5.5A6ECB7D6F4176F109CB05C96BC4EE14] - 21/01/2010 - 22:49:59 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\updspapi.log

O44 - LFC:[MD5.A8A45BEDF1616B6D9BC7EC8A7AD03537] - 12/01/2010 - 22:42:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB955759.log

O44 - LFC:[MD5.08A828EFD1C4BA6AF5B39D911B289F45] - 12/01/2010 - 22:42:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.BAK

O44 - LFC:[MD5.6FB7031730ADA512AB548E9C5BDB0C73] - 12/01/2010 - 22:42:30 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB972270.log

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 12/01/2010 - 22:42:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupact.log

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 12/01/2010 - 22:42:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setuperr.log

O44 - LFC:[MD5.C0D40BEAA6DFC05602FC8F484696F7F5] - 07/01/2010 - 16:07:14 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

O44 - LFC:[MD5.654A3F014903DC62CAF5E037F3D316D2] - 07/01/2010 - 16:07:04 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys

O44 - LFC:[MD5.6626F8DF052DF5252673E9380CEEFEC8] - 05/01/2010 - 01:17:46 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\WINDOWS\System32\MRT.exe

O44 - LFC:[MD5.234930A87E4EA5AC5B20520A298AB1CC] - 03/01/2010 - 16:03:06 -SHA- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\Thumbs.db

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:Last File Created Prefetch 02/01/2010 - 10:43:15 ---A- C:\WINDOWS\Prefetch\HPZIPM12.EXE-369A2C60.pf

O45 - LFCP:Last File Created Prefetch 02/01/2010 - 15:28:38 ---A- C:\WINDOWS\Prefetch\WMPLAYER.EXE-1ACCF80D.pf

O45 - LFCP:Last File Created Prefetch 02/01/2010 - 15:35:12 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-4F471F8A.pf

O45 - LFCP:Last File Created Prefetch 02/01/2010 - 17:45:32 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-4E4968D8.pf

O45 - LFCP:Last File Created Prefetch 03/01/2010 - 16:50:14 ---A- C:\WINDOWS\Prefetch\CALC.EXE-02A5B4B1.pf

O45 - LFCP:Last File Created Prefetch 04/01/2010 - 17:30:30 ---A- C:\WINDOWS\Prefetch\POWERPNT.EXE-2F92D967.pf

O45 - LFCP:Last File Created Prefetch 04/01/2010 - 18:34:18 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-40E03ED8.pf

O45 - LFCP:Last File Created Prefetch 06/01/2010 - 22:08:39 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-6BF13467.pf

O45 - LFCP:Last File Created Prefetch 10/01/2010 - 21:04:19 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-6C6B9A31.pf

O45 - LFCP:Last File Created Prefetch 10/01/2010 - 22:20:26 ---A- C:\WINDOWS\Prefetch\ACRORD32INFO.EXE-1A3A138E.pf

O45 - LFCP:Last File Created Prefetch 11/01/2010 - 20:45:49 ---A- C:\WINDOWS\Prefetch\HPZSTC12.EXE-34031AFC.pf

O45 - LFCP:Last File Created Prefetch 11/01/2010 - 20:45:58 ---A- C:\WINDOWS\Prefetch\HPZENG12.EXE-322B01B6.pf

O45 - LFCP:Last File Created Prefetch 12/01/2010 - 22:40:13 ---A- C:\WINDOWS\Prefetch\MRTSTUB.EXE-24ACF040.pf

O45 - LFCP:Last File Created Prefetch 12/01/2010 - 22:40:18 ---A- C:\WINDOWS\Prefetch\MRT.EXE-161A5291.pf

O45 - LFCP:Last File Created Prefetch 12/01/2010 - 22:40:19 ---A- C:\WINDOWS\Prefetch\WINDOWS-KB890830-V3.3-DELTA.E-37582B15.pf

O45 - LFCP:Last File Created Prefetch 12/01/2010 - 22:41:55 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-16567E8D.pf

O45 - LFCP:Last File Created Prefetch 12/01/2010 - 22:42:37 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-748B3593.pf

O45 - LFCP:Last File Created Prefetch 12/01/2010 - 22:42:38 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-206E4966.pf

O45 - LFCP:Last File Created Prefetch 13/01/2010 - 21:47:50 ---A- C:\WINDOWS\Prefetch\WMIAPSRV.EXE-02740A4B.pf

O45 - LFCP:Last File Created Prefetch 16/01/2010 - 22:42:42 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-4A476269.pf

O45 - LFCP:Last File Created Prefetch 16/01/2010 - 22:42:42 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-665CADF9.pf

O45 - LFCP:Last File Created Prefetch 18/01/2010 - 19:27:51 ---A- C:\WINDOWS\Prefetch\PINBALL.EXE-21ED4689.pf

O45 - LFCP:Last File Created Prefetch 20/01/2010 - 20:35:06 ---A- C:\WINDOWS\Prefetch\ADOBEUPDATER.EXE-27F5105F.pf

O45 - LFCP:Last File Created Prefetch 20/01/2010 - 22:22:00 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-49A0774D.pf

O45 - LFCP:Last File Created Prefetch 21/01/2010 - 20:36:39 ---A- C:\WINDOWS\Prefetch\SWRITER.EXE-052BCD4B.pf

O45 - LFCP:Last File Created Prefetch 21/01/2010 - 20:36:45 ---A- C:\WINDOWS\Prefetch\STCLIENT_WRAPPER.EXE-2FE58324.pf

O45 - LFCP:Last File Created Prefetch 21/01/2010 - 20:36:47 ---A- C:\WINDOWS\Prefetch\SOFFICE.BIN-00589B65.pf

O45 - LFCP:Last File Created Prefetch 21/01/2010 - 20:36:49 ---A- C:\WINDOWS\Prefetch\SOFFICE.EXE-0848308C.pf

O45 - LFCP:Last File Created Prefetch 21/01/2010 - 22:49:19 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-16AA13E4.pf

O45 - LFCP:Last File Created Prefetch 23/01/2010 - 10:03:36 ---A- C:\WINDOWS\Prefetch\GESTMAJ.EXE-00636E18.pf

O45 - LFCP:Last File Created Prefetch 23/01/2010 - 10:03:46 ---A- C:\WINDOWS\Prefetch\ESPACEWANADOO.EXE-06E9891F.pf

O45 - LFCP:Last File Created Prefetch 23/01/2010 - 10:03:47 ---A- C:\WINDOWS\Prefetch\TOASTER.EXE-097A4853.pf

O45 - LFCP:Last File Created Prefetch 24/01/2010 - 17:33:42 ---A- C:\WINDOWS\Prefetch\SOL.EXE-213C4FA3.pf

O45 - LFCP:Last File Created Prefetch 24/01/2010 - 17:54:29 ---A- C:\WINDOWS\Prefetch\WINMINE.EXE-1C017FC4.pf

O45 - LFCP:Last File Created Prefetch 24/01/2010 - 22:31:01 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-408235D5.pf

O45 - LFCP:Last File Created Prefetch 25/01/2010 - 21:50:43 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-6E8D4657.pf

O45 - LFCP:Last File Created Prefetch 25/01/2010 - 22:58:15 ---A- C:\WINDOWS\Prefetch\HELPSVC.EXE-1C192440.pf

O45 - LFCP:Last File Created Prefetch 26/01/2010 - 20:29:20 ---A- C:\WINDOWS\Prefetch\ACRORD32.EXE-01080F7C.pf

O45 - LFCP:Last File Created Prefetch 26/01/2010 - 22:14:52 ---A- C:\WINDOWS\Prefetch\CLI.EXE-131E066F.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 08:03:43 ---A- C:\WINDOWS\Prefetch\WINWORD.EXE-15ED065E.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 19:53:01 ---A- C:\WINDOWS\Prefetch\THUNDERBIRD.EXE-1BF62657.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 20:13:46 ---A- C:\WINDOWS\Prefetch\MSHEARTS.EXE-36ED662C.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 20:24:13 ---A- C:\WINDOWS\Prefetch\MBAM-SETUP.TMP-1103D85E.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 20:24:14 ---A- C:\WINDOWS\Prefetch\MBAMGUI.EXE-17BFFE8F.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 20:24:16 ---A- C:\WINDOWS\Prefetch\REGSVR32.EXE-396DEA2C.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 20:24:17 ---A- C:\WINDOWS\Prefetch\MBAM-SETUP.EXE-032C737F.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 20:46:12 ---A- C:\WINDOWS\Prefetch\Layout.ini

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 20:46:24 ---A- C:\WINDOWS\Prefetch\DEFRAG.EXE-2858C7E2.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 20:46:29 ---A- C:\WINDOWS\Prefetch\DFRGNTFS.EXE-38C3807C.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 21:08:43 ---A- C:\WINDOWS\Prefetch\LOGON.SCR-24ADF392.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 21:15:34 ---A- C:\WINDOWS\Prefetch\GUARDGUI.EXE-0C9FDE58.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 21:21:44 ---A- C:\WINDOWS\Prefetch\WSCNTFY.EXE-0B14C27D.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 21:22:55 ---A- C:\WINDOWS\Prefetch\DUMPREP.EXE-0AF2BF67.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 21:26:35 ---A- C:\WINDOWS\Prefetch\SPIDER.EXE-0B99044C.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 21:43:34 ---A- C:\WINDOWS\Prefetch\FREECELL.EXE-362FDFD2.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:01:01 ---A- C:\WINDOWS\Prefetch\ALERTM~1.EXE-217C3F7A.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:01:01 ---A- C:\WINDOWS\Prefetch\COMCOMP.EXE-1B9DCC79.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:01:01 ---A- C:\WINDOWS\Prefetch\INACTIVITY.EXE-346F276A.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:01:01 ---A- C:\WINDOWS\Prefetch\POLLINGMODULE.EXE-2AD5A1B6.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:01:01 ---A- C:\WINDOWS\Prefetch\SHELL.EXE-19BFD49C.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:02:28 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-3D479208.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:04:24 ---A- C:\WINDOWS\Prefetch\SDUPDATE.EXE-2A88E3BA.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:06:09 ---A- C:\WINDOWS\Prefetch\AVCONFIG.EXE-1317619E.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:08:35 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-6DF739B2.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:09:02 ---A- C:\WINDOWS\Prefetch\HELPER.EXE-0324EC74.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:09:02 ---A- C:\WINDOWS\Prefetch\UNINSTALLER.EXE-2541B7A3.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:09:12 ---A- C:\WINDOWS\Prefetch\AU_.EXE-02E6928F.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:12:30 ---A- C:\WINDOWS\Prefetch\SDFILES.EXE-010A4312.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:15:04 ---A- C:\WINDOWS\Prefetch\AVNOTIFY.EXE-05C5A637.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:15:52 ---A- C:\WINDOWS\Prefetch\TASKMGR.EXE-06144C13.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:16:59 ---A- C:\WINDOWS\Prefetch\OIS.EXE-399E30DB.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:20:14 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-3DE4948B.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:20:50 ---A- C:\WINDOWS\Prefetch\WUAUCLT.EXE-1360D60A.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:21:36 ---A- C:\WINDOWS\Prefetch\WINVNC.EXE-04DD1733.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:21:43 ---A- C:\WINDOWS\Prefetch\UNINS000.EXE-338563E2.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:21:46 ---A- C:\WINDOWS\Prefetch\_IU14D2N.TMP-1B88D244.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:24:18 ---A- C:\WINDOWS\Prefetch\AVCENTER.EXE-0EE40991.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:24:18 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-2F5EF2F5.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:24:46 ---A- C:\WINDOWS\Prefetch\SPYBOTSD.EXE-1702AD5F.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:29:59 ---A- C:\WINDOWS\Prefetch\IEXPLORE.EXE-2D97EBE6.pf

O45 - LFCP:Last File Created Prefetch 27/01/2010 - 22:36:05 ---A- C:\WINDOWS\Prefetch\LOGONUI.EXE-312BE1BF.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 08:46:12 ---A- C:\WINDOWS\Prefetch\GOOGLEUPDATERSERVICE.EXE-2F4A2F77.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 08:46:12 ---A- C:\WINDOWS\Prefetch\MBAM.EXE-0D37CDF0.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 08:47:02 ---A- C:\WINDOWS\Prefetch\AVSCAN.EXE-2BF7605E.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 08:48:02 ---A- C:\WINDOWS\Prefetch\NOTEPAD.EXE-2F2D61E1.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:23 ---A- C:\WINDOWS\Prefetch\ALG.EXE-275708CF.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:23 ---A- C:\WINDOWS\Prefetch\AVWSC.EXE-06733DFE.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:23 ---A- C:\WINDOWS\Prefetch\DLLHOST.EXE-474D72E6.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:23 ---A- C:\WINDOWS\Prefetch\IMAPI.EXE-201490BB.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:23 ---A- C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:23 ---A- C:\WINDOWS\Prefetch\SVCHOST.EXE-2D5FBD18.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:23 ---A- C:\WINDOWS\Prefetch\VERCLSID.EXE-28F52AD2.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:23 ---A- C:\WINDOWS\Prefetch\WATCH.EXE-39B8AF77.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:25 ---A- C:\WINDOWS\Prefetch\WGATRAY.EXE-350D4455.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:26 ---A- C:\WINDOWS\Prefetch\WMIPRVSE.EXE-0D449B4F.pf

O45 - LFCP:Last File Created Prefetch 28/01/2010 - 19:58:34 ---A- C:\WINDOWS\Prefetch\FIREFOX.EXE-06188867.pf

 

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

 

---\\ Export de clé d'application autorisée (ECAA)(O47)

O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"

O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Disabled:iTunes"

O47 - AAKE:Key Export SP - "C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Disabled:LimeWire"

O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

O47 - AAKE:Key Export SP - "J:\Outils\LiberKey\LiberKey.exe"="J:\Outils\LiberKey\LiberKey.exe:*:Enabled:LiberKey"

O47 - AAKE:Key Export SP - "J:\Outils\LiberKey\LiberKeyTools\LKAppsVCheck\lkAppsVCheck.exe"="J:\Outils\LiberKey\LiberKeyTools\LKAppsVCheck\lkAppsVCheck.exe:*:Enabled:lkAppsVCheck"

O47 - AAKE:Key Export SP - "C:\Program Files\Avira\AntiVir Desktop\avcenter.exe"="C:\Program Files\Avira\AntiVir Desktop\avcenter.exe:*:Enabled:Démarrer AntiVir"

O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Disabled:hpfccopy.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Disabled:hpoews01.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Disabled:hpofxm08.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Disabled:hposfx08.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Disabled:hposid01.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Disabled:hpqcopy.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Disabled:hpqdia.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Disabled:hpqkygrp.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Disabled:hpqphunl.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Disabled:hpqscnvw.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Disabled:hpqste08.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Disabled:hpqtra08.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Disabled:hpzwiz01.exe"

O47 - AAKE:Key Export SP - "C:\Program Files\Securitoo\Av_Fw\backweb\8520111\Program\fspex.exe"="C:\Program Files\Securitoo\Av_Fw\backweb\8520111\Program\fspex.exe:*:Disabled:Securitoo Antivirus Firewall"

O47 - AAKE:Key Export SP - "C:\Program Files\Avira\AntiVir Desktop\update.exe"="C:\Program Files\Avira\AntiVir Desktop\update.exe:*:Enabled:update"

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

O47 - AAKE:Key Export DP - "%ProgramFiles%\iTunes\iTunes.exe"="%ProgramFiles%\iTunes\iTunes.exe:*:enabled:iTunes"

O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

 

---\\ Déni du service (Local Security Authority) (LSA) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\System32\scecli.dll

 

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

 

---\\ Image File Execution Options (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

 

---\\ MountPoints2 Shell Key (MPSK) (O51)

O51 - MPSK:{751b2222-9b5c-11dc-8384-0002e344a1d6}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\LaunchU3.exe (.not file.)

