infection trojan+interprete rapport

[hajiwari]

Bonjour,

 

Ilya environ 10jours j'ai clique sur un lien frauduleux via WLM et depuis j'ai chopé des trojan et backdoor,quej'ai reussi à supprimer en partie .

Maintenant j'ai Antivir qui ne se met plus à jour, windows update qui ne fonctionne pas, WLM qui ne fonctionne pas, et Itunes qui n'arrive pas à aller sur Internet.

Alors que maconnexion internet fonctionne trés bien, je surf normalement et MegaManager aussi.

 

J'ai refait plusieurs scan de Antivir et Spybot mais en vain..

 

Merci de votre aide.

 

Je suis sous Windows 7 x64.

 

Rapport Hijack This..

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 19:24:34, on 24/06/2010

Platform: Unknown Windows (WinNT 6.01.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16385)

Boot mode: Normal

 

Running processes:

C:\Windows\SysWOW64\rundll32.exe

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Users\Public\msnl.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\haegi\Desktop\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49239

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\SPYBOT~1\SDHelper.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files (x86)\Megaupload\Mega Manager\MegaIEMn.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [Windows System Guard] C:\Users\Public\msnl.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\Program Files (x86)\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\SPYBOT~1\SDHelper.dll

O13 - Gopher Prefix:

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 7646 bytes

[hajiwari]

merci de votre aide svp !

[pear]

Bonjour,

 

Rsit, comme Hijackthis, ne connait pas les OS 64 bits, d'où les "File Missing"

 

Lancez cet outil de diagnostic:

Téléchargez ZhpDiag de Coolman

Il ne nécessite aucune installation.

- Il peut être lancé depuis n'importe quelle unité de disque.

- Il peut être lancé d'une clé USB.

 

Cliquez sur le tournevis

Dans la fenêtre qui s'ouvre, cochez tout.

Clic sur la Loupe pour lancer le scan

Au bout d'un moment ,vous pouvez avoir à Accepter Sysinternal->I agree

Postez en le rapport qui apparait en cliquant l'appareil photo.

[hajiwari]

merci pour ta reponse.Je ne savais pas que HijackThis avait cette restriction.

 

Voila le nouveau rapport:

 

Rapport de ZHPDiag v1.26.0003 par Nicolas Coolman, Update du 25/06/2010

Run by haegi at 25/06/2010 18:50:57

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.7600.16385

MFIE: Mozilla Firefox (3.6.3)

 

---\\ System Information

Platform : Windows 7 Ultimate (6.1.7600)

Processor: Intel64 Family 6 Model 23 Stepping 7, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 4095 MB (60% free)

System drive C: has 25 GB (18%) free of 134 GB

 

---\\ Logged in mode

Computer Name: HAEGI-PC

User Name: haegi

All Users Names: HomeGroupUser$, haegi, Administrateur,

Unselected Option: None

Logged in as Administrator

 

---\\ DOS/Devices

A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

C:\ Hard drive, Flash drive, Thumb drive (Free 25 Go of 134 Go)

D:\ CD-ROM drive (Not Inserted)

E:\ CD-ROM drive (Not Inserted)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

 

 

---\\ Processus lancés

[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153]

[MD5.DB1DB28467111A24664933AB8908CBCE] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [952768]

[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\SysWOW64\rundll32.exe [44544]

[MD5.F34E7705751BB413283434697BF8E55D] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696]

[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480]

[MD5.75D31CD9DCCFDB3A9E48B65F4DBD550B] - (.QngdaFvNAwg - Pas de description.) -- C:\Users\Public\msnl.exe [258048]

[MD5.FCB358973491095D026BB289EA5CC75A] - (.Microsoft Corporation - Internet Low-Mic Utility Tool.) -- C:\Program Files (x86)\Internet Explorer\IELowutil.exe [115712]

[MD5.49958506B773E40D31832E3EEDA522E7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [910296]

[MD5.55320095F65DD33DFFFFD59899DCC22C] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [474624]

[MD5.EA6EADF6314E43783BA8EEE79F93F73C] - (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe [1173504]

[MD5.0FA760BF380B08D0B67B5507CD8B32AA] - (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe [97280]

[MD5.CAA6ED31C6DA3C505A684162B3492166] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [202752]

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=userinit.exe

F2 - REG:system.ini: Shell=explorer.exe

 

 

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49239

 

 

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

 

 

---\\ Applications démarrées automatiquement par le registre (O4)

O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

O4 - HKCU\..\Run: [Windows System Guard] . (.QngdaFvNAwg - Pas de description.) -- C:\Users\Public\msnl.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files (x86)\MICROS~3\Office12\EXCEL.exe

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files (x86)\MICROS~3\Office12\REFBARH.ICO

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

 

 

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r32.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10c.ocx

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: AsIO (AsIO) . (.Pas de propriétaire - Pas de description.) - C:\Windows\sysWow64\drivers\AsIO.sys

O41 - Driver: (blbdrive) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: Pilote de CD-ROM (cdrom) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\csc.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\discache.sys

O41 - Driver: Pilote BIOS de gestion de systèmes Microsoft (mssmbios) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mssmbios.sys

O41 - Driver: NetBIOS Interface (NetBIOS) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdprefmp.sys

O41 - Driver: Pilote de port série (Serial) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\serial.sys

O41 - Driver: Pilote de périphérique terminal (TermDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: WFP Lightweight Filter (WfpLwf) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\wfplwf.sys

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: 7-Zip 4.65 - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM]

O42 - Logiciel: Adobe Anchor Service CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Asset Services CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Bridge CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Bridge Start Meeting - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe CMaps CS4 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Camera Raw 4.0 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Color - Photoshop Specific - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Color EU Recommended Settings - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Color JA Extra Settings - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Color NA Extra Settings - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Default Language CS4 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Device Central CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe ExtendScript Toolkit 2 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Fonts All - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Help Viewer CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Linguistics CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe PDF Library Files CS4 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Photoshop CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Setup - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Stock Photos CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Type Support CS4 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Update Manager CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Version Cue CS3 Client - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe WinSoft Linguistics Plugin - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe XMP Panels CS3 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: AdobeColorCommonSetRGB - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Allods Online 1.0.06.36 - (.gPotato.) [HKLM]

O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM]

O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM]

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM]

O42 - Logiciel: Borderlands - (.2K Games.) [HKLM]

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM]

O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM]

O42 - Logiciel: Cool & Quiet - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Crysis WARHEAD® - (.Crytek.) [HKLM]

O42 - Logiciel: Crysis WARHEAD® - (.Electronic Arts.) [HKLM]

O42 - Logiciel: Crysis® - (.Electronic Arts.) [HKLM]

O42 - Logiciel: EA Download Manager - (.Electronic Arts.) [HKLM]

O42 - Logiciel: Fallout 3 - (.Bethesda Softworks.) [HKLM]

O42 - Logiciel: HydraVision - (.ATI Technologies Inc..) [HKLM]

O42 - Logiciel: Java 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]

O42 - Logiciel: Just Cause 2 - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: K-Lite Codec Pack 5.9.0 (Full) - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Mega Manager - (.Megaupload Limited.) [HKLM]

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Mozilla Firefox (3.6.3) - (.Mozilla.) [HKLM]

O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM]

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: PDF Settings - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM]

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Outlook 2007 (KB972363) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB982124) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB982135) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB969613) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM]

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM]

O42 - Logiciel: The Lord of the Rings FREE Trial - (.ATI Technologies Inc..) [HKLM]

O42 - Logiciel: UltraStar Deluxe - (.USDX Team.) [HKLM]

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM]

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (kb983486) - (.Microsoft.) [HKLM]

O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM]

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.) [HKLM]

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\7-Zip]

[HKCU\Software\AMD]

[HKCU\Software\ATI]

[HKCU\Software\AVSuite]

[HKCU\Software\Adobe]

[HKCU\Software\AnyBizSoft]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Apple Inc.]

[HKCU\Software\Avira]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\DT Soft]

[HKCU\Software\DivXNetworks]

[HKCU\Software\GNU]

[HKCU\Software\Gabest]

[HKCU\Software\GameSpy]

[HKCU\Software\Haali]

[HKCU\Software\IM Providers]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\JetCar]

[HKCU\Software\JustCause2]

[HKCU\Software\MONOGRAM]

[HKCU\Software\Macromedia]

[HKCU\Software\MediaInfo]

[HKCU\Software\Megaupload]

[HKCU\Software\Mozilla]

[HKCU\Software\Netscape]

[HKCU\Software\Nival Online]

[HKCU\Software\ODBC]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Red Giant Software]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\SecuROM]

[HKCU\Software\Sysinternals]

[HKCU\Software\Valve]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\Wow6432Node]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\cybelsoft]

[HKCU\Software\madFlac]

[HKLM\Software\AGEIA Technologies]

[HKLM\Software\AMD]

[HKLM\Software\ASUS]

[HKLM\Software\ATI Technologies]

[HKLM\Software\ATI]

[HKLM\Software\Adobe]

[HKLM\Software\AnyBizSoft]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Apple Inc.]

