probleme de ralentissement avec detection virus

[reg62]

bonjour cela fait maintenant 2 jours que j' essaye de virer un virus qui execute un programme nommer "servises.exe" qui se trouve dans c:\windows\etc\services.exe.

alors que normalement il se trouve un autre repertoire.

merci de votre aide Cdlt .

voici un rapport

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 09:51:50, on 08/04/2010

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

 

Running processes:

C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe

C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

C:\Windows\SysWOW64\explorer.exe

C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe

C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe

C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSM32.EXE

C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe

C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe

C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\CANAL+ CANALSAT A LA DEMANDE.EXE

C:\Program Files (x86)\Brother\Brmfcmon\BrMfcmon.exe

C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe

C:\Windows\etc\services.exe

C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&a...386r05bg8512y73

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&a...386r05bg8512y73

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&a...386r05bg8512y73

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files (x86)\Orange\Antivirus Firewall\NRS\iescript\baselitmus.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files (x86)\Orange\Antivirus Firewall\NRS\iescript\baselitmus.dll

O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k

O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSM32.EXE" /splash

O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files (x86)\Orange\Antivirus Firewall\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW

O4 - HKLM\..\Run: [brMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN

O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun

O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

O4 - HKLM\..\Run: [Norton Ghost 12.0] "C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [CANAL+ CANALSAT A LA DEMANDE] "C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\Launcher.exe"

O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [HKLM] C:\Windows\etc\services.exe

O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [HKCU] C:\Windows\etc\services.exe

O4 - HKLM\..\Policies\Explorer\Run: [Policies] C:\Windows\etc\services.exe

O4 - HKCU\..\Policies\Explorer\Run: [Policies] C:\Windows\etc\services.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Policies\Explorer\Run: [sessMgr] C:\Users\regis\AppData\Roaming\MICROS~1\sessmgr.exe /waitservice (User 'Système')

O4 - HKUS\.DEFAULT\..\Policies\Explorer\Run: [sessMgr] C:\Users\regis\AppData\Roaming\MICROS~1\sessmgr.exe /waitservice (User 'Default user')

O8 - Extra context menu item: &Envoyer à OneNote - res:///105

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html

O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O13 - Gopher Prefix:

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/...can8/oscan8.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - (no file)

O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe

O23 - Service: CanalPlus.VOD - Canal+ Active - C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\fsgk32st.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files (x86)\Orange\Antivirus Firewall\FWES\Program\fsdfwd.exe

O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSMA32.EXE

O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files (x86)\Orange\Antivirus Firewall\ORSP Client\fsorsp.exe

O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE

O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe (file missing)

O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max 2009 64-bit 64-bit (mi-raysat_3dsMax2009_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe

O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe

O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe

O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files (x86)\Symantec\LiveUpdate\ALUSchedulerSvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 15407 bytes

[pear]

Bonjour,

 

rkill.comTélécharger Rkill de Grinler sur le bureau,

double clic pour le lancer.

Sous Vista, faire un clic droit sur le fichier rkill téléchargé puis choisir "Exécuter en tant qu'Administrateur"

Une fenêtre (très rapide) indiquera que tout s'est bien déroulé.

Pour Vista, faire un clic droit sur le fichier rkill téléchargé puis choisir "Exécuter en tant qu'Administrateur" pour lancer l'outil.

il y aura 'un rapport là: %SystemDrive%\rkill.log

donnant la liste de tous les processus arrêtés.

 

Désinstallez Mbam, s'il est installé

Téléchargez MBAM

 

Branchez tous les supports amovibles avant de faire ce scan (clé usb/disque dur externe etc)

Vous devez désactiver vos protections et ne savez pas comment faire ->Sur PCA,En Français

* Double cliquez sur l'icône Download_mbam-setup.exe pour lancer le processus d'installation.

Enregistrez le sur le bureau .

Fermer toutes les fenêtres et programmes

Suivez les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet)

N'apportez aucune modification aux réglages par défaut et, en fin d'installation,

Vérifiez que les options Update et Launch soient cochées

MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse.

cliquer sur OK pour fermer la boîte de dialogue..

* Dans l'onglet "mise à jour", cliquez sur le bouton Recherche de mise à jour:

Si le pare-feu demande l'autorisation à MBAM de se connecter, acceptez.

* Une fois la mise à jour terminée, allez dans l'onglet Recherche.

* Sélectionnez "Exécuter un examen complet"

* Cliquez sur "Rechercher"

* .L' analyse prendra un certain temps, soyez patient !

* A la fin , un message affichera :

L'examen s'est terminé normalement.

 

*Si MBAM n'a rien trouvé, il le dira aussi.

Cliquez sur "Ok" pour poursuivre.

*Fermez les navigateurs.

Cliquez sur Afficher les résultats .

 

*Sélectionnez tout et cliquez sur Supprimer la sélection ,

MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

puis ouvrir le Bloc-notes et y copier le rapport d'analyse qui peut être retrouvé sous l'onglet Rapports/logs.

* Copiez-collez ce rapport dans la prochaine réponse.

[reg62]

rebonjour

voila le fichier et merci de votre aide

Malwarebytes' Anti-Malware 1.45

www.malwarebytes.org

 

Version de la base de données: 3967

 

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

 

08/04/2010 15:38:08

mbam-log-2010-04-08 (15-38-08).txt

 

Type d'examen: Examen complet (C:\|D:\|)

Elément(s) analysé(s): 355281

Temps écoulé: 52 minute(s), 10 seconde(s)

 

Processus mémoire infecté(s): 2

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 2

Valeur(s) du Registre infectée(s): 4

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 4

 

Processus mémoire infecté(s):

C:\Windows\etc\services.exe (Trojan.Dropper.Gen) -> Unloaded process successfully.

C:\Windows\etc\services.exe (Trojan.Dropper.Gen) -> Unloaded process successfully.

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{y432e6hx-15j8-010c-0n6o-0640d84kempd} (Generic.Bot.H) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d5792aa9-d373-4039-8670-2cdab6a71f15} (Trojan.Swizzor) -> Quarantined and deleted successfully.

 

Valeur(s) du Registre infectée(s):

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\hkcu (Trojan.Dropper.Gen) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\policies (Trojan.Dropper.Gen) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\hklm (Trojan.Dropper.Gen) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\policies (Trojan.Dropper.Gen) -> Quarantined and deleted successfully.

 

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

 

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

 

Fichier(s) infecté(s):

C:\Windows\etc\services.exe (Generic.Bot.H) -> Quarantined and deleted successfully.

C:\Users\regis\AppData\Roaming\logs.dat (Bifrose.Trace) -> Quarantined and deleted successfully.

C:\Users\regis\AppData\Local\Temp\UuU.uUu (Malware.Trace) -> Quarantined and deleted successfully.

C:\Users\regis\AppData\Local\Temp\XxX.xXx (Malware.Trace) -> Quarantined and deleted successfully.

[pear]

Et maintenant, comment va la machine ?

Encore quelque problème ?

[reg62]

bonsoir je suis desoler mais j'ai toujour les meme probleme

Cdlt

[pear]

Bonsoir,

 

Donc , Mbam n'aurait pas supprimé servives .exe, ou plus probablement, il serait revenu.

 

Lancez cet outil de diagnostic:

Téléchargez ZhpDiag de Coolman

Il ne nécessite aucune installation.

- Il peut être lancé depuis n'importe quelle unité de disque.

- Il peut être lancé d'une clé USB.

 

Cliquez sur le tournevis

Dans la fenêtre qui s'ouvre, cochez tout.

Clic sur la Loupe pour lancer le scan

Au bout d'un moment ,vous pouvez avoir à Accepter Sysinternal->I agree

Postez en le rapport qui apparait en cliquant l'appareil photo.

Modifié le 8 avril 2010 par pear

[reg62]

bonjour voici le rapport

cdlt

Rapport de ZHPDiag v1.25.1350 par Nicolas Coolman

Run by regis at 09/04/2010 15:59:33

Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

 

---\\ System Information

Platform : Windows 7 Home Premium (6.1.7600)

Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 4094 MB (67% free)

System drive C: has 214 GB (73%) free of 291 GB

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 214 Go of 291 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 244 Go of 291 Go)

E:\ CD-ROM drive (Not Inserted)

F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

 

 

---\\ Processus lancés

[MD5.D9CB30BF12B3670650C85637EA1AB6EA] - (.NewTech Infosystems, Inc. - Acer Backup Manager.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [261888]

[MD5.84F122BFFA0638CE735E891620EF7754] - (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [629280]

[MD5.EF533F9D1E4F51C783D4349A7C3F518F] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464]

[MD5.466CE40EAA865752F4930A472563E4E1] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760]

[MD5.981E539199217491DF663368C02F4B94] - (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [588648]

[MD5.4D0EA5E07531DB16B49B4C7C3363C806] - (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSM32.exe [199264]

[MD5.3F7E3252BFC446E29609374702566638] - (.F-Secure Corporation - TNBUtil.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\FSGUI\TNBUtil.exe [1653344]

[MD5.4D5D968FE6AE6BF94A807F73F7FF6B3D] - (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168]

[MD5.4DE3EF07E0854547309C6B40235A9D44] - (.Brother Industries, Ltd. - ControlCenter Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688]

[MD5.33CC6E3B28002B3B092B323F5C0571A5] - (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [83312]

[MD5.395204396F324DFE59D2CC5EF9F656D4] - (.Symantec Corporation - Tray Application.) -- C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2037096]

[MD5.73BB442A717B9BB0097C243374C14A3E] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672]

[MD5.7E3569CDC719E0210C5323F7A4C1F373] - (.Canal+ - Lancer CANAL+ CANALSAT A LA DEMANDE.) -- C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\Launcher.exe [163928]

[MD5.E43A851F7B12DE589424D6C656155CFC] - (.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712]

[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153]

[MD5.6AC733261E01C25DAA62E82F17A30F48] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\etc\services.exe [350253]

[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]

[MD5.18B4B12358EFCF68D76812058A26181F] - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [3883856]

[MD5.8FC6C4EE0A2D3EBAA70FA38F99141BCE] - (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe [1475072]

[MD5.EDF12357FE791D8BE9E9B0A966B95565] - (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010864]

[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480]

[MD5.EA6EADF6314E43783BA8EEE79F93F73C] - (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe [1173504]

[MD5.C78655BC80301D76ED4FEF1C1EA40A7D] - (.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe [27136]

[MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [108289]

[MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [185089]

[MD5.EAD65493EDBA0EBEA2192D46B938298E] - (.Autodesk - System Level Service Utility.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [79360]

[MD5.A0C63B7966D866A570A9C4DD54E789DA] - (.Canal+ Active - CanalPlus.VOD.Service.) -- C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe [188416]

[MD5.9D22FC801BE48A1BE391C7E3C99C8D6D] - (.F-Secure Corporation - F-Secure Anti-Virus Scanning Service.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\fsgk32st.exe [219744]

[MD5.0C29853CAE57F2824664C43C3B6937A7] - (.F-Secure Corporation - F-Secure Management Agent.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSMA32.exe [186976]

[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [1150496]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664]

[MD5.AA0C4A2C33CE075DF2C272D678734991] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe [65536]

[MD5.AA0C4A2C33CE075DF2C272D678734991] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe [65536]

[MD5.2F139207F618EC2933830227EEFFDDB4] - (.Egis Technology Inc. - MyWinLocker Service.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe [305448]

[MD5.D19E2EDAD48309F31ECB480F2C83EE22] - (.Symantec Corporation - Service Module.) -- C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [3425632]

[MD5.BD691091AC7D9713D8F0B07C6B099E6C] - (.NewTech Infosystems, Inc. - Backup Manager Module.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [62208]

[MD5.59DD481E0063F8F7EA8B9F149FCACF32] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 186.3.) -- C:\Windows\system32\nvvsvc.exe [382496]

[MD5.B5D974C1FD078A68C7536C561B031D39] - (.Symantec Corporation - Automatic LiveUpdate Scheduler Service.) -- C:\Program Files (x86)\Symantec\LiveUpdate\ALUSchedulerSvc.exe [554352]

[MD5.0793F40B9B8A1BDD266296409DBD91EA] - (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe [31232]

[MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368]

[MD5.89E8550C5862999FCF482EA562B0E98E] - (.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\System32\spoolsv.exe [558080]

[MD5.913D843498553A1BC8F8DBAD6358E49F] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\Windows\system32\sppsvc.exe [3524608]

[MD5.70DDE3A86DBEB1D6C3C30AD687B1877A] - (.Acer - Acer Update Service.) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe [240160]

[MD5.AD31942BDF3D594C404874613BC2FE4D] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) -- C:\Windows\system32\SearchIndexer.exe [593408]

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: Shell=explorer.exe

 

 

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

 

 

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~2\SPYBOT~1\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll

O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} . (.F-Secure Corporation - Litmus.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\NRS\iescript\baselitmus.dll

 

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} . (.F-Secure Corporation - Litmus.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\NRS\iescript\baselitmus.dll

