analyse hijackthis et questionnement sur la valeur des antivirus

uranos · le 22 juillet 2010

Bonjours, je suis novice en informatique et ayant effectué quelques téléchargements de logiciels ces derniers temps, je suspecte mon pc de subir l'intrusion de virus et autres. tout d'abord j'ai éffectuer un scan avec avast et spybot qui ont reconnus différentes choses, mais je ne sais pas si ces logiciels sont efficaces et si vous pouviez me suggérer un antivirus éventuellement plus éfficaces que je pourrais tout de même maitriser.

J'ai aussi éffectué un scan Hijackthis que je vous transmet:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 23:01:06, on 21/07/2010

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v8.00 (8.00.6001.18928)

Boot mode: Normal

Running processes:

C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\ABoard.exe

C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\AOSD.exe

C:\Program Files (x86)\LimeWire\LimeWire.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Alwil Software\Avast5\AvastUI.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\ClickPotatoLite\bin\10.0.519.0\ClickPotatoLiteSA.exe

C:\Program Files (x86)\Internet Explorer\IELowutil.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Widestream6\spointer\widestream6_air.exe

C:\Program Files (x86)\OfferBox\OfferBox.exe

C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1710&r=1v3607098606p0395vqm5y47019328

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Fissa search

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1710&r=1v3607098606p0395vqm5y47019328

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1710&r=1v3607098606p0395vqm5y47019328

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll

R3 - URLSearchHook: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files (x86)\Radio_Bar_1\tbRadi.dll

F2 - REG:system.ini: UserInit=userinit.exe

O1 - Hosts: ::1 localhost

O2 - BHO: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files (x86)\Radio_Bar_1\tbRadi.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Interest recogniser for Widestream6 (powered by Spointer) - {2BEFBCCE-46A6-4950-BCB5-7062EAC6C9C9} - C:\Program Files (x86)\Widestream6\spointer\extensions\widestream6_air_ie.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} - C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll

O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll

O3 - Toolbar: LimeWire Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files (x86)\Radio_Bar_1\tbRadi.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [ClickPotatoLiteSA] "C:\Program Files (x86)\ClickPotatoLite\bin\10.0.519.0\ClickPotatoLiteSA.exe"

O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter

O4 - HKCU\..\Run: [smpcSys] C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe

O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [Google Update] "C:\Users\gruyer\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe -s

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe

O4 - HKCU\..\Run: [EPSON SX100 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEDE.EXE /FU "C:\Users\gruyer\AppData\Local\Temp\E_S6E4C.tmp" /EF "HKCU"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')

O4 - Startup: LimeWire On Startup.lnk = C:\Program Files (x86)\LimeWire\LimeWire.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000

O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\gruyer\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html

O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O9 - Extra button: ClickPotato - {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} - C:\Program Files (x86)\ClickPotatoLite\bin\10.0.519.0\ClickPotatoLiteSABHO.dll

O13 - Gopher Prefix:

O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Packard Bell Services - C:\Windows\SYSTEM32\HidService.exe

O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\SysWOW64\IoctlSvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: QuestDns Service - Unknown owner - C:\ProgramData\QuestDns\questdns111.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 11706 bytes

Je vous remercie d'avance pour le dérangement et pour votre aide

pear · le 22 juillet 2010

Bonjour,

Rsit, comme Hijackthis, ne connait pas les OS 64 bits, d'où les "File Missing"

Lancez cet outil de diagnostic:

Téléchargez ZhpDiag de Coolman

Il ne nécessite aucune installation.

- Il peut être lancé depuis n'importe quelle unité de disque.

- Il peut être lancé d'une clé USB.

Cliquez sur le tournevis

Dans la fenêtre qui s'ouvre, cochez tout.

Clic sur la Loupe pour lancer le scan

Au bout d'un moment ,vous pouvez avoir à Accepter Sysinternal->I agree

Postez en le rapport qui apparait en cliquant l'appareil photo.

uranos · le 22 juillet 2010

d'accord merci pour la réponse, j'ai éffectuer le scan mais la barre bleu n'indique que 74% donc je ne sais pas si cela à une influence....

le rapport est:

Rapport de ZHPDiag v1.26.29 par Nicolas Coolman, Update du 21/07/2010

Run by gruyer at 22/07/2010 16:22:52

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18928

MFIE: Mozilla Firefox (3.6.7)

---\\ System Information

Platform : Windows Vista Home Premium (6.0.6002)

Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 2814 MB (47% free)

System drive C: has 58 GB (40%) free of 142 GB

---\\ Logged in mode

Computer Name: PC-DE-GRUYER

User Name: gruyer

All Users Names: gruyer, Administrateur,

Unselected Option: None

Logged in as Administrator

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 58 Go of 142 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 115 Go of 142 Go)

E:\ CD-ROM drive (Not Inserted)

G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK

---\\ Processus lancés

[MD5.E273A48CB6D61990E7E7F040CD606F1D] - (.Packard Bell BV - Activboard Application.) -- C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\ABoard.exe [79416]

[MD5.1BB16912FD7A9D5A39D033C15485470F] - (.Packard Bell BV - ActivOSD Application.) -- C:\ACER\Preload\Autorun\DRV\Fiji Keyboard\AOSD.exe [99896]

[MD5.EE90A04DC33568E35D35300D7B2AC663] - (.Acer Incorporated - SMP Systray.) -- C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe [1160736]

[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408]

[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088]

[MD5.2B7F2DC5741BB18F7F5EC7558DA68197] - (.Lime Wire, LLC - LimeWire.) -- C:\Program Files (x86)\LimeWire\LimeWire.exe [503808]

[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040]

[MD5.38AE7A942FC3FAB1C6A27EB65DE8F827] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2837864]

[MD5.DB1DB28467111A24664933AB8908CBCE] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [952768]

[MD5.D66ADB4EC5224E18049AF722D0BD7EDA] - (.Pinball Corporation. - ClickPotato Search Assistant.) -- C:\Program Files (x86)\ClickPotatoLite\bin\10.0.519.0\ClickPotatoLiteSA.exe [739632]

[MD5.5C9B1062EA7A44E8F6BFDE994B68C7AA] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [638232]

[MD5.CEDF6D51B66006142B892BE96F8E5E18] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [304304]

[MD5.2A7200364305E401D74113FF7A93BB42] - (.Widestream6 - Interest Recognizer for Widestream6.) -- C:\Program Files (x86)\Widestream6\spointer\widestream6_air.exe [1275552]

[MD5.CCA2D88922D790B1CA0E845A6DEE10E1] - (.Secure Digital Services Limited - OfferBox.) -- C:\Program Files (x86)\OfferBox\OfferBox.exe [1962840]

[MD5.6AAA2F3476638AF74E306B796989BBBD] - (.Adobe Systems, Inc. - Adobe Flash Player Helper 10.0 r42.) -- C:\Windows\SysWow64\Macromed\Flash\FlashUtil10d.exe [257440]

[MD5.CAB49391861142F93F514B3A8843DA07] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [481280]

---\\ Plugins de navigateurs Opera/Firefox(P1/P2)

P2 - FPN:Firefox Plugin Navigator . (.Pinball Corporation. - ClickPotatoLite Firefox Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npclntax_ClickPotatoLiteSA.dll

P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll

P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.3.2".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 2.0.0.254.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files (x86)\Google\Update\1.2.183.23\npGoogleOneClick8.dll

P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Users\gruyer\AppData\Local\Google\Update\1.2.183.29\npGoogleOneClick8.dll

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=userinit.exe

F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Pages de recherche d'Internet Explorer (R1)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

---\\ Internet Explorer URLSearchHook (R3)

R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} . (.Conduit Ltd. - Conduit Toolbar.) (5, 7, 1, 1) -- C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll

R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} . (.Conduit Ltd. - Conduit Toolbar.) (5, 7, 2, 2) -- C:\Program Files (x86)\Radio_Bar_1\tbRadi.dll

R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ask.com - Ask.com Toolbar.) (5.6.9.134) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

R3 - URLSearchHook: UrlSearchHook Class - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\SysWOW64\ieframe.dll

R3 - URLSearchHook: UrlSearchHook Class - {872b5b88-9db5-4310-bdd0-ac189557e5f5} . (.Conduit Ltd. - Conduit Toolbar.) (5, 7, 1, 1) -- C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll

R3 - URLSearchHook: UrlSearchHook Class - {0fc85f5d-6207-4515-a490-45a549d285c0} . (.Conduit Ltd. - Conduit Toolbar.) (5, 7, 2, 2) -- C:\Program Files (x86)\Radio_Bar_1\tbRadi.dll

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Radio_Bar_1\tbRadi.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Interest recogniser for Widestream6 (powered by Spointer) - {2BEFBCCE-46A6-4950-BCB5-7062EAC6C9C9} . (.Widestream6 - Interest Recognizer for Widestream6.) -- C:\Program Files (x86)\Widestream6\spointer\extensions\widestream6_air_ie.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O2 - BHO: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} . (.Secure Digital Services Limited - OfferBox.) -- C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\DVDVideoSoftTB\tbDVD1.dll

O3 - Toolbar: LimeWire Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask.com - Ask.com Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Radio_Bar_1\tbRadi.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

---\\ Applications démarrées par registre & par dossier(O4)

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Run: [ClickPotatoLiteSA] . (.Pinball Corporation. - ClickPotato Search Assistant.) -- C:\Program Files (x86)\ClickPotatoLite\bin\10.0.519.0\ClickPotatoLiteSA.exe

O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (.not file.)