 

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers\"timer"="timer.drv" . (.Microsoft Corporation - Pilote de minuteur pour les compatibles PC.) -- C:\WINDOWS\System32\timer.drv

O52 - TDSD: \Drivers32\"midimapper"="midimap.dll" . (.Microsoft Corporation - Mappeur MIDI Microsoft.) -- C:\WINDOWS\System32\midimap.dll

O52 - TDSD: \Drivers32\"msacm.imaadpcm"="imaadp32.acm" . (.Microsoft Corporation - Codec IMA ADPCM pour MSACM.) -- C:\WINDOWS\System32\imaadp32.acm

O52 - TDSD: \Drivers32\"msacm.msadpcm"="msadp32.acm" . (.Microsoft Corporation - Codec Microsoft ADPCM pour MSACM.) -- C:\WINDOWS\System32\msadp32.acm

O52 - TDSD: \Drivers32\"msacm.msg711"="msg711.acm" . (.Microsoft Corporation - CODEC A-Law et u-Law pour MSACM Microsoft CCITT G.711.) -- C:\WINDOWS\System32\msg711.acm

O52 - TDSD: \Drivers32\"msacm.msgsm610"="msgsm32.acm" . (.Microsoft Corporation - Codec audio Microsoft GSM 6.10 pour MSACM.) -- C:\WINDOWS\System32\msgsm32.acm

O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll

O52 - TDSD: \Drivers32\"VIDC.I420"="msh263.drv" . (.Microsoft Corporation - Pilote Microsoft H.263 ICM.) -- C:\WINDOWS\System32\msh263.drv

O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax

O52 - TDSD: \Drivers32\"VIDC.IYUV"="iyuv_32.dll" . (.Microsoft Corporation - Intel Indeo® Video YUV Codec.) -- C:\WINDOWS\System32\iyuv_32.dll

O52 - TDSD: \Drivers32\"vidc.mrle"="msrle32.dll" . (.Microsoft Corporation - Compresseur Microsoft RLE.) -- C:\WINDOWS\System32\msrle32.dll

O52 - TDSD: \Drivers32\"vidc.msvc"="msvidc32.dll" . (.Microsoft Corporation - Compresseur Microsoft Vidéo 1.) -- C:\WINDOWS\System32\msvidc32.dll

O52 - TDSD: \Drivers32\"VIDC.UYVY"="msyuv.dll" . (.Microsoft Corporation - Microsoft UYVY Video Decompressor.) -- C:\WINDOWS\System32\msyuv.dll

O52 - TDSD: \Drivers32\"VIDC.YUY2"="msyuv.dll" . (.Microsoft Corporation - Microsoft UYVY Video Decompressor.) -- C:\WINDOWS\System32\msyuv.dll

O52 - TDSD: \Drivers32\"VIDC.YVU9"="tsbyuv.dll" . (.Microsoft Corporation - Toshiba Video Codec.) -- C:\WINDOWS\System32\tsbyuv.dll

O52 - TDSD: \Drivers32\"VIDC.YVYU"="msyuv.dll" . (.Microsoft Corporation - Microsoft UYVY Video Decompressor.) -- C:\WINDOWS\System32\msyuv.dll

O52 - TDSD: \Drivers32\"wavemapper"="msacm32.drv" . (.Microsoft Corporation - Mappeur de sons Microsoft.) -- C:\WINDOWS\System32\msacm32.drv

O52 - TDSD: \Drivers32\"msacm.msg723"="msg723.acm" . (.Microsoft Corporation - Codec Microsoft G.723.1 pour MSACM.) -- C:\WINDOWS\System32\msg723.acm

O52 - TDSD: \Drivers32\"vidc.M263"="msh263.drv" . (.Microsoft Corporation - Pilote Microsoft H.263 ICM.) -- C:\WINDOWS\System32\msh263.drv

O52 - TDSD: \Drivers32\"vidc.M261"="msh261.drv" . (.Microsoft Corporation - Pilote ICM Microsoft H.261.) -- C:\WINDOWS\System32\msh261.drv

O52 - TDSD: \Drivers32\"msacm.msaudio1"="msaud32.acm" . (.Microsoft Corporation - Windows Media Audio.) -- C:\WINDOWS\System32\msaud32.acm

O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \Drivers32\"wave"="wdmaud.drv" . (.Microsoft Corporation - WDM Audio driver mapper.) -- C:\WINDOWS\System32\wdmaud.drv

O52 - TDSD: \Drivers32\"midi"="wdmaud.drv" . (.Microsoft Corporation - WDM Audio driver mapper.) -- C:\WINDOWS\System32\wdmaud.drv

O52 - TDSD: \Drivers32\"mixer"="wdmaud.drv" . (.Microsoft Corporation - WDM Audio driver mapper.) -- C:\WINDOWS\System32\wdmaud.drv

O52 - TDSD: \Drivers32\"MSVideo8"="VfWWDM32.dll" . (.Microsoft Corporation - Pilote VfW MM pour périphériques de capture vidéo WDM.) -- C:\WINDOWS\System32\VfWWDM32.dll

O52 - TDSD: \Drivers32\"wave1"="wdmaud.drv" . (.Microsoft Corporation - WDM Audio driver mapper.) -- C:\WINDOWS\System32\wdmaud.drv

O52 - TDSD: \Drivers32\"mixer1"="wdmaud.drv" . (.Microsoft Corporation - WDM Audio driver mapper.) -- C:\WINDOWS\System32\wdmaud.drv

O52 - TDSD: \Drivers32\"vidc.LEAD"="LCODCCMP.DLL" . (.LEAD Technologies, Inc. - LEAD MCMP/MJPEG Codec.) -- C:\WINDOWS\System32\LCODCCMP.DLL

O52 - TDSD: \drivers.desc\"msaud32.acm"="Windows Media Audio Codec" . (.Microsoft Corporation - Windows Media Audio.) -- C:\WINDOWS\System32\msaud32.acm

O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"wdmaud.drv"="Europa audio capture device" . (.Microsoft Corporation - WDM Audio driver mapper.) -- C:\WINDOWS\System32\wdmaud.drv

O52 - TDSD: \drivers.desc\"vfwwdm32.dll"="Vidéo WDM pour le pilote de capture Windows (Win32)" . (.Microsoft Corporation - Pilote VfW MM pour périphériques de capture vidéo WDM.) -- C:\WINDOWS\System32\vfwwdm32.dll

O52 - TDSD: \drivers.desc\"LCODCCMP.DLL"="LEAD MCMP/MJPEG Codec (VFW)" . (.LEAD Technologies, Inc. - LEAD MCMP/MJPEG Codec.) -- C:\WINDOWS\System32\LCODCCMP.DLL

O52 - TDSD: \drivers.desc\"qtwmci32.dll"="[MCI] QuickTime for Windows" . (.Apple Computer, Inc. - Pas de description.) -- C:\WINDOWS\System32\qtwmci32.dll

 

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

 

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles

O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

 

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKLM\...\Policies\Explorer] - "HonorAutoRunSetting"=1

 

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.C1536905AD2067812A238BCE998F4BFF] - 13/04/2008 - 19:46:18 ---A- . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\WINDOWS\system32\drivers\1394bus.sys

O58 - SDL:[MD5.31CB61D36004D635CD67174BD6C0DFE3] - 15/09/2005 - 07:49:56 ---A- . (.ASUSTek - 3xHybrid.) -- C:\WINDOWS\system32\drivers\3xHybrid.sys

O58 - SDL:[MD5.E5E6DBFC41EA8AAD005CB9A57A96B43B] - 14/04/2008 - 02:52:42 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\WINDOWS\system32\drivers\acpi.sys

O58 - SDL:[MD5.E4ABC1212B70BB03D35E60681C447210] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Pilote de contrôleur intégré ACPI.) -- C:\WINDOWS\system32\drivers\acpiec.sys

O58 - SDL:[MD5.8BED39E3C35D6A489438B8141717A557] - 13/04/2008 - 17:39:23 ---A- . (.Microsoft Corporation - Microsoft Acoustic Echo Canceller.) -- C:\WINDOWS\system32\drivers\aec.sys

O58 - SDL:[MD5.7E775010EF291DA96AD17CA4B17137D7] - 14/08/2008 - 11:04:36 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\system32\drivers\afd.sys

O58 - SDL:[MD5.C6C0F974AB7E825813F8E6B4E5581750] - 14/04/2008 - 02:54:28 ---A- . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\system32\drivers\amdk6.sys

O58 - SDL:[MD5.D3DABC57BE6D456DFD4BC026CFA582FF] - 14/04/2008 - 02:54:29 ---A- . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\system32\drivers\amdk7.sys

O58 - SDL:[MD5.C195C48AEBCC2891550C1167B3E3F658] - 03/08/2005 - 02:15:46 ---A- . (.Microsoft Corporation - Microsoft AR ACPI Driver (Beta 2 Release 2).) -- C:\WINDOWS\system32\drivers\aracpi.sys

O58 - SDL:[MD5.7DE52FCDE9468EE55C2E9A9492373A08] - 03/08/2005 - 02:15:46 ---A- . (.Microsoft Corporation - Microsoft AR HID Filter Driver (Beta 2 Release 2).) -- C:\WINDOWS\system32\drivers\arhidfltr.sys

O58 - SDL:[MD5.7ECD19A1E174FAC4AC14A74910C0433B] - 03/08/2005 - 02:15:48 ---A- . (.Microsoft Corporation - Microsoft AR PS/2 Keyboard Filter Driver (Beta 2 Release 2).) -- C:\WINDOWS\system32\drivers\arkbcfltr.sys

O58 - SDL:[MD5.CB37867BF77E8E95DF759CA7680487E5] - 03/08/2005 - 02:15:48 ---A- . (.Microsoft Corporation - Microsoft AR PS/2 Mouse Filter Driver (Beta 2 Release 2).) -- C:\WINDOWS\system32\drivers\armoucfltr.sys

O58 - SDL:[MD5.B5B8A80875C1DEDEDA8B02765642C32F] - 13/04/2008 - 19:51:25 ---A- . (.Microsoft Corporation - IP/1394 Arp Client.) -- C:\WINDOWS\system32\drivers\arp1394.sys

O58 - SDL:[MD5.EF05D0CC4061F790A6E0FFE03B585600] - 03/08/2005 - 02:15:46 ---A- . (.Microsoft Corporation - Microsoft AR Policy Driver (Beta 2 Release 2).) -- C:\WINDOWS\system32\drivers\arpolicy.sys

O58 - SDL:[MD5.62D318E9A0C8FC9B780008E724283707] - 17/08/2001 - 21:52:00 ---A- . (.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) -- C:\WINDOWS\system32\drivers\asc.sys

O58 - SDL:[MD5.B153AFFAC761E7F5FCFA822B9C4E97BC] - 13/04/2008 - 19:57:27 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\WINDOWS\system32\drivers\asyncmac.sys

O58 - SDL:[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 13/04/2008 - 19:40:30 ---A- . (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\system32\drivers\atapi.sys

O58 - SDL:[MD5.36CC18D0CC42534770D71DC69E5D53B0] - 10/01/2006 - 17:54:00 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys

O58 - SDL:[MD5.9916C1225104BA14794209CFA8012159] - 13/04/2008 - 19:51:25 ---A- . (.Microsoft Corporation - IP/ATM Arp Client.) -- C:\WINDOWS\system32\drivers\atmarpc.sys

O58 - SDL:[MD5.39A0A59180F19946374275745B21AEBA] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - ATM Ethernet Encapsulation Intermediate Driver.) -- C:\WINDOWS\system32\drivers\atmepvc.sys

O58 - SDL:[MD5.AE76348A2605FB197FA8FF1D6F547836] - 13/04/2008 - 19:51:30 ---A- . (.Microsoft Corporation - ATM Lan Emulation Driver.) -- C:\WINDOWS\system32\drivers\atmlane.sys

O58 - SDL:[MD5.E7EF69B38D17BA01F914AE8F66216A38] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - ATM UNI Call Manager.) -- C:\WINDOWS\system32\drivers\atmuni.sys

O58 - SDL:[MD5.D9F724AA26C010A217C97606B160ED68] - 18/08/2001 - 04:59:44 ---A- . (.Microsoft Corporation - AudStub Driver.) -- C:\WINDOWS\system32\drivers\audstub.sys

O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 13/02/2009 - 11:17:49 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys

O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 25/11/2009 - 11:19:02 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys

O58 - SDL:[MD5.2DAA8CC2670720DEDDCC74A20EDE2EE9] - 13/02/2009 - 11:28:39 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys

O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\WINDOWS\system32\drivers\avipbb.sys

O58 - SDL:[MD5.56B7F78228CC41FFA1F5BDF3AF799D19] - 13/04/2008 - 19:46:21 ---A- . (.Microsoft Corporation - Microsoft BDA Driver Support Library.) -- C:\WINDOWS\system32\drivers\bdasup.sys

O58 - SDL:[MD5.DA1F27D85E0D1525F6621372E7B685E9] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\WINDOWS\system32\drivers\beep.sys

O58 - SDL:[MD5.F934D1B230F84E1D19DD00AC5A7A83ED] - 13/04/2008 - 19:53:23 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\WINDOWS\system32\drivers\bridge.sys

O58 - SDL:[MD5.90A673FC8E12A79AFBED2576F6A7AAF9] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - CardBus/PCMCIA IDE Miniport Driver.) -- C:\WINDOWS\system32\drivers\cbidf2k.sys

O58 - SDL:[MD5.0BE5AEF125BE881C4F854C554F2B025C] - 13/04/2008 - 19:46:23 ---A- . (.Microsoft Corporation - WDM Closed Caption VBI Codec.) -- C:\WINDOWS\system32\drivers\ccdecode.sys

O58 - SDL:[MD5.C1B486A7658353D33A10CC15211A873B] - 10/08/2004 - 19:00:00 ---A- . (.Microsoft Corporation - CD-ROM Audio Filter Driver.) -- C:\WINDOWS\system32\drivers\cdaudio.sys

O58 - SDL:[MD5.C885B02847F5D2FD45A24E219ED93B32] - 13/04/2008 - 20:14:21 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\system32\drivers\cdfs.sys

O58 - SDL:[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 13/04/2008 - 19:40:46 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\system32\drivers\cdrom.sys

O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 10/08/2004 - 19:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys

O58 - SDL:[MD5.FE47DD8FE6D7768FF94EBEC6C74B2719] - 13/04/2008 - 20:16:22 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\WINDOWS\system32\drivers\classpnp.sys

O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 10/08/2004 - 19:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys

O58 - SDL:[MD5.D68AE021109A74E491B83F3F69FB92CD] - 14/04/2008 - 03:02:47 ---A- . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\system32\drivers\crusoe.sys