[HKLM\Software\Avira]

[HKLM\Software\Bethesda Softworks]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Codec Tweak Tool]

[HKLM\Software\Crytek]

[HKLM\Software\DT Soft]

[HKLM\Software\Electronic Arts]

[HKLM\Software\Even Balance]

[HKLM\Software\FlashGet Network]

[HKLM\Software\GNU]

[HKLM\Software\Gearbox Software]

[HKLM\Software\Google]

[HKLM\Software\HaaliMkx]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\KLCodecPack]

[HKLM\Software\Macromedia]

[HKLM\Software\Macrovision]

[HKLM\Software\Megaupload Limited]

[HKLM\Software\Megaupload]

[HKLM\Software\MimarSinan]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\ODBC]

[HKLM\Software\Policies]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\VideoLAN]

[HKLM\Software\Windows]

[HKLM\Software\X-AVCSD]

[HKLM\Software\cybelsoft]

[HKLM\Software\mozilla.org]

 

 

---\\ Contenu des dossiers Fichiers Communs (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\2K Games

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\7-Zip

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\AGEIA Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Apple Software Update

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ASUS

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ATI

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ATI Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Avira

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Bethesda Softworks

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Bonjour

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\CCleaner

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\DAEMON Tools Lite

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Electronic Arts

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\FlashGet Network

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iTunes

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\K-Lite Codec Pack

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Megaupload

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office Outlook Connector

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Visual Studio

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Visual Studio 8

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mozilla Firefox

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\OpenOffice.org 3

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\QuickTime

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Spybot - Search & Destroy

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SQUARE ENIX - Eidos Interactive

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\UltraStar Deluxe

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VideoLAN

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live Safety Center

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WinRAR

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe AIR

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Apple

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\ATI Technologies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Macrovision Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.00000000000000000000000000000000] - 25/06/2010 - 14:53:24 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [79967]

O44 - LFC:[MD5.BD0B982B16666D04123BFAD22D48A19E] - 25/06/2010 - 14:51:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [1344]

O44 - LFC:[MD5.8B785770FC2E933C2EE65489995DC7B4] - 25/06/2010 - 14:51:40 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.82548C7EF666B01FA3CCD123296601FC] - 24/06/2010 - 18:01:22 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [17360]

O44 - LFC:[MD5.82548C7EF666B01FA3CCD123296601FC] - 24/06/2010 - 18:01:22 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [17360]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 23/06/2010 - 20:28:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setuperr.log [0]

O44 - LFC:[MD5.FD108CEDA556E4CCF17B51B90DBE7D6E] - 09/06/2010 - 21:02:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [3285664]

O44 - LFC:[MD5.BBFFF475F085F8D66A1C7F704E739430] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [15809410]

O44 - LFC:[MD5.5A03E445308E4E8DF3B632A81381036D] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc001.dat [75966]

O44 - LFC:[MD5.51934C4C0EBC8A5BFF03ABA53E3CFA6E] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc005.dat [118486]

O44 - LFC:[MD5.1AA47BAE5C506D249FA7C75795F4045F] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc006.dat [76422]

O44 - LFC:[MD5.005515922CDCB37A092AE442A8185641] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc007.dat [125730]

O44 - LFC:[MD5.06D38E4861B02A4B14513D23A270F6EB] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc008.dat [85722]

O44 - LFC:[MD5.7418A644D7306312E7D4A44CA077912A] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [103370]

O44 - LFC:[MD5.486986E1834143BA6C0C206C074D7B53] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00A.dat [133506]

O44 - LFC:[MD5.90D277059908ADEF75E7CB89660E895E] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00B.dat [78392]

O44 - LFC:[MD5.6C48376DCFDA49380B81EF5279D997B6] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [127478]

O44 - LFC:[MD5.E226F252666D48B54375555A290D77AC] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00D.dat [66076]

O44 - LFC:[MD5.419405D718FD5E6DE4625CA7DB4A8DC3] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00E.dat [144084]

O44 - LFC:[MD5.90FD1B51C13818B05013A0BF728D6F0B] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc010.dat [123808]

O44 - LFC:[MD5.7418A644D7306312E7D4A44CA077912A] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc011.dat [103370]

O44 - LFC:[MD5.A9463BD26836F6CAB5B10C6A01759034] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc012.dat [101658]

O44 - LFC:[MD5.CEC016A3A156B56B8CC99405862C2F40] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc013.dat [129410]

O44 - LFC:[MD5.0A5DA39AB0B07952242237FDD17A7A3A] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc014.dat [73804]

O44 - LFC:[MD5.E35EDF950870B8B90919FFC6C332DE71] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc015.dat [131034]

O44 - LFC:[MD5.DA4532D23B32ECE0318301C8268599DF] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc019.dat [128694]

O44 - LFC:[MD5.19F70EF43CCF0AE382F57E48EDFFD74B] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc01D.dat [120450]

O44 - LFC:[MD5.BDF342C98FF49AA32E1D504F0770B5A1] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc01F.dat [118002]

O44 - LFC:[MD5.CBCF512E6242A88C664296A6D2CECE56] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh001.dat [426820]

O44 - LFC:[MD5.7A8E1E686FC2F301D3AE1B5D80117490] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh005.dat [614314]

O44 - LFC:[MD5.07409EC62B4669F61B138AD98AB38449] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh006.dat [452926]

O44 - LFC:[MD5.55C7F3FA90207892B7AC5ED8D8878826] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh007.dat [633338]

O44 - LFC:[MD5.2F3A995E15BE36C026435501A9B729EB] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh008.dat [540954]

O44 - LFC:[MD5.54ADFF71414C4B185D55692314B15129] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [606992]

O44 - LFC:[MD5.F95506C314582EA52C22CB71D5A9B83B] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00A.dat [683802]

O44 - LFC:[MD5.8CB7F005FE8DF8997CAC718F17464E92] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00B.dat [424702]

O44 - LFC:[MD5.DF9EA4F9EFD7AD1C62A5B443FABC21D6] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [694766]

O44 - LFC:[MD5.76AF2DB40B3AE6A2C245E319C03F055E] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00D.dat [346476]

O44 - LFC:[MD5.C0003D63D645C0067E1B3AE187DA3138] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00E.dat [623022]

O44 - LFC:[MD5.840A4B7D056A25EF5321DFF84EEE4C3E] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh010.dat [679812]

O44 - LFC:[MD5.760B8007E35964DA6CE434BEFDB14B58] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh011.dat [383348]

O44 - LFC:[MD5.1E585A682AD851D68418356945A98405] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh012.dat [394780]

O44 - LFC:[MD5.9A5FADD048C48E1CD185C061875B9780] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh013.dat [681158]

O44 - LFC:[MD5.8150EDCC6B53DCD2F5F578D616AA3304] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh014.dat [439854]

O44 - LFC:[MD5.6A6BB94C2A9BEE98C29ABC3DE32ADEEB] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh015.dat [679444]

O44 - LFC:[MD5.79F58B0CC542955D0D71B0055805BFD8] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh019.dat [666534]

O44 - LFC:[MD5.46A2A8DFDE0443E3378CFE0212E18D45] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh01D.dat [609068]

O44 - LFC:[MD5.693FADCDC1E7D28D8B57F90F064CD407] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh01F.dat [601560]

O44 - LFC:[MD5.B6854A60A5B2DC5DBBCAA7C5A07B4F6A] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\prfc0404.dat [96316]

O44 - LFC:[MD5.8043BD8644F5B3A6FA32E741DD7CA261] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\prfc0416.dat [124724]

O44 - LFC:[MD5.A6603D8BB543AAD63B11D0173303FB9F] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\prfc0804.dat [101230]

O44 - LFC:[MD5.571BD9A15863B87F6A3CCD6592C7A702] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\prfc0816.dat [130388]

O44 - LFC:[MD5.DCA1E7F59EAD2F4AB65BFE5FB70B6C4C] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\prfh0404.dat [371100]

O44 - LFC:[MD5.E887EDDA6202F5C1CC4EFBE6A494FB2B] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\prfh0416.dat [654272]

O44 - LFC:[MD5.5453CB5D6E05ED8EE599851DDE341250] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\prfh0804.dat [355130]

O44 - LFC:[MD5.0C609D71905B161EA4896B26B5DA3F5A] - 08/06/2010 - 22:15:07 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\prfh0816.dat [669886]

