PC infecté par virus gibsvc[1].exe

[benj6921]

Bonjour,

Voila j'ai window 7 et j'ai un souci avec un virus, quand je lance un scan avec avast a la fin de mon scan il me dit que j'ai se virus: gibsvc[1] exe. Mais quand je veux le suprimer ou même le mettre en quarantaine je ne peux pas. quelqu'un pourrait m'aider

Merci

[pear]

Bonsoir,

Téléchargez cet outil de diagnostic.

 

Téléchargez Random's system information tool (RSIT) par random/random et sauvegardez-le sur le Bureau.

 

Double-cliquez sur RSIT.exe afin de lancer RSIT.

* Cliquez Continue à l'écran Disclaimer.

* Si l'outil HIjackThis (version à jour) n'est pas présent ou détecté sur l'ordinateur, RSIT le télécharge et vous acceptez la licence.

* L'analyse terminée, deux fichiers texte s'ouvriront.:

Poster le contenu de log.txt (qui sera affiché)

ainsi que de info.txt (qui sera réduit dans la Barre des Tâches).

* Si ces deux rapports n'apparaissent pas, vous les trouverez dans le dossier C:\rsit

Si les rapports sont trop lourds, postez les en plusieurs fois

 

 

Téléchargez MBAM

 

Branchez tous les supports amovibles avant de faire ce scan (clé usb/disque dur externe etc)

Avant de lancer Mbam

Vous devez d'abord désactiver vos protections mais vous ne savez pas comment faire

 

* Double cliquez sur l'icône Download_mbam-setup.exe pour lancer le processus d'installation.

Enregistrez le sur le bureau .

Fermer toutes les fenêtres et programmes

Suivez les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet)

N'apportez aucune modification aux réglages par défaut et, en fin d'installation,

Vérifiez que les options Update et Launch soient cochées

MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse.

cliquer sur OK pour fermer la boîte de dialogue..

* Dans l'onglet "mise à jour", cliquez sur le bouton Recherche de mise à jour:

Si le pare-feu demande l'autorisation à MBAM de se connecter, acceptez.

* Une fois la mise à jour terminée, allez dans l'onglet Recherche.

* Sélectionnez "Exécuter un examen complet"

* Cliquez sur "Rechercher"

* .L' analyse prendra un certain temps, soyez patient !

* A la fin , un message affichera :

L'examen s'est terminé normalement.

 

*Si MBAM n'a rien trouvé, il le dira aussi.

Cliquez sur "Ok" pour poursuivre.

*Fermez les navigateurs.

Cliquez sur Afficher les résultats .

 

*Sélectionnez tout et cliquez sur Supprimer la sélection ,

MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

puis ouvrir le Bloc-notes et y copier le rapport d'analyse qui peut être retrouvé sous l'onglet Rapports/logs.

* Copiez-collez ce rapport dans la prochaine réponse.

[benj6921]

Quand j'ouvre RSIT il me demande d'acepter pour ouvrir je clic apres il m'ouvre la page ou il faut clicer sur "continue" je clic, aprés il m'ouvre une petit fenêtre avec une bare verte et des que cette bare avance au 3/4 j'ai cette fenêter qui s'ouvre et ma bare verte n'avance plus.

 

---------------------------

AutoIt Error

---------------------------

Line 2563 (File "C:\Users\benj\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I51299CT\RSIT[1].exe"):

 

 

Error: Variable used without being declared.

---------------------------

OK

---------------------------

 

ET si je click sur "OK" il me ferme tout que faire?

[benj6921]

J'ai quand même effectuer le scan avec MBAM et il ma détécté un virus, je les suprimer

 

Je te donne le raport :

 

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

 

Version de la base de données: 4209

 

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

 

17/06/2010 20:55:54

mbam-log-2010-06-17 (20-55-54).txt

 

Type d'examen: Examen complet (C:\|D:\|)

Elément(s) analysé(s): 358279

Temps écoulé: 59 minute(s), 39 seconde(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 1

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

HKEY_CURRENT_USER\Software\Winsudate (Adware.édité) -> Quarantined and deleted successfully.

 

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

 

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

 

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

[pear]

C'est bien.

On va cependant vérifier que tout est en ordre:

 

Lancez cet outil de diagnostic:

Téléchargez ZhpDiag de Coolman

Il ne nécessite aucune installation.

- Il peut être lancé depuis n'importe quelle unité de disque.

- Il peut être lancé d'une clé USB.

 

Cliquez sur le tournevis

Dans la fenêtre qui s'ouvre, cochez tout.

Clic sur la Loupe pour lancer le scan

Au bout d'un moment ,vous pouvez avoir à Accepter Sysinternal->I agree

Postez en le rapport qui apparait en cliquant l'appareil photo.

[benj6921]

ZHPFix v1.12.3108 by Nicolas Coolman - Rapport de suppression du 17/06/2010 23:34:34

Fichier d'export Registre :

Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html

Contact : nicolascoolman@yahoo.fr

 

Processus mémoire :

(Néant)

 

Module mémoire :

(Néant)

 

Clé du Registre :

(Néant)

 

Valeur du Registre :

(Néant)

 

Elément de données du Registre :

(Néant)

 

Préférences navigateur :

(Néant)

 

Dossier :

(Néant)

 

Fichier :

(Néant)

 

Logiciel :

(Néant)

 

Script Registre :

(Néant)

 

Master Boot Record :

(Néant)

 

Autre :

Malwarebytes' Anti-Malware 1.46 => Format Non supporté

www.malwarebytes.org => Format Non supporté

Version de la base de données: 4209 => Format Non supporté

Windows 6.1.7600 => Format Non supporté

Internet Explorer 8.0.7600.16385 => Format Non supporté

17/06/2010 20:55:54 => Format Non supporté

mbam-log-2010-06-17 (20-55-54).txt => Format Non supporté

Type d'examen: Examen complet (C:\|D:\|) => Format Non supporté

Elément(s) analysé(s): 358279 => Format Non supporté

Temps écoulé: 59 minute(s), 39 seconde(s) => Format Non supporté

Processus mémoire infecté(s): 0 => Format Non supporté

Module(s) mémoire infecté(s): 0 => Format Non supporté

Clé(s) du Registre infectée(s): 1 => Format Non supporté

Valeur(s) du Registre infectée(s): 0 => Format Non supporté

Elément(s) de données du Registre infecté(s): 0 => Format Non supporté

Dossier(s) infecté(s): 0 => Format Non supporté

Fichier(s) infecté(s): 0 => Format Non supporté

Processus mémoire infecté(s): => Format Non supporté

(Aucun élément nuisible détecté) => Format Non supporté

Module(s) mémoire infecté(s): => Format Non supporté

(Aucun élément nuisible détecté) => Format Non supporté

Clé(s) du Registre infectée(s): => Format Non supporté

HKEY_CURRENT_USER\Software\Winsudate (Adware.édité) -> Quarantined and deleted successfully. => Format Non supporté

Valeur(s) du Registre infectée(s): => Format Non supporté

(Aucun élément nuisible détecté) => Format Non supporté

Elément(s) de données du Registre infecté(s): => Format Non supporté

(Aucun élément nuisible détecté) => Format Non supporté

Dossier(s) infecté(s): => Format Non supporté

(Aucun élément nuisible détecté) => Format Non supporté

Fichier(s) infecté(s): => Format Non supporté

(Aucun élément nuisible détecté) => Format Non supporté

 

 

Récapitulatif :

Processus mémoire : 0

Module mémoire : 0

Clé du Registre : 0

Valeur du Registre : 0

Elément de données du Registre : 0

Dossier : 0

Fichier : 0

Logiciel : 0

Master Boot Record : 0

Préférences navigateur : 0

Autre : 31

 

 

End of the scan

 

 

Voila c'est ce que j'ai.

 

 

Le souci c que j'ai relancer un scan avec avast 5 et il me retouve toujours mes deux fichier infecter

[benj6921]

Voici le bon (desolé)

 

 

Rapport de ZHPDiag v1.25.1436 par Nicolas Coolman, Update du 14/06/2010

Run by benj at 17/06/2010 23:45:51

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

 

---\\ System Information

Platform : Windows 7 Home Premium (6.1.7600)

Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3998 MB (50% free)

System drive C: has 193 GB (67%) free of 285 GB

 

---\\ Logged in mode

Computer Name: BENJ-PC

User Name: benj

All Users Names: HomeGroupUser$, benj, Administrateur,

Unselected Option: None

Logged in as Administrator

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 193 Go of 285 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go)

E:\ CD-ROM drive (Not Inserted)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

 

 

---\\ Processus lancés

[MD5.A2814FED5A47B00BBC99AC58F93B9337] - (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files (x86)\HP\QuickPlay\QPService.exe [468264]

[MD5.5C5D40DDDE89190B2B3A19EDAC1CCF55] - (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [218408]

[MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640]

[MD5.E8F915D5140A75ABFF036BBF9D0941AD] - (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [581480]

[MD5.33E5A8FC8EB0EE42478F8538D0215D8F] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696]

[MD5.15657931FB7CA61FA1B72B955E1799E7] - (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [60464]

[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [54576]

[MD5.5D24868CAC87DCD70C5B71101D39B0DE] - (.Google Inc. - Google Quick Search Box.) -- C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe [122880]

[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java™ Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040]

[MD5.A171B56DA31CEA530BFC03734841BD79] - (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [500792]

[MD5.3C6C546F303C1B956C6F5C436C97CB8F] - (.ALWIL Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe [2815192]

[MD5.3103FE27C967675B019E880AA6DA3D6D] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [935288]

[MD5.5F0388038E7355982FE50B039D10315C] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [437584]

[MD5.9157189DC07511ECBBE1D2615D8A2FED] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1668664]

[MD5.CCF2234A35077CA217A61C9CACC48198] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392]

[MD5.18B4B12358EFCF68D76812058A26181F] - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [3883856]

[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]

[MD5.8FC6C4EE0A2D3EBAA70FA38F99141BCE] - (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe [1475072]

[MD5.75A83DB4023D635EBEB4DD3EA574EDCB] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [24103720]

[MD5.EA6EADF6314E43783BA8EEE79F93F73C] - (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe [1173504]

[MD5.0FA760BF380B08D0B67B5507CD8B32AA] - (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe [97280]

[MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [89600]

[MD5.C78655BC80301D76ED4FEF1C1EA40A7D] - (.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe [27136]

[MD5.AE28BA1361D8040D8850F21CACFCCCE9] - (.ALWIL Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664]

[MD5.58C91CCA61A948DC6E789C93C05A1D6F] - (.Hewlett-Packard - HP Health Check Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [121344]