O58 - SDL:[MD5.05FB76214FC4B9F7DAD99021B87EC25B] - 08/08/2005 - 21:54:12 ---A- . (.Creative Technology Ltd - Creative AC3 SW Decoder Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctac32k.sys

O58 - SDL:[MD5.59D126F743DB2F16AD5DC020057EE3F9] - 08/08/2005 - 21:54:34 ---A- . (.Creative Technology Ltd - Creative WDM Audio Device Driver.) -- C:\WINDOWS\system32\drivers\ctaud2k.sys

O58 - SDL:[MD5.5A0EEB00B02FC78605AA9D3590B24978] - 14/07/2005 - 01:18:48 ---A- . (.Creative Technology Ltd - Creative DVD-Audio Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctdvda2k.sys

O58 - SDL:[MD5.BFC40092329CF4AB838CC4A6F2FAD659] - 30/12/2002 - 18:53:36 ---A- . (.Creative Technology Ltd. - Creative Game Port Enumerator.) -- C:\WINDOWS\system32\drivers\CTGAME.SYS

O58 - SDL:[MD5.10BF60D011B332BDC4103FBA4A7AC24D] - 08/08/2005 - 21:54:20 ---A- . (.Creative Technology Ltd. - Creative OS Services Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctoss2k.sys

O58 - SDL:[MD5.34A8C98CF5FA4999E2DF020EC1FD3444] - 08/08/2005 - 21:54:36 ---A- . (.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) -- C:\WINDOWS\system32\drivers\ctprxy2k.sys

O58 - SDL:[MD5.B2FF1A68CA3F67D72CABA71BFDCFB2E4] - 08/08/2005 - 21:54:16 ---A- . (.Creative Technology Ltd - SoundFont® Manager (WDM).) -- C:\WINDOWS\system32\drivers\ctsfm2k.sys

O58 - SDL:[MD5.044452051F3E02E7963599FC8F4F3E25] - 13/04/2008 - 19:40:47 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\WINDOWS\system32\drivers\disk.sys

O58 - SDL:[MD5.E65E2353A5D74EA89971CB918EEEB2F6] - 13/04/2008 - 19:40:44 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\WINDOWS\system32\drivers\diskdump.sys

O58 - SDL:[MD5.F5DEADD42335FB33EDCA74ECB2F36CBA] - 14/04/2008 - 03:05:07 ---A- . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\drivers\dmboot.sys

O58 - SDL:[MD5.5A7C47C9B3F9FB92A66410A7509F0C71] - 14/04/2008 - 03:05:12 ---A- . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\drivers\dmio.sys

O58 - SDL:[MD5.E9317282A63CA4D188C0DF5E09C6AC5F] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\drivers\dmload.sys

O58 - SDL:[MD5.8A208DFCF89792A484E76C40E5F50B45] - 13/04/2008 - 19:45:01 ---A- . (.Microsoft Corporation - Microsoft Kernel DLS Synthesizer.) -- C:\WINDOWS\system32\drivers\dmusic.sys

O58 - SDL:[MD5.6CB08593487F5701D2D2254E693EAFCE] - 13/04/2008 - 19:45:14 ---A- . (.Microsoft Corporation - Microsoft Kernel DRM Descrambler Filter.) -- C:\WINDOWS\system32\drivers\drmk.sys

O58 - SDL:[MD5.8F5FCFF8E8848AFAC920905FBD9D33C8] - 13/04/2008 - 19:45:13 ---A- . (.Microsoft Corporation - Microsoft Kernel DRM Audio Descrambler Filter.) -- C:\WINDOWS\system32\drivers\drmkaud.sys

O58 - SDL:[MD5.FE97D0343ACFDEBDD578FC67CC91FA87] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - DirectX API Driver.) -- C:\WINDOWS\system32\drivers\dxapi.sys

O58 - SDL:[MD5.AC7280566A7BB85CB3291F04DDC1198E] - 13/04/2008 - 19:38:29 ---A- . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\WINDOWS\system32\drivers\dxg.sys

O58 - SDL:[MD5.A73F5D6705B1D820C19B18782E176EFD] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - DirectX Graphics Driver Thunk.) -- C:\WINDOWS\system32\drivers\dxgthk.sys

O58 - SDL:[MD5.95974E66D3DE4951D29E28E8BC0B644C] - 15/10/2004 - 00:30:46 ---A- . (.Intel Corporation - Intel® PRO/100 Adapter NDIS 5.1 driver.) -- C:\WINDOWS\system32\drivers\e100b325.sys

O58 - SDL:[MD5.AC5F1A54B75D1941CCEA7DFC37251C9B] - 08/08/2005 - 21:54:16 ---A- . (.Creative Technology Ltd - E-mu Plug-in Architecture Driver (WDM).) -- C:\WINDOWS\system32\drivers\emupia2k.sys

O58 - SDL:[MD5.80D1B490B60E74E002DC116EC5D41748] - 18/08/2001 - 04:46:40 ---A- . (.Microsoft Corporation - Ndis 1394 Enumerator.) -- C:\WINDOWS\system32\drivers\enum1394.sys

O58 - SDL:[MD5.38D332A6D56AF32635675F132548343E] - 13/04/2008 - 20:14:29 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\WINDOWS\system32\drivers\fastfat.sys

O58 - SDL:[MD5.92CDD60B6730B9F50F6A1A0C1F8CDC81] - 13/04/2008 - 19:40:25 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\WINDOWS\system32\drivers\fdc.sys

O58 - SDL:[MD5.31F923EB2170FC172C81ABDA0045D18C] - 14/04/2008 - 02:57:38 ---A- . (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\system32\drivers\fips.sys

O58 - SDL:[MD5.9D27E7B80BFCDF1CDD9B555862D5E7F0] - 13/04/2008 - 19:40:25 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\WINDOWS\system32\drivers\flpydisk.sys

O58 - SDL:[MD5.B2CF4B0786F8212CB92ED2B50C6DB6B0] - 13/04/2008 - 19:32:59 ---A- . (.Microsoft Corporation - Microsoft Filesystem Filter Manager.) -- C:\WINDOWS\system32\drivers\fltmgr.sys

O58 - SDL:[MD5.B71A69BB9CC88803F455341BD3992E0C] - 10/08/2004 - 19:00:00 ---A- . (.Microsoft Corporation - Pilote vidéo plein écran.) -- C:\WINDOWS\system32\drivers\fsvga.sys

O58 - SDL:[MD5.3E1E2BD4F39B0E2B7DC4F4D2BCC2779A] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\WINDOWS\system32\drivers\fs_rec.sys

O58 - SDL:[MD5.A86859B77B908C18C2657F284AA29FE3] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Pilote de disque à FT.) -- C:\WINDOWS\system32\drivers\ftdisk.sys

O58 - SDL:[MD5.6F55305289A0765BD8AE8E8D32F17117] - 07/03/2005 - 17:52:48 ---A- . (.GEAR Software Inc. - CDRom Class Filter Driver.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys

O58 - SDL:[MD5.B369203A30223B0D148BAE7269963A23] - 08/08/2005 - 21:54:22 ---A- . (.Creative Technology Ltd - Creative EMU10KX HAL (WDM).) -- C:\WINDOWS\system32\drivers\ha10kx2k.sys

O58 - SDL:[MD5.ED4724EE042D7E76CDFA19FCBD801DD4] - 08/08/2005 - 21:54:28 ---A- . (.Creative Technology Ltd - Creative 20X HAL (WDM).) -- C:\WINDOWS\system32\drivers\ha20x2k.sys

O58 - SDL:[MD5.286BBF7815A395D8D14ACBDA6102472F] - 08/08/2005 - 21:54:24 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P16v HAL (WDM).) -- C:\WINDOWS\system32\drivers\haP16v2k.sys

O58 - SDL:[MD5.7025C9C473021C9429EDD68B32C6C5B3] - 08/08/2005 - 21:54:24 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P17v HAL (WDM).) -- C:\WINDOWS\system32\drivers\haP17v2k.sys

O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/04/2008 - 17:36:05 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys

O58 - SDL:[MD5.2A013E7530BEAB6E569FAA83F517E836] - 08/01/2005 - 00:07:16 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\system32\drivers\Hdaudio.sys

O58 - SDL:[MD5.1AF592532532A402ED7C060F6954004F] - 13/04/2008 - 19:45:26 ---A- . (.Microsoft Corporation - Hid Class Library.) -- C:\WINDOWS\system32\drivers\hidclass.sys

O58 - SDL:[MD5.BB1A6FB7D35A91E599973FA74A619056] - 13/04/2008 - 19:45:26 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\WINDOWS\system32\drivers\hidir.sys

O58 - SDL:[MD5.96ECCF28FDBF1B2CC12725818A63628D] - 13/04/2008 - 19:45:22 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\WINDOWS\system32\drivers\hidparse.sys

O58 - SDL:[MD5.CCF82C5EC8A7326C3066DE870C06DAF1] - 13/04/2008 - 19:45:27 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\WINDOWS\system32\drivers\hidusb.sys

O58 - SDL:[MD5.9F1D80908658EB7F1BF70809E0B51470] - 08/03/2005 - 20:43:26 ---A- . (.HP - IEEE-1284.4-1999 Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZid412.sys

O58 - SDL:[MD5.F7E3E9D50F9CD3DE28085A8FDAA0A1C3] - 08/03/2005 - 20:43:26 ---A- . (.HP - IEEE-1284.4-1999 Print Class Driver.) -- C:\WINDOWS\system32\drivers\HPZipr12.sys

O58 - SDL:[MD5.CF1B7951B4EC8D13F3C93B74BB2B461B] - 08/03/2005 - 20:43:28 ---A- . (.HP - 1284.4<->Usb Datalink Driver (Windows 2000).) -- C:\WINDOWS\system32\drivers\HPZius12.sys

O58 - SDL:[MD5.F80A415EF82CD06FFAF0D971528EAD38] - 20/10/2009 - 17:20:16 ---A- . (.Microsoft Corporation - HTTP Protocol Stack.) -- C:\WINDOWS\system32\drivers\http.sys

O58 - SDL:[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 14/04/2008 - 03:00:52 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\system32\drivers\i8042prt.sys

O58 - SDL:[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 13/04/2008 - 19:40:58 ---A- . (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\system32\drivers\imapi.sys

O58 - SDL:[MD5.4B6DA2F0A4095857A9E3F3697399D575] - 14/04/2008 - 03:03:25 ---A- . (.Microsoft Corporation - Pilote IDE Intel PCI.) -- C:\WINDOWS\system32\drivers\intelide.sys

O58 - SDL:[MD5.AD340800C35A42D4DE1641A37FEEA34C] - 14/04/2008 - 03:03:26 ---A- . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\system32\drivers\intelppm.sys

O58 - SDL:[MD5.3BB22519A194418D5FEC05D800A19AD0] - 13/04/2008 - 19:53:34 ---A- . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\drivers\ip6fw.sys

O58 - SDL:[MD5.731F22BA402EE4B62748ADAF6363C182] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\WINDOWS\system32\drivers\ipfltdrv.sys

O58 - SDL:[MD5.B87AB476DCF76E72010632B5550955F5] - 13/04/2008 - 19:57:07 ---A- . (.Microsoft Corporation - IP in IP Encapsulation Driver.) -- C:\WINDOWS\system32\drivers\ipinip.sys

O58 - SDL:[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 13/04/2008 - 19:57:15 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\drivers\ipnat.sys

O58 - SDL:[MD5.23C74D75E36E7158768DD63D92789A91] - 13/04/2008 - 20:19:42 ---A- . (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\system32\drivers\ipsec.sys

O58 - SDL:[MD5.B43B36B382AEA10861F7C7A37F9D4AE2] - 13/04/2008 - 19:45:34 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\WINDOWS\system32\drivers\irbus.sys

O58 - SDL:[MD5.C93C9FF7B04D772627A3646D89F7BF89] - 13/04/2008 - 19:54:28 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\WINDOWS\system32\drivers\irenum.sys

O58 - SDL:[MD5.355836975A67B6554BCA60328CD6CB74] - 14/04/2008 - 03:04:35 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\WINDOWS\system32\drivers\isapnp.sys

O58 - SDL:[MD5.16813155807C6881F4BFBF6657424659] - 14/04/2008 - 03:05:14 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\WINDOWS\system32\drivers\kbdclass.sys

O58 - SDL:[MD5.94C59CB884BA010C063687C3A50DCE8E] - 14/04/2008 - 03:05:15 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\WINDOWS\system32\drivers\kbdhid.sys

O58 - SDL:[MD5.692BCF44383D056AED41B045A323D378] - 13/04/2008 - 19:45:09 ---A- . (.Microsoft Corporation - Kernel Mode Audio Mixer.) -- C:\WINDOWS\system32\drivers\kmixer.sys

O58 - SDL:[MD5.0753515F78DF7F271A5E61C20BCD36A1] - 13/04/2008 - 20:16:36 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\WINDOWS\system32\drivers\ks.sys

O58 - SDL:[MD5.B467646C54CC746128904E1654C750C1] - 24/06/2009 - 12:18:41 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\WINDOWS\system32\drivers\ksecdd.sys

O58 - SDL:[MD5.654A3F014903DC62CAF5E037F3D316D2] - 07/01/2010 - 16:07:04 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys

O58 - SDL:[MD5.C0D40BEAA6DFC05602FC8F484696F7F5] - 07/01/2010 - 16:07:14 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys

O58 - SDL:[MD5.D1F8BE91ED4DDB671D42E473E3FE71AB] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\WINDOWS\system32\drivers\mcd.sys

O58 - SDL:[MD5.A7DA20AB18A1BDAE28B0F349E57DA0D1] - 13/04/2008 - 19:36:41 ---A- . (.Microsoft Corporation - Multifunction Enumerator.) -- C:\WINDOWS\system32\drivers\mf.sys

O58 - SDL:[MD5.7F2F1D2815A6449D346FCCCBC569FBD6] - 10/08/2004 - 09:45:04 ---A- . (.Microsoft Corporation - Microsoft Multimedia Home Network (MHN) Support Driver.) -- C:\WINDOWS\system32\drivers\mhndrv.sys

O58 - SDL:[MD5.4AE068242760A1FB6E1A44BF4E16AFA6] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Frame buffer simulator.) -- C:\WINDOWS\system32\drivers\mnmdd.sys

O58 - SDL:[MD5.510ADE9327FE84C10254E1902697E25F] - 14/04/2008 - 02:53:05 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\WINDOWS\system32\drivers\modem.sys

O58 - SDL:[MD5.027C01BD7EF3349AAEBC883D8A799EFB] - 14/04/2008 - 02:53:18 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\WINDOWS\system32\drivers\mouclass.sys

O58 - SDL:[MD5.124D6846040C79B9C997F78EF4B2A4E5] - 23/08/2001 - 16:04:42 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\WINDOWS\system32\drivers\mouhid.sys

O58 - SDL:[MD5.A80B9A0BAD1B73637DBCBBA7DF72D3FD] - 13/04/2008 - 19:39:46 ---A- . (.Microsoft Corporation - Mount Manager.) -- C:\WINDOWS\system32\drivers\mountmgr.sys

O58 - SDL:[MD5.C0F8E0C2C3C0437CF37C6781896DC3EC] - 13/04/2008 - 19:46:22 ---A- . (.Microsoft Corporation - Microsoft MPE to IP Filter.) -- C:\WINDOWS\system32\drivers\mpe.sys