O44 - LFC:[MD5.628D70483747CB6F70A2372937865A13] - 27/05/2010 - 08:24:13 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304]

O44 - LFC:[MD5.628D70483747CB6F70A2372937865A13] - 27/05/2010 - 07:34:09 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [46080]

O44 - LFC:[MD5.3C9EBFF68D64090FCCB9971ACA6D9E18] - 27/05/2010 - 05:11:32 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [366080]

O44 - LFC:[MD5.3C9EBFF68D64090FCCB9971ACA6D9E18] - 27/05/2010 - 04:49:37 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [293888]

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:Last File Created Prefetch 17/06/2010 - 18:36:48 ---A- C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:Last File Created Prefetch 20/06/2010 - 18:58:17 ---A- C:\Windows\Prefetch\MPC-HC.EXE-69B90F3F.pf

O45 - LFCP:Last File Created Prefetch 21/06/2010 - 18:53:29 ---A- C:\Windows\Prefetch\COM.APPLE.OUTLOOK.CLIENT.EXE-9354AE93.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:46:52 ---A- C:\Windows\Prefetch\MPMINISIGSTUB.EXE-A7FD1769.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:52:02 ---A- C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:52:12 ---A- C:\Windows\Prefetch\DWM.EXE-6FFD3DA8.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:52:12 ---A- C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:52:12 ---A- C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:52:13 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-95506EDA.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:52:13 ---A- C:\Windows\Prefetch\XBOXSTAT.EXE-16DABDFB.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:52:18 ---A- C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:53:08 ---A- C:\Windows\Prefetch\AgCx_SC4.db

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:54:17 ---A- C:\Windows\Prefetch\MSDT.EXE-09841468.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:54:18 ---A- C:\Windows\Prefetch\IPCONFIG.EXE-912F3D5B.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:54:18 ---A- C:\Windows\Prefetch\SDIAGNHOST.EXE-8D72177C.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:54:19 ---A- C:\Windows\Prefetch\MAKECAB.EXE-0F1704A4.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:54:19 ---A- C:\Windows\Prefetch\ROUTE.EXE-5E3D06CB.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 18:55:51 ---A- C:\Windows\Prefetch\DLLHOST.EXE-D22EEB48.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:38:55 ---A- C:\Windows\Prefetch\MEGAMANAGER.EXE-31ABC97A.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:43:18 ---A- C:\Windows\Prefetch\ITUNES.EXE-6E101229.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:43:33 ---A- C:\Windows\Prefetch\IPODSERVICE.EXE-37C43D64.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:43:35 ---A- C:\Windows\Prefetch\APPLEMOBILEDEVICEHELPER.EXE-EDD411E2.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:43:36 ---A- C:\Windows\Prefetch\DISTNOTED.EXE-9671246C.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:43:40 ---A- C:\Windows\Prefetch\SYNCSERVER.EXE-71F05404.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:43:42 ---A- C:\Windows\Prefetch\MDCRASHREPORTTOOL.EXE-7B1EDED4.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:43:51 ---A- C:\Windows\Prefetch\APPLEMOBILEBACKUP.EXE-79EDB770.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:44:04 ---A- C:\Windows\Prefetch\ITUNESPHOTOPROCESSOR.EXE-23DFEC03.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:47:35 ---A- C:\Windows\Prefetch\SPYBOTSD.EXE-A906589D.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:49:59 ---A- C:\Windows\Prefetch\TEATIMER.EXE-BFF02B54.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:50:18 ---A- C:\Windows\Prefetch\SDUPDATE.EXE-081577D7.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:51:11 ---A- C:\Windows\Prefetch\GUARDGUI.EXE-BDAEFB77.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:51:37 ---A- C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:54:32 ---A- C:\Windows\Prefetch\OPTIONALFEATURES.EXE-27133C71.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:57:28 ---A- C:\Windows\Prefetch\DLLHOST.EXE-F2DCEF0D.pf

O45 - LFCP:Last File Created Prefetch 22/06/2010 - 19:57:52 ---A- C:\Windows\Prefetch\MMC.EXE-D6ABE563.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:11:48 ---A- C:\Windows\Prefetch\WLCOMM.EXE-324C9362.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:12:25 ---A- C:\Windows\Prefetch\MSNMSGR.EXE-D22CE80C.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:12:35 ---A- C:\Windows\Prefetch\CCLEANER.EXE-72C9B7B3.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:12:53 ---A- C:\Windows\Prefetch\UNINSTALL.EXE-64872F09.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:13:24 ---A- C:\Windows\Prefetch\WLARP.EXE-87988E88.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:13:38 ---A- C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:13:47 ---A- C:\Windows\Prefetch\WMIPRVSE.EXE-6768A320.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:14:09 ---A- C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:16:59 ---A- C:\Windows\Prefetch\MSNL.EXE-FCFA2D26.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:16:59 ---A- C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:16:59 ---A- C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:16:59 ---A- C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:20:19 ---A- C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 18:30:06 ---A- C:\Windows\Prefetch\WINRAR.EXE-94E7D80C.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 20:30:32 ---A- C:\Windows\Prefetch\AVSCAN.EXE-EDA6668B.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 21:20:51 ---A- C:\Windows\Prefetch\MINESWEEPER.EXE-236A9099.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 21:23:02 ---A- C:\Windows\Prefetch\HEARTS.EXE-EDB3F29F.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 21:32:41 ---A- C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 21:36:10 ---A- C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf

O45 - LFCP:Last File Created Prefetch 23/06/2010 - 21:36:20 ---A- C:\Windows\Prefetch\DLLHOST.EXE-97229F6A.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 00:11:56 ---A- C:\Windows\Prefetch\PfSvPerfStats.bin

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:56:29 ---A- C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:56:29 ---A- C:\Windows\Prefetch\SVCHOST.EXE-05F624AB.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:57:29 ---A- C:\Windows\Prefetch\IELOWUTIL.EXE-903B8AC1.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:58:08 ---A- C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:58:18 ---A- C:\Windows\Prefetch\WSCTOOL.EXE-EB22FE56.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:59:10 ---A- C:\Windows\Prefetch\VDSLDR.EXE-6B089E8B.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:59:12 ---A- C:\Windows\Prefetch\RSTRUI.EXE-2D50C58D.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:59:12 ---A- C:\Windows\Prefetch\WBENGINE.EXE-28FD7E8B.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 17:59:14 ---A- C:\Windows\Prefetch\VDS.EXE-6E7946F9.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:01:59 ---A- C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:07:43 ---A- C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:07:55 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-A3E35360.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:15:59 ---A- C:\Windows\Prefetch\DLLHOST.EXE-6BCB9FAA.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:16:10 ---A- C:\Windows\Prefetch\DLLHOST.EXE-0F564EEF.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:16:10 ---A- C:\Windows\Prefetch\DLLHOST.EXE-7CE224E3.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:16:28 ---A- C:\Windows\Prefetch\USERACCOUNTCONTROLSETTINGS.EX-1B2F66BE.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:23:59 ---A- C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:24:24 ---A- C:\Windows\Prefetch\HIJACKTHIS.EXE-7686CDCF.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:24:44 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-1605FA5B.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:26:32 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 18:44:09 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 20:02:04 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 20:34:34 ---A- C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 20:34:37 ---A- C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 22:53:35 ---A- C:\Windows\Prefetch\MSFEEDSSYNC.EXE-6E6FBDF4.pf

O45 - LFCP:Last File Created Prefetch 24/06/2010 - 22:55:57 ---A- C:\Windows\Prefetch\Layout.ini

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:51:40 ---A- C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:51:41 ---A- C:\Windows\Prefetch\WSQMCONS.EXE-118B52B7.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:51:42 ---A- C:\Windows\Prefetch\AgCx_SC1.db.trx

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:51:46 ---A- C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:51:50 ---A- C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:51:56 ---A- C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:52:02 ---A- C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:52:02 ---A- C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:52:42 ---A- C:\Windows\Prefetch\AgCx_SC1.db

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:52:57 ---A- C:\Windows\Prefetch\MPMINISIGSTUB.EXE-5F7DDCA3.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:52:57 ---A- C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:52:58 ---A- C:\Windows\Prefetch\MPAS-D_BD1.EXE-97E29C40.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:52:59 ---A- C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:53:09 ---A- C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:55:49 ---A- C:\Windows\Prefetch\DLLHOST.EXE-ECB71776.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:55:57 ---A- C:\Windows\Prefetch\AVCENTER.EXE-FD66D2A7.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 14:56:07 ---A- C:\Windows\Prefetch\UPDATE.EXE-0D8A637E.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 15:24:13 ---A- C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 15:46:42 ---A- C:\Windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 15:46:42 ---A- C:\Windows\Prefetch\AgRobust.db

