Vérollé ou crasher [résolu]

[alain488]

Bonjour

 

je me casse la tête avec un portable depuis deux jours.

 

impossible de faire restauration du système, voici le message d'erreur :

restauration système ne peux pas protéger votre ordinateur, faite redémarrer votre ordinateur, puis relancer la restauration du systèmes"

plus de connection wifi, plus connection avec le cable non plus

plus moyen de modifier les services

erreur 1068 le service ou le groupe de dépendance n'a pas pu démarrer

impossible de lancer une analyse avec l'anti virus

voici mon rapport,

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe

c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe

C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe

C:\Program Files\McAfee\MPF\MPFSrv.exe

C:\Program Files\McAfee\MSK\MskSrver.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files\Samsung\Samsung Update Plus\SLUTrayNotifier.exe

E:\Nouveau dossier\HiJackThis(3).exe

 

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: (no name) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - (no file)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKUS\S-1-5-21-203782105-3563111440-521887955-1005\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')

O4 - HKUS\S-1-5-21-203782105-3563111440-521887955-1005\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (User '?')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O23 - Service: Gestion d'applications (AppMgmt) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Audio Windows (AudioSrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Service de transfert intelligent en arrière-plan (BITS) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Explorateur d'ordinateur (Browser) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

O23 - Service: Services de cryptographie (CryptSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Lanceur de processus serveur DCOM (DcomLaunch) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Client DHCP (Dhcp) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Gestionnaire de disque logique (dmserver) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Client DNS (Dnscache) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Configuration automatique de réseau câblé (Dot3svc) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Service Protocole EAP (Extensible Authentication Protocol) (EapHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Service de rapport d'erreurs (ERSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Système d'événements de COM+ (EventSystem) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Compatibilité avec le Changement rapide d'utilisateur (FastUserSwitchingCompatibility) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Aide et support (helpsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Service Gestion des clés et des certificats d'intégrité (hkmsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: Serveur (LanmanServer) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Station de travail (lanmanworkstation) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Assistance TCP/IP NetBIOS (LmHosts) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe

O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe

O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe

O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe

O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe

O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe

O23 - Service: Agent de protection d'accès réseau (napagent) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Connexions réseau (Netman) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: NLA (Network Location Awareness) (Nla) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Stockage amovible (NtmsSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Gestionnaire de connexion automatique d'accès distant (RasAuto) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Gestionnaire de connexions d'accès distant (RasMan) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Appel de procédure distante (RPC) (RpcSs) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Samsung Update Plus - Unknown owner - C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe

O23 - Service: Planificateur de tâches (Schedule) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Connexion secondaire (seclogon) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Notification d'événement système (SENS) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Pare-feu Windows / Partage de connexion Internet (SharedAccess) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Détection matériel noyau (ShellHWDetection) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Service de restauration système (srservice) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Service de découvertes SSDP (SSDPSRV) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Acquisition d'image Windows (WIA) (stisvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Téléphonie (TapiSrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Services Terminal Server (TermService) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Thèmes (Themes) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Client de suivi de lien distribué (TrkWks) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Hôte de périphérique universel Plug-and-Play (upnphost) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Horloge Windows (W32Time) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: WebClient - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Infrastructure de gestion Windows (winmgmt) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Service de numéro de série du lecteur multimédia portable (WmdmPmSN) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Centre de sécurité (wscsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Mises à jour automatiques (wuauserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Windows Driver Foundation - User-mode Driver Framework (WudfSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe (file missing)

O23 - Service: Configuration automatique sans fil (WZCSVC) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Service d'approvisionnement réseau (xmlprov) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe (file missing)

 

--

 

merci d'avance

alain

Modifié le 26 avril 2010 par alain488

[pear]

Bonjour,

Erreur 1068 Wifi

 

 

 

 

Lancez cet outil de diagnostic:

Téléchargez ZhpDiag de Coolman

Il ne nécessite aucune installation.

- Il peut être lancé depuis n'importe quelle unité de disque.

- Il peut être lancé d'une clé USB.

 

Cliquez sur le tournevis

Dans la fenêtre qui s'ouvre, cochez tout.

Clic sur la Loupe pour lancer le scan

Au bout d'un moment ,vous pouvez avoir à Accepter Sysinternal->I agree

Postez en le rapport qui apparait en cliquant l'appareil photo.

[alain488]

bonjour Pear

 

voici le rapport

 

Rapport de ZHPDiag v1.25.1408 par Nicolas Coolman

Run by CHANTAL at 24/04/2010 18:13:33

Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18702

 

---\\ System Information

Platform : Microsoft Windows XP (5.1.2600) Service Pack 3

Processor: x86 Family 6 Model 28 Stepping 2, GenuineIntel

Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 1014 MB (68% free)

System drive C: has 57 GB (79%) free of 71 GB

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 57 Go of 71 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 72 Go of 72 Go)

E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: Modified

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: Modified

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

 

 

---\\ Processus lancés

[MD5.59DC5BB82E4C8E0B3EADCFDBC44BA6E4] - (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe [15360]

[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2144088]

[MD5.80349CB09DDC2F99E16D0F8919E2DCA3] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [349528]

[MD5.C3FB1D70CB88722267949694BA51759E] - (.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\WINDOWS\system32\services.exe [111104]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [135664]

[MD5.74E30A41CDCF331C74BC4D97BE40CC5B] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]

[MD5.4571B4E5D316CA688CEDD3AB0F2563F1] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [206112]

[MD5.0FC36E77D779F8D021D338BDC7368181] - (.McAfee, Inc. - McAfee Services.) -- C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe [865832]

[MD5.2988E515570E4F8B9D9B256137F8E8F4] - (.McAfee, Inc. - McAfee Network Agent.) -- c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe [2482848]

[MD5.C85968D24449E37653B891B03188140C] - (.McAfee, Inc. - McAfee Proxy Service Module.) -- c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe [359952]

[MD5.D075DF11C65F1D370FCC5D3B976E6E72] - (.McAfee, Inc. - On-Access Scanner service.) -- C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [144704]

[MD5.DB4D0DFE069E995B3F45CE4623ABFDD9] - (.McAfee, Inc. - McAfee Personal Firewall Service.) -- C:\Program Files\McAfee\MPF\MPFSrv.exe [895696]

[MD5.CF3C267356F458BE85C5034BFC382022] - (.McAfee, Inc. - McAfee Anti-Spam Server.) -- C:\Program Files\McAfee\MSK\MskSrver.exe [26640]

[MD5.91E6024D6D4DCDECDB36C43ECF9BBECB] - (.Microsoft Corporation - LSA Shell (Export Version).) -- C:\WINDOWS\system32\lsass.exe [13312]

[MD5.B1C20CF045A559FF8B622893D05067B5] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe [77480]

[MD5.271077B91D7AD1B616F8AFDFE8E3F981] - (.Microsoft Corporation - Microsoft SeaPort Search Enhancement Broker.) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [240512]

[MD5.460E4CE148BD07218DA0B6A3D31885A9] - (.Microsoft Corporation - Spooler SubSystem App.) -- C:\WINDOWS\system32\spoolsv.exe [57856]

[MD5.DD0042F0C3B606A6A8B92D49AFB18AD6] - (.Yahoo! Inc. - AutoUpater Service Module.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [602392]

 

 

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

 

 

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18904 (longhorn_ie8_gdr.100222-1700)) -- C:\WINDOWS\system32\ieframe.dll

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} . (.Pas de propriétaire - Pas de description.) -- c:\PROGRA~1\mcafee\msk\mskapbho.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: (no name) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.Pas de propriétaire - Pas de description.) -- c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} . (.Yahoo! Inc - Yahoo! Single Instance for Mail.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll

 

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.Pas de propriétaire - Pas de description.) -- c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

 

 

---\\ Applications démarrées automatiquement par le registre (O4)

O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

 

 

---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)

O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

 

 

---\\ Protocole additionnel et piratage de protocole (O18)

O18 - Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} . (.Pas de propriétaire - Pas de description.) -- c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll

O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\WINDOWS\System32\igfxdev.dll

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll

 

 

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Audio Windows (AudioSrv) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Explorateur d'ordinateur (Browser) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

O23 - Service: Services de cryptographie (CryptSvc) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Client DHCP (Dhcp) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Client DNS (Dnscache) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Service de rapport d'erreurs (ERSvc) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Aide et support (helpsvc) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: Serveur (LanmanServer) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Station de travail (lanmanworkstation) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Assistance TCP/IP NetBIOS (LmHosts) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

O23 - Service: McAfee Services (mcmscsvc) . (.McAfee, Inc. - McAfee Services.) - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe

O23 - Service: McAfee Network Agent (McNASvc) . (.McAfee, Inc. - McAfee Network Agent.) - c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe

O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Proxy Service Module.) - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe

O23 - Service: McAfee Real-time Scanner (McShield) . (.McAfee, Inc. - On-Access Scanner service.) - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe

O23 - Service: McAfee Personal Firewall Service (MpfService) . (.McAfee, Inc. - McAfee Personal Firewall Service.) - C:\Program Files\McAfee\MPF\MPFSrv.exe

O23 - Service: McAfee Anti-Spam Service (MSK80Service) . (.McAfee, Inc. - McAfee Anti-Spam Server.) - C:\Program Files\McAfee\MSK\MskSrver.exe

O23 - Service: Samsung Update Plus (Samsung Update Plus) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe

O23 - Service: Planificateur de tâches (Schedule) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Connexion secondaire (seclogon) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Notification d'événement système (SENS) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Pare-feu Windows / Partage de connexion Internet (SharedAccess) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Détection matériel noyau (ShellHWDetection) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Service de restauration système (srservice) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Acquisition d'image Windows (WIA) (stisvc) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Thèmes (Themes) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Client de suivi de lien distribué (TrkWks) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Horloge Windows (W32Time) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: WebClient (WebClient) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Infrastructure de gestion Windows (winmgmt) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Centre de sécurité (wscsvc) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Mises à jour automatiques (wuauserv) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\svchost.exe

O23 - Service: Configuration automatique sans fil (WZCSVC) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

O23 - Service: Yahoo! Updater (YahooAUService) . (.Yahoo! Inc. - AutoUpater Service Module.) - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