 

 

---\\ Applications démarrées automatiquement par le registre (O4)

O4 - HKLM\..\Run: [backupManagerTray] . (.NewTech Infosystems, Inc. - Acer Backup Manager.) -- C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe

O4 - HKLM\..\Run: [Hotkey Utility] . (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe

O4 - HKLM\..\Run: [EgisTecLiveUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe

O4 - HKLM\..\Run: [F-Secure Manager] . (.F-Secure Corporation - F-Secure Settings and Statistics.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSM32.exe

O4 - HKLM\..\Run: [F-Secure TNB] . (.F-Secure Corporation - TNBUtil.) -- C:\Program Files (x86)\Orange\Antivirus Firewall\FSGUI\TNBUtil.exe

O4 - HKLM\..\Run: [brMfcWnd] . (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe

O4 - HKLM\..\Run: [ControlCenter3] . (.Brother Industries, Ltd. - ControlCenter Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe

O4 - HKLM\..\Run: [bCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe

O4 - HKLM\..\Run: [Norton Ghost 12.0] . (.Symantec Corporation - Tray Application.) -- C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Run: [CANAL+ CANALSAT A LA DEMANDE] . (.Canal+ - Lancer CANAL+ CANALSAT A LA DEMANDE.) -- C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\Launcher.exe

O4 - HKLM\..\Run: [AdobeCS4ServiceManager] . (.Adobe Systems Incorporated - Adobe CS4 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

O4 - HKLM\..\Run: [HKLM] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\etc\services.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKCU\..\Run: [sUPERAntiSpyware] . (.SUPERAntiSpyware.com - SUPERAntiSpyware Application.) -- C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [HKCU] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\etc\services.exe

O4 - HKLM\..\policies\Explorer\Run: [Policies] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\etc\services.exe

O4 - HKCU\..\policies\Explorer\Run: [Policies] . (.Pas de propriétaire - Pas de description.) -- C:\Windows\etc\services.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: &Envoyer à OneNote - (.not file.) - res:///105

O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\Windows\system32\GPhotos.scr

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~2\MICROS~1\Office14\EXCEL.exe

O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll

O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~1\Office14\ONBTTN~1.dll

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.not file.) - (.not file.)

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.zebulon.fr/outils/antivirus/kav...can_unicode.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/...can8/oscan8.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: !SASWinLogon . (.SUPERAntiSpyware.com - SUPERAntiSpyware WinLogon Processor.) -- C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Autodesk Licensing Service (Autodesk Licensing Service) . (.Autodesk - System Level Service Utility.) - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe

O23 - Service: CanalPlus.VOD (CanalPlus.VOD) . (.Canal+ Active - CanalPlus.VOD.Service.) - C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe

O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) . (.F-Secure Corporation - F-Secure Anti-Virus Scanning Service.) - C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\fsgk32st.exe

O23 - Service: F-Secure Management Agent (FSMA) . (.F-Secure Corporation - F-Secure Management Agent.) - C:\Program Files (x86)\Orange\Antivirus Firewall\Common\FSMA32.exe

O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.Pas de propriétaire - Pas de description.) - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe

O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max 2009 64-bit 64-bit (mi-raysat_3dsMax2009_64) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_64server.exe

O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) . (.Pas de propriétaire - Pas de description.) - C:\Program Files (x86)\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe

O23 - Service: MyWinLocker Service (MWLService) . (.Egis Technology Inc. - MyWinLocker Service.) - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe

O23 - Service: Norton Ghost (Norton Ghost) . (.Symantec Corporation - Service Module.) - C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe

O23 - Service: NTI IScheduleSvc (NTI IScheduleSvc) . (.NewTech Infosystems, Inc. - Backup Manager Module.) - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: Planificateur LiveUpdate automatique (Planificateur LiveUpdate automatique) . (.Symantec Corporation - Automatic LiveUpdate Scheduler Service.) - C:\Program Files (x86)\Symantec\LiveUpdate\ALUSchedulerSvc.exe

O23 - Service: C:\Windows\system32\samsrv.dll (SamSs) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\lsass.exe

O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: C:\Windows\system32\spoolsv.exe (Spooler) . (.Pas de propriétaire - Pas de description.) - C:\Windows\System32\spoolsv.exe

O23 - Service: C:\Windows\system32\sppsvc.exe (sppsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\sppsvc.exe

O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

O23 - Service: C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (WMPNetworkSvc) . (.Pas de propriétaire - Pas de description.) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

 

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10e.ocx

O40 - ASIC: (no name) - {Y432E6HX-15J8-010C-0N6O-0640D84KEMPD} . (.Pas de propriétaire - Pas de description.) -- C:\Windows\etc\services.exe

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (blbdrive) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: Pilote de CD-ROM (cdrom) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\discache.sys

O41 - Driver: F-Secure HIPS Driver (F-Secure HIPS) . (.F-Secure Corporation - HIPS 64-bit kernel module.) - C:\Program Files (x86)\Orange\Antivirus Firewall\HIPS\drivers\fshs.sys

O41 - Driver: F-Secure Email Scanning Driver (FSES) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\fses.sys

O41 - Driver: F-Secure Firewall Driver (FSFW) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\fsdfw.sys

O41 - Driver: F-Secure Vista Support Driver (fsvista) . (.Pas de propriétaire - Pas de description.) - C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\minifilter\fsvista.sys

O41 - Driver: Microsoft System Management BIOS Driver (mssmbios) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mssmbios.sys

O41 - Driver: mwlPSDFilter (mwlPSDFilter) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mwlPSDFilter.sys

O41 - Driver: mwlPSDNServ (mwlPSDNServ) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys

O41 - Driver: mwlPSDVDisk (mwlPSDVDisk) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys

O41 - Driver: NetBIOS Interface (NetBIOS) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: NetBT (NetBT) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdprefmp.sys

O41 - Driver: SASDIFSV (SASDIFSV) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV.SYS.) - C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.sys

O41 - Driver: SASKUTIL (SASKUTIL) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL.SYS.) - C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys

O41 - Driver: Terminal Device Driver (TermDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: WFP Lightweight Filter (WfpLwf) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\wfplwf.sys

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 2 (SP2) - (.Microsoft.)

O42 - Logiciel: 7-Zip 4.65 - (.Pas de propriétaire.)

O42 - Logiciel: ACT 1.6 Pro MAX 8 Demo - (.Snoswell Design, Ltd..)

O42 - Logiciel: Acer Backup Manager - (.NewTech Infosystems.)

O42 - Logiciel: Acer GameZone Console - (.Oberon Media, Inc..)

O42 - Logiciel: Acer Registration - (.Acer Incorporated.)

O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.)

O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.)

O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..)

O42 - Logiciel: Adobe Anchor Service CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Bridge CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe CMaps CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe CSI CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Color - Photoshop Specific CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Color EU Recommended Settings CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Color JA Extra Settings CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Color NA Extra Settings CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Color Video Profiles CS CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Default Language CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Device Central CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Drive CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Extension Manager CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Linguistics CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Output Module - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Photoshop CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Photoshop CS4 Support - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Reader 9.3 MUI - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Service Manager Extension - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Type Support CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe Update Manager CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.)

O42 - Logiciel: Adobe XMP Panels CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: AdobeColorCommonSetCMYK - (.Adobe Systems Incorporated.)

O42 - Logiciel: AdobeColorCommonSetRGB - (.Adobe Systems Incorporated.)

O42 - Logiciel: Advertising Center - (.Nero AG.)

O42 - Logiciel: Akamai NetSession Interface - (.Pas de propriétaire.)

O42 - Logiciel: Alice Greenfingers - (.Oberon Media.)

O42 - Logiciel: Amazonia - (.Oberon Media.)

O42 - Logiciel: Anti-virus firewall - (.Pas de propriétaire.)

O42 - Logiciel: Ask.com Search Assistant 1.0.1 - (.Ask.com.)

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.)

O42 - Logiciel: Autodesk 3ds Max 8 - (.Autodesk.)

O42 - Logiciel: Autodesk 3ds Max 8 Additional Maps and Materials - (.Autodesk.)

O42 - Logiciel: Autodesk 3ds Max 8 Architectural Materials - (.Autodesk.)

O42 - Logiciel: Autodesk 3ds Max 8 Reference Files - (.Autodesk.)

O42 - Logiciel: Autodesk Backburner 2008.1 - (.Autodesk, Inc..)

O42 - Logiciel: Autodesk FBX Plugin 2009.4 - 3ds Max 2010 - (.Autodesk.)

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.)

O42 - Logiciel: Backup Manager Advance - (.NewTech Infosystems.)

O42 - Logiciel: Blender (remove only) - (.Pas de propriétaire.)

O42 - Logiciel: Brother MFL-Pro Suite DCP-130C - (.Brother Industries, Ltd..)

O42 - Logiciel: CANAL+ CANALSAT A LA DEMANDE - (.CanalPlus.)

O42 - Logiciel: Chicken Invaders 2 - (.Oberon Media.)

O42 - Logiciel: Connect - (.Adobe Systems Incorporated.)

O42 - Logiciel: Dairy Dash - (.Oberon Media.)

O42 - Logiciel: Dofus 1.28.0 - (.Ankama Games.)

O42 - Logiciel: Dream Day First Home - (.Oberon Media.)

O42 - Logiciel: EVEREST Corporate Edition v4.50 - (.Lavalys, Inc..)

O42 - Logiciel: Facebook Plug-In - (.Facebook, Inc..)

O42 - Logiciel: Farm Frenzy 2 - (.Oberon Media.)

O42 - Logiciel: First Class Flurry - (.Oberon Media.)

O42 - Logiciel: GIMP 2.6.8 - (.Pas de propriétaire.)

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.)

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..)

O42 - Logiciel: Google Update Helper - (.Google Inc..)

O42 - Logiciel: Google Earth - (.Google.)

O42 - Logiciel: Granny In Paradise - (.Oberon Media.)

O42 - Logiciel: HFX Volume 2 - (.Pinnacle Systems.)

O42 - Logiciel: Heroes of Hellas - (.Oberon Media.)

O42 - Logiciel: Hotkey Utility - (.Acer Incorporated.)

O42 - Logiciel: Identity Card - (.Acer Incorporated.)

O42 - Logiciel: ImTOO MP4 Video Converter - (.ImTOO.)

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.)

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.)

O42 - Logiciel: Kaspersky On-line Scanner - (.Kaspersky Lab.)

O42 - Logiciel: LiveUpdate 3.2 (Symantec Corporation) - (.Symantec Corporation.)

O42 - Logiciel: MSVCRT - (.Microsoft.)

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.)

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.)

O42 - Logiciel: MaxiCompte - (.EuroSoft Software Development.)

O42 - Logiciel: Merriam Websters Spell Jam - (.Oberon Media.)

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.)

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Access MUI (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Excel MUI (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Language Pack 2007 - French/Français - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office O MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Professionnel 2010 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Arabic) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Dutch) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (English) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (German) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proofing (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.)

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) - (.Microsoft.)

O42 - Logiciel: Microsoft Office SharePoint Designer MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Shared MUI (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Single Image 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office Word MUI (French) 2010 (Beta) - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Office X MUI (French) 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.)

O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..)

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.)

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.)

O42 - Logiciel: Money Manager Ex 0.9.5.1 - (.CodeLathe LLC.)

O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..)

O42 - Logiciel: Nero 9 Essentials - (.Nero AG.)

O42 - Logiciel: Nero ControlCenter - (.Nero AG.)

O42 - Logiciel: Nero DiscSpeed - (.Nero AG.)

O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.)

O42 - Logiciel: Nero DriveSpeed - (.Nero AG.)

O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.)

O42 - Logiciel: Nero Express Help - (.Nero AG.)

O42 - Logiciel: Nero InfoTool Help - (.Nero AG.)

O42 - Logiciel: Nero Online Upgrade - (.Nero AG.)

O42 - Logiciel: Nero StartSmart - (.Nero AG.)

O42 - Logiciel: Nero StartSmart Help - (.Nero AG.)

O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.)

O42 - Logiciel: NeroExpress - (.Nero AG.)

O42 - Logiciel: Norton Ghost - (.Symantec Corporation.)

O42 - Logiciel: Norton Online Backup - (.Symantec.)

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.)

O42 - Logiciel: PDF Settings CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Photoshop Camera Raw - (.Adobe Systems Incorporated.)

O42 - Logiciel: Picasa 3 - (.Google, Inc..)

O42 - Logiciel: Pinnacle Studio 12 - (.Pinnacle Systems.)

O42 - Logiciel: Python 2.6.4 - (.Python Software Foundation.)

O42 - Logiciel: SUPERAntiSpyware Free Edition - (.SUPERAntiSpyware.com.)

O42 - Logiciel: Security Update for Microsoft Office 2010 File Validation - Beta (KB976133) - (.Microsoft.)

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.)

O42 - Logiciel: Studio Premium Pack 1 - (.Pinnacle Systems.)

