Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

analyse hijack et zhp

DOM30

Par DOM30
dans Analyses et éradication malwares

 Partager

Messages recommandés

DOM30 Junior Member

DOM30

Posté(e)
Posté(e)

bonjour,mon pc a depuis quelque temps la facheuse manie de ramer ,je suis plutot nul en informatique, est ce que quelqu'un pourrait m'aider svp?je joint un rapport hijack et zhp et s'il est possible de mieux le configurer toute les solutions sont les biens venues par avance merci

 

 

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 22:35:10, on 21/03/2011

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v8.00 (8.00.7601.17514)

Boot mode: Normal

 

Running processes:

C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe

C:\Windows\PLFSetI.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

C:\Program Files (x86)\Launch Manager\LManager.exe

C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe

C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Launch Manager\LMworker.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe

C:\Users\DOM\Desktop\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_th36&r=27360211l905l0444z1l5f4732e429

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_th36&r=27360211l905l0444z1l5f4732e429

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=easynote_th36&r=27360211l905l0444z1l5f4732e429

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: Shareaza Web Download Hook - {0EEDB912-C5FA-486F-8334-57288578C627} - (no file)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\IPSBHO.DLL

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll

O4 - HKLM\..\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k

O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [VideoWebCamera] "C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe" -a

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe -update activex

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: Download with &Shareaza - res://C:\Program Files (x86)\Shareaza\RazaWebHook32.dll/3000

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe

O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe

O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe

O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe

O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe

O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe

O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe

O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe

O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe

O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe

O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Updater Service - Acer Group - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe

O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe

O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

 

--

End of file - 24584 bytes

Rapport de ZHPDiag v1.27.1628 par Nicolas Coolman, Update du 05/03/2011

Run by DOM at 21/03/2011 22:40:16

Web site : ZHPDiag Outil de diagnostic

Contact : nicolascoolman@yahoo.fr

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.7601.17514

 

---\\ System Information

Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel

Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3002 MB (57% free)

System Restore: Activé (Enable)

System drive C: has 412 GB (90%) free of 453 GB

 

---\\ Logged in mode

Computer Name: DOM-PC

User Name: DOM

All Users Names: DOM, Administrateur,

Unselected Option: None

Logged in as Administrator

 

---\\ Environnement Variables

%AppData%=C:\Users\DOM\AppData\Roaming

%LocalAppData%=C:\Users\DOM\AppData\Local

%StartMenu%=C:\Users\DOM\AppData\Roaming\Microsoft\Windows\Start Menu

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 412 Go of 453 Go)

D:\ CD-ROM drive (Not Inserted)

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.AC4C51EB24AA95B77F705AB159189E24] - (.Microsoft Corporation - Explorateur Windows.) (.20/11/2010 14:24:45.) -- C:\Windows\Explorer.exe [2872320]

[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]

[MD5.44214C94911C7CFB1D52CB64D5E8368D] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.20/11/2010 13:21:36.) -- C:\Windows\System32\wininet.dll [980992]

 

 

---\\ Processus lancés

[MD5.8E643FD5F38FA9A2EDA27268A1E9499F] - (.Symantec Corporation - Symantec Service Framework.) -- C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe [126392]

[MD5.17C5E2A94AA1B42D499A5396D67E0B61] - (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe [206208]

[MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [275768]

[MD5.9ECF375A6E4E74D056F4B54E76D58721] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696]

[MD5.522EEC6D2CAF10ADF7D9B6868A5BDEA9] - (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1300560]

[MD5.C680CEDEA1D74BA744CDC7417C4A1E91] - (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [258560]

[MD5.F2BAD445CC5120EB370360A37A7FEE2A] - (.Suyin - Video Web Camera.) -- C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe [1541472]

[MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840]

[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064]

[MD5.3E4E76D2AD42B4D9C868A381F51B683A] - (.Dritek System Inc. - Launch Manager Worker.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe [297040]

[MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960]

[MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104]

[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496]

[MD5.C613E69C3B191BB02C7A191741A1D024] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [673040]

[MD5.3621F2F6A733BFABDC58C97613B0166D] - (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe [116280]

[MD5.6CBF6DCC830A1C32EBCF7036A4978C8C] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe [234656]

[MD5.261A367C6004BC9F083F3AA5D99973E3] - (.Nicolas Coolman - Analyseur de rapports sécurité.) -- C:\Program Files (x86)\ZebHelpProcess\ZHP2.exe [891904]

[MD5.903E617600010767AE394F8083C9B1A7] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZebHelpProcess\ZHPDiag.exe [632320]

 

 

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

G1 - GCS: Preference [user Data\Default] None

G0 - GCSP: Preference [user Data\Default][HomePage] about:Tabs

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com

R0 - HKUS\S-1-5-21-2457555975-1631193541-3333612775-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKUS\S-1-5-21-2457555975-1631193541-3333612775-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com

R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0

 

 

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Shareaza Web Download Hook [64Bits] - {0EEDB912-C5FA-486F-8334-57288578C627} Clé orpheline

O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

 

 

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe (.not file.)

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe (.not file.)

O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe (.not file.)

O4 - HKLM\..\Run: [synTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [PLFSetI] . (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe

O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe

O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe

O4 - HKLM\..\Wow6432Node\Run: [iAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe

O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe

O4 - HKLM\..\Wow6432Node\Run: [backupManagerTray] . (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe

O4 - HKLM\..\Wow6432Node\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Wow6432Node\Run: [VideoWebCamera] . (.Suyin - Video Web Camera.) -- C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe

O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (.not file.)

O4 - HKUS\S-1-5-21-2457555975-1631193541-3333612775-1000\..\RunOnce: [FlashPlayerUpdate] . (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10n_ActiveX.exe

O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co..) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

 

 

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\DOM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\DOM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\DOM\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\DOM\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WildTangent Games App - packardbell.lnk . (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: Download with &Shareaza - (.not file.) - C:\Program Files (x86)\Shareaza\RazaWebHook32.dll

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{4FD32838-D265-4828-AECA-96F013E24236}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CCS\Services\Tcpip\..\{A4036485-10AC-4B7F-97AE-47DE2E5E170A}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CS1\Services\Tcpip\..\{4FD32838-D265-4828-AECA-96F013E24236}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CS1\Services\Tcpip\..\{A4036485-10AC-4B7F-97AE-47DE2E5E170A}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CS2\Services\Tcpip\..\{4FD32838-D265-4828-AECA-96F013E24236}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CS2\Services\Tcpip\..\{A4036485-10AC-4B7F-97AE-47DE2E5E170A}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: igfxcui . (.Pas de propriétaire - Pas de description.) -- igfxdev.dll

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

O23 - Service: (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe

O23 - Service: (ePowerSvc) . (.Acer Incorporated - ePowerSvc.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe

O23 - Service: (FLEXnet Licensing Service) . (.Acresso Software Inc. - Activation Licensing Service.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: (GamesAppService) . (.WildTangent, Inc. - GamesAppService.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

O23 - Service: (GREGService) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe

O23 - Service: (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe

O23 - Service: (NIS) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe

O23 - Service: (NTI IScheduleSvc) . (.NewTech Infosystems, Inc. - Backup Manager Module.) - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe

O23 - Service: (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe

O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.)

 

 

---\\ Tâches planifiées en automatique (O39)

[MD5.5DD90DE1428E51A2132B09AECF46946E] [APT] [symantec Error Analyzer 17.8.0.5] (.Symantec Corporation.) -- C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\SymErr.exe

[MD5.5DD90DE1428E51A2132B09AECF46946E] [APT] [symantec Error Processor 17.8.0.5] (.Symantec Corporation.) -- C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\SymErr.exe

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (BHDrvx64) . (.Symantec Corporation - BASH Driver.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\BASHDefs\20110309.001\BHDrvx64.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: (ccHP) . (.Symantec Corporation - Common Client Hash Provider Driver.) - C:\Windows\system32\drivers\NISx64\1108000.005\ccHPx64.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys

O41 - Driver: (eeCtrl) . (.Symantec Corporation - Symantec Eraser Control Driver.) - C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys

O41 - Driver: (IDSVia64) . (.Symantec Corporation - IDS Core Driver.) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\20110317.002\IDSvia64.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys

O41 - Driver: (SRTSPX) . (.Symantec Corporation - Symantec AutoProtect.) - C:\Windows\system32\drivers\NISx64\1108000.005\SRTSPX64.sys

O41 - Driver: (SymIRON) . (.Symantec Corporation - Iron Driver.) - C:\Windows\system32\drivers\NISx64\1108000.005\Ironx64.sys

O41 - Driver: (SYMTDIv) . (.Symantec Corporation - Network Dispatch Driver.) - C:\Windows\system32\Drivers\NISx64\1108000.005\SYMTDIV.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys

O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {55D55008-E5F6-47D6-B16F-B2A40D4D145F}

O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Photoshop Elements 8.0 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Photoshop Elements 8.0

O42 - Logiciel: Adobe Reader 9.4.3 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}

O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {B2EC4A38-B545-4A00-8214-13FE0E915E6D}

O42 - Logiciel: Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}

O42 - Logiciel: Backup Manager Basic - (.NewTech Infosystems.) [HKLM][64Bits] -- {72B776E5-4530-4C4B-9453-751DF87D9D93}

O42 - Logiciel: Bejeweled 2 Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078791

O42 - Logiciel: Blasterball 3 - (.WildTangent.) [HKLM][64Bits] -- WT078960

O42 - Logiciel: Bob the Builder Can-Do-Zoo - (.WildTangent.) [HKLM][64Bits] -- WT078964

O42 - Logiciel: Build-a-lot 2 - (.WildTangent.) [HKLM][64Bits] -- WT079363

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: Chicken Invaders 3 - Revenge of the Yolk - (.WildTangent.) [HKLM][64Bits] -- WT079366

O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}

O42 - Logiciel: Escape Rosecliff Island - (.WildTangent.) [HKLM][64Bits] -- WT079395

O42 - Logiciel: FATE - The Traitor Soul - (.WildTangent.) [HKLM][64Bits] -- WT079024

O42 - Logiciel: Faerie Solitaire - (.WildTangent.) [HKLM][64Bits] -- WT079020

O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {488F0347-C4A7-4374-91A7-30818BEDA710}

O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities

O42 - Logiciel: HP Deskjet F2400 All-In-One Driver Software 13.0 Rel .6 - (.HP.) [HKLM] -- {CDBF8C2D-04B0-4F9B-9AE1-7422F7F0EC94}

O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions

O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM] -- HP Print Projects

O42 - Logiciel: HP Smart Web Printing 4.5 - (.HP.) [HKLM] -- HP Smart Web Printing

O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4}

O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}

O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card

O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078806

O42 - Logiciel: Intel® Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI

O42 - Logiciel: Intel® Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}

O42 - Logiciel: Java 6 Update 24 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}

O42 - Logiciel: Jewel Quest - (.WildTangent.) [HKLM][64Bits] -- WT079064

O42 - Logiciel: Jewel Quest Solitaire 3 - (.WildTangent.) [HKLM][64Bits] -- WT079068

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}

O42 - Logiciel: Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- LManager

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WT079397

O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}

O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-0070-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Nero 9 Essentials - (.Nero AG.) [HKLM][64Bits] -- {3b4a19c2-e813-41b6-bdd1-e9792579b0e5}

O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}

O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}

O42 - Logiciel: Nero DiscSpeed - (.Nero AG.) [HKLM][64Bits] -- {869200DB-287A-4DC0-B02B-2B6787FBCD4C}

O42 - Logiciel: Nero DiscSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {CC019E3F-59D2-4486-8D4B-878105B62A71}

O42 - Logiciel: Nero DriveSpeed - (.Nero AG.) [HKLM][64Bits] -- {33CF58F5-48D8-4575-83D6-96F574E4D83A}

O42 - Logiciel: Nero DriveSpeed Help - (.Nero AG.) [HKLM][64Bits] -- {E5C7D048-F9B4-4219-B323-8BDB01A2563D}

O42 - Logiciel: Nero Express Help - (.Nero AG.) [HKLM][64Bits] -- {83202942-84B3-4C50-8622-B8C0AA2D2885}

O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {FBCDFD61-7DCF-4E71-9226-873BA0053139}

O42 - Logiciel: Nero InfoTool Help - (.Nero AG.) [HKLM][64Bits] -- {20400DBD-E6DB-45B8-9B6B-1DD7033818EC}

O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {E8A80433-302B-4FF1-815D-FCC8EAC482FF}

O42 - Logiciel: Nero Online Upgrade - (.Nero AG.) [HKLM][64Bits] -- {C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}

O42 - Logiciel: Nero StartSmart - (.Nero AG.) [HKLM][64Bits] -- {7748AC8C-18E3-43BB-959B-088FAEA16FB2}

O42 - Logiciel: Nero StartSmart Help - (.Nero AG.) [HKLM][64Bits] -- {2348B586-C9AE-46CE-936C-A68E9426E214}

O42 - Logiciel: Nero StartSmart OEM - (.Nero AG.) [HKLM][64Bits] -- {4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}

O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595A3116-40BB-4E0F-A2E8-D7951DA56270}

O42 - Logiciel: Norton Internet Security - (.Symantec Corporation.) [HKLM][64Bits] -- NIS

O42 - Logiciel: Norton Online Backup - (.Symantec.) [HKLM][64Bits] -- {C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}

O42 - Logiciel: Packard Bell Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent packardbell Master Uninstall

O42 - Logiciel: Packard Bell InfoCentre - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell InfoCentre

O42 - Logiciel: Packard Bell MyBackup - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}

O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {3DB0448D-AD82-4923-B305-D001E521A964}

O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}

O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Registration

O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell .) [HKLM][64Bits] -- Packard Bell Screensaver

O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{64EF903E-D00A-414C-94A4-FBA368FFCDC9}

O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- {64EF903E-D00A-414C-94A4-FBA368FFCDC9}

O42 - Logiciel: Packard Bell Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}

O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WT079108

O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WT079116

O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM][64Bits] -- WT079120

O42 - Logiciel: Polar Pool - (.WildTangent.) [HKLM][64Bits] -- WT079124

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841

O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies

O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey

O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2473228

O42 - Logiciel: Video Web Camera - (.SuYin.) [HKLM][64Bits] -- {6D9021DC-CF1B-4148-8C80-6D8E8A8A33EB}

O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WT079421

O42 - Logiciel: Virtual Villagers - A New Home - (.WildTangent.) [HKLM][64Bits] -- WT079177

O42 - Logiciel: Welcome Center - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Welcome Center

O42 - Logiciel: WildTangent Games App (Packard Bell Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- WinLiveSuite

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM][64Bits] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}

O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM][64Bits] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}

O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8}

O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}

O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}

O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D56775A-93F3-44A3-8092-840E3826DE30}

O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FAE6E8D-E686-49F5-A574-0A58DFD9580C}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM][64Bits] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}

O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM][64Bits] -- {92EA4134-10D1-418A-91E1-5A0453131A38}

O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}

O42 - Logiciel: Windows Live Photo Gallery - (.Microsoft Corporation.) [HKLM][64Bits] -- {3336F667-9049-4D46-98B6-4C743EEBC5B1}

O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM][64Bits] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}

O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM][64Bits] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}

O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM][64Bits] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}

O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {09F56A49-A7B1-4AAB-95B9-D13094254AD1}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B9A92DA-6374-4872-B646-253F18624D5F}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {A726AE06-AAA3-43D1-87E3-70F510314F04}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM][64Bits] -- {AAAFC670-569B-4A2F-82B4-42945E0DE3EF}

O42 - Logiciel: Windows Live Writer Resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {62687B11-58B5-4A18-9BC3-9DF4CE03F194}

O42 - Logiciel: Yahtzee - (.WildTangent.) [HKLM][64Bits] -- WT079184

O42 - Logiciel: ZebHelpProcess 2.46 - (.Nicolas Coolman.) [HKLM][64Bits] -- Zeb Help Process_is1

O42 - Logiciel: Zuma Deluxe - (.WildTangent.) [HKLM][64Bits] -- WT078833

O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {E0B19DF7-B1C7-4937-82C4-0E4B1E346965}

O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\Acer]

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Google]

[HKCU\Software\AppDataLow\Software\Yahoo]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Borland]

[HKCU\Software\CDDB]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Dritek]

[HKCU\Software\Google]

[HKCU\Software\HP]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\Intel]

[HKCU\Software\JavaSoft]

[HKCU\Software\Local AppWizard-Generated Applications]

[HKCU\Software\Macromedia]

[HKCU\Software\Magnet]

[HKCU\Software\MainConcept (Adobe2)]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\Nero]

[HKCU\Software\Netscape]

[HKCU\Software\Norton]

[HKCU\Software\OEM]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Shareaza]

[HKCU\Software\Skype]

[HKCU\Software\Sonix]

[HKCU\Software\Suyin]

[HKCU\Software\Synaptics]

[HKCU\Software\Sysinternals]

[HKCU\Software\Trolltech]

[HKCU\Software\Windows Live Writer]

[HKCU\Software\Wow6432Node]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Yahoo]

[HKLM\Software\ATI Technologies]

[HKLM\Software\Acer]

[HKLM\Software\Audible]