O58 - SDL:[MD5.70C14F5CCA5CF73F8A645C73A01D8726] - 13/04/2008 - 19:39:44 ---A- . (.Microsoft Corporation - Windows NT MQ Access Control Device Driver.) -- C:\WINDOWS\system32\drivers\mqac.sys

O58 - SDL:[MD5.11D42BB6206F33FBB3BA0288D3EF81BD] - 13/04/2008 - 19:32:44 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\WINDOWS\system32\drivers\mrxdav.sys

O58 - SDL:[MD5.60AE98742484E7AB80C3C1450E708148] - 24/10/2008 - 12:21:09 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\system32\drivers\mrxsmb.sys

O58 - SDL:[MD5.C941EA2454BA8350021D774DAF0F1027] - 13/04/2008 - 19:32:39 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\WINDOWS\system32\drivers\msfs.sys

O58 - SDL:[MD5.0A02C63C8B144BD8C86B103DEE7C86A2] - 13/04/2008 - 19:56:32 ---A- . (.Microsoft Corporation - MS General Packet Classifier.) -- C:\WINDOWS\system32\drivers\msgpc.sys

O58 - SDL:[MD5.D1575E71568F4D9E14CA56B7B0453BF1] - 13/04/2008 - 19:39:52 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\WINDOWS\system32\drivers\mskssrv.sys

O58 - SDL:[MD5.325BB26842FC7CCC1FCCE2C457317F3E] - 13/04/2008 - 19:39:50 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\WINDOWS\system32\drivers\mspclock.sys

O58 - SDL:[MD5.BAD59648BA099DA4A17680B39730CB3D] - 13/04/2008 - 19:39:51 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\WINDOWS\system32\drivers\mspqm.sys

O58 - SDL:[MD5.AF5F4F3F14A8EA2C26DE30F7A1E17136] - 13/04/2008 - 19:36:46 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\WINDOWS\system32\drivers\mssmbios.sys

O58 - SDL:[MD5.E53736A9E30C45FA9E7B5EAC55056D1D] - 13/04/2008 - 19:39:50 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\WINDOWS\system32\drivers\mstee.sys

O58 - SDL:[MD5.2F625D11385B1A94360BFC70AAEFDEE1] - 13/04/2008 - 20:17:05 ---A- . (.Microsoft Corporation - Multiple UNC Provider driver.) -- C:\WINDOWS\system32\drivers\mup.sys

O58 - SDL:[MD5.5B50F1B2A2ED47D560577B221DA734DB] - 13/04/2008 - 19:46:25 ---A- . (.Microsoft Corporation - WDM NABTS/FEC VBI Codec.) -- C:\WINDOWS\system32\drivers\nabtsfec.sys

O58 - SDL:[MD5.1DF7F42665C94B825322FAE71721130D] - 13/04/2008 - 20:20:37 ---A- . (.Microsoft Corporation - NDIS 5.1 wrapper driver.) -- C:\WINDOWS\system32\drivers\ndis.sys

O58 - SDL:[MD5.7FF1F1FD8609C149AA432F95A8163D97] - 13/04/2008 - 19:46:22 ---A- . (.Microsoft Corporation - Microsoft IP Driver.) -- C:\WINDOWS\system32\drivers\ndisip.sys

O58 - SDL:[MD5.1AB3D00C991AB086E69DB84B6C0ED78F] - 13/04/2008 - 19:57:27 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\WINDOWS\system32\drivers\ndistapi.sys

O58 - SDL:[MD5.F927A4434C5028758A842943EF1A3849] - 13/04/2008 - 19:55:58 ---A- . (.Microsoft Corporation - NDIS User mode I/O Driver.) -- C:\WINDOWS\system32\drivers\ndisuio.sys

O58 - SDL:[MD5.EDC1531A49C80614B2CFDA43CA8659AB] - 13/04/2008 - 20:20:42 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\WINDOWS\system32\drivers\ndiswan.sys

O58 - SDL:[MD5.6215023940CFD3702B46ABC304E1D45A] - 13/04/2008 - 19:57:29 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\WINDOWS\system32\drivers\ndproxy.sys

O58 - SDL:[MD5.5D81CF9A2F1A3A756B66CF684911CDF0] - 13/04/2008 - 19:56:02 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\WINDOWS\system32\drivers\netbios.sys

O58 - SDL:[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 13/04/2008 - 20:21:00 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\system32\drivers\netbt.sys

O58 - SDL:[MD5.E9E47CFB2D461FA0FC75B7A74C6383EA] - 13/04/2008 - 19:51:25 ---A- . (.Microsoft Corporation - IEEE1394 Ndis Miniport and Call Manager.) -- C:\WINDOWS\system32\drivers\nic1394.sys

O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 10/08/2004 - 19:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys

O58 - SDL:[MD5.1E421A6BCF2203CC61B821ADA9DE878B] - 13/04/2008 - 19:53:09 ---A- . (.Microsoft Corporation - Netmon NT Driver.) -- C:\WINDOWS\system32\drivers\nmnt.sys

O58 - SDL:[MD5.3182D64AE053D6FB034F44B6DEF8034A] - 13/04/2008 - 19:32:39 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\WINDOWS\system32\drivers\npfs.sys

O58 - SDL:[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 13/04/2008 - 20:15:53 ---A- . (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\system32\drivers\ntfs.sys

O58 - SDL:[MD5.73C1E1F395918BC2C6DD67AF7591A3AD] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\WINDOWS\system32\drivers\null.sys

O58 - SDL:[MD5.B305F3FAD35083837EF46A0BBCE2FC57] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - NWLINK2 Traffic Filter Driver.) -- C:\WINDOWS\system32\drivers\nwlnkflt.sys

O58 - SDL:[MD5.C99B3415198D1AAB7227F2C88FD664B9] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - NWLINK2 Forwarder Driver.) -- C:\WINDOWS\system32\drivers\nwlnkfwd.sys

O58 - SDL:[MD5.8B8B1BE2DBA4025DA6786C645F77F123] - 13/04/2008 - 19:56:06 ---A- . (.Microsoft Corporation - NWLINK2 IPX Protocol Driver.) -- C:\WINDOWS\system32\drivers\nwlnkipx.sys

O58 - SDL:[MD5.56D34A67C05E94E16377C60609741FF8] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - NWLINK2 IPX Netbios Protocol Driver.) -- C:\WINDOWS\system32\drivers\nwlnknb.sys

O58 - SDL:[MD5.C0BB7D1615E1ACBDC99757F6CEAF8CF0] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - NWLINK2 SPX Protocol Driver.) -- C:\WINDOWS\system32\drivers\nwlnkspx.sys

O58 - SDL:[MD5.36B9B950E3D2E100970A48D8BAD86740] - 13/04/2008 - 19:34:12 ---A- . (.Microsoft Corporation - NetWare Redirector File System Driver.) -- C:\WINDOWS\system32\drivers\nwrdr.sys

O58 - SDL:[MD5.CA33832DF41AFB202EE7AEB05145922F] - 13/04/2008 - 19:46:18 ---A- . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\WINDOWS\system32\drivers\ohci1394.sys

O58 - SDL:[MD5.4BB30DDC53EBC76895E38694580CDFE9] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - ACPI Operation Registration Driver.) -- C:\WINDOWS\system32\drivers\oprghdlr.sys

O58 - SDL:[MD5.CECB679633523AC5EB7EB85F92DCD806] - 14/04/2008 - 03:09:37 ---A- . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\system32\drivers\p3.sys

O58 - SDL:[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 14/04/2008 - 03:09:40 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\system32\drivers\parport.sys

O58 - SDL:[MD5.BEB3BA25197665D82EC7065B724171C6] - 13/04/2008 - 19:40:49 ---A- . (.Microsoft Corporation - Partition Manager.) -- C:\WINDOWS\system32\drivers\partmgr.sys

O58 - SDL:[MD5.9575C5630DB8FB804649A6959737154C] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\WINDOWS\system32\drivers\parvdm.sys

O58 - SDL:[MD5.043410877BDA580C528F45165F7125BC] - 14/04/2008 - 03:09:47 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\WINDOWS\system32\drivers\pci.sys

O58 - SDL:[MD5.F4BFDE7209C14A07AAA61E4D6AE69EAC] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Pilote de bus générique PCI IDE.) -- C:\WINDOWS\system32\drivers\pciide.sys

O58 - SDL:[MD5.52E60F29221D0D1AC16737E8DBF7C3E9] - 13/04/2008 - 19:40:29 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\WINDOWS\system32\drivers\pciidex.sys

O58 - SDL:[MD5.F0406CBC60BDB0394A0E17FFB04CDD3D] - 14/04/2008 - 03:09:53 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\WINDOWS\system32\drivers\pcmcia.sys

O58 - SDL:[MD5.1BD9EEB4F86E11C52FEF03F739ADB954] - 08/08/2005 - 22:15:36 ---A- . (.Creative Technology Ltd. - PCI/ISA Device Info. Service.) -- C:\WINDOWS\system32\drivers\pfmodnt.sys

O58 - SDL:[MD5.E82A496C3961EFC6828B508C310CE98F] - 13/04/2008 - 20:19:41 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\WINDOWS\system32\drivers\portcls.sys

O58 - SDL:[MD5.E19C9632AC828F6F214391E2BDDA11CB] - 14/04/2008 - 02:55:30 ---A- . (.Microsoft Corporation - Pilote de périphérique processeur.) -- C:\WINDOWS\system32\drivers\processr.sys

O58 - SDL:[MD5.0E2EB30605CA6ED2509D59AF6A7362B4] - 04/07/2005 - 08:30:34 ---A- . (.Hewlett-Packard Company - PS2 SYS.) -- C:\WINDOWS\system32\drivers\PS2.sys

O58 - SDL:[MD5.09298EC810B07E5D582CB3A3F9255424] - 13/04/2008 - 19:56:38 ---A- . (.Microsoft Corporation - MS QoS Packet Scheduler.) -- C:\WINDOWS\system32\drivers\psched.sys

O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 10/08/2004 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys

O58 - SDL:[MD5.86724469CD077901706854974CD13C3E] - 25/04/2005 - 09:03:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys

O58 - SDL:[MD5.FE0D99D6F31E4FAD8159F690D68DED9C] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\WINDOWS\system32\drivers\rasacd.sys

O58 - SDL:[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 13/04/2008 - 20:19:43 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\system32\drivers\rasl2tp.sys

O58 - SDL:[MD5.5BC962F2654137C9909C3D4603587DEE] - 13/04/2008 - 19:57:32 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\WINDOWS\system32\drivers\raspppoe.sys

O58 - SDL:[MD5.EFEEC01B1D3CF84F16DDD24D9D9D8F99] - 13/04/2008 - 20:19:48 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\WINDOWS\system32\drivers\raspptp.sys

O58 - SDL:[MD5.FDBB1D60066FCFBB7452FD8F9829B242] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - PTI DirectParallel® mini-port/call-manager driver.) -- C:\WINDOWS\system32\drivers\raspti.sys

O58 - SDL:[MD5.01524CD237223B18ADBB48F70083F101] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Raw WAN Transport.) -- C:\WINDOWS\system32\drivers\rawwan.sys

O58 - SDL:[MD5.7AD224AD1A1437FE28D89CF22B17780A] - 13/04/2008 - 20:28:39 ---A- . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) -- C:\WINDOWS\system32\drivers\rdbss.sys

O58 - SDL:[MD5.4912D5B403614CE99C28420F75353332] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\drivers\rdpcdd.sys

O58 - SDL:[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - 19:32:51 ---A- . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\system32\drivers\rdpdr.sys

O58 - SDL:[MD5.6728E45B66F93C08F11DE2E316FC70DD] - 14/04/2008 - 03:34:54 ---A- . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\drivers\rdpwd.sys

O58 - SDL:[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 14/04/2008 - 02:57:34 ---A- . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\system32\drivers\redbook.sys

O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 10/08/2004 - 19:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys

O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 10/08/2004 - 19:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys

O58 - SDL:[MD5.96F7A9A7BF0C9C0440A967440065D33C] - 08/05/2008 - 15:02:52 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\WINDOWS\system32\drivers\rmcast.sys

O58 - SDL:[MD5.601844CBCF617FF8C868130CA5B2039D] - 13/04/2008 - 19:56:49 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\WINDOWS\system32\drivers\rndismp.sys

O58 - SDL:[MD5.D8B0B4ADE32574B2D9C5CC34DC0DBBE7] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\WINDOWS\system32\drivers\rootmdm.sys

O58 - SDL:[MD5.D507C1400284176573224903819FFDA3] - 04/08/2004 - 05:31:34 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8139 NDIS 5.0 Driver.) -- C:\WINDOWS\system32\drivers\RTL8139.sys

O58 - SDL:[MD5.76C465F570E90C28942D52CCB2580A10] - 13/04/2008 - 19:40:30 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\WINDOWS\system32\drivers\scsiport.sys

O58 - SDL:[MD5.8D04819A3CE51B9EB47E5689B44D43C4] - 13/04/2008 - 19:36:44 ---A- . (.Microsoft Corporation - SecureDigital Bus Driver.) -- C:\WINDOWS\system32\drivers\sdbus.sys

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/11/2007 - 11:25:54 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys

O58 - SDL:[MD5.0F29512CCD6BEAD730039FB4BD2C85CE] - 13/04/2008 - 19:40:12 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\WINDOWS\system32\drivers\serenum.sys

O58 - SDL:[MD5.93D313C31F7AD9EA2B75F26075413C7C] - 14/04/2008 - 03:00:08 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\WINDOWS\system32\drivers\serial.sys

O58 - SDL:[MD5.0FA803C64DF0914B41F807EA276BF2A6] - 13/04/2008 - 19:40:47 ---A- . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\WINDOWS\system32\drivers\sffdisk.sys

O58 - SDL:[MD5.C17C331E435ED8737525C86A7557B3AC] - 13/04/2008 - 19:40:47 ---A- . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\WINDOWS\system32\drivers\sffp_sd.sys

O58 - SDL:[MD5.8E6B8C671615D126FDC553D1E2DE5562] - 13/04/2008 - 19:40:48 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\WINDOWS\system32\drivers\sfloppy.sys

O58 - SDL:[MD5.866D538EBE33709A5C9F5C62B73B7D14] - 13/04/2008 - 19:46:23 ---A- . (.Microsoft Corporation - Microsoft Slip Deframing Filter Minidriver.) -- C:\WINDOWS\system32\drivers\slip.sys

O58 - SDL:[MD5.017DAECF0ED3AA731313433601EC40FA] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Smard Card Driver Library.) -- C:\WINDOWS\system32\drivers\smclib.sys

O58 - SDL:[MD5.489703624DAC94ED943C2ABDA022A1CD] - 13/04/2008 - 19:46:07 ---A- . (.Microsoft Corporation - 1394 Desktop Camera Driver.) -- C:\WINDOWS\system32\drivers\sonydcam.sys

O58 - SDL:[MD5.AB8B92451ECB048A4D1DE7C3FFCB4A9F] - 13/04/2008 - 19:45:07 ---A- . (.Microsoft Corporation - Microsoft Kernel Audio Splitter.) -- C:\WINDOWS\system32\drivers\splitter.sys