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 15:46:43 ---A- C:\Windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 15:46:43 ---A- C:\Windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 15:53:01 ---A- C:\Windows\Prefetch\VLC.EXE-CC6F4A79.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:10:39 ---A- C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:32:06 ---A- C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-381834753-3013340521-1962566330-1000.db

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:32:06 ---A- C:\Windows\Prefetch\AgGlUAD_S-1-5-21-381834753-3013340521-1962566330-1000.db

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:45:08 ---A- C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:45:08 ---A- C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:45:27 ---A- C:\Windows\Prefetch\ZHPDIAG 1.26.04.TMP-014E8A78.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:45:27 ---A- C:\Windows\Prefetch\ZHPDIAG 1.26.04.TMP-FF9DDA4D.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:46:00 ---A- C:\Windows\Prefetch\ZHPDIAG 1.26.04.EXE-A2DBB9F5.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:46:00 ---A- C:\Windows\Prefetch\ZHPDIAG 1.26.04.TMP-788A1750.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:46:00 ---A- C:\Windows\Prefetch\ZHPDIAG 1.26.04.TMP-8C2CCDAE.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:46:08 ---A- C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:48:12 ---A- C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:48:12 ---A- C:\Windows\Prefetch\LADS.EXE-046BC4A8.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:48:13 ---A- C:\Windows\Prefetch\SETACL.EXE-82C2BC90.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:48:13 ---A- C:\Windows\Prefetch\SUBINACL.EXE-AB0CE9D9.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:48:51 ---A- C:\Windows\Prefetch\SIGCHECK.EXE-F42FC051.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:49:01 ---A- C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:49:07 ---A- C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:49:08 ---A- C:\Windows\Prefetch\MBR.EXE-836B8DE9.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:49:32 ---A- C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:49:46 ---A- C:\Windows\Prefetch\AVWSC.EXE-9DE67EBB.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:49:55 ---A- C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:50:36 ---A- C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:50:46 ---A- C:\Windows\Prefetch\TASKMGR.EXE-5F5F473D.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:50:51 ---A- C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:50:56 ---A- C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 17:51:01 ---A- C:\Windows\Prefetch\ZHPDIAG.EXE-0D117CAF.pf

O45 - LFCP:Last File Created Prefetch 25/06/2010 - 23:30:00 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf

 

 

---\\ Export de clé d'application autorisée (ECAA) (O47)

O47 - AAKE:Key Export SP - "C:\Program Files (x86)\FlashGet Network\FlashGet universal\FlashGet.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files (x86)\FlashGet Network\FlashGet universal\FlashGet.exe

O47 - AAKE:Key Export SP - "C:\Program Files (x86)\FlashGet Network\FlashGet universal\LiveUpdate.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files (x86)\FlashGet Network\FlashGet universal\LiveUpdate.exe

O47 - AAKE:Key Export SP - "C:\Program Files (x86)\FlashGet Network\FlashGet universal\LiveUpdateEx.exe" [Enabled] .(.Pas de propriétaire - .) (.not file.) -- C:\Program Files (x86)\FlashGet Network\FlashGet universal\LiveUpdateEx.exe

 

 

---\\ MountPoints2 Shell Key (MPSK) (O51)

O51 - MPSK:{1fcefca5-6954-11df-a831-001e8cb436b4}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- E:\AutoRunCD.exe (.not file.)

O51 - MPSK:{8f981963-fee1-11de-b2b6-001e8cb436b4}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- F:\setup\rsrc\Autorun.exe (.not file.)

 

 

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\xvidvfw.dll

O52 - TDSD: \Drivers32\"VIDC.YV12"="yv12vfw.dll" . (.www.helixcommunity.org - Helix YV12 YUV Codec.) -- C:\Windows\System32\yv12vfw.dll

O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm

O52 - TDSD: \Drivers32\"msacm.lameacm"="lameACM.acm" . (.http://www.mp3dev.org/ - Lame MP3 codec engine.) -- C:\Windows\System32\lameACM.acm

O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll

O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec 1.2.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"lameACM.acm"="Lame ACM MP3 CODEC v3.98.2" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC-3 ACM Codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm

O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ff_vfw.dll

 

 

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll

 

 

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

 

 

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0

 

 

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys

O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys

O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys

O58 - SDL:[MD5.2219A3D695405E7BA2186BA6B9EDE14A] - 14/05/2009 - 09:26:24 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\system32\drivers\ASACPI.sys

O58 - SDL:[MD5.7E2F5A758F63F80F8B03F889B4E6B19F] - 09/03/2010 - 11:21:42 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys

O58 - SDL:[MD5.CC0B8B1912967D429C4A2D2BD7A9E52D] - 07/04/2010 - 03:44:06 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys

O58 - SDL:[MD5.B855C99C23A57EDECA29F49A3210B95C] - 07/04/2010 - 02:23:30 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys

O58 - SDL:[MD5.C30B5FC0ADCDFBA7668E99BAF0CBF58E] - 10/12/2009 - 11:46:40 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys

O58 - SDL:[MD5.2835BF2A864CDE9184C80CF4E6A485F9] - 01/12/2009 - 10:31:10 ---A- . (.C-Media Inc - C-Media Audio WDM Driver.) -- C:\Windows\system32\drivers\cmudax3.sys

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys

O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 14:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys

O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys

O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys

O58 - SDL:[MD5.E32F41DE9C204F020DA5141A03E81601] - 25/06/2009 - 03:14:46 ---A- . (.Atheros Communications, Inc. - Atheros L1 Gigabit Ethernet 10/100/1000Base-T Adapter.) -- C:\Windows\system32\drivers\l160x64.sys

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys

O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys

O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys

O58 - SDL:[MD5.00000000000000000000000000000000] - 27/05/2010 - 02:50:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\sptd.sys

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys

O58 - SDL:[MD5.CD03479F2DA26500B203ED075C146A7A] - 19/04/2010 - 19:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl64.sys

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys

O58 - SDL:[MD5.ADAA34740E9F6AFF94CC75D5CF8ED7E2] - 04/01/2008 - 13:34:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\drivers\AsInsHelp32.sys

O58 - SDL:[MD5.EDAA17CE771C696655B6585F7CAD2100] - 04/01/2008 - 13:34:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\drivers\AsInsHelp64.sys

O58 - SDL:[MD5.68726474C69B738EAC3A62E06B33ADDC] - 06/04/2009 - 15:24:30 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\drivers\AsIO.sys

O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 11/05/2009 - 09:11:52 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\SysWOW64\drivers\ssmdrv.sys

 

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 22/06/2010 - 18:48:47 ---A- C:\Users\haegi\AppData\Roaming\Megaupload\Mega Manager\MegaManager.dat [536576]

O61 - LFC:Last File Created 22/06/2010 - 18:54:08 ---A- C:\Users\haegi\AppData\Local\ElevatedDiagnostics\460911090\2010062217.000\results.xsl [49097]

O61 - LFC:Last File Created 22/06/2010 - 18:54:18 ---A- C:\Users\haegi\AppData\Local\ElevatedDiagnostics\460911090\2010062217.000\31F895F0-3B0B-41EA-8C2E-DC2A6E623325.Diagnose.Admin.0.etl [327680]

O61 - LFC:Last File Created 22/06/2010 - 18:54:19 ---A- C:\Users\haegi\AppData\Local\ElevatedDiagnostics\460911090\2010062217.000\NetworkConfiguration.cab [1378]

O61 - LFC:Last File Created 22/06/2010 - 18:54:27 ---A- C:\Users\haegi\AppData\Local\ElevatedDiagnostics\460911090\2010062217.000\NetworkDiagnostics.0.debugreport.xml [72991]

O61 - LFC:Last File Created 22/06/2010 - 18:54:27 ---A- C:\Users\haegi\AppData\Local\ElevatedDiagnostics\460911090\2010062217.000\ResultReport.xml [39889]

O61 - LFC:Last File Created 22/06/2010 - 18:54:27 ---A- C:\Users\haegi\AppData\Local\ElevatedDiagnostics\460911090\2010062217.000\results.xml [311]

O61 - LFC:Last File Created 22/06/2010 - 18:54:27 ---A- C:\Users\haegi\AppData\Local\ElevatedDiagnostics\460911090\latest.cab [26252]

O61 - LFC:Last File Created 22/06/2010 - 19:03:40 ---A- C:\Users\haegi\AppData\Roaming\Microsoft\IdentityCRL\production\MetaConfig.xml [163]