[HKLM\Software\BrowserChoice]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Cyberlink]

[HKLM\Software\Google]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\InstalledOptions]

[HKLM\Software\Intel]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\ODBC]

[HKLM\Software\OEM]

[HKLM\Software\OOBEOffer]

[HKLM\Software\OemSetup]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SRS Labs]

[HKLM\Software\Sonic]

[HKLM\Software\Symantec]

[HKLM\Software\Synaptics]

[HKLM\Software\Waves Audio]

[HKLM\Software\Wow6432Node]

 

 

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 25/02/2011 - 23:13:32 - [7184728] ----D- C:\Program Files\CCleaner

O43 - CFD: 05/02/2011 - 08:23:38 - [73912991] ----D- C:\Program Files\Common Files

O43 - CFD: 24/02/2011 - 20:53:56 - [90256916] ----D- C:\Program Files\DVD Maker

O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 09/02/2011 - 03:14:10 - [0] ----D- C:\Program Files\Google

O43 - CFD: 11/02/2011 - 22:06:06 - [4499093] ----D- C:\Program Files\HP

O43 - CFD: 24/02/2011 - 20:53:56 - [5183005] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 14/07/2009 - 08:45:56 - [148931122] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 26/07/2010 - 15:45:26 - [24266698] ----D- C:\Program Files\Packard Bell

O43 - CFD: 04/02/2011 - 16:35:02 - [252325] ----D- C:\Program Files\PB Accessory Store

O43 - CFD: 10/05/2010 - 07:34:32 - [1825075] ----D- C:\Program Files\Preload

O43 - CFD: 10/05/2010 - 07:23:56 - [15309052] ----D- C:\Program Files\Realtek

O43 - CFD: 14/07/2009 - 06:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 05/02/2011 - 08:23:38 - [0] ----D- C:\Program Files\Symantec

O43 - CFD: 26/07/2010 - 15:44:14 - [28978855] ----D- C:\Program Files\Synaptics

O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 24/02/2011 - 20:53:52 - [4039680] ----D- C:\Program Files\Windows Defender

O43 - CFD: 24/02/2011 - 20:53:56 - [9224824] ----D- C:\Program Files\Windows Journal

O43 - CFD: 08/02/2011 - 19:21:06 - [43896] ----D- C:\Program Files\Windows Live

O43 - CFD: 24/02/2011 - 20:53:58 - [6667776] ----D- C:\Program Files\Windows Mail

O43 - CFD: 24/02/2011 - 20:53:56 - [7687085] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 04/02/2011 - 16:34:42 - [12627636] ----D- C:\Program Files\Windows NT

O43 - CFD: 24/02/2011 - 20:53:56 - [5516056] ----D- C:\Program Files\Windows Photo Viewer

O43 - CFD: 24/02/2011 - 20:53:56 - [244736] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 24/02/2011 - 20:53:58 - [7270453] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 08/02/2011 - 19:20:58 - [60081814] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 05/02/2011 - 08:23:38 - [1025416] ----D- C:\Program Files\Common Files\Symantec Shared

O43 - CFD: 27/07/2010 - 01:28:48 - [12194291] ----D- C:\Program Files\Common Files\System

O43 - CFD: 10/05/2010 - 07:34:32 - [160] ----D- C:\ProgramData\Acer

O43 - CFD: 15/02/2011 - 11:44:14 - [556405133] ----D- C:\ProgramData\Adobe

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 10/05/2010 - 07:36:36 - [8794] ----D- C:\ProgramData\BackupManager

O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 11/02/2011 - 22:16:02 - [15941779] ----D- C:\ProgramData\HP

O43 - CFD: 11/02/2011 - 22:11:40 - [8988] ----D- C:\ProgramData\HP Product Assistant

O43 - CFD: 17/02/2011 - 15:20:56 - [14142862] ----D- C:\ProgramData\Malwarebytes

O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 21/03/2011 - 00:15:30 - [1232246327] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 04/02/2011 - 16:34:42 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 10/05/2010 - 07:43:20 - [11082989] ----D- C:\ProgramData\Nero

O43 - CFD: 05/02/2011 - 08:23:50 - [336929588] ----D- C:\ProgramData\Norton

O43 - CFD: 10/05/2010 - 07:48:18 - [612458] ----D- C:\ProgramData\NortonInstaller

O43 - CFD: 04/02/2011 - 16:36:26 - [700] ----D- C:\ProgramData\OEM

O43 - CFD: 10/05/2010 - 07:40:00 - [111258] ----D- C:\ProgramData\Packard Bell

O43 - CFD: 09/02/2011 - 03:14:10 - [1025] ----D- C:\ProgramData\Partner

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 24/02/2011 - 13:24:36 - [119] ----D- C:\ProgramData\Sun

O43 - CFD: 10/05/2010 - 07:46:54 - [865] ----D- C:\ProgramData\Symantec

O43 - CFD: 10/05/2010 - 07:34:44 - [36864] ----D- C:\ProgramData\Temp

O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 11/02/2011 - 22:18:16 - [206] ----D- C:\ProgramData\WEBREG

O43 - CFD: 16/03/2011 - 20:53:56 - [1961127269] ----D- C:\ProgramData\WildTangent

O43 - CFD: 06/02/2011 - 13:36:10 - [2271262] ----D- C:\Users\DOM\AppData\Roaming\Adobe

O43 - CFD: 05/02/2011 - 08:25:12 - [0] ----D- C:\Users\DOM\AppData\Roaming\Google

O43 - CFD: 11/02/2011 - 22:21:48 - [52060] ----D- C:\Users\DOM\AppData\Roaming\HP

O43 - CFD: 04/02/2011 - 16:35:52 - [0] ----D- C:\Users\DOM\AppData\Roaming\Identities

O43 - CFD: 04/02/2011 - 16:36:38 - [0] ----D- C:\Users\DOM\AppData\Roaming\Intel Corporation

O43 - CFD: 04/02/2011 - 16:36:28 - [1376] ----D- C:\Users\DOM\AppData\Roaming\Macromedia

O43 - CFD: 17/02/2011 - 15:21:02 - [3174] ----D- C:\Users\DOM\AppData\Roaming\Malwarebytes

O43 - CFD: 14/07/2009 - 08:44:40 - [0] ----D- C:\Users\DOM\AppData\Roaming\Media Center Programs

O43 - CFD: 21/03/2011 - 00:15:30 - [1491845] -S--D- C:\Users\DOM\AppData\Roaming\Microsoft

O43 - CFD: 15/02/2011 - 12:11:18 - [1985688] ----D- C:\Users\DOM\AppData\Roaming\Nero

O43 - CFD: 08/02/2011 - 19:19:06 - [15] ----D- C:\Users\DOM\AppData\Roaming\Packard Bell

O43 - CFD: 11/02/2011 - 11:15:18 - [0] ----D- C:\Users\DOM\AppData\Roaming\Windows Live Writer

O43 - CFD: 11/02/2011 - 22:13:12 - [0] ----D- C:\Users\DOM\AppData\Roaming\Yahoo!

O43 - CFD: 26/07/2010 - 15:48:06 - [1463367284] ----D- C:\Program Files (x86)\Adobe

O43 - CFD: 08/03/2011 - 14:34:38 - [554186414] ----D- C:\Program Files (x86)\Common Files

O43 - CFD: 10/05/2010 - 07:35:24 - [66856] ----D- C:\Program Files (x86)\Cyberlink

O43 - CFD: 20/02/2011 - 18:51:42 - [195589204] ----D- C:\Program Files (x86)\HP

O43 - CFD: 26/07/2010 - 15:45:26 - [61101732] --H-D- C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD: 10/05/2010 - 06:39:30 - [19089861] ----D- C:\Program Files (x86)\Intel

O43 - CFD: 24/02/2011 - 20:54:02 - [4594973] ----D- C:\Program Files (x86)\Internet Explorer

O43 - CFD: 08/03/2011 - 14:33:30 - [88362895] ----D- C:\Program Files (x86)\Java

O43 - CFD: 10/05/2010 - 07:27:22 - [7639509] ----D- C:\Program Files (x86)\Launch Manager

O43 - CFD: 17/02/2011 - 15:23:38 - [4945820] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware

O43 - CFD: 26/07/2010 - 15:47:08 - [6423243] ----D- C:\Program Files (x86)\Microsoft Office

O43 - CFD: 24/02/2011 - 20:57:54 - [38371963] ----D- C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD: 26/07/2010 - 15:54:08 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition

O43 - CFD: 08/02/2011 - 20:14:04 - [15715] ----D- C:\Program Files (x86)\Microsoft.NET

O43 - CFD: 14/07/2009 - 06:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild

O43 - CFD: 05/02/2011 - 13:32:12 - [0] ----D- C:\Program Files (x86)\MSXML 4.0

O43 - CFD: 10/05/2010 - 07:44:10 - [377644923] ----D- C:\Program Files (x86)\Nero

O43 - CFD: 10/05/2010 - 07:36:26 - [28189359] ----D- C:\Program Files (x86)\NewTech Infosystems

O43 - CFD: 10/05/2010 - 07:48:40 - [161667058] ----D- C:\Program Files (x86)\Norton Internet Security

O43 - CFD: 10/05/2010 - 07:48:18 - [25191931] ----D- C:\Program Files (x86)\NortonInstaller

O43 - CFD: 04/02/2011 - 16:35:06 - [106432] ----D- C:\Program Files (x86)\OEM

O43 - CFD: 26/07/2010 - 15:38:48 - [64342218] ----D- C:\Program Files (x86)\Packard Bell

O43 - CFD: 16/03/2011 - 20:23:06 - [334870476] ----D- C:\Program Files (x86)\Packard Bell Games

O43 - CFD: 10/05/2010 - 07:23:54 - [11797961] ----D- C:\Program Files (x86)\Realtek

O43 - CFD: 14/07/2009 - 06:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies

O43 - CFD: 10/05/2010 - 07:35:24 - [25832787] ----D- C:\Program Files (x86)\Social Networks

O43 - CFD: 10/05/2010 - 07:46:54 - [2202256] ----D- C:\Program Files (x86)\Symantec

O43 - CFD: 10/05/2010 - 07:24:12 - [0] --H-D- C:\Program Files (x86)\Temp

O43 - CFD: 14/07/2009 - 05:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information

O43 - CFD: 26/07/2010 - 15:44:44 - [26594078] ----D- C:\Program Files (x86)\VideoWebCamera

O43 - CFD: 16/03/2011 - 20:22:44 - [10277935] ----D- C:\Program Files (x86)\WildTangent Games

O43 - CFD: 27/07/2010 - 01:28:48 - [524800] ----D- C:\Program Files (x86)\Windows Defender

O43 - CFD: 08/02/2011 - 19:22:22 - [146614464] ----D- C:\Program Files (x86)\Windows Live

O43 - CFD: 24/02/2011 - 20:54:02 - [6181376] ----D- C:\Program Files (x86)\Windows Mail

O43 - CFD: 24/02/2011 - 20:54:02 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player

O43 - CFD: 14/07/2009 - 06:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT

O43 - CFD: 24/02/2011 - 20:54:00 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD: 24/02/2011 - 20:54:02 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices

O43 - CFD: 24/02/2011 - 20:54:02 - [5994626] ----D- C:\Program Files (x86)\Windows Sidebar

O43 - CFD: 14/03/2011 - 07:07:42 - [0] ----D- C:\Program Files (x86)\Yahoo!

O43 - CFD: 21/03/2011 - 22:40:24 - [100764152] ----D- C:\Program Files (x86)\ZebHelpProcess

O43 - CFD: 08/02/2011 - 19:20:58 - [60081814] ----D- C:\Program Files\Common Files\Microsoft Shared

O43 - CFD: 14/07/2009 - 04:20:10 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 14/07/2009 - 04:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 05/02/2011 - 08:23:38 - [1025416] ----D- C:\Program Files\Common Files\Symantec Shared

O43 - CFD: 27/07/2010 - 01:28:48 - [12194291] ----D- C:\Program Files\Common Files\System

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.5B57EE89F048F1E178E4D7270C0D22D1] - 21/03/2011 - 22:04:31 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [9696]

O44 - LFC:[MD5.5B57EE89F048F1E178E4D7270C0D22D1] - 21/03/2011 - 22:04:31 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [9696]

O44 - LFC:[MD5.23000000000000000000000038EE1800] - 21/03/2011 - 22:00:59 ---A- . (...) -- C:\Windows\WindowsUpdate.log [341362]

O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 21/03/2011 - 21:57:13 ---A- . (...) -- C:\Windows\setupact.log [56]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 21/03/2011 - 21:57:13 ---A- . (...) -- C:\Windows\setuperr.log [0]

O44 - LFC:[MD5.42CC7EF53DE01B4723B3A0518448334C] - 21/03/2011 - 21:57:11 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.1F000000000000000000000038EE1800] - 21/03/2011 - 00:27:21 ---A- . (...) -- C:\PDOXUSRS.NET [13030]

O44 - LFC:[MD5.D4A25C763E9FF438D95330330A4C3190] - 21/03/2011 - 00:26:00 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]

O44 - LFC:[MD5.5136B53F5D0C6127ABF614A6A13904F7] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]

O44 - LFC:[MD5.EA3C875F02B52B64A7853792E508C95B] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106388]

O44 - LFC:[MD5.DDC94531AAC3AACC70DC33DE9EC9D449] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130754]

O44 - LFC:[MD5.27B8D0BA6C911FC9E4A85DC7CBE4CF35] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616008]

O44 - LFC:[MD5.9881AB8C039F1CF4AA3AB327E1A9774D] - 18/03/2011 - 18:39:01 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704480]

O44 - LFC:[MD5.565077FDFD96369D1034598F449F3636] - 14/03/2011 - 07:13:35 ---A- . (...) -- C:\Windows\popcinfo.dat [10]

O44 - LFC:[MD5.42310101A4DB07CF89C7BFC9E8EA8A39] - 24/02/2011 - 20:58:20 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [271168]

O44 - LFC:[MD5.E1DCEE9E3EC0522DF24397BE1A64E449] - 24/02/2011 - 13:57:32 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\SysNative\dfshim.dll [1942856]

O44 - LFC:[MD5.E1DCEE9E3EC0522DF24397BE1A64E449] - 24/02/2011 - 13:57:24 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\System32\dfshim.dll [1130824]

O44 - LFC:[MD5.DD72849FE94E6F49732E1E9A6484FBAF] - 24/02/2011 - 13:56:26 ---A- . (.Microsoft - Filtre du convertisseur RDP (redirecteur).) -- C:\Windows\SysNative\DShowRdpFilter.dll [281600]

O44 - LFC:[MD5.DD72849FE94E6F49732E1E9A6484FBAF] - 24/02/2011 - 13:56:21 ---A- . (.Microsoft - Filtre du convertisseur RDP (redirecteur).) -- C:\Windows\System32\DShowRdpFilter.dll [252928]

O44 - LFC:[MD5.0A551CCDEF9D6F99A008B5B075354650] - 24/02/2011 - 13:56:00 ---A- . (.Microsoft - robocopy.) -- C:\Windows\SysNative\Robocopy.exe [128000]

O44 - LFC:[MD5.345BC7CADBE91E78B52497EF3B0D910B] - 24/02/2011 - 13:55:43 ---A- . (.Windows ® Codename Longhorn DDK provider - Services de gestion des polices.) -- C:\Windows\SysNative\fms.dll [116224]

O44 - LFC:[MD5.0A551CCDEF9D6F99A008B5B075354650] - 24/02/2011 - 13:55:39 ---A- . (.Microsoft - robocopy.) -- C:\Windows\System32\Robocopy.exe [98816]

O44 - LFC:[MD5.345BC7CADBE91E78B52497EF3B0D910B] - 24/02/2011 - 13:55:19 ---A- . (.Windows ® Codename Longhorn DDK provider - Services de gestion des polices.) -- C:\Windows\System32\fms.dll [93696]

O44 - LFC:[MD5.163A95975E1D8819E653AA3E961371CA] - 24/02/2011 - 13:55:16 ---A- . (.Twain Working Group - Gestionnaire de sources Twain_32 (Image Acq.) -- C:\Windows\twain_32.dll [51200]

O44 - LFC:[MD5.C5DEA5B95AF9AA981C88CAB94A58213E] - 20/11/2010 - 04:52:51 ---A- . (...) -- C:\Windows\SysNative\locale.nls [419880]

O44 - LFC:[MD5.C5DEA5B95AF9AA981C88CAB94A58213E] - 20/11/2010 - 04:52:32 ---A- . (...) -- C:\Windows\System32\locale.nls [419880]

O44 - LFC:[MD5.5C18CD22BE4628865FCB63337A6E5EF6] - 10/11/2010 - 02:48:34 ---A- . (...) -- C:\Windows\SysNative\ScavengeSpace.xml [10429]

O44 - LFC:[MD5.5EC92F0EAE3CA59F647C3CA5AA7CB053] - 05/11/2010 - 03:20:53 ---A- . (...) -- C:\Windows\SysNative\systemsf.ebd [347904]

O44 - LFC:[MD5.C236A8735A48B165A2A7724357DBE332] - 05/11/2010 - 03:20:45 ---A- . (...) -- C:\Windows\SysNative\RacRules.xml [105559]