O42 - Logiciel: Suite Shared Configuration CS4 - (.Adobe Systems Incorporated.)

O42 - Logiciel: Usenet.nl - (.Pas de propriétaire.)

O42 - Logiciel: Welcome Center - (.Acer Incorporated.)

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.)

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.)

O42 - Logiciel: Windows Movie Maker 2.6 - (.Microsoft Corporation.)

O42 - Logiciel: eBay Worldwide - (.OEM.)

O42 - Logiciel: eMule - (.Pas de propriétaire.)

O42 - Logiciel: eSobi v2 - (.esobi Inc..)

O42 - Logiciel: kuler - (.Adobe Systems Incorporated.)

O42 - Logiciel: neroxml - (.Nero AG.)

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\7-Zip]

[HKCU\Software\Acer]

[HKCU\Software\Adobe]

[HKCU\Software\Alias]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\AskSearchAsst]

[HKCU\Software\Autodesk]

[HKCU\Software\Avira]

[HKCU\Software\Brother]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\DAMN]

[HKCU\Software\DirectConnect]

[HKCU\Software\DivXNetworks]

[HKCU\Software\Google]

[HKCU\Software\IDAVLab]

[HKCU\Software\IM Providers]

[HKCU\Software\ImTOO]

[HKCU\Software\KasperskyLab]

[HKCU\Software\Lavalys]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\Mootools]

[HKCU\Software\Motion Analysis]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Nero]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\OEM]

[HKCU\Software\Pinnacle Systems]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\SUPERAntiSpyware.com]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\Symantec]

[HKCU\Software\Trolltech]

[HKCU\Software\VOB]

[HKCU\Software\VirginMega]

[HKCU\Software\Wow6432Node]

[HKCU\Software\eMule]

[HKCU\Software\keyhole.com]

[HKCU\Software\remote]

[HKLM\Software\Acer Incorporated]

[HKLM\Software\Adobe]

[HKLM\Software\Ahead]

[HKLM\Software\Alias|Wavefront]

[HKLM\Software\America Online]

[HKLM\Software\Ankama]

[HKLM\Software\Audible]

[HKLM\Software\Autodesk]

[HKLM\Software\Avira]

[HKLM\Software\BlenderFoundation]

[HKLM\Software\Brother Industries, Ltd.]

[HKLM\Software\Brother]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\DAMN]

[HKLM\Software\Data Fellows]

[HKLM\Software\Digital River]

[HKLM\Software\Discreet]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DivX]

[HKLM\Software\EgisTec Egis Software Update]

[HKLM\Software\FAST Multimedia]

[HKLM\Software\FLEXlm License Manager]

[HKLM\Software\Google]

[HKLM\Software\IDAVLab]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\Macromedia]

[HKLM\Software\Macrovision]

[HKLM\Software\McAfeeInstaller]

[HKLM\Software\McAfee]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\Nero]

[HKLM\Software\NewTech Infosystems]

[HKLM\Software\ODBC]

[HKLM\Software\OEM]

[HKLM\Software\Oberon Media]

[HKLM\Software\Pegasus Imaging]

[HKLM\Software\PegasusImaging]

[HKLM\Software\Pinnacle Systems]

[HKLM\Software\Pocket Soft]

[HKLM\Software\PocketSoft]

[HKLM\Software\Policies]

[HKLM\Software\Python]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SUPERAntiSpyware.com]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\SiteAdvisor]

[HKLM\Software\Symantec]

[HKLM\Software\TrendMicro]

[HKLM\Software\VirginMega]

[HKLM\Software\X-AVCSD]

 

 

---\\ Contenu des dossiers Fichiers Communs (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\7-Zip

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Acer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Acer GameZone

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Ask Search Assistant

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Autodesk

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Avira

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Blender Foundation

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Brother

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Canal+

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\DAMN NFO Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Dofus

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EgisTec

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EgisTec Egis Software Update

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EkoSoftware

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eMule

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\eSobi

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\GIMP-2.0

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ImTOO

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Lavalys

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MaxiCompte

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\McAfee

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Analysis Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Synchronization Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Visual Studio 8

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft WSE

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Movie Maker 2.6

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Nero

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\NewTech Infosystems

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Norton Ghost

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\OEM

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Orange

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Pinnacle

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Pixologic

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Spybot - Search & Destroy

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SUPERAntiSpyware

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Symantec

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Temp

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Trend Micro

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Usenet.nl

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live Safety Center

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe AIR

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Akamai

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Alias Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Autodesk Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\EgisTec

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Macrovision Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Nero

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Oberon Media

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Pegasus Imaging

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Pinnacle

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\PX Storage Engine

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Symantec Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Yahoo!

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.00000000000000000000000000000000] - 09/04/2010 - 14:43:32 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1754943]

O44 - LFC:[MD5.3DB3D7E7FE8D00CCF6E10E9DA06C1C9B] - 09/04/2010 - 14:43:22 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.C874955CE361372824A5E325BC983134] - 09/04/2010 - 03:17:43 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [9696]

O44 - LFC:[MD5.C874955CE361372824A5E325BC983134] - 09/04/2010 - 03:17:43 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [9696]

O44 - LFC:[MD5.DC51B9C14E1D4ECD48BC868345B13007] - 09/04/2010 - 03:16:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [107458]

O44 - LFC:[MD5.BB4EB1551F5AF679F749461FE6ED3338] - 09/04/2010 - 03:16:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [131600]

O44 - LFC:[MD5.2717478E61AFC72D9F330E2F88981A00] - 09/04/2010 - 03:16:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [617024]

O44 - LFC:[MD5.7DD8D80AEF30FFA7E0072C13416AA5C8] - 09/04/2010 - 03:16:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [704650]

O44 - LFC:[MD5.FE5B989C8307458BB528432A64A76876] - 09/04/2010 - 03:16:30 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1554024]

O44 - LFC:[MD5.0F6CE79E0FF4C317B73407518326AC34] - 09/04/2010 - 03:10:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [51328]

O44 - LFC:[MD5.FE5B989C8307458BB528432A64A76876] - 08/04/2010 - 18:44:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PerfStringBackup.INI [1573732]

O44 - LFC:[MD5.D054643FE89C400B3B4CA4C691F7F368] - 08/04/2010 - 12:40:58 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\rkill.log [268]

O44 - LFC:[MD5.60C9D47460DFA778BB2BB2257DEBAB87] - 08/04/2010 - 07:43:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [767358]

O44 - LFC:[MD5.6A98A13CDCBB0F1D2A9190923DE1C47F] - 03/04/2010 - 00:06:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\DirectX.log [171701]

O44 - LFC:[MD5.BBB6C6833C30E323B41860D6DF61972D] - 02/04/2010 - 14:10:08 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\SysNative\d3dx9_36.dll [5081608]

O44 - LFC:[MD5.BBB6C6833C30E323B41860D6DF61972D] - 02/04/2010 - 14:10:08 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_36.dll [3734536]

O44 - LFC:[MD5.282F2FEB95A6B3985CB30BA236594E7E] - 31/03/2010 - 07:07:19 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\SysNative\mshtml.dll [9283072]

O44 - LFC:[MD5.19765ED29B7D1ABB245A544DDAD34382] - 31/03/2010 - 07:07:17 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\SysNative\ieframe.dll [12359680]

O44 - LFC:[MD5.282F2FEB95A6B3985CB30BA236594E7E] - 31/03/2010 - 07:07:17 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll [5964800]

O44 - LFC:[MD5.F43F7ECA77C2EE4EA1F9F9EA79BEC5E4] - 31/03/2010 - 07:07:16 ---A- . (.Microsoft Corporation - Microsoft ® Timed Interactive Multimedia.) -- C:\Windows\SysNative\mstime.dll [1026048]

O44 - LFC:[MD5.19765ED29B7D1ABB245A544DDAD34382] - 31/03/2010 - 07:07:16 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [10978816]

O44 - LFC:[MD5.096698014315B32C84A7AFD4EA61FB6F] - 31/03/2010 - 07:07:15 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\SysNative\wininet.dll [1192960]

O44 - LFC:[MD5.096698014315B32C84A7AFD4EA61FB6F] - 31/03/2010 - 07:07:15 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [977920]

O44 - LFC:[MD5.CD88CC4CB4919A6A7B9206EC7CEC6283] - 31/03/2010 - 07:07:15 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysNative\urlmon.dll [1493504]

O44 - LFC:[MD5.CD88CC4CB4919A6A7B9206EC7CEC6283] - 31/03/2010 - 07:07:15 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1225216]

O44 - LFC:[MD5.F43F7ECA77C2EE4EA1F9F9EA79BEC5E4] - 31/03/2010 - 07:07:15 ---A- . (.Microsoft Corporation - Microsoft ® Timed Interactive Multimedia.) -- C:\Windows\System32\mstime.dll [606208]

O44 - LFC:[MD5.01BC9D08AE1BA0FD939B25896AC939CF] - 31/03/2010 - 07:07:15 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\SysNative\iedkcs32.dll [445952]

O44 - LFC:[MD5.01BC9D08AE1BA0FD939B25896AC939CF] - 31/03/2010 - 07:07:15 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll [381440]

O44 - LFC:[MD5.7788E93AEB1454AEF18D2F489E86F378] - 31/03/2010 - 07:07:15 ---A- . (.Microsoft Corporation - Synchronisation en arrière-plan des flux Mi.) -- C:\Windows\SysNative\msfeedsbs.dll [82944]

O44 - LFC:[MD5.7788E93AEB1454AEF18D2F489E86F378] - 31/03/2010 - 07:07:14 ---A- . (.Microsoft Corporation - Synchronisation en arrière-plan des flux Mi.) -- C:\Windows\System32\msfeedsbs.dll [64512]

O44 - LFC:[MD5.85D6E8F735865B502D65D1D91A79E3F3] - 17/03/2010 - 21:43:38 ---A- . (.Microsoft Corporation - Choix de navigateur .) -- C:\Windows\SysNative\browserchoice.exe [294912]

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:Last File Created Prefetch 03/04/2010 - 21:22:01 ---A- C:\Windows\Prefetch\Layout.ini

O45 - LFCP:Last File Created Prefetch 03/04/2010 - 21:22:11 ---A- C:\Windows\Prefetch\DEFRAG.EXE-3D9E8D72.pf

O45 - LFCP:Last File Created Prefetch 03/04/2010 - 21:22:12 ---A- C:\Windows\Prefetch\SVCHOST.EXE-67EC2DA7.pf

O45 - LFCP:Last File Created Prefetch 03/04/2010 - 21:24:39 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-6FD72002.pf

O45 - LFCP:Last File Created Prefetch 03/04/2010 - 21:31:38 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-51CCB287.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 06:56:39 ---A- C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 07:04:43 ---A- C:\Windows\Prefetch\SC.EXE-6C4D4413.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 07:17:02 ---A- C:\Windows\Prefetch\FSAVAUI.EXE-72B611EA.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 07:22:37 ---A- C:\Windows\Prefetch\BRMFCMON.EXE-C8F2AA78.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 07:22:37 ---A- C:\Windows\Prefetch\WUDFHOST.EXE-DEBBE5F1.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 07:33:07 ---A- C:\Windows\Prefetch\OSPPSVC.EXE-CAD928DD.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 07:38:17 ---A- C:\Windows\Prefetch\POWERPNT.EXE-A3F2FA4C.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 07:51:13 ---A- C:\Windows\Prefetch\SETUP_WM.EXE-9832EE32.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 08:40:34 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-7D455BDC.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 10:15:00 ---A- C:\Windows\Prefetch\LSASS.EXE-F57E7653.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 10:48:28 ---A- C:\Windows\Prefetch\REGISTER.EXE-DE4B3178.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 10:56:11 ---A- C:\Windows\Prefetch\HOUSECALLLAUNCHER64[1].EXE-65D06DCB.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 10:56:12 ---A- C:\Windows\Prefetch\SETUP.EXE-B7DFDA4C.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 10:56:29 ---A- C:\Windows\Prefetch\HCPACKAGE.EXE.NEW-DD931E44.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 10:59:20 ---A- C:\Windows\Prefetch\PATCH64.EXE-7237EEB3.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 12:10:58 ---A- C:\Windows\Prefetch\ADOBEARM.EXE-414F1A98.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 12:33:17 ---A- C:\Windows\Prefetch\WINWORD.EXE-1EAC1DA2.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 12:33:56 ---A- C:\Windows\Prefetch\PICASA~1.EXE-8F574924.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 14:01:15 ---A- C:\Windows\Prefetch\PICASAPHOTOVIEWER.EXE-A43AE870.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 15:12:07 ---A- C:\Windows\Prefetch\NOSKILLCRYPTED.EXE-E09AA48B.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 15:27:43 ---A- C:\Windows\Prefetch\SERVICES.EXE-4FB8A958.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 15:29:41 ---A- C:\Windows\Prefetch\BLENDER.EXE-DC442779.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 15:55:54 ---A- C:\Windows\Prefetch\GIMP-2.6.EXE-3DA329B9.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 15:55:56 ---A- C:\Windows\Prefetch\SCRIPT-FU.EXE-E1A8ED98.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 15:57:16 ---A- C:\Windows\Prefetch\PHOTOSHOP.EXE-FF67E171.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 16:36:36 ---A- C:\Windows\Prefetch\FILE-JPEG.EXE-9E84521E.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 19:00:33 ---A- C:\Windows\Prefetch\PICASAUPDATER.EXE-13EBDDAD.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 19:00:41 ---A- C:\Windows\Prefetch\PICASA3.EXE-37EF5973.pf