O61 - LFC:Last File Created 22/06/2010 - 19:40:00 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00000002d6 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:00 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\0000038239 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:00 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\000003db6f [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:00 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002d8929 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:00 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002d8b70 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:00 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002d8d16 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:00 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002d8dc9 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:00 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002d8ef7 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002d8faa [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002d9d4a [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002d9dfd [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002da028 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002da0db [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002da2d9 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002da38c [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002ead51 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:40:01 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\POM0EFW1-2006061519364800-0003f5ea2a\00002eae04 [16]

O61 - LFC:Last File Created 22/06/2010 - 19:43:23 ---A- C:\Users\haegi\Music\iTunes\iTunes Library Extras.itdb [12288]

O61 - LFC:Last File Created 22/06/2010 - 19:43:30 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\Preferences\ByHost\com.apple.syncservices.{846ee340-7039-11de-9d20-806e6f6e6963}.plist [73]

O61 - LFC:Last File Created 22/06/2010 - 19:43:33 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\SyncServices\Local\schemas.adminarchive [204218]

O61 - LFC:Last File Created 22/06/2010 - 19:43:35 ---A- C:\Users\All Users\Apple Computer\iTunes\iPodDevices.xml [840]

O61 - LFC:Last File Created 22/06/2010 - 19:43:35 ---A- C:\Users\haegi\AppData\Local\Apple Computer\iTunes\iPodDevices.xml [840]

O61 - LFC:Last File Created 22/06/2010 - 19:43:37 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\Preferences\com.apple.WindowsContacts.client.exe.plist [84]

O61 - LFC:Last File Created 22/06/2010 - 19:43:37 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\SyncServices\Local\admin.syncdb [62464]

O61 - LFC:Last File Created 22/06/2010 - 19:43:37 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\SyncServices\Local\clientdata\352340fc1280163e9adf24c655737a5d9bf4c5ed\20ed0b0a4c6365776999cb73bd09d202be8d77a9 [882]

O61 - LFC:Last File Created 22/06/2010 - 19:43:37 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\SyncServices\Local\clientdata\352340fc1280163e9adf24c655737a5d9bf4c5ed\52eb5aa338177eb25ec4efba9e7030a7f362fed4 [3894]

O61 - LFC:Last File Created 22/06/2010 - 19:43:37 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\SyncServices\Local\clientdata\352340fc1280163e9adf24c655737a5d9bf4c5ed\9f987652719c5b673155eea4c58592b30c686772 [246]

O61 - LFC:Last File Created 22/06/2010 - 19:43:37 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\SyncServices\Local\clientdata\352340fc1280163e9adf24c655737a5d9bf4c5ed\a6977b4a6ef2d7bef16c216c838fb68cf0ca8e72 [266]

O61 - LFC:Last File Created 22/06/2010 - 19:43:37 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\SyncServices\Local\clientdata\352340fc1280163e9adf24c655737a5d9bf4c5ed\ccc3799a754185ab670f4b88ffee44b4a4fa93c4 [231]

O61 - LFC:Last File Created 22/06/2010 - 19:43:40 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\iPhone de haegi\Baseband\log-bb-2010-06-21-stats.log [723]

O61 - LFC:Last File Created 22/06/2010 - 19:43:40 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\iPhone de haegi\Baseband\log-bb-2010-06-21-stats.plist [1421]

O61 - LFC:Last File Created 22/06/2010 - 19:43:40 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\iPhone de haegi\aggregated-2010-06-20.crash [734]

O61 - LFC:Last File Created 22/06/2010 - 19:43:40 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\iPhone de haegi\aggregated-2010-06-20.plist [1701]

O61 - LFC:Last File Created 22/06/2010 - 19:43:45 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\592cafbdd50dac53453f5672f325ff37d1843d29.mddata [934]

O61 - LFC:Last File Created 22/06/2010 - 19:43:45 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\592cafbdd50dac53453f5672f325ff37d1843d29.mdinfo [310]

O61 - LFC:Last File Created 22/06/2010 - 19:43:45 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\64852404d8347fafdc95c5d68f7629995baef161.mddata [7195]

O61 - LFC:Last File Created 22/06/2010 - 19:43:45 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\64852404d8347fafdc95c5d68f7629995baef161.mdinfo [324]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\1dd07f2fbb1169bed93c21047ca5616371ea4a04.mddata [98868]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\1dd07f2fbb1169bed93c21047ca5616371ea4a04.mdinfo [269]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\61e1e4600e3997adbadda920ade1321e753b2b17.mddata [137]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\61e1e4600e3997adbadda920ade1321e753b2b17.mdinfo [286]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\d351344f01cbe4900c9e981d1fb7ea5614e7c2e5.mddata [334]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\d351344f01cbe4900c9e981d1fb7ea5614e7c2e5.mdinfo [285]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\e452abcdc1c5829fc16884318df4b8b14d3532a2.mddata [346]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\e452abcdc1c5829fc16884318df4b8b14d3532a2.mdinfo [286]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\fb7786ced1add24313fa258c8e1ed041e24d52a4.mddata [434]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\fb7786ced1add24313fa258c8e1ed041e24d52a4.mdinfo [287]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\fdff09f7f56b266b40c42606bc71a06fac258007.mddata [1775]

O61 - LFC:Last File Created 22/06/2010 - 19:43:46 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\fdff09f7f56b266b40c42606bc71a06fac258007.mdinfo [262]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\1107041dfe997fed991d9a5421788bd94f94f940.mddata [91]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\1107041dfe997fed991d9a5421788bd94f94f940.mdinfo [286]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\2fdcd655b0ad22cb9c4caf388f44fe6185f9556c.mddata [66]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\2fdcd655b0ad22cb9c4caf388f44fe6185f9556c.mdinfo [297]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3c54cb1e89c54d3c09664c5b8311c0a00f9ea06e.mddata [101]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3c54cb1e89c54d3c09664c5b8311c0a00f9ea06e.mdinfo [296]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\59445c4fae86445d6326f08d3c3bcf7b60ac54d3.mddata [2610]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\59445c4fae86445d6326f08d3c3bcf7b60ac54d3.mdinfo [286]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\76fb3c685d422334fd25d9777d64db74af7cb25a.mddata [421]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\76fb3c685d422334fd25d9777d64db74af7cb25a.mdinfo [285]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\ce78a34a7c030a803ea0ae2efa03c0fac1861b56.mddata [68]

O61 - LFC:Last File Created 22/06/2010 - 19:43:47 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\ce78a34a7c030a803ea0ae2efa03c0fac1861b56.mdinfo [283]

O61 - LFC:Last File Created 22/06/2010 - 19:43:48 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\251bbb305b3ace4faee86a24fc9e248a66f67121.mddata [123]

O61 - LFC:Last File Created 22/06/2010 - 19:43:48 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\251bbb305b3ace4faee86a24fc9e248a66f67121.mdinfo [288]

O61 - LFC:Last File Created 22/06/2010 - 19:43:48 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\52c03edfc4da9eba398684afb69ba503a2709667.mddata [246]

O61 - LFC:Last File Created 22/06/2010 - 19:43:48 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\52c03edfc4da9eba398684afb69ba503a2709667.mdinfo [287]

O61 - LFC:Last File Created 22/06/2010 - 19:43:48 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\7ff7fe545440ab72b1570232d0ed81b84a5334dd.mddata [250]

O61 - LFC:Last File Created 22/06/2010 - 19:43:48 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\7ff7fe545440ab72b1570232d0ed81b84a5334dd.mdinfo [285]

O61 - LFC:Last File Created 22/06/2010 - 19:43:48 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\bd38afa30b5a43c146db02a46ee11d82cdc817fe.mddata [1056]

O61 - LFC:Last File Created 22/06/2010 - 19:43:48 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\bd38afa30b5a43c146db02a46ee11d82cdc817fe.mdinfo [288]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\1d6740792a2b845f4c1e6220c43906d7f0afe8ab.mddata [13348]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\1d6740792a2b845f4c1e6220c43906d7f0afe8ab.mdinfo [268]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\2041457d5fe04d39d0ab481178355df6781e6858.mddata [241664]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\2041457d5fe04d39d0ab481178355df6781e6858.mdinfo [274]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\31bb7ba8914766d4ba40d6dfb6113c8b614be442.mddata [221184]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\31bb7ba8914766d4ba40d6dfb6113c8b614be442.mdinfo [280]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\662bc19b13aecef58a7e855d0316e4cf61e2642b.mddata [3388]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\662bc19b13aecef58a7e855d0316e4cf61e2642b.mdinfo [287]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\740b7eaf93d6ea5d305e88bb349c8e9643f48c3b.mddata [49152]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\740b7eaf93d6ea5d305e88bb349c8e9643f48c3b.mdinfo [262]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\9281049ff1d27f1129c0bd17a95c863350e6f5a2.mddata [4506]