O44 - LFC:[MD5.C236A8735A48B165A2A7724357DBE332] - 05/11/2010 - 03:20:45 ---A- . (...) -- C:\Windows\System32\RacRules.xml [105559]

O44 - LFC:[MD5.C059C6B7518A9D6DE3616A3143392FE6] - 10/06/2009 - 22:39:59 ---A- . (...) -- C:\Windows\System32\tcpbidi.xml [1041]

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:[MD5.23EA41B11B1417E3BBD692A6E9C1698F] - 14/03/2011 - 17:19:03 ---A- - C:\Windows\Prefetch\AgCx_SC4.db

O45 - LFCP:[MD5.43901EB1AB3A2B934DB32EB7E25FB7EE] - 16/03/2011 - 12:42:47 ---A- - C:\Windows\Prefetch\AgCx_SC2.db

O45 - LFCP:[MD5.B27381863F3B8F4A0622A233DBF9D6C9] - 16/03/2011 - 21:41:22 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:[MD5.A10F2C3BB86B7B0435045118605C9E0C] - 16/03/2011 - 22:03:45 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-03D3FB87.pf

O45 - LFCP:[MD5.0B0CFBB3A38B597FFECF901AFD7F55F1] - 16/03/2011 - 22:03:50 ---A- - C:\Windows\Prefetch\SKIN.EXE-FEA4A412.pf

O45 - LFCP:[MD5.4A0357559FE60BE6CC6CF3E88086E509] - 17/03/2011 - 07:40:45 ---A- - C:\Windows\Prefetch\SETUP_WM.EXE-9832EE32.pf

O45 - LFCP:[MD5.DD5CAC505D13401058AAF6DE6663C8DE] - 17/03/2011 - 07:45:26 ---A- - C:\Windows\Prefetch\MCUI32.EXE-B0091783.pf

O45 - LFCP:[MD5.AA1685C2CF6A333CF3D5C3FF7E968470] - 17/03/2011 - 07:47:28 ---A- - C:\Windows\Prefetch\MFPMP.EXE-DAD29CCD.pf

O45 - LFCP:[MD5.2BEB1274886F7DF266669DC0713B54D9] - 17/03/2011 - 08:01:38 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-DAB4D60B.pf

O45 - LFCP:[MD5.768B86B008C2BDDEE80417F410695644] - 17/03/2011 - 21:34:29 ---A- - C:\Windows\Prefetch\NEROEXPRESS.EXE-22A9A71F.pf

O45 - LFCP:[MD5.A386D6075C4217DF398D3E239A2C5301] - 18/03/2011 - 00:00:10 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-51CCB287.pf

O45 - LFCP:[MD5.34D7594D4C1B060C586161DD5B87F1FB] - 18/03/2011 - 00:30:02 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-6FD72002.pf

O45 - LFCP:[MD5.581BA788A07A64DE175A84C15D9F22FC] - 18/03/2011 - 02:24:38 ---A- - C:\Windows\Prefetch\Layout.ini

O45 - LFCP:[MD5.18FDFD1F2AD22BF72E67960ED909AE13] - 18/03/2011 - 09:25:23 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-EBBA463B.pf

O45 - LFCP:[MD5.B23D190FF0500C73B898F94D6169E383] - 18/03/2011 - 09:27:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-B6001A63.pf

O45 - LFCP:[MD5.3BC683C6C4E523D47176AAE8B3A1F10E] - 18/03/2011 - 09:27:26 ---A- - C:\Windows\Prefetch\SHAREAZA.EXE-574DB4CC.pf

O45 - LFCP:[MD5.8595F689E124998683583394ED7FB8C0] - 18/03/2011 - 09:27:37 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-D5E97654.pf

O45 - LFCP:[MD5.A9DDB65FAC631C84FF694EBCF96896B1] - 18/03/2011 - 09:29:26 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-41C19BFB.pf

O45 - LFCP:[MD5.074DDCB526CD6F2DA98C211ECBED724E] - 18/03/2011 - 09:34:32 ---A- - C:\Windows\Prefetch\MBAM.EXE-493D9B94.pf

O45 - LFCP:[MD5.9A8E85A2467FFDFFA68AD1E4BB88F92B] - 18/03/2011 - 10:00:10 ---A- - C:\Windows\Prefetch\SDCLT.EXE-94EAE077.pf

O45 - LFCP:[MD5.843A7D0B42F3276963EE440728D8B448] - 18/03/2011 - 18:25:47 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0D53616E.pf

O45 - LFCP:[MD5.ED58458D033A2B7ED8E8A1D0CBAE2E07] - 18/03/2011 - 18:25:55 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-F6E20E14.pf

O45 - LFCP:[MD5.45973D6567EC57EDEF38A14258E3B3F3] - 18/03/2011 - 18:25:58 ---A- - C:\Windows\Prefetch\CCSVCHST.EXE-9EB93181.pf

O45 - LFCP:[MD5.5B458E8BB09AED6F16CCBA891FF2F2FE] - 18/03/2011 - 18:30:16 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-DEBBE5F1.pf

O45 - LFCP:[MD5.6F2B3C2249FE51D38A047F966D7E4884] - 18/03/2011 - 18:36:38 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-3C4E5BEC.pf

O45 - LFCP:[MD5.9AE17BF22087F4C65D72AF8C5A5ED3A3] - 19/03/2011 - 11:26:21 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-EDA5A3D2.pf

O45 - LFCP:[MD5.0221BF4EA3BEB53FE1C1F8FBB3713F28] - 19/03/2011 - 12:11:52 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-425BC49B.pf

O45 - LFCP:[MD5.7292D40887F182A5B4BE0B9FF69DD433] - 19/03/2011 - 18:25:56 ---A- - C:\Windows\Prefetch\JAUCHECK.EXE-42B49A13.pf

O45 - LFCP:[MD5.8A8F693DEAE4B32AE24C96E25EE2FE11] - 19/03/2011 - 18:26:03 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-B96890A4.pf

O45 - LFCP:[MD5.424EE43B4062913DDBBB31EABB51E3E9] - 19/03/2011 - 18:26:05 ---A- - C:\Windows\Prefetch\JAVAW.EXE-CE5F3A8D.pf

O45 - LFCP:[MD5.FDA0E6192DB51238A4FD428CC6AC5180] - 19/03/2011 - 18:52:54 ---A- - C:\Windows\Prefetch\ACROBROKER.EXE-6999C998.pf

O45 - LFCP:[MD5.8D27D5F74EA94761098A7338186A4D78] - 19/03/2011 - 18:52:57 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-F9223367.pf

O45 - LFCP:[MD5.0355AD38ACB2C179078CAB49254E3EE8] - 20/03/2011 - 09:05:03 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D9DCD0F3.pf

O45 - LFCP:[MD5.ABF7CA6DD09031733CB5FF2E2378D857] - 20/03/2011 - 09:06:18 ---A- - C:\Windows\Prefetch\CLEANMGR.EXE-1282D612.pf

O45 - LFCP:[MD5.B426E4810DB6CADAB31DDAA8BDEEADF8] - 20/03/2011 - 09:06:19 ---A- - C:\Windows\Prefetch\DISMHOST.EXE-13FCEA00.pf

O45 - LFCP:[MD5.A8BE47EAD55AFAFFBC25B5E45EC5EFE1] - 20/03/2011 - 09:07:08 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-67EC2DA7.pf

O45 - LFCP:[MD5.4740445031A623CC60569D16A8712B18] - 20/03/2011 - 09:07:11 ---A- - C:\Windows\Prefetch\DFRGUI.EXE-AD62D9FA.pf

O45 - LFCP:[MD5.4AC5A6152CDA468BA820030EB3EE79CE] - 20/03/2011 - 09:19:27 ---A- - C:\Windows\Prefetch\ASOELNCH.EXE-D76F4895.pf

O45 - LFCP:[MD5.E09FE7DFC78EF27DDFE1C7F43EC65D3C] - 20/03/2011 - 21:18:41 ---A- - C:\Windows\Prefetch\NCWMODULELIST.EXE-C3B5D348.pf

O45 - LFCP:[MD5.2DC750115E2E282D095889E38DF950A5] - 20/03/2011 - 23:04:08 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx

O45 - LFCP:[MD5.6A9E6303A0A0FEF977C77C6763D341DE] - 20/03/2011 - 23:05:09 ---A- - C:\Windows\Prefetch\AgCx_SC1.db

O45 - LFCP:[MD5.D170203FDB71177E8470B235AFADF190] - 20/03/2011 - 23:08:15 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2457555975-1631193541-3333612775-1000.db

O45 - LFCP:[MD5.6B63C5F00976AE8EDF079D2A31144F90] - 20/03/2011 - 23:08:15 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2457555975-1631193541-3333612775-1000.db

O45 - LFCP:[MD5.BDB38D54CDFDF1C6CD4B5E2DA420A8C5] - 20/03/2011 - 23:37:18 ---A- - C:\Windows\Prefetch\ZHPLITE.EXE-10E41244.pf

O45 - LFCP:[MD5.E393D05F968D6EA5C08908CE55F4566D] - 20/03/2011 - 23:37:18 ---A- - C:\Windows\Prefetch\ZHPLITE.TMP-C9884BAF.pf

O45 - LFCP:[MD5.64AABCBC898F44F05858D63FB3FF3C1B] - 20/03/2011 - 23:37:32 ---A- - C:\Windows\Prefetch\ADDALIAS.EXE-B123E120.pf

O45 - LFCP:[MD5.3EA5D76848D652E9958A2296E445566B] - 20/03/2011 - 23:37:32 ---A- - C:\Windows\Prefetch\MINIREG.EXE-208B4338.pf

O45 - LFCP:[MD5.A80EE48D8A4090168866BF8FDD64AB78] - 20/03/2011 - 23:42:25 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-661188F3.pf

O45 - LFCP:[MD5.824AB420D86C2CC35B00B8ACF14C5C57] - 20/03/2011 - 23:45:15 ---A- - C:\Windows\Prefetch\LADS.EXE-69ACEB7F.pf

O45 - LFCP:[MD5.259BE93E697768C047B79008280F070F] - 20/03/2011 - 23:45:16 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-6B5C2AD0.pf

O45 - LFCP:[MD5.76157091B839747177AEE219F7AC7534] - 20/03/2011 - 23:45:19 ---A- - C:\Windows\Prefetch\SIGCHECK.EXE-B47F0148.pf

O45 - LFCP:[MD5.7DF94DA8947F5B6922DBC9CCAA63BF44] - 20/03/2011 - 23:50:03 ---A- - C:\Windows\Prefetch\MBR.EXE-95722598.pf

O45 - LFCP:[MD5.38C088A50A64171A848F04AAC181CD27] - 20/03/2011 - 23:53:31 ---A- - C:\Windows\Prefetch\UNINS000.EXE-B7C729A4.pf

O45 - LFCP:[MD5.5DA7BC1D3AD69F23F4C455976F9CCEAE] - 20/03/2011 - 23:53:35 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-B8BCE167.pf

O45 - LFCP:[MD5.624DE4EBF905FA2820ACB696198DE44E] - 20/03/2011 - 23:57:07 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-576CF6B2.pf

O45 - LFCP:[MD5.B3F39AAF62FDE4AC7701F45A4A032468] - 20/03/2011 - 23:59:23 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A010D183.pf

O45 - LFCP:[MD5.E451A9F5FB838DA1DDA8DF8866922757] - 20/03/2011 - 23:59:26 ---A- - C:\Windows\Prefetch\VSSVC.EXE-6C8F0C66.pf

O45 - LFCP:[MD5.804541E407550BC5600A7EFA4574722F] - 20/03/2011 - 23:59:27 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6A249820.pf

O45 - LFCP:[MD5.B462F8C5B96D5A3D422AF7DE256B4431] - 21/03/2011 - 00:01:18 ---A- - C:\Windows\Prefetch\CCLEANER64.EXE-4469D777.pf

O45 - LFCP:[MD5.7E14D28F8BE225D17BB5E4C29FAD14CB] - 21/03/2011 - 00:13:08 ---A- - C:\Windows\Prefetch\ZHP_2.46.TMP-A924A795.pf

O45 - LFCP:[MD5.13A62CFE5A2929781A110F95A9990FB6] - 21/03/2011 - 00:13:31 ---A- - C:\Windows\Prefetch\ADDALIAS.EXE-CA3FF354.pf

O45 - LFCP:[MD5.EE411702BE8DD622BD0C96D4EE8D4ECB] - 21/03/2011 - 00:13:31 ---A- - C:\Windows\Prefetch\MINIREG.EXE-1F10FC8C.pf

O45 - LFCP:[MD5.2B1F58626A89F72D91948D7E29C21537] - 21/03/2011 - 00:26:00 ---A- - C:\Windows\Prefetch\MBRCHECK.EXE-ECF92C26.pf

O45 - LFCP:[MD5.A0816D232D85ADFE549CF07270E59D62] - 21/03/2011 - 00:26:45 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-6E1A6101.pf

O45 - LFCP:[MD5.B92E338A601910B94B0BC8ADA2462DFF] - 21/03/2011 - 00:27:36 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-AB22E9A6.pf

O45 - LFCP:[MD5.74B09B7FF29A0F3AB7E41E7346757BE1] - 21/03/2011 - 00:47:51 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-F639BD7E.pf

O45 - LFCP:[MD5.D9E06CD12CC7EA8ED37D13CB42D38916] - 21/03/2011 - 00:47:51 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin

O45 - LFCP:[MD5.1E0B1F021D9254054D87AA3569B104D7] - 21/03/2011 - 21:58:30 ---A- - C:\Windows\Prefetch\HPQTRA08.EXE-CEA16CB5.pf

O45 - LFCP:[MD5.B694A9600230C4F9BF42AFB91DEA9C9A] - 21/03/2011 - 21:58:30 ---A- - C:\Windows\Prefetch\IGFXEXT.EXE-C31ADD58.pf

O45 - LFCP:[MD5.35503BD6B2E4D384763A9F65CDC55466] - 21/03/2011 - 21:58:30 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-72B9DDB3.pf

O45 - LFCP:[MD5.92BD6886ABC0F4D6D4421236817D0D1B] - 21/03/2011 - 21:58:31 ---A- - C:\Windows\Prefetch\NOBUACTIVATION.EXE-C04CB489.pf

O45 - LFCP:[MD5.A9C5DA680EAF22177E638D2EEA9DCC69] - 21/03/2011 - 21:58:36 ---A- - C:\Windows\Prefetch\IASTORICON.EXE-1AEFF90D.pf

O45 - LFCP:[MD5.B21E8E1552C2DD53D31A59F4AABF89E8] - 21/03/2011 - 21:58:37 ---A- - C:\Windows\Prefetch\BACKUPMANAGERTRAY.EXE-2344B646.pf

O45 - LFCP:[MD5.E241D0324B70D41110D8D01C7C22B311] - 21/03/2011 - 21:58:37 ---A- - C:\Windows\Prefetch\LMANAGER.EXE-2C9803DF.pf

O45 - LFCP:[MD5.CBC1EDA176ABD2B3A731CA00C760C13D] - 21/03/2011 - 21:58:38 ---A- - C:\Windows\Prefetch\VIDEOWEBCAMERA.EXE-6BC6C15A.pf

O45 - LFCP:[MD5.92B49B498AF46E71CAF1742A4738DFAA] - 21/03/2011 - 21:58:41 ---A- - C:\Windows\Prefetch\LMWORKER.EXE-15877053.pf

O45 - LFCP:[MD5.66E27E14AC7A32CDD9009435244E39EF] - 21/03/2011 - 21:58:49 ---A- - C:\Windows\Prefetch\EPOWEREVENT.EXE-FE56A707.pf

O45 - LFCP:[MD5.3D2408DA4112C646ED5F5BFA0F04344D] - 21/03/2011 - 21:58:52 ---A- - C:\Windows\Prefetch\HPQSTE08.EXE-A880057E.pf

O45 - LFCP:[MD5.2110154AB143EA5F6EF500131EC7D0AD] - 21/03/2011 - 21:58:53 ---A- - C:\Windows\Prefetch\HPQBAM08.EXE-744309DA.pf

O45 - LFCP:[MD5.A7317EB55BBE6DE9A396521484E2539F] - 21/03/2011 - 21:58:55 ---A- - C:\Windows\Prefetch\HPQGPC01.EXE-ABA61901.pf

O45 - LFCP:[MD5.78ED29E4A05B2F61C9A0F2DA0971AA95] - 21/03/2011 - 21:58:59 ---A- - C:\Windows\Prefetch\CSC.EXE-F8803EEA.pf

O45 - LFCP:[MD5.5201A46827A12AD1AB606683EF56F6E3] - 21/03/2011 - 21:58:59 ---A- - C:\Windows\Prefetch\CVTRES.EXE-CB8485B0.pf

O45 - LFCP:[MD5.AF035F9344D32E7F96AB3F2C89015397] - 21/03/2011 - 21:59:24 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-8CE1A322.pf

O45 - LFCP:[MD5.3915F2F8474ED2FFD586308631E80912] - 21/03/2011 - 21:59:25 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-16B291C4.pf