O45 - LFCP:Last File Created Prefetch 04/04/2010 - 19:02:48 ---A- C:\Windows\Prefetch\MOVIETHUMB.EXE-E8B6A3E7.pf

O45 - LFCP:Last File Created Prefetch 05/04/2010 - 07:36:56 ---A- C:\Windows\Prefetch\BRCTRCEN.EXE-FEC84140.pf

O45 - LFCP:Last File Created Prefetch 05/04/2010 - 07:36:56 ---A- C:\Windows\Prefetch\VPROTRAY.EXE-44535D91.pf

O45 - LFCP:Last File Created Prefetch 05/04/2010 - 22:26:21 ---A- C:\Windows\Prefetch\MAYA.EXE-02BA6887.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 00:05:15 ---A- C:\Windows\Prefetch\FNPLICENSINGSERVICE64.EXE-2E0A737F.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 00:05:19 ---A- C:\Windows\Prefetch\LMU.EXE-E35DA651.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 10:11:44 ---A- C:\Windows\Prefetch\DOFUS.DLL-D47E11CA.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 10:11:49 ---A- C:\Windows\Prefetch\UPLAUNCHER.EXE-E723FC6E.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 10:11:52 ---A- C:\Windows\Prefetch\DOFUS.EXE-D8A971F8.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 11:55:26 ---A- C:\Windows\Prefetch\PMMDAT~1.EXE-99C11572.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 16:09:54 ---A- C:\Windows\Prefetch\ACRORD32.EXE-1066739E.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 16:10:04 ---A- C:\Windows\Prefetch\ADOBEARM.EXE-F9223367.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 16:50:43 ---A- C:\Windows\Prefetch\FSGK32.EXE-32EA82E3.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 16:50:48 ---A- C:\Windows\Prefetch\FSAV32.EXE-B608BB9C.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 18:55:34 ---A- C:\Windows\Prefetch\FSAVSTRT.EXE-1B9BF4B4.pf

O45 - LFCP:Last File Created Prefetch 06/04/2010 - 18:57:03 ---A- C:\Windows\Prefetch\FSBLSRV.EXE-73102E5F.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 09:02:35 ---A- C:\Windows\Prefetch\HOUSECALL.BIN-44C95947.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 09:26:53 ---A- C:\Windows\Prefetch\IEXPLORE.EXE-058FE8F5.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 10:38:01 ---A- C:\Windows\Prefetch\WLCOMM.EXE-81BAE51F.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 11:08:23 ---A- C:\Windows\Prefetch\3DSMAX.EXE-A2BFEC6E.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 11:08:33 ---A- C:\Windows\Prefetch\AD32LW.EXE-B8260FE7.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 11:09:01 ---A- C:\Windows\Prefetch\ISYSBRIDGE.EXE-DAD10556.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 11:09:01 ---A- C:\Windows\Prefetch\WSCOMMCNTR1.EXE-6CC3C9DC.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 11:09:32 ---A- C:\Windows\Prefetch\GOOGLETOOLBARUSER_32.EXE-66EEE4D2.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 11:09:35 ---A- C:\Windows\Prefetch\FLASHUTIL10E.EXE-2096A669.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 13:08:20 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-32932538.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 13:28:29 ---A- C:\Windows\Prefetch\WMPLAYER.EXE-EBBA463B.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 14:56:36 ---A- C:\Windows\Prefetch\USERACCOUNTCONTROLSETTINGS.EX-381ECB63.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 14:56:39 ---A- C:\Windows\Prefetch\DLLHOST.EXE-FC7C086C.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 14:56:40 ---A- C:\Windows\Prefetch\DLLHOST.EXE-6A07DE60.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 15:09:00 ---A- C:\Windows\Prefetch\PING.EXE-4A8A6853.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 16:39:41 ---A- C:\Windows\Prefetch\TASKMGR.EXE-4C8500BA.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 16:59:19 ---A- C:\Windows\Prefetch\WLMAIL.EXE-EC6E2196.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 17:03:28 ---A- C:\Windows\Prefetch\CONSENT.EXE-40419367.pf

O45 - LFCP:Last File Created Prefetch 07/04/2010 - 17:20:06 ---A- C:\Windows\Prefetch\FSSM32.EXE-44A37E69.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 03:19:17 ---A- C:\Windows\Prefetch\LSASS.EXE-8505E815.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 07:44:35 ---A- C:\Windows\Prefetch\BCSSYNC.EXE-03E0088A.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 08:12:38 ---A- C:\Windows\Prefetch\DLLHOST.EXE-D9DCD0F3.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 08:23:00 ---A- C:\Windows\Prefetch\SPYBOTSD.EXE-6AAABCEA.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 08:32:46 ---A- C:\Windows\Prefetch\SPLWOW64.EXE-57576C25.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 09:00:52 ---A- C:\Windows\Prefetch\EXPLORER.EXE-54012F5E.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 10:01:05 ---A- C:\Windows\Prefetch\FSCUIF.EXE-A042A387.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 10:01:20 ---A- C:\Windows\Prefetch\QUARANTI.EXE-9C98A858.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 12:26:46 ---A- C:\Windows\Prefetch\SVCHOST.EXE-27D91624.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 14:37:52 ---A- C:\Windows\Prefetch\DLLHOST.EXE-63B92852.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 14:49:03 ---A- C:\Windows\Prefetch\CMD.EXE-0BD30981.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 15:22:18 ---A- C:\Windows\Prefetch\PREVHOST.EXE-7DD93B84.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 15:40:11 ---A- C:\Windows\Prefetch\3DSMAX.EXE-90959562.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 15:40:28 ---A- C:\Windows\Prefetch\ADSKCLEANUP.0001-C5F9B862.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 15:42:27 ---A- C:\Windows\Prefetch\7ZFM.EXE-F57727C5.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 16:00:01 ---A- C:\Windows\Prefetch\WSQMCONS.EXE-4048402C.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 20:05:28 ---A- C:\Windows\Prefetch\LUCOMSERVER_3_2.EXE-4D6E402F.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 21:24:51 ---A- C:\Windows\Prefetch\SVCHOST.EXE-6A249820.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 21:24:51 ---A- C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 21:36:33 ---A- C:\Windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 21:36:33 ---A- C:\Windows\Prefetch\AgRobust.db

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 21:36:34 ---A- C:\Windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 21:36:34 ---A- C:\Windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:Last File Created Prefetch 08/04/2010 - 23:25:19 ---A- C:\Windows\Prefetch\MSFEEDSSYNC.EXE-BDDD8ED1.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:09:24 ---A- C:\Windows\Prefetch\LOGONUI.EXE-F639BD7E.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:09:42 ---A- C:\Windows\Prefetch\PfSvPerfStats.bin

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:11:36 ---A- C:\Windows\Prefetch\SERVICES.EXE-D1F4D12B.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:11:39 ---A- C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:11:53 ---A- C:\Windows\Prefetch\DLLHOST.EXE-2E02FDCA.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:12:43 ---A- C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:13:28 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-032BB3D8.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:13:40 ---A- C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:13:52 ---A- C:\Windows\Prefetch\WUAUCLT.EXE-5D573F0E.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:14:41 ---A- C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:14:43 ---A- C:\Windows\Prefetch\GOOGLETOOLBARMANAGER_E85CDE76-148B3877.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:14:52 ---A- C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-A6285BB5.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:15:24 ---A- C:\Windows\Prefetch\SDCLT.EXE-94EAE077.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:15:34 ---A- C:\Windows\Prefetch\SVCHOST.EXE-CFE81CB7.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:23:23 ---A- C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 03:23:34 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-D2A040D5.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 06:02:27 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-0D53616E.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 06:12:06 ---A- C:\Windows\Prefetch\VISTAGETS3S4REG.EXE-C15F16B0.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 06:12:07 ---A- C:\Windows\Prefetch\ACER.SCR-2E5AFFAA.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:27 ---A- C:\Windows\Prefetch\AgCx_SC1.db.trx

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:27 ---A- C:\Windows\Prefetch\FSWSCS.EXE-3F6A6483.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:34 ---A- C:\Windows\Prefetch\TNBUTIL.EXE-9F2A4119.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:38 ---A- C:\Windows\Prefetch\DLLHOST.EXE-6389524F.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:38 ---A- C:\Windows\Prefetch\LUCOMS~1.EXE-40409389.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:42 ---A- C:\Windows\Prefetch\PRINTISOLATIONHOST.EXE-3DD89C8E.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:42 ---A- C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:44 ---A- C:\Windows\Prefetch\PMMDATAMGR.EXE-BD59C7AD.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:46 ---A- C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-48D3DA00.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:46 ---A- C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:53 ---A- C:\Windows\Prefetch\AUPDATE.EXE-A74E14B9.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:43:54 ---A- C:\Windows\Prefetch\GOOGLEUPDATE.EXE-0E1E7B82.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:44:27 ---A- C:\Windows\Prefetch\AgCx_SC1.db

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:46:21 ---A- C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:47:58 ---A- C:\Windows\Prefetch\IEXPLORE.EXE-A033F7A0.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:49:54 ---A- C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2440621619-120164552-3589750527-1001.db

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:49:54 ---A- C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2440621619-120164552-3589750527-1001.db

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:53:53 ---A- C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:53:59 ---A- C:\Windows\Prefetch\DLLHOST.EXE-4B6CB38A.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:54:13 ---A- C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:54:23 ---A- C:\Windows\Prefetch\MPCMDRUN.EXE-2C9109F9.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:55:18 ---A- C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:55:18 ---A- C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:55:38 ---A- C:\Windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:58:53 ---A- C:\Windows\Prefetch\SVCHOST.EXE-6E1A6101.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 14:59:07 ---A- C:\Windows\Prefetch\WERFAULT.EXE-661188F3.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 23:35:32 ---A- C:\Windows\Prefetch\CSCRIPT.EXE-FCD9ABA9.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 23:36:42 ---A- C:\Windows\Prefetch\ALU.EXE-1C41B4D0.pf

 

 

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL

 

 

---\\ MountPoints2 Shell Key (MPSK) (O51)

O51 - MPSK:{9a135e2b-5853-11db-9c94-806e6f6e6963}\Shell\AutoRun\command. (.Autodesk, Inc. - Autodesk component.) -- E:\Setup.exe

 

 

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.mjpg"="pvmjpg30.dll" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"pvmjpg30.dll"="PICVideo 3 M-JPEG VfW Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

 

 

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll

 

 

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

 

 

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=0

O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0

 

 

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.2F0683FD2DF1D92E891CACA14B45A8C1] - 27/06/2008 - 07:51:10 ---A- . (.Adobe Systems, Inc. - Adobe Drive File System Driver.) -- C:\Windows\system32\drivers\adfs.sys

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys

O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys

O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys

O58 - SDL:[MD5.C30B5FC0ADCDFBA7668E99BAF0CBF58E] - 09/04/2010 - 14:52:25 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys

O58 - SDL:[MD5.DE7CBA8A38AE0C404EB2ACD08D18AA3E] - 12/01/2010 - 10:20:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\fsbts.sys

O58 - SDL:[MD5.4CB76EAC6B8D42042D0B428919D4C5FA] - 28/10/2009 - 10:30:10 ---A- . (.F-Secure Corporation - F-Secure Internet Shield Driver.) -- C:\Windows\system32\drivers\fsdfw.sys

O58 - SDL:[MD5.1D0B98E013990F6C16A32DEC434673B3] - 28/10/2009 - 10:30:02 ---A- . (.F-Secure Corporation - F-Secure Email Interceptor.) -- C:\Windows\system32\drivers\fses.sys

O58 - SDL:[MD5.7BA83D73410F45B0BC43AA6C9C3CEECB] - 28/03/2007 - 20:12:18 ---A- . (.GEAR Software Inc. - CD/DVD Class Filter Driver.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys

O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys

O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys

O58 - SDL:[MD5.024DA28053D57E9E32BEE52600576BBB] - 24/09/2005 - 23:18:34 ---A- . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\Windows\system32\drivers\MarvinBus64.sys

O58 - SDL:[MD5.4A46FA98DE81FF55A7CFC0C26262CB33] - 30/03/2010 - 23:45:56 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys

O58 - SDL:[MD5.6FFECC25B39DC7652A0CEC0ADA9DB589] - 02/06/2009 - 12:15:30 ---A- . (.Egis Technology Inc. - PSD Filter Driver.) -- C:\Windows\system32\drivers\mwlPSDFilter.sys