O23 - Service: Marvell Yukon Service (yksvc) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\System32\svchost.exe

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\McDefragTask.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\McQcTask.job

 

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll

O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf

O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf

O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: McAfee Inc. mfehidk (mfehidk) . (.McAfee, Inc. - Host Intrusion Detection Link Driver.) - C:\WINDOWS\system32\drivers\mfehidk.sys

O41 - Driver: MPFP (MPFP) . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - C:\WINDOWS\system32\Drivers\Mpfp.sys

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Atheros WLAN Client - (.WLAN.) [HKLM]

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]

O42 - Logiciel: Easy Display Manager - (.Samsung.) [HKLM]

O42 - Logiciel: Easy Network Manager - (.Samsung.) [HKLM]

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: J2SE Runtime Environment 5.0 - (.Sun Microsystems, Inc..) [HKLM]

O42 - Logiciel: Java 6 Update 19 - (.Sun Microsystems, Inc..) [HKLM]

O42 - Logiciel: Java 6 Update 7 - (.Sun Microsystems, Inc..) [HKLM]

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Magic Keyboard - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM]

O42 - Logiciel: McAfee SecurityCenter - (.McAfee, Inc..) [HKLM]

O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Namuga 1.3M Webcam - (.Vimicro Corporation.) [HKLM]

O42 - Logiciel: OpenOffice.org 3.0 - (.OpenOffice.org.) [HKLM]

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Play Camera - (.Nom de votre société.) [HKLM]

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM]

O42 - Logiciel: Samsung Battery Manager - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Samsung EDS - (.Samsung Electronics.) [HKLM]

O42 - Logiciel: Samsung Magic Doctor - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Samsung Recovery Solution III - (.Samsung.) [HKLM]

O42 - Logiciel: Samsung Update Plus - (.Samsung Electronics Co., LTD.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB978380) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB978382) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB957789) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB969604) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB969613) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM]

O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM]

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM]

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM]

O42 - Logiciel: Update for 2007 Microsoft Office System (KB981715) - (.Microsoft.) [HKLM]

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Update for Microsoft Office InfoPath 2007 (KB976416) - (.Microsoft.) [HKLM]

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM]

O42 - Logiciel: User Guide - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: WIDCOMM Bluetooth Software - (.WIDCOMM, Inc..) [HKLM]

O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Yahoo! Software Update - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Yahoo! Toolbar - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: imagine digital freedom - Samsung - (.Samsung Electronics Co. Ltd.,.) [HKLM]

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow]

[HKCU\Software\Babylon]

[HKCU\Software\Classes]

[HKCU\Software\Google]

[HKCU\Software\IM Providers]

[HKCU\Software\IncrediMail]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\McAfee]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\OpenOffice.org]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\SWFlash Savers]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\Samsung]

[HKCU\Software\Support.com]

[HKCU\Software\Widcomm]

[HKCU\Software\Winsudate]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Yahoo]

[HKCU\Software\tioga]

[HKLM\Software\ASKINSTALLER]

[HKLM\Software\Adobe]

[HKLM\Software\America Online]

[HKLM\Software\Atheros]

[HKLM\Software\BVRP Software]

[HKLM\Software\Bandoo]

[HKLM\Software\BrowserChoice]

[HKLM\Software\C07ft5Y]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Gemplus]

[HKLM\Software\Google]

[HKLM\Software\InstallShield]

[HKLM\Software\InstalledOptions]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Macromedia]

[HKLM\Software\Marvell]

[HKLM\Software\McAfee.com]

[HKLM\Software\McAfeeInstaller]

[HKLM\Software\McAfee]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\ODBC]

[HKLM\Software\OpenOffice.org]

[HKLM\Software\Policies]

[HKLM\Software\Program Groups]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SAMSUNG]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\Schlumberger]

[HKLM\Software\Secure]

[HKLM\Software\SiteAdvisor]

[HKLM\Software\Sun Microsystems]

[HKLM\Software\SupportSoft]

[HKLM\Software\TrendMicro]

[HKLM\Software\Vimicro Corporation]

[HKLM\Software\WLAN]

[HKLM\Software\Widcomm]

[HKLM\Software\Windows 3.1 Migration Status]

[HKLM\Software\Windows]

[HKLM\Software\Yahoo]

[HKLM\Software\ZSMC]

[HKLM\Software\support.com]

 

 

---\\ Contenu des dossiers Fichiers Communs (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Atheros WLAN Client

O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs

O43 - CFD:Common File Directory ----D- C:\Program Files\Google

O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Intel

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files\JRE

O43 - CFD:Common File Directory ----D- C:\Program Files\licenses

O43 - CFD:Common File Directory ----D- C:\Program Files\Marvell

O43 - CFD:Common File Directory ----D- C:\Program Files\McAfee

O43 - CFD:Common File Directory ----D- C:\Program Files\McAfee.com

O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Sync Framework

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker

O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files\MSN

O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone

O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting

O43 - CFD:Common File Directory ----D- C:\Program Files\Online Services

O43 - CFD:Common File Directory ----D- C:\Program Files\OpenOffice.org 3

O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express

O43 - CFD:Common File Directory ----D- C:\Program Files\readmes

O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files\Samsung

O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne

O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Vimicro Corporation

O43 - CFD:Common File Directory ----D- C:\Program Files\WIDCOMM

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT

O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate

O43 - CFD:Common File Directory ----D- C:\Program Files\Winsudate

O43 - CFD:Common File Directory ----D- C:\Program Files\xerox

O43 - CFD:Common File Directory ----D- C:\Program Files\Yahoo!

O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\McAfee

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System

O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SupportSoft

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.6B8A322AFAB83A36A9621C11861DD922] - 24/04/2010 - 8:58:28 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [20874]

O44 - LFC:[MD5.C8E96BCF474691385739AA4A5BF739A0] - 24/04/2010 - 8:58:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\Config.MPF [18823]

O44 - LFC:[MD5.2D60F2B12C5926B6ABBB8E73DE252122] - 31/03/2010 - 9:42:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\jupdate-1.6.0_19-b04.log [4316]

O44 - LFC:[MD5.CF236C6C37519794C8CB663FA639297D] - 31/03/2010 - 9:42:34 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\System32\java.exe [145184]

O44 - LFC:[MD5.8BB5783B22869D303B2E624947A9A52A] - 31/03/2010 - 9:42:34 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\System32\javaw.exe [145184]

O44 - LFC:[MD5.AC600895C014D245B03749CA3B5CBED4] - 31/03/2010 - 9:42:34 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\WINDOWS\System32\javaws.exe [153376]

O44 - LFC:[MD5.FAE37015C74C239DAA0B3D594CB178AA] - 24/04/2010 - 17:08:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupapi.log [4416]

O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 24/04/2010 - 17:04:22 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat [2048]

O44 - LFC:[MD5.CD70C2FF57DBA9157006A26A0EEC787D] - 23/04/2010 - 16:40:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\FNTCACHE.DAT [170688]

O44 - LFC:[MD5.348DA6D3228507F1079ECF74D2BD39AE] - 23/04/2010 - 15:58:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PerfStringBackup.INI [1095136]

O44 - LFC:[MD5.4A160087363B1B719ED922CF892F1A82] - 23/04/2010 - 15:58:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc009.dat [67960]

O44 - LFC:[MD5.C90FBB9F0ADF88961FB5C7246A94E9C1] - 23/04/2010 - 15:58:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc00C.dat [81258]

O44 - LFC:[MD5.ED9D71DFD711C61D94058B5F963E0236] - 23/04/2010 - 15:58:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh009.dat [433004]

O44 - LFC:[MD5.377969E6CEFEBC7F74E58EF4B6750391] - 23/04/2010 - 15:58:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh00C.dat [501382]

O44 - LFC:[MD5.A06D90A1B9DC36065FC8EF15BF15307C] - 23/04/2010 - 15:50:33 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system.ini [435]

O44 - LFC:[MD5.F5C397BEFBE878EBBAA17055D06359C7] - 23/04/2010 - 15:50:33 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\win.ini [507]

O44 - LFC:[MD5.574C94EED8119C6860546294753EC938] - 23/04/2010 - 15:50:33 RSHA- . (.Pas de propriétaire - Pas de description.) -- C:\boot.ini [216]

O44 - LFC:[MD5.9683A2442F405E7F8DB9DF5E27ECECBB] - 09/04/2010 - 12:47:24 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\wpa.dbl [1158]

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 22:09:02 ---A- C:\WINDOWS\Prefetch\DUMPREP.EXE-0AF2BF67.pf

O45 - LFCP:Last File Created Prefetch 09/04/2010 - 22:09:03 ---A- C:\WINDOWS\Prefetch\DWWIN.EXE-2C373FB7.pf

O45 - LFCP:Last File Created Prefetch 11/04/2010 - 18:50:19 ---A- C:\WINDOWS\Prefetch\XPNETDIAG.EXE-1BD7AA5A.pf

O45 - LFCP:Last File Created Prefetch 12/04/2010 - 19:17:17 ---A- C:\WINDOWS\Prefetch\JAVA.EXE-32FD225F.pf

O45 - LFCP:Last File Created Prefetch 14/04/2010 - 14:35:44 ---A- C:\WINDOWS\Prefetch\EXCEL.EXE-1FF53647.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 10:46:37 ---A- C:\WINDOWS\Prefetch\PREMKBD.EXE-27AF01CD.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 10:48:53 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-2F105E89.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 10:48:59 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-1E329DC8.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 10:50:01 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-1BC49F61.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 10:50:07 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-0F3C2452.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:42:55 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-1DEF8F58.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:43:28 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-3935B644.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:43:35 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-32650AEA.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:43:43 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-325D58CA.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:43:51 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-3AB278C0.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:44:31 ---A- C:\WINDOWS\Prefetch\MRTSTUB.EXE-06CE7466.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:44:38 ---A- C:\WINDOWS\Prefetch\WINDOWS-KB890830-V3.6-DELTA.E-00BEA1C9.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:44:40 ---A- C:\WINDOWS\Prefetch\MRT.EXE-161A5291.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:47:26 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-2C8E9E66.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 13:47:29 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-13AEF06A.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 17:43:27 ---A- C:\WINDOWS\Prefetch\CLVIEW.EXE-174D6B5B.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 18:59:09 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-70A2A6FF.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 23:04:13 ---A- C:\WINDOWS\Prefetch\MSKXAGNT.EXE-0AE02CCA.pf