O4 - HKCU\..\Run: [smpcSys] . (.Acer Incorporated - SMP Systray.) -- C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\gruyer\AppData\Local\Google\Update\GoogleUpdate.exe

O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [CollaborationHost] C:\Windows\system32\p2phost.exe (.not file.)

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe (.not file.)

O4 - HKCU\..\Run: [EPSON SX100 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEDE.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O4 - HKLM\..\Wow6432Node\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Wow6432Node\Run: [ClickPotatoLiteSA] . (.Pinball Corporation. - ClickPotato Search Assistant.) -- C:\Program Files (x86)\ClickPotatoLite\bin\10.0.519.0\ClickPotatoLiteSA.exe

O4 - HKLM\..\policies\Explorer: [NoActiveDesktop] Data=1

O4 - HKLM\..\policies\Explorer: [NoActiveDesktopChanges] Data=1

O4 - HKLM\..\policies\Explorer: [ForceActiveDesktopOn] Data=0

O4 - HKLM\..\policies\Explorer: [bindDirectlyToPropertySetStorage] Data=0

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (.not file.)

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (.not file.)

O4 - Global Startup: Microsoft Office.lnk . (.Microsoft Corporation - Microsoft Office XP component.) -- C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE

O4 - Global Startup: LimeWire On Startup.lnk . (.Lime Wire, LLC - LimeWire.) -- C:\Program Files (x86)\LimeWire\LimeWire.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\PROGRA~2\MICROS~1\Office10\EXCEL.exe

O8 - Extra context menu item: Free YouTube to Mp3 Converter . (.Pas de propriétaire - Pas de description.) -- C:\Users\gruyer\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm

O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~2\MICROS~1\Office12\REFBARH.ICO

O9 - Extra button: ClickPotato - {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} . (.Pinball Corporation - ClickPotato.) -- C:\Program Files (x86)\ClickPotatoLite\bin\10.0.519.0\ClickPotatoLiteSABHO.dll

O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - (.not file.)

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - AppInit_DLLs: . (.Pas de propriétaire - Pas de description.) - (.not file.)

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\SysWOW64\webcheck.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) . (.Pas de propriétaire - Pas de description.) - C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe

O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.exe

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.exe

O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) . (.Pas de propriétaire - Pas de description.) - HidService.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: PLFlash DeviceIoControl Service (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc. - PLFlash DeviceIoControl Service.) - C:\Windows\SysWOW64\IoctlSvc.exe

O23 - Service: QuestDns Service (QuestDns Service) . (.Pas de propriétaire - Pas de description.) - C:\ProgramData\QuestDns\questdns111.exe

O23 - Service: C:\Windows\system32\samsrv.dll (SamSs) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\lsass.exe

O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: C:\Windows\system32\SLsvc.exe (slsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\SLsvc.exe

O23 - Service: C:\Windows\system32\spoolsv.exe (Spooler) . (.Pas de propriétaire - Pas de description.) - C:\Windows\System32\spoolsv.exe

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-584614773-4096568827-3716079853-1000Core.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-584614773-4096568827-3716079853-1000UA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{39177DFF-9A71-448F-9E59-B2838CF89892}.job

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\regutils.dll

O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE

O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r42.) -- C:\Windows\SysWow64\Macromed\Flash\Flash10d.ocx

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: Ancilliary Function Driver for Winsock (AFD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: Pilote de CD-ROM (cdrom) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\i8042prt.sys

O41 - Driver: Pilote de la classe Clavier (kbdclass) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\kbdclass.sys

O41 - Driver: Pilote de la classe Souris (mouclass) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mouclass.sys

O41 - Driver: NetBIOS Interface (NetBIOS) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: NETBT (netbt) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: NSI proxy service (nsiproxy) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: Remote Access Auto Connection Driver (RasAcd) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\rasacd.sys

O41 - Driver: Redirected Buffering Sub Sysytem (rdbss) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: RDPCDD (RDPCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: RDP Encoder Mirror Driver (RDPENCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: Pilote de périphérique terminal (TermDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: Remote Access IPv6 ARP Driver (Wanarpv6) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\wanarp.sys

O41 - Driver: Symantec Heuristics Driver (BHDrvx64) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\NISx64\1008000.029\BHDrvx64.sys

O41 - Driver: Symantec Hash Provider (ccHP) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\NISx64\1008000.029\ccHPx64.sys

O41 - Driver: Symantec Eraser Control driver (eeCtrl) . (.Pas de propriétaire - Pas de description.) - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys

O41 - Driver: IDSVia64 (IDSVia64) . (.Pas de propriétaire - Pas de description.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20100310.001\IDSvia64.sys

O41 - Driver: Symantec Real Time Storage Protection (PEL) x64 (SRTSPX) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\NISx64\1008000.029\SRTSPX64.sys

O41 - Driver: Symantec Network Security Intermediate Filter Driver (SymIM) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\SymIMv.sys

O41 - Driver: Symantec Network Dispatch Driver (SYMTDI) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\NISx64\1008000.029\SYMTDI.sys

---\\ Logiciels installés (O42)

O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM]

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Adobe Photoshop Elements 6.0 - (.Adobe Systems, Inc..) [HKLM]

O42 - Logiciel: Adobe Reader 9.3.2 - Français - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Applet Prox - (.CNRS CLLE-ERSS IRIT Interface Prox - prox-synonyme-fr Bruno Gaume - Yannick Chudy.) [HKCU]

O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM]

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: ClickPotato - (.Pinball Corporation..) [HKLM]

O42 - Logiciel: DVDVideoSoftTB Toolbar - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: DivX Plus Web Player - (.DivX,Inc..) [HKLM]

O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: EPSON Stylus SX100_TX100 Manuel - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM]

O42 - Logiciel: Fissa - (.Secure Digital Services.) [HKLM]

O42 - Logiciel: FoxTarot version 4.2.1 - (.Fabrice Renard.) [HKLM]

O42 - Logiciel: Free Audio CD Burner version 1.3 - (.DVDVideoSoft Limited..) [HKLM]

O42 - Logiciel: Free YouTube to MP3 Converter version 3.5 - (.DVDVideoSoft Limited..) [HKLM]

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU]

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM]

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM]

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: IKEA Home Planner - (.IKEA IT.) [HKLM]

O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM]

O42 - Logiciel: InfoCentre - (.Packard Bell.) [HKLM]

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Java 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM]

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Les Sims 2 - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: LimeWire 5.5.9 - (.Lime Wire, LLC.) [HKLM]

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM]

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: MetaBoli - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM]

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Mozilla Firefox (3.6.7) - (.Mozilla.) [HKLM]

O42 - Logiciel: Nero 8 Essentials - (.Nero AG.) [HKLM]

O42 - Logiciel: OfferBox - (.Secure Digital Services.) [HKLM]

O42 - Logiciel: OfficePrinter 2.0 - (.Moss Bay Software.) [HKLM]

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Packard Bell Customer Registration - (.Packard Bell.) [HKLM]

O42 - Logiciel: Packard Bell Recovery Management - (.Acer Incorporated.) [HKLM]

O42 - Logiciel: PackardBell ScreenSaver - (.PackardBell.) [HKLM]

O42 - Logiciel: QuestDns 1.0 build 111 - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Radio Bar 1 Toolbar - (.Radio Bar 1.) [HKLM]

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB982135) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM]

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM]

O42 - Logiciel: SetUpMyPC - (.Packard Bell.) [HKLM]

O42 - Logiciel: Spelling Dictionaries Support For Adobe Reader 9 - (.Adobe Systems Incorporated.) [HKLM]

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM]

O42 - Logiciel: Sweet Home 3D - (.eTeks.) [HKCU]

O42 - Logiciel: Uninstall 1.0.0.1 - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM]

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM]

O42 - Logiciel: Update for Microsoft Office Word 2007 (KB974631) - (.Microsoft.) [HKLM]

O42 - Logiciel: Updator - (.Packard Bell.) [HKLM]

O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM]

O42 - Logiciel: VLC media player 1.0.1 - (.VideoLAN Team.) [HKLM]

O42 - Logiciel: Widestream6 - (.Secure Digital Services.) [HKLM]

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM]

O42 - Logiciel: Wow Cartographe 1.10 - (.Pas de propriétaire.) [HKLM]

O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM]

O42 - Logiciel: neroxml - (.Nero AG.) [HKLM]