O58 - SDL:[MD5.0BEFE32CA56D6EE89D58175725596A85] - 02/06/2009 - 12:15:30 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\mwlPSDNserv.sys

O58 - SDL:[MD5.D43BC633B8660463E446E28E14A51262] - 02/06/2009 - 12:15:30 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\mwlPSDVDisk.sys

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys

O58 - SDL:[MD5.64DDD0DEE976302F4BD93E5EFCC2F013] - 06/05/2009 - 00:46:08 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys

O58 - SDL:[MD5.CB599955CE2CE9694721562F9481CD84] - 26/06/2009 - 08:55:10 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys

O58 - SDL:[MD5.D7A2CD1D76E6CC996A0852D566AF2F73] - 14/07/2009 - 01:15:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 186.37.) -- C:\Windows\system32\drivers\nvlddmkm.sys

O58 - SDL:[MD5.A85B4F2EF3A7304A5399EF0526423040] - 10/06/2009 - 21:35:35 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvm62x64.sys

O58 - SDL:[MD5.956A1F47826514C1EA0C295FE13C7377] - 30/04/2009 - 06:06:58 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvmf6264.sys

O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys

O58 - SDL:[MD5.AFDE3015BB8D76E26BEC3B287C5443A0] - 24/04/2009 - 20:07:36 ---A- . (.NVIDIA Corporation - NVIDIA nForce SMU Microcontroller Driver.) -- C:\Windows\system32\drivers\nvsmu.sys

O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys

O58 - SDL:[MD5.7C7EEF51979658CE15BBC04F96A77D56] - 29/04/2009 - 12:09:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor64.sys

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys

O58 - SDL:[MD5.BC64B75E8E0A0B8982AB773483164E72] - 20/07/2009 - 11:52:38 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys

O58 - SDL:[MD5.13BA1A5D88F1A3336E6CADB2D9F3B851] - 12/11/2008 - 15:49:22 ---A- . (.StorageCraft - StorageCraft Volume Snap-Shot.) -- C:\Windows\system32\drivers\symsnap.sys

O58 - SDL:[MD5.2E22C1FD397A5A9FFEF55E9D1FC96C00] - 06/05/2009 - 00:46:08 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys

O58 - SDL:[MD5.9315350A1508F9ACCFD545FF65714CA3] - 28/03/2007 - 20:29:10 ---A- . (.Symantec Corporation - V2iMount.sys - Image Mounting Device Driver.) -- C:\Windows\system32\drivers\v2imount.sys

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys

O58 - SDL:[MD5.887EC7AC51BEF53A07AD588A316CAE3F] - 31/07/2007 - 17:22:16 ---A- . (.Symantec Corporation - VProEventMonitor.Sys - Event Monitoring driver.) -- C:\Windows\system32\drivers\vproeventmonitor.sys

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys

O58 - SDL:[MD5.6D7F09CD92A9FEF3A8EFCE66231FDD79] - 14/08/2008 - 07:57:42 ---A- . (.Adobe Systems, Inc. - Adobe Drive File System Driver.) -- C:\Windows\SysWOW64\drivers\adfs.sys

O58 - SDL:[MD5.DE7CBA8A38AE0C404EB2ACD08D18AA3E] - 11/01/2010 - 13:07:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\drivers\fsbts.sys

O58 - SDL:[MD5.75B8EF2A089127E8A3B38F46CC366D79] - 30/03/2010 - 23:46:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys

O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 20/11/2008 - 20:19:06 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\SysWOW64\drivers\pxhelp20.sys

O58 - SDL:[MD5.20ED5DBEE3FB56FA7A272BE2A0970E58] - 13/02/2009 - 11:49:30 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\SysWOW64\drivers\ssmdrv.sys

 

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 06/04/2010 - 00:05:12 ---A- C:\Users\All Users\FLEXnet\adskflex_00691b00_tsf.data_backup.001 [29572]

O61 - LFC:Last File Created 06/04/2010 - 00:05:12 --HA- C:\Users\All Users\FLEXnet\adskflex_00691b00_tsf.data [29572]

O61 - LFC:Last File Created 06/04/2010 - 00:05:20 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2010 - 64bit\enu\MAXENT_2010_en-US_adlm.log [17625]

O61 - LFC:Last File Created 06/04/2010 - 00:05:21 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2010 - 64bit\enu\3dsmax.ini [8919]

O61 - LFC:Last File Created 06/04/2010 - 00:07:40 ---A- C:\Users\All Users\Autodesk\Adlm\ProductInformation.pit [6376]

O61 - LFC:Last File Created 06/04/2010 - 00:15:26 ---A- C:\Users\All Users\Symantec\Norton Ghost\Logs\Norton Ghost.dbg.bak [1014564]

O61 - LFC:Last File Created 06/04/2010 - 00:15:30 ---A- C:\Users\All Users\Symantec\LiveUpdate\2010-04-05_Log.ALUSchedulerSvc.LiveUpdate [8015]

O61 - LFC:Last File Created 06/04/2010 - 07:42:30 ---A- C:\Users\regis\AppData\Local\Google\Toolbar History\thumbnails\00000007.png [10065]

O61 - LFC:Last File Created 06/04/2010 - 07:42:30 ---A- C:\Users\regis\AppData\Local\Google\Toolbar History\urls\00000007 [398]

O61 - LFC:Last File Created 06/04/2010 - 10:19:17 ---A- C:\Users\regis\AppData\Roaming\Google\Local Search History\google%2Eimages.w [770]

O61 - LFC:Last File Created 06/04/2010 - 16:11:55 ---A- C:\Users\regis\AppData\Roaming\Adobe\Acrobat\9.0\JavaScripts\glob.js [0]

O61 - LFC:Last File Created 06/04/2010 - 16:11:55 ---A- C:\Users\regis\AppData\Roaming\Adobe\Acrobat\9.0\JavaScripts\glob.settings.js [10]

O61 - LFC:Last File Created 06/04/2010 - 16:11:55 ---A- C:\Users\regis\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents [3072]

O61 - LFC:Last File Created 06/04/2010 - 16:11:55 ---A- C:\Users\regis\AppData\Roaming\Adobe\Acrobat\9.0\TMDocs.sav [36]

O61 - LFC:Last File Created 06/04/2010 - 16:11:55 ---A- C:\Users\regis\AppData\Roaming\Adobe\Acrobat\9.0\TMGrpPrm.sav [54]

O61 - LFC:Last File Created 06/04/2010 - 16:55:49 ---A- C:\Users\regis\AppData\Local\Google\Toolbar History\thumbnails\00000004.png [22804]

O61 - LFC:Last File Created 06/04/2010 - 16:55:49 ---A- C:\Users\regis\AppData\Local\Google\Toolbar History\urls\00000004 [380]

O61 - LFC:Last File Created 06/04/2010 - 17:00:23 ---A- C:\Users\regis\AppData\Local\Google\Toolbar History\thumbnails\00000002.png [20472]

O61 - LFC:Last File Created 06/04/2010 - 17:00:23 ---A- C:\Users\regis\AppData\Local\Google\Toolbar History\urls\00000002 [224]

O61 - LFC:Last File Created 06/04/2010 - 18:55:11 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Info\00000006.xml [3539]

O61 - LFC:Last File Created 06/04/2010 - 18:55:11 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Samples\00000006 [340612]

O61 - LFC:Last File Created 06/04/2010 - 21:33:43 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\scripts\QuadColor_Startup.ms [3898]

O61 - LFC:Last File Created 06/04/2010 - 21:34:51 ---A- C:\Users\regis\AppData\Roaming\Autodesk\WebServices\ws_CommCntr_20100406_0.log [3365]

O61 - LFC:Last File Created 06/04/2010 - 21:40:00 ---A- C:\Users\regis\Documents\3dsMax\autoback\MaxBack.bak [573440]

O61 - LFC:Last File Created 06/04/2010 - 21:45:01 ---A- C:\Users\regis\Documents\3dsMax\autoback\AutoBackup02.max [573440]

O61 - LFC:Last File Created 06/04/2010 - 21:50:01 ---A- C:\Users\regis\Documents\3dsMax\autoback\AutoBackup03.max [573440]

O61 - LFC:Last File Created 07/04/2010 - 07:31:20 ----- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\PROCESSLISTRELATED.DB [1331168]

O61 - LFC:Last File Created 07/04/2010 - 07:31:28 ----- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\PROCESSLIST.DB [25099784]

O61 - LFC:Last File Created 07/04/2010 - 09:00:10 ---A- C:\Users\regis\AppData\Local\Temp\~temp\hmbst27\lsass.exe [248320]

O61 - LFC:Last File Created 07/04/2010 - 09:17:28 ---A- C:\Users\regis\Downloads\mbam-setup.exe [5918776]

O61 - LFC:Last File Created 07/04/2010 - 09:19:23 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\ignore.dat [0]

O61 - LFC:Last File Created 07/04/2010 - 10:12:35 ---A- C:\Users\regis\AppData\Local\Google\Toolbar Cache\6.4.1321.1732\fr\translate_languages.json.content [1481]

O61 - LFC:Last File Created 07/04/2010 - 10:32:23 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-07 (11-32-23).txt [6264]

O61 - LFC:Last File Created 07/04/2010 - 10:32:48 ---A- C:\Users\All Users\Symantec\Norton Ghost\Settings.ini [875]

O61 - LFC:Last File Created 07/04/2010 - 11:08:36 ---A- C:\Users\regis\AppData\Roaming\Autodesk\3DSMAX\11\ENU64\11.0.0.57\MC3\Log\MC3Log [1180]

O61 - LFC:Last File Created 07/04/2010 - 11:08:52 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\dxdds.cfg [12]

O61 - LFC:Last File Created 07/04/2010 - 11:08:54 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\UI\MaxBackupUI.cui [18126]

O61 - LFC:Last File Created 07/04/2010 - 11:59:13 ---A- C:\Users\regis\AppData\Local\Temp\~temp\twpst10\services.exe [217600]

O61 - LFC:Last File Created 07/04/2010 - 13:08:36 ---A- C:\Users\regis\Downloads\formation_video_emob_b765f30f.zip [131750387]

O61 - LFC:Last File Created 07/04/2010 - 13:14:15 ---A- C:\Users\regis\AppData\Local\Diagnostics\460911090\2010040712.000\126A7F90-C936-4512-B023-F384BE8FA0EE.Diagnose.0.etl [131072]

O61 - LFC:Last File Created 07/04/2010 - 13:14:17 ---A- C:\Users\regis\AppData\Local\Diagnostics\460911090\2010040712.000\NetworkConfiguration.cab [1503]

O61 - LFC:Last File Created 07/04/2010 - 13:14:26 ---A- C:\Users\regis\AppData\Local\Diagnostics\460911090\2010040712.000\NetworkDiagnostics.0.debugreport.xml [76761]

O61 - LFC:Last File Created 07/04/2010 - 13:14:26 ---A- C:\Users\regis\AppData\Local\Diagnostics\460911090\2010040712.000\results.xsl [49097]

O61 - LFC:Last File Created 07/04/2010 - 13:14:32 ---A- C:\Users\regis\AppData\Local\Diagnostics\460911090\2010040712.000\NetworkDiagnostics.1.debugreport.xml [70921]

O61 - LFC:Last File Created 07/04/2010 - 13:14:33 ---A- C:\Users\regis\AppData\Local\Diagnostics\460911090\2010040712.000\ResultReport.xml [38935]

O61 - LFC:Last File Created 07/04/2010 - 13:14:33 ---A- C:\Users\regis\AppData\Local\Diagnostics\460911090\2010040712.000\results.xml [256]

O61 - LFC:Last File Created 07/04/2010 - 13:14:33 ---A- C:\Users\regis\AppData\Local\Diagnostics\460911090\latest.cab [27323]

O61 - LFC:Last File Created 07/04/2010 - 13:34:44 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\mentalray_max.ini [207]

O61 - LFC:Last File Created 07/04/2010 - 13:36:43 ---A- C:\Users\regis\Documents\3dsMax\autoback\AutoBackup01.max [573440]

O61 - LFC:Last File Created 07/04/2010 - 14:50:41 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.68266 [82]

O61 - LFC:Last File Created 07/04/2010 - 14:50:41 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.93261 [167]

O61 - LFC:Last File Created 07/04/2010 - 14:50:41 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.68266 [350253]

O61 - LFC:Last File Created 07/04/2010 - 14:50:42 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.32354 [69]

O61 - LFC:Last File Created 07/04/2010 - 14:50:42 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.52237 [89]

O61 - LFC:Last File Created 07/04/2010 - 14:50:42 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.82031 [167]

O61 - LFC:Last File Created 07/04/2010 - 14:50:42 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.19574 [183]

O61 - LFC:Last File Created 07/04/2010 - 14:50:42 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.34390 [187]