O45 - LFCP:[MD5.842CA46270E39FB3D341E87C8CC292AF] - 21/03/2011 - 21:59:31 ---A- - C:\Windows\Prefetch\WSCSTUB.EXE-D392CC4B.pf

O45 - LFCP:[MD5.BE25995F8078F004692FD80FA4316560] - 21/03/2011 - 21:59:35 ---A- - C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-C93872B4.pf

O45 - LFCP:[MD5.C35B73400BC090B7FD79D1741ED954DD] - 21/03/2011 - 21:59:36 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-96070FE0.pf

O45 - LFCP:[MD5.00511F68766967E196AFD03CFA3C7B87] - 21/03/2011 - 22:00:20 ---A- - C:\Windows\Prefetch\HPSWP_CLIPBOOK.EXE-54D7BE1C.pf

O45 - LFCP:[MD5.B162073D5A656E9A23B3C7B169B9F313] - 21/03/2011 - 22:00:29 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-766EFF52.pf

O45 - LFCP:[MD5.96034C2EDDD4F0AFB3904B2148EFD843] - 21/03/2011 - 22:00:40 ---A- - C:\Windows\Prefetch\FLASHUTIL10N_ACTIVEX.EXE-C52F29C5.pf

O45 - LFCP:[MD5.028453D08AAB1D4CAFE72C311791D3D7] - 21/03/2011 - 22:00:42 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-8FFB1633.pf

O45 - LFCP:[MD5.773D9B5D867895C85FAB9F47150F8FAB] - 21/03/2011 - 22:01:07 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-CDBFC0F7.pf

O45 - LFCP:[MD5.CFBC5E8F4E29F94678B34335C01B612F] - 21/03/2011 - 22:01:16 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-A0F5E092.pf

O45 - LFCP:[MD5.FEF46AADEB0681CDB140E49D3CA47D3F] - 21/03/2011 - 22:01:23 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-BB21CD77.pf

O45 - LFCP:[MD5.6666E125A9B2CE3C3165C3DEC615BB59] - 21/03/2011 - 22:02:34 ---A- - C:\Windows\Prefetch\CLTLMH.EXE-71CFE440.pf

O45 - LFCP:[MD5.678CF24ADD2E97578F5E0CEC00BF378E] - 21/03/2011 - 22:10:18 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-31898C74.pf

O45 - LFCP:[MD5.2C390FF0F6E5A027BDAC7D112D4E666C] - 21/03/2011 - 22:10:18 ---A- - C:\Windows\Prefetch\WERMGR.EXE-F439C551.pf

O45 - LFCP:[MD5.C6B2B20B300A0A012FCC68DD0E9F15EB] - 21/03/2011 - 22:12:22 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-D49D3641.pf

O45 - LFCP:[MD5.25730A52387C8B92F7324A9FC5B4623F] - 21/03/2011 - 22:12:27 ---A- - C:\Windows\Prefetch\TASKENG.EXE-35FA9C06.pf

O45 - LFCP:[MD5.E24BBB18F7A2DA2624D005061ED87B62] - 21/03/2011 - 22:23:05 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-A033F7A0.pf

O45 - LFCP:[MD5.92F9A36EDB6353455684E0730BC82AEC] - 21/03/2011 - 22:31:09 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-18FC9E64.pf

O45 - LFCP:[MD5.B11443C9E57C2CFD8CCCD7BDA2821CE3] - 21/03/2011 - 22:33:14 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:[MD5.BEB9454E5172900F3C91FC162AC13844] - 21/03/2011 - 22:33:14 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:[MD5.E01BE8DC05AC2E35E411AD01FCF7BD9C] - 21/03/2011 - 22:33:14 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:[MD5.706B33BD602DF84677118E05A0C24E8B] - 21/03/2011 - 22:33:14 ---A- - C:\Windows\Prefetch\AgRobust.db

O45 - LFCP:[MD5.1ED8CFF740A22588A4A1171124A73DA4] - 21/03/2011 - 22:35:01 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-1CF42BC6.pf

O45 - LFCP:[MD5.EBE0E290ADD4150B1D46FD8FB8C07DC9] - 21/03/2011 - 22:35:02 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-44162447.pf

O45 - LFCP:[MD5.4C8694662E4546D37D8C31AF11C9A163] - 21/03/2011 - 22:35:02 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-69C456C3.pf

O45 - LFCP:[MD5.51F0FB42C8C001D373D024C833356554] - 21/03/2011 - 22:35:15 ---A- - C:\Windows\Prefetch\HIJACKTHIS.EXE-807A6A3E.pf

O45 - LFCP:[MD5.D062FE9FD3DBA78C508FF08543F611AD] - 21/03/2011 - 22:35:16 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-4B6CB38A.pf

O45 - LFCP:[MD5.25BCF67911A3350DFF83CE1F2A497ED7] - 21/03/2011 - 22:35:20 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-032BB3D8.pf

O45 - LFCP:[MD5.237CE12F49E3432ABCA7393259A744E4] - 21/03/2011 - 22:35:34 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-63B92852.pf

O45 - LFCP:[MD5.8C88161B5C571ADBE01C60415FD23F0D] - 21/03/2011 - 22:36:50 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-C5670914.pf

O45 - LFCP:[MD5.34595F4A9E4663C7EBC191FBCFA4C3A6] - 21/03/2011 - 22:37:28 ---A- - C:\Windows\Prefetch\ALU.EXE-FEA633E4.pf

O45 - LFCP:[MD5.CC27C92EAE72D92BACF24F40569456E3] - 21/03/2011 - 22:37:31 ---A- - C:\Windows\Prefetch\SD.EXE-96A677D5.pf

O45 - LFCP:[MD5.AA69BCB56892D8B86187001EFB4AB071] - 21/03/2011 - 22:37:35 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-E8B8DD29.pf

O45 - LFCP:[MD5.DB53CC25511EF5C77B717CC42189E4F3] - 21/03/2011 - 22:37:52 ---A- - C:\Windows\Prefetch\CONSENT.EXE-40419367.pf

O45 - LFCP:[MD5.C0AEDCAE7E5127512958364A9808512A] - 21/03/2011 - 22:37:57 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-6389524F.pf

O45 - LFCP:[MD5.C8E62C07CFDD27F9764515B97E801FDE] - 21/03/2011 - 22:38:03 ---A- - C:\Windows\Prefetch\ZHP_2.46.TMP-64519CA7.pf

O45 - LFCP:[MD5.D59303161CD59B165C73349B128BF5DD] - 21/03/2011 - 22:39:28 ---A- - C:\Windows\Prefetch\ZHP_2.46.EXE-1290BB7B.pf

O45 - LFCP:[MD5.72C0A2645AE0D6FD77A5334EAA25F05D] - 21/03/2011 - 22:39:28 ---A- - C:\Windows\Prefetch\ZHP_2.46.TMP-B7081C55.pf

O45 - LFCP:[MD5.2CB9EF5623BB7D3BBAB31971A24E7CDC] - 21/03/2011 - 22:39:51 ---A- - C:\Windows\Prefetch\ZHP2.EXE-F0FD9B9F.pf

O45 - LFCP:[MD5.CCC84A6D8C00659CB8D980947F199551] - 21/03/2011 - 22:40:19 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-2C401B7E.pf

O45 - LFCP:[MD5.65E711FB122CCDFFA0E73F334871449F] - 21/03/2011 - 22:40:22 ---A- - C:\Windows\Prefetch\CMD.EXE-6D6290C5.pf

O45 - LFCP:[MD5.6E46F3EB107206F9678E99C5258850A4] - 21/03/2011 - 22:40:22 ---A- - C:\Windows\Prefetch\CONHOST.EXE-0C6456FB.pf

O45 - LFCP:[MD5.6C893313B9FAF5F42F899B78C151033B] - 21/03/2011 - 22:40:22 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-DC1676CD.pf

 

 

---\\ Déni du service (Local Security Authority) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

 

 

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

 

 

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll

 

 

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

 

 

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]

O58 - SDL:[MD5.6EC6D772EAE38DC17C14AED9B178D24B] - 20/11/2010 - 14:32:46 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]

O58 - SDL:[MD5.1142A21DB581A84EA5597B03A26EBAA0] - 20/11/2010 - 14:32:47 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]

O58 - SDL:[MD5.5074CCA8927D5ED5D102EC48BB771E3F] - 02/03/2010 - 07:11:36 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1593384]

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]

O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 20/11/2010 - 14:33:35 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720]

O58 - SDL:[MD5.1384872112E8E7FD5786ECEB8BDDF4C9] - 13/04/2010 - 17:44:22 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [540696]

O58 - SDL:[MD5.3DF4395A7CF8B7A72A5F4606366B8C2D] - 20/11/2010 - 14:33:38 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]

O58 - SDL:[MD5.2D18C9E1F23970DE32D78D3B1CDDA0A7] - 02/09/2009 - 04:54:18 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd64.sys [7369728]

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]

O58 - SDL:[MD5.55480B9C63F3F91A8EBBADCBF28FE581] - 22/02/2010 - 11:03:44 ---A- . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controller.) -- C:\Windows\system32\drivers\L1C62x64.sys [75304]

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]

O58 - SDL:[MD5.3D3C4B63F11F63F50253E734F0ACE9F2] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [24152]

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]

O58 - SDL:[MD5.64DDD0DEE976302F4BD93E5EFCC2F013] - 06/05/2009 - 00:46:08 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [18432]

O58 - SDL:[MD5.5D9FD91F3D38DC9DA01E3CB5FA89CD48] - 20/11/2010 - 14:33:48 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]

O58 - SDL:[MD5.F7CD50FE7139F07E77DA8AC8033D1832] - 20/11/2010 - 14:33:48 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]

O58 - SDL:[MD5.1768CCC0CCDA73A5B3D7A17A3C52E870] - 23/03/2010 - 12:40:02 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [2304416]

O58 - SDL:[MD5.DB30AA4DAA0D492FA5D7717D8181FFA1] - 02/09/2009 - 02:58:08 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\system32\drivers\RtsUStor.sys [225280]

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]

O58 - SDL:[MD5.C1D8E28B2C2ADFAEC4BA89E9FDA69BD6] - 14/07/2009 - 01:00:40 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\serial.sys [94208]

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]

O58 - SDL:[MD5.3F9D5FE52585E2653E59FDBFDF09A94C] - 05/02/2011 - 08:23:37 ---A- . (.Symantec Corporation - Symantec Event Library.) -- C:\Windows\system32\drivers\SYMEVENT64x86.SYS [173104]

O58 - SDL:[MD5.BCF305959B53B200CEB2AD25AD22F8A7] - 18/06/2009 - 13:12:32 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [272432]

O58 - SDL:[MD5.2E22C1FD397A5A9FFEF55E9D1FC96C00] - 06/05/2009 - 00:46:08 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16896]

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]

O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [38224]

O58 - SDL:[MD5.DB30AA4DAA0D492FA5D7717D8181FFA1] - 02/09/2009 - 02:58:08 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\SysWOW64\drivers\RtsUStor.sys [225280]

 

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 18/03/2011 - 00:39:14 ---A- C:\Users\DOM\Downloads\soprano\Soprano - Je suis seul.mp3 [3474408]

O61 - LFC:Last File Created 18/03/2011 - 00:39:16 ---A- C:\Users\DOM\Downloads\soprano\Soprano - Hiro (Qualite CD).mp3 [7206323]

O61 - LFC:Last File Created 18/03/2011 - 00:44:40 ---A- C:\Users\DOM\Downloads\soprano\Techno-Crazy Shit- Tribal 1 this track rocks ( techno tekno acid rave jungle dj drum bass electronic funk vinyl dance industrial trance juno beat tech vs remix hardcore }.mp3 [1447936]

O61 - LFC:Last File Created 18/03/2011 - 01:52:34 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\definfo.dat [34]

O61 - LFC:Last File Created 18/03/2011 - 01:52:34 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\newdefs-trigger\trigger.dat [0]

O61 - LFC:Last File Created 18/03/2011 - 01:52:35 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\usage.dat [253]

O61 - LFC:Last File Created 18/03/2011 - 01:52:35 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IPS\IDSSettg.BAK [3236]

O61 - LFC:Last File Created 18/03/2011 - 01:52:35 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IPS\IDSSettg.dat [3236]

O61 - LFC:Last File Created 18/03/2011 - 02:16:48 ---A- C:\Users\DOM\Downloads\electro\Electro House 2010 (HOT MIX__) DJ BL3ND_HD.mp3 [13018220]

O61 - LFC:Last File Created 18/03/2011 - 04:03:48 ---A- C:\Users\DOM\Downloads\soprano\Magic System Feat. Soprano - Chérie Coco(1).mp3 [3634165]

O61 - LFC:Last File Created 18/03/2011 - 09:27:21 -SH-- C:\Users\DOM\Downloads\desktop.ini [432]

O61 - LFC:Last File Created 18/03/2011 - 09:34:34 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\local.dat [94]

O61 - LFC:Last File Created 18/03/2011 - 09:34:34 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref [6407589]

O61 - LFC:Last File Created 18/03/2011 - 09:34:45 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\config.dat [778]

O61 - LFC:Last File Created 18/03/2011 - 09:34:45 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\link.txt [115]

O61 - LFC:Last File Created 18/03/2011 - 09:34:45 ---A- C:\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware\news.txt [78]

O61 - LFC:Last File Created 18/03/2011 - 10:13:51 ---A- C:\Users\DOM\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2011-03-18 (10-13-51).txt [1063]

O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\DAAlert.dat [6802]

O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\EmailErr.dat [126]

O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\NasStatistics.dat [126]

O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\SMode.dat [4104]

O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\SModeApp.dat [126]

O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\UserTrustActions.dat [126]

O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\ced.dat [126]

O61 - LFC:Last File Created 18/03/2011 - 17:32:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\ncosites.dat [116]

O61 - LFC:Last File Created 19/03/2011 - 11:26:05 ----- C:\Users\DOM\AppData\Local\Temp\~DF673FCDB1A0FAE08A.TMP [163840]

O61 - LFC:Last File Created 19/03/2011 - 18:55:24 ---A- C:\Users\DOM\Documents\CPAT_seance3-1.pdf [47427]

O61 - LFC:Last File Created 19/03/2011 - 18:56:52 ---A- C:\Users\DOM\Documents\A9304.pdf [743522]

O61 - LFC:Last File Created 19/03/2011 - 18:57:47 ---A- C:\Users\DOM\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents [3072]

O61 - LFC:Last File Created 19/03/2011 - 19:49:14 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\QBackup\index.qbs [18000400]

O61 - LFC:Last File Created 20/03/2011 - 09:15:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\FOIMaster.db.bak [145408]

O61 - LFC:Last File Created 20/03/2011 - 21:18:57 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\ErrorManagement\SQClient.dat [5916]

O61 - LFC:Last File Created 20/03/2011 - 21:18:57 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\ErrorManagement\log.dat [8946]

O61 - LFC:Last File Created 20/03/2011 - 21:19:23 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\MrClean.db.bak [11347968]

O61 - LFC:Last File Created 20/03/2011 - 23:37:34 ---A- C:\Users\DOM\AppData\Local\Temp\BDE4266.BAK [396]

O61 - LFC:Last File Created 21/03/2011 - 00:05:57 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSubSDK\{BAB24654-4D6C-437A-8623-234BD6C1B7A2} [31088]

O61 - LFC:Last File Created 21/03/2011 - 00:06:05 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSubSDK\{13FEE537-39D3-4346-9E93-AFD9AC319B2F} [31088]

O61 - LFC:Last File Created 21/03/2011 - 00:16:54 ---A- C:\Users\DOM\AppData\Roaming\Microsoft\HTML Help\hh.dat [8590]

O61 - LFC:Last File Created 21/03/2011 - 00:47:40 --HA- C:\Users\DOM\AppData\Local\IconCache.db [3260907]

O61 - LFC:Last File Created 21/03/2011 - 00:47:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\ClientIDS.dat [125366]

O61 - LFC:Last File Created 21/03/2011 - 00:47:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\firewall.dat [126]

O61 - LFC:Last File Created 21/03/2011 - 00:47:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\navscan.dat [35591]

O61 - LFC:Last File Created 21/03/2011 - 00:47:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\navthr.dat [3066]

O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\dbinfo.BAK [988]

O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\dbinfo.DAT [988]

O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\settings_17.8.0.5.BAK [52332]

O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\settings_17.8.0.5.dat [52332]

O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\BashHeuristic.dat [126]