---\\ HKCU & HKLM Software Keys

[HKCU\Software\ABBYY]

[HKCU\Software\ALWIL Software]

[HKCU\Software\Acer]

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow\AskToolbarInfo]

[HKCU\Software\AppDataLow\Software\AskToolbar]

[HKCU\Software\AppDataLow\Software\Conduit]

[HKCU\Software\AppDataLow\Software\DVDVideoSoftTB]

[HKCU\Software\AppDataLow\Software\Google]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software\Monitored]

[HKCU\Software\AppDataLow\Software\PriceGong]

[HKCU\Software\AppDataLow\Software\Radio_Bar_1]

[HKCU\Software\AppDataLow\Software\settings]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow\Toolbar]

[HKCU\Software\AppDataLow]

[HKCU\Software\Ask.com]

[HKCU\Software\AskToolbar]

[HKCU\Software\Blizzard Entertainment]

[HKCU\Software\Classes.crx]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\DVDVideoSoft]

[HKCU\Software\DivXNetworks]

[HKCU\Software\EPSON]

[HKCU\Software\FissaSearch]

[HKCU\Software\Google]

[HKCU\Software\IM Providers]

[HKCU\Software\JavaSoft]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\Magnet]

[HKCU\Software\Moss Bay Software]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Nero]

[HKCU\Software\Netscape]

[HKCU\Software\Norton]

[HKCU\Software\ODBC]

[HKCU\Software\OfferBox]

[HKCU\Software\Opendisc]

[HKCU\Software\Packard Bell]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\SEIKO EPSON]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\Spointer]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\WideStream]

[HKCU\Software\Wow6432Node]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\clickpotatolitesa]

[HKLM\Software\ABBYY]

[HKLM\Software\ALWIL Software]

[HKLM\Software\Acer Incorporated]

[HKLM\Software\Adobe]

[HKLM\Software\Ahead]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Audible]

[HKLM\Software\Classes]

[HKLM\Software\ClickPotatoLite]

[HKLM\Software\Clients]

[HKLM\Software\Conduit]

[HKLM\Software\DVDVideoSoftTB]

[HKLM\Software\DVDVideoSoft]

[HKLM\Software\Digital River]

[HKLM\Software\DivXNetworks]

[HKLM\Software\DownloadHelper]

[HKLM\Software\EA GAMES]

[HKLM\Software\EPSON]

[HKLM\Software\Electronic Arts]

[HKLM\Software\Galileo]

[HKLM\Software\Google]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Macromedia]

[HKLM\Software\Macrovision]

[HKLM\Software\MetaBoli]

[HKLM\Software\Moss Bay Software]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\NeroDigital]

[HKLM\Software\Nero]

[HKLM\Software\Norton]

[HKLM\Software\ODBC]

[HKLM\Software\OEM]

[HKLM\Software\OfferBox]

[HKLM\Software\Packard Bell]

[HKLM\Software\Policies]

[HKLM\Software\Radio_Bar_1]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\Sonic]

[HKLM\Software\Symantec]

[HKLM\Software\TrendMicro]

[HKLM\Software\VideoLAN]

[HKLM\Software\Windows]

[HKLM\Software\mozilla.org]

[HKLM\Software\widestream]

---\\ Contenu des dossiers Program Files (O43)

O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files

O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers communs

O43 - CFD:Common File Directory ----D- C:\Program Files\Google

O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games

O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker

O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files\PACKARD BELL

O43 - CFD:Common File Directory ----D- C:\Program Files\PlayReady

O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies

O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Calendar

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Collaboration

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Gallery

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Ask.com

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ClickPotatoLite

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Conduit

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\DivX

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\DVDVideoSoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\DVDVideoSoftTB

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EA GAMES

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\epson

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Epson Software

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\FoxTarot4

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\IKEA HomePlanner

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\LimeWire

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Works

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Moss Bay Software

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mozilla Firefox

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Nero

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\OfferBox

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Packard Bell

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\PlayReady

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\QuestDns

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\QuickTime

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Radio_Bar_1

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Realtek

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Spybot - Search & Destroy

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Temp

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Trend Micro

O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VideoLAN

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Widestream6

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Calendar

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Collaboration

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live SkyDrive

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Gallery

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WowCartographe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DESIGNER

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DivX Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\DVDVideoSoft

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Macrovision Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Nero

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Symantec Shared

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live

O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Wise Installation Wizard

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.00000000000000000000000000000000] - 22/07/2010 - 15:12:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1910319]

O44 - LFC:[MD5.D49557335728ABED07CD5DEF370B4428] - 22/07/2010 - 15:08:29 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.14C696890DBB5C526B4C6A4CB6BC849C] - 15/07/2010 - 10:18:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [240288]

O44 - LFC:[MD5.8965BB8B1E0B01999EFF61332F222803] - 15/07/2010 - 07:01:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\win.ini [240]

O44 - LFC:[MD5.841FAC1D3D3F31077862B2C07DE4C9BE] - 09/07/2010 - 21:57:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1470810]

O44 - LFC:[MD5.120C8D6B0A5BCD1B3B5E1A91BDAFC0B0] - 09/07/2010 - 21:57:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [101052]

O44 - LFC:[MD5.8FF5268D4C5E63CEDA60AD1E14728A0C] - 09/07/2010 - 21:57:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [123350]

O44 - LFC:[MD5.F1299723685CDE4C9460EBDB2B5C201E] - 09/07/2010 - 21:57:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [586980]

O44 - LFC:[MD5.1E194D5569167B847122D0B2B87F139E] - 09/07/2010 - 21:57:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [669328]

O44 - LFC:[MD5.048948BD5B560F0DB1788D31DAA5CAA5] - 28/06/2010 - 21:57:33 ---A- . (.ALWIL Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [38848]

O44 - LFC:[MD5.EAC40DEF9A0D2332030C859741EDA0A7] - 24/06/2010 - 10:01:39 ---A- . (.Microsoft - Legacy GDF resource DLL.) -- C:\Windows\System32\GameUXLegacyGDFs.dll [4240384]

O44 - LFC:[MD5.EAC40DEF9A0D2332030C859741EDA0A7] - 24/06/2010 - 10:01:38 ---A- . (.Microsoft - Legacy GDF resource DLL.) -- C:\Windows\SysNative\GameUXLegacyGDFs.dll [4240384]

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:Last File Created Prefetch 04/07/2010 - 21:04:19 ---A- C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf

O45 - LFCP:Last File Created Prefetch 06/07/2010 - 06:59:58 ---A- C:\Windows\Prefetch\MPMINISIGSTUB.EXE-D14AE448.pf

O45 - LFCP:Last File Created Prefetch 06/07/2010 - 12:31:04 ---A- C:\Windows\Prefetch\DLLHOST.EXE-8293B1FD.pf

O45 - LFCP:Last File Created Prefetch 06/07/2010 - 12:51:23 ---A- C:\Windows\Prefetch\DLLHOST.EXE-F8961C5C.pf

O45 - LFCP:Last File Created Prefetch 07/07/2010 - 12:38:09 ---A- C:\Windows\Prefetch\ESCNDV.EXE-957A695B.pf

O45 - LFCP:Last File Created Prefetch 07/07/2010 - 12:38:11 ---A- C:\Windows\Prefetch\WIAWOW64.EXE-D86558F8.pf

O45 - LFCP:Last File Created Prefetch 07/07/2010 - 12:47:28 ---A- C:\Windows\Prefetch\DLLHOST.EXE-4F28A26F.pf

O45 - LFCP:Last File Created Prefetch 07/07/2010 - 20:55:33 ---A- C:\Windows\Prefetch\MSNMSGR.EXE-D22CE80C.pf

O45 - LFCP:Last File Created Prefetch 07/07/2010 - 20:55:39 ---A- C:\Windows\Prefetch\WLCOMM.EXE-324C9362.pf

O45 - LFCP:Last File Created Prefetch 07/07/2010 - 20:59:18 ---A- C:\Windows\Prefetch\IPCONFIG.EXE-E1E46F7F.pf

O45 - LFCP:Last File Created Prefetch 08/07/2010 - 14:00:51 ---A- C:\Windows\Prefetch\SF.BIN-8D613624.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 07:03:28 ---A- C:\Windows\Prefetch\MPMINISIGSTUB.EXE-E5226EC0.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 14:50:49 ---A- C:\Windows\Prefetch\FOXTAROT.EXE-A340351B.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 15:00:04 ---A- C:\Windows\Prefetch\SF.BIN-7F6806C1.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 22:04:35 ---A- C:\Windows\Prefetch\MFPMP.EXE-26F35380.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 22:13:50 ---A- C:\Windows\Prefetch\FFCE.EXE-EBBE36DB.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 22:13:56 ---A- C:\Windows\Prefetch\FREEYOUTUBETOMP3CONVERTER.EXE-B9007EC6.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 22:17:38 ---A- C:\Windows\Prefetch\FFMPEG.EXE-A28943A7.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 22:17:48 ---A- C:\Windows\Prefetch\LAME.EXE-D0F34451.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 22:19:31 ---A- C:\Windows\Prefetch\TBOFFER.EXE-20DCCB30.pf