O61 - LFC:Last File Created 07/04/2010 - 14:50:42 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.32354 [99840]

O61 - LFC:Last File Created 07/04/2010 - 14:50:42 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.52237 [3856]

O61 - LFC:Last File Created 07/04/2010 - 14:50:42 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.82031 [380]

O61 - LFC:Last File Created 07/04/2010 - 14:50:43 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-07 (15-50-43).txt [1926]

O61 - LFC:Last File Created 07/04/2010 - 14:50:59 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\15447655 [585]

O61 - LFC:Last File Created 07/04/2010 - 15:09:04 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\Infocenter\XmlFiles\InfoCenter.log [4128]

O61 - LFC:Last File Created 07/04/2010 - 16:40:26 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\MXS_SciTE.recent [0]

O61 - LFC:Last File Created 07/04/2010 - 16:40:26 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\UI\MaxStartUI.bpr [8528]

O61 - LFC:Last File Created 07/04/2010 - 16:40:26 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\maxscrpt.dsk [120]

O61 - LFC:Last File Created 07/04/2010 - 16:40:26 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\BIPED.INI [1467]

O61 - LFC:Last File Created 07/04/2010 - 16:40:26 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\DXManager.ini [32]

O61 - LFC:Last File Created 07/04/2010 - 16:40:27 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\Network\Max.log [159354]

O61 - LFC:Last File Created 07/04/2010 - 16:40:27 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\UI\MaxStartUI.cui [18126]

O61 - LFC:Last File Created 07/04/2010 - 16:40:27 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\UI\MaxStartUI.mnu [136706]

O61 - LFC:Last File Created 07/04/2010 - 16:40:30 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\ATSPrompts.xml [3821]

O61 - LFC:Last File Created 07/04/2010 - 16:40:30 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\MXSDebugger.ini [445]

O61 - LFC:Last File Created 07/04/2010 - 16:40:30 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\MapMatCol_RCMenu.cfg [44]

O61 - LFC:Last File Created 07/04/2010 - 16:40:34 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\3dsmax.ini [10049]

O61 - LFC:Last File Created 07/04/2010 - 16:40:34 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\defaults\MAX\CurrentDefaults.ini [9482]

O61 - LFC:Last File Created 07/04/2010 - 16:40:39 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\openexr.ini [1620]

O61 - LFC:Last File Created 07/04/2010 - 16:40:39 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\openexr_ini_help.txt [5188]

O61 - LFC:Last File Created 07/04/2010 - 16:40:43 ---A- C:\Users\regis\AppData\Local\Autodesk\3dsMax\2009 - 64bit\enu\plugcfg\Infocenter\XmlFiles\Support\infocenter.xml [2229]

O61 - LFC:Last File Created 07/04/2010 - 16:40:45 ---A- C:\Users\All Users\Autodesk\MC3\ProdInd_UserInd.mc3 [1352]

O61 - LFC:Last File Created 07/04/2010 - 16:40:56 ---A- C:\Users\regis\AppData\Roaming\Autodesk\WebServices\ws_CommCntr_20100407_0.log [1639]

O61 - LFC:Last File Created 07/04/2010 - 16:43:51 ---A- C:\Users\regis\Downloads\drweb-cureit.exe [36678744]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.30362 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.39992 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.66820 [82]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.71831 [97]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.87173 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.92030 [89]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.63463 [167]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.83709 [167]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.30362 [8]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.39992 [8]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.66820 [350253]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.71831 [83]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.87173 [83]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.92030 [2214]

O61 - LFC:Last File Created 07/04/2010 - 17:07:14 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.63463 [380]

O61 - LFC:Last File Created 07/04/2010 - 17:07:15 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-07 (18-07-15).txt [1875]

O61 - LFC:Last File Created 07/04/2010 - 17:17:48 ---A- C:\Users\regis\AppData\Local\Google\Toolbar\metrics.xml [15306]

O61 - LFC:Last File Created 07/04/2010 - 17:17:49 ---A- C:\Users\regis\DoctorWeb\CureIt.log [3223160]

O61 - LFC:Last File Created 07/04/2010 - 17:19:10 ---A- C:\Users\regis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt01.sqm [296]

O61 - LFC:Last File Created 07/04/2010 - 17:37:18 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.60870 [236]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.14513 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.27579 [101]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.31701 [76]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.34297 [97]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.37679 [89]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.58748 [89]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.75171 [77]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.79577 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.60870 [168]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.49547 [181]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.53321 [189]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.55203 [168]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.79355 [167]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.82226 [194]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.94885 [190]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.14513 [8]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.27579 [99840]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.31701 [99840]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.34297 [83]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.37679 [99840]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.58748 [157]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.75171 [350253]

O61 - LFC:Last File Created 07/04/2010 - 17:37:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.79577 [83]

O61 - LFC:Last File Created 07/04/2010 - 17:37:20 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-07 (18-37-20).txt [3118]

O61 - LFC:Last File Created 07/04/2010 - 17:40:35 ---A- C:\Users\regis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt02.sqm [296]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.11666 [86]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.27609 [97]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.28808 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.29356 [94]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.34956 [74]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.52030 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.54235 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.68000 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.82269 [77]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.83165 [91]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.97856 [168]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.19978 [189]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.22925 [208]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.37057 [186]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.40513 [194]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.59451 [167]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.75355 [190]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.76079 [213]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.76398 [204]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.78843 [168]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.11666 [99840]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.27609 [83]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.28808 [83]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.29356 [99840]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.34956 [99840]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.52030 [99840]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.54235 [99840]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.68000 [8]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.82269 [350253]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.83165 [8]

O61 - LFC:Last File Created 07/04/2010 - 17:45:19 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.97856 [236]

O61 - LFC:Last File Created 07/04/2010 - 17:45:20 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-07 (18-45-20).txt [3650]

O61 - LFC:Last File Created 07/04/2010 - 19:04:15 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Info\00000007.xml [1367]

O61 - LFC:Last File Created 07/04/2010 - 19:04:15 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Samples\00000007 [284838]

O61 - LFC:Last File Created 07/04/2010 - 19:07:13 ---A- C:\Users\All Users\f-secure\logs\FSAV\Users\removal.log [11425]

O61 - LFC:Last File Created 07/04/2010 - 19:10:16 ---A- C:\Users\regis\Downloads\SUPERAntiSpyware.exe [7899168]

O61 - LFC:Last File Created 07/04/2010 - 19:12:49 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\PROCESSLIST.ZIP [4828960]

O61 - LFC:Last File Created 07/04/2010 - 19:12:53 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL [117760]

O61 - LFC:Last File Created 07/04/2010 - 19:12:57 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll [52224]

O61 - LFC:Last File Created 07/04/2010 - 19:13:03 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\PROCESSLIST.BIN [12368434]

O61 - LFC:Last File Created 07/04/2010 - 19:13:08 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\PROCESSLISTRELATED.ZIP [171695]

O61 - LFC:Last File Created 07/04/2010 - 19:50:23 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\Logs\SUPERAntiSpyware Scan Log - 04-07-2010 - 20-50-23.log [20717]

O61 - LFC:Last File Created 07/04/2010 - 19:57:21 ---A- C:\Users\regis\Downloads\HijackThisInstaller.exe [812344]

O61 - LFC:Last File Created 07/04/2010 - 19:59:39 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\Quarantine\Quarantine - 04-07-2010 - 20-59-39.DSC [35]

O61 - LFC:Last File Created 07/04/2010 - 19:59:42 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\Quarantine\Quarantine - 04-07-2010 - 20-59-39.SBU [1046254]

O61 - LFC:Last File Created 07/04/2010 - 20:39:03 ---A- C:\Users\regis\Downloads\formation_video_emob_1a9a356b.zip [338322704]

O61 - LFC:Last File Created 07/04/2010 - 20:57:31 ---A- C:\Users\regis\AppData\Local\Temp\~temp\hmml46\csrss.exe [247808]

O61 - LFC:Last File Created 07/04/2010 - 21:25:34 ---A- C:\Users\regis\AppData\Local\Temp\~temp\aiunml221\smss.exe [240640]

O61 - LFC:Last File Created 07/04/2010 - 22:58:02 ---A- C:\Users\regis\Downloads\spybot-search-destroy_detection_updates_30_mars_2010_francais_10965.exe [6858184]

O61 - LFC:Last File Created 07/04/2010 - 23:05:16 ---A- C:\Users\All Users\Symantec\LiveUpdate\2010-04-06_Log.ALUSchedulerSvc.LiveUpdate [5702]

O61 - LFC:Last File Created 08/04/2010 - 00:00:42 ---A- C:\Users\regis\AppData\Local\Temp\zlib1.dll [59904]

O61 - LFC:Last File Created 08/04/2010 - 03:19:08 ---A- C:\Users\All Users\Symantec\LiveUpdate\2010-04-07_Log.ALUSchedulerSvc.LiveUpdate [11598]

O61 - LFC:Last File Created 08/04/2010 - 04:47:28 ---A- C:\Users\All Users\f-secure\Daas2\cert\fsc (revoke hq).crl [1211]

O61 - LFC:Last File Created 08/04/2010 - 05:13:12 ---A- C:\Users\regis\AppData\Local\Temp\EPSLog.txt [0]

O61 - LFC:Last File Created 08/04/2010 - 05:14:21 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-4-7-2010( 20-11-43 ).SDB [782993]

O61 - LFC:Last File Created 08/04/2010 - 05:14:30 ---A- C:\Users\regis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt03.sqm [200]

O61 - LFC:Last File Created 08/04/2010 - 08:18:38 ---A- C:\Users\regis\AppData\Roaming\Microsoft\HTML Help\hh.dat [9124]

O61 - LFC:Last File Created 08/04/2010 - 08:21:04 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-4-8-2010( 8-44-13 ).SDB [48436]

O61 - LFC:Last File Created 08/04/2010 - 08:22:22 ---A- C:\Users\regis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt04.sqm [296]

O61 - LFC:Last File Created 08/04/2010 - 08:50:35 ---A- C:\Users\regis\AppData\Local\Temp\~DF5D8BC3265F0C7A15.TMP [114688]

O61 - LFC:Last File Created 08/04/2010 - 08:59:11 ---A- C:\Users\regis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt05.sqm [200]

O61 - LFC:Last File Created 08/04/2010 - 08:59:11 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-4-8-2010( 9-22-16 ).SDB [48436]

O61 - LFC:Last File Created 08/04/2010 - 09:36:08 ---A- C:\Users\regis\Downloads\avira_antivir_personal_free.exe [30143928]

O61 - LFC:Last File Created 08/04/2010 - 09:52:27 ---A- C:\Users\regis\AppData\Local\Temp\dd_vcredistMSI457C.txt [366018]

O61 - LFC:Last File Created 08/04/2010 - 09:52:27 ---A- C:\Users\regis\AppData\Local\Temp\dd_vcredistUI457C.txt [11242]

O61 - LFC:Last File Created 08/04/2010 - 10:13:28 ---A- C:\Users\regis\Downloads\ccsetup230.exe [3376656]

O61 - LFC:Last File Created 08/04/2010 - 11:15:33 ---A- C:\Users\regis\AppData\Local\Google\Toolbar History\thumbnails\0000001C.png [8484]

O61 - LFC:Last File Created 08/04/2010 - 11:15:33 ---A- C:\Users\regis\AppData\Local\Google\Toolbar History\urls\0000001C [356]

O61 - LFC:Last File Created 08/04/2010 - 12:23:22 ---A- C:\Users\regis\Documents\mbam-log-2010-04-08 (13-23-07).txt [2298]

O61 - LFC:Last File Created 08/04/2010 - 12:23:33 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.95509 [77]

O61 - LFC:Last File Created 08/04/2010 - 12:23:33 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.23998 [168]

O61 - LFC:Last File Created 08/04/2010 - 12:23:33 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.22507 [167]

O61 - LFC:Last File Created 08/04/2010 - 12:23:33 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.33587 [189]

O61 - LFC:Last File Created 08/04/2010 - 12:23:33 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.47841 [190]

O61 - LFC:Last File Created 08/04/2010 - 12:23:33 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.63014 [168]

O61 - LFC:Last File Created 08/04/2010 - 12:23:33 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.95509 [350253]

O61 - LFC:Last File Created 08/04/2010 - 12:23:33 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.23998 [236]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.31176 [97]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.41451 [91]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.43368 [89]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.44947 [91]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.57108 [91]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.68486 [167]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.31176 [83]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.41451 [83]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.43368 [23108]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.44947 [8]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.57108 [8]

O61 - LFC:Last File Created 08/04/2010 - 12:23:34 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.68486 [380]

O61 - LFC:Last File Created 08/04/2010 - 12:23:36 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-08 (13-23-36).txt [2558]

O61 - LFC:Last File Created 08/04/2010 - 12:24:49 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-4-8-2010( 10-0-30 ).SDB [48437]

O61 - LFC:Last File Created 08/04/2010 - 12:24:52 ---A- C:\Users\regis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt06.sqm [284]