[MD5.83D8BE94E1CBCBE2EA8372DB1A95A159] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728]

[MD5.498EB62A160674E793FA40FD65390625] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152]

[MD5.0793F40B9B8A1BDD266296409DBD91EA] - (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe [31232]

[MD5.89E8550C5862999FCF482EA562B0E98E] - (.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\System32\spoolsv.exe [558080]

[MD5.913D843498553A1BC8F8DBAD6358E49F] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\Windows\system32\sppsvc.exe [3524608]

[MD5.810199DCC3BDC38304D7D649992EA7BC] - (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [240128]

[MD5.AD31942BDF3D594C404874613BC2FE4D] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) -- C:\Windows\system32\SearchIndexer.exe [593408]

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: Shell=explorer.exe

 

 

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = <a href="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" target="_blank">Bing</a>

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = <a href="http://go.microsoft.com/fwlink/?LinkId=54896" target="_blank">Bing</a>

 

 

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ask.com - Ask.com Toolbar.) (5.6.6.117) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

R3 - URLSearchHook: UrlSearchHook Class - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O2 - BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} . (.AOL LLC - AOL IE Toolbar Dynamic Link Library.) -- C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

 

 

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} . (.AOL LLC - AOL IE Toolbar Dynamic Link Library.) -- C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll

O3 - Toolbar: LimeWire Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

 

 

---\\ Applications démarrées automatiquement par le registre (O4)

O4 - HKLM\..\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files (x86)\HP\QuickPlay\QPService.exe

O4 - HKLM\..\Run: [uCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe

O4 - HKLM\..\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [Google Quick Search Box] . (.Google Inc. - Google Quick Search Box.) -- C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java™ Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [WirelessAssistant] . (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Run: [avast5] . (.ALWIL Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe

O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe

O4 - HKLM\..\Wow6432Node\Run: [QPService] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files (x86)\HP\QuickPlay\QPService.exe

O4 - HKLM\..\Wow6432Node\Run: [uCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe

O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe

O4 - HKLM\..\Wow6432Node\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Wow6432Node\Run: [Google Quick Search Box] . (.Google Inc. - Google Quick Search Box.) -- C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe

O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java™ Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.ALWIL Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Wow6432Node\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

O4 - HKUS\S-1-5-18\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

O4 - HKUS\S-1-5-18\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

O4 - Global Startup: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe

O4 - Global Startup: LimeWire On Startup.lnk . (.Lime Wire, LLC - LimeWire.) -- C:\Program Files (x86)\LimeWire\LimeWire.exe

O4 - Global Startup: OneNote 2007 - Capture d'écran et lancement.lnk . (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: &Recherche AOL Toolbar . (.Pas de propriétaire - Pas de description.) -- C:\ProgramData\AOL\ieToolbar\resources\fr-FR\local\search.html

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~4\Office12\EXCEL.exe

O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~4\Office12\REFBARH.ICO

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - <a href="http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab" target="_blank">Page introuvable | Facebook</a>

O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - <a href="http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx" target="_blank">http://trial.trymicrosoftoffice.com/trialo...osoft/wrc32.ocx</a>

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - <a href="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab" target="_blank">http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab</a>

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe

O23 - Service: avast! Antivirus (avast! Antivirus) . (.ALWIL Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

O23 - Service: C:\Windows\system32\samsrv.dll (SamSs) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\lsass.exe

O23 - Service: C:\Windows\system32\spoolsv.exe (Spooler) . (.Pas de propriétaire - Pas de description.) - C:\Windows\System32\spoolsv.exe

O23 - Service: C:\Windows\system32\sppsvc.exe (sppsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\sppsvc.exe

O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe

O23 - Service: C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (WMPNetworkSvc) . (.Pas de propriétaire - Pas de description.) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

 

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java™ Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\regutils.dll

O40 - ASIC: LightScribe Control Panel - {10880D85-AAD9-4558-ABDC-2AB1552D831F} . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe

O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10e.ocx

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (blbdrive) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: Pilote de CD-ROM (cdrom) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\discache.sys

O41 - Driver: Pilote BIOS de gestion de systémes Microsoft (mssmbios) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mssmbios.sys

O41 - Driver: NetBIOS Interface (NetBIOS) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdprefmp.sys

O41 - Driver: Pilote de port série (Serial) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\serial.sys

O41 - Driver: Pilote de périphérique terminal (TermDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: Virtual WiFi Filter Driver (vwififlt) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\vwififlt.sys

O41 - Driver: WFP Lightweight Filter (WfpLwf) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\wfplwf.sys

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: AOL Toolbar 5.0 - (.AOL LLC.) [HKLM]

O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: Activer Norton Online Backup - (.Symantec.) [HKLM]

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM]

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems, Inc..) [HKLM]

O42 - Logiciel: Adobe Reader 9.2 MUI - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM]

O42 - Logiciel: Ask.com Search Assistant 1.0.2 - (.Ask.com.) [HKLM]

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM]

O42 - Logiciel: Code de la route - (.Anuman Interactive.) [HKLM]

O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM]

O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM]

O42 - Logiciel: Facebook Plug-In - (.Facebook, Inc..) [HKCU]

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]

O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: HP DVD Play 3.7 - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: HP Games - (.WildTangent.) [HKLM]

O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM]

O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: HP User Guides 0148 - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: IDT Audio - (.IDT.) [HKLM]

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Java™ 6 Update 16 - (.Sun Microsystems, Inc..) [HKLM]

O42 - Logiciel: Java™ 6 Update 18 - (.Sun Microsystems, Inc..) [HKLM]

O42 - Logiciel: Java™ 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM]

O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM]

O42 - Logiciel: LimeWire 5.5.8 - (.Lime Wire, LLC.) [HKLM]

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM]

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM]

O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM]

O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM]

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM]

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM]

O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM]

O42 - Logiciel: PowerRecover - (.CyberLink Corp..) [HKLM]

O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM]

O42 - Logiciel: Realtek 8136 8168 8169 Ethernet Driver - (.Realtek.) [HKLM]

O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB982135) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM]

O42 - Logiciel: Skype™ 4.0 - (.Skype Technologies S.A..) [HKLM]

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM]

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM]

O42 - Logiciel: Update for Microsoft Office Word 2007 (KB974631) - (.Microsoft.) [HKLM]

O42 - Logiciel: VLC media player 1.0.2 - (.VideoLAN Team.) [HKLM]

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM]

O42 - Logiciel: muvee Reveal - (.muvee Technologies Pte Ltd.) [HKLM]

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\2LMultimedia]

[HKCU\Software\ALWIL Software]

[HKCU\Software\AOL]

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow]

[HKCU\Software\Ask.com]

[HKCU\Software\AskSearchAsst]

[HKCU\Software\AskToolbar]

[HKCU\Software\Aurigma]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CyberLink]

[HKCU\Software\EasyBits]

[HKCU\Software\GameHouse]

[HKCU\Software\Google]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\HipSoft]

[HKCU\Software\IM Providers]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\LightScribe]

[HKCU\Software\Macromedia]

[HKCU\Software\Magnet]

[HKCU\Software\MainConcept (Muvee)]

[HKCU\Software\MainConcept (Muvee2)]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Netscape]

[HKCU\Software\Norton]

[HKCU\Software\ODBC]

[HKCU\Software\OpenOffice.org]

[HKCU\Software\Patchou]

[HKCU\Software\Policies]

[HKCU\Software\Skype]

[HKCU\Software\Synaptics]

[HKCU\Software\Sysinternals]

[HKCU\Software\Trolltech]

[HKCU\Software\ValuSoft]

[HKCU\Software\WildTangent]

[HKCU\Software\Wow6432Node]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\funkitron]

[HKLM\Software\ALWIL Software]

[HKLM\Software\Adobe]

[HKLM\Software\America Online]

[HKLM\Software\Atheros]

[HKLM\Software\Caphyon]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Cyberlink]

[HKLM\Software\Digital River]

[HKLM\Software\EasyBits]

[HKLM\Software\Google]

[HKLM\Software\HPQLOG]

[HKLM\Software\HPQ]

[HKLM\Software\HP]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\IDT]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\LabelPrint_Upgrade]

[HKLM\Software\LightScribe]

[HKLM\Software\Macromedia]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Norton]

[HKLM\Software\ODBC]

[HKLM\Software\OpenOffice.org]

[HKLM\Software\P2G_Upgrade]

[HKLM\Software\PDR_Upgrade]

[HKLM\Software\Patchou]

[HKLM\Software\Policies]

[HKLM\Software\Product_Upgrade]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Skype]

[HKLM\Software\Sun Microsystems]

[HKLM\Software\Symantec]

[HKLM\Software\TrendMicro]

[HKLM\Software\VideoLAN]

[HKLM\Software\WildTangent]

[HKLM\Software\Windows]

[HKLM\Software\Winsudate]

[HKLM\Software\iWin]

[HKLM\Software\mcafeeupdater]

[HKLM\Software\mozilla.org]

[HKLM\Software\muvee Technologies]

 

 

---\\ Contenu des dossiers Fichiers Communs (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Anuman Interactive

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\AOL

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Ask Search Assistant

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Ask.com

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Atheros

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\CyberLink

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EasyBits For Kids

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Hewlett-Packard

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Hp

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\HP Games

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\JRE

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\LimeWire

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\McAfee Security Scan

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Messenger Plus! Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\muvee Technologies

O43 - CFD:Common File Directory R---D- C:\Program Files (x86)\Online Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\OpenOffice.org 3

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD:Common File Directory R---D- C:\Program Files (x86)\Skype

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Symantec

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\trend micro

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VideoLAN

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe AIR

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\LightScribe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\muvee Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.00000000000000000000000000000000] - 17/06/2010 - 22:17:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1201064]

O44 - LFC:[MD5.CD5A592D343FB8D452D98A380FACA8EE] - 17/06/2010 - 22:17:11 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.E585CA2967C45464D97F48764F9260F4] - 17/06/2010 - 12:59:03 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\BRWMARK.INI [441]

O44 - LFC:[MD5.E5A71BF9AA1569A43B270CC2AC578CCE] - 17/06/2010 - 11:23:33 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [23248]

O44 - LFC:[MD5.E5A71BF9AA1569A43B270CC2AC578CCE] - 17/06/2010 - 11:23:33 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [23248]

O44 - LFC:[MD5.FAE10AA6451AA59E62C36B94B64C4C40] - 17/06/2010 - 11:15:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [78526]

O44 - LFC:[MD5.B365A3FA489E9E19541AE449113CAFB0] - 11/06/2010 - 20:23:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1524562]

O44 - LFC:[MD5.C6F145E3793460A56028E54B6A084431] - 11/06/2010 - 20:23:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [103568]