O45 - LFCP:Last File Created Prefetch 09/07/2010 - 22:19:46 ---A- C:\Windows\Prefetch\FREESTUDIOMANAGER.EXE-B1B83F67.pf

O45 - LFCP:Last File Created Prefetch 11/07/2010 - 16:05:37 ---A- C:\Windows\Prefetch\SVCHOST.EXE-CFF8C7D9.pf

O45 - LFCP:Last File Created Prefetch 12/07/2010 - 08:18:11 ---A- C:\Windows\Prefetch\CLEANMGR.EXE-347B1AC1.pf

O45 - LFCP:Last File Created Prefetch 12/07/2010 - 08:33:56 ---A- C:\Windows\Prefetch\DFRGUI.EXE-C853DD35.pf

O45 - LFCP:Last File Created Prefetch 12/07/2010 - 08:35:12 ---A- C:\Windows\Prefetch\MSINFO32.EXE-95097B65.pf

O45 - LFCP:Last File Created Prefetch 12/07/2010 - 08:37:50 ---A- C:\Windows\Prefetch\DLLHOST.EXE-79E9E64A.pf

O45 - LFCP:Last File Created Prefetch 12/07/2010 - 08:38:44 ---A- C:\Windows\Prefetch\DLLHOST.EXE-824949B9.pf

O45 - LFCP:Last File Created Prefetch 13/07/2010 - 07:44:09 ---A- C:\Windows\Prefetch\GOOGLETOOLBARMANAGER_6447DDAF-56CBAD0F.pf

O45 - LFCP:Last File Created Prefetch 13/07/2010 - 07:48:43 ---A- C:\Windows\Prefetch\MPMINISIGSTUB.EXE-78B4CFA7.pf

O45 - LFCP:Last File Created Prefetch 13/07/2010 - 14:07:05 ---A- C:\Windows\Prefetch\JP2LAUNCHER.EXE-AADBFF36.pf

O45 - LFCP:Last File Created Prefetch 13/07/2010 - 15:12:29 ---A- C:\Windows\Prefetch\SF.BIN-19B0BAA8.pf

O45 - LFCP:Last File Created Prefetch 14/07/2010 - 01:35:38 ---A- C:\Windows\Prefetch\GOOGLETOOLBARINSTALLER_UPDATE-EC7DE2DF.pf

O45 - LFCP:Last File Created Prefetch 14/07/2010 - 01:37:14 ---A- C:\Windows\Prefetch\GOOGLEUPDATERSERVICE_5898FABC-3A3845B5.pf

O45 - LFCP:Last File Created Prefetch 14/07/2010 - 01:37:14 ---A- C:\Windows\Prefetch\SEARCHWITHGOOGLEUPDATE_6805C1-37D9486B.pf

O45 - LFCP:Last File Created Prefetch 14/07/2010 - 09:08:30 ---A- C:\Windows\Prefetch\ACROBROKER.EXE-A7F5654B.pf

O45 - LFCP:Last File Created Prefetch 14/07/2010 - 09:50:55 ---A- C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf

O45 - LFCP:Last File Created Prefetch 14/07/2010 - 09:50:56 ---A- C:\Windows\Prefetch\DFRGNTFS.EXE-7E4077FE.pf

O45 - LFCP:Last File Created Prefetch 14/07/2010 - 20:19:04 ---A- C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf

O45 - LFCP:Last File Created Prefetch 15/07/2010 - 07:01:55 ---A- C:\Windows\Prefetch\FIXMAPI.EXE-0C83F412.pf

O45 - LFCP:Last File Created Prefetch 15/07/2010 - 07:01:57 ---A- C:\Windows\Prefetch\MSOHTMED.EXE-329B3A85.pf

O45 - LFCP:Last File Created Prefetch 15/07/2010 - 07:02:23 ---A- C:\Windows\Prefetch\MRTSTUB.EXE-ABEE0278.pf

O45 - LFCP:Last File Created Prefetch 15/07/2010 - 07:02:30 ---A- C:\Windows\Prefetch\WINDOWS-KB890830-X64-V3.9-DEL-8620791C.pf

O45 - LFCP:Last File Created Prefetch 15/07/2010 - 07:02:34 ---A- C:\Windows\Prefetch\MRT.EXE-851529F7.pf

O45 - LFCP:Last File Created Prefetch 15/07/2010 - 14:12:18 ---A- C:\Windows\Prefetch\SF.BIN-E25C5DB2.pf

O45 - LFCP:Last File Created Prefetch 15/07/2010 - 14:32:34 ---A- C:\Windows\Prefetch\Layout.ini

O45 - LFCP:Last File Created Prefetch 15/07/2010 - 14:42:08 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf

O45 - LFCP:Last File Created Prefetch 16/07/2010 - 09:14:16 ---A- C:\Windows\Prefetch\MPAS-D_BD1.EXE-97E29C40.pf

O45 - LFCP:Last File Created Prefetch 16/07/2010 - 09:14:16 ---A- C:\Windows\Prefetch\MPMINISIGSTUB.EXE-C2A4042D.pf

O45 - LFCP:Last File Created Prefetch 16/07/2010 - 09:14:16 ---A- C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf

O45 - LFCP:Last File Created Prefetch 19/07/2010 - 16:09:11 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-5CBB3772.pf

O45 - LFCP:Last File Created Prefetch 19/07/2010 - 16:09:11 ---A- C:\Windows\Prefetch\SDCLT.EXE-E10B972A.pf

O45 - LFCP:Last File Created Prefetch 19/07/2010 - 16:29:16 ---A- C:\Windows\Prefetch\JAUCHECK.EXE-EF400866.pf

O45 - LFCP:Last File Created Prefetch 19/07/2010 - 16:29:18 ---A- C:\Windows\Prefetch\JAVAW.EXE-95D02C48.pf

O45 - LFCP:Last File Created Prefetch 19/07/2010 - 16:29:18 ---A- C:\Windows\Prefetch\JAVAWS.EXE-446541A7.pf

O45 - LFCP:Last File Created Prefetch 19/07/2010 - 16:54:38 ---A- C:\Windows\Prefetch\DVDVIDEOSOFTTBTOOLBARHELPER.E-8C519A46.pf

O45 - LFCP:Last File Created Prefetch 19/07/2010 - 16:54:38 ---A- C:\Windows\Prefetch\RADIO_BAR_1TOOLBARHELPER.EXE-80230B76.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 07:55:08 ---A- C:\Windows\Prefetch\WINWORD.EXE-3689F9AB.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 07:55:10 ---A- C:\Windows\Prefetch\SPLWOW64.EXE-297C4568.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 07:55:26 ---A- C:\Windows\Prefetch\SETUP.EXE-9648BA55.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 07:55:46 ---A- C:\Windows\Prefetch\WINWORD.EXE-8811A321.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 07:55:59 ---A- C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 07:57:09 ---A- C:\Windows\Prefetch\WORDCONV.EXE-5769461C.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 07:57:22 ---A- C:\Windows\Prefetch\E_IAMTEDE.EXE-977AFD66.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 07:59:59 ---A- C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 08:00:01 ---A- C:\Windows\Prefetch\E_IARNEDE.EXE-C4AC7B51.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 09:59:05 ---A- C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 09:59:06 ---A- C:\Windows\Prefetch\MPAS-FE_BD.EXE-BB62FD5E.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 09:59:06 ---A- C:\Windows\Prefetch\MPSIGSTUB.EXE-EEDF416D.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 10:24:19 ---A- C:\Windows\Prefetch\JAVA.EXE-873AF69D.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 10:54:55 ---A- C:\Windows\Prefetch\SF.BIN-9C7E70C3.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 16:51:52 ---A- C:\Windows\Prefetch\EHPRIVJOB.EXE-CE89B169.pf

O45 - LFCP:Last File Created Prefetch 20/07/2010 - 17:02:00 ---A- C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-451B7699.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 10:14:33 ---A- C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-42E1CDC2.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:00:24 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-BF1A352E.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:00:33 ---A- C:\Windows\Prefetch\AgCx_SC1.db.trx

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:01:33 ---A- C:\Windows\Prefetch\AgCx_SC1.db