O45 - LFCP:Last File Created Prefetch 15/04/2010 - 23:04:16 ---A- C:\WINDOWS\Prefetch\MSIMN.EXE-183B59AF.pf

O45 - LFCP:Last File Created Prefetch 16/04/2010 - 13:34:25 ---A- C:\WINDOWS\Prefetch\MCODS.EXE-267BBDD8.pf

O45 - LFCP:Last File Created Prefetch 16/04/2010 - 13:36:29 ---A- C:\WINDOWS\Prefetch\LOGON.SCR-24ADF392.pf

O45 - LFCP:Last File Created Prefetch 16/04/2010 - 13:38:34 ---A- C:\WINDOWS\Prefetch\MCVSSHLD.EXE-213DD10B.pf

O45 - LFCP:Last File Created Prefetch 16/04/2010 - 13:38:57 ---A- C:\WINDOWS\Prefetch\MCAGENT.EXE-078CB866.pf

O45 - LFCP:Last File Created Prefetch 16/04/2010 - 13:40:36 ---A- C:\WINDOWS\Prefetch\READERUPDATER.EXE-0421FD5D.pf

O45 - LFCP:Last File Created Prefetch 17/04/2010 - 18:40:42 ---A- C:\WINDOWS\Prefetch\MSIEXEC.EXE-330626DC.pf

O45 - LFCP:Last File Created Prefetch 18/04/2010 - 12:16:13 ---A- C:\WINDOWS\Prefetch\DLLHOST.EXE-367A2A5E.pf

O45 - LFCP:Last File Created Prefetch 18/04/2010 - 16:34:22 ---A- C:\WINDOWS\Prefetch\JUSCHED.EXE-0E6FA1F7.pf

O45 - LFCP:Last File Created Prefetch 18/04/2010 - 16:54:10 ---A- C:\WINDOWS\Prefetch\JAUCHECK.EXE-04217FEF.pf

O45 - LFCP:Last File Created Prefetch 18/04/2010 - 16:54:11 ---A- C:\WINDOWS\Prefetch\JAVAW.EXE-392A4E93.pf

O45 - LFCP:Last File Created Prefetch 18/04/2010 - 16:54:18 ---A- C:\WINDOWS\Prefetch\JAVAWS.EXE-078C20EA.pf

O45 - LFCP:Last File Created Prefetch 18/04/2010 - 19:04:02 ---A- C:\WINDOWS\Prefetch\WMPLAYER.EXE-1ACCF80E.pf

O45 - LFCP:Last File Created Prefetch 18/04/2010 - 19:05:35 ---A- C:\WINDOWS\Prefetch\SETUP_WM.EXE-02751BCA.pf

O45 - LFCP:Last File Created Prefetch 19/04/2010 - 16:26:58 ---A- C:\WINDOWS\Prefetch\READER_SL.EXE-2D713FFC.pf

O45 - LFCP:Last File Created Prefetch 19/04/2010 - 16:51:56 ---A- C:\WINDOWS\Prefetch\OIS.EXE-0408A173.pf

O45 - LFCP:Last File Created Prefetch 19/04/2010 - 18:02:11 ---A- C:\WINDOWS\Prefetch\DEFRAG.EXE-2858C7E2.pf

O45 - LFCP:Last File Created Prefetch 19/04/2010 - 18:02:12 ---A- C:\WINDOWS\Prefetch\DFRGNTFS.EXE-38C3807C.pf

O45 - LFCP:Last File Created Prefetch 19/04/2010 - 20:14:16 ---A- C:\WINDOWS\Prefetch\WLLOGINPROXY.EXE-090074F0.pf

O45 - LFCP:Last File Created Prefetch 20/04/2010 - 15:44:49 ---A- C:\WINDOWS\Prefetch\DMHKCORE.EXE-2FDBB09D.pf

O45 - LFCP:Last File Created Prefetch 20/04/2010 - 15:44:54 ---A- C:\WINDOWS\Prefetch\BTTRAY.EXE-2D55805E.pf

O45 - LFCP:Last File Created Prefetch 20/04/2010 - 15:45:20 ---A- C:\WINDOWS\Prefetch\MSNINST.EXE-3AE9D884.pf

O45 - LFCP:Last File Created Prefetch 20/04/2010 - 18:41:36 ---A- C:\WINDOWS\Prefetch\SETHC.EXE-1CFBDA64.pf

O45 - LFCP:Last File Created Prefetch 20/04/2010 - 20:33:45 ---A- C:\WINDOWS\Prefetch\WMPLAYER.EXE-1ACCF80B.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 11:24:36 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-6E8D4657.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 12:55:28 ---A- C:\WINDOWS\Prefetch\WUAUCLT.EXE-1360D60A.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 13:31:54 ---A- C:\WINDOWS\Prefetch\OSE.EXE-2D1D1CBE.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:44 ---A- C:\WINDOWS\Prefetch\ALCMTR.EXE-01A7139B.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:44 ---A- C:\WINDOWS\Prefetch\DMLOADER.EXE-126D6CC1.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:44 ---A- C:\WINDOWS\Prefetch\EDSAGENT.EXE-2B237C42.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:44 ---A- C:\WINDOWS\Prefetch\IGFXTRAY.EXE-0A23D403.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:44 ---A- C:\WINDOWS\Prefetch\RTHDCPL.EXE-005A6E31.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\BATTERYMANAGER.EXE-1658E718.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\BTSTAC~1.EXE-3169C1A9.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\GOOGLETOOLBARNOTIFIER.EXE-0047A1C5.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\GOOGLEUPDATERSERVICE.EXE-2F4A2F77.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\HKCMD.EXE-0F06AE14.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\IGFXEXT.EXE-05A27A3D.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\IGFXPERS.EXE-19DA7B04.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\IGFXSRVC.EXE-1D88F978.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\QUICKSTART.EXE-33E8A351.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\REGSVR32.EXE-396DEA2C.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\SOFFICE.BIN-091CC27D.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\SOFFICE.EXE-012D2D56.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:36:45 ---A- C:\WINDOWS\Prefetch\SYNTPENH.EXE-2B70B91C.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:39:57 ---A- C:\WINDOWS\Prefetch\IEXPLORE.EXE-2D97EBE6.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:40:20 ---A- C:\WINDOWS\Prefetch\BNDCORE.EXE-1022BA26.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:40:39 ---A- C:\WINDOWS\Prefetch\MCVSMAP.EXE-01348CE1.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:40:40 ---A- C:\WINDOWS\Prefetch\MCUPDMGR.EXE-1FFDEF42.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:40:42 ---A- C:\WINDOWS\Prefetch\HWUPDCHK.EXE-0E7B1FDA.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:40:51 ---A- C:\WINDOWS\Prefetch\SLUTRAYNOTIFIER.EXE-2B6E0C5B.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:41:09 ---A- C:\WINDOWS\Prefetch\MCINSUPD.EXE-12132D5F.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:41:18 ---A- C:\WINDOWS\Prefetch\MCUPDUI.EXE-11F2DF27.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:42:52 ---A- C:\WINDOWS\Prefetch\MCINFO.EXE-39905246.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:43:02 ---A- C:\WINDOWS\Prefetch\MCSYNC.EXE-08959A8A.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:43:09 ---A- C:\WINDOWS\Prefetch\MCSVRCNT.EXE-12D57BDF.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:43:29 ---A- C:\WINDOWS\Prefetch\MCSMTFWK.EXE-1F1987B8.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 19:43:54 ---A- C:\WINDOWS\Prefetch\MCUICNT.EXE-1B95DE31.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 20:05:34 ---A- C:\WINDOWS\Prefetch\MCUPDATE.EXE-1F02B9C6.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 20:06:54 ---A- C:\WINDOWS\Prefetch\Layout.ini

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 20:16:14 ---A- C:\WINDOWS\Prefetch\HELPSVC.EXE-1C192440.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 20:16:20 ---A- C:\WINDOWS\Prefetch\WMIPRVSE.EXE-0D449B4F.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 20:33:13 ---A- C:\WINDOWS\Prefetch\SSMYPICS.SCR-2B33A3BB.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 21:11:00 ---A- C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-160E1F62.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 21:35:16 ---A- C:\WINDOWS\Prefetch\ACRORD32.EXE-32E4AFCD.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 21:35:32 ---A- C:\WINDOWS\Prefetch\ADOBEARM.EXE-2D5CF26D.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 21:48:43 ---A- C:\WINDOWS\Prefetch\ACRORD32INFO.EXE-1A61B617.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 21:51:40 ---A- C:\WINDOWS\Prefetch\VERCLSID.EXE-28F52AD2.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 22:02:52 ---A- C:\WINDOWS\Prefetch\YTBB.EXE-287B06D8.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 22:03:13 ---A- C:\WINDOWS\Prefetch\WINWORD.EXE-15ED065E.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 22:10:01 ---A- C:\WINDOWS\Prefetch\LOGONUI.EXE-312BE1BF.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:06 ---A- C:\WINDOWS\Prefetch\GOOGLECRASHHANDLER.EXE-286C3734.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:12 ---A- C:\WINDOWS\Prefetch\EXPLORER.EXE-02121B1A.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:14 ---A- C:\WINDOWS\Prefetch\USERINIT.EXE-0743FDA9.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:15 ---A- C:\WINDOWS\Prefetch\MCENUI.EXE-2DE04FE3.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:16 ---A- C:\WINDOWS\Prefetch\MCAGENT.EXE-0AA61076.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:23 ---A- C:\WINDOWS\Prefetch\MSNMSGR.EXE-0EBDBC56.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:26 ---A- C:\WINDOWS\Prefetch\CTFMON.EXE-05E57A5E.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:27 ---A- C:\WINDOWS\Prefetch\MAGICKBD.EXE-0723C339.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:27 ---A- C:\WINDOWS\Prefetch\PERFORMANCEMANAGER.EXE-0E782814.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:51:31 ---A- C:\WINDOWS\Prefetch\ONENOTEM.EXE-14CC9B1E.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 8:52:01 ---A- C:\WINDOWS\Prefetch\GOOGLETOOLBARMANAGER_E85CDE76-00149B8A.pf