O58 - SDL:[MD5.39626E6DC1FB39434EC40C42722B660A] - 14/04/2008 - 03:10:03 ---A- . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du.) -- C:\WINDOWS\system32\drivers\sr.sys

O58 - SDL:[MD5.3BB03F2BA89D2BE417206C373D2AF17C] - 11/12/2008 - 11:57:09 ---A- . (.Microsoft Corporation - Server driver.) -- C:\WINDOWS\system32\drivers\srv.sys

O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 11/05/2009 - 09:11:52 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys

O58 - SDL:[MD5.3E5D89099DED9E86E5639F411693218F] - 13/04/2008 - 19:45:15 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\WINDOWS\system32\drivers\stream.sys

O58 - SDL:[MD5.77813007BA6265C4B6098187E6ED79D2] - 13/04/2008 - 19:46:21 ---A- . (.Microsoft Corporation - Microsoft IP Test Driver.) -- C:\WINDOWS\system32\drivers\streamip.sys

O58 - SDL:[MD5.3941D127AEF12E93ADDF6FE6EE027E0F] - 13/04/2008 - 19:39:53 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\WINDOWS\system32\drivers\swenum.sys

O58 - SDL:[MD5.8CE882BCC6CF8A62F2B2323D95CB3D01] - 13/04/2008 - 19:45:09 ---A- . (.Microsoft Corporation - Microsoft GS Wavetable Synthesizer.) -- C:\WINDOWS\system32\drivers\swmidi.sys

O58 - SDL:[MD5.8B83F3ED0F1688B4958F77CD6D2BF290] - 13/04/2008 - 20:15:55 ---A- . (.Microsoft Corporation - System Audio WDM Filter.) -- C:\WINDOWS\system32\drivers\sysaudio.sys

O58 - SDL:[MD5.FD6093E3DECD925F1CFFC8A0DD539D72] - 13/04/2008 - 19:40:50 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\WINDOWS\system32\drivers\tape.sys

O58 - SDL:[MD5.9AEFA14BD6B182D61E3119FA5F436D3D] - 20/06/2008 - 12:51:12 ---A- . (.Microsoft Corporation - TCP/IP Protocol Driver.) -- C:\WINDOWS\system32\drivers\tcpip.sys

O58 - SDL:[MD5.FB9F32ACC1D3AD523F7EC900B66FC1BB] - 20/06/2008 - 12:08:27 ---A- . (.Microsoft Corporation - IPv6 driver.) -- C:\WINDOWS\system32\drivers\tcpip6.sys

O58 - SDL:[MD5.0539D5E53587F82D1B4FD74C5BE205CF] - 13/04/2008 - 20:00:05 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\WINDOWS\system32\drivers\tdi.sys

O58 - SDL:[MD5.6471A66807F5E104E4885F5B67349397] - 14/04/2008 - 03:34:52 ---A- . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\drivers\tdpipe.sys

O58 - SDL:[MD5.C56B6D0402371CF3700EB322EF3AAF61] - 14/04/2008 - 03:34:53 ---A- . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\drivers\tdtcp.sys

O58 - SDL:[MD5.88155247177638048422893737429D9E] - 14/04/2008 - 03:34:52 ---A- . (.Microsoft Corporation - Terminal Server Driver.) -- C:\WINDOWS\system32\drivers\termdd.sys

O58 - SDL:[MD5.DF8444A8FA8FD38D8848BDD40A8403B3] - 03/12/2009 - 19:30:09 ---A- . (.Trend Micro Inc. - TrendMicro Common Module.) -- C:\WINDOWS\system32\drivers\tmcomm.sys

O58 - SDL:[MD5.699450901C5CCFD82357CBC531CEDD23] - 10/08/2004 - 19:00:00 ---A- . (.Microsoft Corporation - TOSHIBA DVD Stream Minidriver.) -- C:\WINDOWS\system32\drivers\tosdvd.sys

O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 10/08/2004 - 19:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys

O58 - SDL:[MD5.8F861EDA21C05857EB8197300A92501C] - 13/04/2008 - 19:56:01 ---A- . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\WINDOWS\system32\drivers\tunmp.sys

O58 - SDL:[MD5.5787B80C2E3C5E2F56C2A233D91FA2C9] - 13/04/2008 - 19:32:36 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\WINDOWS\system32\drivers\udfs.sys

O58 - SDL:[MD5.402DDC88356B1BAC0EE3DD1580C76A31] - 13/04/2008 - 19:39:46 ---A- . (.Microsoft Corporation - Update Driver.) -- C:\WINDOWS\system32\drivers\update.sys

O58 - SDL:[MD5.BEE793D4A059CAEA55D6AC20E19B3A8F] - 13/04/2008 - 19:56:49 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\WINDOWS\system32\drivers\usb8023.sys

O58 - SDL:[MD5.1C1A47B40C23358245AA8D0443B6935E] - 13/04/2008 - 19:45:40 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\drivers\usbcamd.sys

O58 - SDL:[MD5.CE97845D2E3F0D274B8BAC1ED07C6149] - 13/04/2008 - 19:45:41 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\drivers\usbcamd2.sys

O58 - SDL:[MD5.173F317CE0DB8E21322E71B7E60A27E8] - 13/04/2008 - 19:45:39 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\WINDOWS\system32\drivers\usbccgp.sys

O58 - SDL:[MD5.596EB39B50D6EBD9B734DC4AE0544693] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\WINDOWS\system32\drivers\usbd.sys

O58 - SDL:[MD5.65DCF09D0E37D4C6B11B5B0B76D470A7] - 13/04/2008 - 19:45:35 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\WINDOWS\system32\drivers\usbehci.sys

O58 - SDL:[MD5.1AB3CDDE553B6E064D2E754EFE20285C] - 13/04/2008 - 19:45:37 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\WINDOWS\system32\drivers\usbhub.sys

O58 - SDL:[MD5.290913DC4F1125E5A82DE52579A44C43] - 13/04/2008 - 19:45:43 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\drivers\usbintel.sys

O58 - SDL:[MD5.BE96FFE28B8F97D6D5696C81E902480F] - 09/05/2005 - 23:52:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\USBkey.sys

O58 - SDL:[MD5.791912E524CC2CC6F50B5F2B52D1EB71] - 13/04/2008 - 19:45:36 ---A- . (.Microsoft Corporation - USB 1.1 & 2.0 Port Driver.) -- C:\WINDOWS\system32\drivers\usbport.sys

O58 - SDL:[MD5.A717C8721046828520C9EDF31288FC00] - 13/04/2008 - 19:47:37 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\WINDOWS\system32\drivers\usbprint.sys

O58 - SDL:[MD5.A0B8CF9DEB1184FBDD20784A58FA75D4] - 13/04/2008 - 19:45:34 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\WINDOWS\system32\drivers\usbscan.sys

O58 - SDL:[MD5.A32426D9B14A089EAA1D922E0C5801A9] - 13/04/2008 - 19:45:38 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\WINDOWS\system32\drivers\usbstor.sys

O58 - SDL:[MD5.26496F9DEE2D787FC3E61AD54821FFE6] - 13/04/2008 - 19:45:35 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\WINDOWS\system32\drivers\usbuhci.sys

O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 10/08/2004 - 19:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys

O58 - SDL:[MD5.0D3A8FAFCEACD8B7625CD549757A7DF1] - 13/04/2008 - 19:44:40 ---A- . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\drivers\vga.sys

O58 - SDL:[MD5.3B3EFCDA263B8AC14FDF9CBDD0791B2E] - 13/04/2008 - 19:40:31 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\WINDOWS\system32\drivers\viaide.sys

O58 - SDL:[MD5.E28726B72C46821A28830E077D39A55B] - 13/04/2008 - 19:44:40 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\WINDOWS\system32\drivers\videoprt.sys

O58 - SDL:[MD5.46DE1126684369BACE4849E4FC8C43CA] - 14/04/2008 - 02:56:04 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\system32\drivers\volsnap.sys

O58 - SDL:[MD5.E20B95BAEDB550F32DD489265C1DA1F6] - 13/04/2008 - 19:57:21 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\WINDOWS\system32\drivers\wanarp.sys

O58 - SDL:[MD5.6768ACF64B18196494413695F0C3A00F] - 13/04/2008 - 20:17:18 ---A- . (.Microsoft Corporation - MMSYSTEM Wave/Midi API mapper.) -- C:\WINDOWS\system32\drivers\wdmaud.sys

O58 - SDL:[MD5.C383926D4BA41AFBCA592B2AD1FE4109] - 17/06/2005 - 09:27:00 ---A- . (.Conexant Systems, Inc. - PRISM Wireless NDIS 5.1 Driver.) -- C:\WINDOWS\system32\drivers\WlanUIG.sys

O58 - SDL:[MD5.FB0F61F574F7E72121411C5FB0E5C91D] - 13/07/2005 - 15:37:18 ---A- . (.ZyDAS Technology Corporation - ZD1211 802.11b+g USB LAN Driver.) -- C:\WINDOWS\system32\drivers\WlanUZXP.sys

O58 - SDL:[MD5.2F31B7F954BED437F2C75026C65CAF7B] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\WINDOWS\system32\drivers\wmilib.sys

O58 - SDL:[MD5.F87497CF86995DF3B075234235682647] - 07/01/2005 - 01:08:46 ---A- . (.Liteon Technology Corp. - Driver for Liteon Wireless LAN PCI 802.11 a/b/g adapter WN5401A.) -- C:\WINDOWS\system32\drivers\wn5401.sys

O58 - SDL:[MD5.CF4DEF1BF66F06964DC0D91844239104] - 18/10/2006 - 20:00:00 ---A- . (.Microsoft Corporation - WPD USB Driver.) -- C:\WINDOWS\system32\drivers\wpdusb.sys

O58 - SDL:[MD5.6ABE6E225ADB5A751622A9CC3BC19CE8] - 10/08/2004 - 13:00:00 ---A- . (.Microsoft Corporation - Winsock2 IFS Layer.) -- C:\WINDOWS\system32\drivers\ws2ifsl.sys

O58 - SDL:[MD5.C98B39829C2BBD34E454150633C62C78] - 13/04/2008 - 19:46:24 ---A- . (.Microsoft Corporation - WDM WST Codec Driver.) -- C:\WINDOWS\system32\drivers\wstcodec.sys

O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ansi.sys

O58 - SDL:[MD5.88C0F2B74FFBF5BDC7F950D3AEB4400D] - 02/01/2005 - 10:31:36 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\CHODDI.SYS

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\country.sys

O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\himem.sys

O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\key01.sys

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 10/08/2004 - 19:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\keyboard.sys

O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos.sys

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos404.sys

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos411.sys

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos412.sys

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 10/08/2004 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos804.sys

O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 10/08/2004 - 19:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio.sys

O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 10/08/2004 - 19:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio404.sys

O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 10/08/2004 - 19:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio411.sys

O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 10/08/2004 - 19:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio412.sys

O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 10/08/2004 - 19:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio804.sys

O58 - SDL:[MD5.9A10AACBFDC4922715375FB4065EC930] - 13/04/2008 - 19:44:59 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\WINDOWS\system32\watchdog.sys

O58 - SDL:[MD5.8441F8A5DC42BD5F2BEAA95297EE0E10] - 14/08/2009 - 16:13:59 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\WINDOWS\system32\win32k.sys

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 25/01/2010 - 21:39:05 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\34d97ed5.avl

O61 - LFC:Last File Created 25/01/2010 - 21:39:06 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2010-01-25-21-38-24.log

O61 - LFC:Last File Created 25/01/2010 - 21:44:08 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1427.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:44:22 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1428.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:45:19 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1429.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:47:27 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1430.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:47:46 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1431.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:50:59 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1432.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:51:11 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1433.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:51:50 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1434.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:52:17 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1435.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:52:29 ---A- C:\Documents And Settings\HP_Administrateur\Recent\1436.lnk

O61 - LFC:Last File Created 25/01/2010 - 21:52:29 ---A- C:\Documents And Settings\HP_Administrateur\Recent\Archive IV.lnk

O61 - LFC:Last File Created 25/01/2010 - 22:04:53 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Trash

O61 - LFC:Last File Created 26/01/2010 - 20:36:48 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.wanadoo.fr\Sent.msf

O61 - LFC:Last File Created 26/01/2010 - 21:03:06 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Adobe\Acrobat\8.0\Updater\updater.log

O61 - LFC:Last File Created 26/01/2010 - 21:03:06 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Adobe\Updater5\aumLib.log

O61 - LFC:Last File Created 26/01/2010 - 22:14:58 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\ApplicationHistory\cli.exe.c88dbd71.ini

O61 - LFC:Last File Created 26/01/2010 - 22:15:09 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\localstore.rdf

O61 - LFC:Last File Created 26/01/2010 - 22:15:54 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2010-01-26-21-38-24.log

O61 - LFC:Last File Created 26/01/2010 - 22:15:54 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\06ee7559.avl

O61 - LFC:Last File Created 26/01/2010 - 22:19:55 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.libertysurf.fr\Sent.msf

O61 - LFC:Last File Created 26/01/2010 - 22:24:54 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\blocklist.xml

O61 - LFC:Last File Created 26/01/2010 - 22:24:55 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.libertysurf.fr\Templates.msf

O61 - LFC:Last File Created 26/01/2010 - 22:24:55 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.wanadoo.fr\Drafts.msf

O61 - LFC:Last File Created 26/01/2010 - 22:24:55 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.wanadoo.fr\Templates.msf

O61 - LFC:Last File Created 26/01/2010 - 22:25:59 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.libertysurf.fr\Trash.msf

O61 - LFC:Last File Created 27/01/2010 - 07:33:08 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Office\Word12.pip

O61 - LFC:Last File Created 27/01/2010 - 07:35:14 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Modèles.msf

O61 - LFC:Last File Created 27/01/2010 - 07:35:14 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Templates.msf

O61 - LFC:Last File Created 27/01/2010 - 07:35:14 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Unsent Messages.msf

O61 - LFC:Last File Created 27/01/2010 - 07:35:14 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.libertysurf.fr\Drafts.msf

O61 - LFC:Last File Created 27/01/2010 - 07:38:49 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Drafts

O61 - LFC:Last File Created 27/01/2010 - 07:38:49 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Sent

O61 - LFC:Last File Created 27/01/2010 - 07:38:49 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Sent.msf

O61 - LFC:Last File Created 27/01/2010 - 07:38:52 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Inbox.msf

O61 - LFC:Last File Created 27/01/2010 - 07:38:52 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Trash.msf

O61 - LFC:Last File Created 27/01/2010 - 07:38:52 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.libertysurf.fr\Inbox.msf

O61 - LFC:Last File Created 27/01/2010 - 07:38:52 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\downloads.rdf

O61 - LFC:Last File Created 27/01/2010 - 07:38:53 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\Local Folders\Drafts.msf

O61 - LFC:Last File Created 27/01/2010 - 07:38:53 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\abook.mab

O61 - LFC:Last File Created 27/01/2010 - 08:03:43 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Office\Recent\TRACT v4 (4).LNK

O61 - LFC:Last File Created 27/01/2010 - 08:21:16 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Office\Recent\Elections professionnelles du 6 Février 2010.LNK

O61 - LFC:Last File Created 27/01/2010 - 08:21:16 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Office\Recent\fafiec.LNK