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:03:03 ---A- C:\Windows\Prefetch\VLCSETUP.EXE-EACCABD0.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:03:28 ---A- C:\Windows\Prefetch\SAIEF73.EXE-BE345A69.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:03:46 ---A- C:\Windows\Prefetch\SAI60FB.EXE-285047D6.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:03:58 ---A- C:\Windows\Prefetch\SAIA250.EXE-4AC3CE88.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:04:00 ---A- C:\Windows\Prefetch\QUESTDNS.EXE-9953A52D.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:04:00 ---A- C:\Windows\Prefetch\SETUP.EXE-D54AB14C.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:04:02 ---A- C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:04:02 ---A- C:\Windows\Prefetch\PING.EXE-371F41E2.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:04:10 ---A- C:\Windows\Prefetch\QUESTDNS110.EXE-046F2B11.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:06:42 ---A- C:\Windows\Prefetch\UNINSTALL.EXE-EABE5486.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:06:45 ---A- C:\Windows\Prefetch\QUESTDNS.EXE-8C9C112E.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 12:06:55 ---A- C:\Windows\Prefetch\QUESTDNS.EXE-6F222B57.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 13:54:28 ---A- C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 13:55:33 ---A- C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 13:56:03 ---A- C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 13:56:04 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-FD126C57.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 13:56:14 ---A- C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 20:05:35 ---A- C:\Windows\Prefetch\SAUPDATE.EXE-D9FFE270.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 21:39:10 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-3C461FA9.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 21:39:10 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-4A494FB9.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 21:41:49 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 22:02:00 ---A- C:\Windows\Prefetch\GOOGLEUPDATE.EXE-A2E44605.pf

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 22:43:39 ---A- C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-584614773-4096568827-3716079853-1000.db

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 22:43:39 ---A- C:\Windows\Prefetch\AgGlUAD_S-1-5-21-584614773-4096568827-3716079853-1000.db

O45 - LFCP:Last File Created Prefetch 21/07/2010 - 22:45:55 ---A- C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:04:15 ---A- C:\Windows\Prefetch\IELOWUTIL.EXE-903B8AC1.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:05:56 ---A- C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:11:42 ---A- C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:22:40 ---A- C:\Windows\Prefetch\CONIME.EXE-6182B1C3.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:24:24 ---A- C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:49:10 ---A- C:\Windows\Prefetch\MSFEEDSSYNC.EXE-6E6FBDF4.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:58:43 ---A- C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:58:43 ---A- C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:58:54 ---A- C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:58:54 ---A- C:\Windows\Prefetch\PfSvPerfStats.bin

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:58:59 ---A- C:\Windows\Prefetch\AgRobust.db

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:59:02 ---A- C:\Windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:59:02 ---A- C:\Windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 10:59:02 ---A- C:\Windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:09:40 ---A- C:\Windows\Prefetch\AVAST.SETUP-3DA1C849.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:09:40 ---A- C:\Windows\Prefetch\EHREC.EXE-BFABB40F.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:09:40 ---A- C:\Windows\Prefetch\EHRECVR.EXE-96B31E37.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:09:40 ---A- C:\Windows\Prefetch\MCGLIDHOST.EXE-E3F0E99A.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:09:40 ---A- C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:09:40 ---A- C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:10:52 ---A- C:\Windows\Prefetch\WINMAIL.EXE-1092D371.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:11:44 ---A- C:\Windows\Prefetch\GOOGLETOOLBARMANAGER_223E2B8E-1B310A10.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:11:50 ---A- C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:11:53 ---A- C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-F11F9E20.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:12:07 ---A- C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:12:56 ---A- C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:15:46 ---A- C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:18:09 ---A- C:\Windows\Prefetch\GOOGLETOOLBARUSER_32.EXE-34B1B1C5.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:18:09 ---A- C:\Windows\Prefetch\IEXPLORE.EXE-4B6C9213.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:18:15 ---A- C:\Windows\Prefetch\FLASHUTIL10D.EXE-510FB587.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:18:55 ---A- C:\Windows\Prefetch\SVCHOST.EXE-E2C2633A.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:18:55 ---A- C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:20:09 ---A- C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:21:44 ---A- C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:21:45 ---A- C:\Windows\Prefetch\WERCON.EXE-E36BD04E.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:22:31 ---A- C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:22:39 ---A- C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf

O45 - LFCP:Last File Created Prefetch 22/07/2010 - 15:22:44 ---A- C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf

---\\ MountPoints2 Shell Key (MPSK) (O51)

O51 - MPSK:{ca11f481-ea10-11de-93c4-0025113c1665}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat (.not file.)

O51 - MPSK:{f13b2950-f89f-11de-97c0-0025113c1665}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- sm.exe (.not file.)

---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.VP60"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll

O52 - TDSD: \Drivers32\"vidc.VP61"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll

O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

O52 - TDSD: \drivers.desc\"vp6vfw.dll"="EA VP6 Codec" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll

---\\ Microsoft Control Security Providers (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll

---\\ Microsoft Windows Policies System (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0

O56 - MWPE:[HKLM\...\Policies\Explorer] - "BindDirectlyToPropertySetStorage"=0

---\\ Liste des Drivers Système (SDL) (O58)

O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys

O58 - SDL:[MD5.7D05A75E3066861A6610F7EE04FF085C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys

O58 - SDL:[MD5.820A201FE08A0C345B3BEDBC30E1A77C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\system32\drivers\adpu160m.sys

O58 - SDL:[MD5.9B4AB6854559DC168FBB4C24FC52E794] - 21/01/2008 - 03:47:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys

O58 - SDL:[MD5.157D0898D4B73F075CE9FA26B482DF98] - 21/01/2008 - 03:46:50 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys

O58 - SDL:[MD5.BA8417D4765F3988FF921F30F630E303] - 21/01/2008 - 03:46:52 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys

O58 - SDL:[MD5.9D41C435619733B34CC16A511E644B11] - 21/01/2008 - 03:47:00 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys

O58 - SDL:[MD5.E8184039D57365BEE3EAA750375C44AD] - 28/06/2010 - 21:32:36 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys

O58 - SDL:[MD5.C671E9548D3D1B4CD15D0B164D9D01C7] - 28/06/2010 - 21:33:00 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys

O58 - SDL:[MD5.DEE012D532C3F62CA099961505F41CF6] - 28/06/2010 - 21:33:17 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys

O58 - SDL:[MD5.56BBD39753B9F7461C4DE03C3217249D] - 28/06/2010 - 21:37:36 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys

O58 - SDL:[MD5.193691B35598642A328D880483DC0ED9] - 28/06/2010 - 21:37:56 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys

O58 - SDL:[MD5.F0F0BA4D815BE446AA6A4583CA3BCA9B] - 02/11/2006 - 09:43:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 19/09/2006 - 12:42:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys

O58 - SDL:[MD5.192AA0324412C6ED8BD7B345706D8A66] - 28/04/2009 - 04:08:07 ---A- . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdr4_xp.sys

O58 - SDL:[MD5.9BDA54D19073AB1C2DBAFB13D989FE97] - 28/04/2009 - 04:08:07 ---A- . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHelp).) -- C:\Windows\system32\drivers\cdralw2k.sys

O58 - SDL:[MD5.E5D5499A1C50A54B5161296B6AFE6192] - 21/01/2008 - 03:46:50 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys

O58 - SDL:[MD5.222CB641B4B8A1D1126F8033F9FD6A00] - 02/11/2006 - 12:50:06 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys

O58 - SDL:[MD5.264CEE7B031A9D6C827F3D0CB031F2FE] - 21/01/2008 - 03:46:56 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G6032E.sys

O58 - SDL:[MD5.C4636D6E10469404AB5308D9FD45ED07] - 21/01/2008 - 03:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys

O58 - SDL:[MD5.D7109A1E6BD2DFDBCBA72A6BC626A13B] - 21/01/2008 - 03:46:59 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys

O58 - SDL:[MD5.3E3BF3627D886736D0B4E90054F929F6] - 21/01/2008 - 03:46:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys

O58 - SDL:[MD5.8C3951AD2FE886EF76C7B5027C3125D3] - 02/11/2006 - 13:02:39 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys

O58 - SDL:[MD5.63C766CDC609FF8206CB447A65ABBA4A] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys

O58 - SDL:[MD5.1281FE73B17664631D12F643CBEA3F59] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys

O58 - SDL:[MD5.ACBE1AF32D3123E330A07BFBC5EC4A9B] - 21/01/2008 - 03:46:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys

O58 - SDL:[MD5.799FFB2FC4729FA46D2157C0065B3525] - 21/01/2008 - 03:46:56 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys

O58 - SDL:[MD5.F445FF1DAAD8A226366BFAF42551226B] - 21/01/2008 - 03:47:01 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys

O58 - SDL:[MD5.5C5CD6AACED32FB26C3FB34B3DCF972F] - 21/01/2008 - 03:46:59 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys

O58 - SDL:[MD5.859BC2436B076C77C159ED694ACFE8F8] - 21/01/2008 - 03:46:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys

O58 - SDL:[MD5.3C200630A89EF2C0864D515B7A75802E] - 02/11/2006 - 13:02:24 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys

O58 - SDL:[MD5.4AC08BD6AF2DF42E0C3196D826C8AEA7] - 02/11/2006 - 13:03:03 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys

O58 - SDL:[MD5.6E022D5F44CD8B029CF799807BB31269] - 26/03/2009 - 06:23:00 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys

O58 - SDL:[MD5.57903FA36945A692172F384EB96C8F0A] - 26/03/2009 - 06:23:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 175.) -- C:\Windows\system32\drivers\nvlddmkm.sys

O58 - SDL:[MD5.98350606682594521D56ECCB5D01ECF7] - 26/03/2009 - 06:23:00 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvmfdx64.sys

O58 - SDL:[MD5.2C040B7ADA5B06F6FACADAC8514AA034] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys

O58 - SDL:[MD5.F7EA0FE82842D05EDA3EFDD376DBFDBA] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys

O58 - SDL:[MD5.581286807B5832503FD700A3217B589F] - 26/03/2009 - 06:24:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor64.sys

O58 - SDL:[MD5.A6BF0A9B5A30D743623CA0D3BE35DF05] - 28/04/2009 - 04:08:06 ---A- . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\system32\drivers\PxHlpa64.sys

O58 - SDL:[MD5.0B83F4E681062F3839BE2EC1D98FD94A] - 21/01/2008 - 03:46:52 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys

O58 - SDL:[MD5.E1C80F8D4D1E39EF9595809C1369BF2A] - 02/11/2006 - 12:50:27 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys

O58 - SDL:[MD5.627C6B352718E59DF08F02C536E2E0ED] - 30/03/2009 - 10:15:50 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 30/09/2006 - 00:51:44 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys

O58 - SDL:[MD5.3A2F769FAB9582BC720E11EA1DFB184D] - 21/01/2008 - 03:47:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys

O58 - SDL:[MD5.2F26A2C6FC96B29BEFF5D8ED74E6625B] - 02/11/2006 - 13:02:52 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys

O58 - SDL:[MD5.A909667976D3BCCD1DF813FED517D837] - 02/11/2006 - 13:02:37 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys

O58 - SDL:[MD5.36887B56EC2D98B9C362F6AE4DE5B7B0] - 02/11/2006 - 13:02:47 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys

O58 - SDL:[MD5.697F0446134CDC8F99E69306184FBBB4] - 21/01/2008 - 03:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys

O58 - SDL:[MD5.31707F09846056651EA2C37858F5DDB0] - 02/11/2006 - 12:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys

O58 - SDL:[MD5.85E5E43ED5B48C8376281BAB519271B7] - 21/01/2008 - 03:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\system32\drivers\ulsata2.sys

O58 - SDL:[MD5.8294B6C3FDB6C33F24E150DE647ECDAA] - 21/01/2008 - 03:46:50 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys

O58 - SDL:[MD5.A68F455ED2673835209318DD61BFBB0E] - 21/01/2008 - 03:47:25 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 19/07/2010 - 16:01:15 ---A- C:\Users\gruyer\AppData\Roaming\Adobe\Flash Player\AssetCache\ASR2ZD7P\1846548181EAE8A4BB86AFC74FD021D9A0F6DFA6.heu [149]

O61 - LFC:Last File Created 19/07/2010 - 16:01:15 ---A- C:\Users\gruyer\AppData\Roaming\Adobe\Flash Player\AssetCache\ASR2ZD7P\26F1F5A0DEB2FBFC5345C20FF79DFFAFEE4EC7A6.heu [149]

O61 - LFC:Last File Created 20/07/2010 - 07:55:13 ---A- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Recent\axa.LNK [670]

O61 - LFC:Last File Created 20/07/2010 - 07:55:13 ---A- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Recent\courrier.LNK [561]

O61 - LFC:Last File Created 20/07/2010 - 07:55:13 --HA- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Recent\index.dat [1211]

O61 - LFC:Last File Created 20/07/2010 - 07:55:26 ---A- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Word12.pip [1696]

O61 - LFC:Last File Created 20/07/2010 - 07:55:48 ---A- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Fichiers récents\axa.lnk [670]

O61 - LFC:Last File Created 20/07/2010 - 07:57:15 ---A- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Fichiers récents\axa2.lnk [677]

O61 - LFC:Last File Created 20/07/2010 - 07:57:15 ---A- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Fichiers récents\courrier.lnk [561]

O61 - LFC:Last File Created 20/07/2010 - 07:57:15 --H-- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Fichiers récents\index.dat [1517]

O61 - LFC:Last File Created 20/07/2010 - 07:57:17 ---A- C:\Users\All Users\EPSON\EPSON SX100 Series\040c.E_FCF0EDE.WAT [13482]

O61 - LFC:Last File Created 20/07/2010 - 07:57:18 --HA- C:\Users\All Users\EPSON\PRINTER\EPAUDF01.AUD [12487]

O61 - LFC:Last File Created 20/07/2010 - 07:57:27 ---A- C:\Users\gruyer\AppData\Roaming\Microsoft\Office\Word10.pip [1908]

O61 - LFC:Last File Created 20/07/2010 - 15:20:42 ---A- C:\Users\All Users\QuestDns\questdns111.exe [57600]

O61 - LFC:Last File Created 20/07/2010 - 17:23:37 ---A- C:\Users\gruyer\AppData\Roaming\Adobe\Flash Player\AssetCache\ASR2ZD7P\1C04C61346A1FA3139A37D860ED92632AA13DECF.heu [149]

O61 - LFC:Last File Created 21/07/2010 - 12:02:32 ---A- C:\Users\gruyer\Downloads\VLCSetup.exe [192328]

O61 - LFC:Last File Created 21/07/2010 - 13:25:32 ---A- C:\Users\gruyer\Downloads\ConvertHelperSetup.exe [3782822]

O61 - LFC:Last File Created 21/07/2010 - 13:53:16 ---A- C:\Users\gruyer\Downloads\Widestream6-setup.exe [1046872]

O61 - LFC:Last File Created 21/07/2010 - 13:55:26 ---A- C:\Users\gruyer\AppData\Roaming\OfferBox\config.dat [210401]

O61 - LFC:Last File Created 21/07/2010 - 13:56:15 ---A- C:\Users\gruyer\AppData\Local\widestream6 Air\config.sxe [3303]

O61 - LFC:Last File Created 21/07/2010 - 13:56:17 ---A- C:\Users\gruyer\AppData\Local\widestream6 Air\country.sxe [112344]

O61 - LFC:Last File Created 21/07/2010 - 13:57:08 ---A- C:\Users\gruyer\AppData\Local\widestream6 Air\update.sxe [1223]

O61 - LFC:Last File Created 21/07/2010 - 13:57:08 ---A- C:\Users\gruyer\AppData\Local\widestream6 Air\update.xml [425]

O61 - LFC:Last File Created 21/07/2010 - 13:57:12 ---A- C:\Users\gruyer\AppData\Roaming\widestream\upInfo.xml [614]

O61 - LFC:Last File Created 21/07/2010 - 13:57:16 ---A- C:\Users\gruyer\Documents\WideStream\widestream_queue.xml [66]

O61 - LFC:Last File Created 21/07/2010 - 13:57:19 ---A- C:\Users\gruyer\Documents\WideStream\config2.xml [3871]

O61 - LFC:Last File Created 21/07/2010 - 14:00:19 ---A- C:\Users\All Users\EPSON\STM3\E_S40SO.log [4638395]

O61 - LFC:Last File Created 21/07/2010 - 14:34:58 ---A- C:\Users\All Users\Alwil Software\Avast5\log\AshWebSv.ws.ori [286]

O61 - LFC:Last File Created 21/07/2010 - 19:31:17 ---A- C:\Users\All Users\Alwil Software\Avast5\log\AshWebSv.ws [0]

O61 - LFC:Last File Created 21/07/2010 - 19:31:34 ---A- C:\Users\All Users\ClickPotatoLiteSA\ClickPotatoLiteSAau.dat [80942]

O61 - LFC:Last File Created 21/07/2010 - 19:44:12 ---A- C:\Users\All Users\Alwil Software\Avast5\log\aswAr1.log [31392148]

O61 - LFC:Last File Created 21/07/2010 - 21:00:18 ---A- C:\Users\All Users\Alwil Software\Avast5\db1ca7bf4f5554efd-16b1e731.dat [457632]

O61 - LFC:Last File Created 21/07/2010 - 21:00:18 ---A- C:\Users\All Users\Alwil Software\Avast5\db1ca7bf4f5596dad-2a5d4fc6.dat [12192]

O61 - LFC:Last File Created 21/07/2010 - 21:37:46 ---A- C:\Users\gruyer\AppData\Local\Google\Toolbar Cache\6.5.708.1000\fr\translate_languages.json.content [1481]

O61 - LFC:Last File Created 21/07/2010 - 22:00:42 ---A- C:\Users\gruyer\Downloads\HJTInstall.exe [812344]

O61 - LFC:Last File Created 22/07/2010 - 10:09:17 ---A- C:\Users\gruyer\Downloads\Firefox Setup 3.6.7.exe [8641616]

O61 - LFC:Last File Created 22/07/2010 - 10:18:37 ---A- C:\Users\All Users\ClickPotatoLiteSA\ClickPotatoLiteSA_kyf.dat [9364722]