O61 - LFC:Last File Created 21/03/2011 - 00:47:54 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Logs\DADown.dat [18213]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\BASH\ShdSettg.dat [1083660]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\EmailProxy-Options.dat [180]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccJobMgr\ccJobMgr.dat [153004]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\user.BAK [316]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\user.DAT [316]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSubSDKConfiguration.dat [388764]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Connections\connections.dat [140]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{0693F93A-DEFD-22EE-B444-87D156D89593}.dat [492]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{0EE02A82-DEFD-22EE-A5D1-BCD156D89593}.dat [484]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{12589686-DEFD-22EE-9DA6-DDD156D89593}.dat [316]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{15150957-2A4A-4090-907E-CF14E7013A21}.dat [636]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{1EC30809-4D73-45e5-9FB7-4556BF2591F7}.dat [532]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{2F090208-20DC-42f0-BBD8-B68B472F7215}.dat [1036]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{352A29CB-F796-4122-A5C1-F8001F96A569}.dat [540]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{3AA31D7B-6C7D-4024-B1CC-E1055FA92A87}.dat [572]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{472D8358-D03B-4175-BD36-D479E4BBE105}.dat [428]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{511C2222-DEFD-22EE-B154-4A6A546B9793}.dat [1212]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{5779E169-C4E2-4487-B4B1-55A24863F4C6}.dat [316]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{591D2F72-6BF6-4E6D-AEE1-2C53200DE57E}.dat [564]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{5B8ECE68-E541-4109-81B9-4A024890F603}.dat [1220]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{5BD0D294-A689-4606-B58C-47A511ED1C14}.dat [484]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{5BD0D294-BEEF-4606-B58C-47A511ED1C14}.dat [1052]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{65190544-26C3-43a4-A78A-694964901607}.dat [412]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{65A6D59C-2C88-4a89-AB84-AA71433E4ABC}.dat [316]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{691538C6-034F-4d32-9A14-A53B8BAF68AF}.dat [476]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{69EDD4E1-116E-4773-A0AC-C59945720C2A}.dat [916]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{6A585666-3EAE-44c3-8821-711CCE3F2873}.dat [516]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{6C76977D-A5FD-452b-AAAF-51799B8EA9B4}.dat [540]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{6C817099-B8B4-4137-A53F-68B7EA75EC55}.dat [524]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{6E3396BD-C6A6-4f0f-9254-267F9058FEC4}.dat [1220]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{70623C4D-9D8A-4025-91D1-3307B948E7DD}.dat [484]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{70623C4D-BEEF-4025-91D1-3307B948E7DD}.dat [1052]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{71B3DD3A-BC1F-40cc-A74F-C0C30DFCE7D5}.dat [452]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{722AAC6D-419F-4e3d-A305-FDCBFBCA1877}.dat [524]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{7C40284F-C1DE-459c-A195-6D854DB8C783}.dat [508]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{89E020E9-BE3E-40cc-9C00-66A3FBA23106}.dat [1036]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{93545EED-DE0A-4efa-B44D-68C5CBF1D4F7}.dat [556]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{9BDDC6E8-4FBD-4449-A8CC-142376A325D5}.dat [1308]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{A96E24EE-101F-4f7f-887C-30680DCFF3E4}.dat [420]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{D418C996-433A-42df-8D3C-E1A24C0AD3C0}.dat [484]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{D4F4CC32-7A41-4684-AE57-41E59E9B4503}.dat [508]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{E038CE1B-EBFC-4b2d-BD0F-D9902DA5868C}.dat [492]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{E644497C-3550-4a24-B153-CB0F7A64ADFD}.dat [1044]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{E6941702-E564-4caf-84E1-572AEB95826F}.dat [484]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{EAFE83C3-B87E-4f46-BFF6-41D267B682F1}.dat [572]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{F9AF8C8D-BEEF-40db-A228-0F22ECC66E88}.dat [1052]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\DuLuCbkPkg\{F9AF8C8D-DED9-40db-A228-0F22ECC66E88}.dat [508]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\LuReg\{221C5684-9CB7-4e17-A839-71C374CAA376}.dat [516]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\LuReg\{D06948D5-FB30-4721-9983-45F86F6D2D85}.dat [508]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\LueDyn.dat [40452]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCO\WADomain.dat [3885596]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NPC\InstOpts.dat [1356]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NPC\Settings.dat [1140]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NPC\Support.dat [452]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NUM\Settings.dat [324]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\CAVENode.dat [820]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\LCset.dat [22500]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\ProdExcl.dat [204]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\asDynam.dat [876]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\set-priv.dat [35844]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\watchdog.dat [452]

O61 - LFC:Last File Created 21/03/2011 - 00:47:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\SRTSP\SrtspSet.dat [3916]

O61 - LFC:Last File Created 21/03/2011 - 00:47:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSubSDK\submissions.idx [4638072]

O61 - LFC:Last File Created 21/03/2011 - 10:26:57 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\SymWhite.irn [6969344]

O61 - LFC:Last File Created 21/03/2011 - 10:28:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\iron.grd [234]

O61 - LFC:Last File Created 21/03/2011 - 10:28:25 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\iron.sig [2611]

O61 - LFC:Last File Created 21/03/2011 - 10:28:25 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\virscan1.dat [16]

O61 - LFC:Last File Created 21/03/2011 - 20:10:09 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\20110321.007\virscan1.dat [32]

O61 - LFC:Last File Created 21/03/2011 - 20:10:10 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\20110321.007\v.grd [1336]

O61 - LFC:Last File Created 21/03/2011 - 20:10:15 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\20110321.007\v.sig [2611]

O61 - LFC:Last File Created 21/03/2011 - 21:57:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccGEvt\Global\LM2.dat [8844]

O61 - LFC:Last File Created 21/03/2011 - 21:57:23 R--A- C:\Users\All Users\BackupManager\Logs\SyncJob.log [8794]

O61 - LFC:Last File Created 21/03/2011 - 21:57:24 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\Sampler.dat [11252]

O61 - LFC:Last File Created 21/03/2011 - 21:57:28 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccGLog\LM.dat [4716]

O61 - LFC:Last File Created 21/03/2011 - 21:57:28 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\CAVDNode.dat [15228]

O61 - LFC:Last File Created 21/03/2011 - 21:57:31 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\symnetdrv\LocationMap.dat [148]

O61 - LFC:Last File Created 21/03/2011 - 21:57:40 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\symnetdrv\RULE_BAK.dat [51604]

O61 - LFC:Last File Created 21/03/2011 - 21:57:46 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\symnetdrv\RULE_CUR.dat [52484]

O61 - LFC:Last File Created 21/03/2011 - 21:57:50 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ErrorInstances\14680AD2\481691D5-17CC-4581-BF9A-59CC26C91C61.dat [35017]

O61 - LFC:Last File Created 21/03/2011 - 21:57:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\ErrorManagement\Queue\SQ_{B853ADDA-71B6-4E8E-8C0A-A2A93FC20FDF}\SQInfo.DAT [150]

O61 - LFC:Last File Created 21/03/2011 - 21:57:53 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\ErrorManagement\Queue\SQ_{B853ADDA-71B6-4E8E-8C0A-A2A93FC20FDF}\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}.etl [196608]

O61 - LFC:Last File Created 21/03/2011 - 21:58:18 ---A- C:\Users\All Users\Symantec\Norton Online Backup\NobuActivation.ini [865]

O61 - LFC:Last File Created 21/03/2011 - 21:58:18 ---A- C:\Users\DOM\AppData\Local\Temp\boost_interprocess\INI_FILE_MUTEX [20]

O61 - LFC:Last File Created 21/03/2011 - 21:58:19 ---A- C:\Users\DOM\AppData\Local\Temp\LManager.log [0]

O61 - LFC:Last File Created 21/03/2011 - 21:58:27 ---A- C:\Users\DOM\AppData\Local\Temp\MAR7203.tmp [1313]

O61 - LFC:Last File Created 21/03/2011 - 21:58:29 ---A- C:\Users\DOM\AppData\Local\Temp\aipflib.log [0]

O61 - LFC:Last File Created 21/03/2011 - 21:58:30 ---A- C:\Users\DOM\AppData\Local\Temp\LMworker.log [0]

O61 - LFC:Last File Created 21/03/2011 - 21:58:30 ---A- C:\Users\DOM\AppData\Local\Temp\~DF1E920799885A1B1C.TMP [163840]

O61 - LFC:Last File Created 21/03/2011 - 21:58:31 ---A- C:\Users\DOM\AppData\Local\Temp\MAR8037.tmp [1285]

O61 - LFC:Last File Created 21/03/2011 - 21:58:43 ---A- C:\Users\DOM\AppData\Local\Temp\hpqddusr.log [318]

O61 - LFC:Last File Created 21/03/2011 - 21:58:55 ---A- C:\Users\All Users\HP\ProductAssistant\data\EventStore.xml [178134]

O61 - LFC:Last File Created 21/03/2011 - 21:58:56 ---A- C:\Users\DOM\AppData\Local\Temp\RedboxLog.txt [2904]

O61 - LFC:Last File Created 21/03/2011 - 22:01:53 ---A- C:\Users\DOM\AppData\Local\Temp\AdobeARM.log [1642]

O61 - LFC:Last File Created 21/03/2011 - 22:03:25 ---A- C:\Users\DOM\AppData\Local\Temp\jusched.log [401]

O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20antispam$20definitions_microdefsb.curdefs_symalllanguages_livetri.zip [3661]

O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20ips$20definitions_microdefsb.curdefs_symalllanguages_livetri.zip [2681]

O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20iron$20whitelist_microdefsb.curdefs_symalllanguages_livetri.zip [3624]

O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20virus$20definitions$20x64_microdefsb.curdefs_symalllanguages_livetri.zip [5091]

O61 - LFC:Last File Created 21/03/2011 - 22:07:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20web$20protection$20definitions_microdefsb.curdefs_symalllanguages_livetri.zip [4219]

O61 - LFC:Last File Created 21/03/2011 - 22:07:43 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202010$20iron$20revocation$20list_microdefsb.curdefs_symalllanguages_livetri.zip [7559]

O61 - LFC:Last File Created 21/03/2011 - 22:07:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\catalog.dat [305]

O61 - LFC:Last File Created 21/03/2011 - 22:07:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\v.grd [301]

O61 - LFC:Last File Created 21/03/2011 - 22:07:55 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\20110321.005\v.sig [2611]

O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\symaveng.cat [8809]

O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\symaveng.inf [1062]

O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\v.grd [5257]

O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\v.sig [2611]

O61 - LFC:Last File Created 21/03/2011 - 22:07:56 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\virscant.dat [32]

O61 - LFC:Last File Created 21/03/2011 - 22:07:58 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\ESRDEF.BIN [7108596]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TCDEFS.DAT [14832917]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TCSCAN7.DAT [23413265]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TCSCAN8.DAT [164769]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TCSCAN9.DAT [561066]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TINF.DAT [453]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TINFL.DAT [1957]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\TSCAN1.DAT [74342]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN.INF [106244]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN1.DAT [1049425]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN2.DAT [574464]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN3.DAT [157232]

O61 - LFC:Last File Created 21/03/2011 - 22:07:59 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN4.DAT [320343]

O61 - LFC:Last File Created 21/03/2011 - 22:08:00 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN5.DAT [16068807]

O61 - LFC:Last File Created 21/03/2011 - 22:08:00 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN6.DAT [397913]

O61 - LFC:Last File Created 21/03/2011 - 22:08:01 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN7.DAT [131604689]

O61 - LFC:Last File Created 21/03/2011 - 22:08:02 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN8.DAT [997442]

O61 - LFC:Last File Created 21/03/2011 - 22:08:02 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VIRSCAN9.DAT [5419522]

O61 - LFC:Last File Created 21/03/2011 - 22:08:02 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\WHATSNEW.TXT [41089]

O61 - LFC:Last File Created 21/03/2011 - 22:08:08 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\definfo.dat [34]

O61 - LFC:Last File Created 21/03/2011 - 22:08:08 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\newdefs-trigger\trigger.dat [0]

O61 - LFC:Last File Created 21/03/2011 - 22:08:10 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\BASH\BHREGISTRYINFO.DB [146432]

O61 - LFC:Last File Created 21/03/2011 - 22:08:10 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\VIRSCAN1.DAT [16]

O61 - LFC:Last File Created 21/03/2011 - 22:08:11 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\lu.blrm.4 [775362]

O61 - LFC:Last File Created 21/03/2011 - 22:08:11 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\usage.dat [37]

O61 - LFC:Last File Created 21/03/2011 - 22:08:12 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\lu.intsigs [52952]

O61 - LFC:Last File Created 21/03/2011 - 22:08:12 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\lu.spamhunter.4 [293514]

O61 - LFC:Last File Created 21/03/2011 - 22:08:12 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\v.grd [569]

O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\20110321.002\v.sig [2611]

O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\definfo.dat [34]

O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\newdefs-trigger\trigger.dat [0]

O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\Revoke.irn [265216]

O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\catalog.dat [299]

O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\v.grd [367]

O61 - LFC:Last File Created 21/03/2011 - 22:08:13 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\v.sig [2611]

O61 - LFC:Last File Created 21/03/2011 - 22:08:14 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\20110321.008\virscan1.dat [16]

O61 - LFC:Last File Created 21/03/2011 - 22:08:14 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\definfo.dat [34]

O61 - LFC:Last File Created 21/03/2011 - 22:08:14 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\newdefs-trigger\trigger.dat [0]

O61 - LFC:Last File Created 21/03/2011 - 22:08:15 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\definfo.dat [34]

O61 - LFC:Last File Created 21/03/2011 - 22:08:15 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\newdefs-trigger\trigger.dat [0]

O61 - LFC:Last File Created 21/03/2011 - 22:08:15 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\usage.dat [37]

O61 - LFC:Last File Created 21/03/2011 - 22:08:19 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\definfo.dat [34]

O61 - LFC:Last File Created 21/03/2011 - 22:08:19 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\newdefs-trigger\trigger.dat [0]

O61 - LFC:Last File Created 21/03/2011 - 22:08:32 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\AntispamDefs\usage.dat [28]

O61 - LFC:Last File Created 21/03/2011 - 22:08:32 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronWhitelistDefs\usage.dat [33]

O61 - LFC:Last File Created 21/03/2011 - 22:08:36 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IronRevocationDefs\usage.dat [34]

O61 - LFC:Last File Created 21/03/2011 - 22:10:12 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\diStRptr\diStRptr.dat [372]

O61 - LFC:Last File Created 21/03/2011 - 22:10:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\lccfg.dat [4308]

O61 - LFC:Last File Created 21/03/2011 - 22:10:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\CmnClnt\ccSetMgr\volatile.DAT [1108]

O61 - LFC:Last File Created 21/03/2011 - 22:10:44 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Product\cltDynam.dat [26308]

O61 - LFC:Last File Created 21/03/2011 - 22:18:38 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\tagfiles\20110321.023.sst [1853]

O61 - LFC:Last File Created 21/03/2011 - 22:28:18 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCO\nppw.dat [643813]

O61 - LFC:Last File Created 21/03/2011 - 22:28:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\WebProtectionDefs\NcoDefs.ncz [2422520]

O61 - LFC:Last File Created 21/03/2011 - 22:28:34 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCO\WADB.dat [132]

O61 - LFC:Last File Created 21/03/2011 - 22:28:36 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCO\WACert.dat [9372]

O61 - LFC:Last File Created 21/03/2011 - 22:35:08 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\BASH\BHLINKS.DB [171008]

O61 - LFC:Last File Created 21/03/2011 - 22:37:22 ---A- C:\Users\All Users\Packard Bell\Packard Bell Updater\_UpdaterService_CFG.ini [94]

O61 - LFC:Last File Created 21/03/2011 - 22:37:22 ---A- C:\Users\All Users\Packard Bell\Packard Bell Updater\_UpdaterService_LOG.txt [111164]

O61 - LFC:Last File Created 21/03/2011 - 22:38:27 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\FOIMaster.db [147456]

O61 - LFC:Last File Created 21/03/2011 - 22:38:27 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\performance.db [4068352]

O61 - LFC:Last File Created 21/03/2011 - 22:39:21 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\BASH\BASHV2.DB [1294336]

O61 - LFC:Last File Created 21/03/2011 - 22:39:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IRON\Iron.db [16440320]

O61 - LFC:Last File Created 21/03/2011 - 22:39:42 ---A- C:\Users\DOM\AppData\Local\Temp\INMEM000.REM [0]

O61 - LFC:Last File Created 21/03/2011 - 22:40:41 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IRON\IronState.dat [5052]

O61 - LFC:Last File Created 21/03/2011 - 22:40:45 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\NCW\MrClean.db [11347968]

O61 - LFC:Last File Created 21/03/2011 - 22:43:41 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\streamset.dat [4357]

O61 - LFC:Last File Created 21/03/2011 - 22:43:41 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\Download.Resumption.Lue [31658]

O61 - LFC:Last File Created 21/03/2011 - 22:43:41 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Downloads\norton$202009$20streaming$20virus$20definitions_1.0_symalllanguages_livetri.zip [3743]

O61 - LFC:Last File Created 21/03/2011 - 22:43:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110321.002\VersionInfo.dat [164]

O61 - LFC:Last File Created 21/03/2011 - 22:43:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\tagfiles\20110321.024.sst [2504]

O61 - LFC:Last File Created 21/03/2011 - 22:43:42 ---A- C:\Users\All Users\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Lue\Logs\Log.Lue [683980]

 

 

---\\ Observateur d'évènement d'application (O66)

O66 - EventLog: ID=1000 (Application Error) - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Not Key.)

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

 

 

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

 

 

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} [DefaultScope] - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google

 

 

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "RemoteSvcAdmin-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\services.exe (.not file.)