O61 - LFC:Last File Created 27/01/2010 - 08:21:16 ---A- C:\Documents And Settings\HP_Administrateur\Mes documents\formation opca\fafiec\Elections professionnelles du 6 Février 2010.docx

O61 - LFC:Last File Created 27/01/2010 - 08:21:16 ---A- C:\Documents And Settings\HP_Administrateur\Recent\Elections professionnelles du 6 Février 2010.lnk

O61 - LFC:Last File Created 27/01/2010 - 08:21:16 --H-- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Office\Recent\index.dat

O61 - LFC:Last File Created 27/01/2010 - 08:21:19 ---A- C:\Documents And Settings\HP_Administrateur\Recent\TRACT v4 (4).lnk

O61 - LFC:Last File Created 27/01/2010 - 08:21:19 ---A- C:\Documents And Settings\HP_Administrateur\Recent\fafiec.lnk

O61 - LFC:Last File Created 27/01/2010 - 19:53:08 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.wanadoo.fr\popstate.dat

O61 - LFC:Last File Created 27/01/2010 - 19:53:52 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.wanadoo.fr\Inbox

O61 - LFC:Last File Created 27/01/2010 - 19:54:30 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.wanadoo.fr\Trash

O61 - LFC:Last File Created 27/01/2010 - 19:54:32 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\cert8.db

O61 - LFC:Last File Created 27/01/2010 - 19:54:32 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\key3.db

O61 - LFC:Last File Created 27/01/2010 - 19:54:32 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\panacea.dat

O61 - LFC:Last File Created 27/01/2010 - 19:54:32 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\prefs.js

O61 - LFC:Last File Created 27/01/2010 - 19:54:32 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\virtualFolders.dat

O61 - LFC:Last File Created 27/01/2010 - 19:54:33 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Talkback\MozillaOrg\Thunderbird2\Win32\2009081210\permdata.box

O61 - LFC:Last File Created 27/01/2010 - 19:54:33 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.wanadoo.fr\Inbox.msf

O61 - LFC:Last File Created 27/01/2010 - 19:54:33 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Thunderbird\Profiles\hymyho0y.default\Mail\pop.wanadoo.fr\Trash.msf

O61 - LFC:Last File Created 27/01/2010 - 20:24:06 ---A- C:\Documents And Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe

O61 - LFC:Last File Created 27/01/2010 - 20:24:12 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Temp\~DF594D.tmp

O61 - LFC:Last File Created 27/01/2010 - 20:24:16 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware\Désinstaller Malwarebytes' Anti-Malware.lnk

O61 - LFC:Last File Created 27/01/2010 - 20:24:16 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware Help.lnk

O61 - LFC:Last File Created 27/01/2010 - 20:24:16 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware\Malwarebytes' Anti-Malware.lnk

O61 - LFC:Last File Created 27/01/2010 - 20:28:29 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\INFECTED\4b909440.qua

O61 - LFC:Last File Created 27/01/2010 - 20:29:16 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\04bb254c.avl

O61 - LFC:Last File Created 27/01/2010 - 20:29:17 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2010-01-27-20-23-07.log

O61 - LFC:Last File Created 27/01/2010 - 20:31:07 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20100127-203050-C39831F5.LOG

O61 - LFC:Last File Created 27/01/2010 - 21:38:39 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2010-01-27-21-38-27.log

O61 - LFC:Last File Created 27/01/2010 - 21:38:39 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\6c4d83bd.avl

O61 - LFC:Last File Created 27/01/2010 - 21:56:51 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-01-27 (21-56-51).txt

O61 - LFC:Last File Created 27/01/2010 - 21:59:54 ---A- C:\Documents And Settings\LocalService\Local Settings\Temp\Cookies\index.dat

O61 - LFC:Last File Created 27/01/2010 - 21:59:54 -SHA- C:\Documents And Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat

O61 - LFC:Last File Created 27/01/2010 - 21:59:54 -SHA- C:\Documents And Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:00:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2\RegGS1-Global.reg

O61 - LFC:Last File Created 27/01/2010 - 22:00:33 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Resident.log

O61 - LFC:Last File Created 27/01/2010 - 22:00:33 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2\RegGS2-Global.reg

O61 - LFC:Last File Created 27/01/2010 - 22:00:33 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2\Timestamps.ini

O61 - LFC:Last File Created 27/01/2010 - 22:04:02 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2010-01-27-22-01-55.log

O61 - LFC:Last File Created 27/01/2010 - 22:04:02 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\8684eb5c.avl

O61 - LFC:Last File Created 27/01/2010 - 22:04:20 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Update downloads.log

O61 - LFC:Last File Created 27/01/2010 - 22:04:24 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\UpdateDL.sbe

O61 - LFC:Last File Created 27/01/2010 - 22:06:08 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\CONFIG\AVWIN.INI

O61 - LFC:Last File Created 27/01/2010 - 22:08:52 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Google\firefox-toolbar.xml

O61 - LFC:Last File Created 27/01/2010 - 22:12:06 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-01-27 (22-12-06).txt

O61 - LFC:Last File Created 27/01/2010 - 22:13:19 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2010-01-27-22-04-08.log

O61 - LFC:Last File Created 27/01/2010 - 22:13:19 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\91354741.avl

O61 - LFC:Last File Created 27/01/2010 - 22:16:10 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2010-01-27-22-13-30.log

O61 - LFC:Last File Created 27/01/2010 - 22:16:10 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\937e2e8c.avl

O61 - LFC:Last File Created 27/01/2010 - 22:16:59 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\OIS\Toolbars.dat

O61 - LFC:Last File Created 27/01/2010 - 22:16:59 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Office\OIS12.pip

O61 - LFC:Last File Created 27/01/2010 - 22:16:59 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Microsoft\OIS\OIScatalog.cag

O61 - LFC:Last File Created 27/01/2010 - 22:24:18 ---A- C:\Documents And Settings\LocalService\Cookies\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:24:18 ---A- C:\Documents And Settings\LocalService\Local Settings\Historique\History.IE5\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:24:18 -SHA- C:\Documents And Settings\LocalService\IETldCache\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:25:23 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots\System startup.csv

O61 - LFC:Last File Created 27/01/2010 - 22:26:12 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\IDX\master.idx

O61 - LFC:Last File Created 27/01/2010 - 22:26:12 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2010-01-27-22-24-17.log

O61 - LFC:Last File Created 27/01/2010 - 22:26:12 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\aa9091a0.avl

O61 - LFC:Last File Created 27/01/2010 - 22:26:23 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\JOBS\startupd.avj

O61 - LFC:Last File Created 27/01/2010 - 22:30:03 ---A- C:\Documents And Settings\HP_Administrateur\Cookies\hp_administrateur@google[3].txt

O61 - LFC:Last File Created 27/01/2010 - 22:33:11 ---A- C:\Documents And Settings\HP_Administrateur\Cookies\hp_administrateur@mozilla[1].txt

O61 - LFC:Last File Created 27/01/2010 - 22:33:21 ---A- C:\Documents And Settings\HP_Administrateur\Cookies\hp_administrateur@mozilla-europe[2].txt

O61 - LFC:Last File Created 27/01/2010 - 22:33:21 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Microsoft\Internet Explorer\DOMStore\0K3W0RMJ\www.mozilla-europe[1].xml

O61 - LFC:Last File Created 27/01/2010 - 22:33:22 ---A- C:\Documents And Settings\HP_Administrateur\Cookies\hp_administrateur@download.mozilla[1].txt

O61 - LFC:Last File Created 27/01/2010 - 22:34:34 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Temp\Google Toolbar\GoogleToolbarWelcome.log

O61 - LFC:Last File Created 27/01/2010 - 22:35:11 ---A- C:\Documents And Settings\All Users\Bureau\Mozilla Firefox.lnk

O61 - LFC:Last File Created 27/01/2010 - 22:35:11 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox\Mozilla Firefox (Mode sans échec).lnk

O61 - LFC:Last File Created 27/01/2010 - 22:35:11 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox\Mozilla Firefox.lnk

O61 - LFC:Last File Created 27/01/2010 - 22:35:11 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

O61 - LFC:Last File Created 27/01/2010 - 22:35:14 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Crash Reports\InstallTime20100115144158

O61 - LFC:Last File Created 27/01/2010 - 22:35:16 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\compatibility.ini

O61 - LFC:Last File Created 27/01/2010 - 22:35:16 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\profiles.ini

O61 - LFC:Last File Created 27/01/2010 - 22:35:25 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\extensions.cache

O61 - LFC:Last File Created 27/01/2010 - 22:35:25 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\extensions.ini

O61 - LFC:Last File Created 27/01/2010 - 22:35:25 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\extensions.rdf

O61 - LFC:Last File Created 27/01/2010 - 22:35:26 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\compreg.dat

O61 - LFC:Last File Created 27/01/2010 - 22:35:26 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\xpti.dat

O61 - LFC:Last File Created 27/01/2010 - 22:35:27 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\mimeTypes.rdf

O61 - LFC:Last File Created 27/01/2010 - 22:35:28 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\search.json

O61 - LFC:Last File Created 27/01/2010 - 22:35:28 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\search.sqlite

O61 - LFC:Last File Created 27/01/2010 - 22:35:28 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\secmod.db

O61 - LFC:Last File Created 27/01/2010 - 22:35:30 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\signons.sqlite

O61 - LFC:Last File Created 27/01/2010 - 22:35:39 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\downloads.sqlite

O61 - LFC:Last File Created 27/01/2010 - 22:35:43 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\bookmarkbackups\bookmarks-2010-01-27.json

O61 - LFC:Last File Created 27/01/2010 - 22:36:06 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\eHome\logs\ehRecvr.ba2

O61 - LFC:Last File Created 27/01/2010 - 22:38:49 ---A- C:\Documents And Settings\Administrateur\Cookies\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:38:49 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:38:49 -SHA- C:\Documents And Settings\Administrateur\IETldCache\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:38:49 -SHA- C:\Documents And Settings\Administrateur\Local Settings\desktop.ini

O61 - LFC:Last File Created 27/01/2010 - 22:39:06 --HA- C:\Documents And Settings\Administrateur\Local Settings\Application Data\IconCache.db

O61 - LFC:Last File Created 27/01/2010 - 22:39:07 --HA- C:\Documents And Settings\Administrateur\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG

O61 - LFC:Last File Created 27/01/2010 - 22:39:07 -SHA- C:\Documents And Settings\Administrateur\ntuser.ini

O61 - LFC:Last File Created 27/01/2010 - 22:39:55 ---A- C:\Documents And Settings\HP_Administrateur\UserData\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:39:55 -SHA- C:\Documents And Settings\HP_Administrateur\IECompatCache\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:39:55 -SHA- C:\Documents And Settings\HP_Administrateur\IETldCache\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:39:55 -SHA- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:39:55 -SHA- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Microsoft\Internet Explorer\DOMStore\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:39:55 -SHA- C:\Documents And Settings\HP_Administrateur\PrivacIE\index.dat

O61 - LFC:Last File Created 27/01/2010 - 22:39:56 -SH-- C:\Documents And Settings\HP_Administrateur\Local Settings\Historique\History.IE5\desktop.ini

O61 - LFC:Last File Created 27/01/2010 - 22:40:00 -SHA- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Internet Explorer\Desktop.htt

O61 - LFC:Last File Created 27/01/2010 - 22:40:37 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\XPC.mfl

O61 - LFC:Last File Created 27/01/2010 - 22:40:47 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\XUL.mfl

O61 - LFC:Last File Created 27/01/2010 - 22:41:02 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\webappsstore.sqlite

O61 - LFC:Last File Created 27/01/2010 - 22:41:05 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\prefs.js

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\cert8.db

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\content-prefs.sqlite

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\cookies.sqlite

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\key3.db

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\localstore.rdf

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\_CACHE_001_

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\_CACHE_002_

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\_CACHE_003_

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\_CACHE_MAP_

O61 - LFC:Last File Created 27/01/2010 - 22:41:06 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\urlclassifier3.sqlite

O61 - LFC:Last File Created 27/01/2010 - 23:02:16 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk

O61 - LFC:Last File Created 27/01/2010 - 23:02:16 ---A- C:\Documents And Settings\HP_Administrateur\Bureau\Spybot - Search & Destroy.lnk

O61 - LFC:Last File Created 27/01/2010 - 23:06:23 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.100127-2242.log

O61 - LFC:Last File Created 27/01/2010 - 23:06:23 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Checks.100127-2306.txt

O61 - LFC:Last File Created 27/01/2010 - 23:09:39 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MicrosoftWindowsSecurityInternetExplorer.zip

O61 - LFC:Last File Created 27/01/2010 - 23:09:40 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\prxffat0.default\cookies.txt

O61 - LFC:Last File Created 27/01/2010 - 23:09:40 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Statistics.ini

O61 - LFC:Last File Created 27/01/2010 - 23:09:41 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\prxffat0.default\bookmarks.html

O61 - LFC:Last File Created 27/01/2010 - 23:09:41 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Fixes.100127-2309.txt

O61 - LFC:Last File Created 27/01/2010 - 23:12:07 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots\Uninstall info.csv

O61 - LFC:Last File Created 27/01/2010 - 23:14:26 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots\Layered Service Providers.csv

O61 - LFC:Last File Created 28/01/2010 - 00:47:36 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\88d43b82.avl

O61 - LFC:Last File Created 28/01/2010 - 00:47:37 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20100127-231623-72765CE6.LOG

O61 - LFC:Last File Created 28/01/2010 - 08:40:12 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Immunization.ini

O61 - LFC:Last File Created 28/01/2010 - 08:40:13 ---A- C:\Documents And Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\prxffat0.default\hostperm.1

O61 - LFC:Last File Created 28/01/2010 - 08:41:36 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\permissions.sqlite

O61 - LFC:Last File Created 28/01/2010 - 08:43:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Configuration.ini

O61 - LFC:Last File Created 28/01/2010 - 08:43:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Bots.sbe

O61 - LFC:Last File Created 28/01/2010 - 08:43:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Cookies.sbe

O61 - LFC:Last File Created 28/01/2010 - 08:43:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\FileExt.sbe

O61 - LFC:Last File Created 28/01/2010 - 08:43:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Links.sbe

O61 - LFC:Last File Created 28/01/2010 - 08:43:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Single.sbe

O61 - LFC:Last File Created 28/01/2010 - 08:43:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\SystemInternals.sbe

O61 - LFC:Last File Created 28/01/2010 - 08:43:32 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\WaitFor.sbe

O61 - LFC:Last File Created 28/01/2010 - 08:44:03 --HA- C:\Documents And Settings\All Users\NTUSER.DAT.LOG

O61 - LFC:Last File Created 28/01/2010 - 08:44:07 --HA- C:\Documents And Settings\Administrateur\ntuser.dat.LOG

O61 - LFC:Last File Created 28/01/2010 - 08:44:12 --HA- C:\Documents And Settings\Administrateur\NTUSER.DAT

O61 - LFC:Last File Created 28/01/2010 - 08:45:02 -SHA- C:\Documents And Settings\HP_Administrateur\Local Settings\Historique\History.IE5\MSHist012010012820100129\index.dat

O61 - LFC:Last File Created 28/01/2010 - 08:45:44 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\eHome\Recording\Recordings.xml.bak