O61 - LFC:Last File Created 22/06/2010 - 19:43:49 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\9281049ff1d27f1129c0bd17a95c863350e6f5a2.mdinfo [273]

O61 - LFC:Last File Created 22/06/2010 - 19:43:50 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\fb520955c98189505f20d2af90a46a1ced8c2e9c.mddata [16384]

O61 - LFC:Last File Created 22/06/2010 - 19:43:50 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\fb520955c98189505f20d2af90a46a1ced8c2e9c.mdinfo [263]

O61 - LFC:Last File Created 22/06/2010 - 19:43:50 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\ff1324e6b949111b2fb449ecddb50c89c3699a78.mddata [28672]

O61 - LFC:Last File Created 22/06/2010 - 19:43:50 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\ff1324e6b949111b2fb449ecddb50c89c3699a78.mdinfo [275]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\091760b3b35bada34a872fdd4b6b52b0c82c22bf.mddata [241]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\091760b3b35bada34a872fdd4b6b52b0c82c22bf.mdinfo [288]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\17ccf2672bdb7c89cb553154869c3b6a3a49e86d.mddata [67846]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\17ccf2672bdb7c89cb553154869c3b6a3a49e86d.mdinfo [264]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3d0d7e5fb2ce288813306e4d4636395e047a3d28.mddata [1339392]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3d0d7e5fb2ce288813306e4d4636395e047a3d28.mdinfo [258]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\431a9b47b03af9b6aa213471950aa077c4807ad1.mddata [529]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\431a9b47b03af9b6aa213471950aa077c4807ad1.mdinfo [286]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\588dad6d704ed60e6b4ed5c7a6bf49ad0655a439.mddata [13436]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\588dad6d704ed60e6b4ed5c7a6bf49ad0655a439.mdinfo [279]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\6c2c10930091b6007638fa3bcc46c676ef512bbe.mddata [513]

O61 - LFC:Last File Created 22/06/2010 - 19:43:51 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\6c2c10930091b6007638fa3bcc46c676ef512bbe.mdinfo [310]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3953d95b549560c2f4c7d7924480cb7fbf739dfe.mddata [430080]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3953d95b549560c2f4c7d7924480cb7fbf739dfe.mdinfo [273]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\76a1b61e41feff6d66d716f292ba1aacda97c9d7.mddata [12709]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\76a1b61e41feff6d66d716f292ba1aacda97c9d7.mdinfo [329]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\992df473bbb9e132f4b3b6e4d33f72171e97bc7a.mddata [28672]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\992df473bbb9e132f4b3b6e4d33f72171e97bc7a.mdinfo [270]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\ce3d267e1574e615220b3caaeb141ec40341272e.mddata [42]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\ce3d267e1574e615220b3caaeb141ec40341272e.mdinfo [289]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\cff5bedc714912fed7c2e532508edf9773597e13.mddata [281]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\cff5bedc714912fed7c2e532508edf9773597e13.mdinfo [261]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\d0d7a395b840e05fcc720327321b98c429be5896.mddata [42]

O61 - LFC:Last File Created 22/06/2010 - 19:43:52 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\d0d7a395b840e05fcc720327321b98c429be5896.mdinfo [289]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\384eb9e62ba50d7f3a21d9224123db62879ef423.mddata [6219]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\384eb9e62ba50d7f3a21d9224123db62879ef423.mdinfo [321]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\6639cb6a02f32e0203851f25465ffb89ca8ae3fa.mddata [6144]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\6639cb6a02f32e0203851f25465ffb89ca8ae3fa.mdinfo [283]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\6c03edef10c398e610c6592afb4aa937d6d5642c.mddata [12910]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\6c03edef10c398e610c6592afb4aa937d6d5642c.mdinfo [334]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\939adebaf56aeede7d34aaad4df37601ea25d11a.mddata [13532]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\939adebaf56aeede7d34aaad4df37601ea25d11a.mdinfo [332]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\b264ba4df1a18d1832ea0037b1814c4353f9eb41.mddata [515]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\b264ba4df1a18d1832ea0037b1814c4353f9eb41.mdinfo [289]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\bd95673d1428e7fb1bef603e2517052984d47a69.mddata [457]

O61 - LFC:Last File Created 22/06/2010 - 19:43:53 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\bd95673d1428e7fb1bef603e2517052984d47a69.mdinfo [323]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3c5ab232a8daf5e845a83ec9182c59bbdb2ec1c8.mddata [14376]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3c5ab232a8daf5e845a83ec9182c59bbdb2ec1c8.mdinfo [292]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\94548b059c7b110e68622724166e9c61d7b0c28a.mddata [21691]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\94548b059c7b110e68622724166e9c61d7b0c28a.mdinfo [344]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\989145900fd285d0fd948f83bd41e6585bf44bf1.mddata [21691]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\989145900fd285d0fd948f83bd41e6585bf44bf1.mdinfo [317]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\a1a43a322e75fd52290a2ed461ff0f4d9761e3c5.mddata [111501]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\a1a43a322e75fd52290a2ed461ff0f4d9761e3c5.mdinfo [315]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\c88b8f13891dcd1f73f54543317e2213cf910a71.mddata [949]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\c88b8f13891dcd1f73f54543317e2213cf910a71.mdinfo [317]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\f7cdce50d71e4c7612815774dc28ad562b43e7c8.mddata [494]

O61 - LFC:Last File Created 22/06/2010 - 19:43:54 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\f7cdce50d71e4c7612815774dc28ad562b43e7c8.mdinfo [331]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\1dae0d7d641915514836e91a148010b756c36f65.mddata [8661]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\1dae0d7d641915514836e91a148010b756c36f65.mdinfo [331]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3a7e4ffed91f85cbcc6b8e994696c4f2ea25482c.mddata [13470]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\3a7e4ffed91f85cbcc6b8e994696c4f2ea25482c.mdinfo [357]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\5dda9866b30fe3a912e6c7deced6ccf3acc25554.mddata [181]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\5dda9866b30fe3a912e6c7deced6ccf3acc25554.mdinfo [334]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\b0641cbd36e2a6dbd42cec4ae3ea4ac4fdfa6548.mddata [6661]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\b0641cbd36e2a6dbd42cec4ae3ea4ac4fdfa6548.mdinfo [314]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\c780c72826ad2937d27e09085a87210e910192c7.mddata [19]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\c780c72826ad2937d27e09085a87210e910192c7.mdinfo [322]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\c894ca70c64e17d7d26cf5fe826acf5df83dee6a.mddata [156043]

O61 - LFC:Last File Created 22/06/2010 - 19:43:55 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\c894ca70c64e17d7d26cf5fe826acf5df83dee6a.mdinfo [317]

O61 - LFC:Last File Created 22/06/2010 - 19:43:56 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\705792840875bbc1a7da1276e6241468936d61a3.mddata [548931]

O61 - LFC:Last File Created 22/06/2010 - 19:43:56 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\705792840875bbc1a7da1276e6241468936d61a3.mdinfo [332]

O61 - LFC:Last File Created 22/06/2010 - 19:43:56 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\726ef7c18bb48ebe48b1659a63775f9a8b0931b7.mddata [19]

O61 - LFC:Last File Created 22/06/2010 - 19:43:56 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\726ef7c18bb48ebe48b1659a63775f9a8b0931b7.mdinfo [324]

O61 - LFC:Last File Created 22/06/2010 - 19:43:56 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\Manifest.plist [190277]

O61 - LFC:Last File Created 22/06/2010 - 19:43:57 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\Info.plist [26705]

O61 - LFC:Last File Created 22/06/2010 - 19:43:57 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\MobileSync\Backup\3f441ebad4bb44ba44dea5f219e7ff7466e07a97\Status.plist [224]

O61 - LFC:Last File Created 22/06/2010 - 19:44:01 ---A- C:\Users\haegi\Pictures\iPod Photo Cache\Photo Database [388600]

O61 - LFC:Last File Created 22/06/2010 - 19:45:42 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\Logs\asl.204321_22Jun10.log [21188]

O61 - LFC:Last File Created 22/06/2010 - 19:46:32 ---A- C:\Users\haegi\Music\iTunes\iTunes Library.itl [27919]

O61 - LFC:Last File Created 22/06/2010 - 19:46:32 --HA- C:\Users\haegi\Music\iTunes\sentinel [8]

O61 - LFC:Last File Created 22/06/2010 - 19:46:33 ---A- C:\Users\haegi\AppData\Local\Apple Computer\iTunes\iTunesPrefs.xml [349550]