O61 - LFC:Last File Created 08/04/2010 - 12:40:56 ---A- C:\Users\regis\AppData\Local\Temp\3487.tmp\nircmd.rkexe [31232]

O61 - LFC:Last File Created 08/04/2010 - 12:40:56 ---A- C:\Users\regis\AppData\Local\Temp\3487.tmp\nircmdc.rkexe [30720]

O61 - LFC:Last File Created 08/04/2010 - 12:40:56 ---A- C:\Users\regis\AppData\Local\Temp\3487.tmp\rkill.bat [2876]

O61 - LFC:Last File Created 08/04/2010 - 12:40:57 ---A- C:\Users\regis\AppData\Local\Temp\3487.tmp\nircmd.chm [38015]

O61 - LFC:Last File Created 08/04/2010 - 12:40:57 ---A- C:\Users\regis\AppData\Local\Temp\3487.tmp\pev.rkexe [236544]

O61 - LFC:Last File Created 08/04/2010 - 12:40:57 ---A- C:\Users\regis\AppData\Local\Temp\3487.tmp\proc.dat [9954]

O61 - LFC:Last File Created 08/04/2010 - 12:40:57 ---A- C:\Users\regis\AppData\Local\Temp\3487.tmp\rkill.reg [2317]

O61 - LFC:Last File Created 08/04/2010 - 12:40:57 ---A- C:\Users\regis\AppData\Local\Temp\3487.tmp\sed.rkexe [49152]

O61 - LFC:Last File Created 08/04/2010 - 12:41:09 ---A- C:\Users\regis\AppData\Local\Temp\rks1.log [2820]

O61 - LFC:Last File Created 08/04/2010 - 12:41:15 ---A- C:\Users\regis\AppData\Local\Temp\rkill.log [5]

O61 - LFC:Last File Created 08/04/2010 - 12:46:42 ---A- C:\Users\regis\Downloads\82650-MB.exe [5918776]

O61 - LFC:Last File Created 08/04/2010 - 12:47:59 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref [4583119]

O61 - LFC:Last File Created 08/04/2010 - 12:48:00 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\local.dat [87]

O61 - LFC:Last File Created 08/04/2010 - 12:50:30 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\config.dat [740]

O61 - LFC:Last File Created 08/04/2010 - 12:50:30 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\link.txt [126]

O61 - LFC:Last File Created 08/04/2010 - 12:50:30 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\news.txt [60]

O61 - LFC:Last File Created 08/04/2010 - 14:37:59 ---A- C:\Users\regis\Documents\mbam-log-2010-04-08 (15-37-43).txt [2134]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.17061 [77]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.26252 [91]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.36187 [91]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.81613 [89]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.56303 [167]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.62184 [168]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.56105 [168]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.60235 [190]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.60628 [167]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.66446 [189]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.17061 [350253]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.26252 [8]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.36187 [8]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.81613 [92]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.56303 [380]

O61 - LFC:Last File Created 08/04/2010 - 14:38:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.62184 [236]

O61 - LFC:Last File Created 08/04/2010 - 14:38:08 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-08 (15-38-08).txt [2372]

O61 - LFC:Last File Created 08/04/2010 - 14:38:40 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\7994942 [842]

O61 - LFC:Last File Created 08/04/2010 - 15:40:08 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001 [59964]

O61 - LFC:Last File Created 08/04/2010 - 15:40:08 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0000\PfdRun.pfd [28672]

O61 - LFC:Last File Created 08/04/2010 - 15:40:08 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0000\~de90ed.tmp [575488]

O61 - LFC:Last File Created 08/04/2010 - 15:40:08 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0000\~df394b.tmp [697884]

O61 - LFC:Last File Created 08/04/2010 - 15:40:08 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0000\~efe2.tmp [0]

O61 - LFC:Last File Created 08/04/2010 - 15:40:18 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0001\Ky5s96SF.csa [1424]

O61 - LFC:Last File Created 08/04/2010 - 15:40:18 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0001\~de90ed.tmp [567296]

O61 - LFC:Last File Created 08/04/2010 - 15:40:18 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0001\~df394b.tmp [697884]

O61 - LFC:Last File Created 08/04/2010 - 15:40:18 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0001\~efe2.tmp [0]

O61 - LFC:Last File Created 08/04/2010 - 15:40:19 ---A- C:\Users\regis\AppData\Local\Temp\AdskCleanup.0001.dir.0001\PfdRun.pfd [28672]

O61 - LFC:Last File Created 08/04/2010 - 15:40:26 ---A- C:\Users\regis\AppData\Local\Temp\ACIS.ac$ [0]

O61 - LFC:Last File Created 08/04/2010 - 15:41:01 ---A- C:\Users\regis\AppData\Local\Temp\events.log [117]

O61 - LFC:Last File Created 08/04/2010 - 15:41:01 ---A- C:\Users\regis\AppData\Local\Temp\prof.log [117]

O61 - LFC:Last File Created 08/04/2010 - 15:45:27 ---A- C:\Users\regis\Downloads\formation_video_emob_e7b57fd2.zip [296338008]

O61 - LFC:Last File Created 08/04/2010 - 18:45:07 ---A- C:\Users\regis\Documents\Fichiers Outlook\Outlook.pst [271360]

O61 - LFC:Last File Created 08/04/2010 - 20:05:19 ---A- C:\Users\All Users\Symantec\LiveUpdate\10.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 08/04/2010 - 20:05:19 R--A- C:\Users\All Users\Symantec\LiveUpdate\10.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 08/04/2010 - 20:05:25 ---A- C:\Users\All Users\Symantec\LiveUpdate\9.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 08/04/2010 - 20:05:25 R--A- C:\Users\All Users\Symantec\LiveUpdate\9.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.86392 [77]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.81667 [168]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.11959 [168]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.53784 [190]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.57087 [189]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.91526 [167]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.86392 [350253]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.47878 [380]

O61 - LFC:Last File Created 08/04/2010 - 20:12:01 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.81667 [236]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.12445 [97]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.24789 [89]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.53462 [91]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.72644 [91]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.84341 [91]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.47878 [167]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.12445 [83]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.24789 [2730]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.53462 [8]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.72644 [83]

O61 - LFC:Last File Created 08/04/2010 - 20:12:02 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.84341 [8]

O61 - LFC:Last File Created 08/04/2010 - 20:12:03 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-08 (21-12-03).txt [2481]

O61 - LFC:Last File Created 08/04/2010 - 20:12:09 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\28003957 [950]

O61 - LFC:Last File Created 08/04/2010 - 23:02:50 ---A- C:\Users\regis\Downloads\spybot-search-destroy_spybot_-_search_destroy_1.6.2.46_francais_10965.exe [16409960]

O61 - LFC:Last File Created 09/04/2010 - 03:09:04 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR3.23517 [236]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.21715 [91]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.48991 [91]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.59139 [97]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.70565 [77]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.83224 [91]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP1.93444 [89]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP3.23517 [168]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.29568 [168]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.45199 [189]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.55123 [190]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\BACKUP4.87618 [167]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.21715 [83]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.48991 [8]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.59139 [83]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.70565 [350253]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.83224 [8]

O61 - LFC:Last File Created 09/04/2010 - 03:09:05 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.93444 [247]

O61 - LFC:Last File Created 09/04/2010 - 03:09:06 ---A- C:\Users\regis\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-04-09 (04-09-06).txt [2313]

O61 - LFC:Last File Created 09/04/2010 - 03:09:23 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-4-8-2010( 13-26-38 ).SDB [48436]

O61 - LFC:Last File Created 09/04/2010 - 03:09:26 ---A- C:\Users\regis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt07.sqm [284]

O61 - LFC:Last File Created 09/04/2010 - 03:09:27 --HA- C:\Users\regis\AppData\Local\IconCache.db [6291456]

O61 - LFC:Last File Created 09/04/2010 - 03:09:36 ---A- C:\Users\All Users\Symantec\Norton Ghost\Norton Ghost.notify.xml [1560]

O61 - LFC:Last File Created 09/04/2010 - 03:10:32 ---A- C:\Users\All Users\Symantec\Norton Ghost\Logs\Norton Ghost.log.txt [79358]

O61 - LFC:Last File Created 09/04/2010 - 03:10:45 R--A- C:\Users\All Users\BackupManager\Logs\SyncJob.log [19186]

O61 - LFC:Last File Created 09/04/2010 - 03:10:50 ---A- C:\Users\All Users\NVIDIA\NvApps.xml [236466]

O61 - LFC:Last File Created 09/04/2010 - 03:10:59 ---A- C:\Users\regis\AppData\Roaming\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-4-9-2010( 4-10-59 ).SDB [48550]

O61 - LFC:Last File Created 09/04/2010 - 03:11:05 ---A- C:\Users\All Users\Symantec\Norton Online Backup\NobuActivation.ini [867]

O61 - LFC:Last File Created 09/04/2010 - 03:11:05 ---A- C:\Users\regis\AppData\Local\Temp\boost_interprocess\INI_FILE_MUTEX [20]

O61 - LFC:Last File Created 09/04/2010 - 03:11:08 ---A- C:\Users\regis\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]

O61 - LFC:Last File Created 09/04/2010 - 03:11:13 ---A- C:\Users\All Users\Symantec\Norton Ghost\Logs\VProTray.dbg [1039]

O61 - LFC:Last File Created 09/04/2010 - 03:11:21 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Index\0000.idx [256]

O61 - LFC:Last File Created 09/04/2010 - 03:11:21 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Index\0001.idx [256]

O61 - LFC:Last File Created 09/04/2010 - 03:11:21 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Index\0002.idx [256]

O61 - LFC:Last File Created 09/04/2010 - 03:11:21 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Index\0003.idx [256]

O61 - LFC:Last File Created 09/04/2010 - 03:11:21 ---A- C:\Users\All Users\f-secure\Quarantine\Repository\Index\0004.idx [256]

O61 - LFC:Last File Created 09/04/2010 - 03:11:21 ---A- C:\Users\regis\AppData\Local\Temp\ArmUI.ini [142194]

O61 - LFC:Last File Created 09/04/2010 - 03:11:24 ---A- C:\Users\regis\AppData\Local\Temp\MyWinLocker\FileList.txt [56]

O61 - LFC:Last File Created 09/04/2010 - 03:11:26 ---A- C:\Users\regis\AppData\Local\Temp\MSN.abc [83]

O61 - LFC:Last File Created 09/04/2010 - 03:11:26 ---A- C:\Users\regis\AppData\Local\Temp\xxxyyyzzz.dat [83]

O61 - LFC:Last File Created 09/04/2010 - 03:11:27 ---A- C:\Users\All Users\Adobe\Reader\9.3\ARM\Reader9Manifest.msi [25600]

O61 - LFC:Last File Created 09/04/2010 - 03:11:33 ---A- C:\Users\regis\AppData\Local\Temp\AdobeARM.log [5754]

O61 - LFC:Last File Created 09/04/2010 - 03:11:52 ---A- C:\Users\regis\AppData\Roaming\Adobe\AIR\ELS\main.9117C8F759FC2C919CE3D974020C04CCD03ADBFF.1\PrivateEncryptedDatai [24152]

O61 - LFC:Last File Created 09/04/2010 - 03:13:17 ---A- C:\Users\regis\AppData\Roaming\logs.dat [122]

O61 - LFC:Last File Created 09/04/2010 - 03:15:18 ---A- C:\Users\regis\AppData\Local\Temp\IEAUTO.abc [1743]

O61 - LFC:Last File Created 09/04/2010 - 03:15:31 ---A- C:\Users\All Users\Symantec\LiveUpdate\5.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 03:15:31 R--A- C:\Users\All Users\Symantec\LiveUpdate\5.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 09/04/2010 - 03:15:32 ---A- C:\Users\All Users\Symantec\LiveUpdate\4.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 03:15:32 R--A- C:\Users\All Users\Symantec\LiveUpdate\4.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 09/04/2010 - 03:15:33 ---A- C:\Users\All Users\Symantec\LiveUpdate\3.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 03:15:33 R--A- C:\Users\All Users\Symantec\LiveUpdate\3.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 09/04/2010 - 14:43:23 ---A- C:\Users\All Users\Acer\Acer Updater\_UpdaterService_LOG.txt [392684]

O61 - LFC:Last File Created 09/04/2010 - 14:43:24 ---A- C:\Users\All Users\f-secure\logs\FSMA\fsma.log [96527]

O61 - LFC:Last File Created 09/04/2010 - 14:43:42 ---A- C:\Users\All Users\Symantec\LiveUpdate\2.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 14:43:42 R--A- C:\Users\All Users\Symantec\LiveUpdate\2.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 09/04/2010 - 14:43:47 ---A- C:\Users\All Users\Symantec\LiveUpdate\1.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 14:43:47 R--A- C:\Users\All Users\Symantec\LiveUpdate\1.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 09/04/2010 - 14:44:02 ---A- C:\Users\All Users\Symantec\LiveUpdate\Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 14:44:02 R---- C:\Users\All Users\Symantec\LiveUpdate\Product.Inventory.LastGood.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 14:44:02 R---- C:\Users\All Users\Symantec\LiveUpdate\Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 09/04/2010 - 14:44:14 ---A- C:\Users\All Users\Symantec\LiveUpdate\Log.LiveUpdate [3274654]