O44 - LFC:[MD5.0D4607DA081946EDD91C2D0431E232BD] - 11/06/2010 - 20:23:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [127684]

O44 - LFC:[MD5.08CE9D1E38ABB5E24C9B53ABFE5D454F] - 11/06/2010 - 20:23:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [607190]

O44 - LFC:[MD5.8062FB9A9A3B257B1DA8122828C5823E] - 11/06/2010 - 20:23:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [695004]

O44 - LFC:[MD5.BC37D3C88EC148FEB248A6F798E59EEE] - 11/06/2010 - 20:20:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [375992]

O44 - LFC:[MD5.30D6067496182C3A6AC273815F5604D0] - 01/06/2010 - 17:48:53 ---A- . (.ALWIL Software - avast! Screen Saver stub.) -- C:\Windows\System32\avastSS.scr [38848]

O44 - LFC:[MD5.628D70483747CB6F70A2372937865A13] - 27/05/2010 - 08:24:13 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304]

O44 - LFC:[MD5.628D70483747CB6F70A2372937865A13] - 27/05/2010 - 07:34:09 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [46080]

O44 - LFC:[MD5.3C9EBFF68D64090FCCB9971ACA6D9E18] - 27/05/2010 - 05:11:32 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [366080]

O44 - LFC:[MD5.3C9EBFF68D64090FCCB9971ACA6D9E18] - 27/05/2010 - 04:49:37 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [293888]

O44 - LFC:[MD5.CD738BB1C10B4FC9A9E2C5C3BC7C46C3] - 26/05/2010 - 18:04:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [241504]

O44 - LFC:[MD5.4DAFA018FCE10466ADEE83D2409648F7] - 24/05/2010 - 12:28:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\hpqlb.log [186]

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:Last File Created Prefetch 14/06/2010 - 18:14:57 ---A- C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:Last File Created Prefetch 16/06/2010 - 22:03:48 ---A- C:\Windows\Prefetch\AgCx_SC2.db

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:18:22 ---A- C:\Windows\Prefetch\HPQTOASTER.EXE-9F5223FF.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:18:24 ---A- C:\Windows\Prefetch\HPCASLNOTIFICATION.EXE-F1274B82.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:18:30 ---A- C:\Windows\Prefetch\HPHC_SERVICE.EXE-5151F760.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:18:31 ---A- C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:18:32 ---A- C:\Windows\Prefetch\SVCHOST.EXE-05F624AB.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:18:42 ---A- C:\Windows\Prefetch\PRESENTATIONFONTCACHE.EXE-73BE9E78.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:20:04 ---A- C:\Windows\Prefetch\CSC.EXE-A3B8D95D.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:20:04 ---A- C:\Windows\Prefetch\CVTRES.EXE-069169FB.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:20:17 ---A- C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:20:25 ---A- C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:29:06 ---A- C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 11:29:18 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-A3E35360.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:34:34 ---A- C:\Windows\Prefetch\Layout.ini

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:34:43 ---A- C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:34:44 ---A- C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:35:14 ---A- C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:37:14 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:43:01 ---A- C:\Windows\Prefetch\SF.BIN-2C58614F.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:44:13 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:44:14 ---A- C:\Windows\Prefetch\SDIAGNHOST.EXE-8D72177C.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:44:18 ---A- C:\Windows\Prefetch\CSC.EXE-BE9AC2DF.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:44:18 ---A- C:\Windows\Prefetch\CVTRES.EXE-2B9D810D.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:44:24 ---A- C:\Windows\Prefetch\W32TM.EXE-1101AF41.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:44:27 ---A- C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:44:28 ---A- C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:44:33 ---A- C:\Windows\Prefetch\PING.EXE-7E94E73E.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 15:45:40 ---A- C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 17:41:00 ---A- C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-9F8DD97B.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 17:58:35 ---A- C:\Windows\Prefetch\RSIT[1].EXE-E5B8E029.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:16:14 ---A- C:\Windows\Prefetch\SOFFICE.BIN-7F88D3BE.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:16:23 ---A- C:\Windows\Prefetch\SOFFICE.EXE-8BFABAE3.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:17:56 ---A- C:\Windows\Prefetch\RSIT[1].EXE-81598843.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:27:19 ---A- C:\Windows\Prefetch\BENJ.EXE-5B24805F.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:27:22 ---A- C:\Windows\Prefetch\RSIT.EXE-F312366C.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:27:24 ---A- C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:33:38 ---A- C:\Windows\Prefetch\MBAM-SETUP-1.46[1].TMP-BF744728.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:33:44 ---A- C:\Windows\Prefetch\MBAM-SETUP-1.46[1].EXE-C09374D8.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:33:44 ---A- C:\Windows\Prefetch\MBAM-SETUP-1.46[1].TMP-920CE4F2.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:33:55 ---A- C:\Windows\Prefetch\MBAMGUI.EXE-1CA97248.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:34:53 ---A- C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:34:53 ---A- C:\Windows\Prefetch\REGSVR32.EXE-D5170E12.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:35:02 ---A- C:\Windows\Prefetch\MBAM.EXE-80210E2F.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:16:54 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-C835004E.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:26:16 ---A- C:\Windows\Prefetch\WMPNSCFG.EXE-508A5966.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:26:49 ---A- C:\Windows\Prefetch\AVAST.SETUP-3DA1C849.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:28:54 ---A- C:\Windows\Prefetch\MSNMSGR.EXE-D22CE80C.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:29:10 ---A- C:\Windows\Prefetch\WLCOMM.EXE-324C9362.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:55:36 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-87432CEE.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:55:46 ---A- C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-F11F9E20.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:55:54 ---A- C:\Windows\Prefetch\REGEDIT.EXE-D293AB50.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:56:04 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-46CE6097.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 19:56:34 ---A- C:\Windows\Prefetch\FLASHUTIL10E.EXE-6465700C.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 20:53:11 ---A- C:\Windows\Prefetch\SF.BIN-02FD33BC.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 21:07:35 ---A- C:\Windows\Prefetch\GOOGLETOOLBARUSER_32.EXE-34B1B1C5.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 21:08:19 ---A- C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:17:19 ---A- C:\Windows\Prefetch\AgCx_SC1.db.trx

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:17:25 ---A- C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:17:35 ---A- C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:18:20 ---A- C:\Windows\Prefetch\AgCx_SC1.db

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:20:18 ---A- C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:21:30 ---A- C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-3026017552-4046060370-606663520-1000.db

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:21:30 ---A- C:\Windows\Prefetch\AgGlUAD_S-1-5-21-3026017552-4046060370-606663520-1000.db

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:22:54 ---A- C:\Windows\Prefetch\IEXPLORE.EXE-4B6C9213.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:25:47 ---A- C:\Windows\Prefetch\ZHPDIAG%201.25.14[1].TMP-00C2A326.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:25:49 ---A- C:\Windows\Prefetch\ZHPDIAG%201.25.14[1].EXE-D3857BEB.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:25:49 ---A- C:\Windows\Prefetch\ZHPDIAG%201.25.14[1].TMP-013CE693.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:26:00 ---A- C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:27:02 ---A- C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:32:35 ---A- C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:34:29 ---A- C:\Windows\Prefetch\ZHPFIX.EXE-1A4C3389.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:41:00 ---A- C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:41:10 ---A- C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:42:25 ---A- C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:06 ---A- C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:06 ---A- C:\Windows\Prefetch\LADS.EXE-046BC4A8.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:07 ---A- C:\Windows\Prefetch\SUBINACL.EXE-AB0CE9D9.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:08 ---A- C:\Windows\Prefetch\SETACL.EXE-82C2BC90.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:18 ---A- C:\Windows\Prefetch\SIGCHECK.EXE-F42FC051.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:56 ---A- C:\Windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:56 ---A- C:\Windows\Prefetch\AgRobust.db

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:57 ---A- C:\Windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:43:57 ---A- C:\Windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:44:19 ---A- C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:44:19 ---A- C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:44:44 ---A- C:\Windows\Prefetch\CTFMON.EXE-5E5138CF.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:44:59 ---A- C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:45:09 ---A- C:\Windows\Prefetch\TASKMGR.EXE-5F5F473D.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:45:23 ---A- C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:45:23 ---A- C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:45:23 ---A- C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:45:44 ---A- C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:45:50 ---A- C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 22:45:55 ---A- C:\Windows\Prefetch\ZHPDIAG.EXE-0D117CAF.pf

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 23:05:32 ---A- C:\Windows\Prefetch\PfSvPerfStats.bin

 

 

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - EasyBits Security Shield Hook - prevents launching insecure programs by kids - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL

 

 

---\\ MountPoints2 Shell Key (MPSK) (O51)

O51 - MPSK:{841d8696-089c-11df-b8cf-00269e300c83}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\LaunchU3.exe -a (.not file.)

 

 

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"msacm.l3codecp"="l3codecp.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\l3codecp.acm

O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\PROGRA~2\CYBERL~1\Power2Go\CLMP3Enc.ACM"="CyberLink MP3 Encoder" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

 

 

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll

 

 

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0

O55 - MWPS:[HKCU\...\Policies\System] - "WallpaperStyle"=2

O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0

 

 

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0

 

 

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys

O58 - SDL:[MD5.98022774D9930ECBB292E70DB7601DF6] - 10/06/2009 - 22:01:06 ---A- . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\system32\drivers\agrsm64.sys

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys

O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys

O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys

O58 - SDL:[MD5.4A57B2C375D82CBEB28454E0460D65AD] - 06/05/2010 - 21:33:50 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys

O58 - SDL:[MD5.0DFA8428E92FA0398A4557077E03D0BE] - 06/05/2010 - 21:34:14 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys

O58 - SDL:[MD5.061BF40C947848B6F4A478C600B0298C] - 06/05/2010 - 21:34:30 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys

O58 - SDL:[MD5.6B31B59C48A5F45E9F26DE37ACAE7DB4] - 06/05/2010 - 21:39:06 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys

O58 - SDL:[MD5.5C06C8ED0627A970DC7A4B6624F3BD08] - 06/05/2010 - 21:39:27 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys

O58 - SDL:[MD5.38562A6A9CB10844759EAF2B01A7FCD3] - 22/09/2009 - 02:47:14 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys

O58 - SDL:[MD5.9AF482D058BE59CC28BCE52E7C4B747C] - 29/04/2009 - 07:48:32 ---A- . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\Windows\system32\drivers\HpqKbFiltr.sys

O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys

O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys

O58 - SDL:[MD5.BABD5F9B2BCC82CE556A0BAF1AE208A7] - 03/06/2009 - 20:16:56 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys

O58 - SDL:[MD5.D485D3BD3E2179AA86853A182F70699F] - 26/05/2009 - 13:13:10 ---A- . (.Intel® Corporation - Intel® High Definition Audio HDMI.) -- C:\Windows\system32\drivers\IntcHdmi.sys

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys

O58 - SDL:[MD5.E330051CCE41EB4522E5DCEBC15ADCEA] - 29/04/2010 - 14:39:28 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys

O58 - SDL:[MD5.64428DFDAF6E88366CB51F45A79C5F69] - 10/06/2009 - 21:35:28 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\netw5v64.sys

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys

O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce™ RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys

O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce™ Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys

O58 - SDL:[MD5.B49DC435AE3695BAC5623DD94B05732D] - 22/05/2009 - 15:52:30 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\system32\drivers\Rt64win7.sys

O58 - SDL:[MD5.A5DF2F732A6C95554E548FCB6932BD31] - 24/06/2009 - 20:00:18 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys

O58 - SDL:[MD5.ED1722F43CE61409EF68340402D6267D] - 22/07/2009 - 02:33:32 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\system32\drivers\stwrt64.sys

O58 - SDL:[MD5.929C9FA0B18AD2EBC8340591C4BF00FF] - 15/07/2009 - 00:16:34 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys

O58 - SDL:[MD5.0C4540311E11664B245A263E1154CEF8] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL6.SYS

O58 - SDL:[MD5.18E40C245DBFAF36FD0134A7EF2DF396] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT6.SYS

O58 - SDL:[MD5.02071D207A9858FBE3A48CBFD59C4A04] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV6.SYS

O58 - SDL:[MD5.B3EEACF62445E24FBB2CD4B0FB4DB026] - 10/06/2009 - 21:35:33 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\Windows\system32\drivers\yk62x64.sys

O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys

 

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 14/06/2010 - 18:14:15 -SHA- C:\Users\benj\AppData\Local\Temp\Cookies\index.dat [32768]

O61 - LFC:Last File Created 14/06/2010 - 18:14:15 -SHA- C:\Users\benj\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\index.dat [81920]

O61 - LFC:Last File Created 14/06/2010 - 18:14:15 -SHA- C:\Users\benj\AppData\Local\Temp\History\History.IE5\index.dat [49152]

O61 - LFC:Last File Created 14/06/2010 - 18:14:16 -SHA- C:\Users\benj\AppData\Local\Temp\History\History.IE5\MSHist012010060720100614\index.dat [131072]

O61 - LFC:Last File Created 14/06/2010 - 18:14:56 ---A- C:\Users\benj\AppData\Local\Temp\~DF7AE9B7C8BD246A86.TMP [312320]

O61 - LFC:Last File Created 14/06/2010 - 18:16:11 ---A- C:\Users\benj\AppData\Local\Temp\Cookies\benj@bing[2].txt [235]

O61 - LFC:Last File Created 14/06/2010 - 18:16:11 ---A- C:\Users\benj\AppData\Local\Temp\Cookies\benj@c.live[1].txt [65]

O61 - LFC:Last File Created 14/06/2010 - 18:16:11 ---A- C:\Users\benj\AppData\Local\Temp\Cookies\benj@c.msn[1].txt [64]

O61 - LFC:Last File Created 14/06/2010 - 18:16:11 ---A- C:\Users\benj\AppData\Local\Temp\Cookies\benj@live[1].txt [306]

O61 - LFC:Last File Created 14/06/2010 - 18:16:11 ---A- C:\Users\benj\AppData\Local\Temp\Cookies\benj@msn[2].txt [303]

O61 - LFC:Last File Created 14/06/2010 - 18:16:11 ---A- C:\Users\benj\AppData\Local\Temp\Cookies\benj@windowsmarketplace[2].txt [263]

O61 - LFC:Last File Created 14/06/2010 - 18:16:11 ---A- C:\Users\benj\AppData\Local\Temp\Cookies\benj@zune[2].txt [235]

O61 - LFC:Last File Created 14/06/2010 - 18:16:58 ---A- C:\Users\benj\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\2R2SZQFT\MsgrConfig[1].asmx [34478]

O61 - LFC:Last File Created 14/06/2010 - 18:17:09 ---A- C:\Users\benj\AppData\Local\Temp\Cookies\benj@atdmt[1].txt [433]

O61 - LFC:Last File Created 14/06/2010 - 18:17:11 ---A- C:\Users\benj\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\5HND13UD\DocumentDotWrite[1].js [50]

O61 - LFC:Last File Created 14/06/2010 - 18:17:16 ---A- C:\Users\benj\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\GZRG0KLS\134_234x60_micro[1].swf [19556]

O61 - LFC:Last File Created 14/06/2010 - 18:18:03 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img2405.png [2405]

O61 - LFC:Last File Created 14/06/2010 - 18:18:13 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\hfE7FeF3dTkJhTl9BtQoDiECLqA= [27380]

O61 - LFC:Last File Created 14/06/2010 - 18:18:53 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img2497.png [2497]

O61 - LFC:Last File Created 14/06/2010 - 18:20:58 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img0752.png [752]

O61 - LFC:Last File Created 14/06/2010 - 18:23:53 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img0763.png [763]

O61 - LFC:Last File Created 14/06/2010 - 18:24:18 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img0745.png [745]

O61 - LFC:Last File Created 14/06/2010 - 18:25:22 ---A- C:\Users\benj\AppData\Roaming\hewlett-packard\HP Active Support\1607475460.xml [1061]

O61 - LFC:Last File Created 14/06/2010 - 18:25:22 ---A- C:\Users\benj\AppData\Roaming\hewlett-packard\HP Active Support\cee\1607475460.cee [1061]

O61 - LFC:Last File Created 14/06/2010 - 18:26:27 ---A- C:\Users\benj\AppData\Local\Google\Toolbar Cache\6.5.518.1650\fr\translate_languages.json.content [1581]

O61 - LFC:Last File Created 14/06/2010 - 18:34:09 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\SaEmbwh2FIvDuea5EV5xm2F40Csjk= [2777]

O61 - LFC:Last File Created 14/06/2010 - 18:34:43 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\sBKP1c+2FmvWnxWec0CA5OoEhddI= [2571]

O61 - LFC:Last File Created 14/06/2010 - 18:45:47 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\tYt9aX9QD7uLJYqjIPIgqkPXdIA= [21855]

O61 - LFC:Last File Created 14/06/2010 - 18:48:55 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\ttIG6XS2PHX2wfFchRom948v1RE= [2682]

O61 - LFC:Last File Created 14/06/2010 - 18:49:03 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\CsmkeL8A3DvPIp5mQXnWnkBUqpw= [32495]

O61 - LFC:Last File Created 14/06/2010 - 18:58:07 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\WMwWYWJjI4FdaLVjrSZBO56thEs= [22823]

O61 - LFC:Last File Created 14/06/2010 - 19:04:37 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\Tz36Gdjhf6iN67XHWeshFT45VoU= [29176]

O61 - LFC:Last File Created 14/06/2010 - 19:07:40 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\DeFlXsTT5usEzIyOjY6iRFXiRe4= [2122]

O61 - LFC:Last File Created 14/06/2010 - 19:08:07 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\RZW585t5UbA8LqXWQVoT8nYbOYA= [5390]

O61 - LFC:Last File Created 14/06/2010 - 19:09:28 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\b2QZqFyjetRdeTGU2rAZPLdSR6o= [23504]

O61 - LFC:Last File Created 14/06/2010 - 19:11:31 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\NtkqcNRkK2F9j2FDuT9ha3BCbY1Zg= [1165]

O61 - LFC:Last File Created 14/06/2010 - 19:11:56 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img1165.png [1165]

O61 - LFC:Last File Created 14/06/2010 - 19:16:42 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\Uk5oAb8JvM3K54kXEeD3ezKxbrI= [24989]

O61 - LFC:Last File Created 14/06/2010 - 19:27:02 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\poYYXtL915A62ON7TUV9XvkSvYI= [10599]

O61 - LFC:Last File Created 14/06/2010 - 19:31:48 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\xxlamiss21xx@hotmail.fr.html [16596]

O61 - LFC:Last File Created 14/06/2010 - 19:32:57 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\slW6I2Fzvy9AOJA8P0cVWddL9Upc= [12625]

O61 - LFC:Last File Created 14/06/2010 - 19:54:01 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\ivFv8m0BjExfFLgrR8seq44VdoU= [2234]

O61 - LFC:Last File Created 14/06/2010 - 19:56:56 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\6xNylSBU6PM0LDBB0VX2F0s4PI3g= [24573]

O61 - LFC:Last File Created 14/06/2010 - 19:59:12 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\CtBDtDKGqFZXTRkZr2ZE+BS3Ni8= [20789]

O61 - LFC:Last File Created 14/06/2010 - 20:05:15 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\IBCycsFm82F67h9P2FQgmJwooQAYE= [24269]

O61 - LFC:Last File Created 14/06/2010 - 20:05:48 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\tsApaL0dzOyiv4BSbjNZ2Kaz2FOU= [2490]

O61 - LFC:Last File Created 14/06/2010 - 20:09:16 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\rgFdv6lsfnIzxNIv3EJ6BQmS2FHI= [27974]

O61 - LFC:Last File Created 14/06/2010 - 20:19:53 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\UgMB2FUTV1ipmq0ka2Fh62FJbBpES8= [22535]

O61 - LFC:Last File Created 14/06/2010 - 20:28:43 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\AOxjnhtGr0VI72FGd9hC6tur2bv8= [1786]

O61 - LFC:Last File Created 14/06/2010 - 20:34:54 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\SNfcyx9Wan89QyRsBzZwNv8vWIo= [2503]

O61 - LFC:Last File Created 14/06/2010 - 20:36:08 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\n7ZytiHH1GR2FXqQI0dnM99qpHJo= [3092]

O61 - LFC:Last File Created 14/06/2010 - 20:53:38 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img0671.png [671]

O61 - LFC:Last File Created 14/06/2010 - 20:55:55 ---A- C:\Users\benj\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\2BSPY20B\whatsnewservice[1].asmx [79863]

O61 - LFC:Last File Created 14/06/2010 - 20:57:10 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\kU2KT8O0N6kosIkcI+zw2FT2FrQd8= [2061]

O61 - LFC:Last File Created 14/06/2010 - 20:57:31 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\4fLGx4bGkSWFXIkKgrfaIYARFNA= [3049]

O61 - LFC:Last File Created 14/06/2010 - 20:58:15 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\DAt+nw2Fj9l61WAp1JxZNCy0FpyM= [12715]