O61 - LFC:Last File Created 22/06/2010 - 19:46:33 ---A- C:\Users\haegi\AppData\Roaming\Apple Computer\iTunes\iTunesPrefs.xml [233079]

O61 - LFC:Last File Created 23/06/2010 - 18:12:18 ---A- C:\Users\haegi\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\0000000145 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00000001b7 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\0000002be0 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00000ddc58 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00000f2601 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00001c9971 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00001c99be [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00001cfc97 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00001cfce4 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00002a8c09 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00002a8c56 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:42 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\000038afc5 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:43 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\000038b012 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:43 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00003a5a5d [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:43 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00003a5aaa [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:43 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00003a9c24 [16]

O61 - LFC:Last File Created 23/06/2010 - 22:36:43 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D6-2007060615582400-d090cf8ff1\00003a9c71 [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\000000012e [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\000000019c [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\0000002b80 [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\00000e5870 [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\00000f45ba [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\00001d7685 [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\00001d76d2 [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\00002b9b77 [16]

O61 - LFC:Last File Created 23/06/2010 - 23:23:14 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\DR_HOUSE_S2_D5-2007060715145800-5b983f46ea\00002b9bc4 [16]

O61 - LFC:Last File Created 24/06/2010 - 00:11:52 --HA- C:\Users\haegi\AppData\Local\IconCache.db [1687587]

O61 - LFC:Last File Created 24/06/2010 - 17:54:46 ---A- C:\Users\haegi\AppData\Local\Temp\AdobeARM.log [4864]

O61 - LFC:Last File Created 24/06/2010 - 17:54:49 ---A- C:\Users\All Users\DAEMON Tools Lite\license.dat [1420]

O61 - LFC:Last File Created 24/06/2010 - 18:02:04 ---A- C:\Users\haegi\AppData\Local\Temp\plugtmp\plugin-al-4c238f88b14e31.27774918 [983040]

O61 - LFC:Last File Created 24/06/2010 - 18:15:54 ---A- C:\Users\haegi\AppData\Local\Temp\haegi.bmp [31832]

O61 - LFC:Last File Created 25/06/2010 - 15:52:52 ---A- C:\Users\haegi\AppData\Roaming\dvdcss\CACHEDIR.TAG [199]

 

 

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.)

 

 

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Pas de propriétaire - Pas de description.) - LEGACY_AFD

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\atikmdag.sys - amdkmdag (amdkmdag) .(.Pas de propriétaire - Pas de description.) - LEGACY_AMDKMDAG

O64 - Services: CurCS - C:\Windows\sysWow64\drivers\AsIO.sys - AsIO (AsIO) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASIO

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\avgntflt.sys - avgntflt (avgntflt) .(.Pas de propriétaire - Pas de description.) - LEGACY_AVGNTFLT

O64 - Services: CurCS - Beep - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP

O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Pas de propriétaire - Pas de description.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\cng.sys - CNG (CNG) .(.Pas de propriétaire - Pas de description.) - LEGACY_CNG

O64 - Services: CurCS - C:\Windows\system32\cscsvc.dll (CSC) .(.Pas de propriétaire - Pas de description.) - LEGACY_CSC

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Pas de propriétaire - Pas de description.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Pas de propriétaire - Pas de description.) - LEGACY_DISCACHE

O64 - Services: CurCS - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys - driverhardwarev2x64 (driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Pas de propriétaire - Pas de description.) - LEGACY_DXGKRNL

O64 - Services: CurCS - FAT12/16/32 File System Driver - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Pas de propriétaire - Pas de description.) - LEGACY_FVEVOL

O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Pas de propriétaire - Pas de description.) - LEGACY_HWPOLICY

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECPKG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Pas de propriétaire - Pas de description.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Pas de propriétaire - Pas de description.) - LEGACY_LUAFV

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\system32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Pas de propriétaire - Pas de description.) - LEGACY_PCW

O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Pas de propriétaire - Pas de description.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Pas de propriétaire - Pas de description.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPREFMP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Pas de propriétaire - Pas de description.) - LEGACY_RSPNDR

O64 - Services: CurCS - Security Driver - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV

O64 - Services: CurCS - Security Processor Loader Driver - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\Drivers\sptd.sys - sptd (sptd) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPTD

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Pas de propriétaire - Pas de description.) - LEGACY_STORFLT

O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Pas de propriétaire - Pas de description.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Pas de propriétaire - Pas de description.) - LEGACY_WDF01000

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WFPLWF

O64 - Services: CurCS - C:\Windows\system32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WUDFPF

 

 

---\\ Liste des fichiers non signés (LUF) (O65)

O65 - LUF:23/07/2008 (.Pas de propriétaire - ConfigPanel Dynamic Link Library.) (1, 0, 0, 1) - c:\windows\system32\CMICNFG3.cpl

 

 

---\\ Observateur d'évènement d'application (OEA) (O66)

O66 - EventLog: ID=1000 (Application Error) - (.Safer Networking Limited - Spybot - Search & Destroy.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe

O66 - EventLog: ID=1000 (Application Error) - (.Crytek GmbH - Pas de description.) -- C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe

O66 - EventLog: ID=1000 (Application Error) - (.Crytek GmbH - Pas de description.) -- C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin64\Crysis.exe

O66 - EventLog: ID=1000 (Application Error) - (.Megaupload Limited - Mega Manager.) -- C:\Program Files (x86)\Megaupload\Mega Manager\MegaManager.exe

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

---\\ Start Menu Internet (SMI) (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

 

 

---\\ Search Browser Infection (SBI) (O69)

 

 

---\\ Recherche d'infection Master Boot Record (O80)

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover

Run by haegi at 25/06/2010 18:52:58

device: opened successfully

user: MBR read successfully

kernel: error reading MBR

 

 

 

End of the scan (1040 lines in 08mn 09s)

[pear]

Bonsoir,

 

Prévention:

Désactiver l'autorun sur tous les lecteur (USB, CD, DVD, SATA, Firewire, etc.

Pour cela,sous Xp :

Copier/coller ,dans le bloc notes,ce qui suit ,(en vert)sans ligne blanche au début.mais une à la fin.

Windows Registry Editor Version 5.00

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion­\Policies\Explorer]

"NoDriveTypeAutoRun"=dword:000000ff

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion­\Policies\Explorer]

"NoDriveTypeAutoRun"=dword:000000ff

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\Autorun.inf]

@="@SYS:DoesNotExist"

 

Sous Vista/7

Copier/coller ce qui suiten vertdans le bloc notes,sans ligne blanche au début.mais une à la fin.

Windows Registry Editor Version 5.00

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers]

"DisableAutoplay"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\Autorun.inf]

@="@SYS:DoesNotExist"

 

Fichier ->Enregistrez sous..

Clic sur bureau à gauche

Dans type de fichier->Tous les fichiers

Dans Nom-> regis.reg.

Allez sur le bureau

Cliquez droit sur le fichier ->fusionner

Acceptez la modification du Régistre

[/color]

TéléchargerOpen-Config de Lopp Blanc

 

en vert c'est bon, en rouge on peut déverrouiller.

Un clic sur le bouton "Déverrouiller la configuration" va permettre de corriger tous les points en rouge,

 

 

Télécharger Usb Fix de C_XX & Chiquitine29, sur le bureau

 

Installez le.

Vous devez désactiver la protection en temps réel de votre Antivirus qui peut considérer certains composants de ce logiciel comme néfastes.

* Pour cela, faites un clic droit sur l'icône de l'antivirus en bas à droite à côté de l'horloge puis Disable Guard ou Shield ou Résident...

Si vous êtes sous Vista et 7, si l'UAC est activé il faut le lancer en mode "Administrateur".

Clic droit sur USBFix.exe et choisir Exécuter en tant qu'administrateur.

Sous XP, Double-cliquer sur USBFix.exe pour le lancer.

 

Lancer l'installation avec les paramètres par défault

Brancher les périphériques externes (clé USB, disque dur externe, etc...) sans les ouvrir

Faire un Clic-droit sur le raccourci Usbfix sur le bureau et choisir "Exécuter en tant qu'administrateur".

 

Lancer l' option 1(Recherche)

le rapport UsbFix.txt est sauvegardé à la racine du disque .

Faites en un copier/coller dans le bloc notes pour le poster.

 

Ensuite,

Lancer l'option 2(Suppression)

Le bureau disparait et le pc redémarre

Patientez le temps du scan.

le rapport UsbFix.txt est sauvegardé à la racine du disque

Faites en un copier/coller dans le bloc notes pour le poster.