O61 - LFC:Last File Created 09/04/2010 - 14:44:18 ---A- C:\Users\All Users\Symantec\LiveUpdate\2010-04-09_Log.ALUSchedulerSvc.LiveUpdate [4487]

O61 - LFC:Last File Created 09/04/2010 - 14:46:24 ---A- C:\Users\regis\AppData\Roaming\Google\Local Search History\google%2Eweb.w [23640]

O61 - LFC:Last File Created 09/04/2010 - 14:49:39 ---A- C:\Users\regis\Downloads\ZHPDiag_1.25.13.exe [1429068]

O61 - LFC:Last File Created 09/04/2010 - 14:58:23 ---A- C:\Users\All Users\Symantec\Norton Ghost\Logs\Norton Ghost.dbg [135115]

O61 - LFC:Last File Created 09/04/2010 - 14:59:34 ---A- C:\Users\All Users\f-secure\logs\FSFW\action.log [3592162]

O61 - LFC:Last File Created 09/04/2010 - 15:00:28 ---A- C:\Users\regis\AppData\Local\Temp\UuU.uUu [8]

O61 - LFC:Last File Created 09/04/2010 - 15:00:30 ---A- C:\Users\regis\AppData\Local\Temp\XxX.xXx [8]

O61 - LFC:Last File Created 09/04/2010 - 23:36:39 ---A- C:\Users\All Users\Acer\Acer Updater\_UpdaterService_CFG.ini [94]

O61 - LFC:Last File Created 09/04/2010 - 23:36:57 ---A- C:\Users\All Users\Acer\Acer Updater\Info\ALU_Status_7.txt [0]

O61 - LFC:Last File Created 09/04/2010 - 23:36:57 ---A- C:\Users\All Users\Acer\Acer Updater\ServerInfo.xml [9861]

O61 - LFC:Last File Created 09/04/2010 - 23:36:57 ---A- C:\Users\All Users\Acer\Acer Updater\ServerInfo.xml_debug.xml [9861]

O61 - LFC:Last File Created 09/04/2010 - 23:36:57 ---A- C:\Users\All Users\Acer\Acer Updater\ServerInfo.xml_ori.xml [9770]

O61 - LFC:Last File Created 09/04/2010 - 23:47:09 ---A- C:\Users\All Users\Symantec\LiveUpdate\2010-04-08_Log.ALUSchedulerSvc.LiveUpdate [12638]

O61 - LFC:Last File Created 09/04/2010 - 23:47:09 ---A- C:\Users\All Users\Symantec\LiveUpdate\8.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 23:47:09 R--A- C:\Users\All Users\Symantec\LiveUpdate\8.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 09/04/2010 - 23:47:10 ---A- C:\Users\All Users\Symantec\LiveUpdate\7.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 23:47:10 R--A- C:\Users\All Users\Symantec\LiveUpdate\7.Settings.LiveUpdate [11170]

O61 - LFC:Last File Created 09/04/2010 - 23:47:12 ---A- C:\Users\All Users\Symantec\LiveUpdate\6.Product.Inventory.LiveUpdate [808]

O61 - LFC:Last File Created 09/04/2010 - 23:47:12 R--A- C:\Users\All Users\Symantec\LiveUpdate\6.Settings.LiveUpdate [11170]

 

 

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)

O63 - Logiciel: ZHPDiag 1.25 - (.Nicolas Coolman.)

 

 

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: CurCS - C:\Windows\system32\Drivers\ADFS.sys - adfs (adfs) .(.Adobe Systems, Inc. - Adobe Drive File System Driver.) - LEGACY_ADFS

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Pas de propriétaire - Pas de description.) - LEGACY_AFD

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\avgntflt.sys - avgntflt (avgntflt) .(.Pas de propriétaire - Pas de description.) - LEGACY_AVGNTFLT

O64 - Services: CurCS - Beep - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Pas de propriétaire - Pas de description.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\cng.sys - CNG (CNG) .(.Pas de propriétaire - Pas de description.) - LEGACY_CNG

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Pas de propriétaire - Pas de description.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Pas de propriétaire - Pas de description.) - LEGACY_DISCACHE

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Pas de propriétaire - Pas de description.) - LEGACY_DXGKRNL

O64 - Services: CurCS - C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\minifilter\fsgk.sys - F-Secure Gatekeeper (F-Secure Gatekeeper) .(.Pas de propriétaire - Pas de description.) - LEGACY_F-SECURE_GATEKEEPER

O64 - Services: CurCS - C:\Program Files (x86)\Orange\Antivirus Firewall\HIPS\drivers\fshs.sys - F-Secure HIPS Driver (F-Secure HIPS) .(.F-Secure Corporation - HIPS 64-bit kernel module.) - LEGACY_F-SECURE_HIPS

O64 - Services: CurCS - FAT12/16/32 File System Driver - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\drivers\fses.sys - F-Secure Email Scanning Driver (FSES) .(.Pas de propriétaire - Pas de description.) - LEGACY_FSES

O64 - Services: CurCS - C:\Windows\system32\drivers\fsdfw.sys - F-Secure Firewall Driver (FSFW) .(.Pas de propriétaire - Pas de description.) - LEGACY_FSFW

O64 - Services: CurCS - C:\Program Files (x86)\Orange\Antivirus Firewall\Anti-Virus\minifilter\fsvista.sys - F-Secure Vista Support Driver (fsvista) .(.Pas de propriétaire - Pas de description.) - LEGACY_FSVISTA

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Pas de propriétaire - Pas de description.) - LEGACY_FVEVOL

O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Pas de propriétaire - Pas de description.) - LEGACY_HWPOLICY

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECPKG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Pas de propriétaire - Pas de description.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Pas de propriétaire - Pas de description.) - LEGACY_LUAFV

O64 - Services: CurCS - C:\Windows\system32\Drivers\MFEAVFK.sys - McAfee Inc. mfeavfk (mfeavfk) .(.Pas de propriétaire - Pas de description.) - LEGACY_MFEAVFK

O64 - Services: CurCS - C:\Windows\system32\Drivers\MFEHIDK.sys - McAfee Inc. mfehidk (mfehidk) .(.Pas de propriétaire - Pas de description.) - LEGACY_MFEHIDK

O64 - Services: CurCS - C:\Windows\system32\Drivers\MFESMFK.sys - McAfee Inc. mfesmfk (mfesmfk) .(.Pas de propriétaire - Pas de description.) - LEGACY_MFESMFK

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\MPFP.sys - MPFP (MPFP) .(.Pas de propriétaire - Pas de description.) - LEGACY_MPFP

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\mwlPSDFilter.sys - mwlPSDFilter (mwlPSDFilter) .(.Pas de propriétaire - Pas de description.) - LEGACY_MWLPSDFILTER

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\mwlPSDNServ.sys - mwlPSDNServ (mwlPSDNServ) .(.Pas de propriétaire - Pas de description.) - LEGACY_MWLPSDNSERV

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys - mwlPSDVDisk (mwlPSDVDisk) .(.Pas de propriétaire - Pas de description.) - LEGACY_MWLPSDVDISK

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\system32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Pas de propriétaire - Pas de description.) - LEGACY_PCW

O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Pas de propriétaire - Pas de description.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Pas de propriétaire - Pas de description.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\system32\drivers\qwavedrv.sys (QWAVEdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_QWAVEDRV

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPREFMP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Pas de propriétaire - Pas de description.) - LEGACY_RSPNDR

O64 - Services: CurCS - Security Driver - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV

O64 - Services: CurCS - Security Processor Loader Driver - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\symsnap.sys - Symantec Volume Snap Shot Driver (symsnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMSNAP

O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Pas de propriétaire - Pas de description.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\v2imount.sys - Symantec V2i Mount Driver (v2imount) .(.Pas de propriétaire - Pas de description.) - LEGACY_V2IMOUNT

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Pas de propriétaire - Pas de description.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WFPLWF

O64 - Services: CurCS - C:\Windows\system32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WUDFPF

 

 

---\\ Observateur d'évènement d'application (OEA) (O66)

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\SysWOW64\explorer.exe

O66 - EventLog: ID=1000 (Application Error) - (.Pas de propriétaire - Pas de description.) -- C:\Windows\etc\services.exe

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Live OneCare safety scanner host.) -- C:\Program Files (x86)\windows live safety center\wlschost.EXE

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

---\\ Start Menu Internet (SMI) (O68)

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

 

 

---\\ Infection BT - BHO/Toolbar (Possible)

O42 - Logiciel: Ask.com Search Assistant 1.0.1 - (.Ask.com.)

 

 

 

End of the scan (1404 lines in 04mn 01s)

 

[reg62]

bonjour

depuis hier soir j'ai enormement de difficulte pour ouvrir une page internet et Avira Antivir me detecte dans le fichier "c:\windows\etc\services.exe"le virus"TR/VB.Inject.350253.DD " que dois je faire .

puis je faire un scan avec antivir pour le supprimer .

mais je prefere attendre vos conseils.

merci Cdlt

[pear]

Bonjour,

 

Télécharger sur le bureauOTM by OldTimer .

Double-clic sur OTM.exe pour le lancer.

Sous Vista,Clic droit sur le fichier ->Choisir Exécuter en tant qu' Administrateur

* Copiez /Collez les lignes ci dessous) en vert:

:Processes

:Files

C:\Windows\etc\services.exe

:Services

:Reg

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

" [HKLM]"=-

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"HKCU"=-

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run]

"Policies"=-

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]

"Policies"=-

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID {Y432E6HX-15J8-010C-0N6O-0640D84KEMPD}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {Y432E6HX-15J8-010C-0N6O-0640D84KEMPD}]

[-HKCU\Software\AskSearchAsst]

:Commands

[purity]

[emptytemp]

[Reboot]

Revenez dans OTM,

Clic droit sur la fenêtre "Paste Instructions for Items to be Moved" sous la barre jaune et choisir Coller(Paste).

* Click le bouton rouge Moveit!

* Fermez OTM

Votre Pc va redémarrer.

Rendez vous dans le dossier C:\_OTM\MovedFiles ,

ouvrez le dernier fichier .log

Copiez/collez en le contenu dans votre prochaine réponse

[reg62]

bonjour j'ai suivi vos instructions mais je n'ais pas de fichier .log.

mais voici le papport

cdlt All processes killed

========== PROCESSES ==========

========== FILES ==========

C:\Windows\etc\services.exe moved successfully.

========== SERVICES/DRIVERS ==========

========== REGISTRY ==========

Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\ [HKLM] not found.

Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\HKCU deleted successfully.

Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\Policies deleted successfully.

Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\\Policies deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID {Y432E6HX-15J8-010C-0N6O-0640D84KEMPD}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {Y432E6HX-15J8-010C-0N6O-0640D84KEMPD}\ not found.

Registry key HKEY_CURRENT_USER\Software\AskSearchAsst\ deleted successfully.

========== COMMANDS ==========

 

[EMPTYTEMP]

 

User: All Users

 

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

->Flash cache emptied: 41620 bytes

 

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: Public

 

User: regis

->Temp folder emptied: 64902381 bytes

->Temporary Internet Files folder emptied: 228780612 bytes

->Flash cache emptied: 13502428 bytes

 

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32 (64bit) .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 132475 bytes

%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50339 bytes

RecycleBin emptied: 0 bytes

 

Total Files Cleaned = 293,00 mb

 

 

OTM by OldTimer - Version 3.1.10.1 log created on 04102010_115726

 

Files moved on Reboot...

C:\Users\regis\AppData\Local\Temp\Google Toolbar\GoogleToolbarWelcome.log moved successfully.

C:\Users\regis\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

File C:\Users\regis\AppData\Local\Temp\~DF0276668F17F2BEB5.TMP not found!

File C:\Users\regis\AppData\Local\Temp\~DF13CA9640CE9E009A.TMP not found!

File C:\Users\regis\AppData\Local\Temp\~DF51FDFFF35CFAADEB.TMP not found!

File C:\Users\regis\AppData\Local\Temp\~DFE459CB535CCA61FC.TMP not found!

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SVOYQ0QA\ban_728x90[1].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SVOYQ0QA\hp[1].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SVOYQ0QA\iframe[1].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SVOYQ0QA\img[3].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SVOYQ0QA\search[2].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DBV1IJHL\rectangle_300x250[1].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D19DW29R\povh[1].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C8V2BBDH\img[2].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C8V2BBDH\probleme-de-ralentissement-avec-detection-virus-t175601[1].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4RA2DF6D\ads[3].htm moved successfully.

C:\Users\regis\AppData\Local\Microsoft\Windows\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.

 

Registry entries deleted on Reboot...