O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe

O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe

O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)

O87 - FAEL: "{14A786FB-5F19-4274-AA54-81168896B1ED}" | In - Public - P6 - FALSE | .(.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) -- C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe

O87 - FAEL: "{DF0D9751-58B3-4AA3-B430-4424433CBABB}" | In - Public - P17 - FALSE | .(.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe

O87 - FAEL: "{2947FCCD-5A7C-4233-A965-148ECA6D968F}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

O87 - FAEL: "{B1E7BB6D-75D9-4848-948F-FC0DC451A801}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe

O87 - FAEL: "{6B08852C-D1A8-43C3-AA82-E1788E7E1595}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.)

O87 - FAEL: "{D5A07EB5-B0FB-4147-A320-EB6F6802D00F}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

O87 - FAEL: "{EF22E14F-303F-4953-9EA0-2783BD0F4BF6}" | In - None - P6 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Demand 09/10/2009 169312 | (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

SR - | Auto 03/03/2010 325200 | (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe

SR - | Auto 23/04/2010 867360 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe

SS - | Demand 26/07/2010 867080 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

SS - | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

SR - | Auto 08/01/2010 23584 | (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe

SR - | Auto 13/04/2010 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

SS - | Demand 15/01/2010 935208 | Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe

SR - | Auto 09/03/2010 250368 | (NTI IScheduleSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe

SR - | Auto 29/01/2010 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe

SR - | Auto 14/07/2009 20992 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, GMER - Rootkit Detector and Remover

Run by DOM at 21/03/2011 22:52:31

 

device: opened successfully

user: error reading MBR

 

Disk trace:

error: Read Descripteur non valide

kernel: error reading MBR

 

 

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by DOM at 21/03/2011 22:52:31

Use the desktop link 'MBRCheck' to have full report

Dump file Name : C:\PhysicalDisk0_MBR.bin

 

 

 

End of the scan (1152 lines in 12mn 15s)(0)

pear Devil Member !

pear

Posté(e)
Posté(e) (modifié)

Bonjour,

 

Pas d'infection visible.

 

 

Télécharger DeFogger de Jpshortstuff sur le bureau.

 

Double cliquer sur DeFogger pour démarrer l'outil.

 

La fenêtre de DeFogger apparaît

Cliquer sur le bouton Disable pour désactiver les drivers d'émulateurs CD.

Cliquer sur Yes pour continuer

Un message 'Finished!' apparaîtra

Cliquer sur OK

DeFogger demandera de redémarrer la machine, OK

 

Ne réactivez PAS ces drivers avant la fin de la désinfection

Vous cliquerez sur Enable pour réactiver.

 

 

 

Télécharger GMER

clic sur "Download EXE" et télécharger le fichier sur le bureau.

 

Désactiver les protection (antivirus, antispyware etc) et fermer tous les programmes ouverts.

Double-clic sur le fichier GMER téléchargé.

- Dans la section de droite de la fenêtre de l'outil, Vérifiez que soient décochées :

Show All

Une fois lancé, clic droit sur le fond blanc et clic sur "Only Non MS files"

Clic en bas à droite sur le bouton "Scan" pour lancer le scan.

 

GMER_ScanType.png

 

Lorsque le scan est terminé, clic sur "Copy"

 

Il peut arriver que GMER plante sans raison apparente.

Vous pouvez essayer ceci : décocher "Devices" dans un premier temps et repasser l'outil ;

si ça coince toujours, décocher en plus "Files" et ré-essayez un scan.

Lorsque les informations sur le scan s'affichent , les éléments détectés comme rootkit apparaissent en rouge dans chaque section.

Comme on ne verra pas la couleur, indiquez les dans votre message

 

 

Ouvrez le bloc-note et clic sur le Menu Edition / Coller

Le rapport doit alors apparaître.

Enregistrer le fichier sur le bureau et copier/coller le contenu.

Modifié par pear
DOM30 Junior Member

DOM30

Posté(e)
  • Auteur
Posté(e)

bonsoir pear merci pour votre reponse,je ne sais pas si defogger fonctione,j ai cliquer sur le lien puis telecharger le programe;j'ai obtenu un scan que je joint.quand a gmer je n'ai pas de rapport de scan si je decoche show all; donc je joint le scan obtenu avec la case coché.je voudrait savoir si je peut supprimer les lignes dans hijack 02 (no file) et 023 (file missing).

defogger_disable by jpshortstuff (23.02.10.1)

Log created at 13:57 on 23/03/2011 (DOM)

 

Checking for autostart values...

HKCU\~\Run values retrieved.

HKLM\~\Run values retrieved.

 

Checking for services/drivers...

 

 

-=E.O.F=-

GMER 1.0.15.15570 - GMER - Rootkit Detector and Remover

Rootkit scan 2011-03-23 22:10:11

Windows 6.1.7601 Service Pack 1

Running: uhg5s9j7.exe

 

 

---- Services - GMER 1.0.15 ----

 

Service .NET CLR Data

Service .NET CLR Networking

Service .NET CLR Networking 4.0.0.0

Service .NET Data Provider for Oracle

Service .NET Data Provider for SqlServer

Service .NETFramework

Service system32\drivers\1394ohci.sys (1394 OpenHCI Port Driver/Microsoft Corporation) [MANUAL] 1394ohci

Service system32\drivers\ACPI.sys (Pilote ACPI pour NT/Microsoft Corporation) [bOOT] ACPI

Service system32\drivers\acpipmi.sys (ACPI Power Metering Driver/Microsoft Corporation) [MANUAL] AcpiPmi

Service c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe (Adobe Photoshop Elements 8.0 (component)/Adobe Systems Incorporated) [MANUAL] AdobeActiveFileMonitor8.0

Service system32\DRIVERS\adp94xx.sys (Adaptec Windows SAS/SATA Storport Driver/Adaptec, Inc.) [MANUAL] adp94xx

Service system32\DRIVERS\adpahci.sys (Adaptec Windows SATA Storport Driver/Adaptec, Inc.) [MANUAL] adpahci

Service system32\DRIVERS\adpu320.sys (Adaptec StorPort Ultra320 SCSI Driver (X64)/Adaptec, Inc.) [MANUAL] adpu320

Service adsi

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] AeLookupSvc

Service system32\drivers\afd.sys (Ancillary Function Driver for WinSock/Microsoft Corporation) [sYSTEM] AFD

Service system32\drivers\agp440.sys (Filtre AGP 440 NT/Microsoft Corporation) [MANUAL] agp440

Service C:\Windows\System32\alg.exe (Service de la passerelle de la couche Application/Microsoft Corporation) [MANUAL] ALG

Service system32\drivers\aliide.sys (ALi mini IDE Driver/Acer Laboratories Inc.) [MANUAL] aliide

Service system32\drivers\amdide.sys (Pilote IDE AMD/Microsoft Corporation) [MANUAL] amdide

Service system32\DRIVERS\amdk8.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] AmdK8

Service system32\DRIVERS\amdppm.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] AmdPPM

Service system32\drivers\amdsata.sys (AHCI 1.2 Device Driver/Advanced Micro Devices) [MANUAL] amdsata

Service system32\DRIVERS\amdsbs.sys (AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform/AMD Technologies Inc.) [MANUAL] amdsbs

Service system32\drivers\amdxata.sys (Storage Filter Driver/Advanced Micro Devices) [bOOT] amdxata

Service system32\drivers\appid.sys (AppID Driver/Microsoft Corporation) [MANUAL] AppID

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] AppIDSvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] Appinfo

Service system32\DRIVERS\arc.sys (Adaptec RAID Storport Driver/Adaptec, Inc.) [MANUAL] arc

Service system32\DRIVERS\arcsas.sys (Adaptec SAS RAID WS03 Driver/Adaptec, Inc.) [MANUAL] arcsas

Service system32\DRIVERS\asyncmac.sys (MS Remote Access serial network driver/Microsoft Corporation) [MANUAL] AsyncMac

Service system32\drivers\atapi.sys (ATAPI IDE Miniport Driver/Microsoft Corporation) [bOOT] atapi

Service system32\DRIVERS\athrx.sys (Atheros Extensible Wireless LAN device driver/Atheros Communications, Inc.) [MANUAL] athr

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] AudioEndpointBuilder

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] AudioSrv

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] AxInstSV

Service system32\DRIVERS\bxvbda.sys (Broadcom NetXtreme II GigE VBD/Broadcom Corporation) [MANUAL] b06bdrv

Service system32\DRIVERS\b57nd60a.sys (Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver./Broadcom Corporation) [MANUAL] b57nd60a

Service (Battery Class Driver/Microsoft Corporation) BattC

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] BDESVC

Service (BEEP Driver/Microsoft Corporation) [sYSTEM] Beep

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] BFE

Service C:\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\BASHDefs\20110309.001\BHDrvx64.sys [sYSTEM] BHDrvx64

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] BITS

Service system32\DRIVERS\blbdrive.sys (BLB Drive Driver/Microsoft Corporation) [sYSTEM] blbdrive

Service system32\DRIVERS\bowser.sys (NT Lan Manager Datagram Receiver Driver/Microsoft Corporation) [MANUAL] bowser

Service system32\DRIVERS\BrFiltLo.sys (Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltLo

Service system32\DRIVERS\BrFiltUp.sys (Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltUp

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] Browser

Service System32\Drivers\Brserid.sys (Pilote Brother Série I/F (WDM)/Brother Industries Ltd.) [MANUAL] Brserid

Service System32\Drivers\BrSerWdm.sys (Brother Serial driver (WDM version)/Brother Industries Ltd.) [MANUAL] BrSerWdm

Service System32\Drivers\BrUsbMdm.sys (Brother USB MDM Driver /Brother Industries Ltd.) [MANUAL] BrUsbMdm

Service System32\Drivers\BrUsbSer.sys (Brother USB Serial Driver/Brother Industries Ltd.) [MANUAL] BrUsbSer

Service system32\DRIVERS\bthmodem.sys (Bluetooth Communications Driver/Microsoft Corporation) [MANUAL] BTHMODEM

Service BTHPORT

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] bthserv

Service system32\drivers\NISx64\1108000.005\ccHPx64.sys (Common Client Hash Provider Driver/Symantec Corporation) [sYSTEM] ccHP

Service system32\DRIVERS\cdfs.sys (CD-ROM File System Driver/Microsoft Corporation) [DISABLED] cdfs

Service system32\drivers\cdrom.sys (SCSI CD-ROM Driver/Microsoft Corporation) [sYSTEM] cdrom

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] CertPropSvc

Service system32\DRIVERS\circlass.sys (Consumer IR Class Driver for eHome/Microsoft Corporation) [MANUAL] circlass

Service System32\CLFS.sys (Common Log File System Driver/Microsoft Corporation) [bOOT] CLFS

Service C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [DISABLED] clr_optimization_v2.0.50727_32

Service C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [DISABLED] clr_optimization_v2.0.50727_64

Service C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [AUTO] clr_optimization_v4.0.30319_32

Service C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (.NET Runtime Optimization Service/Microsoft Corporation) [AUTO] clr_optimization_v4.0.30319_64

Service system32\DRIVERS\CmBatt.sys (Control Method Battery Driver/Microsoft Corporation) [MANUAL] CmBatt

Service system32\drivers\cmdide.sys (CMD PCI IDE Bus Driver/CMD Technology, Inc.) [MANUAL] cmdide

Service System32\Drivers\cng.sys (Kernel Cryptography, Next Generation/Microsoft Corporation) [bOOT] CNG

Service system32\DRIVERS\compbatt.sys (Composite Battery Driver/Microsoft Corporation) [bOOT] Compbatt

Service system32\drivers\CompositeBus.sys (Multi-Transport Composite Bus Enumerator/Microsoft Corporation) [MANUAL] CompositeBus

Service C:\Windows\system32\dllhost.exe (COM Surrogate/Microsoft Corporation) [MANUAL] COMSysApp

Service system32\DRIVERS\crcdisk.sys (Disk Block Verification Filter Driver/Microsoft Corporation) [DISABLED] crcdisk

Service crypt32

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] CryptSvc

Service DCLocator

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] DcomLaunch

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] defragsvc

Service System32\Drivers\dfsc.sys (DFS Namespace Client Driver/Microsoft Corporation) [sYSTEM] DfsC

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Dhcp

Service System32\drivers\discache.sys (System Indexer/Cache Driver/Microsoft Corporation) [sYSTEM] discache

Service system32\DRIVERS\disk.sys (PnP Disk Driver/Microsoft Corporation) [bOOT] Disk

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Dnscache

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] dot3svc

Service system32\DRIVERS\Dot4.sys (IEEE-1284.4-1999 Driver/Microsoft Corporation) [MANUAL] Dot4

Service system32\drivers\Dot4Prt.sys (IEEE-1284.4 Print Class Driver/Microsoft Corporation) [MANUAL] Dot4Print

Service system32\DRIVERS\dot4usb.sys (Pilote de filtre DOT4USB/Microsoft Corporation) [MANUAL] dot4usb

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] DPS

Service system32\drivers\drmkaud.sys (Microsoft Trusted Audio Drivers/Microsoft Corporation) [MANUAL] drmkaud

Service C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek WMI Service/Dritek System Inc.) [AUTO] DsiWMIService

Service System32\drivers\dxgkrnl.sys (DirectX Graphics Kernel/Microsoft Corporation) [MANUAL] DXGKrnl

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] EapHost

Service system32\DRIVERS\evbda.sys (Broadcom NetXtreme II 10 GigE VBD/Broadcom Corporation) [MANUAL] ebdrv

Service C:\??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [sYSTEM] eeCtrl

Service C:\Windows\System32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] EFS

Service C:\Windows\ehome\ehRecvr.exe (Service de réception Windows Media Center/Microsoft Corporation) [MANUAL] ehRecvr

Service C:\Windows\ehome\ehsched.exe (Service de planification Windows Media Center/Microsoft Corporation) [MANUAL] ehSched

Service system32\DRIVERS\elxstor.sys (Storport Miniport Driver for LightPulse HBAs/Emulex) [MANUAL] elxstor

Service C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe (ePowerSvc/Acer Incorporated) [AUTO] ePowerSvc

Service C:\??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [MANUAL] EraserUtilRebootDrv

Service system32\drivers\errdev.sys (Error Device Driver/Microsoft Corporation) [MANUAL] ErrDev

Service ESENT

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] eventlog

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] EventSystem

Service (Microsoft Extended FAT File System/Microsoft Corporation) [MANUAL] exfat

Service (Fast FAT File System Driver/Microsoft Corporation) [MANUAL] fastfat

Service C:\Windows\system32\fxssvc.exe (Fax Service/Microsoft Corporation) [MANUAL] Fax

Service system32\DRIVERS\fdc.sys (Floppy Disk Controller Driver/Microsoft Corporation) [MANUAL] fdc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] fdPHost

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] FDResPub

Service system32\drivers\fileinfo.sys (FileInfo Filter Driver/Microsoft Corporation) [bOOT] FileInfo

Service system32\drivers\filetrace.sys (File Trace Filter Driver/Microsoft Corporation) [MANUAL] Filetrace

Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Activation Licensing Service/Acresso Software Inc.) [MANUAL] FLEXnet Licensing Service

Service system32\DRIVERS\flpydisk.sys (Floppy Driver/Microsoft Corporation) [MANUAL] flpydisk

Service system32\drivers\fltmgr.sys (Gestionnaire de filtres de système de fichiers Microsoft/Microsoft Corporation) [bOOT] FltMgr

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] FontCache

Service C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (PresentationFontCache.exe/Microsoft Corporation) [MANUAL] FontCache3.0.0.0

Service System32\drivers\FsDepends.sys (File System Dependency Manager Mini Filter Driver/Microsoft Corporation) [MANUAL] FsDepends

Service (File System Recognizer Driver/Microsoft Corporation) [bOOT] Fs_Rec

Service System32\DRIVERS\fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation) [bOOT] fvevol

Service system32\DRIVERS\gagp30kx.sys (Filtre AGPv3.0 générique Microsoft pour plateformes de processeur K8/9/Microsoft Corporation) [MANUAL] gagp30kx

Service C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (GamesAppService/WildTangent, Inc.) [MANUAL] GamesAppService

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] gpsvc

Service C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe (Global Registration Service/Acer Incorporated) [AUTO] GREGService

Service system32\drivers\hcw85cir.sys (Hauppauge WinTV 885 Consumer IR Driver for eHome/Hauppauge Computer Works, Inc.) [MANUAL] hcw85cir

Service system32\drivers\HdAudio.sys (High Definition Audio Function Driver/Microsoft Corporation) [MANUAL] HdAudAddService

Service system32\drivers\HDAudBus.sys (High Definition Audio Bus Driver/Microsoft Corporation) [MANUAL] HDAudBus

Service system32\DRIVERS\HidBatt.sys (Hid Battery Driver/Microsoft Corporation) [MANUAL] HidBatt

Service system32\DRIVERS\hidbth.sys (Pilote de miniport Bluetooth pour les périphériques HID/Microsoft Corporation) [MANUAL] HidBth

Service system32\DRIVERS\hidir.sys (Infrared Miniport Driver for Input Devices/Microsoft Corporation) [MANUAL] HidIr

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] hidserv

Service system32\drivers\hidusb.sys (USB Miniport Driver for Input Devices/Microsoft Corporation) [MANUAL] HidUsb