O45 - LFCP:Last File Created Prefetch 21/04/2010 - 9:02:25 ---A- C:\WINDOWS\Prefetch\POWERPNT.EXE-2F92D967.pf

O45 - LFCP:Last File Created Prefetch 22/04/2010 - 11:23:03 ---A- C:\WINDOWS\Prefetch\MCSYSMON.EXE-045A2ADD.pf

 

 

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

 

 

---\\ Export de clé d'application autorisée (ECAA) (O47)

O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Internet Explorer\IEXPLORE.EXE" [Enabled] .(.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\dpvsetup.exe" [Enabled] .(.Microsoft Corporation - Microsoft DirectPlay Voice Test.) -- C:\WINDOWS\system32\dpvsetup.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe" [Enabled] .(.McAfee, Inc. - McAfee Network Agent.) -- C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Google\IncrediMail\Bin\IncMail.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Google\IncrediMail\Bin\IncMail.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Google\IncrediMail\Bin\ImApp.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Google\IncrediMail\Bin\ImApp.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Google\IncrediMail\Bin\ImpCnt.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Google\IncrediMail\Bin\ImpCnt.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) (.not file.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) (.not file.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) (.not file.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) (.not file.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe

O47 - AAKE:Key Export SP - "C:\Program Files\ma-config.com\maconfservice.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\ma-config.com\maconfservice.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Plugin Manager\skypePM.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe

O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Skype\Phone\Skype.exe

O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe

O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe

 

 

---\\ Image File Execution Options (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

 

 

---\\ MountPoints2 Shell Key (MPSK) (O51)

O51 - MPSK:{b473ef16-cc70-11de-82b3-00245407c1ec}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\autorunner.exe "Livret CE.pdf" (.not file.)

 

 

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax

O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

 

 

---\\ ShareTools MSconfig StartupReg (SMSR) (O53)

O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe

O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

O53 - SMSR:HKLM\...\startupreg\BatteryManager [Key] . (.Pas de propriétaire - BatteryManager MFC.) -- C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe

O53 - SMSR:HKLM\...\startupreg\CTFMON.EXE [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O53 - SMSR:HKLM\...\startupreg\DMHotKey [Key] . (.SAMSUNG Electronics - Loader of Easy Display Manager - Display Co.) -- C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe

O53 - SMSR:HKLM\...\startupreg\EDS [Key] . (.Samsung Electronics,.LTD - EDSAgentEx Application.) -- C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe

O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe

O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe

O53 - SMSR:HKLM\...\startupreg\MagicKeyboard [Key] . (.Pas de propriétaire - PreMKBD before Magic Keyboard Program.) -- C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe

O53 - SMSR:HKLM\...\startupreg\mcagent_exe [Key] . (.McAfee, Inc. - McAfee Integrated Security Platform.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe

O53 - SMSR:HKLM\...\startupreg\McENUI [Key] . (.McAfee, Inc. - EasyNetwork User Interface.) -- C:\PROGRA~1\McAfee\MHN\McENUI.exe

O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe

O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O53 - SMSR:HKLM\...\startupreg\SynTPEnh [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

 

 

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

 

 

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

 

 

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKCU\...\Policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKLM\...\Policies\Explorer] - "HonorAutoRunSetting"=1

 

 

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.6EACC829E76B1EFDFACE633619A3DB31] - 08/10/2008 - 7:35:10 ---A- . (.Atheros Communications, Inc. - Driver for Atheros AR5008 Wireless Network Adapter.) -- C:\WINDOWS\system32\drivers\athw.sys

O58 - SDL:[MD5.49FD2960C0C5FE06DEDF9560AD4C9547] - 19/03/2009 - 13:19:54 ---A- . (.Broadcom Corporation. - Bluetooth Bus Enumerator.) -- C:\WINDOWS\system32\drivers\btkrnl.sys

O58 - SDL:[MD5.D4618D8F1ABBB4150957D3516A044D0D] - 26/09/2008 - 0:30:12 ---A- . (.Broadcom Corporation. - Broadcom Bluetooth IT Manager Filter.) -- C:\WINDOWS\system32\drivers\btwsecfl.sys

O58 - SDL:[MD5.6B622612FE21B59FAEE2CA4385959778] - 30/10/2008 - 21:19:14 ---A- . (.Broadcom Corporation. - Driver for Bluetooth USB Devices.) -- C:\WINDOWS\system32\drivers\btwusb.sys

O58 - SDL:[MD5.248DFA5762DDE38DFDDBBD44149E9D7A] - 15/12/2008 - 21:01:40 R--A- . (.Avanquest Software - BVRP NDIS 5.0 MPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\BVRPMPR5.SYS

O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 14/04/2008 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys

O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 14/04/2008 - 13:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys

O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - 13:00:00 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys

O58 - SDL:[MD5.48846B31BE5A4FA662CCFDE7A1BA86B9] - 15/02/2008 - 21:12:06 ---A- . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\system32\drivers\igxpmp32.sys

O58 - SDL:[MD5.BAFDD5E28BAEA99D7F4772AF2F5EC7EE] - 16/09/2009 - 10:22:48 ---A- . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\WINDOWS\system32\drivers\mfeavfk.sys

O58 - SDL:[MD5.1D003E3056A43D881597D6763E83B943] - 16/09/2009 - 10:22:48 ---A- . (.McAfee, Inc. - Buffer Overflow Protection Driver.) -- C:\WINDOWS\system32\drivers\mfebopk.sys

O58 - SDL:[MD5.3F138A1C8A0659F329F242D1E389B2CF] - 16/09/2009 - 10:22:48 ---A- . (.McAfee, Inc. - Host Intrusion Detection Link Driver.) -- C:\WINDOWS\system32\drivers\mfehidk.sys

O58 - SDL:[MD5.41FE2F288E05A6C8AB85DD56770FFBAD] - 16/09/2009 - 10:22:14 ---A- . (.McAfee, Inc. - VSCore Code Analysis Driver.) -- C:\WINDOWS\system32\drivers\mferkdk.sys

O58 - SDL:[MD5.096B52EA918AA909BA5903D79E129005] - 16/09/2009 - 10:22:48 ---A- . (.McAfee, Inc. - System Monitor Filter Driver.) -- C:\WINDOWS\system32\drivers\mfesmfk.sys

O58 - SDL:[MD5.136157E79849B9E5316BA4008D6075A8] - 16/07/2009 - 12:32:26 ---A- . (.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) -- C:\WINDOWS\system32\drivers\Mpfp.sys

O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys

O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 14/04/2008 - 13:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys

O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys

O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 14/04/2008 - 13:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys

O58 - SDL:[MD5.32915772CCD5BC2BF9762195C002A949] - 27/08/2008 - 0:35:00 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys

O58 - SDL:[MD5.128AE3AEDDE1E3AE772C88320628FE7C] - 14/01/2008 - 18:01:02 ---A- . (.Samsung Electronics,.LTD - EDS Filter Driver (DNSe V47).) -- C:\WINDOWS\system32\drivers\SamsungEDS.SYS

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 14/04/2008 - 13:00:00 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys

O58 - SDL:[MD5.C0137B5947AE3D3FC1C17BA6FDFB3DAD] - 01/08/2006 - 14:57:24 ---A- . (.Samsung - SUE NDIS User mode I/O Driver.) -- C:\WINDOWS\system32\drivers\SUE_PD.sys

O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 14/04/2008 - 13:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys

O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 14/04/2008 - 13:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys

O58 - SDL:[MD5.4F101E48D060E318752FBC458A4B49F0] - 23/09/2008 - 21:23:58 ---A- . (.Vimicro Corporation - Vimicro USB Video Class Camera.) -- C:\WINDOWS\system32\drivers\VMC326.sys

O58 - SDL:[MD5.7578410B1512FAD9C485B134561E8B78] - 21/04/2009 - 9:09:00 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\WINDOWS\system32\drivers\yk51x86.sys

O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ansi.sys

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\country.sys

O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\himem.sys

O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\key01.sys

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\keyboard.sys

O58 - SDL:[MD5.8A4CB9438571814B128B6DC30D698064] - 27/10/2005 - 5:18:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\MEMIO.SYS

O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos.sys

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos404.sys

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos411.sys

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos412.sys

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos804.sys

O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio.sys

O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio404.sys

O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio411.sys

O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio412.sys

O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 14/04/2008 - 13:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio804.sys

 

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 21/04/2010 - 11:08:14 ---A- C:\Documents And Settings\CHANTAL\Mes documents\resumes le XX°siècle.pdf [86096]

O61 - LFC:Last File Created 21/04/2010 - 11:16:30 ---A- C:\Documents And Settings\CHANTAL\Mes documents\LES GRANDES ETAPES SCIENTIFIQUES DU XXeme SIECLE.mht [162660]

O61 - LFC:Last File Created 21/04/2010 - 11:27:04 -S-A- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\CryptnetUrlCache\Content\23B523C9E7746F715D33C6527C18EB9D [3254]

O61 - LFC:Last File Created 21/04/2010 - 11:27:04 -S-A- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\CryptnetUrlCache\MetaData\23B523C9E7746F715D33C6527C18EB9D [112]

O61 - LFC:Last File Created 21/04/2010 - 12:05:49 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\McUICnt\McUICnt\McUICnt000.log [8070]

O61 - LFC:Last File Created 21/04/2010 - 12:05:50 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\Common\mcuicnt\mcuicnt000.log [78448]

O61 - LFC:Last File Created 21/04/2010 - 12:30:28 ---A- C:\Documents And Settings\CHANTAL\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol [1669]

O61 - LFC:Last File Created 21/04/2010 - 13:55:13 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\VirusScan\Data\VMapLogs.old [287]

O61 - LFC:Last File Created 21/04/2010 - 14:07:31 ---A- C:\Documents And Settings\CHANTAL\Mes documents\ateliers écriture\liste dates XX°.docx [11514]