O61 - LFC:Last File Created 22/07/2010 - 10:19:44 ---A- C:\Users\gruyer\Downloads\spybotsd162.exe [16409960]

O61 - LFC:Last File Created 22/07/2010 - 10:39:47 ---A- C:\Users\gruyer\AppData\Roaming\Microsoft\HTML Help\hh.dat [8854]

O61 - LFC:Last File Created 22/07/2010 - 10:58:43 --HA- C:\Users\gruyer\AppData\Local\IconCache.db [2658387]

O61 - LFC:Last File Created 22/07/2010 - 10:58:45 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\cookies.sqlite [2048]

O61 - LFC:Last File Created 22/07/2010 - 10:58:59 ---A- C:\Users\All Users\Alwil Software\Avast5\db1ca0b54dd339b2e-465bcdff.dat [4102944]

O61 - LFC:Last File Created 22/07/2010 - 15:08:43 ---A- C:\Users\All Users\Alwil Software\Avast5\avast5.ini [5258]

O61 - LFC:Last File Created 22/07/2010 - 15:08:43 ---A- C:\Users\All Users\Alwil Software\Avast5\log\Chest.log [27138]

O61 - LFC:Last File Created 22/07/2010 - 15:08:43 ---A- C:\Users\All Users\Alwil Software\Avast5\log\selfdef.log [998458]

O61 - LFC:Last File Created 22/07/2010 - 15:08:44 ---A- C:\Users\All Users\Alwil Software\Avast5\report\BehaviorShield.txt [56271]

O61 - LFC:Last File Created 22/07/2010 - 15:08:44 ---A- C:\Users\gruyer\AppData\Local\Temp\ArmUI.ini [142194]

O61 - LFC:Last File Created 22/07/2010 - 15:08:45 ---A- C:\Users\All Users\Alwil Software\Avast5\report\P2PShield.txt [56271]

O61 - LFC:Last File Created 22/07/2010 - 15:08:48 ---A- C:\Users\All Users\NVIDIA\NvApps.xml [188492]

O61 - LFC:Last File Created 22/07/2010 - 15:08:48 ---A- C:\Users\gruyer\AppData\Local\Packard Bell\Setup my PC\SmpcSystray.log [16412]

O61 - LFC:Last File Created 22/07/2010 - 15:08:49 ---A- C:\Users\All Users\Alwil Software\Avast5\report\EmailShield.txt [56271]

O61 - LFC:Last File Created 22/07/2010 - 15:08:49 ---A- C:\Users\All Users\Alwil Software\Avast5\report\FileSystemShield.txt [56610]

O61 - LFC:Last File Created 22/07/2010 - 15:08:49 ---A- C:\Users\All Users\Alwil Software\Avast5\report\IMShield.txt [56271]

O61 - LFC:Last File Created 22/07/2010 - 15:08:49 ---A- C:\Users\All Users\Alwil Software\Avast5\report\NetworkShield.txt [56271]

O61 - LFC:Last File Created 22/07/2010 - 15:08:49 ---A- C:\Users\All Users\Alwil Software\Avast5\report\WebShield.txt [56678]

O61 - LFC:Last File Created 22/07/2010 - 15:08:51 ---A- C:\Users\All Users\Adobe\Reader\9.3\ARM\Reader9Manifest.msi [28160]

O61 - LFC:Last File Created 22/07/2010 - 15:08:52 ---A- C:\Users\All Users\Adobe\Reader\9.3\ARM\AdobeARM.bin [368779]

O61 - LFC:Last File Created 22/07/2010 - 15:08:52 ---A- C:\Users\gruyer\AppData\Local\Temp\AdobeARM.log [337954]

O61 - LFC:Last File Created 22/07/2010 - 15:08:53 ---A- C:\Users\All Users\ClickPotatoLiteSA\ClickPotatoLiteSA.dat [1729]

O61 - LFC:Last File Created 22/07/2010 - 15:08:55 ---A- C:\Users\All Users\ClickPotatoLiteSA\ClickPotatoLiteSA_hpk.dat [1556]

O61 - LFC:Last File Created 22/07/2010 - 15:08:55 ---A- C:\Users\All Users\EPSON\STM3\E_S40ST.LOG [13930]

O61 - LFC:Last File Created 22/07/2010 - 15:09:06 -SH-- C:\Users\Public\Recorded TV\desktop.ini [78]

O61 - LFC:Last File Created 22/07/2010 - 15:09:40 ---A- C:\Users\All Users\Alwil Software\Avast5\log\Setup.log [20127344]

O61 - LFC:Last File Created 22/07/2010 - 15:09:42 ---A- C:\Users\gruyer\AppData\Local\Temp\jna3337904296334015936.dll [347258]

O61 - LFC:Last File Created 22/07/2010 - 15:09:59 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\extensions.cache [0]

O61 - LFC:Last File Created 22/07/2010 - 15:09:59 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\extensions.ini [30]

O61 - LFC:Last File Created 22/07/2010 - 15:10:17 ---A- C:\Users\gruyer\AppData\Local\Google\Toolbar Cache\6.5.708.1000\fr\annotaions_whitelist.json.content [370]

O61 - LFC:Last File Created 22/07/2010 - 15:10:21 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\promotion\promodb.data [1048576]

O61 - LFC:Last File Created 22/07/2010 - 15:10:22 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\promotion\promodb.backup [34191]

O61 - LFC:Last File Created 22/07/2010 - 15:10:22 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\promotion\promodb.script [1129]

O61 - LFC:Last File Created 22/07/2010 - 15:10:23 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\Cache\_CACHE_001_ [15793]

O61 - LFC:Last File Created 22/07/2010 - 15:10:23 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\Cache\_CACHE_002_ [11926]

O61 - LFC:Last File Created 22/07/2010 - 15:10:23 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\Cache\_CACHE_003_ [37851]

O61 - LFC:Last File Created 22/07/2010 - 15:10:23 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\promotion\promodb.log [42]

O61 - LFC:Last File Created 22/07/2010 - 15:10:23 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\promotion\promodb.properties [438]

O61 - LFC:Last File Created 22/07/2010 - 15:10:25 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\Cache\_CACHE_MAP_ [276]

O61 - LFC:Last File Created 22/07/2010 - 15:10:29 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\Cache\1FEE1D11d01 [79628]

O61 - LFC:Last File Created 22/07/2010 - 15:10:29 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\places.sqlite [151552]

O61 - LFC:Last File Created 22/07/2010 - 15:10:31 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\Cache\7BD6A121d01 [25137]

O61 - LFC:Last File Created 22/07/2010 - 15:10:35 ---A- C:\Users\gruyer\AppData\Local\Temp\gruyer.bmp [31832]

O61 - LFC:Last File Created 22/07/2010 - 15:10:41 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mozilla-profile\Cache\0EB3F1CFd01 [633631]

O61 - LFC:Last File Created 22/07/2010 - 15:10:52 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\simpp.xml [44731]

O61 - LFC:Last File Created 22/07/2010 - 15:13:36 ---A- C:\Users\gruyer\ZHPDiag_1.26.exe [1736729]

O61 - LFC:Last File Created 22/07/2010 - 15:13:43 ---A- C:\Users\gruyer\AppData\Local\Temp\jusched.log [401]

O61 - LFC:Last File Created 22/07/2010 - 15:15:19 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\spam.dat [59115]

O61 - LFC:Last File Created 22/07/2010 - 15:17:41 ---A- C:\Users\All Users\Alwil Software\Avast5\log\aswAr.log [88182]

O61 - LFC:Last File Created 22/07/2010 - 15:17:54 ---A- C:\Users\gruyer\AppData\Local\widestream6 Air\history.db [16384]

O61 - LFC:Last File Created 22/07/2010 - 15:18:00 ---A- C:\Users\gruyer\AppData\Local\widestream6 Air\cid.txt [16]

O61 - LFC:Last File Created 22/07/2010 - 15:18:20 ---A- C:\Users\All Users\Alwil Software\Avast5\log\Mail.log [942393]

O61 - LFC:Last File Created 22/07/2010 - 15:20:01 ---A- C:\Users\All Users\Alwil Software\Avast5\Log.db [55296]

O61 - LFC:Last File Created 22/07/2010 - 15:21:19 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\installation.props [322]

O61 - LFC:Last File Created 22/07/2010 - 15:21:19 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\limewire.props [44822]

O61 - LFC:Last File Created 22/07/2010 - 15:21:19 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\mojito.props [320]

O61 - LFC:Last File Created 22/07/2010 - 15:21:19 ---A- C:\Users\gruyer\AppData\Roaming\LimeWire\player.props [412]

O61 - LFC:Last File Created 22/07/2010 - 15:22:09 ---A- C:\Users\All Users\Alwil Software\Avast5\log\usntr.log [3132552]

O61 - LFC:Last File Created 22/07/2010 - 15:23:47 ---A- C:\Users\gruyer\AppData\Roaming\OfferBox\config.xml [1755]

---\\ Liste des outils de nettoyage (LATC) (O63)

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)

O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.)