O61 - LFC:Last File Created 14/06/2010 - 21:07:54 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\LeH6rCyG3L9pClILfsLZ1PHtNz0= [2134]

O61 - LFC:Last File Created 14/06/2010 - 21:09:32 -SHA- C:\Users\benj\AppData\Local\Temp\History\History.IE5\MSHist012010061420100615\index.dat [32768]

O61 - LFC:Last File Created 15/06/2010 - 16:20:38 ---A- C:\Users\benj\AppData\Local\Temp\~DFF30B27A56A0FCCDE.TMP [312320]

O61 - LFC:Last File Created 15/06/2010 - 16:21:22 ---A- C:\Users\All Users\Adobe\Reader\9.2\ARM\AdobeARM.bin [365969]

O61 - LFC:Last File Created 15/06/2010 - 16:53:57 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\charles-superstar@hotmail.fr.html [31118]

O61 - LFC:Last File Created 15/06/2010 - 16:54:30 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\vdFqjU5gFnNrRHJOKtQk2PCQl2A= [776]

O61 - LFC:Last File Created 15/06/2010 - 16:54:57 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img0730.png [730]

O61 - LFC:Last File Created 15/06/2010 - 17:02:53 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\la_kinder_girl_21@hotmail.fr.html [14232]

O61 - LFC:Last File Created 15/06/2010 - 18:23:29 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\ShEKs7Bvt3Rq93jdKpp60XXPJJI= [28202]

O61 - LFC:Last File Created 15/06/2010 - 18:27:22 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\mah+nrwAoDrKGYKYpdmEIJBrFjc= [27106]

O61 - LFC:Last File Created 15/06/2010 - 18:41:47 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\cynthiadu21@msn.com.html [27886]

O61 - LFC:Last File Created 15/06/2010 - 19:51:01 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\0aHw5aJX4AFbQVYw06VKzQP70ew= [2731]

O61 - LFC:Last File Created 15/06/2010 - 20:08:22 ---A- C:\Users\benj\AppData\Roaming\Microsoft\UProof\ExcludeDictionaryEN0809.lex [2]

O61 - LFC:Last File Created 15/06/2010 - 20:14:24 ---A- C:\Users\benj\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents [3072]

O61 - LFC:Last File Created 15/06/2010 - 20:16:45 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\vMX9V6UZ+25oBbG2FpazXeU5LNR0= [13016]

O61 - LFC:Last File Created 15/06/2010 - 20:23:53 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\d9IpayPq7Sy3sB4cGgJVW3QcAPk= [25099]

O61 - LFC:Last File Created 15/06/2010 - 20:31:08 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\viFSvxohxHUYCWVHJVEv3qcjESw= [27044]

O61 - LFC:Last File Created 15/06/2010 - 20:31:57 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\T9gePJuCouc0UFYflPfAqHo4lp4= [2461]

O61 - LFC:Last File Created 15/06/2010 - 20:35:28 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\IY8eLJJ6kGdKiztnH87AQV7sAtA= [15181]

O61 - LFC:Last File Created 15/06/2010 - 20:36:11 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\Pj7bO8+n5T8FGCA9qe7cGOUmRR8= [3098]

O61 - LFC:Last File Created 15/06/2010 - 20:42:10 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\wjoE8rDtD0pBC4gP51cgLJb+gsM= [10341]

O61 - LFC:Last File Created 15/06/2010 - 20:43:37 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\WyIjMvfjcs8Wqw5qLwCPQvxSWgI= [2717]

O61 - LFC:Last File Created 15/06/2010 - 20:46:08 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\dLLgNX71dXyQGglPIlGdQazoOWQ= [2836]

O61 - LFC:Last File Created 15/06/2010 - 20:50:13 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\hx50x3K3aUpcuY1lj0h+lRXHnVI= [27918]

O61 - LFC:Last File Created 15/06/2010 - 20:54:14 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\NKykxyxyT2Fe9nmNEkBPv5AJYHhs= [2272]

O61 - LFC:Last File Created 15/06/2010 - 21:16:03 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\BJ5hvzw+NUtVHxeSq2FyiuNgOGq4= [27020]

O61 - LFC:Last File Created 15/06/2010 - 21:27:45 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\t5PSqvYnpSTFqojMK7lS2WLhvWI= [2326]

O61 - LFC:Last File Created 15/06/2010 - 21:43:08 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\U1P4Ut2FU2lJxyftBSuvkuaUxMUU= [2346]

O61 - LFC:Last File Created 15/06/2010 - 22:08:47 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\foufoune_rose15@hotmail.fr.html [17756]

O61 - LFC:Last File Created 16/06/2010 - 13:22:42 ---A- C:\Users\benj\AppData\Local\Temp\~DF8E80B22CD9A69F87.TMP [312320]

O61 - LFC:Last File Created 16/06/2010 - 13:22:47 ---A- C:\Users\benj\AppData\Local\Google\Quick Search Box\ranking.backup [753664]

O61 - LFC:Last File Created 16/06/2010 - 13:24:14 ---A- C:\Users\benj\AppData\Roaming\LimeWire\promotion\promodb.data [1048576]

O61 - LFC:Last File Created 16/06/2010 - 13:26:37 ---A- C:\Users\benj\AppData\Local\Google\Toolbar Cache\6.5.518.1650\fr\annotaions_whitelist.json.content [370]

O61 - LFC:Last File Created 16/06/2010 - 14:03:16 ---A- C:\Users\benj\AppData\Roaming\LimeWire\createtimes.cache [5658]

O61 - LFC:Last File Created 16/06/2010 - 14:32:05 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\tite-marseillaise-21@hotmail.fr.html [33198]

O61 - LFC:Last File Created 16/06/2010 - 14:46:05 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\D4eEvxoRkYkRUavcNz0aU+xpdWc= [2269]

O61 - LFC:Last File Created 16/06/2010 - 14:52:22 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\nciskdIfX43KXyGnqnMJnfMhTcM= [28354]

O61 - LFC:Last File Created 16/06/2010 - 14:54:07 ---A- C:\Users\benj\AppData\Local\Temp\java_install_reg.log [30074]

O61 - LFC:Last File Created 16/06/2010 - 14:54:24 ---A- C:\Users\benj\AppData\Local\Temp\AUCHECK_CORE.txt [1812]

O61 - LFC:Last File Created 16/06/2010 - 14:54:24 ---A- C:\Users\benj\AppData\Local\Temp\AUCHECK_PARSER.txt [810]

O61 - LFC:Last File Created 16/06/2010 - 14:58:27 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\N3t1RuRaK6pRJFqHl1btxR9hwlA= [28525]

O61 - LFC:Last File Created 16/06/2010 - 15:13:42 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\gTithhL3OItM6Mwh3c31ot9r4I0= [29198]

O61 - LFC:Last File Created 16/06/2010 - 15:17:15 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\2FuPZx1bgN8qh57vr7BavtaNz338= [2260]

O61 - LFC:Last File Created 16/06/2010 - 15:39:43 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\XlCW0JKoa17vgesXy7+AINx2ICU= [2864]

O61 - LFC:Last File Created 16/06/2010 - 15:53:29 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\IgMSny9ToBYj75M2FJLV2CE6sIeM= [2548]

O61 - LFC:Last File Created 16/06/2010 - 15:55:42 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img2291.png [2291]

O61 - LFC:Last File Created 16/06/2010 - 15:57:31 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\OUVy2NOwVrmtSEMm4JloesFIcQg= [28104]

O61 - LFC:Last File Created 16/06/2010 - 15:57:47 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img2445.png [2445]

O61 - LFC:Last File Created 16/06/2010 - 15:59:40 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\XV1f9rHl66f0jkQWwnxGEmWANuQ= [29596]

O61 - LFC:Last File Created 16/06/2010 - 16:04:14 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\szLkC9Nrfod48iDABhSKP5mOIEg= [28011]

O61 - LFC:Last File Created 16/06/2010 - 16:09:19 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\+YO4tpd+QBBNvKseiavWksHaTLQ= [3819]

O61 - LFC:Last File Created 16/06/2010 - 16:11:50 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\y+42AQ0ttj9IFsLF8JJHPM2ZykE= [3133]

O61 - LFC:Last File Created 16/06/2010 - 16:13:02 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\3WxuuxBQm30lsD6pHbDLCRiR7bk= [26617]

O61 - LFC:Last File Created 16/06/2010 - 16:14:39 ---A- C:\Users\benj\Documents\LimeWire\Saved\Un Homme A Part - Vin Diesel - Divx Fr - (Dvd Rip Par Bobylafritte).avi [828633882]

O61 - LFC:Last File Created 16/06/2010 - 16:14:42 ---A- C:\Users\benj\AppData\Roaming\LimeWire\fileurns.cache [19497]

O61 - LFC:Last File Created 16/06/2010 - 16:15:12 ---A- C:\Users\benj\AppData\Roaming\LimeWire\library5.dat [20382]

O61 - LFC:Last File Created 16/06/2010 - 16:15:16 ---A- C:\Users\benj\AppData\Roaming\LimeWire\xml\data\video.sxml3 [9007]

O61 - LFC:Last File Created 16/06/2010 - 16:31:37 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\014WnMPAiTcueinp+zkWDDeGZAQ= [29185]

O61 - LFC:Last File Created 16/06/2010 - 16:32:25 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\DSgp4ps+2FlvyzJjiszm2fxD0T1o= [11955]

O61 - LFC:Last File Created 16/06/2010 - 16:44:39 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\2FYIDKe+Hj61zoYdAgd2FZn0yCd+E= [25406]

O61 - LFC:Last File Created 16/06/2010 - 16:44:49 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\DjMBM3yFgetfVzvUtNavNiPDCdI= [2906]

O61 - LFC:Last File Created 16/06/2010 - 16:56:13 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\raley-marion@hotmail.fr.html [66776]

O61 - LFC:Last File Created 16/06/2010 - 16:58:17 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\2FpjkO0ffNEC12K2aPw64N01yQ5k= [2300]

O61 - LFC:Last File Created 16/06/2010 - 16:59:02 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\6Zj3HV06IlDWRb1Vxo9RTc6N1i4= [19136]

O61 - LFC:Last File Created 16/06/2010 - 17:01:34 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\8ZL1ixx6wKlidWf8f2o+9LyF1ZY= [2074]

O61 - LFC:Last File Created 16/06/2010 - 17:01:54 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\ngTmOvNvYXy2bNCpnHUZEX+0p2A= [2812]

O61 - LFC:Last File Created 16/06/2010 - 17:03:36 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\Ehy3T+bQ9arSPSG6gLm7s4KZfiI= [27383]