O61 - LFC:Last File Created 21/04/2010 - 19:35:46 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo!\yau\toolbar_temp.xml [2714]

O61 - LFC:Last File Created 21/04/2010 - 19:35:46 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo!\yau\yautoupdater_temp.xml [1503]

O61 - LFC:Last File Created 21/04/2010 - 19:39:52 -SHA- C:\Documents And Settings\CHANTAL\IECompatCache\index.dat [851968]

O61 - LFC:Last File Created 21/04/2010 - 19:39:52 -SHA- C:\Documents And Settings\CHANTAL\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat [32768]

O61 - LFC:Last File Created 21/04/2010 - 19:39:52 -SHA- C:\Documents And Settings\CHANTAL\PrivacIE\index.dat [10305536]

O61 - LFC:Last File Created 21/04/2010 - 19:40:09 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo! Companion\Data\default\bhth01.data [76]

O61 - LFC:Last File Created 21/04/2010 - 19:40:10 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo! Companion\Data\270dj0b6h4cc4di@oc08b^2ec_o\alrt_204.data [43]

O61 - LFC:Last File Created 21/04/2010 - 19:40:10 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo! Companion\Data\270dj0b6h4cc4di@oc08b^2ec_o\feed4.data [32809]

O61 - LFC:Last File Created 21/04/2010 - 19:40:18 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo! Companion\Cache\filelist [379]

O61 - LFC:Last File Created 21/04/2010 - 19:40:20 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo! Companion\Cache\8C50577CF3AEEA238EF7134C6147806F [20233]

O61 - LFC:Last File Created 21/04/2010 - 19:40:24 ---A- C:\Documents And Settings\CHANTAL\Application Data\Yahoo!\Companion\inq_data.inq [1106]

O61 - LFC:Last File Created 21/04/2010 - 19:40:24 ---A- C:\Documents And Settings\CHANTAL\Application Data\Yahoo!\Companion\inq_settings.xml [3595]

O61 - LFC:Last File Created 21/04/2010 - 19:40:24 ---A- C:\Documents And Settings\CHANTAL\Application Data\Yahoo!\Companion\resources.inq [13374]

O61 - LFC:Last File Created 21/04/2010 - 19:40:39 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcupdmgr\mcupdmgr002.log [153794]

O61 - LFC:Last File Created 21/04/2010 - 19:40:39 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\VirusScan\Data\VMapLogs.log [287]

O61 - LFC:Last File Created 21/04/2010 - 19:40:40 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcupdmgr\log.ini [121]

O61 - LFC:Last File Created 21/04/2010 - 19:41:05 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\VirusScan\mcupdmgr\mcupdmgr000.log [150282]

O61 - LFC:Last File Created 21/04/2010 - 19:42:48 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\VirusScan\mcinsupd\mcinsupd001.log [1658]

O61 - LFC:Last File Created 21/04/2010 - 19:42:59 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcupdmgr\mcupdmgr000.log [20926]

O61 - LFC:Last File Created 21/04/2010 - 19:43:02 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcsync\McSync001.log [83794]

O61 - LFC:Last File Created 21/04/2010 - 19:43:03 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcsvrcnt\mcsvrcnt001.log [87242]

O61 - LFC:Last File Created 21/04/2010 - 19:54:22 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo! Companion\Data\270dj0b6h4cc4di@oc08b^2ec_o\alrt_200.data [13]

O61 - LFC:Last File Created 21/04/2010 - 20:16:05 ---A- C:\Documents And Settings\NetworkService\Cookies\index.dat [16384]

O61 - LFC:Last File Created 21/04/2010 - 20:16:05 ---A- C:\Documents And Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat [16384]

O61 - LFC:Last File Created 21/04/2010 - 21:32:15 ---A- C:\Documents And Settings\CHANTAL\Mes documents\EP\Fiche stagiaire individuelle new.doc [883200]

O61 - LFC:Last File Created 21/04/2010 - 21:34:08 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Application Data\Google\Toolbar Bookmarks\marieriquet@gmail.com_bookmarks [20251]

O61 - LFC:Last File Created 21/04/2010 - 21:36:46 ---A- C:\Documents And Settings\CHANTAL\Application Data\Adobe\Acrobat\9.0\SharedDataEvents [3072]

O61 - LFC:Last File Created 21/04/2010 - 21:45:01 ---A- C:\Documents And Settings\CHANTAL\Mes documents\EP\Frais de déplacement écrivain public.xls [1641472]

O61 - LFC:Last File Created 21/04/2010 - 21:48:43 -SHA- C:\Documents And Settings\CHANTAL\Mes documents\Thumbs.db [87552]

O61 - LFC:Last File Created 21/04/2010 - 22:02:44 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\RecoveryStore.{59AD6733-4403-11DF-8364-0024D2F11506}.dat [4608]

O61 - LFC:Last File Created 21/04/2010 - 22:02:45 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\{3AF96D4C-4D89-11DF-8378-0024D2F11506}.dat [213504]

O61 - LFC:Last File Created 21/04/2010 - 8:54:58 ---A- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\Office\PowerP12.pip [1468]

O61 - LFC:Last File Created 21/04/2010 - 9:06:09 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\McSmtFwk\McSmtFwk002.log [99394]

O61 - LFC:Last File Created 21/04/2010 - 9:06:11 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\dspwrp\SmartMessaging.db [17408]

O61 - LFC:Last File Created 22/04/2010 - 11:21:01 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\EasyNet\MHNData [12288]

O61 - LFC:Last File Created 22/04/2010 - 11:23:05 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcnasvc\log.ini [121]

O61 - LFC:Last File Created 22/04/2010 - 11:23:05 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcnasvc\mcnasvc002.log [153822]

O61 - LFC:Last File Created 22/04/2010 - 11:23:05 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MNA\NAData [51200]

O61 - LFC:Last File Created 22/04/2010 - 11:23:50 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\VirusScan\Quarantine\7da416c1732cb0.bup [16896]

O61 - LFC:Last File Created 22/04/2010 - 11:23:50 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\VirusScan\Quarantine\7da416c1732fa0.bup [16896]

O61 - LFC:Last File Created 22/04/2010 - 11:24:06 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcnasvc\mcnasvc000.log [2892]

O61 - LFC:Last File Created 22/04/2010 - 11:24:49 ---A- C:\Documents And Settings\All Users\Application Data\Yahoo!\yau\Serialization.bin [1027]

O61 - LFC:Last File Created 22/04/2010 - 11:24:50 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcsysmon\mcsysmon000.log [7184]

O61 - LFC:Last File Created 22/04/2010 - 11:26:18 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\SiteAdvisor\McSACore\McSACore002.log [33422]

O61 - LFC:Last File Created 22/04/2010 - 11:26:19 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\SiteAdvisor\SA.dat [6144]

O61 - LFC:Last File Created 22/04/2010 - 17:32:17 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_360.wmdb [4083712]

O61 - LFC:Last File Created 23/04/2010 - 14:56:49 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\AdobeARM.log [117166]

O61 - LFC:Last File Created 23/04/2010 - 14:56:57 ---A- C:\Documents And Settings\CHANTAL\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]

O61 - LFC:Last File Created 23/04/2010 - 15:01:45 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\jusched.log [46699]

O61 - LFC:Last File Created 23/04/2010 - 15:02:06 ---A- C:\Documents And Settings\CHANTAL\Bureau\Restauration du système.lnk [1616]

O61 - LFC:Last File Created 23/04/2010 - 15:50:45 ---A- C:\Documents And Settings\CHANTAL\Application Data\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Common.xcu [61754]

O61 - LFC:Last File Created 23/04/2010 - 15:58:14 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Jeux\Atout Pique sur Internet.lnk [913]

O61 - LFC:Last File Created 23/04/2010 - 15:58:14 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Jeux\Dame de pique sur Internet.lnk [913]

O61 - LFC:Last File Created 23/04/2010 - 15:58:14 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Jeux\Jeu de dames sur Internet.lnk [913]

O61 - LFC:Last File Created 23/04/2010 - 15:58:15 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Jeux\Backgammon sur Internet.lnk [913]

O61 - LFC:Last File Created 23/04/2010 - 15:58:15 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Jeux\Reversi sur Internet.lnk [913]

O61 - LFC:Last File Created 23/04/2010 - 15:58:15 -SHA- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Jeux\desktop.ini [838]

O61 - LFC:Last File Created 23/04/2010 - 15:58:18 --HA- C:\Documents And Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat [262144]

O61 - LFC:Last File Created 23/04/2010 - 16:18:50 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [17408]

O61 - LFC:Last File Created 23/04/2010 - 16:41:01 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\VirusScan\mcshield\mcshield000.log [153632]

O61 - LFC:Last File Created 23/04/2010 - 16:41:06 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\VirusScan\mcshield\log.ini [121]

O61 - LFC:Last File Created 23/04/2010 - 16:52:17 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk [637]

O61 - LFC:Last File Created 23/04/2010 - 17:30:35 --H-- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\LastFlashConfig.WFC [1762]

O61 - LFC:Last File Created 23/04/2010 - 17:35:21 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Spybot - Search & Destroy\File Shredder.lnk [834]

O61 - LFC:Last File Created 23/04/2010 - 17:35:21 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Spybot - Search & Destroy\Spybot - Search & Destroy.lnk [945]

O61 - LFC:Last File Created 23/04/2010 - 17:35:21 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Spybot - Search & Destroy\Tutorial.lnk [951]

O61 - LFC:Last File Created 23/04/2010 - 17:35:21 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Spybot - Search & Destroy\Update Spybot-S&D.lnk [875]

O61 - LFC:Last File Created 23/04/2010 - 17:35:22 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Spybot - Search & Destroy\Uninstall Spybot-S&D.lnk [961]

O61 - LFC:Last File Created 23/04/2010 - 17:35:22 ---A- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk [951]

O61 - LFC:Last File Created 23/04/2010 - 17:35:22 ---A- C:\Documents And Settings\CHANTAL\Bureau\Spybot - Search & Destroy.lnk [933]

O61 - LFC:Last File Created 23/04/2010 - 17:36:25 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Backups\regLocal.reg [18892362]