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] hkmsvc

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] HomeGroupListener

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] HomeGroupProvider

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] hpqcxs08

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] hpqddsvc

Service system32\drivers\HpSAMD.sys (Smart Array SAS/SATA Controller Media Driver/Hewlett-Packard Company) [MANUAL] HpSAMD

Service system32\drivers\HTTP.sys (HTTP Pile du protocole/Microsoft Corporation) [MANUAL] HTTP

Service System32\drivers\hwpolicy.sys (Hardware Policy Driver/Microsoft Corporation) [bOOT] hwpolicy

Service system32\drivers\i8042prt.sys (Pilote de port i8042/Microsoft Corporation) [MANUAL] i8042prt

Service ialm

Service system32\DRIVERS\iaStor.sys (Intel Rapid Storage Technology driver - x64/Intel Corporation) [bOOT] iaStor

Service C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe (IAStorDataSvc/Intel Corporation) [AUTO] IAStorDataMgrSvc

Service system32\drivers\iaStorV.sys (Intel Matrix Storage Manager driver - x64/Intel Corporation) [MANUAL] iaStorV

Service C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe (Windows CardSpace/Microsoft Corporation) [MANUAL] idsvc

Service C:\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\20110317.005\IDSvia64.sys [sYSTEM] IDSVia64

Service system32\DRIVERS\igdkmd64.sys (Intel Graphics Kernel Mode Driver/Intel Corporation) [MANUAL] igfx

Service system32\DRIVERS\iirsp.sys (Intel/ICP Raid Storport Driver/Intel Corp./ICP vortex GmbH) [MANUAL] iirsp

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] IKEEXT

Service inetaccs

Service system32\drivers\RTKVHD64.sys (Realtek® High Definition Audio Function Driver/Realtek Semiconductor Corp.) [MANUAL] IntcAzAudAddService

Service system32\drivers\intelide.sys (Intel PCI IDE Driver/Microsoft Corporation) [MANUAL] intelide

Service system32\DRIVERS\intelppm.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] intelppm

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] IPBusEnum

Service system32\DRIVERS\ipfltdrv.sys (IP FILTER DRIVER/Microsoft Corporation) [MANUAL] IpFilterDriver

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] iphlpsvc

Service system32\drivers\IPMIDrv.sys (PILOT IPMI WMI/Microsoft Corporation) [MANUAL] IPMIDRV

Service System32\drivers\ipnat.sys (IP Network Address Translator/Microsoft Corporation) [MANUAL] IPNAT

Service system32\drivers\irenum.sys (Infra-Red Bus Enumerator/Microsoft Corporation) [MANUAL] IRENUM

Service system32\drivers\isapnp.sys (Pilote de bus PNP ISA/Microsoft Corporation) [MANUAL] isapnp

Service system32\drivers\msiscsi.sys (Microsoft iSCSI Initiator Driver/Microsoft Corporation) [MANUAL] iScsiPrt

Service system32\drivers\kbdclass.sys (Pilote de la classe Clavier/Microsoft Corporation) [MANUAL] kbdclass

Service system32\drivers\kbdhid.sys (Pilote de filtre clavier HID/Microsoft Corporation) [MANUAL] kbdhid

Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] KeyIso

Service System32\Drivers\ksecdd.sys (Kernel Security Support Provider Interface/Microsoft Corporation) [bOOT] KSecDD

Service System32\Drivers\ksecpkg.sys (Kernel Security Support Provider Interface Packages/Microsoft Corporation) [bOOT] KSecPkg

Service system32\drivers\ksthunk.sys (Kernel Streaming WOW Thunk Service/Microsoft Corporation) [MANUAL] ksthunk

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] KtmRm

Service system32\DRIVERS\L1C62x64.sys (Atheros L1c PCI-E Gigabit Ethernet Controller/Atheros Communications, Inc.) [MANUAL] L1C

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] LanmanServer

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] LanmanWorkstation

Service ldap

Service system32\DRIVERS\lltdio.sys (Link-Layer Topology Mapper I/O Driver/Microsoft Corporation) [AUTO] lltdio

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] lltdsvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] lmhosts

Service Lsa

Service system32\DRIVERS\lsi_fc.sys (LSI Fusion-MPT FC Driver (StorPort)/LSI Corporation) [MANUAL] LSI_FC

Service system32\DRIVERS\lsi_sas.sys (LSI Fusion-MPT SAS Driver (StorPort)/LSI Corporation) [MANUAL] LSI_SAS

Service system32\DRIVERS\lsi_sas2.sys (LSI SAS Gen2 Driver (StorPort)/LSI Corporation) [MANUAL] LSI_SAS2

Service system32\DRIVERS\lsi_scsi.sys (LSI Fusion-MPT SCSI Driver (StorPort)/LSI Corporation) [MANUAL] LSI_SCSI

Service system32\drivers\luafv.sys (Pilote de filtre de virtualisation de fichier LUA/Microsoft Corporation) [AUTO] luafv

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [DISABLED] Mcx2Svc

Service system32\DRIVERS\megasas.sys (MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64/LSI Corporation) [MANUAL] megasas

Service system32\DRIVERS\MegaSR.sys (LSI MegaRAID Software RAID Driver/LSI Corporation, Inc.) [MANUAL] MegaSR

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] MMCSS

Service system32\drivers\modem.sys (Pilote de périphérique modem/Microsoft Corporation) [MANUAL] Modem

Service system32\DRIVERS\monitor.sys (Monitor Driver/Microsoft Corporation) [MANUAL] monitor

Service system32\drivers\mouclass.sys (Pilote de la classe Souris/Microsoft Corporation) [MANUAL] mouclass

Service system32\DRIVERS\mouhid.sys (Pilote de filtre souris HID/Microsoft Corporation) [MANUAL] mouhid

Service System32\drivers\mountmgr.sys (Gestionnaire des points de montage/Microsoft Corporation) [bOOT] mountmgr

Service system32\drivers\mpio.sys (Pilote du bus de prise en charge des chemins d’accès multiples/Microsoft Corporation) [MANUAL] mpio

Service System32\drivers\mpsdrv.sys (Microsoft Protection Service Driver/Microsoft Corporation) [MANUAL] mpsdrv

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] MpsSvc

Service system32\drivers\mrxdav.sys (Windows NT WebDav Minirdr/Microsoft Corporation) [MANUAL] MRxDAV

Service system32\DRIVERS\mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation) [MANUAL] mrxsmb

Service system32\DRIVERS\mrxsmb10.sys (Longhorn SMB Downlevel SubRdr/Microsoft Corporation) [MANUAL] mrxsmb10

Service system32\DRIVERS\mrxsmb20.sys (Longhorn SMB 2.0 Redirector/Microsoft Corporation) [MANUAL] mrxsmb20

Service system32\drivers\msahci.sys (MS AHCI 1.0 Standard Driver/Microsoft Corporation) [MANUAL] msahci

Service system32\drivers\msdsm.sys (Module spécifique de périphériques Microsoft/Microsoft Corporation) [MANUAL] msdsm

Service C:\Windows\System32\msdtc.exe (Service Microsoft Distributed Transaction Coordinator/Microsoft Corporation) [MANUAL] MSDTC

Service MSDTC Bridge 3.0.0.0

Service MSDTC Bridge 4.0.0.0

Service (Mailslot driver/Microsoft Corporation) [sYSTEM] Msfs

Service System32\drivers\mshidkmdf.sys (Pass-through HID to KMDF Filter Driver/Microsoft Corporation) [MANUAL] mshidkmdf

Service system32\drivers\msisadrv.sys (ISA Driver/Microsoft Corporation) [bOOT] msisadrv

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] MSiSCSI

Service C:\Windows\system32\msiexec.exe (Installateur Windows®/Microsoft Corporation) [MANUAL] msiserver

Service system32\drivers\MSKSSRV.sys (MS KS Server/Microsoft Corporation) [MANUAL] MSKSSRV

Service system32\drivers\MSPCLOCK.sys (MS Proxy Clock/Microsoft Corporation) [MANUAL] MSPCLOCK

Service system32\drivers\MSPQM.sys (MS Proxy Quality Manager/Microsoft Corporation) [MANUAL] MSPQM

Service (Kernel Remote Procedure Call Provider/Microsoft Corporation) [MANUAL] MsRPC

Service MSSCNTRS

Service system32\drivers\mssmbios.sys (System Management BIOS Driver/Microsoft Corporation) [sYSTEM] mssmbios

Service system32\drivers\MSTEE.sys (WDM Tee/Communication Transform Filter /Microsoft Corporation) [MANUAL] MSTEE

Service system32\DRIVERS\MTConfig.sys (Pilote HID multipoint Microsoft/Microsoft Corporation) [MANUAL] MTConfig

Service System32\Drivers\mup.sys (Multiple UNC Provider Driver/Microsoft Corporation) [bOOT] Mup

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] napagent

Service system32\DRIVERS\nwifi.sys (Pilote de miniport WiFi natif/Microsoft Corporation) [MANUAL] NativeWifiP

Service C:\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110322.035\ENG64.SYS [MANUAL] NAVENG

Service C:\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20110322.035\EX64.SYS [MANUAL] NAVEX15

Service system32\drivers\ndis.sys (Pilote NDIS 6.20/Microsoft Corporation) [bOOT] NDIS

Service system32\DRIVERS\ndiscap.sys (NDIS Packet Capture Filter Driver/Microsoft Corporation) [MANUAL] NdisCap

Service system32\DRIVERS\ndistapi.sys (NDIS 3.0 connection wrapper driver/Microsoft Corporation) [MANUAL] NdisTapi

Service system32\DRIVERS\ndisuio.sys (Pilote d’E/S du mode utilisateur NDIS/Microsoft Corporation) [MANUAL] Ndisuio

Service system32\DRIVERS\ndiswan.sys (MS PPP Framing Driver (Strong Encryption)/Microsoft Corporation) [MANUAL] NdisWan

Service (NDIS Proxy/Microsoft Corporation) [MANUAL] NDProxy

Service C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nero BackItUp/Nero AG) [MANUAL] Nero BackItUp Scheduler 4.0

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Net Driver HPZ12

Service system32\DRIVERS\netbios.sys (NetBIOS interface driver/Microsoft Corporation) [sYSTEM] NetBIOS

Service System32\DRIVERS\netbt.sys (MBT Transport driver/Microsoft Corporation) [sYSTEM] NetBT

Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] Netlogon

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] Netman

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] netprofm

Service C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe (SMSvcHost.exe/Microsoft Corporation) [DISABLED] NetTcpPortSharing

Service system32\DRIVERS\nfrd960.sys (IBM ServeRAID Controller Driver/IBM Corporation) [MANUAL] nfrd960

Service C:\Program Files (x86)\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe (Symantec Service Framework/Symantec Corporation) [AUTO] NIS

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] NlaSvc

Service (NPFS Driver/Microsoft Corporation) [sYSTEM] Npfs

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] nsi

Service system32\drivers\nsiproxy.sys (NSI Proxy/Microsoft Corporation) [sYSTEM] nsiproxy

Service NTDS

Service (Pilote du système de fichiers NT/Microsoft Corporation) [MANUAL] Ntfs

Service C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe (Backup Manager Module/NewTech Infosystems, Inc.) [AUTO] NTI IScheduleSvc

Service C:\Windows\system32\drivers\NTIDrvr.sys (NTI CD-ROM Filter Driver/NewTech Infosystems, Inc.) [MANUAL] NTIDrvr

Service (NULL Driver/Microsoft Corporation) [sYSTEM] Null

Service system32\drivers\nvraid.sys (NVIDIA® nForce RAID Driver/NVIDIA Corporation) [MANUAL] nvraid

Service system32\drivers\nvstor.sys (NVIDIA® nForce Sata Performance Driver/NVIDIA Corporation) [MANUAL] nvstor

Service system32\drivers\nv_agp.sys (Filtre AGP NForce NT/Microsoft Corporation) [MANUAL] nv_agp

Service system32\drivers\ohci1394.sys (1394 OpenHCI Port Driver/Microsoft Corporation) [MANUAL] ohci1394

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] p2pimsvc

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] p2psvc

Service system32\DRIVERS\parport.sys (Pilote de port parallèle/Microsoft Corporation) [MANUAL] Parport

Service System32\drivers\partmgr.sys (Partition Management Driver/Microsoft Corporation) [bOOT] partmgr

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] PcaSvc

Service system32\drivers\pci.sys (Énumérateur Plug-and-Play PCI pour NT/Microsoft Corporation) [bOOT] pci

Service system32\drivers\pciide.sys (Generic PCI IDE Bus Driver/Microsoft Corporation) [MANUAL] pciide

Service system32\DRIVERS\pcmcia.sys (Pilote de bus PCMCIA/Microsoft Corporation) [MANUAL] pcmcia

Service System32\drivers\pcw.sys (Performance Counters for Windows Driver/Microsoft Corporation) [bOOT] pcw

Service system32\drivers\peauth.sys (Protected Environment Authentication and Authorization Export Driver/Microsoft Corporation) [AUTO] PEAUTH

Service PerfDisk

Service C:\Windows\SysWow64\perfhost.exe (Hôte de DLL de compteur de performance/Microsoft Corporation) [MANUAL] PerfHost

Service PerfNet

Service PerfOS

Service PerfProc

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] pla

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] PlugPlay

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Pml Driver HPZ12

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] PNRPAutoReg

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] PNRPsvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] PolicyAgent

Service PortProxy

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Power

Service system32\DRIVERS\raspptp.sys (Peer-to-Peer Tunneling Protocol/Microsoft Corporation) [MANUAL] PptpMiniport

Service system32\DRIVERS\processr.sys (Processor Device Driver/Microsoft Corporation) [MANUAL] Processor

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] ProfSvc

Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] ProtectedStorage

Service system32\DRIVERS\pacer.sys (Planificateur de paquets QoS/Microsoft Corporation) [sYSTEM] Psched

Service System32\Drivers\PxHlpa64.sys (Px Engine Device Driver for 64-bit Windows/Sonic Solutions) [bOOT] PxHlpa64

Service system32\DRIVERS\ql2300.sys (QLogic Fibre Channel Stor Miniport Driver/QLogic Corporation) [MANUAL] ql2300

Service system32\DRIVERS\ql40xx.sys (QLogic iSCSI Storport Miniport Driver/QLogic Corporation) [MANUAL] ql40xx

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] QWAVE

Service system32\drivers\qwavedrv.sys (Pilote du support de Microsoft Quality Windows Audio Video Experience (qWave)/Microsoft Corporation) [MANUAL] QWAVEdrv

Service System32\DRIVERS\rasacd.sys (RAS Automatic Connection Driver/Microsoft Corporation) [MANUAL] RasAcd

Service system32\DRIVERS\AgileVpn.sys (RAS Agile Vpn Miniport Call Manager/Microsoft Corporation) [MANUAL] RasAgileVpn

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] RasAuto

Service system32\DRIVERS\rasl2tp.sys (RAS L2TP mini-port/call-manager driver/Microsoft Corporation) [MANUAL] Rasl2tp

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] RasMan

Service system32\DRIVERS\raspppoe.sys (RAS PPPoE mini-port/call-manager driver/Microsoft Corporation) [MANUAL] RasPppoe

Service system32\DRIVERS\rassstp.sys (RAS SSTP Miniport Call Manager/Microsoft Corporation) [MANUAL] RasSstp

Service system32\DRIVERS\rdbss.sys (Pilote du sous-système de mise en mémoire tampon de lecteur redirigé/Microsoft Corporation) [sYSTEM] rdbss

Service system32\DRIVERS\rdpbus.sys (Microsoft RDP Bus Device driver/Microsoft Corporation) [MANUAL] rdpbus

Service System32\DRIVERS\RDPCDD.sys (RDP Miniport/Microsoft Corporation) [sYSTEM] RDPCDD

Service RDPDD

Service system32\drivers\rdpencdd.sys (RDP Encoder Miniport/Microsoft Corporation) [sYSTEM] RDPENCDD

Service RDPNP

Service system32\drivers\rdprefmp.sys (RDP Reflector Driver Miniport/Microsoft Corporation) [sYSTEM] RDPREFMP

Service (Pilote de pile RDP Terminal/Microsoft Corporation) [MANUAL] RDPWD

Service System32\drivers\rdyboost.sys (ReadyBoost Driver/Microsoft Corporation) [bOOT] rdyboost

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [DISABLED] RemoteAccess

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] RemoteRegistry

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] RpcEptMapper

Service C:\Windows\system32\locator.exe (Localisateur d’appels de procédure distante/Microsoft Corporation) [MANUAL] RpcLocator

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] RpcSs

Service system32\DRIVERS\rspndr.sys (Link-Layer Topology Responder Driver for NDIS 6/Microsoft Corporation) [AUTO] rspndr

Service C:\Windows\System32\Drivers\RtsUStor.sys (Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7/Realtek Semiconductor Corp.) [MANUAL] RSUSBSTOR

Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [AUTO] SamSs

Service system32\drivers\sbp2port.sys (SBP-2 Protocol Driver/Microsoft Corporation) [MANUAL] sbp2port

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] SCardSvr

Service System32\DRIVERS\scfilter.sys (Pilote de filtre de lecteur de carte à puce Microsoft/Microsoft Corporation) [MANUAL] scfilter