O61 - LFC:Last File Created 28/01/2010 - 08:45:53 ---A- C:\Documents And Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\news.txt

O61 - LFC:Last File Created 28/01/2010 - 08:46:23 ---A- C:\Documents And Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref

O61 - LFC:Last File Created 28/01/2010 - 08:46:58 ---A- C:\Documents And Settings\HP_Administrateur\Recent\mbam-info.lnk

O61 - LFC:Last File Created 28/01/2010 - 08:47:36 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\65cab015.avl

O61 - LFC:Last File Created 28/01/2010 - 08:47:37 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20100128-084701-204F6E94.LOG

O61 - LFC:Last File Created 28/01/2010 - 08:48:03 ---A- C:\Documents And Settings\HP_Administrateur\Recent\Disque amovible (F).lnk

O61 - LFC:Last File Created 28/01/2010 - 08:48:03 ---A- C:\Documents And Settings\HP_Administrateur\Recent\hijackthis.lnk

O61 - LFC:Last File Created 28/01/2010 - 08:48:33 -SH-- C:\Documents And Settings\HP_Administrateur\ntuser.ini

O61 - LFC:Last File Created 28/01/2010 - 08:48:35 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\eHome\logs\ehRecvr.ba1

O61 - LFC:Last File Created 28/01/2010 - 08:48:36 -SHA- C:\Documents And Settings\All Users\DRM\drmstore.hds

O61 - LFC:Last File Created 28/01/2010 - 19:57:05 -SHA- C:\Documents And Settings\NetworkService\Local Settings\desktop.ini

O61 - LFC:Last File Created 28/01/2010 - 19:57:06 -SHA- C:\Documents And Settings\LocalService\Local Settings\desktop.ini

O61 - LFC:Last File Created 28/01/2010 - 19:57:07 ---A- C:\Documents And Settings\NetworkService\Cookies\index.dat

O61 - LFC:Last File Created 28/01/2010 - 19:57:07 ---A- C:\Documents And Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat

O61 - LFC:Last File Created 28/01/2010 - 19:57:08 -SHA- C:\Documents And Settings\HP_Administrateur\Application Data\Microsoft\Credentials\S-1-5-21-551318451-353856625-2604058960-1007\Credentials

O61 - LFC:Last File Created 28/01/2010 - 19:57:08 -SHA- C:\Documents And Settings\HP_Administrateur\Local Settings\desktop.ini

O61 - LFC:Last File Created 28/01/2010 - 19:57:09 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\sched.log

O61 - LFC:Last File Created 28/01/2010 - 19:57:37 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\avguard.log

O61 - LFC:Last File Created 28/01/2010 - 19:57:38 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\EVENTDB\avevtdb.dbe

O61 - LFC:Last File Created 28/01/2010 - 19:57:48 -SHA- C:\Documents And Settings\All Users\Documents\TV enregistrée\TempRec\TempSBE\SBE3.tmp

O61 - LFC:Last File Created 28/01/2010 - 19:57:48 -SHA- C:\Documents And Settings\All Users\Documents\TV enregistrée\TempRec\TempSBE\SBE4.tmp

O61 - LFC:Last File Created 28/01/2010 - 19:57:49 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\eHome\logs\ehRecvr.log

O61 - LFC:Last File Created 28/01/2010 - 19:57:59 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\eHome\EPG\babdc11f83c44f7eb1218ff02ebee9c8.sdf

O61 - LFC:Last File Created 28/01/2010 - 19:57:59 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\eHome\Recording\Recordings.xml

O61 - LFC:Last File Created 28/01/2010 - 19:58:15 -SHA- C:\Documents And Settings\HP_Administrateur\Cookies\index.dat

O61 - LFC:Last File Created 28/01/2010 - 19:58:15 -SHA- C:\Documents And Settings\HP_Administrateur\Local Settings\Historique\History.IE5\index.dat

O61 - LFC:Last File Created 28/01/2010 - 19:58:16 ---A- C:\Documents And Settings\All Users\Bureau\ZHPDiag.lnk

O61 - LFC:Last File Created 28/01/2010 - 19:58:16 ---A- C:\Documents And Settings\All Users\Bureau\ZHPFix.lnk

O61 - LFC:Last File Created 28/01/2010 - 19:58:29 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\ProcCache.sbc

O61 - LFC:Last File Created 28/01/2010 - 19:58:38 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\pluginreg.dat

O61 - LFC:Last File Created 28/01/2010 - 19:59:01 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\ECE9AA5Ed01

O61 - LFC:Last File Created 28/01/2010 - 19:59:09 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\JOBS\updjob.avj

O61 - LFC:Last File Created 28/01/2010 - 19:59:09 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\CB5EABD0d01

O61 - LFC:Last File Created 28/01/2010 - 19:59:14 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\formhistory.sqlite

O61 - LFC:Last File Created 28/01/2010 - 19:59:16 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\cookies.sqlite-journal

O61 - LFC:Last File Created 28/01/2010 - 19:59:23 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\C3ED2305d01

O61 - LFC:Last File Created 28/01/2010 - 19:59:28 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\9DF13EFDd01

O61 - LFC:Last File Created 28/01/2010 - 19:59:30 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\A8CE9F57d01

O61 - LFC:Last File Created 28/01/2010 - 19:59:41 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\41EDD8C6d01

O61 - LFC:Last File Created 28/01/2010 - 19:59:44 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\D03AE71Bd01

O61 - LFC:Last File Created 28/01/2010 - 19:59:45 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\urlclassifierkey3.txt

O61 - LFC:Last File Created 28/01/2010 - 19:59:52 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\C47C4737d01

O61 - LFC:Last File Created 28/01/2010 - 19:59:55 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\sessionstore.js

O61 - LFC:Last File Created 28/01/2010 - 20:00:12 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\DA17B4E5d01

O61 - LFC:Last File Created 28/01/2010 - 20:00:44 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\places.sqlite

O61 - LFC:Last File Created 28/01/2010 - 20:00:45 ---A- C:\Documents And Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\places.sqlite-journal

O61 - LFC:Last File Created 28/01/2010 - 20:01:57 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\61C229BDd01

O61 - LFC:Last File Created 28/01/2010 - 20:02:00 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\04842E6Bd01

O61 - LFC:Last File Created 28/01/2010 - 20:02:03 ---A- C:\Documents And Settings\HP_Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\ljzpm8a8.default\Cache\5490A34Dd01

 

---\\ Alternate Data Stream File (ADS) (O62)

O62 - ADS:Alternate Data Stream File - C:\Windows\System32\Thumbs.db:encryptable

 

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)

O63 - Logiciel: ZHPDiag 1.25 - (.Nicolas Coolman.)

 

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: - (.no file.) - avast! Asynchronous Virus Monitor (Aavmker4) .(.Pas de propriétaire - Pas de description.) - LEGACY_AAVMKER4

O64 - Services: - C:\WINDOWS\system32\Drivers\AFD.sys - AFD (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD

O64 - Services: - (.no file.) - Service de la passerelle de la couche Application (ALG) .(.Pas de propriétaire - Pas de description.) - LEGACY_ALG

O64 - Services: - (.no file.) - Avira AntiVir Planificateur (AntiVirSchedulerService) .(.Pas de propriétaire - Pas de description.) - LEGACY_ANTIVIRSCHEDULERSERVICE

O64 - Services: - (.no file.) - Avira AntiVir Guard (AntiVirService) .(.Pas de propriétaire - Pas de description.) - LEGACY_ANTIVIRSERVICE

O64 - Services: - (.no file.) - Gestion d'applications (AppMgmt) .(.Pas de propriétaire - Pas de description.) - LEGACY_APPMGMT

O64 - Services: - C:\WINDOWS\system32\Drivers\ARP1394.sys - Protocole client ARP 1394 (Arp1394) .(.Microsoft Corporation - IP/1394 Arp Client.) - LEGACY_ARP1394

O64 - Services: - (.no file.) - ARSVC (ARSVC) .(.Pas de propriétaire - Pas de description.) - LEGACY_ARSVC

O64 - Services: - C:\WINDOWS\system32\Drivers\ASC.sys - asc (asc) .(.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) - LEGACY_ASC

O64 - Services: - (.no file.) - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK

O64 - Services: - (.no file.) - avast! Standard Shield Support (aswMon2) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWMON2

O64 - Services: - (.no file.) - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR

O64 - Services: - (.no file.) - avast! Self Protection (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP

O64 - Services: - (.no file.) - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI

O64 - Services: - (.no file.) - Ati HotKey Poller (Ati HotKey Poller) .(.Pas de propriétaire - Pas de description.) - LEGACY_ATI_HOTKEY_POLLER

O64 - Services: - (.no file.) - ATI Smart (ATI Smart) .(.Pas de propriétaire - Pas de description.) - LEGACY_ATI_SMART

O64 - Services: - (.no file.) - Audio Windows (AudioSrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_AUDIOSRV

O64 - Services: - (.no file.) - avgio (avgio) .(.Pas de propriétaire - Pas de description.) - LEGACY_AVGIO

O64 - Services: - C:\WINDOWS\system32\Drivers\AVGNTFLT.sys - avgntflt (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT

O64 - Services: - C:\WINDOWS\system32\Drivers\AVIPBB.sys - avipbb (avipbb) .(.Avira GmbH - Avira Driver for RootKit Detection.) - LEGACY_AVIPBB

O64 - Services: - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP

O64 - Services: - (.no file.) - Service de transfert intelligent en arrière-plan (BITS) .(.Pas de propriétaire - Pas de description.) - LEGACY_BITS

O64 - Services: - (.no file.) - Explorateur d'ordinateur (Browser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BROWSER

O64 - Services: - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS

O64 - Services: - (.no file.) - Application système COM+ (COMSysApp) .(.Pas de propriétaire - Pas de description.) - LEGACY_COMSYSAPP

O64 - Services: - (.no file.) - Creative Service for CDROM Access (Creative Service for CDROM Access) .(.Pas de propriétaire - Pas de description.) - LEGACY_CREATIVE_SERVICE_FOR_CDROM_ACCESS

O64 - Services: - (.no file.) - Services de cryptographie (CryptSvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_CRYPTSVC

O64 - Services: - C:\WINDOWS\system32\Drivers\CTAC32K.sys - Creative AC3 Software Decoder (ctac32k) .(.Creative Technology Ltd - Creative AC3 SW Decoder Device Driver (WDM).) - LEGACY_CTAC32K

O64 - Services: - C:\WINDOWS\system32\Drivers\CTPRXY2K.sys - Creative Proxy Driver (ctprxy2k) .(.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) - LEGACY_CTPRXY2K

O64 - Services: - C:\WINDOWS\system32\Drivers\CTSFM2K.sys - Creative SoundFont Management Device Driver (ctsfm2k) .(.Creative Technology Ltd - SoundFont® Manager (WDM).) - LEGACY_CTSFM2K

O64 - Services: - (.no file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(.Pas de propriétaire - Pas de description.) - LEGACY_DCOMLAUNCH

O64 - Services: - (.no file.) - Client DHCP (Dhcp) .(.Pas de propriétaire - Pas de description.) - LEGACY_DHCP

O64 - Services: - (.no file.) - Service d'administration du Gestionnaire de disque logique (dmadmin) .(.Pas de propriétaire - Pas de description.) - LEGACY_DMADMIN

O64 - Services: - C:\WINDOWS\system32\Drivers\DMBOOT.sys - dmboot (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) - LEGACY_DMBOOT

O64 - Services: - C:\WINDOWS\system32\Drivers\DMLOAD.sys - dmload (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD

O64 - Services: - (.no file.) - Gestionnaire de disque logique (dmserver) .(.Pas de propriétaire - Pas de description.) - LEGACY_DMSERVER

O64 - Services: - (.no file.) - Client DNS (Dnscache) .(.Pas de propriétaire - Pas de description.) - LEGACY_DNSCACHE

O64 - Services: - (.no file.) - Media Center Receiver Service (ehRecvr) .(.Pas de propriétaire - Pas de description.) - LEGACY_EHRECVR

O64 - Services: - (.no file.) - Service de planification Media Center (ehSched) .(.Pas de propriétaire - Pas de description.) - LEGACY_EHSCHED

O64 - Services: - (.no file.) - E-mu Plug-in Architecture Driver (emupia) .(.Pas de propriétaire - Pas de description.) - LEGACY_EMUPIA

O64 - Services: - (.no file.) - Service de rapport d'erreurs (ERSvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERSVC

O64 - Services: - (.no file.) - Système d'événements de COM+ (EventSystem) .(.Pas de propriétaire - Pas de description.) - LEGACY_EVENTSYSTEM

O64 - Services: - No object (No service) - LEGACY_F-SECURE_FILTER

O64 - Services: - No object (No service) - LEGACY_F-SECURE_FILTERO64 - Services: - No object (No service) - LEGACY_F-SECURE_FILTER

O64 - Services: - No object (No service) - LEGACY_F-SECURE_GATEKEEPER

O64 - Services: - No object (No service) - LEGACY_F-SECURE_GATEKEEPERO64 - Services: - No object (No service) - LEGACY_F-SECURE_GATEKEEPER

O64 - Services: - (.no file.) - F-Secure HIPS (F-Secure HIPS) .(.Pas de propriétaire - Pas de description.) - LEGACY_F-SECURE_HIPS

O64 - Services: - No object (No service) - LEGACY_F-SECURE_RECOGNIZER

O64 - Services: - No object (No service) - LEGACY_F-SECURE_RECOGNIZERO64 - Services: - No object (No service) - LEGACY_F-SECURE_RECOGNIZER

O64 - Services: - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT

O64 - Services: - (.ILITYno file.) - Compatibilité avec le Changement rapide d'utilisateur (FastUserSwitchingCompatibility) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTUSERSWITCHINGCOMPATIBILITY

O64 - Services: - (.no file.) - Fax (Fax) .(.Pas de propriétaire - Pas de description.) - LEGACY_FAX

O64 - Services: - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(.Microsoft Corporation - Pilote de cryptographie FIPS.) - LEGACY_FIPS

O64 - Services: - C:\WINDOWS\system32\Drivers\FLTMGR.sys - FltMgr (FltMgr) .(.Microsoft Corporation - Microsoft Filesystem Filter Manager.) - LEGACY_FLTMGR

O64 - Services: - (.no file.) - F-Secure Firewall Driver (FSFW) .(.Pas de propriétaire - Pas de description.) - LEGACY_FSFW

O64 - Services: - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Microsoft Corporation - File System Recognizer Driver.) - LEGACY_FS_REC

O64 - Services: - (.no file.) - France Telecom Routing Table Service (FTRTSVC) .(.Pas de propriétaire - Pas de description.) - LEGACY_FTRTSVC

O64 - Services: - (.no file.) - Classificateur de paquets générique (Gpc) .(.Pas de propriétaire - Pas de description.) - LEGACY_GPC

O64 - Services: - (.no file.) - Google Software Updater (gusvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_GUSVC

O64 - Services: - C:\WINDOWS\system32\Drivers\HA20X2K.sys - Creative 20X HAL Driver (ha20x2k) .(.Creative Technology Ltd - Creative 20X HAL (WDM).) - LEGACY_HA20X2K

O64 - Services: - (.no file.) - Aide et support (helpsvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_HELPSVC