O61 - LFC:Last File Created 16/06/2010 - 17:07:18 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\fCwHp+ZvJJge2JEPNbokw9Eosmo= [24612]

O61 - LFC:Last File Created 16/06/2010 - 17:14:55 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\XJhXF7P9g+2AdnhTZnN7z82qoBA= [11808]

O61 - LFC:Last File Created 16/06/2010 - 17:15:42 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\NXaKbIa+O8nMLxPRPxFXVvTjajQ= [12591]

O61 - LFC:Last File Created 16/06/2010 - 17:17:15 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\PVXEXw+C84bPAfpCbQQa4qTl7i8= [2969]

O61 - LFC:Last File Created 16/06/2010 - 17:17:17 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\0efSMgXNHMN7v6wyot+fpAh2JD4= [26448]

O61 - LFC:Last File Created 16/06/2010 - 17:27:37 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\titelolodu21410@hotmail.fr.html [25190]

O61 - LFC:Last File Created 16/06/2010 - 17:33:52 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\eCmLEsslozGmelMh4Tyl7ioEQLk= [25945]

O61 - LFC:Last File Created 16/06/2010 - 17:35:22 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\jZIIu5apcS4c2KUbV0WCkmnnUy8= [23775]

O61 - LFC:Last File Created 16/06/2010 - 17:36:59 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\bzbWK12FmQtzyx2TAzMFHhD5KKe4= [3327]

O61 - LFC:Last File Created 16/06/2010 - 17:39:19 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\TetmKN+dp2QuRBAugiG1acs2F42M= [24557]

O61 - LFC:Last File Created 16/06/2010 - 17:42:54 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\TKClWmOc1nKep5ITcx2A3StZ594= [2230]

O61 - LFC:Last File Created 16/06/2010 - 17:45:30 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\P26Ud+rPoN0ismcWkcyyqKWegEc= [1964]

O61 - LFC:Last File Created 16/06/2010 - 17:55:07 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\LZcd7SIJsNkXJ90P5rLZ7fE1EpM= [29072]

O61 - LFC:Last File Created 16/06/2010 - 18:07:17 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\5mKBvuJ9a6y63CpOWLI6rd1IB1A= [27191]

O61 - LFC:Last File Created 16/06/2010 - 18:16:32 ---A- C:\Users\benj\AppData\Roaming\Google\Local Search History\google%2Emaps.w [2532]

O61 - LFC:Last File Created 16/06/2010 - 18:17:09 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\JBu5wpbXtIwG2FM82Fd+SsZrLtQqg= [18945]

O61 - LFC:Last File Created 16/06/2010 - 18:18:12 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\+1tV67sFHI7yGSVrz2FeWJLFxVbk= [1203]

O61 - LFC:Last File Created 16/06/2010 - 18:18:33 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img1158.png [1158]

O61 - LFC:Last File Created 16/06/2010 - 18:19:17 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\AKeA1dAjQFOgYxAMPgbuj2FsMhfA= [1071]

O61 - LFC:Last File Created 16/06/2010 - 18:20:15 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\ch0upinette_21@hotmail.fr.html [69024]

O61 - LFC:Last File Created 16/06/2010 - 18:20:25 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\ZgdVN8+fe0P3ErHsNDvHRGR9b0Q= [9933]

O61 - LFC:Last File Created 16/06/2010 - 18:24:26 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\r+0IVFs5p31ITa2wcSz7YohWvqg= [28652]

O61 - LFC:Last File Created 16/06/2010 - 18:28:32 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\4mDqaUiPx1pGaqs+0FeU0jgXtBg= [2207]

O61 - LFC:Last File Created 16/06/2010 - 18:28:46 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\wOOTs8iMYdKuSPvUTXNf3OM2FfR4= [25803]

O61 - LFC:Last File Created 16/06/2010 - 18:32:11 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\Au4uzKbcLyy6Fz68ah3j2KGDvC0= [2509]

O61 - LFC:Last File Created 16/06/2010 - 18:33:01 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\vX2Dw4C4dyCfteNVEPzyc9WTNcM= [3114]

O61 - LFC:Last File Created 16/06/2010 - 18:38:53 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\l1DRPHCYR6i8nPPbdSEf23576q8= [27757]

O61 - LFC:Last File Created 16/06/2010 - 18:43:24 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\G5fytJkX7Hb4uEBO9bpHSka01Fs= [27545]

O61 - LFC:Last File Created 16/06/2010 - 19:15:00 ---A- C:\Users\benj\AppData\Local\Temp\wmsetup.log [42268]

O61 - LFC:Last File Created 16/06/2010 - 22:02:55 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\04nhahYMFmXwnAkYUXgTFDfDTQA= [2681]

O61 - LFC:Last File Created 16/06/2010 - 22:02:55 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\HqdjToYWf9Qt8E8fT5+GCeY34X0= [2714]

O61 - LFC:Last File Created 16/06/2010 - 22:02:55 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\fbkZjAntJqkz378sQ6LS4heUnCI= [23935]

O61 - LFC:Last File Created 16/06/2010 - 22:06:30 ---A- C:\Users\benj\AppData\Roaming\LimeWire\promotion\promodb.backup [125360]

O61 - LFC:Last File Created 16/06/2010 - 22:06:30 ---A- C:\Users\benj\AppData\Roaming\LimeWire\promotion\promodb.script [1137]

O61 - LFC:Last File Created 16/06/2010 - 22:06:30 ---A- C:\Users\benj\AppData\Roaming\LimeWire\ttdata.cache [1454083]

O61 - LFC:Last File Created 16/06/2010 - 22:06:30 ---A- C:\Users\benj\AppData\Roaming\LimeWire\ttroot.cache [7342]

O61 - LFC:Last File Created 16/06/2010 - 22:06:31 ---A- C:\Users\benj\AppData\Roaming\LimeWire\downloads.dat [58]

O61 - LFC:Last File Created 16/06/2010 - 22:06:31 ---A- C:\Users\benj\AppData\Roaming\LimeWire\gnutella.net [21141]

O61 - LFC:Last File Created 16/06/2010 - 22:06:31 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\cookies.sqlite [2048]

O61 - LFC:Last File Created 16/06/2010 - 22:06:31 ---A- C:\Users\benj\AppData\Roaming\LimeWire\questions.props [90]

O61 - LFC:Last File Created 16/06/2010 - 22:06:31 ---A- C:\Users\benj\AppData\Roaming\LimeWire\tables.props [1587]

O61 - LFC:Last File Created 17/06/2010 - 11:16:04 ---A- C:\Users\All Users\Alwil Software\Avast5\chest\index.xml [114]

O61 - LFC:Last File Created 17/06/2010 - 11:16:04 ---A- C:\Users\All Users\Alwil Software\Avast5\log\Chest.log [1821]

O61 - LFC:Last File Created 17/06/2010 - 11:16:21 ---A- C:\Users\All Users\McAfee Security Scan\ftstate.ini [829]

O61 - LFC:Last File Created 17/06/2010 - 11:16:26 ---A- C:\Users\benj\AppData\Local\Temp\GoogleQuickSearchBox.log [0]

O61 - LFC:Last File Created 17/06/2010 - 11:16:48 ---A- C:\Users\benj\AppData\Local\Temp\ArmUI.ini [142194]

O61 - LFC:Last File Created 17/06/2010 - 11:16:49 ---A- C:\Users\benj\AppData\Local\Google\Quick Search Box\ranking.db [753664]

O61 - LFC:Last File Created 17/06/2010 - 11:16:51 ---A- C:\Users\benj\AppData\Roaming\Skype\benj6921\config.xml [7032]

O61 - LFC:Last File Created 17/06/2010 - 11:16:56 ---A- C:\Users\All Users\hpqp.ini [292]

O61 - LFC:Last File Created 17/06/2010 - 11:17:29 ---A- C:\Users\All Users\HPWALog.txt [181]

O61 - LFC:Last File Created 17/06/2010 - 11:17:48 ---A- C:\Users\benj\AppData\Local\Temp\~DFF7359ECA66245955.TMP [312320]

O61 - LFC:Last File Created 17/06/2010 - 11:17:56 ---A- C:\Users\benj\AppData\Roaming\Skype\benj6921\dc.db [602112]

O61 - LFC:Last File Created 17/06/2010 - 11:18:04 ---A- C:\Users\benj\AppData\Local\Temp\jna6719894750990976030.dll [347258]

O61 - LFC:Last File Created 17/06/2010 - 11:18:45 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\extensions.cache [0]

O61 - LFC:Last File Created 17/06/2010 - 11:18:46 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\extensions.ini [30]

O61 - LFC:Last File Created 17/06/2010 - 11:18:49 ---A- C:\Users\benj\AppData\Local\Temp\AdobeARM.log [20273]

O61 - LFC:Last File Created 17/06/2010 - 11:19:00 ---A- C:\Users\benj\AppData\Roaming\LimeWire\promotion\promodb.properties [438]

O61 - LFC:Last File Created 17/06/2010 - 11:19:04 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\Cache\_CACHE_001_ [16312]

O61 - LFC:Last File Created 17/06/2010 - 11:19:04 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\Cache\_CACHE_002_ [12950]

O61 - LFC:Last File Created 17/06/2010 - 11:19:04 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\Cache\_CACHE_003_ [49093]

O61 - LFC:Last File Created 17/06/2010 - 11:19:05 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\Cache\_CACHE_MAP_ [276]

O61 - LFC:Last File Created 17/06/2010 - 11:19:07 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\Cache\1FEE1D10d01 [79291]

O61 - LFC:Last File Created 17/06/2010 - 11:19:08 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\Cache\7BD6A121d01 [25137]

O61 - LFC:Last File Created 17/06/2010 - 11:19:09 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\pluginreg.dat [4118]

O61 - LFC:Last File Created 17/06/2010 - 11:19:10 ---A- C:\Users\benj\AppData\Roaming\LimeWire\promotion\promodb.log [42]

O61 - LFC:Last File Created 17/06/2010 - 11:19:20 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\Cache\A3256619d01 [1101017]

O61 - LFC:Last File Created 17/06/2010 - 11:20:04 ---A- C:\Users\benj\AppData\Roaming\hewlett-packard\HPAdvisor\ToDoMessages.xml [6986]

O61 - LFC:Last File Created 17/06/2010 - 11:21:25 ---A- C:\Users\benj\AppData\Local\Temp\jusched.log [482787]

O61 - LFC:Last File Created 17/06/2010 - 11:24:00 ---A- C:\Users\benj\AppData\Roaming\LimeWire\version.xml [20016]