O61 - LFC:Last File Created 23/04/2010 - 17:36:29 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Backups\regUsers.reg [9979525]

O61 - LFC:Last File Created 23/04/2010 - 17:39:43 ---A- C:\Documents And Settings\CHANTAL\Bureau\Microsoft Office Word 2007.lnk [2575]

O61 - LFC:Last File Created 23/04/2010 - 17:39:56 ---A- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\Office\Word12.pip [1720]

O61 - LFC:Last File Created 23/04/2010 - 19:31:40 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\Explorer\Explorer000.log [1810]

O61 - LFC:Last File Created 23/04/2010 - 19:36:25 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcmscsvc\mcmscsvc002.log [153672]

O61 - LFC:Last File Created 23/04/2010 - 19:44:03 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\MskSrver\MskSrver000.log [8248]

O61 - LFC:Last File Created 23/04/2010 - 21:20:57 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\User Account Pictures\Administrateur.bmp [6976]

O61 - LFC:Last File Created 23/04/2010 - 21:21:35 -SHA- C:\Documents And Settings\Administrateur\Local Settings\desktop.ini [62]

O61 - LFC:Last File Created 23/04/2010 - 21:21:40 ---A- C:\Documents And Settings\Administrateur\Cookies\index.dat [16384]

O61 - LFC:Last File Created 23/04/2010 - 21:21:40 ---A- C:\Documents And Settings\Administrateur\Local Settings\Historique\History.IE5\index.dat [32768]

O61 - LFC:Last File Created 23/04/2010 - 21:21:40 -SHA- C:\Documents And Settings\Administrateur\IETldCache\index.dat [245760]

O61 - LFC:Last File Created 23/04/2010 - 21:23:15 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MpsPC\mcmscsvc\mcmscsvc000.log [476]

O61 - LFC:Last File Created 23/04/2010 - 21:23:15 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MpsPII\mcmscsvc\mcmscsvc000.log [1034]

O61 - LFC:Last File Created 23/04/2010 - 21:24:06 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\VirusScan\Explorer\Explorer000.log [2274]

O61 - LFC:Last File Created 23/04/2010 - 21:24:41 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\Common\McENUI\McENUI000.log [6660]

O61 - LFC:Last File Created 23/04/2010 - 21:25:43 --HA- C:\Documents And Settings\Administrateur\Local Settings\Application Data\IconCache.db [2656656]

O61 - LFC:Last File Created 23/04/2010 - 21:25:46 --H-- C:\Documents And Settings\Administrateur\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat [262144]

O61 - LFC:Last File Created 23/04/2010 - 21:25:46 --HA- C:\Documents And Settings\Administrateur\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [1024]

O61 - LFC:Last File Created 23/04/2010 - 21:25:46 --HA- C:\Documents And Settings\Administrateur\NTUSER.DAT [786432]

O61 - LFC:Last File Created 23/04/2010 - 21:25:46 -SHA- C:\Documents And Settings\Administrateur\ntuser.ini [184]

O61 - LFC:Last File Created 23/04/2010 - 21:30:42 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [34808]

O61 - LFC:Last File Created 23/04/2010 - 21:31:40 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\mcinfo\mcinfo000.log [130596]

O61 - LFC:Last File Created 23/04/2010 - 21:31:40 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MSC\mcifolog.log [11626]

O61 - LFC:Last File Created 23/04/2010 - 21:50:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\RegKeyWhite.sbe [118]

O61 - LFC:Last File Created 23/04/2010 - 21:50:14 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2\RegDPF-Global.reg [3554]

O61 - LFC:Last File Created 23/04/2010 - 21:51:56 ---A- C:\Documents And Settings\CHANTAL\Mes documents\cc_20100423_225148.reg [376]

O61 - LFC:Last File Created 23/04/2010 - 21:52:25 ---A- C:\Documents And Settings\CHANTAL\Mes documents\cc_20100423_225221.reg [362]

O61 - LFC:Last File Created 24/04/2010 - 17:04:27 --HA- C:\Documents And Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [1024]

O61 - LFC:Last File Created 24/04/2010 - 17:04:27 --HA- C:\Documents And Settings\LocalService\NTUSER.DAT [249856]

O61 - LFC:Last File Created 24/04/2010 - 17:04:27 --HA- C:\Documents And Settings\LocalService\ntuser.dat.LOG [1024]

O61 - LFC:Last File Created 24/04/2010 - 17:04:27 -SHA- C:\Documents And Settings\LocalService\Local Settings\desktop.ini [62]

O61 - LFC:Last File Created 24/04/2010 - 17:04:28 -SHA- C:\Documents And Settings\LocalService\ntuser.ini [184]

O61 - LFC:Last File Created 24/04/2010 - 17:04:29 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\McProxy\mcproxy\mcproxy000.log [3916]

O61 - LFC:Last File Created 24/04/2010 - 17:04:35 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MpsMISP\mcproxy\mcproxy000.log [4020]

O61 - LFC:Last File Created 24/04/2010 - 17:04:35 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\Mps\mcproxy\mcproxy000.log [3958]

O61 - LFC:Last File Created 24/04/2010 - 17:04:42 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\mcoemmgr\McOEMMGr\McOEMMGr001.log [38388]

O61 - LFC:Last File Created 24/04/2010 - 17:04:53 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\VirusScan\mcshield\mcshield001.log [23616]

O61 - LFC:Last File Created 24/04/2010 - 17:05:03 -SHA- C:\Documents And Settings\CHANTAL\Local Settings\desktop.ini [62]

O61 - LFC:Last File Created 24/04/2010 - 17:05:12 -SHA- C:\Documents And Settings\CHANTAL\Cookies\index.dat [16384]

O61 - LFC:Last File Created 24/04/2010 - 17:05:12 -SHA- C:\Documents And Settings\CHANTAL\IETldCache\index.dat [245760]

O61 - LFC:Last File Created 24/04/2010 - 17:05:12 -SHA- C:\Documents And Settings\CHANTAL\Local Settings\Historique\History.IE5\index.dat [32768]

O61 - LFC:Last File Created 24/04/2010 - 17:06:33 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\VirusScan\mcmscsvc\mcmscsvc000.log [52338]

O61 - LFC:Last File Created 24/04/2010 - 17:06:37 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\Anti-Spam\MskSrver\MskSrver000.log [31176]

O61 - LFC:Last File Created 24/04/2010 - 17:06:58 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\VirusScan\mcsysmon\mcsysmon000.log [47038]

O61 - LFC:Last File Created 24/04/2010 - 17:07:37 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MSK\settingsdb.dat [3072]

O61 - LFC:Last File Created 24/04/2010 - 17:07:44 ---A- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\Windows\Themes\Custom.theme [5290]

O61 - LFC:Last File Created 24/04/2010 - 17:08:14 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Application Data\Microsoft\Wallpaper1.bmp [26873910]

O61 - LFC:Last File Created 24/04/2010 - 17:08:14 -SHA- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\Internet Explorer\Desktop.htt [2700]

O61 - LFC:Last File Created 24/04/2010 - 17:09:34 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcupdate\McUpdate001.log [16644]

O61 - LFC:Last File Created 24/04/2010 - 17:12:50 ---A- C:\Documents And Settings\All Users\Bureau\ZHPDiag.lnk [666]

O61 - LFC:Last File Created 24/04/2010 - 17:12:52 ---A- C:\Documents And Settings\All Users\Bureau\ZHPFix.lnk [661]

O61 - LFC:Last File Created 24/04/2010 - 17:12:52 ---A- C:\Documents And Settings\LocalService\Cookies\index.dat [32768]

O61 - LFC:Last File Created 24/04/2010 - 17:12:52 ---A- C:\Documents And Settings\LocalService\Local Settings\Historique\History.IE5\index.dat [16384]

O61 - LFC:Last File Created 24/04/2010 - 17:12:52 -SHA- C:\Documents And Settings\NetworkService\Local Settings\desktop.ini [62]

O61 - LFC:Last File Created 24/04/2010 - 17:12:53 --HA- C:\Documents And Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG [1024]

O61 - LFC:Last File Created 24/04/2010 - 17:12:53 --HA- C:\Documents And Settings\NetworkService\NTUSER.DAT [249856]

O61 - LFC:Last File Created 24/04/2010 - 17:12:53 --HA- C:\Documents And Settings\NetworkService\ntuser.dat.LOG [1024]

O61 - LFC:Last File Created 24/04/2010 - 17:12:53 -SHA- C:\Documents And Settings\NetworkService\ntuser.ini [184]

O61 - LFC:Last File Created 24/04/2010 - 17:13:03 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\ProcCache.sbc [10801]

O61 - LFC:Last File Created 24/04/2010 - 17:16:58 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcmscsvc\mcmscsvc001.log [121032]

O61 - LFC:Last File Created 24/04/2010 - 6:37:38 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\mcsmttsk\McUpdate\McUpdate001.log [64088]

O61 - LFC:Last File Created 24/04/2010 - 7:01:02 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\VirusScan\Quarantine\7da41881133c0.bup [16896]

O61 - LFC:Last File Created 24/04/2010 - 7:49:48 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcmscsvc\log.ini [121]

O61 - LFC:Last File Created 24/04/2010 - 7:49:48 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcmscsvc\mcmscsvc000.log [153646]

O61 - LFC:Last File Created 24/04/2010 - 7:57:18 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2\RegUBTB2-CHANTAL.reg [390]

O61 - LFC:Last File Created 24/04/2010 - 7:57:27 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MCLOGS\MISP\mcagent\mcagent001.log [38086]

O61 - LFC:Last File Created 24/04/2010 - 7:58:33 --HA- C:\Documents And Settings\All Users\NTUSER.DAT.LOG [1024]

O61 - LFC:Last File Created 24/04/2010 - 7:58:34 --HA- C:\Documents And Settings\Administrateur\ntuser.dat.LOG [1024]

O61 - LFC:Last File Created 24/04/2010 - 7:59:22 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\UpdateDL.sbe [0]

O61 - LFC:Last File Created 24/04/2010 - 7:59:47 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Overview.ini [0]

O61 - LFC:Last File Created 24/04/2010 - 8:00:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Bots.sbe [18]