O64 - Services: - (.no file.) - HID Input Service (HidServ) .(.Pas de propriétaire - Pas de description.) - LEGACY_HIDSERV

O64 - Services: - C:\WINDOWS\system32\Drivers\HTTP.sys - HTTP (HTTP) .(.Microsoft Corporation - HTTP Protocol Stack.) - LEGACY_HTTP

O64 - Services: - (.no file.) - HTTP SSL (HTTPFilter) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTPFILTER

O64 - Services: - (.no file.) - InstallDriver Table Manager (IDriverT) .(.Pas de propriétaire - Pas de description.) - LEGACY_IDRIVERT

O64 - Services: - (.no file.) - Service COM de gravage de CD IMAPI (ImapiService) .(.Pas de propriétaire - Pas de description.) - LEGACY_IMAPISERVICE

O64 - Services: - C:\WINDOWS\system32\Drivers\INTELIDE.sys - IntelIde (IntelIde) .(.Microsoft Corporation - Pilote IDE Intel PCI.) - LEGACY_INTELIDE

O64 - Services: - (.no file.) - Iomega App Services (Iomega App Services) .(.Pas de propriétaire - Pas de description.) - LEGACY_IOMEGA_APP_SERVICES

O64 - Services: - C:\WINDOWS\system32\Drivers\IPNAT.sys - Traducteur d'adresses réseau IP (IpNat) .(.Microsoft Corporation - IP Network Address Translator.) - LEGACY_IPNAT

O64 - Services: - (.no file.) - iPod Service (iPodService) .(.Pas de propriétaire - Pas de description.) - LEGACY_IPODSERVICE

O64 - Services: - C:\WINDOWS\system32\Drivers\IPSEC.sys - Pilote IPSEC (IPSec) .(.Microsoft Corporation - IPSec Driver.) - LEGACY_IPSEC

O64 - Services: - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD

O64 - Services: - (.no file.) - Serveur (lanmanserver) .(.Pas de propriétaire - Pas de description.) - LEGACY_LANMANSERVER

O64 - Services: - (.no file.) - Station de travail (LanmanWorkstation) .(.Pas de propriétaire - Pas de description.) - LEGACY_LANMANWORKSTATION

O64 - Services: - (.no file.) - LightScribeService Direct Disc Labeling Service (LightScribeService) .(.Pas de propriétaire - Pas de description.) - LEGACY_LIGHTSCRIBESERVICE

O64 - Services: - (.no file.) - Assistance TCP/IP NetBIOS (LmHosts) .(.Pas de propriétaire - Pas de description.) - LEGACY_LMHOSTS

O64 - Services: - (.no file.) - Media Center Extender Service (McrdSvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_MCRDSVC

O64 - Services: - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(.Microsoft Corporation - Frame buffer simulator.) - LEGACY_MNMDD

O64 - Services: - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - mountmgr (mountmgr) .(.Microsoft Corporation - Mount Manager.) - LEGACY_MOUNTMGR

O64 - Services: - C:\WINDOWS\system32\Drivers\MRXDAV.sys - Redirecteur client WebDav (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV

O64 - Services: - C:\WINDOWS\system32\Drivers\MRXSMB.sys - MRXSMB (MRxSmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB

O64 - Services: - (.no file.) - Distributed Transaction Coordinator (MSDTC) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSDTC

O64 - Services: - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Microsoft Corporation - Mailslot driver.) - LEGACY_MSFS

O64 - Services: - (.no file.) - Windows Installer (MSIServer) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSISERVER

O64 - Services: - C:\WINDOWS\system32\Drivers\MUP.sys - Mup (Mup) .(.Microsoft Corporation - Multiple UNC Provider driver.) - LEGACY_MUP

O64 - Services: - No object (No service) - LEGACY_NAVENG

O64 - Services: - No object (No service) - LEGACY_NAVENGO64 - Services: - No object (No service) - LEGACY_NAVENG

O64 - Services: - No object (No service) - LEGACY_NAVEX15

O64 - Services: - No object (No service) - LEGACY_NAVEX15O64 - Services: - No object (No service) - LEGACY_NAVEX15

O64 - Services: - C:\WINDOWS\system32\Drivers\NDIS.sys - Pilote système NDIS (NDIS) .(.Microsoft Corporation - NDIS 5.1 wrapper driver.) - LEGACY_NDIS

O64 - Services: - C:\WINDOWS\system32\Drivers\NDISTAPI.sys - Pilote TAPI NDIS d'accès distant (NdisTapi) .(.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) - LEGACY_NDISTAPI

O64 - Services: - C:\WINDOWS\system32\Drivers\NDISUIO.sys - NDIS mode utilisateur E/S Protocole (Ndisuio) .(.Microsoft Corporation - NDIS User mode I/O Driver.) - LEGACY_NDISUIO

O64 - Services: - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Microsoft Corporation - NDIS Proxy.) - LEGACY_NDPROXY

O64 - Services: - C:\WINDOWS\system32\Drivers\NETBIOS.sys - Interface NetBIOS (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS

O64 - Services: - C:\WINDOWS\system32\Drivers\NETBT.sys - NetBIOS sur TCP/IP (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT

O64 - Services: - (.no file.) - Connexions réseau (Netman) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETMAN

O64 - Services: - (.no file.) - NLA (Network Location Awareness) (Nla) .(.Pas de propriétaire - Pas de description.) - LEGACY_NLA

O64 - Services: - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Microsoft Corporation - NPFS Driver.) - LEGACY_NPFS

O64 - Services: - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(.Microsoft Corporation - NT File System Driver.) - LEGACY_NTFS

O64 - Services: - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(.Microsoft Corporation - NULL Driver.) - LEGACY_NULL

O64 - Services: - (.no file.) - Creative OS Services Driver (ossrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_OSSRV

O64 - Services: - C:\WINDOWS\system32\Drivers\PARTMGR.sys - PartMgr (PartMgr) .(.Microsoft Corporation - Partition Manager.) - LEGACY_PARTMGR

O64 - Services: - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(.Microsoft Corporation - Pilote parallèle VDM.) - LEGACY_PARVDM

O64 - Services: - (.no file.) - Pml Driver HPZ12 (Pml Driver HPZ12) .(.Pas de propriétaire - Pas de description.) - LEGACY_PML_DRIVER_HPZ12

O64 - Services: - (.no file.) - Services IPSEC (PolicyAgent) .(.Pas de propriétaire - Pas de description.) - LEGACY_POLICYAGENT

O64 - Services: - (.no file.) - Emplacement protégé (ProtectedStorage) .(.Pas de propriétaire - Pas de description.) - LEGACY_PROTECTEDSTORAGE

O64 - Services: - C:\WINDOWS\system32\Drivers\RASACD.sys - Pilote de connexion automatique d'accès distant (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD

O64 - Services: - (.no file.) - Gestionnaire de connexions d'accès distant (RasMan) .(.Pas de propriétaire - Pas de description.) - LEGACY_RASMAN

O64 - Services: - C:\WINDOWS\system32\Drivers\RDBSS.sys - Rdbss (Rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS

O64 - Services: - C:\WINDOWS\system32\Drivers\RDPCDD.sys - RDPCDD (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD

O64 - Services: - (.no file.) - RDPNP (RDPNP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPNP

O64 - Services: - (.no file.) - Accès à distance au Registre (RemoteRegistry) .(.Pas de propriétaire - Pas de description.) - LEGACY_REMOTEREGISTRY

O64 - Services: - (.no file.) - Appel de procédure distante (RPC) (RpcSs) .(.Pas de propriétaire - Pas de description.) - LEGACY_RPCSS

O64 - Services: - (.no file.) - Gestionnaire de comptes de sécurité (SamSs) .(.Pas de propriétaire - Pas de description.) - LEGACY_SAMSS

O64 - Services: - No object (No service) - LEGACY_SAVRT

O64 - Services: - No object (No service) - LEGACY_SAVRTO64 - Services: - No object (No service) - LEGACY_SAVRT

O64 - Services: - No object (No service) - LEGACY_SAVRTPEL

O64 - Services: - No object (No service) - LEGACY_SAVRTPELO64 - Services: - No object (No service) - LEGACY_SAVRTPEL

O64 - Services: - (.no file.) - Planificateur de tâches (Schedule) .(.Pas de propriétaire - Pas de description.) - LEGACY_SCHEDULE

O64 - Services: - (.no file.) - Connexion secondaire (seclogon) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECLOGON

O64 - Services: - (.no file.) - Notification d'événement système (SENS) .(.Pas de propriétaire - Pas de description.) - LEGACY_SENS

O64 - Services: - (.no file.) - Pare-feu Windows / Partage de connexion Internet (SharedAccess) .(.Pas de propriétaire - Pas de description.) - LEGACY_SHAREDACCESS

O64 - Services: - (.no file.) - Détection matériel noyau (ShellHWDetection) .(.Pas de propriétaire - Pas de description.) - LEGACY_SHELLHWDETECTION

O64 - Services: - No object (No service) - LEGACY_SPBBCDRV

O64 - Services: - No object (No service) - LEGACY_SPBBCDRVO64 - Services: - No object (No service) - LEGACY_SPBBCDRV

O64 - Services: - (.no file.) - Spouleur d'impression (Spooler) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPOOLER

O64 - Services: - C:\WINDOWS\system32\Drivers\SR.sys - Pilote de filtre de restauration système (sr) .(.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du.) - LEGACY_SR

O64 - Services: - (.no file.) - Service de restauration système (srservice) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRSERVICE

O64 - Services: - C:\WINDOWS\system32\Drivers\SRV.sys - Srv (Srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV

O64 - Services: - (.no file.) - Service de découvertes SSDP (SSDPSRV) .(.Pas de propriétaire - Pas de description.) - LEGACY_SSDPSRV

O64 - Services: - C:\WINDOWS\system32\Drivers\SSMDRV.sys - ssmdrv (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV

O64 - Services: - (.no file.) - Acquisition d'image Windows (WIA) (stisvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_STISVC

O64 - Services: - No object (No service) - LEGACY_SYMDNS

O64 - Services: - No object (No service) - LEGACY_SYMDNSO64 - Services: - No object (No service) - LEGACY_SYMDNS

O64 - Services: - No object (No service) - LEGACY_SYMEVENT

O64 - Services: - No object (No service) - LEGACY_SYMEVENTO64 - Services: - No object (No service) - LEGACY_SYMEVENT

O64 - Services: - No object (No service) - LEGACY_SYMFW

O64 - Services: - No object (No service) - LEGACY_SYMFWO64 - Services: - No object (No service) - LEGACY_SYMFW

O64 - Services: - No object (No service) - LEGACY_SYMIDS

O64 - Services: - No object (No service) - LEGACY_SYMIDSO64 - Services: - No object (No service) - LEGACY_SYMIDS

O64 - Services: - (.no file.) - SYMIDSCO (SYMIDSCO) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMIDSCO

O64 - Services: - No object (No service) - LEGACY_SYMNDIS

O64 - Services: - No object (No service) - LEGACY_SYMNDISO64 - Services: - No object (No service) - LEGACY_SYMNDIS

O64 - Services: - No object (No service) - LEGACY_SYMREDRV

O64 - Services: - No object (No service) - LEGACY_SYMREDRVO64 - Services: - No object (No service) - LEGACY_SYMREDRV

O64 - Services: - (.no file.) - SYMTDI (SYMTDI) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMTDI

O64 - Services: - (.no file.) - Téléphonie (TapiSrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_TAPISRV

O64 - Services: - C:\WINDOWS\system32\Drivers\TCPIP.sys - Pilote du protocole TCP/IP (Tcpip) .(.Microsoft Corporation - TCP/IP Protocol Driver.) - LEGACY_TCPIP

O64 - Services: - (.no file.) - Services Terminal Server (TermService) .(.Pas de propriétaire - Pas de description.) - LEGACY_TERMSERVICE

O64 - Services: - (.no file.) - Thèmes (Themes) .(.Pas de propriétaire - Pas de description.) - LEGACY_THEMES

O64 - Services: - C:\WINDOWS\system32\Drivers\TMCOMM.sys - tmcomm (tmcomm) .(.Trend Micro Inc. - TrendMicro Common Module.) - LEGACY_TMCOMM

O64 - Services: - (.no file.) - Client de suivi de lien distribué (TrkWks) .(.Pas de propriétaire - Pas de description.) - LEGACY_TRKWKS

O64 - Services: - C:\WINDOWS\system32\Drivers\UDFS.sys - Udfs (Udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS

O64 - Services: - (.no file.) - Hôte de périphérique universel Plug-and-Play (upnphost) .(.Pas de propriétaire - Pas de description.) - LEGACY_UPNPHOST

O64 - Services: - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGA

O64 - Services: - (.no file.) - VgaSave (VgaSave) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGASAVE

O64 - Services: - C:\WINDOWS\system32\Drivers\VIAIDE.sys - ViaIde (ViaIde) .(.Microsoft Corporation - Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE

O64 - Services: - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP

O64 - Services: - (.no file.) - Horloge Windows (W32Time) .(.Pas de propriétaire - Pas de description.) - LEGACY_W32TIME

O64 - Services: - C:\WINDOWS\system32\Drivers\WANARP.sys - Pilote ARP IP d'accès distant (Wanarp) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARP

O64 - Services: - (.no file.) - WebClient (WebClient) .(.Pas de propriétaire - Pas de description.) - LEGACY_WEBCLIENT

O64 - Services: - (.no file.) - Infrastructure de gestion Windows (winmgmt) .(.Pas de propriétaire - Pas de description.) - LEGACY_WINMGMT

O64 - Services: - (.no file.) - Carte de performance WMI (WmiApSrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_WMIAPSRV

O64 - Services: - (.no file.) - Centre de sécurité (wscsvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_WSCSVC

O64 - Services: - (.no file.) - Mises à jour automatiques (wuauserv) .(.Pas de propriétaire - Pas de description.) - LEGACY_WUAUSERV

O64 - Services: - (.no file.) - Configuration automatique sans fil (WZCSVC) .(.Pas de propriétaire - Pas de description.) - LEGACY_WZCSVC

O64 - Services: - (.no file.) - Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) .(.Pas de propriétaire - Pas de description.) - LEGACY__IOMEGA_ACTIVE_DISK_SERVICE_

 

---\\ Liste des fichiers non signés (LUF) (O65)

O65 - LUF:10/01/2006 (.Pas de propriétaire - ATI Smart.) (5.13.0024) - c:\windows\system32\ati2sgag.exe

O65 - LUF:31/01/2000 (.Pas de propriétaire - .) (1.0.0.0) - c:\windows\system32\bcbsmp50.bpl

O65 - LUF:08/08/2005 (.Pas de propriétaire - CTBurst Module.) (1, 0, 0, 24) - c:\windows\system32\CTBURST.DLL

O65 - LUF:20/03/2002 (.Pas de propriétaire - HpReg Module.) (1, 0, 0, 2) - c:\windows\system32\hpreg.dll

O65 - LUF:08/08/2005 (. - killapps.) (1, 0, 0, 1) - c:\windows\system32\KILLAPPS.EXE

O65 - LUF:17/06/2005 (.Pas de propriétaire - WLANUTL Dynamic Link Library.) (1, 0, 0, 3) - c:\windows\system32\WLANUTL.dll

 

 

End of the scan: 1376 lines

 

[greenman]

Up s'il vous plait sinon ça va revenir encore...