 

 

Vaccination

Pour vous éviter une infection ultérieure:

Lancer l' Option 3 (vaccination)

 

 

Pour Désinstaller

Double clic sur le raccourci UsbFix sur le bureau

Lancer l' option 5 ( Désinstaller ) ....

 

 

 

 

Téléchargez MBAM

 

Branchez tous les supports amovibles avant de faire ce scan (clé usb/disque dur externe etc)

Avant de lancer Mbam

Vous devez d'abord désactiver vos protections mais vous ne savez pas comment faire

 

* Double cliquez sur l'icône Download_mbam-setup.exe pour lancer le processus d'installation.

Enregistrez le sur le bureau .

Fermer toutes les fenêtres et programmes

Suivez les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet)

N'apportez aucune modification aux réglages par défaut et, en fin d'installation,

Vérifiez que les options Update et Launch soient cochées

MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse.

cliquer sur OK pour fermer la boîte de dialogue..

* Dans l'onglet "mise à jour", cliquez sur le bouton Recherche de mise à jour:

Si le pare-feu demande l'autorisation à MBAM de se connecter, acceptez.

* Une fois la mise à jour terminée, allez dans l'onglet Recherche.

* Sélectionnez "Exécuter un examen complet"

* Cliquez sur "Rechercher"

* .L' analyse prendra un certain temps, soyez patient !

* A la fin , un message affichera :

L'examen s'est terminé normalement.

 

*Si MBAM n'a rien trouvé, il le dira aussi.

Cliquez sur "Ok" pour poursuivre.

*Fermez les navigateurs.

Cliquez sur Afficher les résultats .

 

*Sélectionnez tout et cliquez sur Supprimer la sélection ,

MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

puis ouvrir le Bloc-notes et y copier le rapport d'analyse qui peut être retrouvé sous l'onglet Rapports/logs.

* Copiez-collez ce rapport dans la prochaine réponse.

[hajiwari]

merci pour cette reponse detaillé, je vais tester tout cela des ce soir!

[hajiwari]

Rapport USBFix..

 

Option1

 

############################## | UsbFix 7.014 | [Recherche]

 

Utilisateur: haegi (Administrateur) # HAEGI-PC [system manufacturer P5K]

Mis à jour le 24/06/10 par El Desaparecido / C_XX

Lancé à 20:36:37 | 28/06/2010

Site Web: Bienvenue dans nos Pages Persos

Contact: FindyKill.Contact@gmail.com

 

CPU: Intel® Core2 Quad CPU Q9550 @ 2.83GHz

CPU 2: Intel® Core2 Quad CPU Q9550 @ 2.83GHz

Microsoft Windows 7 Édition Intégrale (6.1.7600 64-Bit) #

Internet Explorer 8.0.7600.16385

 

Pare-feu Windows: Activé

RAM -> 4095 Mo

C:\ (%systemdrive%) -> Disque fixe # 134 Go (26 Go libre(s) - 20%) [] # NTFS

D:\ -> CD-ROM

E:\ -> CD-ROM

F:\ -> Disque amovible # 15 Go (11 Go libre(s) - 72%) [TRUC] # FAT32

 

################## | Éléments infectieux |

 

 

################## | Registre |

 

 

################## | Mountpoints2 |

 

 

################## | Vaccin |

 

C:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

F:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

 

################## | E.O.F |

 

 

 

Option 2

 

############################## | UsbFix 7.014 | [suppression]

 

Utilisateur: haegi (Administrateur) # HAEGI-PC [system manufacturer P5K]

Mis à jour le 24/06/10 par El Desaparecido / C_XX

Lancé à 20:30:08 | 28/06/2010

Site Web: Bienvenue dans nos Pages Persos

Contact: FindyKill.Contact@gmail.com

 

CPU: Intel® Core2 Quad CPU Q9550 @ 2.83GHz

CPU 2: Intel® Core2 Quad CPU Q9550 @ 2.83GHz

Microsoft Windows 7 Édition Intégrale (6.1.7600 64-Bit) #

Internet Explorer 8.0.7600.16385

 

Pare-feu Windows: Activé

RAM -> 4095 Mo

C:\ (%systemdrive%) -> Disque fixe # 134 Go (26 Go libre(s) - 20%) [] # NTFS

D:\ -> CD-ROM

E:\ -> CD-ROM

F:\ -> Disque amovible # 15 Go (11 Go libre(s) - 72%) [TRUC] # FAT32

 

################## | Éléments infectieux |

 

Supprimé! F:\msvcr71.dll

 

################## | Registre |

 

Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Windows System Guard

 

################## | Mountpoints2 |

 

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{1fcefca5-6954-11df-a831-001e8cb436b4}

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{8f981963-fee1-11de-b2b6-001e8cb436b4}

 

################## | Listing |

 

[28/06/2010 - 20:31:52 | SHD ] C:\$Recycle.Bin

[27/05/2010 - 19:15:27 | D ] C:\AdobeTemp

[25/02/2010 - 21:31:12 | D ] C:\ATI

[14/07/2009 - 07:08:56 | SHD ] C:\Documents and Settings

[20/06/2010 - 11:54:36 | D ] C:\gPotato.eu

[28/06/2010 - 20:08:18 | ASH | 3220529152] C:\hiberfil.sys

[02/12/2006 - 00:37:14 | A | 904704] C:\msdia80.dll

[21/02/2010 - 19:03:53 | RHD ] C:\MSOCache

[28/06/2010 - 20:08:27 | ASH | 4294041600] C:\pagefile.sys

[14/07/2009 - 05:20:08 | D ] C:\PerfLogs

[27/11/2009 - 19:32:27 | D ] C:\profiles

[17/06/2010 - 22:08:38 | RD ] C:\Program Files

[28/06/2010 - 20:13:30 | RD ] C:\Program Files (x86)

[28/06/2010 - 20:17:25 | HD ] C:\ProgramData

[25/11/2009 - 22:48:08 | SHD ] C:\Recovery

[28/06/2010 - 20:03:13 | SHD ] C:\System Volume Information

[12/01/2010 - 22:35:57 | D ] C:\TerraTec

[28/06/2010 - 20:31:52 | D ] C:\UsbFix

[28/06/2010 - 20:30:15 | A | 2065] C:\UsbFix.txt

[25/11/2009 - 22:48:16 | RD ] C:\Users

[23/06/2010 - 21:28:23 | D ] C:\Windows

[06/06/2007 - 15:58:23 | RD ] D:\VIDEO_TS

[06/06/2007 - 15:42:16 | RD ] D:\AUDIO_TS

[23/03/2010 - 21:41:38 | A | 2515587] F:\carteIdentite&SS.docx

[23/03/2010 - 21:42:50 | A | 33280] F:\CV_dev.doc

[19/05/2010 - 20:59:16 | SHD ] F:\Recycled

[10/04/2009 - 18:09:30 | D ] F:\FILMS

[23/03/2010 - 11:20:14 | A | 29696] F:\lettreMotivation.doc

[10/04/2009 - 18:09:34 | D ] F:\ANIMES

[18/05/2010 - 13:55:20 | A | 1911296] F:\carteIdentite.doc

[25/05/2010 - 16:12:26 | A | 11352] F:\view.pdf

[10/04/2009 - 18:12:56 | D ] F:\DIVERS

[07/06/2010 - 14:13:46 | A | 658109] F:\gs_GS10097440_112956_12285.pdf

[12/05/2009 - 19:12:48 | D ] F:\ZIK

[19/05/2009 - 20:28:14 | D ] F:\SERIE

[24/06/2009 - 18:59:08 | D ] F:\JEU

[10/04/2009 - 18:09:14 | D ] F:\PROG

 

################## | Vaccin |

 

C:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

F:\Autorun.inf -> Dossier créé par UsbFix (El Desaparecido & C_XX)

 

################## | Upload |

 

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_HAEGI-PC.zip

Upload pour UsbFix, Ad-Remover & FindyKill

Merci de votre contribution.

 

################## | E.O.F |

 

 

Rapport malware

 

Malwarebytes' Anti-Malware 1.46

www.malwarebytes.org

 

Version de la base de données: 4251

 

Windows 6.1.7600

Internet Explorer 8.0.7600.16385

 

29/06/2010 08:17:22

mbam-log-2010-06-29 (08-17-22).txt

 

Type d'examen: Examen complet (C:\|D:\|E:\|F:\|)

Elément(s) analysé(s): 620772

Temps écoulé: 1 heure(s), 47 minute(s), 40 seconde(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 1

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

HKEY_CURRENT_USER\Software\avsuite (Rogue.AntivirusSuite) -> Quarantined and deleted successfully.

 

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

 

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

 

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

Modifié le 29 juin 2010 par hajiwari

[pear]

Bonjour,

 

encore quelque chose ?