O61 - LFC:Last File Created 24/04/2010 - 8:00:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Cookies.sbe [0]

O61 - LFC:Last File Created 24/04/2010 - 8:00:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\FileExt.sbe [0]

O61 - LFC:Last File Created 24/04/2010 - 8:00:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Links.sbe [0]

O61 - LFC:Last File Created 24/04/2010 - 8:00:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\Single.sbe [0]

O61 - LFC:Last File Created 24/04/2010 - 8:00:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\SystemInternals.sbe [126]

O61 - LFC:Last File Created 24/04/2010 - 8:00:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Excludes\WaitFor.sbe [0]

O61 - LFC:Last File Created 24/04/2010 - 8:00:08 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Immunization.ini [1056]

O61 - LFC:Last File Created 24/04/2010 - 8:01:52 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MSC\Logs\Events.dat [37888]

O61 - LFC:Last File Created 24/04/2010 - 8:02:04 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\nsr33.tmp\newadvsplash.dll [8704]

O61 - LFC:Last File Created 24/04/2010 - 8:02:05 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\~DFFE62.tmp [65536]

O61 - LFC:Last File Created 24/04/2010 - 8:03:48 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\ClamWin1.log [2703]

O61 - LFC:Last File Created 24/04/2010 - 8:06:12 ---A- C:\Documents And Settings\CHANTAL\Application Data\Microsoft\HTML Help\hh.dat [9240]

O61 - LFC:Last File Created 24/04/2010 - 8:14:58 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\runtime.msi [1388032]

O61 - LFC:Last File Created 24/04/2010 - 8:18:01 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\nso15.tmp [0]

O61 - LFC:Last File Created 24/04/2010 - 8:21:29 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\GLB1C.tmp [71680]

O61 - LFC:Last File Created 24/04/2010 - 8:21:29 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\nsz1B.tmp [0]

O61 - LFC:Last File Created 24/04/2010 - 8:21:45 ---A- C:\Documents And Settings\CHANTAL\Local Settings\Temp\nsk21.tmp [0]

O61 - LFC:Last File Created 24/04/2010 - 8:22:09 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2\RegBHO-Global.reg [2511]

O61 - LFC:Last File Created 24/04/2010 - 8:24:44 -SHA- C:\Documents And Settings\CHANTAL\Recent\Desktop.ini [150]

O61 - LFC:Last File Created 24/04/2010 - 8:26:54 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Configuration.ini [2176]

O61 - LFC:Last File Created 24/04/2010 - 8:26:54 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Resident.log [584]

O61 - LFC:Last File Created 24/04/2010 - 8:26:54 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2\RegUBME-CHANTAL.reg [80]

O61 - LFC:Last File Created 24/04/2010 - 8:26:54 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots2\Timestamps.ini [293]

O61 - LFC:Last File Created 24/04/2010 - 8:29:45 -SHA- C:\Documents And Settings\CHANTAL\Local Settings\Historique\History.IE5\MSHist012010042420100425\index.dat [32768]

O61 - LFC:Last File Created 24/04/2010 - 8:30:47 -SH-- C:\Documents And Settings\CHANTAL\Local Settings\Temporary Internet Files\desktop.ini [67]

O61 - LFC:Last File Created 24/04/2010 - 8:53:39 ---A- C:\Documents And Settings\CHANTAL\Recent\anti.lnk [244]

O61 - LFC:Last File Created 24/04/2010 - 8:53:39 ---A- C:\Documents And Settings\CHANTAL\Recent\hijackthis.lnk [357]

O61 - LFC:Last File Created 24/04/2010 - 8:58:27 -SH-- C:\Documents And Settings\CHANTAL\ntuser.ini [184]

O61 - LFC:Last File Created 24/04/2010 - 8:58:29 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\MPF\data\History.dat [5932]

O61 - LFC:Last File Created 24/04/2010 - 8:58:30 ---A- C:\Documents And Settings\All Users\Application Data\McAfee\VirusScan\Logs\OAS.Log [10688]

 

 

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)

O63 - Logiciel: ZHPDiag 1.25 - (.Nicolas Coolman.)

 

 

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: CurCS - (.not file.) - Gestion d'applications (AppMgmt) .(.Pas de propriétaire - Pas de description.) - LEGACY_APPMGMT

O64 - Services: CurCS - (.not file.) - Audio Windows (AudioSrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_AUDIOSRV

O64 - Services: CurCS - (.not file.) - Service de transfert intelligent en arrière-plan (BITS) .(.Pas de propriétaire - Pas de description.) - LEGACY_BITS

O64 - Services: CurCS - (.not file.) - Explorateur d'ordinateur (Browser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BROWSER

O64 - Services: CurCS - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe - Bluetooth Service (btwdins) .(.Broadcom Corporation. - Bluetooth Support Server.) - LEGACY_BTWDINS

O64 - Services: CurCS - C:\WINDOWS\system32\drivers\BVRPMPR5.sys - BVRPMPR5 NDIS Protocol Driver (BVRPMPR5) .(.Avanquest Software - BVRP NDIS 5.0 MPR Protocol Driver.) - LEGACY_BVRPMPR5

O64 - Services: CurCS - (.not file.) - Services de cryptographie (CryptSvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_CRYPTSVC

O64 - Services: CurCS - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(.Pas de propriétaire - Pas de description.) - LEGACY_DCOMLAUNCH

O64 - Services: CurCS - (.not file.) - Client DHCP (Dhcp) .(.Pas de propriétaire - Pas de description.) - LEGACY_DHCP

O64 - Services: CurCS - (.not file.) - Client DNS (Dnscache) .(.Pas de propriétaire - Pas de description.) - LEGACY_DNSCACHE

O64 - Services: CurCS - C:\WINDOWS\system32\MEMIO.sys - MEMIO (DOSMEMIO) .(.Pas de propriétaire - Pas de description.) - LEGACY_DOSMEMIO

O64 - Services: CurCS - (.not file.) - Configuration automatique de réseau câblé (Dot3svc) .(.Pas de propriétaire - Pas de description.) - LEGACY_DOT3SVC

O64 - Services: CurCS - (.not file.) - Service Protocole EAP (Extensible Authentication Protocol) (EapHost) .(.Pas de propriétaire - Pas de description.) - LEGACY_EAPHOST

O64 - Services: CurCS - (.not file.) - Service de rapport d'erreurs (ERSvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERSVC

O64 - Services: CurCS - (.not file.) - Système d'événements de COM+ (EventSystem) .(.Pas de propriétaire - Pas de description.) - LEGACY_EVENTSYSTEM

O64 - Services: CurCS - (.not file.) - Compatibilité avec le Changement rapide d'utilisateur (FastUserSwitchingCompatibility) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTUSERSWITCHINGCOMPATIBILITY

O64 - Services: CurCS - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate) (gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE

O64 - Services: CurCS - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Software Updater (gusvc) .(.Google - gusvc.) - LEGACY_GUSVC

O64 - Services: CurCS - (.not file.) - Aide et support (helpsvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_HELPSVC

O64 - Services: CurCS - (.not file.) - HTTP SSL (HTTPFilter) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTPFILTER

O64 - Services: CurCS - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE

O64 - Services: CurCS - (.not file.) - Serveur (LanmanServer) .(.Pas de propriétaire - Pas de description.) - LEGACY_LANMANSERVER

O64 - Services: CurCS - (.not file.) - Station de travail (LanmanWorkstation) .(.Pas de propriétaire - Pas de description.) - LEGACY_LANMANWORKSTATION

O64 - Services: CurCS - (.not file.) - Assistance TCP/IP NetBIOS (LmHosts) .(.Pas de propriétaire - Pas de description.) - LEGACY_LMHOSTS

O64 - Services: CurCS - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe - McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) .(.Pas de propriétaire - Pas de description.) - LEGACY_MCAFEE_SITEADVISOR_SERVICE

O64 - Services: CurCS - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe - McAfee Services (mcmscsvc) .(.McAfee, Inc. - McAfee Services.) - LEGACY_MCMSCSVC

O64 - Services: CurCS - c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe - McAfee Network Agent (McNASvc) .(.McAfee, Inc. - McAfee Network Agent.) - LEGACY_MCNASVC

O64 - Services: CurCS - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe - McAfee Scanner (McODS) .(.McAfee, Inc. - McAfee VirusScan - On Demand Scan.) - LEGACY_MCODS

O64 - Services: CurCS - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe - McAfee Proxy Service (McProxy) .(.McAfee, Inc. - McAfee Proxy Service Module.) - LEGACY_MCPROXY

O64 - Services: CurCS - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe - McAfee Real-time Scanner (McShield) .(.McAfee, Inc. - On-Access Scanner service.) - LEGACY_MCSHIELD

O64 - Services: CurCS - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe - McAfee SystemGuards (McSysmon) .(.McAfee, Inc. - McAfee SystemGuards Service.) - LEGACY_MCSYSMON

O64 - Services: CurCS - C:\WINDOWS\system32\drivers\mfeavfk.sys - McAfee Inc. mfeavfk (mfeavfk) .(.McAfee, Inc. - Anti-Virus File System Filter Driver.) - LEGACY_MFEAVFK

O64 - Services: CurCS - C:\WINDOWS\system32\drivers\mfebopk.sys - McAfee Inc. mfebopk (mfebopk) .(.McAfee, Inc. - Buffer Overflow Protection Driver.) - LEGACY_MFEBOPK

O64 - Services: CurCS - C:\WINDOWS\system32\drivers\mfehidk.sys - McAfee Inc. (mfehidk) .(.McAfee, Inc. - Host Intrusion Detection Link Driver.) - LEGACY_MFEHIDK

O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfehidk01) .(.Pas de propriétaire - Pas de description.) - LEGACY_MFEHIDK01

O64 - Services: CurCS - C:\WINDOWS\system32\drivers\mferkdk.sys - McAfee Inc. mferkdk (mferkdk) .(.McAfee, Inc. - VSCore Code Analysis Driver.) - LEGACY_MFERKDK

O64 - Services: CurCS - C:\WINDOWS\system32\drivers\mfesmfk.sys - McAfee Inc. mfesmfk (mfesmfk) .(.McAfee, Inc. - System Monitor Filter Driver.) - LEGACY_MFESMFK