O61 - LFC:Last File Created 17/06/2010 - 11:24:10 ---A- C:\Users\All Users\Alwil Software\Avast5\log\aswAr.log [99454]

O61 - LFC:Last File Created 17/06/2010 - 11:25:03 ---A- C:\Users\benj\AppData\Local\Hewlett-Packard\HPAdvisor.exe_Url_mcixdsg4ikd5i1gipqgefy0tj33souow\3.2.8946.3086\user.config [2606]

O61 - LFC:Last File Created 17/06/2010 - 11:44:33 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\keet18@hotmail.fr.html [28040]

O61 - LFC:Last File Created 17/06/2010 - 11:49:10 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\F3PmKDGZmh6Ch6gkZqtePheEOzE= [53837]

O61 - LFC:Last File Created 17/06/2010 - 11:49:36 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\Images\MsgPlus_Img2331.png [2331]

O61 - LFC:Last File Created 17/06/2010 - 11:51:39 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\l6qfCSid9xJlcs23q+OpKlWpJ3w= [2593]

O61 - LFC:Last File Created 17/06/2010 - 11:58:51 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\mirsa-du21.7@hotmail.fr.html [35668]

O61 - LFC:Last File Created 17/06/2010 - 12:13:46 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mozilla-profile\places.sqlite [151552]

O61 - LFC:Last File Created 17/06/2010 - 12:49:08 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\a8oW2FdnRDHV+Tb9p6c32yOADVLQ= [1869]

O61 - LFC:Last File Created 17/06/2010 - 12:58:58 ---A- C:\Users\benj\AppData\Roaming\Microsoft\Office\Recent\ossier cour a imprimer.LNK [1048]

O61 - LFC:Last File Created 17/06/2010 - 12:58:58 ---A- C:\Users\benj\AppData\Roaming\Microsoft\Office\Recent\presentation anglais.LNK [1245]

O61 - LFC:Last File Created 17/06/2010 - 12:58:58 --H-- C:\Users\benj\AppData\Roaming\Microsoft\Office\Recent\index.dat [1034]

O61 - LFC:Last File Created 17/06/2010 - 12:59:51 ---A- C:\Users\benj\AppData\Roaming\Microsoft\Office\Word12.pip [1688]

O61 - LFC:Last File Created 17/06/2010 - 14:31:09 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\Hko12FBnmdXq5e90EDTe8B8lmH0c= [3202]

O61 - LFC:Last File Created 17/06/2010 - 14:59:00 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\4FTo4L4TQN19sWqegr83EOzEps4= [29388]

O61 - LFC:Last File Created 17/06/2010 - 15:08:48 ---A- C:\Users\benj\AppData\Roaming\LimeWire\spam.dat [75148]

O61 - LFC:Last File Created 17/06/2010 - 17:57:40 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\juls_veyron@hotmail.fr.html [9126]

O61 - LFC:Last File Created 17/06/2010 - 18:16:18 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\org.openoffice.oooimprovement.Core.UiEventsLogger.log [67]

O61 - LFC:Last File Created 17/06/2010 - 18:16:19 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys [1]

O61 - LFC:Last File Created 17/06/2010 - 18:16:45 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\OOoImprovement\Settings.xcu [853]

O61 - LFC:Last File Created 17/06/2010 - 18:34:43 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\config.dat [778]

O61 - LFC:Last File Created 17/06/2010 - 18:34:43 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\link.txt [126]

O61 - LFC:Last File Created 17/06/2010 - 18:34:43 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\local.dat [87]

O61 - LFC:Last File Created 17/06/2010 - 18:34:43 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\news.txt [60]

O61 - LFC:Last File Created 17/06/2010 - 18:34:43 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref [5006464]

O61 - LFC:Last File Created 17/06/2010 - 18:34:52 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\ignore.dat [0]

O61 - LFC:Last File Created 17/06/2010 - 18:35:05 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Common.xcu [4505]

O61 - LFC:Last File Created 17/06/2010 - 18:35:05 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Recovery.xcu [1195]

O61 - LFC:Last File Created 17/06/2010 - 18:35:05 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Views.xcu [15126]

O61 - LFC:Last File Created 17/06/2010 - 18:35:05 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Setup.xcu [1935]

O61 - LFC:Last File Created 17/06/2010 - 18:35:05 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\temp\Feedback\Current.csv [246]

O61 - LFC:Last File Created 17/06/2010 - 18:35:05 ---A- C:\Users\benj\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\log.txt [3233]

O61 - LFC:Last File Created 17/06/2010 - 18:50:11 ---A- C:\Users\All Users\Hewlett-Packard\HP Advisor\Logs\rollingDebug.log [1831614]

O61 - LFC:Last File Created 17/06/2010 - 18:50:11 ---A- C:\Users\All Users\Hewlett-Packard\HP Advisor\Logs\rollingInfo.log [1831614]

O61 - LFC:Last File Created 17/06/2010 - 19:27:08 ---A- C:\Users\All Users\Alwil Software\Avast5\log\Setup.log [1851422]

O61 - LFC:Last File Created 17/06/2010 - 19:28:46 ---A- C:\Users\All Users\Messenger Plus!\Promotions\Cache\p_61.dat [757]

O61 - LFC:Last File Created 17/06/2010 - 19:28:46 ---A- C:\Users\All Users\Messenger Plus!\Promotions\Listing.dat [1398]

O61 - LFC:Last File Created 17/06/2010 - 19:28:51 ---A- C:\Users\benj\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]

O61 - LFC:Last File Created 17/06/2010 - 19:28:54 ---A- C:\Users\benj\AppData\Local\Temp\~DF04D4EAF2104E0D35.TMP [312320]

O61 - LFC:Last File Created 17/06/2010 - 19:55:54 ---A- C:\Users\benj\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2010-06-17 (20-55-54).txt [1108]

O61 - LFC:Last File Created 17/06/2010 - 19:56:38 ---A- C:\Users\benj\AppData\Local\Temp\MessengerCache\+D8r0ZDFiMia9V8LpCYVjhx8djs= [2274]

O61 - LFC:Last File Created 17/06/2010 - 19:59:59 ---A- C:\Users\benj\AppData\Local\Temp\amline_data.xml [39182]

O61 - LFC:Last File Created 17/06/2010 - 19:59:59 ---A- C:\Users\benj\AppData\Local\Temp\amline_settings.xml [2028]

O61 - LFC:Last File Created 17/06/2010 - 20:03:47 ---A- C:\Users\All Users\Alwil Software\Avast5\log\aswAr1.log [18352656]

O61 - LFC:Last File Created 17/06/2010 - 20:12:12 ---A- C:\Users\benj\Documents\Mes Historiques de Conversation\juin 2010\kevin_souday@hotmail.com.html [187474]

O61 - LFC:Last File Created 17/06/2010 - 20:53:52 ---A- C:\Users\All Users\Alwil Software\Avast5\avast5.ini [6534]

O61 - LFC:Last File Created 17/06/2010 - 20:55:31 ---A- C:\Users\All Users\Alwil Software\Avast5\db1cb0e56b5359ca2-b08eb76b.dat [1080]

O61 - LFC:Last File Created 17/06/2010 - 20:55:31 ---A- C:\Users\All Users\Alwil Software\Avast5\db1cb0e56b56d9d64-7ce077c6.dat [840]

O61 - LFC:Last File Created 17/06/2010 - 21:03:49 ---A- C:\Users\benj\AppData\Roaming\LimeWire\simpp.xml [52910]

O61 - LFC:Last File Created 17/06/2010 - 22:17:08 ---A- C:\Users\All Users\Alwil Software\Avast5\db1ca20caf7c6a09e-aa142c8a.dat [5159640]

O61 - LFC:Last File Created 17/06/2010 - 22:22:42 ---A- C:\Users\benj\AppData\Roaming\Google\Local Search History\google%2Eweb.w [29414]

O61 - LFC:Last File Created 17/06/2010 - 22:26:05 ---A- C:\Users\benj\AppData\Local\Google\Quick Search Box\app_launcher_apps.data [105472]

O61 - LFC:Last File Created 17/06/2010 - 22:26:05 ---A- C:\Users\benj\AppData\Local\Google\Quick Search Box\app_launcher_links.data [180224]

O61 - LFC:Last File Created 17/06/2010 - 22:35:03 ---A- C:\Users\All Users\Alwil Software\Avast5\Log.db [41984]

O61 - LFC:Last File Created 17/06/2010 - 22:38:48 ---A- C:\Users\All Users\Alwil Software\Avast5\log\usntr.log [5236322]

O61 - LFC:Last File Created 17/06/2010 - 22:42:08 ---A- C:\Users\benj\AppData\Roaming\LimeWire\installation.props [338]

O61 - LFC:Last File Created 17/06/2010 - 22:42:08 ---A- C:\Users\benj\AppData\Roaming\LimeWire\limewire.props [53235]

O61 - LFC:Last File Created 17/06/2010 - 22:42:08 ---A- C:\Users\benj\AppData\Roaming\LimeWire\mojito.props [320]

O61 - LFC:Last File Created 17/06/2010 - 22:42:08 ---A- C:\Users\benj\AppData\Roaming\LimeWire\player.props [3460]

O61 - LFC:Last File Created 17/06/2010 - 22:43:03 ---A- C:\Users\All Users\Alwil Software\Avast5\log\AshWebSv.ws.ori [765]

O61 - LFC:Last File Created 17/06/2010 - 22:44:32 ---A- C:\Users\All Users\Alwil Software\Avast5\ScriptShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:32 ---A- C:\Users\All Users\Alwil Software\Avast5\log\AshWebSv.ws [0]

O61 - LFC:Last File Created 17/06/2010 - 22:44:33 ---A- C:\Users\All Users\Alwil Software\Avast5\AntiSpamShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:44 ---A- C:\Users\All Users\Alwil Software\Avast5\BehaviorShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:44 ---A- C:\Users\All Users\Alwil Software\Avast5\FileSystemShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:44 ---A- C:\Users\All Users\Alwil Software\Avast5\IMShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:44 ---A- C:\Users\All Users\Alwil Software\Avast5\log\Mail.log [50077]

O61 - LFC:Last File Created 17/06/2010 - 22:44:44 ---A- C:\Users\All Users\Alwil Software\Avast5\report\BehaviorShield.txt [4490]

O61 - LFC:Last File Created 17/06/2010 - 22:44:44 ---A- C:\Users\All Users\Alwil Software\Avast5\report\FileSystemShield.txt [4732]

O61 - LFC:Last File Created 17/06/2010 - 22:44:44 ---A- C:\Users\All Users\Alwil Software\Avast5\report\IMShield.txt [4490]

O61 - LFC:Last File Created 17/06/2010 - 22:44:45 ---A- C:\Users\All Users\Alwil Software\Avast5\EmailShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:45 ---A- C:\Users\All Users\Alwil Software\Avast5\NetworkShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:45 ---A- C:\Users\All Users\Alwil Software\Avast5\P2PShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:45 ---A- C:\Users\All Users\Alwil Software\Avast5\WebShield.ini [29]

O61 - LFC:Last File Created 17/06/2010 - 22:44:45 ---A- C:\Users\All Users\Alwil Software\Avast5\report\EmailShield.txt [4490]

O61 - LFC:Last File Created 17/06/2010 - 22:44:45 ---A- C:\Users\All Users\Alwil Software\Avast5\report\NetworkShield.txt [4490]

O61 - LFC:Last File Created 17/06/2010 - 22:44:45 ---A- C:\Users\All Users\Alwil Software\Avast5\report\P2PShield.txt [4490]

O61 - LFC:Last File Created 17/06/2010 - 22:44:45 ---A- C:\Users\All Users\Alwil Software\Avast5\report\WebShield.txt [4490]

O61 - LFC:Last File Created 17/06/2010 - 22:45:27 ---A- C:\Users\benj\AppData\Local\Google\Toolbar\broker_metrics.xml [34615]

O61 - LFC:Last File Created 17/06/2010 - 22:45:36 ---A- C:\Users\benj\AppData\Local\Temp\wmplog00.sqm [1482]

O61 - LFC:Last File Created 17/06/2010 - 22:46:11 ---A- C:\Users\benj\AppData\Roaming\Skype\benj6921\main.db [401408]

O61 - LFC:Last File Created 17/06/2010 - 23:05:20 --HA- C:\Users\benj\AppData\Local\IconCache.db [19541040]

 

 

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: ZHPDiag 1.25 - (.Nicolas Coolman.)

O63 - Logiciel: RSIT - (.random/random.)

 

 

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\adp94xx.sys - adp94xx (adp94xx) .(.Pas de propriétaire - Pas de description.) - LEGACY_ADP94XX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\adpahci.sys - adpahci (adpahci) .(.Pas de propriétaire - Pas de description.) - LEGACY_ADPAHCI

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\adpu320.sys - adpu320 (adpu320) .(.Pas de propriétaire - Pas de description.) - LEGACY_ADPU320

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Pas de propriétaire - Pas de description.) - LEGACY_AFD

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\aliide.sys - aliide (aliide) .(.Pas de propriétaire - Pas de description.) - LEGACY_ALIIDE

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\amdide.sys - amdide (amdide) .(.Pas de propriétaire - Pas de description.) - LEGACY_AMDIDE

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\amdsata.sys - amdsata (amdsata) .(.Pas de propriétaire - Pas de description.) - LEGACY_AMDSATA

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\amdsbs.sys - amdsbs (amdsbs) .(.Pas de propriétaire - Pas de description.) - LEGACY_AMDSBS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\arc.sys - arc (arc) .(.Pas de propriétaire - Pas de description.) - LEGACY_ARC

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\arcsas.sys - Pilote miniport de boéte de réception Windows Adaptec SAS/SATA-II RAID (arcsas) .(.Pas de propriétaire - Pas de description.) - LEGACY_ARCSAS

O64 - Services: CurCS - aswFsBlk - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK

O64 - Services: CurCS - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWMONFLT

O64 - Services: CurCS - aswRdr - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR

O64 - Services: CurCS - aswSP - avast! Self Protection (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP

O64 - Services: CurCS - avast! Network Shield Support - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\atapi.sys - IDE Channel (atapi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ATAPI

O64 - Services: CurCS - Beep - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Pas de propriétaire - Pas de description.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cmdide.sys - cmdide (cmdide) .(.Pas de propriétaire - Pas de description.) - LEGACY_CMDIDE

O64 - Services: CurCS - C:\Windows\system32\Drivers\cng.sys - CNG (CNG) .(.Pas de propriétaire - Pas de description.) - LEGACY_CNG

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Pas de propriétaire - Pas de description.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Pas de propriétaire - Pas de description.) - LEGACY_DISCACHE

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Pas de propriétaire - Pas de description.) - LEGACY_DXGKRNL

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\elxstor.sys - elxstor (elxstor) .(.Pas de propriétaire - Pas de description.) - LEGACY_ELXSTOR

O64 - Services: CurCS - FAT12/16/32 File System Driver - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Pas de propriétaire - Pas de description.) - LEGACY_FVEVOL

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\HpSAMD.sys - HpSAMD (HpSAMD) .(.Pas de propriétaire - Pas de description.) - LEGACY_HPSAMD

O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Pas de propriétaire - Pas de description.) - LEGACY_HWPOLICY

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\iaStorV.sys - Contréleur RAID Intel Windows 7 (iaStorV) .(.Pas de propriétaire - Pas de description.) - LEGACY_IASTORV

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\iirsp.sys - iirsp (iirsp) .(.Pas de propriétaire - Pas de description.) - LEGACY_IIRSP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\intelide.sys - intelide (intelide) .(.Pas de propriétaire - Pas de description.) - LEGACY_INTELIDE

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\isapnp.sys - isapnp (isapnp) .(.Pas de propriétaire - Pas de description.) - LEGACY_ISAPNP

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECPKG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Pas de propriétaire - Pas de description.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lsi_fc.sys - LSI_FC (LSI_FC) .(.Pas de propriétaire - Pas de description.) - LEGACY_LSI_FC

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lsi_sas.sys - LSI_SAS (LSI_SAS) .(.Pas de propriétaire - Pas de description.) - LEGACY_LSI_SAS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lsi_sas2.sys - LSI_SAS2 (LSI_SAS2) .(.Pas de propriétaire - Pas de description.) - LEGACY_LSI_SAS2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lsi_scsi.sys - LSI_SCSI (LSI_SCSI) .(.Pas de propriétaire - Pas de description.) - LEGACY_LSI_SCSI

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Pas de propriétaire - Pas de description.) - LEGACY_LUAFV

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\megasas.sys - megasas (megasas) .(.Pas de propriétaire - Pas de description.) - LEGACY_MEGASAS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\MegaSR.sys - MegaSR (MegaSR) .(.Pas de propriétaire - Pas de description.) - LEGACY_MEGASR

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\msdsm.sys - Module spécifique de périphériques à chemins déaccés multiples Microsoft (msdsm) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSDSM

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\nwifi.sys - NativeWiFi Filter (NativeWifiP) .(.Pas de propriétaire - Pas de description.) - LEGACY_NATIVEWIFIP

O64 - Services: CurCS - C:\Windows\system32\Drivers\NAVENG.sys - NAVENG (NAVENG) .(.Pas de propriétaire - Pas de description.) - LEGACY_NAVENG

O64 - Services: CurCS - C:\Windows\system32\Drivers\NAVEX15.sys - NAVEX15 (NAVEX15) .(.Pas de propriétaire - Pas de description.) - LEGACY_NAVEX15

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ndisuio.sys - NDIS Usermode I/O Protocol (Ndisuio) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDISUIO

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\nfrd960.sys - nfrd960 (nfrd960) .(.Pas de propriétaire - Pas de description.) - LEGACY_NFRD960

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\nvraid.sys - nvraid (nvraid) .(.Pas de propriétaire - Pas de description.) - LEGACY_NVRAID

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\nvstor.sys - nvstor (nvstor) .(.Pas de propriétaire - Pas de description.) - LEGACY_NVSTOR

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\pciide.sys - pciide (pciide) .(.Pas de propriétaire - Pas de description.) - LEGACY_PCIIDE

O64 - Services: CurCS - C:\Windows\system32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Pas de propriétaire - Pas de description.) - LEGACY_PCW

O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Pas de propriétaire - Pas de description.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Pas de propriétaire - Pas de description.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ql2300.sys - Pilote de miniport QLogic Fibre Channel (ql2300) .(.Pas de propriétaire - Pas de description.) - LEGACY_QL2300

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ql40xx.sys - Pilote de miniport QLogic iSCSI (ql40xx) .(.Pas de propriétaire - Pas de description.) - LEGACY_QL40XX

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPREFMP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Pas de propriétaire - Pas de description.) - LEGACY_RSPNDR

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\sbp2port.sys - Pilote de bus de transport/protocole SBP-2 (sbp2port) .(.Pas de propriétaire - Pas de description.) - LEGACY_SBP2PORT

O64 - Services: CurCS - Security Driver - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\SiSRaid2.sys - SiSRaid2 (SiSRaid2) .(.Pas de propriétaire - Pas de description.) - LEGACY_SISRAID2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\sisraid4.sys - SiSRaid4 (SiSRaid4) .(.Pas de propriétaire - Pas de description.) - LEGACY_SISRAID4

O64 - Services: CurCS - Security Processor Loader Driver - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\stexstor.sys - stexstor (stexstor) .(.Pas de propriétaire - Pas de description.) - LEGACY_STEXSTOR

O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Pas de propriétaire - Pas de description.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\viaide.sys - viaide (viaide) .(.Pas de propriétaire - Pas de description.) - LEGACY_VIAIDE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\vsmraid.sys - vsmraid (vsmraid) .(.Pas de propriétaire - Pas de description.) - LEGACY_VSMRAID

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\vwififlt.sys - Virtual WiFi Filter Driver (vwififlt) .(.Pas de propriétaire - Pas de description.) - LEGACY_VWIFIFLT

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wd.sys - Pilote du Minuteur de surveillance Microsoft (Wd) .(.Pas de propriétaire - Pas de description.) - LEGACY_WD

O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Pas de propriétaire - Pas de description.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WFPLWF

O64 - Services: CurCS - C:\Windows\system32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WUDFPF

 

 

---\\ Observateur d'événement d'application (OEA) (O66)

O66 - EventLog: ID=1000 (Application Error) - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

---\\ Start Menu Internet (SMI) (O68)

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

 

 

---\\ Recherche d'infection Master Boot Record (O80)

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, <a href="http://www.gmer.net" target="_blank">GMER - Rootkit Detector and Remover</a>

Run by benj at 17/06/2010 23:49:13

device: opened successfully

user: MBR read successfully

kernel: error reading MBR

 

 

---\\ Infection BT - BHO/Toolbar (Possible)

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ask.com - Ask.com Toolbar.) (5.6.6.117) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: LimeWire Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM]

O42 - Logiciel: Ask.com Search Assistant 1.0.2 - (.Ask.com.) [HKLM]

[HKCU\Software\Ask.com]

 

 

 

End of the scan (1162 lines in 03mn 21s)