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Schedule

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] SCPolicySvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] SDRSVC

Service (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [AUTO] secdrv

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] seclogon

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] SENS

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] SensrSvc

Service system32\DRIVERS\serenum.sys (Serial Port Enumerator/Microsoft Corporation) [MANUAL] Serenum

Service system32\DRIVERS\serial.sys (Pilote Brother Série I/F (WDM)/Brother Industries Ltd.) [MANUAL] Serial

Service system32\DRIVERS\sermouse.sys (Pilote de filtre souris série/Microsoft Corporation) [MANUAL] sermouse

Service ServiceModelEndpoint 3.0.0.0

Service ServiceModelOperation 3.0.0.0

Service ServiceModelService 3.0.0.0

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] SessionEnv

Service system32\drivers\sffdisk.sys (Small Form Factor Disk Driver/Microsoft Corporation) [MANUAL] sffdisk

Service system32\drivers\sffp_mmc.sys (Small Form Factor MMC Protocol Driver/Microsoft Corporation) [MANUAL] sffp_mmc

Service system32\drivers\sffp_sd.sys (Small Form Factor SD Protocol Driver/Microsoft Corporation) [MANUAL] sffp_sd

Service system32\DRIVERS\sfloppy.sys (SCSI Floppy Driver/Microsoft Corporation) [MANUAL] sfloppy

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] SharedAccess

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] ShellHWDetection

Service system32\DRIVERS\SiSRaid2.sys (SiS RAID Stor Miniport Driver/Silicon Integrated Systems Corp.) [MANUAL] SiSRaid2

Service system32\DRIVERS\sisraid4.sys (SiS AHCI Stor-Miniport Driver/Silicon Integrated Systems) [MANUAL] SiSRaid4

Service system32\DRIVERS\smb.sys (SMB Transport driver/Microsoft Corporation) [MANUAL] Smb

Service SMSvcHost 3.0.0.0

Service SMSvcHost 4.0.0.0

Service C:\Windows\System32\snmptrap.exe (Interruption SNMP/Microsoft Corporation) [MANUAL] SNMPTRAP

Service (loader for security processor/Microsoft Corporation) [bOOT] spldr

Service C:\Windows\System32\spoolsv.exe (Application sous-système spouleur/Microsoft Corporation) [AUTO] Spooler

Service C:\Windows\system32\sppsvc.exe (Service de la plateforme de protection logicielle Microsoft/Microsoft Corporation) [AUTO] sppsvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] sppuinotify

Service System32\Drivers\NISx64\1108000.005\SRTSP64.SYS (Symantec AutoProtect/Symantec Corporation) [MANUAL] SRTSP

Service system32\drivers\NISx64\1108000.005\SRTSPX64.SYS (Symantec AutoProtect/Symantec Corporation) [sYSTEM] SRTSPX

Service System32\DRIVERS\srv.sys (Server driver/Microsoft Corporation) [MANUAL] srv

Service System32\DRIVERS\srv2.sys (Smb 2.0 Server driver/Microsoft Corporation) [MANUAL] srv2

Service System32\DRIVERS\srvnet.sys (Server Network driver/Microsoft Corporation) [MANUAL] srvnet

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] SSDPSRV

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] SstpSvc

Service system32\DRIVERS\stexstor.sys (Promise SuperTrak EX Series Driver for Windows /Promise Technology) [MANUAL] stexstor

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] stisvc

Service system32\drivers\swenum.sys (Plug and Play Software Device Enumerator/Microsoft Corporation) [MANUAL] swenum

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] swprv

Service system32\drivers\NISx64\1108000.005\SYMDS64.SYS (Symantec Data Store/Symantec Corporation) [bOOT] SymDS

Service system32\drivers\NISx64\1108000.005\SYMEFA64.SYS (Symantec Extended File Attributes/Symantec Corporation) [bOOT] SymEFA

Service C:\Windows\system32\Drivers\SYMEVENT64x86.SYS (Symantec Event Library/Symantec Corporation) [MANUAL] SymEvent

Service system32\drivers\NISx64\1108000.005\Ironx64.SYS (Iron Driver/Symantec Corporation) [sYSTEM] SymIRON

Service System32\Drivers\NISx64\1108000.005\SYMTDIV.SYS (Network Dispatch Driver/Symantec Corporation) [sYSTEM] SYMTDIv

Service system32\DRIVERS\SynTP.sys (Synaptics Touchpad Driver/Synaptics Incorporated) [MANUAL] SynTP

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] SysMain

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] TabletInputService

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] TapiSrv

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] TBS

Service System32\drivers\tcpip.sys (Pilote TCP/IP/Microsoft Corporation) [bOOT] Tcpip

Service system32\DRIVERS\tcpip.sys (Pilote TCP/IP/Microsoft Corporation) [MANUAL] TCPIP6

Service TCPIP6TUNNEL

Service System32\drivers\tcpipreg.sys (TCP/IP Registry Compatibility Driver/Microsoft Corporation) [AUTO] tcpipreg

Service TCPIPTUNNEL

Service system32\drivers\tdpipe.sys (Named Pipe Transport Driver/Microsoft Corporation) [MANUAL] TDPIPE

Service system32\drivers\tdtcp.sys (TCP Transport Driver/Microsoft Corporation) [MANUAL] TDTCP

Service system32\DRIVERS\tdx.sys (TDI Translation Driver/Microsoft Corporation) [sYSTEM] tdx

Service system32\drivers\termdd.sys (Remote Desktop Server Driver/Microsoft Corporation) [sYSTEM] TermDD

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] TermService

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Themes

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] THREADORDER

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] TrkWks

Service C:\Windows\servicing\TrustedInstaller.exe (Programme d’installation pour les modules Windows/Microsoft Corporation) [MANUAL] TrustedInstaller

Service TSDDD

Service System32\DRIVERS\tssecsrv.sys (TS Security Filter Driver/Microsoft Corporation) [MANUAL] tssecsrv

Service system32\drivers\tsusbflt.sys (Pilote de filtre pour concentrateur USB du Bureau à distance/Microsoft Corporation) [MANUAL] TsUsbFlt

Service system32\DRIVERS\tunnel.sys (Pilote d’interface de tunnel Microsoft/Microsoft Corporation) [MANUAL] tunnel

Service system32\DRIVERS\uagp35.sys (Filtre MS AGPv3.5/Microsoft Corporation) [MANUAL] uagp35

Service C:\Windows\system32\drivers\UBHelper.sys (NTI CDROM Filter Driver/NewTech Infosystems Corporation) [MANUAL] UBHelper

Service system32\DRIVERS\udfs.sys (UDF File System Driver/Microsoft Corporation) [DISABLED] udfs

Service UGatherer

Service UGTHRSVC

Service C:\Windows\system32\UI0Detect.exe (Détection de services interactifs/Microsoft Corporation) [MANUAL] UI0Detect

Service system32\drivers\uliagpkx.sys (Filtre ULi AGPv3.0 pour plateformes à processeur K8/9/Microsoft Corporation) [MANUAL] uliagpkx

Service system32\drivers\umbus.sys (User-Mode Bus Enumerator/Microsoft Corporation) [MANUAL] umbus

Service system32\DRIVERS\umpass.sys (Generic pass-through driver/Microsoft Corporation) [MANUAL] UmPass

Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe (Updater Service/Acer Group) [AUTO] Updater Service

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] upnphost

Service system32\drivers\usbccgp.sys (USB Common Class Generic Parent Driver/Microsoft Corporation) [MANUAL] usbccgp

Service system32\drivers\usbcir.sys (USB Consumer IR Driver for eHome/Microsoft Corporation) [MANUAL] usbcir

Service system32\DRIVERS\usbehci.sys (EHCI eUSB Miniport Driver/Microsoft Corporation) [MANUAL] usbehci

Service system32\drivers\usbhub.sys (Default Hub Driver for USB/Microsoft Corporation) [MANUAL] usbhub

Service system32\DRIVERS\usbohci.sys (OHCI USB Miniport Driver/Microsoft Corporation) [MANUAL] usbohci

Service system32\DRIVERS\usbprint.sys (USB Printer driver/Microsoft Corporation) [MANUAL] usbprint

Service system32\DRIVERS\usbscan.sys (USB Scanner Driver/Microsoft Corporation) [MANUAL] usbscan

Service system32\DRIVERS\USBSTOR.SYS (USB Mass Storage Class Driver/Microsoft Corporation) [MANUAL] USBSTOR

Service system32\DRIVERS\usbuhci.sys (UHCI USB Miniport Driver/Microsoft Corporation) [MANUAL] usbuhci

Service System32\Drivers\usbvideo.sys (USB Video Class Driver/Microsoft Corporation) [MANUAL] usbvideo

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] UxSms

Service C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) [MANUAL] VaultSvc

Service system32\drivers\vdrvroot.sys (Énumérateur racine de lecteur virtuel/Microsoft Corporation) [bOOT] vdrvroot

Service C:\Windows\System32\vds.exe (Service de disque virtuel/Microsoft Corporation) [MANUAL] vds

Service system32\DRIVERS\vgapnp.sys (VGA/Super VGA Video Driver/Microsoft Corporation) [MANUAL] vga

Service System32\drivers\vga.sys (VGA/Super VGA Video Driver/Microsoft Corporation) [sYSTEM] VgaSave

Service system32\drivers\vhdmp.sys (VHD Miniport Driver/Microsoft Corporation) [MANUAL] vhdmp

Service system32\drivers\viaide.sys (VIA Generic PCI IDE Bus Driver/VIA Technologies, Inc.) [MANUAL] viaide

Service system32\drivers\volmgr.sys (Volume Manager Driver/Microsoft Corporation) [bOOT] volmgr

Service System32\drivers\volmgrx.sys (Pilote d’extension du gestionnaire de volumes/Microsoft Corporation) [bOOT] volmgrx

Service system32\drivers\volsnap.sys (Pilote de cliché instantané du volume/Microsoft Corporation) [bOOT] volsnap

Service system32\DRIVERS\vsmraid.sys (VIA RAID DRIVER FOR AMD-X86-64/VIA Technologies Inc.,Ltd) [MANUAL] vsmraid

Service C:\Windows\system32\vssvc.exe (Service de cliché instantané de volumes Microsoft®/Microsoft Corporation) [MANUAL] VSS

Service system32\DRIVERS\vwifibus.sys (Pilote de bus WiFi virtuel/Microsoft Corporation) [MANUAL] vwifibus

Service system32\DRIVERS\vwififlt.sys (Virtual WiFi Filter Driver/Microsoft Corporation) [sYSTEM] vwififlt

Service system32\DRIVERS\vwifimp.sys (Virtual WiFi Miniport Driver/Microsoft Corporation) [MANUAL] vwifimp

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] W32Time

Service W3SVC

Service system32\DRIVERS\wacompen.sys (Wacom Serial Pen Tablet HID Driver/Microsoft Corporation) [MANUAL] WacomPen

Service system32\DRIVERS\wanarp.sys (MS Remote Access and Routing ARP Driver/Microsoft Corporation) [MANUAL] WANARP

Service system32\DRIVERS\wanarp.sys (MS Remote Access and Routing ARP Driver/Microsoft Corporation) [sYSTEM] Wanarpv6

Service C:\Windows\system32\Wat\WatAdminSvc.exe (Windows Activation Technologies Service/Microsoft Corporation) [MANUAL] WatAdminSvc

Service C:\Windows\system32\wbengine.exe (Exécutable du service de moteur de sauvegarde en mode bloc Microsoft®/Microsoft Corporation) [MANUAL] wbengine

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WbioSrvc

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] wcncsvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WcsPlugInService

Service system32\DRIVERS\wd.sys (Microsoft Watchdog Timer Driver/Microsoft Corporation) [MANUAL] Wd

Service system32\drivers\Wdf01000.sys (Runtime de l’infrastructure de pilotes en mode noyau/Microsoft Corporation) [bOOT] Wdf01000

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WdiServiceHost

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WdiSystemHost

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WebClient

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] Wecsvc

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] wercplsupport

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WerSvc

Service system32\DRIVERS\wfplwf.sys (WFP NDIS 6.20 Lightweight Filter Driver/Microsoft Corporation) [sYSTEM] WfpLwf

Service C:\Windows\system32\drivers\wimmount.sys (Wim file system Driver/Microsoft Corporation) [MANUAL] WIMMount

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WinDefend

Service Windows Workflow Foundation 3.0.0.0

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WinHttpAutoProxySvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Winmgmt

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WinRM

Service [MANUAL] Winsock

Service WinSock2

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] Wlansvc

Service C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft® Windows Live ID Service/Microsoft Corp.) [AUTO] wlidsvc

Service system32\drivers\wmiacpi.sys (Windows Management Interface for ACPI/Microsoft Corporation) [MANUAL] WmiAcpi

Service WmiApRpl

Service C:\Windows\system32\wbem\WmiApSrv.exe (Adaptateur inverse de performance WMI/Microsoft Corporation) [MANUAL] wmiApSrv

Service C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe [AUTO] WMPNetworkSvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WPCSvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WPDBusEnum

Service system32\drivers\ws2ifsl.sys (Couche IFS Winsock2/Microsoft Corporation) [DISABLED] ws2ifsl

Service C:\Windows\System32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] wscsvc

Service C:\Windows\system32\SearchIndexer.exe (Indexeur Microsoft Windows Search/Microsoft Corporation) [AUTO] WSearch

Service WSearchIdxPi

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] wuauserv

Service system32\drivers\WudfPf.sys (Windows Driver Foundation - User-mode Driver Framework Platform Driver/Microsoft Corporation) [MANUAL] WudfPf

Service system32\DRIVERS\WUDFRd.sys (Windows Driver Foundation - User-mode Driver Framework Reflector/Microsoft Corporation) [MANUAL] WUDFRd

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [AUTO] wudfsvc

Service C:\Windows\system32\svchost.exe (Processus hôte pour les services Windows/Microsoft Corporation) [MANUAL] WwanSvc

Service xmlprov

Service {4FD32838-D265-4828-AECA-96F013E24236}

Service {A4036485-10AC-4B7F-97AE-47DE2E5E170A}

Service {F3F51360-22BC-489D-9CA5-8F2090078366}

 

---- EOF - GMER 1.0.15 ----

pear Devil Member !

pear

Posté(e)
Posté(e) (modifié)

Ne supprimez rien pour l'instant.

Vous avez de nombreux fichiers système absents(file missing).

Cela ne me parait pas normal.

Autant il vous est facile de désactiver un service inutile , autant son absence peut être préjudiciable.

Je vous propose de tenter de les réinstaller.

 

Télécharger OTL sur le bureau

Double cliquer sur l'icône

otlicon.gif

 

20110121104042.jpg

 

Vérifiez que toutes les autres fenêtres sont fermées afin qu'il s'exécute sans interruption.

Cochez]----------------->Tous les utilisateurs (scan all users)

Sous Rapport (output)

Cliquez ----------------------------->Rapport Standard (Standard Output)

Sous Régistre Standard(Standard Registry) cocher Tous(All)

Cochez------------------------------> Lop check et Purity check

 

Dans Pesonnalisation (Custom Scans Fixes) copier_coller le contenu ci dessous:

netsvcs

drivers32

SAVEMBR:0

%SYSTEMDRIVE%\*.exe

%ALLUSERSPROFILE%\Application Data\*.

%ALLUSERSPROFILE%\Application Data\*.exe /s

%appdata% *.exe /s

/md5start

userinit.exe

wininit.exe

explorer.exe

csrss.exe

alg.exe

fxssvc.exe

lsass.exe

locator.exe

msdtc.exe

spoolsv.exe

snmptrap.exe

sppsvc.exe

UI0Detect.exe

vds.exe

vssvc.exe

WatAdminSvc.exe

wbengine.exe

WmiApSrv.exe

wmpnetwk.exe

ndis.sys

tcpip.sys

winlogon.exe

iesetup.dll

inseng.dll

mshtml.dll

pngfilt.dll

webcheck.dll

eventlog.dll

scecli.dll

netlogon.dll

cngaudit.dll

sceclt.dll

ntelogon.dll

logevent.dll

iaStor.sys

nvstor.sys

atapi.sys

cdrom.sys

IdeChnDr.sys

viasraid.sys

AGP440.sys

vaxscsi.sys

nvatabus.sys

viamraid.sys

nvata.sys

nvgts.sys

iastorv.sys

ViPrt.sys

eNetHook.dll

ahcix86.sys

KR10N.sys

nvstor32.sys

ahcix86s.sys

/md5stop

%systemroot%\*. /mp /s

CREATERESTOREPOINT

 

Clic sur Analyse

une fois le scan terminé , les fichiers OTL.txt et Extras.txt vont s'ouvrir

 

Comment poster les rapports

Vous copiez/collez tout ou partie des rapports dans un ou plusieurs messages.

 

ou Aller sur le site :Ci-Jointicne2cjoint.png

Appuyez sur Parcourir et chercher les rapports sur le disque,

Ensuite appuyez sur Créer le lien CJoint,

>> dans la page suivante --> ,,

une adresse http//.. sera créée

Copier /coller cette adresse dans votre prochain message.

Modifié par pear

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...