O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\Mpfp.sys - MPFP (MPFP) .(.McAfee, Inc. - McAfee Personal Firewall Plus Driver.) - LEGACY_MPFP

O64 - Services: CurCS - C:\Program Files\McAfee\MPF\MPFSrv.exe - McAfee Personal Firewall Service (MpfService) .(.McAfee, Inc. - McAfee Personal Firewall Service.) - LEGACY_MPFSERVICE

O64 - Services: CurCS - C:\Program Files\McAfee\MSK\MskSrver.exe - McAfee Anti-Spam Service (MSK80Service) .(.McAfee, Inc. - McAfee Anti-Spam Server.) - LEGACY_MSK80SERVICE

O64 - Services: CurCS - (.not file.) - Mup (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP

O64 - Services: CurCS - (.not file.) - Pilote système NDIS (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS

O64 - Services: CurCS - (.not file.) - Connexions réseau (Netman) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETMAN

O64 - Services: CurCS - (.not file.) - NLA (Network Location Awareness) (Nla) .(.Pas de propriétaire - Pas de description.) - LEGACY_NLA

O64 - Services: CurCS - (.not file.) - Gestionnaire de connexion automatique d'accès distant (RasAuto) .(.Pas de propriétaire - Pas de description.) - LEGACY_RASAUTO

O64 - Services: CurCS - (.not file.) - Gestionnaire de connexions d'accès distant (RasMan) .(.Pas de propriétaire - Pas de description.) - LEGACY_RASMAN

O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPNP

O64 - Services: CurCS - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(.Pas de propriétaire - Pas de description.) - LEGACY_RPCSS

O64 - Services: CurCS - C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe - Samsung Update Plus (Samsung Update Plus) .(.Pas de propriétaire - Pas de description.) - LEGACY_SAMSUNG_UPDATE_PLUS

O64 - Services: CurCS - (.not file.) - Planificateur de tâches (Schedule) .(.Pas de propriétaire - Pas de description.) - LEGACY_SCHEDULE

O64 - Services: CurCS - (.not file.) - Connexion secondaire (seclogon) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECLOGON

O64 - Services: CurCS - (.not file.) - Notification d'événement système (SENS) .(.Pas de propriétaire - Pas de description.) - LEGACY_SENS

O64 - Services: CurCS - (.not file.) - Pare-feu Windows / Partage de connexion Internet (SharedAccess) .(.Pas de propriétaire - Pas de description.) - LEGACY_SHAREDACCESS

O64 - Services: CurCS - (.not file.) - Détection matériel noyau (ShellHWDetection) .(.Pas de propriétaire - Pas de description.) - LEGACY_SHELLHWDETECTION

O64 - Services: CurCS - (.not file.) - Service de restauration système (srservice) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRSERVICE

O64 - Services: CurCS - (.not file.) - Service de découvertes SSDP (SSDPSRV) .(.Pas de propriétaire - Pas de description.) - LEGACY_SSDPSRV

O64 - Services: CurCS - (.not file.) - Acquisition d'image Windows (WIA) (stisvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_STISVC

O64 - Services: CurCS - C:\WINDOWS\system32\DRIVERS\SUE_PD.sys - SUE NDIS Protocol Driver (SUEPD) .(.Samsung - SUE NDIS User mode I/O Driver.) - LEGACY_SUEPD

O64 - Services: CurCS - (.not file.) - Téléphonie (TapiSrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_TAPISRV

O64 - Services: CurCS - (.not file.) - Services Terminal Server (TermService) .(.Pas de propriétaire - Pas de description.) - LEGACY_TERMSERVICE

O64 - Services: CurCS - (.not file.) - Thèmes (Themes) .(.Pas de propriétaire - Pas de description.) - LEGACY_THEMES

O64 - Services: CurCS - (.not file.) - Client de suivi de lien distribué (TrkWks) .(.Pas de propriétaire - Pas de description.) - LEGACY_TRKWKS

O64 - Services: CurCS - (.not file.) - Hôte de périphérique universel Plug-and-Play (upnphost) .(.Pas de propriétaire - Pas de description.) - LEGACY_UPNPHOST

O64 - Services: CurCS - (.not file.) - Horloge Windows (W32Time) .(.Pas de propriétaire - Pas de description.) - LEGACY_W32TIME

O64 - Services: CurCS - (.not file.) - WebClient (WebClient) .(.Pas de propriétaire - Pas de description.) - LEGACY_WEBCLIENT

O64 - Services: CurCS - (.not file.) - Infrastructure de gestion Windows (winmgmt) .(.Pas de propriétaire - Pas de description.) - LEGACY_WINMGMT

O64 - Services: CurCS - (.not file.) - Centre de sécurité (wscsvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_WSCSVC

O64 - Services: CurCS - (.not file.) - Mises à jour automatiques (wuauserv) .(.Pas de propriétaire - Pas de description.) - LEGACY_WUAUSERV

O64 - Services: CurCS - (.not file.) - Configuration automatique sans fil (WZCSVC) .(.Pas de propriétaire - Pas de description.) - LEGACY_WZCSVC

O64 - Services: CurCS - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe - Yahoo! Updater (YahooAUService) .(.Yahoo! Inc. - AutoUpater Service Module.) - LEGACY_YAHOOAUSERVICE

O64 - Services: CurCS - (.not file.) - Marvell Yukon Service (yksvc) .(.Pas de propriétaire - Pas de description.) - LEGACY_YKSVC

 

encore merci

alain

 

[pear]

Avez vous corrigé le Wifi par le lien plus haut ?

 

 

Téléchargez MBAM

 

Branchez tous les supports amovibles avant de faire ce scan (clé usb/disque dur externe etc)

Avant de lancer Mbam

Vous devez d'abord désactiver vos protections mais vous ne savez pas comment faire

 

* Double cliquez sur l'icône Download_mbam-setup.exe pour lancer le processus d'installation.

Enregistrez le sur le bureau .

Fermer toutes les fenêtres et programmes

Suivez les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet)

N'apportez aucune modification aux réglages par défaut et, en fin d'installation,

Vérifiez que les options Update et Launch soient cochées

MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse.

cliquer sur OK pour fermer la boîte de dialogue..

* Dans l'onglet "mise à jour", cliquez sur le bouton Recherche de mise à jour:

Si le pare-feu demande l'autorisation à MBAM de se connecter, acceptez.

* Une fois la mise à jour terminée, allez dans l'onglet Recherche.

* Sélectionnez "Exécuter un examen complet"

* Cliquez sur "Rechercher"

* .L' analyse prendra un certain temps, soyez patient !

* A la fin , un message affichera :

L'examen s'est terminé normalement.

 

*Si MBAM n'a rien trouvé, il le dira aussi.

Cliquez sur "Ok" pour poursuivre.

*Fermez les navigateurs.

Cliquez sur Afficher les résultats .

 

*Sélectionnez tout et cliquez sur Supprimer la sélection ,

MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

puis ouvrir le Bloc-notes et y copier le rapport d'analyse qui peut être retrouvé sous l'onglet Rapports/logs.

* Copiez-collez ce rapport dans la prochaine réponse.

[alain488]

pour le wifi, "Configuration automatique sans fil" est bien en automatique.

 

par contre 'NDIS Usemode I/O Protocol' est introuvable dans les services

 

toujours pas de connection, donc pas de MAJ possible.

lors de l'instalation de MBAM, j'ai un message d'erreur

"run-time error 372

failed to load control vbalgrid from vbalsgrid6.ocx. your version of vbalsgrid6.ocx may be outdated. make sure you are using the version of the control that was provided with your application.

 

alain

[pear]

Essayez ceci:

Démarrer->Exécuter->Regedit

Aller à HKLM->System->CurrentControlSet->Services->Ndisuio

chercher la valeur Start et vérifier que sa donnée vaut bien 3(et pas 4).

 

Redémarrer et essaiyer de relancer le Service avec droits administrateur:

Démarrer->Exécuter

net start ndisuio

[alain488]

chercher la valeur Start et vérifier que sa donnée vaut bien 3(et pas 4).

je l'avais déjà vérifier hier après des recherches dans google.

 

Démarrer->Exécuter -- net start ndisuio

cela n'a donné aucun changement.

 

j'ai l'ai branché par cable adsl et toujours pas de connexion internet.

 

je ne sais vraiment plus quoi faire

 

alain

[pear]

Vous ne m'avez pas dit si vous aviez bien suivi ceci:

Erreur 1068 Wifi

[alain488]

bonjour Pear

 

désolé, j'ai effectivement essayé avec Findykill et cela n'a rien donné, voici le rapport

 

############################## | FindyKill V5.040 |

################## | Eléments infectieux |

################## | Registre |

################## | Etat |

# Affichage des fichiers cachés : OK

# Mode sans echec : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )

# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )

# Ip6Fw -> Start = 3 ( Good = 2 | Bad = 4 )

# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )

# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )

# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )

################## | ! Fin du rapport # FindyKill V5.040 ! |

 

mais je n'ai pas que le wifi qui déconne, la connexion par câble ne marche pas non plus, je doit tout mettre sur clé usb pour essayer.

 

pas moyen d'afficher les propriétés des services, quand je fait clik droit propriétés, il ne se passe rien.

 

et tout des petites choses du même genre, par contre word fonctionne bien.

 

alain

 

j'ai

[pear]

Avez vous récemment fait une mise à jour de Mcafee ?

 

Si c'est le cas:

Problème avec Update Mc afee

Autorité nt virus ?

redémarrer en mode sans échec avec prise en charge réseau?

Télécharger le correctif 5959

 

Lancer le correctif 5959.exe

Télécharge le fichier correspondant à la version de windows

svchost.exe (Windows XP Pro)

svchost.exe (Windows XP Familial)

 

Dézippez le et placez svchost.exe dans C:/windows/system32/

Redémarrer

 

 

autre solution:

La solution, pour ceux qui ont été affectés, passe par le téléchargement d'un correctif et le redémarrage en mode sans échec des machines affectées afin de pouvoir l'exécuter depuis un CD ou une clé USB.

Correctif McAfee

Modifié le 25 avril 2010 par pear