---\\ Liste des services Legacy (LALS) (O64)

O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys - Ancilliary Function Driver for Winsock (AFD) .(.Pas de propriétaire - Pas de description.) - LEGACY_AFD

O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK

O64 - Services: CurCS - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt (aswMonFlt) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWMONFLT

O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR

O64 - Services: CurCS - (.not file.) - aswSP (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP

O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\bowser.sys - Bowser (bowser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BOWSER

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS

O64 - Services: CurCS - C:\Windows\system32\CLFS.sys - Common Log (CLFS) (CLFS) .(.Pas de propriétaire - Pas de description.) - LEGACY_CLFS

O64 - Services: CurCS - C:\Windows\system32\drivers\crcdisk.sys - Crcdisk Filter Driver (crcdisk) .(.Pas de propriétaire - Pas de description.) - LEGACY_CRCDISK

O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Pas de propriétaire - Pas de description.) - LEGACY_DFSC

O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Pas de propriétaire - Pas de description.) - LEGACY_DXGKRNL

O64 - Services: CurCS - C:\Windows\system32\Drivers\EECTRL.sys - Symantec Eraser Control driver (eeCtrl) .(.Pas de propriétaire - Pas de description.) - LEGACY_EECTRL

O64 - Services: CurCS - C:\Windows\system32\Drivers\ERASERUTILDRVI9.sys - EraserUtilDrvI9 (EraserUtilDrvI9) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERASERUTILDRVI9

O64 - Services: CurCS - C:\Windows\system32\Drivers\ERASERUTILREBOOTDRV.sys - EraserUtilRebootDrv (EraserUtilRebootDrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERASERUTILREBOOTDRV

O64 - Services: CurCS - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT

O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys - File Information FS MiniFilter (FileInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_FILEINFO

O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys - FltMgr (FltMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_FLTMGR

O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC

O64 - Services: CurCS - C:\Windows\system32\drivers\HTTP.sys - HTTP (HTTP) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTP

O64 - Services: CurCS - C:\Windows\system32\Drivers\IDSVIA64.sys - IDSVia64 (IDSVia64) .(.Pas de propriétaire - Pas de description.) - LEGACY_IDSVIA64

O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Pas de propriétaire - Pas de description.) - LEGACY_LLTDIO

O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys - UAC File Virtualization (luafv) .(.Pas de propriétaire - Pas de description.) - LEGACY_LUAFV

O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys - Mount Point Manager (MountMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR

O64 - Services: CurCS - C:\Windows\system32\drivers\mrxdav.sys - WebDav Client Redirector Driver (MRxDAV) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXDAV

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\mrxsmb.sys - SMB MiniRedirector Wrapper and Engine (mrxsmb) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\mrxsmb10.sys - SMB 1.x MiniRedirector (mrxsmb10) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB10

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\mrxsmb20.sys - SMB 2.0 MiniRedirector (mrxsmb20) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB20

O64 - Services: CurCS - C:\Windows\system32\drivers\msahci.sys - msahci (msahci) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSAHCI

O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS

O64 - Services: CurCS - C:\Windows\system32\drivers\msisadrv.sys - ISA/EISA Class Driver (msisadrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSISADRV

O64 - Services: CurCS - C:\Windows\system32\Drivers\mup.sys - Mup (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP

O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys - NDIS System Driver (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBIOS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbt.sys - NETBT (netbt) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBT

O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS

O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys - NSI proxy service (nsiproxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NSIPROXY

O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS

O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL

O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Pas de propriétaire - Pas de description.) - LEGACY_PEAUTH

O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (PSched) .(.Pas de propriétaire - Pas de description.) - LEGACY_PSCHED

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rasacd.sys - Remote Access Auto Connection Driver (RasAcd) .(.Pas de propriétaire - Pas de description.) - LEGACY_RASACD

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rdbss.sys - Redirected Buffering Sub Sysytem (rdbss) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDBSS

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys - RDPCDD (RDPCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPCDD

O64 - Services: CurCS - C:\Windows\system32\drivers\rdpencdd.sys - RDP Encoder Mirror Driver (RDPENCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPENCDD

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Pas de propriétaire - Pas de description.) - LEGACY_RSPNDR

O64 - Services: CurCS - (.not file.) - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV

O64 - Services: CurCS - (.not file.) - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srv.sys - srv (srv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srv2.sys - srv2 (srv2) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV2

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRVNET

O64 - Services: CurCS - C:\Windows\system32\Drivers\SYMDNS.sys - SYMDNS (SYMDNS) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMDNS

O64 - Services: CurCS - C:\Windows\system32\Drivers\SYMEFA.sys - Symantec Extended File Attributes (SymEFA) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMEFA

O64 - Services: CurCS - C:\Windows\system32\Drivers\SYMFW.sys - SYMFW (SYMFW) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMFW

O64 - Services: CurCS - C:\Windows\system32\Drivers\SYMNDISV.sys - SYMNDISV (SYMNDISV) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMNDISV

O64 - Services: CurCS - C:\Windows\system32\Drivers\SYMREDRV.sys - SYMREDRV (SYMREDRV) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMREDRV

O64 - Services: CurCS - C:\Windows\system32\Drivers\SYMTDI.sys - SYMTDI (SYMTDI) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMTDI

O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Pas de propriétaire - Pas de description.) - LEGACY_TCPIPREG

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_UDFS

O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGASAVE

O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys - Dynamic Volume Manager (volmgrx) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLMGRX

O64 - Services: CurCS - C:\Windows\system32\drivers\volsnap.sys - Volumes de stockage (volsnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP

O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wanarp.sys - Remote Access IPv6 ARP Driver (Wanarpv6) .(.Pas de propriétaire - Pas de description.) - LEGACY_WANARPV6

O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Pas de propriétaire - Pas de description.) - LEGACY_WDF01000

pear · le 22 juillet 2010

Il en manque un morceau:

Mais on va faire sans.

Si vous êtes sous Vista:Désactiver L'UAC ,avant sont utilisation.

Menu Démarrer \ Panneau de Configuration \ Comptes d'utilisateurs et protection des utilisateurs \ Comptes d'utilisateurs \ Activer ou désactiver le contrôle des comptes d'utilisateurs \ décoche la case Utiliser le contrôle ... et valider par OK ,

il sera demandé de redémarrer

Téléchargez AD-Remover sur le bureau

Déconnectez-vous et fermez toutes les applications en cours

Cliquer sur "Ad-R.exe" pour lancer l'installation et laisser les paramètres par défaut .

Une fenêtre s'affichera Vous prévenant des risques de l'utilisation de ce logiciel

Cliquez sur "OUI"

Double cliquer sur l'icône Ad-remover sur le bureau

Au menu principal choisir l'optionScanner et Validez

Patientez pendant le travail de l'outil.

Poster le rapport qui apparait à la fin .

Il est sauvegardé aussi sous C:\Ad-report.log

Ensuite

Relancer Ad- remover , choisir l'option Nettoyer

Il y aura 2 rapports à poster après Scanner et Nettoyer

Pour désinstaller AD-Remover, lancez avec l'option D puis supprimer l'icône du bureau.

Téléchargez MBAM

Branchez tous les supports amovibles avant de faire ce scan (clé usb/disque dur externe etc)

Avant de lancer Mbam

Vous devez d'abord désactiver vos protections mais vous ne savez pas comment faire

* Double cliquez sur l'icône Download_mbam-setup.exe pour lancer le processus d'installation.

Enregistrez le sur le bureau .

Fermer toutes les fenêtres et programmes

Suivez les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet)

N'apportez aucune modification aux réglages par défaut et, en fin d'installation,

Vérifiez que les options Update et Launch soient cochées

MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse.

cliquer sur OK pour fermer la boîte de dialogue..

* Dans l'onglet "mise à jour", cliquez sur le bouton Recherche de mise à jour:

Si le pare-feu demande l'autorisation à MBAM de se connecter, acceptez.

* Une fois la mise à jour terminée, allez dans l'onglet Recherche.

* Sélectionnez "Exécuter un examen complet"

* Cliquez sur "Rechercher"

* .L' analyse prendra un certain temps, soyez patient !

* A la fin , un message affichera :

L'examen s'est terminé normalement.

*Si MBAM n'a rien trouvé, il le dira aussi.

Cliquez sur "Ok" pour poursuivre.

*Fermez les navigateurs.

Cliquez sur Afficher les résultats .

*Sélectionnez tout et cliquez sur Supprimer la sélection ,

MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

puis ouvrir le Bloc-notes et y copier le rapport d'analyse qui peut être retrouvé sous l'onglet Rapports/logs.

* Copiez-collez ce rapport dans la prochaine réponse.

Connexion

Pas encore inscrit ?

analyse hijackthis et questionnement sur la valeur des antivirus

Messages recommandés

uranos

pear

uranos

pear

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer