Mises à jour Windows ne fonctionne pas

[CHOUMJC]

Bonjour,

 

Je me vois contrainte de faire à nouveau appel à vous car mon pc refuse de faire les mises à jour de windows depuis quelques temps (peut-être suite à des téléchargements douteux de mes enfants?).

Je vois joins donc mon log HiJackThis qui vous parlera plus qu'à moi :

 

 

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 17:56:22, on 14/07/2011

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\ZoneLabs\vsmon.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE

C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE

C:\WINDOWS\system32\FsUsbExService.Exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

C:\Program Files\Microsoft LifeCam\MSCamSvc.exe

C:\Program Files\Secunia\PSI\PSIA.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

C:\WINDOWS\system32\wbem\wmiapsrv.exe

C:\WINDOWS\system32\ps2.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Secunia\PSI\sua.exe

C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Secunia\PSI\psi_tray.exe

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Documents and Settings\Compaq_Propriétaire\Bureau\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.cherche.us/keyword/%s

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O1 - Hosts: ÿþ1

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE

O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe

O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"

O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files\Secunia\PSI\psi_tray.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000

O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} -

O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} (Java Plug-in 1.6.0_24) -

O17 - HKLM\System\CCS\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: NameServer = 8.8.8.8,8.8.8.84

O17 - HKLM\System\CCS\Services\Tcpip\..\{9B699B6D-A20A-431B-8E50-617316BB9B12}: NameServer = 8.8.8.8,8.8.8.84

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE

O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe

O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe

O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Fichiers communs\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

 

--

End of file - 8690 bytes

 

Merci d'avance .

[tomtom95]

Bonsoir CHOUMJC

 

Tu as bien une infection sur ton ordinateur .

 

 

• Désactiver TeaTimer de spybot qui ne sert à rien et peut faire échouer une désinfection:!
  Affiche d'abord le Mode Avancé dans Spybot
  
• Options Avancées :
  
• menu Mode
  -Mode Avancé. Une colonne de menus apparaît dans la partie gauche :
  
• clique sur Outils
  
• clique sur Résident
  -Dans Résident :
  
• décoche Résident "TeaTimer" pour le désactiver.
   
  
• Si dans Spybot S&D tu as vacciné
  Sur l'onglet "vaccination"
  
• Clique sur "Vaccination" dans la colonne sur la gauche :
  
• Clique sur annuler (la flèche bleue) pour annuler la vaccination.
  IMPORTANT Il faut aussi savoir que Spybot utilise une technologie dépassée.
  
• Si vous ajoutez à cela les problèmes causés par la vaccination qui ralentit le système et TeaTimer qui peut faire obstacle à une désinfection..... voir pour le désinstaller du pc

 

 

Pour une analyse un peu plus détailler de ton ordinateur

applique cette procédure stp.

 

Télécharge ZHPDiag de Nicolas Coolman sur ton Bureau

 

• Lance l'outil : double-clique sur ZHPDiag pour XP
  Pour Vista et seven
  fais un clique droit sur l'icône et exécute en tant qu'administrateur.
   
  Clique sur le Tournevis a droit en haut
  
   
  Coche toutes les cases .
  
• Puis Clique sur la petite loupe en haut à gauche pour débuter l'analyse :
  
• L'analyse peut durer une dizaine de minutes.
  
• Le rapport généré par l'outil se nomme ZHPDiag.txt
  
• Clique sur le bouton avec l'appareil photo pour copier le contenu intégral du rapport généré par l'outil dans le presse-papier :
  
• Dans ta prochaine réponse
  clique sur les touches CTRL+V pour coller ce rapport.
  
• Si tu rencontres un message d'erreur
  cela signifie que le rapport est trop long. Il faut donc l'éditer en plusieurs parties en veillant bien à ne rien oublier
   
  
• Tu peux aussi héberger le fichier contenant ce rapport ici
  http://cjoint.com/
  
• Indique ensuite dans ta prochaine réponse l'adresse d'hébergement de ce rapport pour que je puisse le télécharger et l'analyser.

 

A+

[CHOUMJC]

Rapport de ZHPDiag v1.27.2406 par Nicolas Coolman, Update du 12/07/2011

Run by Compaq_Propriétaire at 15/07/2011 01:18:27

Web site : ZHPDiag Outil de diagnostic

 

 

---\\ Web Browser

MSIE: Internet Explorer v8.0.6001.18702

GCIE: Google Chrome v12.0.742.122 (Defaut)

 

---\\ System Information

Windows XP Home Edition Service Pack 3 (Build 2600)

~ Processor: x86 Family 15 Model 4 Stepping 1, GenuineIntel

~ Operating System: 32 Bits

~ Boot mode: ~ Normal (Normal boot)

Total RAM: 511.3 MB (22% free)

~ System Restore: Activé (Enable)

System drive C: has 172 GB (75%) free of 229 GB

 

---\\ Logged in mode

~ Computer Name: NOM-EB85C523610

~ User Name: Compaq_Propriétaire

~ All Users Names: SUPPORT_fddfa904, SUPPORT_388945a0, HelpAssistant, Compaq_Propriétaire, ASPNET, Administrateur,

~ Unselected Option: None

~ Logged in as Administrator

 

---\\ Environnement Variables

~ %AppData%=C:\Documents and Settings\Compaq_Propriétaire\Application Data\

~ %Desktop%=C:\Documents and Settings\Compaq_Propriétaire\Bureau\

~ %Favorites%=C:\Documents and Settings\Compaq_Propriétaire\Favoris\

~ %LocalAppData%=C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\

~ %StartMenu%=C:\Documents and Settings\Compaq_Propriétaire\Menu Démarrer\

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 172 Go of 229 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 725 Go of 932 Go)

E:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 4 Go)

F:\ CD-ROM drive (Not Inserted)

G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)

 

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

 

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.15/07/2011 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]

[MD5.93AD0B78C7357A05F50E594EC7C22300] - (....) (.15/07/2011 - 03:34:20.) -- C:\WINDOWS\system32\rundll32.exe [33792]

[MD5.42F5E14E33D79C236680468B1E4999F4] - (.Microsoft Corporation - Internet Extensions for Win32.) (.15/07/2011 - 17:06:11.) -- C:\WINDOWS\system32\wininet.dll [916480]

[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.15/07/2011 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]

[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.15/07/2011 - 19:40:30.) -- C:\WINDOWS\system32\drivers\atapi.sys [96512]

[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.15/07/2011 - 20:15:53.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574976]

 

 

 

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes images (My Pictures) : 2/6

~ Mes musiques (My Musics) : 1/2

~ Mes Videos (My Videos) : 2/2 (Modified)

~ Mes Favoris (My Favorites) : 2/27

~ Mes Documents (My Documents) : 12/1056

~ Mon Bureau (My Desktop) : 1/24

~ Menu demarrer (Programs) : 6/44

 

 

 

---\\ Processus lancés

[MD5.8F1BA35B4238610B3F2CB31637E59C2F] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [413696]

[MD5.6797E0F85E5F419EEFBE2E4C7A622EA1] - (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2435592]

[MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360]

[MD5.F02A533F517EB38333CB12A9E8963773] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [136176]

[MD5.62F7FD637CE42ADDA3748E1B6E8780D2] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480]

[MD5.EC6A73CD8413F68655E5E0B99C415A21] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE [143872]

[MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968]

[MD5.8FE6AB59CAB8F2C038FEA9522A5EEBA7] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE [113664]

[MD5.D3F9205CC4CB07553F2F9472C767EA87] - (.Teruten - FsUsbDevice.) -- C:\WINDOWS\system32\FsUsbExService.Exe [233472]

[MD5.9DBA73C2F1E76EC4CB837E67C5743596] - (.Sun Microsystems, Inc. - Java Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]

[MD5.6E5DAC168D1FF9843E84A59D51D31107] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [61440]

[MD5.8B3D67651581347878CD7D8FBF016A64] - (.Hewlett-Packard Company - PS2 EXE.) -- C:\WINDOWS\system32\ps2.exe [98304]

[MD5.F052CB43FCA828CF5C711BAFBECD692F] - (.Check Point Software Technologies LTD - ZoneAlarm Client.) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [1043968]

[MD5.825DDD8DDD89EDE56B52C71CE8BB4E73] - (.Microsoft Corporation - MsCamSvc.exe.) -- C:\Program Files\Microsoft LifeCam\MSCamSvc.exe [187184]

[MD5.7198BBFBE46C0070257278C536386687] - (.Secunia - Secunia PSI Agent.) -- C:\Program Files\Secunia\PSI\PSIA.exe [993848]

[MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768]

[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [254696]

[MD5.D179E1DE532C903AB1D57A4E81342F40] - (.Secunia - Secunia PSI Tray.) -- C:\Program Files\Secunia\PSI\psi_tray.exe [291896]

[MD5.EFEF22B9577E5051057FDE1AE381B50C] - (.TomTom - Windows Service for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe [92592]

[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53472]

[MD5.D2FCA567F9BE87E29B9A9FA32FFE79CA] - (.Secunia - Secunia Update Agent.) -- C:\Program Files\Secunia\PSI\sua.exe [399416]

[MD5.00365B3515C30F66CDB938F6729F3D0C] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [656896]

[MD5.B60DDDD2D63CE41CB8C487FCFBB6419E] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638816]

 

 

 

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

P2 - FPN: [HKLM] [@checkpoint.com/FFApi] - (...) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll (.not file.)

P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll

P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.0.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Update\1.2.183.39\npGoogleOneClick8.dll

 

 

 

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

G1 - GCS: Preference [user Data\Default] None

 

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKUS\S-1-5-21-715473848-753477010-3518425902-1007\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.19072 (longhorn_ie8_gdr.110420-1700)) -- C:\WINDOWS\system32\ieframe.dll

 

 

 

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

 

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

 

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} . (.Orbiscom Ltd. All rights reserved. - FTO CMB.) -- C:\WINDOWS\system32\BhoECart.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} Clé orpheline

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

 

 

 

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [Recguard] . (.Pas de propriétaire - Recguard Application.) -- C:\WINDOWS\SMINST\RECGUARD.exe

O4 - HKLM\..\Run: [PS2] . (.Hewlett-Packard Company - PS2 EXE.) -- C:\WINDOWS\system32\ps2.exe

O4 - HKLM\..\Run: [ZoneAlarm Client] . (.Check Point Software Technologies LTD - ZoneAlarm Client.) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

O4 - HKLM\..\Run: [ATICustomerCare] . (.Advanced Micro Devices, Inc. - ATI Customer Care.) -- C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe

O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

O4 - HKLM\..\Run: [NeroFilterCheck] . (.Nero AG - NeroCheck.) -- C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe

O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-21-715473848-753477010-3518425902-1007\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Secunia PSI Tray.lnk . (.Secunia.) -- C:\Program Files\Secunia\PSI\psi_tray.exe

 

 

 

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Bridge CS5.lnk . (.Adobe Systems, Inc..) -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Device Central CS5.lnk . (.Adobe Systems Inc..) -- C:\Program Files\Adobe\Adobe Device Central CS5\DeviceCentral.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe ExtendScript Toolkit CS5.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Utilities - CS5\ExtendScript Toolkit CS5\ExtendScript Toolkit.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Extension Manager CS5.lnk . (.Adobe Systems Incorporated.) -- C:\Program Files\Adobe\Adobe Extension Manager CS5\Adobe Extension Manager CS5.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Help.lnk . (...) -- C:\Program Files\Adobe\Adobe Help\Adobe Help.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop CS5.lnk . (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Photoshop CS5\Photoshop.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader X.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\My PC Essentials.lnk . (...) -- C:\hp\VINETLINK\VINETLINK.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Secunia PSI.lnk . (.Secunia.) -- C:\Program Files\Secunia\PSI\psi.exe

O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe

O4 - Global Startup: C:\Documents And Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe

O4 - Global Startup: C:\Documents And Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Documents And Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe

O4 - Global Startup: C:\Documents And Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Update Checker.lnk . (.FileHippo.com.) -- C:\Program Files\FileHippo.com\UpdateChecker.exe

O4 - Global Startup: C:\Documents And Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

 

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~4\Office12\EXCEL.exe

 

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~4\Office12\REFBARH.ICO

O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (...) -- C:\PROGRA~1\MICROS~4\Office12\REFBARH.ICO

O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

 

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

 

 

 

---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)

O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

 

 

 

---\\ Objets ActiveX (Downloaded Program Files)(O16)

O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} () - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} () - http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} () - http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

 

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: NameServer = 8.8.8.8,8.8.8.84

O17 - HKLM\System\CCS\Services\Tcpip\..\{9B699B6D-A20A-431B-8E50-617316BB9B12}: NameServer = 8.8.8.8,8.8.8.84

O17 - HKLM\System\CS1\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: NameServer = 8.8.8.8,8.8.8.84

O17 - HKLM\System\CS1\Services\Tcpip\..\{9B699B6D-A20A-431B-8E50-617316BB9B12}: NameServer = 8.8.8.8,8.8.8.84

O17 - HKLM\System\CS2\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: NameServer = 8.8.8.8,8.8.8.84

O17 - HKLM\System\CS2\Services\Tcpip\..\{9B699B6D-A20A-431B-8E50-617316BB9B12}: NameServer = 8.8.8.8,8.8.8.84

O17 - HKLM\System\CCS\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS3\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: DhcpNameServer = 10.0.0.138

O17 - HKLM\System\CS3\Services\Tcpip\..\{578F00A0-4168-4CE2-AF17-774BC75AE62F}: DhcpDomain = lan

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

 

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\Windows\System32\Ati2evxx.dll

O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll

O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll

O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll

O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll

O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll

O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll

O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

 

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll

 

 

 

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

 

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: (Ati HotKey Poller) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.exe

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.exe

O23 - Service: FsUsbExService (FsUsbExService) . (.Teruten - FsUsbDevice.) - C:\WINDOWS\system32\FsUsbExService.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: Secunia PSI Agent (Secunia PSI Agent) . (.Secunia - Secunia PSI Agent.) - C:\Program Files\Secunia\PSI\PSIA.exe

O23 - Service: Secunia Update Agent (Secunia Update Agent) . (.Secunia - Secunia Update Agent.) - C:\Program Files\Secunia\PSI\sua.exe

O23 - Service: TomTomHOMEService (TomTomHOMEService) . (.TomTom - Windows Service for TomTom HOME.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

O23 - Service: TrueVector Internet Monitor (vsmon) . (.Check Point Software Technologies LTD - TrueVector Service.) - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

 

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

 

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-NOM-EB85C523610-Compaq_Propriétaire.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

 

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys

O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys

O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\WINDOWS\System32\DRIVERS\avipbb.sys

O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\WINDOWS\System32\DRIVERS\cdrom.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys

O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\WINDOWS\System32\DRIVERS\imapi.sys

O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\System32\DRIVERS\intelppm.sys

O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\WINDOWS\System32\DRIVERS\ipsec.sys

O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\WINDOWS\System32\DRIVERS\kbdclass.sys

O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre souris HID.) - C:\WINDOWS\System32\DRIVERS\kbdhid.sys

O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\WINDOWS\System32\DRIVERS\mouclass.sys

O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\WINDOWS\System32\DRIVERS\netbios.sys

O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\WINDOWS\System32\DRIVERS\netbt.sys

O41 - Driver: (Processor) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\WINDOWS\System32\DRIVERS\processr.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\WINDOWS\System32\DRIVERS\rasacd.sys

O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\WINDOWS\System32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys

O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\WINDOWS\System32\DRIVERS\redbook.sys

O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\WINDOWS\System32\DRIVERS\serial.sys

O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\WINDOWS\System32\DRIVERS\ssmdrv.sys

O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\WINDOWS\System32\DRIVERS\tcpip.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\WINDOWS\System32\DRIVERS\termdd.sys

O41 - Driver: Carte vidéo VGA. (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys

O41 - Driver: (vsdatant) . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - C:\WINDOWS\System32\vsdatant.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys

 

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07}

O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {A25FF1C0-80B6-4B8B-A551-DC525697A408}

O42 - Logiciel: ATI Catalyst Registration - (.ATI Technologies Inc..) [HKLM] -- {11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}

O42 - Logiciel: ATI Control Panel - (.Pas de propriétaire.) [HKLM] -- {0BEDBD4E-2D34-47B5-9973-57E62B29307C}

O42 - Logiciel: ATI Display Driver - (.Pas de propriétaire.) [HKLM] -- ATI Display Driver

O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {AFF7E080-1974-45BF-9310-10DE1A1F5ED0}

O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1

O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {15FEDA5F-141C-4127-8D7E-B962D1742728}

O42 - Logiciel: Adobe Reader X (10.1.0) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}

O42 - Logiciel: Agere Systems PCI Soft Modem - (.Pas de propriétaire.) [HKLM] -- Agere Systems Soft Modem

O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}

O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop

O42 - Logiciel: Coloriage 2 - (.Pas de propriétaire.) [HKLM] -- Coloriage 2

O42 - Logiciel: D-Jix Media - (.D-Jix.) [HKLM] -- {6A6F157F-BAEE-4206-ACCA-10A29F3030B6}

O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite

O42 - Logiciel: EPSON SX210 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX210 Series

O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner

O42 - Logiciel: FileHippo.com Update Checker - (.Pas de propriétaire.) [HKLM] -- FileHippo.com

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}

O42 - Logiciel: Help and Support Additions - (.Pas de propriétaire.) [HKLM] -- Help and Support Additions

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5

O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3

O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}

O42 - Logiciel: Java 6 Update 26 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216026FF}

O42 - Logiciel: KBD - (.Pas de propriétaire.) [HKLM] -- KBD

O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: MSXML 6.0 Parser (KB933579) - (.Microsoft Corporation.) [HKLM] -- {0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}

O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.0.1200 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)

O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447

O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906

O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}

O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}

O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended

O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702}

O42 - Logiciel: Microsoft .NET Framework 4 Extended FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {043F86B7-EE12-3399-B2CA-D0B603D87963}

O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}

O42 - Logiciel: Microsoft LifeCam - (.Microsoft.) [HKLM] -- {6F5D254A-5869-4B94-BF55-D68938FD1CC6}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS

O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}

O42 - Logiciel: Microsoft_VC80_ATL_x86 - (.Adobe.) [HKLM] -- {0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}

O42 - Logiciel: Microsoft_VC80_CRT_x86 - (.Adobe.) [HKLM] -- {92D58719-BBC1-4CC3-A08B-56C9E884CC2C}

O42 - Logiciel: Microsoft_VC80_MFCLOC_x86 - (.Adobe.) [HKLM] -- {D92BBB52-82FF-42ED-8A3C-4E062F944AB7}

O42 - Logiciel: Microsoft_VC80_MFC_x86 - (.Adobe.) [HKLM] -- {D1A19B02-817E-4296-A45B-07853FD74D57}

O42 - Logiciel: Microsoft_VC90_ATL_x86 - (.Adobe.) [HKLM] -- {033E378E-6AD3-4AD5-BDEB-CBD69B31046C}

O42 - Logiciel: Microsoft_VC90_CRT_x86 - (.Adobe.) [HKLM] -- {08D2E121-7F6A-43EB-97FD-629B44903403}

O42 - Logiciel: Microsoft_VC90_MFC_x86 - (.Adobe.) [HKLM] -- {635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack

O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Extended FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended FRA Language Pack

O42 - Logiciel: Nero 7 Essentials - (.Nero AG.) [HKLM] -- {C1E544E5-EF3C-4103-A57B-3A499FD91036}

O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM] -- OpenAL

O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}

O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM] -- {AC599724-5755-48C1-ABE7-ABB857652930}

O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392}

O42 - Logiciel: PS2 - (.Pas de propriétaire.) [HKLM] -- PS2

O42 - Logiciel: Package de pilotes Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0) - (.Nokia.) [HKLM] -- 3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F

O42 - Logiciel: Python 2.2 pywin32 extensions (build 203) - (.Pas de propriétaire.) [HKLM] -- pywin32-py2.2

O42 - Logiciel: Python 2.2.3 - (.PythonLabs at Zope Corporation.) [HKLM] -- Python 2.2.3

O42 - Logiciel: SAMSUNG Mobile Composite Device Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile Composite Device

O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile Modem

O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem 1.0

O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG Mobile USB Modem

O42 - Logiciel: SAMSUNG USB Mobile Device Software - (.Pas de propriétaire.) [HKLM] -- SAMSUNG USB Mobile Device

O42 - Logiciel: Samsung Mobile Modem Device Software - (.Pas de propriétaire.) [HKLM] -- Samsung Mobile Modem Device

O42 - Logiciel: Samsung Mobile phone USB driver Software - (.Pas de propriétaire.) [HKLM] -- Samsung Mobile phone USB driver

O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}

O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- {F193FC0E-9E18-40FC-A974-509A1BDD240A}

O42 - Logiciel: SamsungConnectivityCableDriver - (.Samsung.) [HKLM] -- {7E84FAC8-C518-40F9-9807-7455301D6D25}

O42 - Logiciel: Secunia PSI (2.0.0.3001) - (.Pas de propriétaire.) [HKLM] -- Secunia PSI

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906

O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Extended (KB2416472) - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2416472

O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060}

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062}

O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2478663

O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}.KB2518870

O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}

O42 - Logiciel: The Lord of the Rings FREE Trial - (.ATI Technologies Inc..) [HKLM] -- {8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}

O42 - Logiciel: TomTom HOME 2.8.2.2264 - (.TomTom.) [HKLM] -- TomTom HOME

O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2473228) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2473228

O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}

O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC}

O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2553975) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{59D8F1FE-7B08-4F0E-840C-D1BF93D22A6C}

O42 - Logiciel: VLC media player 1.1.10 - (.VideoLAN.) [HKLM] -- VLC media player

O42 - Logiciel: Virtual DJ Pro Full - Atomix Productions - (.Pas de propriétaire.) [HKLM] -- Virtual DJ Pro Full - Atomix Productions

O42 - Logiciel: WinRAR 4.00 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver

O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130

O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8

O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}

O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}

O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime

O42 - Logiciel: Ze Converter V 1.1 - (.zeconverter.com.) [HKLM] -- Ze Converter_is1

O42 - Logiciel: ZoneAlarm - (.Check Point, Inc.) [HKLM] -- ZoneAlarm

O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D}

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\ABBYY]

[HKCU\Software\Ad-Remover]

[HKCU\Software\Adobe]

[HKCU\Software\Ahead]

[HKCU\Software\AppDataLow\ISWVolatile]

[HKCU\Software\AppDataLow]

[HKCU\Software\Avira]

[HKCU\Software\Caphyon]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\D-Jix]

[HKCU\Software\DT Soft]

[HKCU\Software\DiskSoftware]

[HKCU\Software\EPSON]

[HKCU\Software\FileHippo.com]

[HKCU\Software\GlarySoft]

[HKCU\Software\Google]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\IM Providers]

[HKCU\Software\Intel]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\Lavalys]

[HKCU\Software\Macromedia]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\Mobileleader]

[HKCU\Software\Monitored]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Native Instruments]

[HKCU\Software\Nero]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Safer Networking Limited]

[HKCU\Software\SampleView]

[HKCU\Software\Samsung]

[HKCU\Software\Secunia]

[HKCU\Software\TomTom]

[HKCU\Software\VirtualDJ]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\Zone Labs]

[HKCU\Software\Zylom]

[HKCU\Software\settings]

[HKLM\Software\ABBYY]

[HKLM\Software\ATI Technologies]

[HKLM\Software\Adobe]

[HKLM\Software\Agere]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\Aureal]

[HKLM\Software\Avance]

[HKLM\Software\Avira]

[HKLM\Software\C07ft5Y]

[HKLM\Software\CheckPoint]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\DT Soft]

[HKLM\Software\DiskSoftware]

[HKLM\Software\EPSON]

[HKLM\Software\Gemplus]

[HKLM\Software\Google]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\InstallShield]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Khronos]

[HKLM\Software\LightScribe]

[HKLM\Software\MCCI]

[HKLM\Software\Macromedia]

[HKLM\Software\Malwarebytes' Anti-Malware]

[HKLM\Software\MarkAny]

[HKLM\Software\Motive]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\Native Instruments]

[HKLM\Software\Nero]

[HKLM\Software\ODBC]

[HKLM\Software\OldTimer Tools]

[HKLM\Software\PC Connectivity Solution]

[HKLM\Software\PCSuite]

[HKLM\Software\Panda Software]

[HKLM\Software\Policies]

[HKLM\Software\Program Groups]

[HKLM\Software\Python]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Safer Networking Limited]

[HKLM\Software\Samsung]

[HKLM\Software\Schlumberger]

[HKLM\Software\Secunia]

[HKLM\Software\SymNRT]

[HKLM\Software\Symantec]

[HKLM\Software\TomTom]

[HKLM\Software\TrendMicro]

[HKLM\Software\VideoLAN]

[HKLM\Software\VirtualDJ]

[HKLM\Software\Wilson WindowWare]

[HKLM\Software\WinRAR]

[HKLM\Software\Windows 3.1 Migration Status]

[HKLM\Software\Windows]

[HKLM\Software\X-AVCSD]

[HKLM\Software\Zone Labs]

[HKLM\Software\ahead]

[HKLM\Software\mozilla.org]

[HKLM\Software\webtogo]

 

 

 

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 14/01/2011 - 11:44:08 - [124503737] ----D- C:\Program Files\ABBYY FineReader 6.0 Sprint

O43 - CFD: 20/04/2011 - 08:04:10 - [46370336] ----D- C:\Program Files\Ad-Remover

O43 - CFD: 16/06/2011 - 15:45:16 - [1072947327] ----D- C:\Program Files\Adobe

O43 - CFD: 09/05/2011 - 07:03:26 - [1950748] ----D- C:\Program Files\AMD APP

O43 - CFD: 29/03/2011 - 01:04:40 - [17896897] ----D- C:\Program Files\ATI

O43 - CFD: 11/01/2011 - 18:26:56 - [16168506] ----D- C:\Program Files\ATI Technologies

O43 - CFD: 29/03/2011 - 10:56:04 - [123529950] ----D- C:\Program Files\Avira

O43 - CFD: 11/01/2011 - 12:38:04 - [146441] ----D- C:\Program Files\CheckPoint

O43 - CFD: 24/01/2011 - 15:22:16 - [93872609] ----D- C:\Program Files\D-Jix

O43 - CFD: 26/01/2011 - 17:02:16 - [17040104] ----D- C:\Program Files\DAEMON Tools Lite

O43 - CFD: 19/06/2011 - 11:04:46 - [61265933] ----D- C:\Program Files\denouvel

O43 - CFD: 24/01/2011 - 13:12:46 - [795104] ----D- C:\Program Files\DIFX

O43 - CFD: 11/01/2011 - 10:48:34 - [2874214] ----D- C:\Program Files\Easy Internet signup

O43 - CFD: 11/01/2011 - 11:28:28 - [6287446] ----D- C:\Program Files\epson

O43 - CFD: 18/05/2011 - 19:25:42 - [825275167] ----D- C:\Program Files\Fichiers communs

O43 - CFD: 28/03/2011 - 23:50:40 - [381086] ----D- C:\Program Files\FileHippo.com

O43 - CFD: 21/06/2011 - 09:56:00 - [90972499] ----D- C:\Program Files\Google

O43 - CFD: 11/01/2011 - 18:27:42 - [5428745] ----D- C:\Program Files\Help and Support Additions

O43 - CFD: 28/03/2011 - 23:35:06 - [24207701] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 16/06/2011 - 20:45:32 - [4736504] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 28/03/2011 - 23:35:28 - [6612949] ----D- C:\Program Files\InterVideo

O43 - CFD: 14/06/2011 - 21:43:24 - [90857371] ----D- C:\Program Files\Java

O43 - CFD: 23/06/2011 - 11:14:56 - [7571666] ----D- C:\Program Files\Malwarebytes' Anti-Malware

O43 - CFD: 24/01/2011 - 13:07:10 - [221184] ----D- C:\Program Files\MarkAny

O43 - CFD: 13/01/2011 - 19:46:04 - [2152579] ----D- C:\Program Files\Messenger

O43 - CFD: 11/01/2011 - 12:24:12 - [226432] ----D- C:\Program Files\Microsoft

O43 - CFD: 12/01/2011 - 09:37:32 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2

O43 - CFD: 11/01/2011 - 18:29:02 - [0] ----D- C:\Program Files\microsoft frontpage

O43 - CFD: 28/03/2011 - 08:42:06 - [46154153] ----D- C:\Program Files\Microsoft LifeCam

O43 - CFD: 29/06/2011 - 21:11:50 - [571737241] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 17/06/2011 - 06:03:58 - [38411899] ----D- C:\Program Files\Microsoft Silverlight

O43 - CFD: 11/01/2011 - 13:56:58 - [14904] ----D- C:\Program Files\Microsoft Visual Studio

O43 - CFD: 25/03/2011 - 07:39:30 - [1387249] ----D- C:\Program Files\Microsoft Visual Studio 8

O43 - CFD: 13/01/2011 - 17:03:50 - [3726168] ----D- C:\Program Files\Microsoft Works

O43 - CFD: 20/04/2011 - 08:26:38 - [8175999] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 14/01/2011 - 19:30:26 - [10374874] ----D- C:\Program Files\Movie Maker

O43 - CFD: 13/01/2011 - 18:42:22 - [26521] ----D- C:\Program Files\MSBuild

O43 - CFD: 11/01/2011 - 18:29:04 - [19278399] ----D- C:\Program Files\MSN

O43 - CFD: 11/01/2011 - 18:29:08 - [8745735] ----D- C:\Program Files\MSN Gaming Zone

O43 - CFD: 13/01/2011 - 18:31:42 - [6849] ----D- C:\Program Files\MSXML 6.0

O43 - CFD: 18/05/2011 - 19:25:48 - [386476141] ----D- C:\Program Files\Nero

O43 - CFD: 13/01/2011 - 19:30:26 - [3285523] ----D- C:\Program Files\NetMeeting

O43 - CFD: 11/01/2011 - 22:43:00 - [782336] ----D- C:\Program Files\OpenAL

O43 - CFD: 14/01/2011 - 19:14:14 - [4379321] ----D- C:\Program Files\Outlook Express

O43 - CFD: 25/03/2011 - 09:11:46 - [0] ----D- C:\Program Files\Panda Security

O43 - CFD: 24/01/2011 - 13:12:28 - [9771964] ----D- C:\Program Files\PC Connectivity Solution

O43 - CFD: 28/03/2011 - 23:16:58 - [804366] ----D- C:\Program Files\QuickTime

O43 - CFD: 13/01/2011 - 18:42:08 - [36400897] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 24/01/2011 - 13:13:00 - [199781800] ----D- C:\Program Files\Samsung

O43 - CFD: 28/03/2011 - 22:51:38 - [8428769] ----D- C:\Program Files\Secunia

O43 - CFD: 11/01/2011 - 18:29:42 - [73925682] ----D- C:\Program Files\Services en ligne

O43 - CFD: 15/07/2011 - 00:58:52 - [1731411] ----D- C:\Program Files\Spybot - Search & Destroy

O43 - CFD: 07/05/2011 - 11:21:02 - [50622777] ----D- C:\Program Files\TomTom HOME 2

O43 - CFD: 07/05/2011 - 11:21:22 - [22486] ----D- C:\Program Files\TomTom International B.V

O43 - CFD: 11/01/2011 - 18:30:06 - [0] ----D- C:\Program Files\Uninstall Information

O43 - CFD: 14/01/2011 - 17:57:14 - [89113373] ----D- C:\Program Files\VideoLAN

O43 - CFD: 27/02/2011 - 18:29:00 - [29549513] ----D- C:\Program Files\VirtualDJ

O43 - CFD: 11/01/2011 - 12:30:38 - [61856425] ----D- C:\Program Files\Windows Live

O43 - CFD: 11/01/2011 - 12:23:26 - [245112] ----D- C:\Program Files\Windows Live SkyDrive

O43 - CFD: 24/01/2011 - 23:21:24 - [3581070] ----D- C:\Program Files\Windows Media Connect 2

O43 - CFD: 25/03/2011 - 07:39:30 - [8621274] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 13/01/2011 - 19:30:20 - [3942655] ----D- C:\Program Files\Windows NT

O43 - CFD: 29/03/2011 - 00:42:44 - [3909277] ----D- C:\Program Files\WinRAR

O43 - CFD: 31/03/2011 - 13:27:28 - [0] ----D- C:\Program Files\Xenocode

O43 - CFD: 11/01/2011 - 18:30:08 - [0] ----D- C:\Program Files\xerox

O43 - CFD: 11/04/2011 - 21:22:30 - [20726256] ----D- C:\Program Files\Ze Converter

O43 - CFD: 15/07/2011 - 01:18:48 - [4034679] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 11/01/2011 - 11:58:32 - [21742386] ----D- C:\Program Files\Zone Labs

O43 - CFD: 13/05/2011 - 22:39:04 - [0] ----D- C:\Program Files\Zylom Games

O43 - CFD: 16/06/2011 - 15:46:12 - [328470712] ----D- C:\Program Files\Fichiers Communs\Adobe

O43 - CFD: 19/04/2011 - 23:08:32 - [31116142] ----D- C:\Program Files\Fichiers Communs\Adobe AIR

O43 - CFD: 18/05/2011 - 19:16:50 - [93600447] ----D- C:\Program Files\Fichiers Communs\Ahead

O43 - CFD: 11/01/2011 - 13:56:58 - [92976] ----D- C:\Program Files\Fichiers Communs\DESIGNER

O43 - CFD: 11/01/2011 - 18:27:18 - [8467340] ----D- C:\Program Files\Fichiers Communs\InstallShield

O43 - CFD: 14/06/2011 - 21:44:42 - [23989165] ----D- C:\Program Files\Fichiers Communs\Java

O43 - CFD: 11/01/2011 - 12:42:32 - [7022932] ----D- C:\Program Files\Fichiers Communs\LightScribe

O43 - CFD: 13/01/2011 - 17:06:00 - [221573025] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared

O43 - CFD: 11/01/2011 - 18:27:24 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap

O43 - CFD: 27/02/2011 - 18:18:32 - [524800] ----D- C:\Program Files\Fichiers Communs\Native Instruments

O43 - CFD: 15/04/2011 - 08:13:02 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC

O43 - CFD: 11/01/2011 - 18:27:40 - [8106] ----D- C:\Program Files\Fichiers Communs\Services

O43 - CFD: 11/01/2011 - 18:27:24 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines

O43 - CFD: 13/01/2011 - 19:30:14 - [41360184] ----D- C:\Program Files\Fichiers Communs\System

O43 - CFD: 11/01/2011 - 11:58:08 - [64977949] ----D- C:\Program Files\Fichiers Communs\Windows Live

O43 - CFD: 08/04/2011 - 18:20:06 - [10378803] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Adobe

O43 - CFD: 08/04/2011 - 18:21:42 - [54] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Adobe Mini Bridge CS5

O43 - CFD: 10/03/2011 - 11:47:18 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\AdobeUM

O43 - CFD: 16/01/2011 - 15:49:22 - [217620] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Ahead

O43 - CFD: 11/01/2011 - 18:26:52 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Apple Computer

O43 - CFD: 11/01/2011 - 10:54:12 - [296] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\AVG10

O43 - CFD: 29/03/2011 - 11:03:14 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Avira

O43 - CFD: 08/04/2011 - 18:36:34 - [13050] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1

O43 - CFD: 11/01/2011 - 12:40:22 - [25237] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\CheckPoint

O43 - CFD: 24/01/2011 - 15:18:28 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\D-Jix

O43 - CFD: 24/01/2011 - 20:06:18 - [1680613] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\D-Jix Media

O43 - CFD: 26/01/2011 - 19:09:36 - [1908] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\DAEMON Tools Lite

O43 - CFD: 05/02/2011 - 12:36:34 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\EPSON

O43 - CFD: 14/03/2011 - 08:46:36 - [786594] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\GlarySoft

O43 - CFD: 21/06/2011 - 10:01:08 - [78979] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Google

O43 - CFD: 07/04/2011 - 18:31:38 - [45] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Identities

O43 - CFD: 11/01/2011 - 11:19:12 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\InstallShield

O43 - CFD: 25/03/2011 - 07:46:38 - [57076] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Macromedia

O43 - CFD: 10/02/2011 - 18:28:12 - [8473] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Malwarebytes

O43 - CFD: 16/04/2011 - 13:10:06 - [14209816] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Microsoft

O43 - CFD: 07/05/2011 - 11:21:44 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Mozilla

O43 - CFD: 29/03/2011 - 07:36:22 - [98345] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Nero

O43 - CFD: 24/01/2011 - 15:19:06 - [354] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\PC Suite

O43 - CFD: 11/01/2011 - 18:26:52 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\SampleView

O43 - CFD: 24/01/2011 - 13:08:34 - [141969909] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Samsung

O43 - CFD: 22/03/2011 - 01:04:52 - [27] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\SoundSpectrum

O43 - CFD: 08/04/2011 - 18:21:42 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\StageManager.BD092818F67280F4B42B04877600987F0111B594.1

O43 - CFD: 11/01/2011 - 18:26:52 - [73959586] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Sun

O43 - CFD: 07/05/2011 - 11:21:32 - [35782535] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\TomTom

O43 - CFD: 13/07/2011 - 16:29:04 - [1520657] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\vlc

O43 - CFD: 26/01/2011 - 19:17:30 - [12] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\WinRAR

O43 - CFD: 11/04/2011 - 21:24:00 - [485184] ----D- C:\Documents and Settings\Compaq_Propriétaire\Application Data\ZeConverter

O43 - CFD: 19/04/2011 - 23:09:16 - [16257211] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Adobe

O43 - CFD: 13/01/2011 - 16:38:32 - [15355161] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Ahead

O43 - CFD: 11/01/2011 - 18:26:52 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Apple Computer

O43 - CFD: 14/01/2011 - 19:33:20 - [7601] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\ApplicationHistory

O43 - CFD: 24/01/2011 - 14:46:52 - [190101616] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Downloaded Installations

O43 - CFD: 21/06/2011 - 09:57:22 - [1138496290] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google

O43 - CFD: 21/05/2011 - 17:33:14 - [941306426] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft

O43 - CFD: 11/01/2011 - 13:51:12 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft Help

O43 - CFD: 28/03/2011 - 22:53:26 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Secunia PSI

O43 - CFD: 03/02/2011 - 10:10:02 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\SoundSpectrum

O43 - CFD: 14/07/2011 - 19:03:04 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Temp

O43 - CFD: 07/05/2011 - 11:21:32 - [1890048] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\TomTom

O43 - CFD: 09/07/2011 - 15:56:30 - [0] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\WMTools Downloaded Files

O43 - CFD: 23/01/2011 - 21:47:48 - [2135339] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Xenocode

O43 - CFD: 11/01/2011 - 18:26:52 - [9305600] ----D- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\{7148F0A6-6813-11D6-A77B-00B0D0142030}

 

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.10EF1200FEFFFFFF57494E444F577E31] - 15/07/2011 - 00:16:15 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1285047]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/07/2011 - 00:15:33 ---A- . (...) -- C:\WINDOWS\0.log [0]

O44 - LFC:[MD5.10EF1200FEFFFFFF000000002CF21200] - 15/07/2011 - 00:15:01 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]

O44 - LFC:[MD5.10EF1200FEFFFFFF000000002CF21200] - 15/07/2011 - 00:15:01 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]

O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 15/07/2011 - 00:13:59 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]

O44 - LFC:[MD5.10EF1200FEFFFFFF000000002CF21200] - 14/07/2011 - 23:58:07 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32494]

O44 - LFC:[MD5.5866F5AC5FA90002CC1275789B715A60] - 14/07/2011 - 23:55:52 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [116]

O44 - LFC:[MD5.998B6E5ACA20C3535C4A23D07EB4DEC8] - 14/07/2011 - 17:53:05 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [3570024]

O44 - LFC:[MD5.0BB1B468BB91205D3AD1A4511AAA85A6] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [1508286]

O44 - LFC:[MD5.0FE5B44AF598442D16ECE9BFA75242DC] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\KB2507938.log [12276]

O44 - LFC:[MD5.560B17B68E02124CA6EF9E1C32BDC017] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\comsetup.log [386184]

O44 - LFC:[MD5.28ACFB5F39D75F51522E4DA7D18596FE] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\iis6.log [229969]

O44 - LFC:[MD5.EEBCBC351C12E4E506F72E03C45FC41E] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]

O44 - LFC:[MD5.C61C6E03356D4F74A1AC3B90D107382D] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\msgsocm.log [75217]

O44 - LFC:[MD5.35AE5316D66349A93ADA274194F9D62A] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [237343]

O44 - LFC:[MD5.525E4CA85BD266306CC36383E1FE3B89] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\ocgen.log [757628]

O44 - LFC:[MD5.74AE7444F0C75654B2907C35B14E4B8F] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\ocmsn.log [63637]

O44 - LFC:[MD5.2A5CCD558E3422453C2ECAFA470AE3B3] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\setupapi.log [769719]

O44 - LFC:[MD5.E1B2EBF68E1BD837CEEB030FB3544338] - 14/07/2011 - 17:14:32 ---A- . (...) -- C:\WINDOWS\tsoc.log [578475]

O44 - LFC:[MD5.A8086EB9A54EFD24627040C72E78CB0A] - 14/07/2011 - 17:14:27 ---A- . (...) -- C:\WINDOWS\updspapi.log [216641]

O44 - LFC:[MD5.6026C538D40014E098C1F1145B53DF85] - 14/07/2011 - 17:05:29 ---A- . (...) -- C:\WINDOWS\KB2555917.log [12210]

O44 - LFC:[MD5.C254C2154E3853832C9FBFEB130E3760] - 14/07/2011 - 17:05:29 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]

O44 - LFC:[MD5.F6B8D089916DFD8CBB0C9CBE0C0A3060] - 12/07/2011 - 21:37:48 ---A- . (...) -- C:\WINDOWS\setupact.log [222969]

O44 - LFC:[MD5.DAE7023E1696F0EC0445272E08425037] - 11/07/2011 - 22:21:15 ---A- . (...) -- C:\WINDOWS\wmsetup.log [127082]

O44 - LFC:[MD5.C3A3F8DDE56FA01BCF61617BCF55D951] - 01/07/2011 - 17:06:23 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [1277280]

O44 - LFC:[MD5.699120C42E01367EE0DE4D2D9454151D] - 29/06/2011 - 17:37:38 ---A- . (...) -- C:\img2-001.raw [304152]

O44 - LFC:[MD5.93307821258123433D9E768654CAF3AF] - 29/06/2011 - 13:03:18 ---A- . (...) -- C:\WINDOWS\KB2541763.log [11735]

O44 - LFC:[MD5.931EFE292F3EE82B1776DF0A0D9AB611] - 26/06/2011 - 20:02:48 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [1158]

O44 - LFC:[MD5.83EEB82E9ED7098EBC0C083C6BFD3116] - 21/06/2011 - 22:48:24 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [404640]

O44 - LFC:[MD5.5F982F8AF7D8FCFBD12A7949285AF169] - 21/06/2011 - 07:03:53 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [1297396]

O44 - LFC:[MD5.0BB00326CD2ABB458A1BE57E84D0B4CA] - 21/06/2011 - 07:03:53 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [89696]

O44 - LFC:[MD5.5D81CF6CCAF105FFFF05CFD5CCD7BE66] - 21/06/2011 - 07:03:53 ---A- . (...) -- C:\WINDOWS\System32\perfc00C.dat [106478]

O44 - LFC:[MD5.E2012344A1B99521A6435AE0BC25F7FD] - 21/06/2011 - 07:03:53 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [506902]

O44 - LFC:[MD5.8AE05C333F2DED3C735D5A333EDEF8B8] - 21/06/2011 - 07:03:53 ---A- . (...) -- C:\WINDOWS\System32\perfh00C.dat [580610]

O44 - LFC:[MD5.A75A03E2FE261297C3CBB128C32BE3D8] - 19/06/2011 - 10:04:00 ---A- . (.Qsc - GP-Install.) -- C:\WINDOWS\GPInstall.exe [796672]

O44 - LFC:[MD5.FC3E337BEC1F3CCECC36D34BD0610B0B] - 16/06/2011 - 19:50:36 ---A- . (...) -- C:\WINDOWS\KB2476490.log [19758]

O44 - LFC:[MD5.98FDE49AFDD5992FAA4EE43DC66EA97D] - 16/06/2011 - 19:50:25 ---A- . (...) -- C:\WINDOWS\KB2503665.log [13112]

O44 - LFC:[MD5.F32B5CAC63A21C5BF91CC8CF0920A379] - 16/06/2011 - 19:50:14 ---A- . (...) -- C:\WINDOWS\KB2535512.log [13306]

O44 - LFC:[MD5.80620A5F991130E9A51A7879D8EA99FA] - 16/06/2011 - 19:46:30 ---A- . (...) -- C:\WINDOWS\KB2536276.log [13381]

O44 - LFC:[MD5.4429452A9885EBAB95894E4EC7F58C81] - 16/06/2011 - 19:45:49 ---A- . (...) -- C:\WINDOWS\KB2530548-IE8.log [17344]

O44 - LFC:[MD5.08EB572A323A76C7722A60B847287262] - 16/06/2011 - 19:45:02 ---A- . (...) -- C:\WINDOWS\KB2544893.log [8934]

O44 - LFC:[MD5.A59D88CA022EE9014837E785154D845D] - 16/06/2011 - 19:38:27 ---A- . (...) -- C:\WINDOWS\KB2544521-IE8.log [9254]

O44 - LFC:[MD5.CC3244F4ACF3E756821538C2A8DDDE65] - 29/09/2000 - 17:00:00 ---A- . (...) -- C:\WINDOWS\F_France.gpl [8784]

 

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:[MD5.A2CC4ACE6FF996CE8F469CB59DC31B58] - 05/07/2011 - 15:02:55 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-5CFB2C77.pf

O45 - LFCP:[MD5.D8C793F57BC55DC767C07890A652B006] - 05/07/2011 - 16:21:51 ---A- - C:\WINDOWS\Prefetch\ESCNDV.EXE-216E7E53.pf

O45 - LFCP:[MD5.D3116A3EA7122117325A14033038AAB1] - 05/07/2011 - 16:36:36 ---A- - C:\WINDOWS\Prefetch\SILVERLIGHT.CONFIGURATION.EXE-22C7A86E.pf

O45 - LFCP:[MD5.708DC886935A8B6872E40420F7E34E84] - 05/07/2011 - 18:07:35 ---A- - C:\WINDOWS\Prefetch\WMPSHARE.EXE-39C4F92B.pf

O45 - LFCP:[MD5.7989D6F8088786ECC09BE93E192F73FD] - 05/07/2011 - 18:39:05 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-526C3D0F.pf

O45 - LFCP:[MD5.FDF0F6283344CE65516D8580230FA001] - 05/07/2011 - 20:05:10 ---A- - C:\WINDOWS\Prefetch\ACRORD32.EXE-34BC6304.pf

O45 - LFCP:[MD5.706D533409ED95AF6FB7998743AD5082] - 06/07/2011 - 11:10:36 ---A- - C:\WINDOWS\Prefetch\AVCENTER.EXE-03310382.pf

O45 - LFCP:[MD5.D858A7D50E4EAB83D3224F0A5F82CB4C] - 06/07/2011 - 13:51:20 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-28ED4128.pf

O45 - LFCP:[MD5.2ADF2C88755B8757A926392A17B1EE35] - 07/07/2011 - 17:09:22 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-28F0A9AA.pf

O45 - LFCP:[MD5.4245AF940914CA76E280424F04835DAF] - 08/07/2011 - 10:18:31 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-30F3EBFD.pf

O45 - LFCP:[MD5.88B08F48C793A183B970046135FA97FB] - 08/07/2011 - 10:18:37 ---A- - C:\WINDOWS\Prefetch\WUDFHOST.EXE-0A1E3822.pf

O45 - LFCP:[MD5.EB3E0E0BCD18605EFE7822416D5A4098] - 08/07/2011 - 12:38:39 ---A- - C:\WINDOWS\Prefetch\WMPLAYER.EXE-3A528C4E.pf

O45 - LFCP:[MD5.D0E4934F8CB61A2F540BA6F7C67A252B] - 09/07/2011 - 14:55:40 ---A- - C:\WINDOWS\Prefetch\MOVIEMK.EXE-1F9B41AC.pf

O45 - LFCP:[MD5.3AF3B0992DE7ABF2D0796414A06F4959] - 09/07/2011 - 14:59:12 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-4ED04B76.pf

O45 - LFCP:[MD5.A23CA1DF9090C3398EB40E419DB8D8B0] - 09/07/2011 - 16:55:58 ---A- - C:\WINDOWS\Prefetch\VIRTUALDJ_PRO.EXE-083DFBC6.pf

O45 - LFCP:[MD5.1F8B0212840179D3F87EA752E0816867] - 09/07/2011 - 20:06:23 ---A- - C:\WINDOWS\Prefetch\WINRAR.EXE-2480A367.pf

O45 - LFCP:[MD5.255A3BE8919C4661E6E2F98A7BCEA048] - 10/07/2011 - 13:52:51 ---A- - C:\WINDOWS\Prefetch\PHOTOSNAPVIEWER.EXE-0C5031B9.pf

O45 - LFCP:[MD5.BBE2E9DC0051469F6CE9AA65D8F6FFC8] - 10/07/2011 - 15:02:54 ---A- - C:\WINDOWS\Prefetch\LIFETRAY.EXE-1B06FF74.pf

O45 - LFCP:[MD5.ABDE00C551F940C33ECA5C728E56A2B8] - 10/07/2011 - 15:02:57 ---A- - C:\WINDOWS\Prefetch\WCUPDATE.EXE-1347EB11.pf

O45 - LFCP:[MD5.C8061B1839F75BCCAAF0D98DFB2B2A80] - 10/07/2011 - 17:45:50 ---A- - C:\WINDOWS\Prefetch\E_FAMTFDE.EXE-3909CB76.pf

O45 - LFCP:[MD5.769C98100AC2070C92C2A0F9161CDB69] - 10/07/2011 - 17:45:51 ---A- - C:\WINDOWS\Prefetch\E_FARNFDE.EXE-37A622FA.pf

O45 - LFCP:[MD5.F130EF653E4ED7608534B274D676AFB4] - 10/07/2011 - 18:19:55 ---A- - C:\WINDOWS\Prefetch\WINWORD.EXE-33121E1E.pf

O45 - LFCP:[MD5.44BDB0CE8514E3B456D18BB400532008] - 11/07/2011 - 15:09:27 ---A- - C:\WINDOWS\Prefetch\DUMPREP.EXE-1C032A1C.pf

O45 - LFCP:[MD5.9C77BAD75154D3A0E96A7C13A439D78D] - 11/07/2011 - 20:46:21 ---A- - C:\WINDOWS\Prefetch\DEFRAG.EXE-10D9C910.pf

O45 - LFCP:[MD5.3E91B80B0AE982CBDD0530D35C6EBB1F] - 11/07/2011 - 20:46:23 ---A- - C:\WINDOWS\Prefetch\DFRGNTFS.EXE-0F55FCE5.pf

O45 - LFCP:[MD5.69ED63A45F8EBD42B76351229FBFBD0B] - 11/07/2011 - 22:21:15 ---A- - C:\WINDOWS\Prefetch\SETUP_WM.EXE-170F9E81.pf

O45 - LFCP:[MD5.3D3DB7C409FBE5B8E3BEE35C08FA1339] - 12/07/2011 - 05:11:14 ---A- - C:\WINDOWS\Prefetch\JAVA.EXE-1E3945B0.pf

O45 - LFCP:[MD5.7BF39D8AC12E32BD3F672EBF0E07492E] - 12/07/2011 - 07:40:41 ---A- - C:\WINDOWS\Prefetch\SDUPDATE.EXE-33FAB36E.pf

O45 - LFCP:[MD5.5ED5F11981862CDB74349068DFFDBAEE] - 12/07/2011 - 21:21:22 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-2FCE2E75.pf

O45 - LFCP:[MD5.B35679EA6281C262D8DDF7ACF676C6E2] - 12/07/2011 - 21:21:31 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-2A11D231.pf

O45 - LFCP:[MD5.D87AB27B0DD4FBCBB39EDC50CBD0D6EF] - 12/07/2011 - 21:37:57 ---A- - C:\WINDOWS\Prefetch\CLEANMGR.EXE-0846AD67.pf

O45 - LFCP:[MD5.9DDDB78C950DE36F30F76FA2D02B9D81] - 13/07/2011 - 11:10:20 ---A- - C:\WINDOWS\Prefetch\VSSVC.EXE-0D08A15D.pf

O45 - LFCP:[MD5.4D4EEBCAB297A073983380552AA895C7] - 13/07/2011 - 11:10:23 ---A- - C:\WINDOWS\Prefetch\DLLHOST.EXE-64E73686.pf

O45 - LFCP:[MD5.03504B584D1E90FFA65FC0FC8FA38BF3] - 13/07/2011 - 11:10:26 ---A- - C:\WINDOWS\Prefetch\DLLHOST.EXE-6D872B4E.pf

O45 - LFCP:[MD5.7FB1D01FB8AF5C66F974FFEF80EA60BF] - 13/07/2011 - 11:10:41 ---A- - C:\WINDOWS\Prefetch\MSDTC.EXE-0E0E8DC0.pf

O45 - LFCP:[MD5.8A4134E03751A482D15DFC49D2ED1207] - 13/07/2011 - 11:10:56 ---A- - C:\WINDOWS\Prefetch\RSMSINK.EXE-03EB5CC6.pf

O45 - LFCP:[MD5.C8BB5F2BDAAEDAA973AEF1167DF82847] - 13/07/2011 - 15:19:06 ---A- - C:\WINDOWS\Prefetch\AVNOTIFY.EXE-1178AC46.pf

O45 - LFCP:[MD5.9693962087E98034327D55F1D3B8741A] - 13/07/2011 - 17:22:04 ---A- - C:\WINDOWS\Prefetch\JAVAW.EXE-089E2F81.pf

O45 - LFCP:[MD5.335613BA66131B4C9A03E36D902DE6F7] - 13/07/2011 - 17:22:09 ---A- - C:\WINDOWS\Prefetch\JAVAWS.EXE-0CFD782B.pf

O45 - LFCP:[MD5.8E219310575EBCB6BCB52A6BD17FCC9B] - 13/07/2011 - 18:28:31 ---A- - C:\WINDOWS\Prefetch\AGCP.EXE-04018AEB.pf

O45 - LFCP:[MD5.57611EF5055521C5B4FB1C817F567F32] - 13/07/2011 - 19:45:00 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-3DCC3CBD.pf

O45 - LFCP:[MD5.90C68E3BFD08CB254C3FDE6B29126495] - 13/07/2011 - 22:09:39 ---A- - C:\WINDOWS\Prefetch\VLC.EXE-2E8E9D94.pf

O45 - LFCP:[MD5.DC3DA5DB3E384494B0D512CE8B101E4B] - 14/07/2011 - 00:38:06 ---A- - C:\WINDOWS\Prefetch\WMPLAYER.EXE-3A528C54.pf

O45 - LFCP:[MD5.5FE6796FDE403A34D45C2D41B32C7BB4] - 14/07/2011 - 01:00:01 ---A- - C:\WINDOWS\Prefetch\UPDATERSTARTUPUTILITY.EXE-03ADAFAB.pf

O45 - LFCP:[MD5.729ABD4C5502C94CA1209A9CD181DB8A] - 14/07/2011 - 01:00:11 ---A- - C:\WINDOWS\Prefetch\AAM UPDATES NOTIFIER.EXE-3B396CBA.pf

O45 - LFCP:[MD5.890B39C34744DE98027B64C38313E8D0] - 14/07/2011 - 01:09:43 ---A- - C:\WINDOWS\Prefetch\HELPSVC.EXE-281F45D0.pf

O45 - LFCP:[MD5.D28CA128E346E07C525191F9ACEE14D7] - 14/07/2011 - 07:23:21 ---A- - C:\WINDOWS\Prefetch\MSCAMSVC.EXE-291196E0.pf

O45 - LFCP:[MD5.BD68C0A781FF1C9720DEE16AE2034841] - 14/07/2011 - 07:39:30 ---A- - C:\WINDOWS\Prefetch\LSSRVC.EXE-1FA74A9C.pf

O45 - LFCP:[MD5.4B26A00EAED8F0164E91F1DB33453355] - 14/07/2011 - 10:24:14 ---A- - C:\WINDOWS\Prefetch\MSNMSGR.EXE-1A70C265.pf

O45 - LFCP:[MD5.6553000B2FDABB2B1F3017BDA6C780F1] - 14/07/2011 - 10:25:02 ---A- - C:\WINDOWS\Prefetch\WLCOMM.EXE-2591AE07.pf

O45 - LFCP:[MD5.348AAA3BD5BB94DB1184FD327EF09EBA] - 14/07/2011 - 14:01:04 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-0494B405.pf

O45 - LFCP:[MD5.619A1541418E986DC6CFD506D2EFCF38] - 14/07/2011 - 15:39:01 ---A- - C:\WINDOWS\Prefetch\MSPAINT.EXE-3AA7BA9F.pf

O45 - LFCP:[MD5.C3BB94558D76E4F93D526A831A71C28C] - 14/07/2011 - 16:53:43 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-35C9B643.pf

O45 - LFCP:[MD5.40DD7C4EC32DFA8FF043431F2004BA17] - 14/07/2011 - 16:54:40 ---A- - C:\WINDOWS\Prefetch\AVSCAN.EXE-28DF649A.pf

O45 - LFCP:[MD5.34296695318F3731E3519D0C016ECB76] - 14/07/2011 - 16:55:58 ---A- - C:\WINDOWS\Prefetch\HIJACKTHIS.EXE-1A1A22BC.pf

O45 - LFCP:[MD5.930AFBAE016D91E88FA27AA739C5948C] - 14/07/2011 - 16:56:32 ---A- - C:\WINDOWS\Prefetch\NOTEPAD.EXE-08F3A979.pf

O45 - LFCP:[MD5.722634BCB18A617AECA0C3149FA053DF] - 14/07/2011 - 17:01:58 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-22BA66B8.pf

O45 - LFCP:[MD5.F7DE3BEADB7631CEE3970F9F4844236B] - 14/07/2011 - 17:02:01 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-2AA776B3.pf

O45 - LFCP:[MD5.F1A1A435C0C49DB63BD1C1142DD4EA58] - 14/07/2011 - 17:03:32 ---A- - C:\WINDOWS\Prefetch\PSI.EXE-1B8900C1.pf

O45 - LFCP:[MD5.EB51E55796CC19BBF34153A7DE29E5F2] - 14/07/2011 - 17:04:03 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-32F50509.pf

O45 - LFCP:[MD5.19FFE19F64637A99E90F81BBDF7150DA] - 14/07/2011 - 17:05:43 ---A- - C:\WINDOWS\Prefetch\HOTFIXINSTALLER.EXE-2DD31121.pf

O45 - LFCP:[MD5.886177342D9DA2FE99E0E6DB531FDC2E] - 14/07/2011 - 17:05:43 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2478658-X86.EXE-21048425.pf

O45 - LFCP:[MD5.D3BB64AAB7AA89472E49B4975DCAC557] - 14/07/2011 - 17:06:46 ---A- - C:\WINDOWS\Prefetch\MSIPATCHREGFIX-X86.EXE-364C982A.pf

O45 - LFCP:[MD5.C4C831398A0888B8CFD985977A669E99] - 14/07/2011 - 17:06:49 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2446704-V2-X86.EXE-3AB98AE4.pf

O45 - LFCP:[MD5.930CF5B5FC03BCE6D4AA5AEF327E38AD] - 14/07/2011 - 17:07:00 ---A- - C:\WINDOWS\Prefetch\HOTFIXINSTALLER.EXE-083A5792.pf

O45 - LFCP:[MD5.359AECE7D63A2EC8BE3E320DEA35477C] - 14/07/2011 - 17:07:43 ---A- - C:\WINDOWS\Prefetch\NGEN.EXE-024812B4.pf

O45 - LFCP:[MD5.FF22F20DD0CB35581F793832825CC988] - 14/07/2011 - 17:10:14 ---A- - C:\WINDOWS\Prefetch\MSIEXEC.EXE-0CCC6E74.pf

O45 - LFCP:[MD5.7100F03213F864BF17ACD90172F5DC54] - 14/07/2011 - 17:11:07 ---A- - C:\WINDOWS\Prefetch\WINDOWS-KB890830-V3.21-DELTA.-2C277D26.pf

O45 - LFCP:[MD5.C42E494A1A6FC753A200194683451238] - 14/07/2011 - 17:11:13 ---A- - C:\WINDOWS\Prefetch\MRTSTUB.EXE-24916DAD.pf

O45 - LFCP:[MD5.6B850F107BF73EF4D3DC97320CAF29B5] - 14/07/2011 - 17:11:38 ---A- - C:\WINDOWS\Prefetch\MRT.EXE-00AAC00B.pf

O45 - LFCP:[MD5.A39FE44772ED217A5D62D376A3544B13] - 14/07/2011 - 17:14:18 ---A- - C:\WINDOWS\Prefetch\UPDATE.EXE-041EC99C.pf

O45 - LFCP:[MD5.363731F6394E77CC6CD02AEBAF8BA72C] - 14/07/2011 - 17:50:42 ---A- - C:\WINDOWS\Prefetch\DWWIN.EXE-002B6E58.pf

O45 - LFCP:[MD5.02EB33A752A8D649B699F1BE0B51928F] - 14/07/2011 - 17:50:45 ---A- - C:\WINDOWS\Prefetch\DRWTSN32.EXE-140B1585.pf

O45 - LFCP:[MD5.9D0D431C635C85A28699FDD4B4DC07D8] - 14/07/2011 - 17:54:09 ---A- - C:\WINDOWS\Prefetch\SPOOLSV.EXE-2773458C.pf

O45 - LFCP:[MD5.D8C991919B3AAB59D2BEB040FFA4A81D] - 14/07/2011 - 17:54:10 ---A- - C:\WINDOWS\Prefetch\SCHED.EXE-0368C1B3.pf

O45 - LFCP:[MD5.4A73320B8E67E88D52824946E86DC8B5] - 14/07/2011 - 17:54:12 ---A- - C:\WINDOWS\Prefetch\AVGUARD.EXE-0594C035.pf

O45 - LFCP:[MD5.DDFA3E7FD39243931D2570DC163AC001] - 14/07/2011 - 17:54:13 ---A- - C:\WINDOWS\Prefetch\AVSHADOW.EXE-339BF547.pf

O45 - LFCP:[MD5.71ED4665FD9F5147E92DD6BBDBCCBED6] - 14/07/2011 - 17:54:17 ---A- - C:\WINDOWS\Prefetch\E_S40RP7.EXE-2A403934.pf

O45 - LFCP:[MD5.D552226BFBFF1212FE134A2B295407B1] - 14/07/2011 - 17:54:17 ---A- - C:\WINDOWS\Prefetch\E_S40ST7.EXE-2BCAA12B.pf

O45 - LFCP:[MD5.7C9DB440563D77B05A1DA1A32F3F7EC7] - 14/07/2011 - 17:54:17 ---A- - C:\WINDOWS\Prefetch\PSIA.EXE-080DB80F.pf

O45 - LFCP:[MD5.150140A0638ABAC05629545815C9900F] - 14/07/2011 - 17:54:17 ---A- - C:\WINDOWS\Prefetch\TOMTOMHOMESERVICE.EXE-1C79B5E0.pf

O45 - LFCP:[MD5.3C6E45442924003C32E584E5FEAE81EC] - 14/07/2011 - 18:01:01 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-1C19AF53.pf

O45 - LFCP:[MD5.5151F2D86EA7504B998C02C3F96F088C] - 14/07/2011 - 18:03:08 ---A- - C:\WINDOWS\Prefetch\CHROME_INSTALLER.EXE-0839DD9D.pf

O45 - LFCP:[MD5.520861DECE719ACB133F42951360CC74] - 14/07/2011 - 18:03:13 ---A- - C:\WINDOWS\Prefetch\SETUP.EXE-31FF3E95.pf

O45 - LFCP:[MD5.DA3945D4B9053C2D9B0C9375F13A71C1] - 14/07/2011 - 18:05:14 ---A- - C:\WINDOWS\Prefetch\SETUP.EXE-044C2AF4.pf

O45 - LFCP:[MD5.1453FD9E1762C01687409CC39D2E9049] - 14/07/2011 - 18:44:33 ---A- - C:\WINDOWS\Prefetch\MSCORSVW.EXE-2499D927.pf

O45 - LFCP:[MD5.6AC589CF73C48F6C8DD200881EEB4004] - 14/07/2011 - 19:23:48 ---A- - C:\WINDOWS\Prefetch\SNDVOL32.EXE-1AA68677.pf

O45 - LFCP:[MD5.9C63DBEBF68270A52625D547A481A57F] - 14/07/2011 - 20:10:25 ---A- - C:\WINDOWS\Prefetch\CHROME.EXE-33FD229B.pf

O45 - LFCP:[MD5.DB240B2E2BDF4DB45CDE581147E55108] - 15/07/2011 - 00:01:22 ---A- - C:\WINDOWS\Prefetch\CTFMON.EXE-084DB373.pf

O45 - LFCP:[MD5.F343D52CDBAC3233C0689D5ABEE60258] - 15/07/2011 - 00:06:40 ---A- - C:\WINDOWS\Prefetch\GOOGLEUPDATE.EXE-030125A1.pf

O45 - LFCP:[MD5.FD741299CCD6A9DEFA26A9868F648E9D] - 15/07/2011 - 00:10:04 ---A- - C:\WINDOWS\Prefetch\TASKMGR.EXE-20E19D70.pf

O45 - LFCP:[MD5.BA48CF240B295092320F37C40E0392F1] - 15/07/2011 - 00:11:57 ---A- - C:\WINDOWS\Prefetch\LOGONUI.EXE-3164D1CB.pf

O45 - LFCP:[MD5.A4B66120A53C1AF4166D2D4D5E373572] - 15/07/2011 - 00:15:52 ---A- - C:\WINDOWS\Prefetch\AVWSC.EXE-022A620B.pf

O45 - LFCP:[MD5.05371618699D7A51EE0AEC8161CBF5C2] - 15/07/2011 - 00:15:52 ---A- - C:\WINDOWS\Prefetch\IMAPI.EXE-10859813.pf

O45 - LFCP:[MD5.36B9D3B6025D376C03E9620EF3A5EDA8] - 15/07/2011 - 00:15:52 ---A- - C:\WINDOWS\Prefetch\READER_SL.EXE-0113A053.pf

O45 - LFCP:[MD5.0702CB31BB34797251CBCF7C896A879F] - 15/07/2011 - 00:15:52 ---A- - C:\WINDOWS\Prefetch\WMIAPSRV.EXE-193A5C0F.pf

O45 - LFCP:[MD5.16D804798899DCB40F3E3D8F9C1BB357] - 15/07/2011 - 00:15:52 ---A- - C:\WINDOWS\Prefetch\WSCNTFY.EXE-314E7AE5.pf

O45 - LFCP:[MD5.2C50787D04BB2728568D8569EC79DB19] - 15/07/2011 - 00:15:53 ---A- - C:\WINDOWS\Prefetch\ALG.EXE-2226CE17.pf

O45 - LFCP:[MD5.706BC2B33AA587AB135C9C524438EFF9] - 15/07/2011 - 00:15:55 ---A- - C:\WINDOWS\Prefetch\WMIPRVSE.EXE-0E69CB0B.pf

O45 - LFCP:[MD5.0FA087DB4A23FA4E1C85A09FB37E9ADC] - 15/07/2011 - 00:16:01 ---A- - C:\WINDOWS\Prefetch\SUA.EXE-2122F873.pf

O45 - LFCP:[MD5.5CA27551A2E50FB02A0E049D68EAEB36] - 15/07/2011 - 00:16:04 ---A- - C:\WINDOWS\Prefetch\SVCHOST.EXE-072604B0.pf

O45 - LFCP:[MD5.F70A45831779B85041D7FB4D99F8E2F6] - 15/07/2011 - 00:16:25 ---A- - C:\WINDOWS\Prefetch\WUAUCLT.EXE-12D8E25E.pf

O45 - LFCP:[MD5.B237678092137EA173DA5D95F924DECD] - 15/07/2011 - 00:16:56 ---A- - C:\WINDOWS\Prefetch\IEXPLORE.EXE-06887102.pf

O45 - LFCP:[MD5.334B57747384D5BDDB9F518D4CDEE140] - 15/07/2011 - 00:20:05 ---A- - C:\WINDOWS\Prefetch\CHROME.EXE-33FD2294.pf

O45 - LFCP:[MD5.42E81FAD312383F1941DF7B05E9E7CC5] - 15/07/2011 - 00:20:34 ---A- - C:\WINDOWS\Prefetch\CHROME.EXE-33FD2297.pf

O45 - LFCP:[MD5.F1DA330BDE9F86E632BDCAC5C8D598C3] - 15/07/2011 - 00:21:20 ---A- - C:\WINDOWS\Prefetch\CHROME.EXE-33FD2298.pf

O45 - LFCP:[MD5.933A7B4EB9BB2371119F4655FEC022DF] - 15/07/2011 - 09:51:19 ---A- - C:\WINDOWS\Prefetch\Layout.ini

O45 - LFCP:[MD5.51995B9FCA17F58544D164D771D4AEEE] - 15/07/2011 - 23:34:41 ---A- - C:\WINDOWS\Prefetch\GOOGLECRASHHANDLER.EXE-3115A79B.pf

O45 - LFCP:[MD5.C297E7FAD77C335FECE89C501D54A8B6] - 15/07/2011 - 23:34:46 ---A- - C:\WINDOWS\Prefetch\ATI2EVXX.EXE-3111ABE0.pf

O45 - LFCP:[MD5.9E78F6827D97DF7935CFDA11653A908B] - 15/07/2011 - 23:34:46 ---A- - C:\WINDOWS\Prefetch\RECGUARD.EXE-232B0A7F.pf

O45 - LFCP:[MD5.A55074EE8C334D2A71A494E63DF8871B] - 15/07/2011 - 23:34:47 ---A- - C:\WINDOWS\Prefetch\EXPLORER.EXE-05416907.pf

O45 - LFCP:[MD5.002BEF34B31F5453E073D59BB11A4795] - 15/07/2011 - 23:34:48 ---A- - C:\WINDOWS\Prefetch\ATICUSTOMERCARE.EXE-018A791E.pf

O45 - LFCP:[MD5.F25FD1F683A3822D07F54D587EDECA71] - 15/07/2011 - 23:34:48 ---A- - C:\WINDOWS\Prefetch\USERINIT.EXE-19714419.pf

O45 - LFCP:[MD5.C53035893FD4169911376FD891768BE8] - 15/07/2011 - 23:34:50 ---A- - C:\WINDOWS\Prefetch\AVGNT.EXE-20698712.pf

O45 - LFCP:[MD5.6017B593B8441198F0669D6DD5BBA8F3] - 15/07/2011 - 23:34:50 ---A- - C:\WINDOWS\Prefetch\NEROCHECK.EXE-0BD44D80.pf

O45 - LFCP:[MD5.4F0B538387BC8BB9EBC181AB12181497] - 15/07/2011 - 23:34:57 ---A- - C:\WINDOWS\Prefetch\ADOBEARM.EXE-2FB4C6DD.pf

O45 - LFCP:[MD5.D8DCB1309BE615076A7B190ED47B3DD1] - 15/07/2011 - 23:34:59 ---A- - C:\WINDOWS\Prefetch\ZLCLIENT.EXE-048E0F4C.pf

O45 - LFCP:[MD5.8EB8AA5694BCA1568DA0363C86830F8F] - 15/07/2011 - 23:35:02 ---A- - C:\WINDOWS\Prefetch\JUSCHED.EXE-1E5301E9.pf

O45 - LFCP:[MD5.6485D4B481CAAA9AF98AB0C7BD91A47E] - 15/07/2011 - 23:35:04 ---A- - C:\WINDOWS\Prefetch\PS2.EXE-2EF9674C.pf

O45 - LFCP:[MD5.833F823082A53D577CCEFF05C6AAB2BD] - 15/07/2011 - 23:35:07 ---A- - C:\WINDOWS\Prefetch\PSI_TRAY.EXE-37ECB2E2.pf

O45 - LFCP:[MD5.3C966D984B56E2A7D5F231AF1D2DDA5B] - 15/07/2011 - 23:35:08 ---A- - C:\WINDOWS\Prefetch\TEATIMER.EXE-26B5EC23.pf

O45 - LFCP:[MD5.C1943F8A0B409560AB216A6F0AEAF711] - 15/07/2011 - 23:46:29 ---A- - C:\WINDOWS\Prefetch\SPYBOTSD.EXE-05AEB822.pf

O45 - LFCP:[MD5.B15F71D519BF4035522828CA9D745930] - 15/07/2011 - 23:53:38 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-5BC9F342.pf

O45 - LFCP:[MD5.670B7338EDD5445FFB0F043D94F7BA5C] - 15/07/2011 - 23:53:56 ---A- - C:\WINDOWS\Prefetch\UNINS000.EXE-3ABC4FE9.pf

O45 - LFCP:[MD5.11E0B87D70FFCA452D1536A712324577] - 15/07/2011 - 23:55:49 ---A- - C:\WINDOWS\Prefetch\RUNDLL32.EXE-5C5FFFE7.pf

O45 - LFCP:[MD5.C49FBF6A1D2D54254133887CD9DEC31F] - 15/07/2011 - 23:55:51 ---A- - C:\WINDOWS\Prefetch\GUARDGUI.EXE-1852E467.pf

O45 - LFCP:[MD5.ED8C6B2FF2F159B479614FCB8885C89D] - 15/07/2011 - 23:55:59 ---A- - C:\WINDOWS\Prefetch\VERCLSID.EXE-3B227142.pf

O45 - LFCP:[MD5.DC9D268D94685AA58D3F00FA0C50A44A] - 15/07/2011 - 23:57:19 ---A- - C:\WINDOWS\Prefetch\UNINS000.EXE-0E2F4DCB.pf

O45 - LFCP:[MD5.3059599D056AC44A993F2052F0855DDB] - 15/07/2011 - 23:57:20 ---A- - C:\WINDOWS\Prefetch\_IU14D2N.TMP-08ACB0B4.pf

 

 

 

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)

O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

 

 

 

---\\ Export de clé d'application autorisée (O47)

O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

O47 - AAKE:Key Export DP - "%ProgramFiles%\iTunes\iTunes.exe" [Enabled] .(...) -- C:\Program Files\iTunes\iTunes.exe (.not file.)

O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\wlcsdk.exe" [Enabled] .(.Microsoft Corporation - Windows Live Call.) -- C:\Program Files\Windows Live\Messenger\wlcsdk.exe

O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe

O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

 

 

 

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\System32\Drivers\dmboot.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\Drivers\dmio.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\Drivers\dmload.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\System32\Drivers\ip6fw.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\System32\Drivers\rdpcdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\System32\Drivers\rdpdd.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\System32\Drivers\rdpwd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\System32\Drivers\sermouse.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\System32\Drivers\sr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdpipe.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\System32\Drivers\tdtcp.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\System32\Drivers\vgasave.sys (.not file.)

 

 

 

---\\ Image File Execution Options (IFEO) (O50)

O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

 

 

 

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll

O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax

O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax

O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

O52 - TDSD: \drivers.desc\"msg711.acm"="Microsoft CCITT G.711 Audio CODEC" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"msgsm32.acm"="Microsoft GSM 6.10 Audio CODEC" . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"tssoft32.acm"="DSP Group TrueSpeech Audio CODEC" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm

O52 - TDSD: \drivers.desc\"iccvid.dll"="Cinepak Codec by Radius Inc." . (...) -- (.not file.)

O52 - TDSD: \drivers.desc\"ir32_32.dll"="Indeo codec by Intel" . (...) -- C:\WINDOWS\System32\ir32_32.dll

O52 - TDSD: \drivers.desc\"ir41_32.ax"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax

 

 

 

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\ATIPTA [Key] . (.ATI Technologies, Inc. - ATI Desktop Control Panel.) -- C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O53 - SMSR:HKLM\...\startupreg\EPSON SX210 Series [Key] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.exe

O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

O53 - SMSR:HKLM\...\startupreg\hpsysdrv [Key] . (.Hewlett-Packard Company - hpsysdrv.) -- c:\windows\system\hpsysdrv.exe

O53 - SMSR:HKLM\...\startupreg\KBD [Key] . (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\KBD.exe

O53 - SMSR:HKLM\...\startupreg\LifeCam [Key] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files\Microsoft LifeCam\LifeExp.exe

O53 - SMSR:HKLM\...\startupreg\LSBWatcher [Key] . (.Hewlett-Packard Company - LightScribe Burn Watcher.) -- c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe

O53 - SMSR:HKLM\...\startupreg\NeroFilterCheck [Key] . (.Nero AG - NeroCheck.) -- C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

O53 - SMSR:HKLM\...\startupreg\Raccourci vers la page des propriétés de High Definition Audio [Key] . (.Windows ® Server 2003 DDK provider - High Definition Audio Property Page Shortcu.) -- C:\Windows\System32\HDAudPropShortcut.exe

O53 - SMSR:HKLM\...\startupreg\VX1000 [Key] . (.Microsoft Corporation - Microsoft LifeCam Device Application.) -- C:\WINDOWS\vVX1000.exe

 

 

 

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll

 

 

 

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

 

 

 

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1

 

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.593AEFC67283D409F34CC1245D00A509] - 15/07/2011 - 18:07:18 ---A- . (.Agere Systems - SoftModem Device Driver.) -- C:\WINDOWS\system32\drivers\AGRSM.sys [1268204]

O58 - SDL:[MD5.F43601D255762F20D0E23A6D97062B0D] - 15/07/2011 - 05:40:04 ---A- . (.ATI Technologies Inc. - ATI Radeon WindowsNT Miniport Driver.) -- C:\WINDOWS\system32\drivers\ati2mtag.sys [821248]

O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 15/07/2011 - 13:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416]

O58 - SDL:[MD5.47B879406246FFDCED59E18D331A0E7D] - 15/07/2011 - 11:09:08 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [61960]

O58 - SDL:[MD5.87451AA7CC6B6A590EBCEA05E755075A] - 15/07/2011 - 13:28:03 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360]

O58 - SDL:[MD5.5FEDEF54757B34FB611B9EC8FB399364] - 15/07/2011 - 12:20:19 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\WINDOWS\system32\drivers\avipbb.sys [137656]

O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 15/07/2011 - 19:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528]

O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 15/07/2011 - 19:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776]

O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 15/07/2011 - 17:36:05 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384]

O58 - SDL:[MD5.160B24FD894E79E71C983EA403A6E6E7] - 15/07/2011 - 16:10:40 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Function Driver v1.0.) -- C:\WINDOWS\system32\drivers\Hdaudio.sys [113664]

O58 - SDL:[MD5.919DE7D76D2C0C0139E08B3E7592D62E] - 15/07/2011 - 07:46:46 ---A- . (.LT - LT Windows Modem.) -- C:\WINDOWS\system32\drivers\ltmdmnt.sys [607452]

O58 - SDL:[MD5.3D2C13377763EEAC0CA6FB46F57217ED] - 15/07/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22712]

O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 15/07/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [39984]

O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 15/07/2011 - 19:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032]

O58 - SDL:[MD5.07C02C892E8E1A72D6BF35004F0E9C5E] - 15/07/2011 - 02:13:18 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) -- C:\WINDOWS\system32\drivers\PCASp50.sys [20096]

O58 - SDL:[MD5.175CC28DCF819F78CAA3FBD44AD9E52A] - 15/07/2011 - 15:53:26 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys [21632]

O58 - SDL:[MD5.9B793A1FFD480155FE9EE5261153F21B] - 15/07/2011 - 22:43:50 ---A- . (.Hewlett-Packard Company - PS2 SYS.) -- C:\WINDOWS\system32\drivers\PS2.sys [23808]

O58 - SDL:[MD5.D24DFD16A1E2A76034DF5AA18125C35D] - 15/07/2011 - 09:30:58 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\WINDOWS\system32\drivers\psi_mf.sys [15544]

O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 15/07/2011 - 05:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792]

O58 - SDL:[MD5.30CBAE0A34359F1CD19D1576245149ED] - 15/07/2011 - 08:49:36 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys [20576]

O58 - SDL:[MD5.2EF9C0DC26B30B2318B1FC3FAA1F0AE7] - 15/07/2011 - 18:04:10 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8139/810x Family NDIS 5.1 Drv.) -- C:\WINDOWS\system32\drivers\R8139n51.sys [46976]

O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 15/07/2011 - 19:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032]

O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 15/07/2011 - 19:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032]

O58 - SDL:[MD5.93903DDD430DB2FC61CBEEB2BE651E9F] - 15/07/2011 - 00:18:52 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys [2522560]

O58 - SDL:[MD5.D507C1400284176573224903819FFDA3] - 15/07/2011 - 05:31:34 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8139 NDIS 5.0 Driver.) -- C:\WINDOWS\system32\drivers\RTL8139.sys [20992]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 15/07/2011 - 17:39:15 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.4C0D673281178CB496011A2E28571FC8] - 15/07/2011 - 13:44:04 ---A- . (.Protection Technology - StarForce Protection Environment Driver.) -- C:\WINDOWS\system32\drivers\sfdrv01.sys [50688]

O58 - SDL:[MD5.15BE2B5E4DC5B8623CF167720682ABC9] - 15/07/2011 - 14:20:39 ---A- . (.Protection Technology - StarForce Protection Helper Driver.) -- C:\WINDOWS\system32\drivers\sfhlp02.sys [6656]

O58 - SDL:[MD5.EFEBBC1D13FDB77A6AF4EDDFC7232EDF] - 15/07/2011 - 15:06:28 ---A- . (.Protection Technology - StarForce Protection Synchronization Driver.) -- C:\WINDOWS\system32\drivers\sfsync02.sys [19968]

O58 - SDL:[MD5.9EF50060CC7E6953BAB83F2A42CCC421] - 15/07/2011 - 18:01:51 ---A- . (.Protection Technology - StarForce Protection VFS Driver.) -- C:\WINDOWS\system32\drivers\sfvfs02.sys [66048]

O58 - SDL:[MD5.3FBB6EF8B5A71A2FA11F5F461BB73219] - 15/07/2011 - 05:31:36 ---A- . (.SiS Corporation - SiS PCI Fast Ethernet Adapter Driver.) -- C:\WINDOWS\system32\drivers\sisnic.sys [32768]

O58 - SDL:[MD5.10EF1200FEFFFFFF00000000C0F11200] - 16/03/2011 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [431672]

O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 15/07/2011 - 13:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520]

O58 - SDL:[MD5.EAA66218CD39F5BB1B4853A78C67C787] - 15/07/2011 - 10:01:26 ---A- . (.MCCI - SAMSUNG USB Mobile Device.) -- C:\WINDOWS\system32\drivers\ss_bbus.sys [90112]

O58 - SDL:[MD5.F8A771C5A63DC641772B7A3B05AF173F] - 15/07/2011 - 10:01:26 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_bcm.sys [12160]

O58 - SDL:[MD5.F8A771C5A63DC641772B7A3B05AF173F] - 15/07/2011 - 10:01:26 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_bcmnt.sys [12160]

O58 - SDL:[MD5.91765F99914ED8693D8BC76524F21581] - 15/07/2011 - 10:01:26 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem Filter.) -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys [14976]

O58 - SDL:[MD5.840E7B738B03C10EE91D9B7D3D6EFF15] - 15/07/2011 - 10:01:26 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem.) -- C:\WINDOWS\system32\drivers\ss_bmdm.sys [121856]

O58 - SDL:[MD5.29B73D03AE6EDABB88E50364B066A6CA] - 15/07/2011 - 10:01:26 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\WINDOWS\system32\drivers\ss_bwh.sys [12160]

O58 - SDL:[MD5.29B73D03AE6EDABB88E50364B066A6CA] - 15/07/2011 - 10:01:26 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\WINDOWS\system32\drivers\ss_bwhnt.sys [12160]

O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 15/07/2011 - 13:31:03 ---A- . (...) -- C:\WINDOWS\system32\drivers\StarOpen.sys [5632]

O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 15/07/2011 - 19:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376]

O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 15/07/2011 - 19:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112]

O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]

O58 - SDL:[MD5.F73227E8AF8E3EF07AFF7F26B2CDD1F9] - 15/07/2011 - 08:54:34 ---A- . (...) -- C:\WINDOWS\system32\CHODDI.SYS [13282]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097]

O58 - SDL:[MD5.790A4CA68F44BE35967B3DF61F3E4675] - 15/07/2011 - 09:39:36 ---A- . (...) -- C:\WINDOWS\system32\FsUsbExDisk.Sys [36608]

O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912]

O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 15/07/2011 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537]

O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 15/07/2011 - 05:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146]

O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 15/07/2011 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000]

O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 15/07/2011 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560]

O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 15/07/2011 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648]

O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 15/07/2011 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424]

O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 15/07/2011 - 19:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560]

O58 - SDL:[MD5.050C38EBB22512122E54B47DC278BCCD] - 15/07/2011 - 10:02:32 ---A- . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) -- C:\WINDOWS\system32\vsdatant.sys [532224]

 

 

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 13/07/2011 - 00:14:09 ---A- C:\Documents And Settings\NetworkService\Cookies\index.dat [16384]

O61 - LFC:Last File Created 13/07/2011 - 00:14:09 ---A- C:\Documents And Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat [16384]

O61 - LFC:Last File Created 13/07/2011 - 00:14:28 ---A- C:\Documents And Settings\LocalService\Cookies\index.dat [16384]

O61 - LFC:Last File Created 13/07/2011 - 00:14:28 ---A- C:\Documents And Settings\LocalService\Local Settings\Historique\History.IE5\index.dat [16384]

O61 - LFC:Last File Created 13/07/2011 - 00:16:49 ---A- C:\Documents And Settings\Compaq_Propriétaire\UserData\index.dat [32768]

O61 - LFC:Last File Created 13/07/2011 - 00:16:49 -SHA- C:\Documents And Settings\Compaq_Propriétaire\IECompatCache\index.dat [16384]

O61 - LFC:Last File Created 13/07/2011 - 00:16:49 -SHA- C:\Documents And Settings\Compaq_Propriétaire\IETldCache\index.dat [262144]

O61 - LFC:Last File Created 13/07/2011 - 00:16:49 -SHA- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat [32768]

O61 - LFC:Last File Created 13/07/2011 - 00:16:49 -SHA- C:\Documents And Settings\Compaq_Propriétaire\PrivacIE\index.dat [196608]

O61 - LFC:Last File Created 13/07/2011 - 00:16:50 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Historique\History.IE5\index.dat [606208]

O61 - LFC:Last File Created 13/07/2011 - 00:16:50 -SHA- C:\Documents And Settings\Compaq_Propriétaire\Cookies\index.dat [81920]

O61 - LFC:Last File Created 13/07/2011 - 07:41:42 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Update downloads.log [10842]

O61 - LFC:Last File Created 13/07/2011 - 08:54:43 ---A- C:\Documents And Settings\Compaq_Propriétaire\Mes documents\Downloads\sexion d'assaut wati by night.mp3 [5842305]

O61 - LFC:Last File Created 13/07/2011 - 09:16:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Mes documents\Downloads\Mumu.FRENCH.DVDRip.XviD.avi [730460160]

O61 - LFC:Last File Created 13/07/2011 - 10:11:59 -SHA- C:\Documents And Settings\All Users\DRM\drmstore.hds [167936]

O61 - LFC:Last File Created 13/07/2011 - 10:29:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\{23A79ED6-070A-4FF7-A7C8-B9C36D9D95CA}_0.wmdb [1240]

O61 - LFC:Last File Created 13/07/2011 - 10:29:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\{23A79ED6-070A-4FF7-A7C8-B9C36D9D95CA}_1.wmdb [1240]

O61 - LFC:Last File Created 13/07/2011 - 10:29:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\{23A79ED6-070A-4FF7-A7C8-B9C36D9D95CA}_2.wmdb [68196]

O61 - LFC:Last File Created 13/07/2011 - 10:29:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\{23A79ED6-070A-4FF7-A7C8-B9C36D9D95CA}_3.wmdb [1240]

O61 - LFC:Last File Created 13/07/2011 - 10:29:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\{23A79ED6-070A-4FF7-A7C8-B9C36D9D95CA}_4.wmdb [1240]

O61 - LFC:Last File Created 13/07/2011 - 10:29:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\{23A79ED6-070A-4FF7-A7C8-B9C36D9D95CA}_5.wmdb [1240]

O61 - LFC:Last File Created 13/07/2011 - 11:01:06 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20110713-120003-20617A02.LOG [20954]

O61 - LFC:Last File Created 13/07/2011 - 11:11:16 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\5df2_appcompat.txt [96280]

O61 - LFC:Last File Created 13/07/2011 - 11:11:52 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\cb934d0b.avl [1712]

O61 - LFC:Last File Created 13/07/2011 - 11:11:53 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20110712-120006-2EADD857.LOG [22568]

O61 - LFC:Last File Created 13/07/2011 - 12:16:06 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Silverlight\is\lwrdtikf.tbj\1lxr2neh.huw\1\s\gcdjzxxajx2n1cbv4jurqx3yfvqbgmuprn5pq5wiiwc0vhfzmyaaagha\group.dat [56]

O61 - LFC:Last File Created 13/07/2011 - 15:18:57 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\IDX\master.idx [56]

O61 - LFC:Last File Created 13/07/2011 - 15:19:55 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@notifier.avira[2].txt [361]

O61 - LFC:Last File Created 13/07/2011 - 15:20:33 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\d9daa9d6.avl [2484]

O61 - LFC:Last File Created 13/07/2011 - 15:20:34 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-13-16-18-24.log [36602]

O61 - LFC:Last File Created 13/07/2011 - 16:10:59 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\89ca88a7.avl [1612]

O61 - LFC:Last File Created 13/07/2011 - 16:11:00 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-12-17-08-54.log [16518]

O61 - LFC:Last File Created 13/07/2011 - 16:53:40 -SHA- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Internet Explorer\DOMStore\index.dat [32768]

O61 - LFC:Last File Created 13/07/2011 - 17:22:08 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-63eb41ef.idx [487]

O61 - LFC:Last File Created 13/07/2011 - 18:28:44 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Silverlight\mssl.lck [77]

O61 - LFC:Last File Created 13/07/2011 - 20:21:59 -SHA- C:\Documents And Settings\LocalService\Local Settings\Temp\Cookies\index.dat [16384]

O61 - LFC:Last File Created 13/07/2011 - 20:21:59 -SHA- C:\Documents And Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat [32768]

O61 - LFC:Last File Created 13/07/2011 - 20:21:59 -SHA- C:\Documents And Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat [16384]

O61 - LFC:Last File Created 13/07/2011 - 21:52:32 -SHA- C:\Documents And Settings\Compaq_Propriétaire\Mes documents\Downloads\Thumbs.db [425472]

O61 - LFC:Last File Created 13/07/2011 - 22:10:37 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\vlc\ml.xspf [304]

O61 - LFC:Last File Created 13/07/2011 - 23:31:01 -SHA- C:\Documents And Settings\LocalService\IETldCache\index.dat [262144]

O61 - LFC:Last File Created 14/07/2011 - 00:36:35 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\LocalMLS_0.wmdb [442020]

O61 - LFC:Last File Created 14/07/2011 - 00:36:35 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\wmpfolders.wmdb [2876]

O61 - LFC:Last File Created 14/07/2011 - 01:00:01 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Adobe\AAMUpdater\1.0\aamu.log [50647]

O61 - LFC:Last File Created 14/07/2011 - 01:00:04 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Adobe\AAMUpdater\1.0\CSUTracker.sig [32]

O61 - LFC:Last File Created 14/07/2011 - 01:00:04 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Adobe\AAMUpdater\1.0\aamus.log [43660]

O61 - LFC:Last File Created 14/07/2011 - 01:00:05 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Adobe\AAMUpdater\1.0\AdobeUpdaterPrefs.dat [6673]

O61 - LFC:Last File Created 14/07/2011 - 01:08:22 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_360.wmdb [9129984]

O61 - LFC:Last File Created 14/07/2011 - 01:09:45 ---A- C:\Documents And Settings\All Users\Application Data\EPSON\EPSON SX210 Series\040c.E_FCF0FDE.WAT [13482]

O61 - LFC:Last File Created 14/07/2011 - 08:06:39 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Adobe\Flash Player\AssetCache\J3WGKTS5\7421C71F94DB4F028E7528B2D278F3FE4DC21273.heu [149]

O61 - LFC:Last File Created 14/07/2011 - 10:24:20 ---A- C:\Documents And Settings\Compaq_Propriétaire\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]

O61 - LFC:Last File Created 14/07/2011 - 10:30:01 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\Backup\new\contacts.edb [16801792]

O61 - LFC:Last File Created 14/07/2011 - 10:30:01 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\LogFiles\edb00097.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 10:30:02 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\Backup\new\contacts.pat [16384]

O61 - LFC:Last File Created 14/07/2011 - 10:30:02 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\Backup\new\edb00097.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 10:30:02 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\contacts.pat [16384]

O61 - LFC:Last File Created 14/07/2011 - 10:31:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\Backup\new\contacts.edb [8413184]

O61 - LFC:Last File Created 14/07/2011 - 10:31:25 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\Backup\new\contacts.pat [16384]

O61 - LFC:Last File Created 14/07/2011 - 10:31:25 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\Backup\new\edb0006E.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 10:31:25 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\LogFiles\edb0006E.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 10:31:25 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\contacts.pat [16384]

O61 - LFC:Last File Created 14/07/2011 - 11:00:33 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\e10ecdc9.avl [1700]

O61 - LFC:Last File Created 14/07/2011 - 11:00:36 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20110714-120007-83D5354D.LOG [20824]

O61 - LFC:Last File Created 14/07/2011 - 11:48:59 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@nspmotion[3].txt [114]

O61 - LFC:Last File Created 14/07/2011 - 11:49:00 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@rad.msn[3].txt [5876]

O61 - LFC:Last File Created 14/07/2011 - 11:53:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\Backup\new\contacts.edb [73424896]

O61 - LFC:Last File Created 14/07/2011 - 11:53:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\Backup\new\edb004EE.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 11:53:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\LogFiles\edb004EE.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 11:53:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\contacts.pat [16384]

O61 - LFC:Last File Created 14/07/2011 - 11:53:25 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\Backup\new\contacts.pat [16384]

O61 - LFC:Last File Created 14/07/2011 - 11:53:54 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\Backup\new\contacts.edb [6316032]

O61 - LFC:Last File Created 14/07/2011 - 11:53:55 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\Backup\new\contacts.pat [16384]

O61 - LFC:Last File Created 14/07/2011 - 11:53:55 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\Backup\new\edb0008A.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 11:53:55 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\LogFiles\edb0008A.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 11:53:55 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\contacts.pat [16384]

O61 - LFC:Last File Created 14/07/2011 - 14:01:05 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\Upd-2011-07-14-15-01-00.log [2740]

O61 - LFC:Last File Created 14/07/2011 - 14:01:05 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\02576eae.avl [1530]

O61 - LFC:Last File Created 14/07/2011 - 15:04:46 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\LogFiles\edb.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 15:04:46 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\contacts.edb [8404992]

O61 - LFC:Last File Created 14/07/2011 - 15:04:46 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\edb.chk [8192]

O61 - LFC:Last File Created 14/07/2011 - 15:04:48 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\LogFiles\edb.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 15:04:48 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\contacts.edb [16793600]

O61 - LFC:Last File Created 14/07/2011 - 15:04:48 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\edb.chk [8192]

O61 - LFC:Last File Created 14/07/2011 - 15:04:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@adnxs[1].txt [465]

O61 - LFC:Last File Created 14/07/2011 - 15:04:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@invitemedia[1].txt [413]

O61 - LFC:Last File Created 14/07/2011 - 15:47:52 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Adobe\Flash Player\AssetCache\J3WGKTS5\1C04C61346A1FA3139A37D860ED92632AA13DECF.heu [150]

O61 - LFC:Last File Created 14/07/2011 - 16:52:27 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.01net[1].txt [68]

O61 - LFC:Last File Created 14/07/2011 - 16:53:00 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@addthis[3].txt [155]

O61 - LFC:Last File Created 14/07/2011 - 16:53:19 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@fl01.ct2.comclick[2].txt [608]

O61 - LFC:Last File Created 14/07/2011 - 16:53:21 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ad.zanox[2].txt [234]

O61 - LFC:Last File Created 14/07/2011 - 16:53:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@cofidis2.solution.weborama[3].txt [416]

O61 - LFC:Last File Created 14/07/2011 - 16:53:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@01net[2].txt [955]

O61 - LFC:Last File Created 14/07/2011 - 16:54:35 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\MSN Messenger\sqmnoopt00.sqm [944]

O61 - LFC:Last File Created 14/07/2011 - 16:54:50 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\contacts.edb [6307840]

O61 - LFC:Last File Created 14/07/2011 - 16:54:51 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\LogFiles\edb.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 16:54:51 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\edb.chk [8192]

O61 - LFC:Last File Created 14/07/2011 - 16:54:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\MSN Messenger\sqmnoopt01.sqm [284]

O61 - LFC:Last File Created 14/07/2011 - 16:54:59 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\LogFiles\edb.log [4194304]

O61 - LFC:Last File Created 14/07/2011 - 16:54:59 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\contacts.edb [73416704]

O61 - LFC:Last File Created 14/07/2011 - 16:54:59 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\edb.chk [8192]

O61 - LFC:Last File Created 14/07/2011 - 16:55:26 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Messenger\ContactsLog.txt [3962099]

O61 - LFC:Last File Created 14/07/2011 - 16:55:29 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\REPORTS\170b4d92.avl [1698]

O61 - LFC:Last File Created 14/07/2011 - 16:55:37 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\AVSCAN-20110714-175435-3D31D055.LOG [14686]

O61 - LFC:Last File Created 14/07/2011 - 16:56:22 ---A- C:\Documents And Settings\Compaq_Propriétaire\Bureau\hijackthis.log [8691]

O61 - LFC:Last File Created 14/07/2011 - 17:06:45 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\Microsoft .NET Framework 2.0-KB2478658_20110714_160543640-Msi0.txt [4821938]

O61 - LFC:Last File Created 14/07/2011 - 17:06:46 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\dd_clwireg.txt [299290]

O61 - LFC:Last File Created 14/07/2011 - 17:07:44 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\Microsoft .NET Framework 2.0-KB2446704_20110714_160652656-Msi0.txt [4826958]

O61 - LFC:Last File Created 14/07/2011 - 17:50:41 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\66a0_appcompat.txt [96280]

O61 - LFC:Last File Created 14/07/2011 - 18:05:13 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\chrome_installer.log [1756]

O61 - LFC:Last File Created 14/07/2011 - 18:46:52 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Adobe\Flash Player\AssetCache\J3WGKTS5\FF56DCA4C4D6043F3D639EFF51BF9A2934B7456B.heu [149]

O61 - LFC:Last File Created 14/07/2011 - 18:46:53 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Adobe\Flash Player\AssetCache\J3WGKTS5\1000E3FF6E0A25A84E2A8866132C8A4A67BB7356.heu [149]

O61 - LFC:Last File Created 15/07/2011 - 00:01:32 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@atdmt.combing[3].txt [252]

O61 - LFC:Last File Created 15/07/2011 - 00:01:32 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@windowsmarketplace[3].txt [262]

O61 - LFC:Last File Created 15/07/2011 - 00:01:32 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@zune[3].txt [234]

O61 - LFC:Last File Created 15/07/2011 - 00:03:13 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@adviva[1].txt [82]

O61 - LFC:Last File Created 15/07/2011 - 00:03:41 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@doubleclick[1].txt [140]

O61 - LFC:Last File Created 15/07/2011 - 00:03:43 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Adobe\Flash Player\AssetCache\J3WGKTS5\1846548181EAE8A4BB86AFC74FD021D9A0F6DFA6.heu [150]

O61 - LFC:Last File Created 15/07/2011 - 00:03:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#s.kewego.com\settings.sol [82]

O61 - LFC:Last File Created 15/07/2011 - 00:05:10 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Bloom [4843044]

O61 - LFC:Last File Created 15/07/2011 - 00:05:10 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Download [168748]

O61 - LFC:Last File Created 15/07/2011 - 00:05:12 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Safe Browsing Bloom Filter 2 [1848562]

O61 - LFC:Last File Created 15/07/2011 - 00:05:59 ---A- C:\Documents And Settings\Compaq_Propriétaire\Bureau\ZHPDiag2.exe [2538576]

O61 - LFC:Last File Created 15/07/2011 - 00:06:27 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Last Tabs [5308]

O61 - LFC:Last File Created 15/07/2011 - 00:06:54 ---A- C:\Documents And Settings\All Users\Menu Démarrer\Programmes\ZHP\ZHPDiag.lnk [489]

O61 - LFC:Last File Created 15/07/2011 - 00:06:55 ---A- C:\Documents And Settings\All Users\Bureau\MBRCheck.lnk [681]

O61 - LFC:Last File Created 15/07/2011 - 00:06:55 ---A- C:\Documents And Settings\All Users\Bureau\ZHPDiag.lnk [674]

O61 - LFC:Last File Created 15/07/2011 - 00:06:55 ---A- C:\Documents And Settings\All Users\Bureau\ZHPFix.lnk [669]

O61 - LFC:Last File Created 15/07/2011 - 00:08:35 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@sfr.solution.weborama[1].txt [407]

O61 - LFC:Last File Created 15/07/2011 - 00:11:50 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Last Session [172737]

O61 - LFC:Last File Created 15/07/2011 - 00:11:50 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Local State [8244]

O61 - LFC:Last File Created 15/07/2011 - 00:11:52 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Visited Links [262160]

O61 - LFC:Last File Created 15/07/2011 - 00:14:04 -SHA- C:\Documents And Settings\NetworkService\Local Settings\desktop.ini [62]

O61 - LFC:Last File Created 15/07/2011 - 00:14:08 -SHA- C:\Documents And Settings\LocalService\Local Settings\desktop.ini [62]

O61 - LFC:Last File Created 15/07/2011 - 00:14:18 -SHA- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\desktop.ini [62]

O61 - LFC:Last File Created 15/07/2011 - 00:14:19 -SHA- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Credentials\S-1-5-21-715473848-753477010-3518425902-1007\Credentials [22514]

O61 - LFC:Last File Created 15/07/2011 - 00:14:35 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\sched.log [286962]

O61 - LFC:Last File Created 15/07/2011 - 00:14:41 ---A- C:\Documents And Settings\All Users\Application Data\EPSON\STM3\E_S40ST.LOG [7820]

O61 - LFC:Last File Created 15/07/2011 - 00:14:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\AdobeARM.log [119227]

O61 - LFC:Last File Created 15/07/2011 - 00:15:25 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\LOGFILES\avguard.log [996660]

O61 - LFC:Last File Created 15/07/2011 - 00:15:27 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\EVENTDB\avevtdb.dbe [52224]

O61 - LFC:Last File Created 15/07/2011 - 00:15:34 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\IswTmp\Logs\FFApi.swl [1020]

O61 - LFC:Last File Created 15/07/2011 - 00:15:35 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DFD476.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 00:15:59 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat [34527]

O61 - LFC:Last File Created 15/07/2011 - 00:15:59 ---A- C:\Documents And Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat [34527]

O61 - LFC:Last File Created 15/07/2011 - 00:16:35 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\JOBS\updjob.avj [1530]

O61 - LFC:Last File Created 15/07/2011 - 00:16:49 -SHA- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Historique\History.IE5\MSHist012011071520110716\index.dat [32768]

O61 - LFC:Last File Created 15/07/2011 - 00:16:53 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@atdmt[3].txt [412]

O61 - LFC:Last File Created 15/07/2011 - 00:16:53 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@live[3].txt [738]

O61 - LFC:Last File Created 15/07/2011 - 00:16:53 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@msn[4].txt [620]

O61 - LFC:Last File Created 15/07/2011 - 00:16:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\UserData\7IKVSZ3G\pmocntr2[1].xml [40]

O61 - LFC:Last File Created 15/07/2011 - 00:18:45 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.ovh[1].txt [76]

O61 - LFC:Last File Created 15/07/2011 - 00:19:03 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@zebulon[2].txt [639]

O61 - LFC:Last File Created 15/07/2011 - 00:19:04 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@forum.zebulon[2].txt [368]

O61 - LFC:Last File Created 15/07/2011 - 00:19:06 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@www.zebulon[2].txt [101]

O61 - LFC:Last File Created 15/07/2011 - 00:19:08 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@intellitxt[2].txt [224]

O61 - LFC:Last File Created 15/07/2011 - 00:19:08 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@scorecardresearch[2].txt [112]

O61 - LFC:Last File Created 15/07/2011 - 00:19:08 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@societegenerale.solution.weborama[2].txt [426]

O61 - LFC:Last File Created 15/07/2011 - 00:19:54 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\jusched.log [114424]

O61 - LFC:Last File Created 15/07/2011 - 00:20:19 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data [98304]

O61 - LFC:Last File Created 15/07/2011 - 00:20:20 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data-journal [6680]

O61 - LFC:Last File Created 15/07/2011 - 00:21:02 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000001 [24448]

O61 - LFC:Last File Created 15/07/2011 - 00:21:02 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000002 [31780]

O61 - LFC:Last File Created 15/07/2011 - 00:21:02 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000003 [17069]

O61 - LFC:Last File Created 15/07/2011 - 00:21:07 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000004 [38447]

O61 - LFC:Last File Created 15/07/2011 - 00:21:08 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000005 [16786]

O61 - LFC:Last File Created 15/07/2011 - 00:21:08 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000006 [37775]

O61 - LFC:Last File Created 15/07/2011 - 00:21:09 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000007 [36126]

O61 - LFC:Last File Created 15/07/2011 - 00:21:10 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000008 [17683]

O61 - LFC:Last File Created 15/07/2011 - 00:21:11 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00000a [21941]

O61 - LFC:Last File Created 15/07/2011 - 00:21:13 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00000b [40850]

O61 - LFC:Last File Created 15/07/2011 - 00:21:13 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00000c [19194]

O61 - LFC:Last File Created 15/07/2011 - 00:21:14 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00000d [49300]

O61 - LFC:Last File Created 15/07/2011 - 00:21:14 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00000e [31780]

O61 - LFC:Last File Created 15/07/2011 - 00:21:17 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00000f [21072]

O61 - LFC:Last File Created 15/07/2011 - 00:21:18 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000010 [31179]

O61 - LFC:Last File Created 15/07/2011 - 00:21:18 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000011 [20708]

O61 - LFC:Last File Created 15/07/2011 - 00:21:18 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000012 [38213]

O61 - LFC:Last File Created 15/07/2011 - 00:21:19 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000013 [24030]

O61 - LFC:Last File Created 15/07/2011 - 00:21:19 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000014 [25552]

O61 - LFC:Last File Created 15/07/2011 - 00:21:20 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000015 [70294]

O61 - LFC:Last File Created 15/07/2011 - 00:21:20 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000016 [182794]

O61 - LFC:Last File Created 15/07/2011 - 00:21:21 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000017 [104059]

O61 - LFC:Last File Created 15/07/2011 - 00:21:21 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000018 [143235]

O61 - LFC:Last File Created 15/07/2011 - 00:21:21 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000019 [77510]

O61 - LFC:Last File Created 15/07/2011 - 00:21:21 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00001a [85060]

O61 - LFC:Last File Created 15/07/2011 - 00:21:21 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00001b [36089]

O61 - LFC:Last File Created 15/07/2011 - 00:21:21 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00001c [59641]

O61 - LFC:Last File Created 15/07/2011 - 00:21:22 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00001d [193767]

O61 - LFC:Last File Created 15/07/2011 - 00:21:22 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00001e [48693]

O61 - LFC:Last File Created 15/07/2011 - 00:21:22 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00001f [155974]

O61 - LFC:Last File Created 15/07/2011 - 00:21:22 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000020 [21011]

O61 - LFC:Last File Created 15/07/2011 - 00:21:22 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000021 [67409]

O61 - LFC:Last File Created 15/07/2011 - 00:21:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000022 [39336]

O61 - LFC:Last File Created 15/07/2011 - 00:21:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000023 [60524]

O61 - LFC:Last File Created 15/07/2011 - 00:21:23 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000024 [31994]

O61 - LFC:Last File Created 15/07/2011 - 00:21:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000025 [48086]

O61 - LFC:Last File Created 15/07/2011 - 00:21:25 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000026 [17044]

O61 - LFC:Last File Created 15/07/2011 - 00:21:26 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000027 [31124]

O61 - LFC:Last File Created 15/07/2011 - 00:21:26 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000028 [44384]

O61 - LFC:Last File Created 15/07/2011 - 00:21:26 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000029 [24193]

O61 - LFC:Last File Created 15/07/2011 - 00:21:28 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00002a [78500]

O61 - LFC:Last File Created 15/07/2011 - 00:21:32 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00002b [187249]

O61 - LFC:Last File Created 15/07/2011 - 00:21:32 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00002c [27950]

O61 - LFC:Last File Created 15/07/2011 - 00:21:33 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00002d [89072]

O61 - LFC:Last File Created 15/07/2011 - 00:21:33 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00002e [39907]

O61 - LFC:Last File Created 15/07/2011 - 00:21:35 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00002f [160542]

O61 - LFC:Last File Created 15/07/2011 - 00:21:36 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#s.ytimg.com\settings.sol [81]

O61 - LFC:Last File Created 15/07/2011 - 00:21:36 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000030 [199892]

O61 - LFC:Last File Created 15/07/2011 - 00:21:37 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol [543]

O61 - LFC:Last File Created 15/07/2011 - 00:21:37 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000031 [24744]

O61 - LFC:Last File Created 15/07/2011 - 00:21:38 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000032 [42926]

O61 - LFC:Last File Created 15/07/2011 - 00:21:39 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000033 [19885]

O61 - LFC:Last File Created 15/07/2011 - 00:21:42 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000036 [32561]

O61 - LFC:Last File Created 15/07/2011 - 00:21:42 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000037 [41392]

O61 - LFC:Last File Created 15/07/2011 - 00:21:42 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000038 [45090]

O61 - LFC:Last File Created 15/07/2011 - 00:21:42 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000039 [33662]

O61 - LFC:Last File Created 15/07/2011 - 00:21:43 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00003a [51202]

O61 - LFC:Last File Created 15/07/2011 - 00:22:33 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000035 [5047586]

O61 - LFC:Last File Created 15/07/2011 - 00:22:34 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_000034 [6730528]

O61 - LFC:Last File Created 15/07/2011 - 00:22:45 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [18604]

O61 - LFC:Last File Created 15/07/2011 - 00:22:56 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00003b [179559]

O61 - LFC:Last File Created 15/07/2011 - 00:22:59 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00003c [17910]

O61 - LFC:Last File Created 15/07/2011 - 00:23:00 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Top Sites [253952]

O61 - LFC:Last File Created 15/07/2011 - 00:23:09 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache\f_00003d [45635]

O61 - LFC:Last File Created 15/07/2011 - 00:23:12 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\History [18468864]

O61 - LFC:Last File Created 15/07/2011 - 00:23:13 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Favicons [1130496]

O61 - LFC:Last File Created 15/07/2011 - 00:23:13 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Favicons-journal [19016]

O61 - LFC:Last File Created 15/07/2011 - 00:23:13 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\History-journal [78488]

O61 - LFC:Last File Created 15/07/2011 - 00:23:14 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\History Index 2011-07 [28688384]

O61 - LFC:Last File Created 15/07/2011 - 00:23:14 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\History Index 2011-07-journal [123632]

O61 - LFC:Last File Created 15/07/2011 - 00:23:27 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies [15360]

O61 - LFC:Last File Created 15/07/2011 - 01:00:04 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Adobe\AAMUpdater\1.0\CSUTracker.xml [11236]

O61 - LFC:Last File Created 15/07/2011 - 01:02:59 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Media\11.0\WMSDKNS.XML [10520]

O61 - LFC:Last File Created 15/07/2011 - 05:07:49 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DF63D.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 05:08:27 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DFCB09.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 07:24:50 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DF8AD1.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 07:41:10 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DF9572.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 08:09:58 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\3D434AAE04CA1A2D4163E0DAD70AE256 [379240]

O61 - LFC:Last File Created 15/07/2011 - 08:09:58 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\3D434AAE04CA1A2D4163E0DAD70AE256 [126]

O61 - LFC:Last File Created 15/07/2011 - 08:41:22 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DFD1A5.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 08:51:34 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\08A1C9C30288A186F932D2F6CE954534 [27666]

O61 - LFC:Last File Created 15/07/2011 - 08:51:34 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\08A1C9C30288A186F932D2F6CE954534 [110]

O61 - LFC:Last File Created 15/07/2011 - 08:53:52 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\sexion d'assaut wati by night.lnk [792]

O61 - LFC:Last File Created 15/07/2011 - 09:33:36 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DFCC43.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 10:02:25 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\B8C6550ED60EAE2224B658D741FD2BAF [3130]

O61 - LFC:Last File Created 15/07/2011 - 10:02:25 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\B8C6550ED60EAE2224B658D741FD2BAF [150]

O61 - LFC:Last File Created 15/07/2011 - 10:02:30 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\AE72BA8FA1BD046010448CD17CD763B6 [480]

O61 - LFC:Last File Created 15/07/2011 - 10:02:30 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\AE72BA8FA1BD046010448CD17CD763B6 [160]

O61 - LFC:Last File Created 15/07/2011 - 10:02:31 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\84488E64E727CCD029DC0F3DA2CDB0AB [2182]

O61 - LFC:Last File Created 15/07/2011 - 10:02:31 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\84488E64E727CCD029DC0F3DA2CDB0AB [134]

O61 - LFC:Last File Created 15/07/2011 - 10:03:54 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\930D1D196EE05A60D0FD6680AB99D0D5 [150736]

O61 - LFC:Last File Created 15/07/2011 - 10:03:54 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\930D1D196EE05A60D0FD6680AB99D0D5 [120]

O61 - LFC:Last File Created 15/07/2011 - 10:06:22 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\F1DF5E0D45B2C612553BF0CDD84F0A7D [343317]

O61 - LFC:Last File Created 15/07/2011 - 10:06:22 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\F1DF5E0D45B2C612553BF0CDD84F0A7D [98]

O61 - LFC:Last File Created 15/07/2011 - 10:12:08 -SH-- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\Cache d’images\LocalMLS\{6A133DD5-05C4-4E28-98E3-E438B70D432E}.jpg [9709]

O61 - LFC:Last File Created 15/07/2011 - 10:14:46 -SH-- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Media Player\Cache d’images\LocalMLS\{85B273F3-7600-494E-8D61-6C656BD33602}.jpg [13450]

O61 - LFC:Last File Created 15/07/2011 - 10:14:46 -SH-- C:\Documents And Settings\Compaq_Propriétaire\Mes documents\Downloads\AlbumArtSmall.jpg [2769]

O61 - LFC:Last File Created 15/07/2011 - 10:14:46 -SH-- C:\Documents And Settings\Compaq_Propriétaire\Mes documents\Downloads\Folder.jpg [13450]

O61 - LFC:Last File Created 15/07/2011 - 10:24:41 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Resident.log [44872]

O61 - LFC:Last File Created 15/07/2011 - 10:24:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\IdentityCRL\production\MetaConfig.xml [163]

O61 - LFC:Last File Created 15/07/2011 - 10:24:59 ---A- C:\Documents And Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@c.live[4].txt [68]

O61 - LFC:Last File Created 15/07/2011 - 10:26:08 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\B171751C11ECDD4C0C4BC4BBF7B99FBF [54941]

O61 - LFC:Last File Created 15/07/2011 - 10:26:08 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\B171751C11ECDD4C0C4BC4BBF7B99FBF [128]

O61 - LFC:Last File Created 15/07/2011 - 10:37:40 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\A partir de ce jour.lnk [995]

O61 - LFC:Last File Created 15/07/2011 - 10:41:04 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\MessengerCache\DimQgYXOvUuHXqGiLzvDw66Jleo= [2134]

O61 - LFC:Last File Created 15/07/2011 - 10:54:55 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\242FED42506F145C245BA5D903BED28E [284592]

O61 - LFC:Last File Created 15/07/2011 - 10:54:55 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\242FED42506F145C245BA5D903BED28E [98]

O61 - LFC:Last File Created 15/07/2011 - 10:57:07 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\BC5C93D569201747713451AB1B82F02C [679]

O61 - LFC:Last File Created 15/07/2011 - 10:57:07 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\D4F348B882DF3F205ECCB6243795CB3A [554]

O61 - LFC:Last File Created 15/07/2011 - 10:57:07 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\D4F348B882DF3F205ECCB6243795CB3A [112]

O61 - LFC:Last File Created 15/07/2011 - 10:57:08 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\BC5C93D569201747713451AB1B82F02C [126]

O61 - LFC:Last File Created 15/07/2011 - 11:00:36 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\JOBS\scanjob.avj [1712]

O61 - LFC:Last File Created 15/07/2011 - 11:32:15 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Je ne savais Pas.lnk [933]

O61 - LFC:Last File Created 15/07/2011 - 12:02:39 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\1B9435E949F2B3D267BABDE0C8BC19A6 [391980]

O61 - LFC:Last File Created 15/07/2011 - 12:02:39 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\1B9435E949F2B3D267BABDE0C8BC19A6 [134]

O61 - LFC:Last File Created 15/07/2011 - 12:18:10 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Silverlight\is\lwrdtikf.tbj\1lxr2neh.huw\1\s\gcdjzxxajx2n1cbv4jurqx3yfvqbgmuprn5pq5wiiwc0vhfzmyaaagha\f\__LocalSettings [3543]

O61 - LFC:Last File Created 15/07/2011 - 12:26:09 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Alicee. I love you..lnk [947]

O61 - LFC:Last File Created 15/07/2011 - 12:26:30 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Pour Montage (2).lnk [512]

O61 - LFC:Last File Created 15/07/2011 - 12:26:30 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\fond-ecran-voile-colore.lnk [716]

O61 - LFC:Last File Created 15/07/2011 - 12:29:55 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [179200]

O61 - LFC:Last File Created 15/07/2011 - 12:38:42 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\7FF753A25167371BBF6D960FE7CB41CA [348334]

O61 - LFC:Last File Created 15/07/2011 - 12:38:42 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\7FF753A25167371BBF6D960FE7CB41CA [98]

O61 - LFC:Last File Created 15/07/2011 - 13:39:14 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\D725F3459E2275E9EA5871B92AD896D0 [18010]

O61 - LFC:Last File Created 15/07/2011 - 13:39:14 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\D725F3459E2275E9EA5871B92AD896D0 [110]

O61 - LFC:Last File Created 15/07/2011 - 14:01:21 ---A- C:\Documents And Settings\All Users\Application Data\Avira\AntiVir Desktop\JOBS\29ea79a1.avj [1592]

O61 - LFC:Last File Created 15/07/2011 - 14:02:07 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\FCEA474F228C13CD0DAD678431D0ACFC [494]

O61 - LFC:Last File Created 15/07/2011 - 14:02:07 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\FCEA474F228C13CD0DAD678431D0ACFC [130]

O61 - LFC:Last File Created 15/07/2011 - 14:02:10 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\4E38ADB2E2C19F1B659587016FD1FF26 [4278]

O61 - LFC:Last File Created 15/07/2011 - 14:02:10 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\4E38ADB2E2C19F1B659587016FD1FF26 [128]

O61 - LFC:Last File Created 15/07/2011 - 14:11:31 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\B992213FF1BB6BC6F082153B98B351E1 [341087]

O61 - LFC:Last File Created 15/07/2011 - 14:11:31 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\B992213FF1BB6BC6F082153B98B351E1 [98]

O61 - LFC:Last File Created 15/07/2011 - 14:12:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Elle me dit c'est.lnk [937]

O61 - LFC:Last File Created 15/07/2011 - 14:49:47 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Messenger\DINGO563544@HOTMAIL.COM\SocialNews\WNResponse.xml [655]

O61 - LFC:Last File Created 15/07/2011 - 14:57:37 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\MessengerCache\Yu1bXbVDc1CMVuEaQZzZxTOK44w= [24451]

O61 - LFC:Last File Created 15/07/2011 - 14:57:46 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\MessengerCache\Xm93II5n0HWC314sVTklSuaIsVc= [18435]

O61 - LFC:Last File Created 15/07/2011 - 14:58:16 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\MessengerCache\tbcCTHeU9GTC6MXi5obeqRs2FU9g= [40048]

O61 - LFC:Last File Created 15/07/2011 - 15:04:46 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{c72bf8a5-72e3-4af9-8d2d-2d11ec7f9a91}\DBStore\dbstore.ini [174]

O61 - LFC:Last File Created 15/07/2011 - 15:04:48 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{95940874-f472-4658-a471-6e9175cf5542}\DBStore\dbstore.ini [174]

O61 - LFC:Last File Created 15/07/2011 - 15:05:04 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Messenger\CHOUMJC@HOTMAIL.COM\SocialNews\WNResponse.xml [63707]

O61 - LFC:Last File Created 15/07/2011 - 15:18:27 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DFE40B.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 15:28:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Mumu.FRENCH.DVDRip.XviD.lnk [838]

O61 - LFC:Last File Created 15/07/2011 - 15:33:50 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\0C8D6C16F5D2238BB200C5368ADCA7CC [323113]

O61 - LFC:Last File Created 15/07/2011 - 15:33:50 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\0C8D6C16F5D2238BB200C5368ADCA7CC [98]

O61 - LFC:Last File Created 15/07/2011 - 16:01:03 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\D'habitude, Pour faire Semblant.lnk [1067]

O61 - LFC:Last File Created 15/07/2011 - 16:09:07 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DF3E6.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 16:09:07 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\0797C381B2F87EB5A1D5573BD15BA4F4 [35639]

O61 - LFC:Last File Created 15/07/2011 - 16:09:07 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\0797C381B2F87EB5A1D5573BD15BA4F4 [132]

O61 - LFC:Last File Created 15/07/2011 - 16:13:25 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\5F74056C561F814B7771CB2993A44DEB [24918]

O61 - LFC:Last File Created 15/07/2011 - 16:13:25 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\5F74056C561F814B7771CB2993A44DEB [104]

O61 - LFC:Last File Created 15/07/2011 - 16:17:01 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\------------------------------.lnk [1003]

O61 - LFC:Last File Created 15/07/2011 - 16:17:01 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Les retouchées.lnk [687]

O61 - LFC:Last File Created 15/07/2011 - 16:53:04 ---A- C:\Documents And Settings\Compaq_Propriétaire\Bureau\HiJackThis.exe [401720]

O61 - LFC:Last File Created 15/07/2011 - 16:53:58 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\A8FABA189DB7D25FBA7CAC806625FD30 [96054]

O61 - LFC:Last File Created 15/07/2011 - 16:53:58 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\A8FABA189DB7D25FBA7CAC806625FD30 [124]

O61 - LFC:Last File Created 15/07/2011 - 16:54:17 -SH-- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Historique\History.IE5\desktop.ini [67]

O61 - LFC:Last File Created 15/07/2011 - 16:54:52 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{6a630cbb-37ca-43e1-bd00-6bde75737621}\DBStore\dbstore.ini [174]

O61 - LFC:Last File Created 15/07/2011 - 16:55:20 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Microsoft\Windows Live Contacts\{9fd817da-1d0b-418e-ac20-9db234c12d8d}\DBStore\dbstore.ini [174]

O61 - LFC:Last File Created 15/07/2011 - 17:06:45 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\Microsoft .NET Framework 2.0-KB2478658_20110714_160543640.html [128520]

O61 - LFC:Last File Created 15/07/2011 - 17:07:44 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\Microsoft .NET Framework 2.0-KB2446704_20110714_160652656.html [128518]

O61 - LFC:Last File Created 15/07/2011 - 17:10:53 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Bookmarks [61839]

O61 - LFC:Last File Created 15/07/2011 - 17:10:53 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\User Data\Default\Bookmarks.bak [61839]

O61 - LFC:Last File Created 15/07/2011 - 17:19:34 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\D0F063B6B88A2B8BFE21C3993A613447 [2200]

O61 - LFC:Last File Created 15/07/2011 - 17:19:34 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\D0F063B6B88A2B8BFE21C3993A613447 [178]

O61 - LFC:Last File Created 15/07/2011 - 17:43:20 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\107_PANA.lnk [308]

O61 - LFC:Last File Created 15/07/2011 - 17:44:27 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\27371171D8BBA336302695C6CEB04833 [644]

O61 - LFC:Last File Created 15/07/2011 - 17:44:27 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\4E29C7E9E83048EFCCC5C3D57B6818DB [985]

O61 - LFC:Last File Created 15/07/2011 - 17:44:27 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\27371171D8BBA336302695C6CEB04833 [130]

O61 - LFC:Last File Created 15/07/2011 - 17:44:27 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\4E29C7E9E83048EFCCC5C3D57B6818DB [120]

O61 - LFC:Last File Created 15/07/2011 - 17:48:27 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\En Espérant.lnk [643]

O61 - LFC:Last File Created 15/07/2011 - 17:49:55 ---A- C:\Documents And Settings\Compaq_Propriétaire\Mes documents\Downloads\CJXP52LE.exe [3278336]

O61 - LFC:Last File Created 15/07/2011 - 17:54:18 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DFDB58.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 17:54:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\fresh-paper.com-wallpaper-38.lnk [716]

O61 - LFC:Last File Created 15/07/2011 - 17:58:56 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Alice Coeur.lnk [1025]

O61 - LFC:Last File Created 15/07/2011 - 17:58:58 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Aide.lnk [793]

O61 - LFC:Last File Created 15/07/2011 - 18:02:29 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Montage Sky.lnk [489]

O61 - LFC:Last File Created 15/07/2011 - 18:02:29 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Your Eeyes.lnk [640]

O61 - LFC:Last File Created 15/07/2011 - 18:03:09 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\12.0.742.122\Installer\setup.exe [1271352]

O61 - LFC:Last File Created 15/07/2011 - 18:03:47 ---A- C:\Documents And Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Google Chrome\Google Chrome.lnk [2406]

O61 - LFC:Last File Created 15/07/2011 - 18:03:48 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2372]

O61 - LFC:Last File Created 15/07/2011 - 18:03:48 ---A- C:\Documents And Settings\Compaq_Propriétaire\Bureau\Google Chrome.lnk [2394]

O61 - LFC:Last File Created 15/07/2011 - 18:03:48 ---A- C:\Documents And Settings\Compaq_Propriétaire\Menu Démarrer\Programmes\Google Chrome\Désinstaller Google Chrome.lnk [2518]

O61 - LFC:Last File Created 15/07/2011 - 19:18:24 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Si toi aussi Ta .lnk [933]

O61 - LFC:Last File Created 15/07/2011 - 19:53:00 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\MessengerCache\TRkd2F+DlGFNnZSBrTBTvAhgPaig= [27024]

O61 - LFC:Last File Created 15/07/2011 - 20:10:43 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\96D7A99548C36B10D2E8035A3E0DCA1A [482083]

O61 - LFC:Last File Created 15/07/2011 - 20:10:43 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\96D7A99548C36B10D2E8035A3E0DCA1A [134]

O61 - LFC:Last File Created 15/07/2011 - 20:10:45 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\00813F57C0CBB9A83349C874FD014078 [187157]

O61 - LFC:Last File Created 15/07/2011 - 20:10:45 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\00813F57C0CBB9A83349C874FD014078 [124]

O61 - LFC:Last File Created 15/07/2011 - 20:19:25 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\0640.lnk [918]

O61 - LFC:Last File Created 15/07/2011 - 20:20:14 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\PHOTOS PERSONNEL.lnk [689]

O61 - LFC:Last File Created 15/07/2011 - 20:23:03 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\MessengerCache\rUMLzEGv3KLMLS1wa1TpQoa2FpGo= [2892]

O61 - LFC:Last File Created 15/07/2011 - 20:29:40 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\MessengerCache\wIgk1LwwuYNMzltFzwkx3YAkC4U= [6930]

O61 - LFC:Last File Created 15/07/2011 - 20:50:12 --HA- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Application Data\IconCache.db [6954070]

O61 - LFC:Last File Created 15/07/2011 - 20:57:46 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Ecrire pour exister.dvdrip.lnk [853]

O61 - LFC:Last File Created 15/07/2011 - 21:52:57 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\clip nico.lnk [768]

O61 - LFC:Last File Created 15/07/2011 - 21:58:29 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\la fille en blanc1 (nico).lnk [848]

O61 - LFC:Last File Created 15/07/2011 - 22:02:11 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\ni dieu ni matre (nico).lnk [838]

O61 - LFC:Last File Created 15/07/2011 - 22:09:38 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Permission accordée.lnk [818]

O61 - LFC:Last File Created 15/07/2011 - 22:10:09 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Affaire by titus.lnk [808]

O61 - LFC:Last File Created 15/07/2011 - 22:10:09 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\Downloads.lnk [509]

O61 - LFC:Last File Created 15/07/2011 - 22:10:37 ---A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\vlc\vlc-qt-interface.ini [1500]

O61 - LFC:Last File Created 15/07/2011 - 22:46:49 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\images.lnk [593]

O61 - LFC:Last File Created 15/07/2011 - 22:46:49 ---A- C:\Documents And Settings\Compaq_Propriétaire\Recent\niagara.lnk [472]

O61 - LFC:Last File Created 15/07/2011 - 22:52:34 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\Content\38666ACC08662DF5A5A045C581801ED9 [164259]

O61 - LFC:Last File Created 15/07/2011 - 22:52:35 -S-A- C:\Documents And Settings\Compaq_Propriétaire\Application Data\Microsoft\CryptnetUrlCache\MetaData\38666ACC08662DF5A5A045C581801ED9 [98]

O61 - LFC:Last File Created 15/07/2011 - 23:35:42 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\~DF9F1.tmp [98304]

O61 - LFC:Last File Created 15/07/2011 - 23:46:32 --HA- C:\Documents And Settings\All Users\NTUSER.DAT.LOG [1024]

O61 - LFC:Last File Created 15/07/2011 - 23:47:53 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\ProcCache.sbc [44392]

O61 - LFC:Last File Created 15/07/2011 - 23:49:59 --HA- C:\Documents And Settings\Default User\ntuser.dat.LOG [1024]

O61 - LFC:Last File Created 15/07/2011 - 23:51:05 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\IswTmp\Logs\FFApi.swl.old [1116]

O61 - LFC:Last File Created 15/07/2011 - 23:57:00 --HA- C:\Documents And Settings\Default User\NTUSER.DAT [4980736]

O61 - LFC:Last File Created 15/07/2011 - 23:57:50 -SH-- C:\Documents And Settings\Compaq_Propriétaire\ntuser.ini [184]

 

 

 

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover

O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis

O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

 

 

 

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - 28/04/2011 - C:\Program Files\Avira\AntiVir Desktop\sched.exe - Avira AntiVir Planificateur(AntiVirSchedulerService) .(.Avira GmbH - Antivirus Scheduler.) - LEGACY_ANTIVIRSCHEDULERSERVICE

O64 - Services: CurCS - 31/03/2011 - C:\Program Files\Avira\AntiVir Desktop\avguard.exe - Avira AntiVir Guard(AntiVirService) .(.Avira GmbH - Antivirus On-Access Service.) - LEGACY_ANTIVIRSERVICE

O64 - Services: CurCS - 17/06/2010 - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio(avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO

O64 - Services: CurCS - 04/02/2011 - C:\WINDOWS\System32\DRIVERS\avgntflt.sys - avgntflt(avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT

O64 - Services: CurCS - 31/03/2011 - C:\WINDOWS\System32\DRIVERS\avipbb.sys - avipbb(avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB

O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique(dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN

O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\drivers\dmboot.sys - dmboot(dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT

O64 - Services: CurCS - 05/08/2004 - C:\WINDOWS\System32\drivers\dmload.sys - dmload(dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD

O64 - Services: CurCS - 17/12/2007 - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.exe - EPSON V5 Service4(01)(EPSON_EB_RPCV4_01) .(.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - LEGACY_EPSON_EB_RPCV4_01

O64 - Services: CurCS - 11/01/2007 - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.exe - EPSON V3 Service4(01)(EPSON_PM_RPCV4_01) .(.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - LEGACY_EPSON_PM_RPCV4_01

O64 - Services: CurCS - 31/03/2009 - C:\WINDOWS\system32\FsUsbExDisk.sys - FsUsbExDisk (FsUsbExDisk) .(...) - LEGACY_FSUSBEXDISK

O64 - Services: CurCS - 31/03/2009 - C:\WINDOWS\system32\FsUsbExService.exe - FsUsbExService(FsUsbExService) .(.Teruten - FsUsbDevice.) - LEGACY_FSUSBEXSERVICE

O64 - Services: CurCS - 21/06/2011 - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate)(gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE

O64 - Services: CurCS - 14/06/2011 - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter(JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE

O64 - Services: CurCS - 19/10/2006 - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe - LightScribeService Direct Disc Labeling Service(LightScribeService) .(.Hewlett-Packard Company - Pas de description.) - LEGACY_LIGHTSCRIBESERVICE

O64 - Services: CurCS - 01/09/2010 - C:\WINDOWS\System32\DRIVERS\psi_mf.sys - PSI(PSI) .(.Secunia - Secunia PSI Driver.) - LEGACY_PSI

O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\System32\DRIVERS\secdrv.sys - Secdrv(Secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV

O64 - Services: CurCS - 07/04/2008 - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe - ServiceLayer(ServiceLayer) .(.Nokia. - ServiceLayer Module.) - LEGACY_SERVICELAYER

O64 - Services: CurCS - 10/08/2005 - C:\WINDOWS\System32\drivers\sfdrv01.sys - StarForce Protection Environment Driver (version 1.x)(sfdrv01) .(.Protection Technology - StarForce Protection Environment Driver.) - LEGACY_SFDRV01

O64 - Services: CurCS - 16/05/2005 - C:\WINDOWS\System32\drivers\sfhlp02.sys - StarForce Protection Helper Driver (version 2.x)(sfhlp02) .(.Protection Technology - StarForce Protection Helper Driver.) - LEGACY_SFHLP02

O64 - Services: CurCS - 10/08/2005 - C:\WINDOWS\System32\drivers\sfsync02.sys - StarForce Protection Synchronization Driver (version 2.x)(sfsync02) .(.Protection Technology - StarForce Protection Synchronization Driver.) - LEGACY_SFSYNC02

O64 - Services: CurCS - 29/09/2005 - C:\WINDOWS\System32\drivers\sfvfs02.sys - StarForce Protection VFS Driver (version 2.x)(sfvfs02) .(.Protection Technology - StarForce Protection VFS Driver.) - LEGACY_SFVFS02

O64 - Services: CurCS - 16/03/2011 - C:\WINDOWS\system32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD

O64 - Services: CurCS - 17/06/2010 - C:\WINDOWS\System32\DRIVERS\ssmdrv.sys - ssmdrv(ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV

O64 - Services: CurCS - 22/04/2011 - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe - TomTomHOMEService(TomTomHOMEService) .(.TomTom - Windows Service for TomTom HOME.) - LEGACY_TOMTOMHOMESERVICE

O64 - Services: CurCS - 13/05/2010 - C:\WINDOWS\System32\vsdatant.sys - vsdatant(vsdatant) .(.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - LEGACY_VSDATANT

O64 - Services: CurCS - 18/02/2011 - C:\WINDOWS\system32\ZoneLabs\vsmon.exe - TrueVector Internet Monitor(vsmon) .(.Check Point Software Technologies LTD - TrueVector Service.) - LEGACY_VSMON

 

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

 

 

 

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <chrome.exe> <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

 

 

 

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] ${searchCLSID} [DefaultScope] - (@ieframe.dll,-12512) - Bing

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

 

 

 

---\\ Recherche particuliere à la racine de certains dossiers (O84)

[MD5.E8269245566BE948F6A219135B434160] [sPRF][14/07/2011] (.Trend Micro Inc. - HijackThis.) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\HiJackThis.exe [401720]

[MD5.121F4ED4AD27877A9CCCC5D56BDF156D] [sPRF][29/03/2011] (...) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\MKV.exe [388227]

[MD5.D8B1B607CC68E6445A4FAF443E8D3081] [sPRF][28/03/2011] (.Secunia - Secunia PSI Installer.) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\PSISetup.exe [1739024]

[MD5.008DE55BAED62FBE32A983A54E6F1233] [sPRF][28/03/2011] (.Malwarebytes - Malwarebytes' StartUpLite.) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\StartUpLite.exe [204496]

[MD5.5B5D56738C261634C281C7BA1CA1A2DF] [sPRF][16/04/2011] (.OldTimer Tools - Pas de description.) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\TFC.exe [446464]

[MD5.E39A78D2C0DB2A60C5622AA686EABA82] [sPRF][15/07/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\ZHPDiag2.exe [2538576]

[MD5.18075B2C9F0F300BEE209744A8BEC353] [sPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\bdcore.dll [32]

[MD5.298068536300DA6DC163E394797A7C50] [sPRF][25/05/2006] (...) -- C:\WINDOWS\Downloaded Program Files\bdupd.dll [118784]

[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [sPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.dll [24576]

[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [sPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.exe [196608]

[MD5.632E0CE38FBCADEAAE28077F4C9C45D5] [sPRF][21/10/2010] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.1 r102.) -- C:\WINDOWS\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe [2827728]

[MD5.1CAB87DE6638846FBF51F32B5D95E482] [sPRF][25/05/2006] (...) -- C:\WINDOWS\Downloaded Program Files\ipsupd.dll [53248]

[MD5.5002991ADA7920B35E46E7EA80C134FE] [sPRF][16/06/2004] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\WINDOWS\Downloaded Program Files\isusweb.dll [323584]

[MD5.18075B2C9F0F300BEE209744A8BEC353] [sPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\libfn.dll [32]

 

 

 

---\\ Scan Additionnel (O88)

Database Version : 8520 - (12/07/2011)

Clés trouvées (Keys found) : 2

Valeurs trouvées (Values found) : 0

Dossiers trouvés (Folders found) : 0

Fichiers trouvés (Files found) : 0

 

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.AskSBar

 

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SR - | Auto 15/07/2011 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe

SR - | Auto 15/07/2011 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

SR - | Auto 15/07/2011 413696 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe

SS - | Demand 15/07/2011 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe

SR - | Auto 15/07/2011 143872 | (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION.) - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.exe

SR - | Auto 15/07/2011 113664 | (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION.) - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.exe

SR - | Auto 15/07/2011 233472 | (FsUsbExService) . (.Teruten.) - C:\WINDOWS\system32\FsUsbExService.exe

SS - | Auto 15/07/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Demand 15/07/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SR - | Auto 15/07/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe

SR - | Auto 15/07/2011 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

SS - | Demand 15/07/2011 774144 | (NBService) . (.Nero AG.) - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

SR - | Auto 15/07/2011 993848 | (Secunia PSI Agent) . (.Secunia.) - C:\Program Files\Secunia\PSI\PSIA.exe

SR - | Auto 15/07/2011 399416 | (Secunia Update Agent) . (.Secunia.) - C:\Program Files\Secunia\PSI\sua.exe

SS - | Demand 15/07/2011 430592 | (ServiceLayer) . (.Nokia..) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

SS - | Demand 15/07/2011 517096 | (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files\Fichiers communs\Adobe\SwitchBoard\SwitchBoard.exe

SR - | Auto 15/07/2011 92592 | (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

SR - | Auto 15/07/2011 2435592 | (vsmon) . (.Check Point Software Technologies LTD.) - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

 

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

Run by Compaq_Propriétaire at 15/07/2011 01:30:45

 

device: opened successfully

user: MBR read successfully

 

Disk trace:

called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys sfsync02.sys hal.dll atapi.sys sptd.sys intelide.sys

C:\WINDOWS\system32\drivers\sfsync02.sys Protection Technology StarForce Protection System

C:\WINDOWS\system32\drivers\sptd.sys

1 ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Harddisk1\DR1[0x8257AAB8]

3 CLASSPNP[0xF86D5FD7] -> ntkrnlpa!IofCallDriver[0x804EE130] -> \Device\Ide\IdeDeviceP1T1L0-17[0x8257BD98]

kernel: MBR read successfully

user & kernel MBR OK

 

 

 

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by Compaq_Propriétaire at 15/07/2011 01:30:47

 

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

 

 

 

---\\ Liste des émulateurs de CD/DVD (Hook du MBR)

O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite

O58 - SDL:[MD5.10EF1200FEFFFFFF00000000C0F11200] - 16/03/2011 - 00:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\sptd.sys [431672]

 

 

 

End of the scan (1649 lines in 12mn 20s)(0)

[tomtom95]

Bonsoir CHOUMJC

 

Télécharger MiniToolBox.exe (de farbar) depuis le lien ci-dessous:

http://download.bleepingcomputer.com/farbar/MiniToolBox.exe

Enregistrer ce fichier sur le Bureau.

 

• Faire un double clique sur l'icone MiniToolBox.exe pour lancer l'outil.
  
• L'écran principal de MiniToolBox s'affiche:
  
   
  Cocher la case située devant la(les) ligne(s) suivante(s):
  Flush DNS
  puis cliquer sur le bouton GO
  Laisser l'outil travailler sans l'interrompre.
  Lorsque l'outil a terminé
  il y a ouverture d'une fenêtre du Bloc-notes contenant un rapport (log).
  Fermer le Bloc-notes.
  Fermer la fenêtre de MiniToolBox.
  Post le rapport de MiniToolBox (contenu du fichier Result.txt situé sur le Bureau)

 

ENSUITE

• Ferme toutes les applications ouvertes
  
• Désactive tes défenses (anti-virus,anti-spyware)
  
• Double-clique sur ZHPFix
   
  
  Un raccourci installé par ZHPDiag sur le Bureau
   
  Sélectionne et surligne correctement avec la souris et "Clique droit > "Copier" ou "Ctrl+C"
  ces lignes ci dessous :

  O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
  O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
  O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
  O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~4\Office12\REFBARH.ICO
  O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab
  O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} () - http://java.sun.com/...indows-i586.cab
  O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-NOM-EB85C523610-Compaq_Propriétaire.job
  [HKCU\Software\Ad-Remover]
  [HKLM\Software\OldTimer Tools]
  [HKLM\Software\Panda Software]
  [HKLM\Software\Symantec]
  [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
  [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}]
  O43 - CFD: 20/04/2011 - 08:04:10 - [46370336] ----D- C:\Program Files\Ad-Remover
  O43 - CFD: 25/03/2011 - 09:11:46 - [0] ----D- C:\Program Files\Panda Security
  O43 - CFD: 15/07/2011 - 00:58:52 - [1731411] ----D- C:\Program Files\Spybot - Search & Destroy
  O53 - SMSR:HKLM\...\startupreg\NeroFilterCheck [Key] . (.Nero AG - NeroCheck.) -- C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
  O61 - LFC:Last File Created 13/07/2011 - 07:41:42 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Update downloads.log [10842]
  O61 - LFC:Last File Created 13/07/2011 - 10:11:59 -SHA- C:\Documents And Settings\All Users\DRM\drmstore.hds [167936]
  O61 - LFC:Last File Created 13/07/2011 - 11:11:16 ---A- C:\Documents And Settings\Compaq_Propriétaire\Local Settings\Temp\5df2_appcompat.txt [96280]
  O61 - LFC:Last File Created 14/07/2011 - 10:24:20 ---A- C:\Documents And Settings\Compaq_Propriétaire\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]
  O61 - LFC:Last File Created 15/07/2011 - 10:24:41 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\Logs\Resident.log [44872]
  O61 - LFC:Last File Created 15/07/2011 - 23:47:53 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\ProcCache.sbc [44392]
  O63 - Logiciel: Ad-Remover par C_XX - (.C_XX.) [HKLM] -- Ad-Remover
  [MD5.121F4ED4AD27877A9CCCC5D56BDF156D] [sPRF][29/03/2011] (...) -- C:\Documents and Settings\Compaq_Propriétaire\Bureau\MKV.exe [388227]
   
  EmptyTemp
  EmptyFlash
  FirewallRAZ
  

• Clique successivement sur l'icône H (pour effacer le rapport qui s'est affiché) puis sur l'icône de la "malette cachée par la feuille" .
   
  
• Vérifie que toutes les lignes que je t'ai demandé de copier sont dans la fenêtre.
  
• Et seulement ces lignes
  
• Puis clique sur le bouton [OK]
  
• A ce moment apparaîtra au début de chaque ligne
  une petite case vide. [ ]
  
• Ensuite clique sur Tous puis sur Nettoyer
  
• Valide par Oui la désinstallation des programmes si demandé
  
• Laisse l'outil travailler. Si un redémarrage est demandé accepte et redémarre le PC
  
• Le rapport ZHPFixReport.txt s'affiche. Copie-colle le contenu de ce rapport dans ta réponse.
   
  Le rapport ZHPFixReport.txt est enregistré sous C:\Program files\ZHPFix\ZHPFixReport.txt

 

A++

[CHOUMJC]

MiniToolBox by Farbar

Ran by Compaq_Propriétaire (administrator) on 16-07-2011 at 11:21:49

Microsoft Windows XP Service Pack 3 (X86)

 

***************************************************************************

 

========================= Flush DNS: ===================================

 

 

Configuration IP de Windows

 

 

 

Cache de résolution DNS vidé.

 

 

== End of log ==

[CHOUMJC]

Rapport de ZHPFix 1.12.3338 par Nicolas Coolman, Update du 12/07/2011

Fichier d'export Registre :

Run by Compaq_Propriétaire at 16/07/2011 12:27:58

Windows XP Home Edition Service Pack 3 (Build 2600)

Web site : ZHPFix Fix de rapport

 

========== Logiciel(s) ==========

ABSENT Uninstall Process: c:\program files\ad-remover\main.exe

 

========== Processus mémoire ==========

SUPPRIME Memory Process: C:\Documents and Settings\Compaq_Propriétaire\Bureau\MKV.exe

 

========== Clé(s) du Registre ==========

SUPPRIME Key: CLSID BHO: {5C255C8A-E604-49b4-9D64-90988571CECB}

SUPPRIME Key: CLSID BHO: {D4027C7F-154A-4066-A1AD-4243D8127440}

SUPPRIME Key: CLSID Extra Buttons: {85d1f590-48f4-11d9-9669-0800200c9a66}

SUPPRIME Key: CLSID Extra Buttons: {92780B25-18CC-41C8-B9BE-3C9C571A8263}

SUPPRIME Key: CLSID DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}

SUPPRIME Key: CLSID DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913}

SUPPRIME Key: HKCU\Software\Ad-Remover

SUPPRIME Key: HKLM\Software\OldTimer Tools

SUPPRIME Key: HKLM\Software\Panda Software

SUPPRIME Key: HKLM\Software\Symantec

ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}

SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

SUPPRIME Key: StartupReg: NeroFilterCheck

SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ad-Remover]

 

========== Valeur(s) du Registre ==========

ABSENT Valeur Standard Profile: FirewallRaz :

SUPPRIME FirewallRaz (DP) : %ProgramFiles%\iTunes\iTunes.exe

Aucune valeur présente dans la clé d'exception du registre (FirewallRaz)

 

========== Dossier(s) ==========

SUPPRIME Folder*: C:\Program Files\Ad-Remover

SUPPRIME Folder*: C:\Program Files\Panda Security

SUPPRIME Reboot Folder**: C:\Program Files\Spybot - Search & Destroy

SUPPRIME Temporaires Windows: : 6

SUPPRIME Flash Cookies: 1

 

========== Fichier(s) ==========

SUPPRIME c:\program files\windows live\writer\writerbrowserextension.dll

SUPPRIME c:\progra~1\micros~4\office12\refbarh.ico

SUPPRIME c:\windows\tasks\adobeaamupdater-1.0-nom-eb85c523610-compaq_propriétaire.job

SUPPRIME c:\program files\fichiers communs\ahead\lib\nerocheck.exe

SUPPRIME c:\documents and settings\all users\application data\spybot - search & destroy\logs\update downloads.log

SUPPRIME c:\documents and settings\all users\drm\drmstore.hds

ABSENT File: c:\documents and settings\compaq_propriétaire\local settings\temp\5df2_appcompat.txt

SUPPRIME c:\documents and settings\compaq_propriétaire\tracing\windowslivemessenger-uccapi-0.uccapilog

SUPPRIME c:\documents and settings\all users\application data\spybot - search & destroy\logs\resident.log

SUPPRIME c:\documents and settings\all users\application data\spybot - search & destroy\proccache.sbc

SUPPRIME Temporaires Windows: : 3

SUPPRIME Flash Cookies: 0

 

 

========== Récapitulatif ==========

1 : Processus mémoire

14 : Clé(s) du Registre

3 : Valeur(s) du Registre

5 : Dossier(s)

12 : Fichier(s)

1 : Logiciel(s)

 

 

========== Chemin du fichier rapport ==========

C:\Program Files\ZHPDiag\ZHPFixReport.txt

 

 

 

End of the scan in 01mn 24s

[tomtom95]

Bonjour CHOUMJC

 

Comment ce comporte le pc ??

 

• Ferme toutes les applications ouvertes
  
• Désactive tes défenses (anti-virus,anti-spyware)
  
• Double-clique sur MBRCheck
  Un raccourci installé par ZHPDiag sur le Bureau
  En fin de scanne tape sur la touche [entrée]
  Un rapport sera automatiquement enregistré sur le Bureau. Il sera du type MBRCheck_AA.JJ.MM_hh.mm.ss.txt
  Post le dans ton prochaine message

 

A+

[CHOUMJC]

MBRCheck, version 1.2.3

© 2010, AD

 

Command-line:

Windows Version: Windows XP Home Edition

Windows Information: Service Pack 3 (build 2600)

Logical Drives Mask: 0x0000077c

 

Kernel Drivers (total 135):

0x804D7000 \WINDOWS\system32\ntkrnlpa.exe

0x806D1000 \WINDOWS\system32\hal.dll

0xF8B65000 \WINDOWS\system32\KDCOM.DLL

0xF8A75000 \WINDOWS\system32\BOOTVID.dll

0xF8454000 sptd.sys

0xF8B67000 \WINDOWS\System32\Drivers\WMILIB.SYS

0xF843C000 \WINDOWS\System32\Drivers\SCSIPORT.SYS

0xF840D000 ACPI.sys

0xF83FC000 pci.sys

0xF8665000 ohci1394.sys

0xF8675000 \WINDOWS\system32\DRIVERS\1394BUS.SYS

0xF8685000 isapnp.sys

0xF8B69000 intelide.sys

0xF88E5000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS

0xF8695000 MountMgr.sys

0xF83DD000 ftdisk.sys

0xF88ED000 PartMgr.sys

0xF86A5000 sfsync02.sys

0xF86B5000 VolSnap.sys

0xF83C5000 atapi.sys

0xF86C5000 disk.sys

0xF86D5000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS

0xF83A5000 fltmgr.sys

0xF8393000 sr.sys

0xF88F5000 PxHelp20.sys

0xF837C000 KSecDD.sys

0xF8369000 WudfPf.sys

0xF82DC000 Ntfs.sys

0xF82AF000 NDIS.sys

0xF829B000 sfvfs02.sys

0xF88FD000 sfhlp02.sys

0xF8289000 sfdrv01.sys

0xF826F000 Mup.sys

0xF86E5000 gagp30kx.sys

0xF8735000 \SystemRoot\system32\DRIVERS\nic1394.sys

0xF8755000 \SystemRoot\system32\DRIVERS\intelppm.sys

0xF8152000 \SystemRoot\system32\DRIVERS\ati2mtag.sys

0xF813E000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS

0xF8116000 \SystemRoot\system32\DRIVERS\HDAudBus.sys

0xF8935000 \SystemRoot\system32\DRIVERS\usbuhci.sys

0xF80F2000 \SystemRoot\system32\DRIVERS\USBPORT.SYS

0xF893D000 \SystemRoot\system32\DRIVERS\usbehci.sys

0xF8765000 \SystemRoot\system32\DRIVERS\R8139n51.SYS

0xF7FBC000 \SystemRoot\system32\DRIVERS\AGRSM.sys

0xF8955000 \SystemRoot\System32\Drivers\Modem.SYS

0xF7FA8000 \SystemRoot\system32\DRIVERS\parport.sys

0xF8775000 \SystemRoot\system32\DRIVERS\i8042prt.sys

0xF896D000 \SystemRoot\system32\DRIVERS\PS2.sys

0xF897D000 \SystemRoot\system32\DRIVERS\kbdclass.sys

0xF8785000 \SystemRoot\system32\DRIVERS\imapi.sys

0xF8795000 \SystemRoot\system32\DRIVERS\cdrom.sys

0xF87A5000 \SystemRoot\system32\DRIVERS\redbook.sys

0xF7F85000 \SystemRoot\system32\DRIVERS\ks.sys

0xF7F48000 \SystemRoot\System32\Drivers\a8drbozq.SYS

0xF8D76000 \SystemRoot\system32\DRIVERS\audstub.sys

0xF87B5000 \SystemRoot\system32\DRIVERS\rasl2tp.sys

0xF8B25000 \SystemRoot\system32\DRIVERS\ndistapi.sys

0xF7E91000 \SystemRoot\system32\DRIVERS\ndiswan.sys

0xF87C5000 \SystemRoot\system32\DRIVERS\raspppoe.sys

0xF87D5000 \SystemRoot\system32\DRIVERS\raspptp.sys

0xF8A0D000 \SystemRoot\system32\DRIVERS\TDI.SYS

0xF7E80000 \SystemRoot\system32\DRIVERS\psched.sys

0xF87E5000 \SystemRoot\system32\DRIVERS\msgpc.sys

0xF8A1D000 \SystemRoot\system32\DRIVERS\ptilink.sys

0xF8A2D000 \SystemRoot\system32\DRIVERS\raspti.sys

0xF87F5000 \SystemRoot\system32\DRIVERS\termdd.sys

0xF8A3D000 \SystemRoot\system32\DRIVERS\mouclass.sys

0xF8B75000 \SystemRoot\system32\DRIVERS\swenum.sys

0xF7E22000 \SystemRoot\system32\DRIVERS\update.sys

0xF8B39000 \SystemRoot\system32\DRIVERS\mssmbios.sys

0xF8805000 \SystemRoot\System32\Drivers\NDProxy.SYS

0xEFB72000 \SystemRoot\system32\drivers\RtkHDAud.sys

0xEFB4E000 \SystemRoot\system32\drivers\portcls.sys

0xF8835000 \SystemRoot\system32\drivers\drmk.sys

0xF8845000 \SystemRoot\system32\DRIVERS\usbhub.sys

0xF8B7B000 \SystemRoot\system32\DRIVERS\USBD.SYS

0xF8B7F000 \SystemRoot\System32\Drivers\Fs_Rec.SYS

0xF8DB6000 \SystemRoot\System32\Drivers\Null.SYS

0xF8B83000 \SystemRoot\System32\Drivers\Beep.SYS

0xF8945000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS

0xF894D000 \SystemRoot\System32\drivers\vga.sys

0xF8B87000 \SystemRoot\System32\Drivers\mnmdd.SYS

0xF8B8B000 \SystemRoot\System32\DRIVERS\RDPCDD.sys

0xF8965000 \SystemRoot\System32\Drivers\Msfs.SYS

0xF8985000 \SystemRoot\System32\Drivers\Npfs.SYS

0xF8B1D000 \SystemRoot\system32\DRIVERS\rasacd.sys

0xEFA53000 \SystemRoot\system32\DRIVERS\ipsec.sys

0xEF9FA000 \SystemRoot\system32\DRIVERS\tcpip.sys

0xEF9AA000 \SystemRoot\system32\DRIVERS\netbt.sys

0xEF984000 \SystemRoot\system32\DRIVERS\ipnat.sys

0xF8865000 \SystemRoot\system32\DRIVERS\wanarp.sys

0xEF903000 \SystemRoot\System32\vsdatant.sys

0xF8875000 \SystemRoot\system32\DRIVERS\arp1394.sys

0xF89A5000 \SystemRoot\system32\DRIVERS\usbccgp.sys

0xEF8E1000 \SystemRoot\System32\drivers\afd.sys

0xF8885000 \SystemRoot\system32\DRIVERS\netbios.sys

0xF89BD000 \SystemRoot\system32\DRIVERS\ssmdrv.sys

0xEF8B6000 \SystemRoot\system32\DRIVERS\rdbss.sys

0xEF846000 \SystemRoot\system32\DRIVERS\mrxsmb.sys

0xF88A5000 \SystemRoot\System32\Drivers\Fips.SYS

0xF7E02000 \SystemRoot\system32\DRIVERS\hidusb.sys

0xF88C5000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS

0xEF820000 \SystemRoot\system32\DRIVERS\avipbb.sys

0xF8B97000 \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys

0xF89D5000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS

0xEF619000 \SystemRoot\system32\DRIVERS\VX1000.sys

0xF8745000 \SystemRoot\system32\DRIVERS\STREAM.SYS

0xF7F38000 \SystemRoot\system32\drivers\usbaudio.sys

0xEFB3A000 \SystemRoot\system32\DRIVERS\mouhid.sys

0xEF5F5000 \SystemRoot\System32\Drivers\Fastfat.SYS

0xEF5DD000 \SystemRoot\System32\Drivers\dump_atapi.sys

0xF8BB7000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS

0xBF800000 \SystemRoot\System32\win32k.sys

0xF8B19000 \SystemRoot\System32\drivers\Dxapi.sys

0xF8A25000 \SystemRoot\System32\watchdog.sys

0xBF000000 \SystemRoot\System32\drivers\dxg.sys

0xF8C76000 \SystemRoot\System32\drivers\dxgthk.sys

0xBF012000 \SystemRoot\System32\ati2dvag.dll

0xBF04B000 \SystemRoot\System32\ati2cqag.dll

0xBF088000 \SystemRoot\System32\ati3duag.dll

0xBF2B7000 \SystemRoot\System32\ativvaxx.dll

0xBF325000 \SystemRoot\System32\ATMFD.DLL

0xED488000 \SystemRoot\system32\DRIVERS\avgntflt.sys

0xED3B8000 \SystemRoot\system32\DRIVERS\ndisuio.sys

0xECFFB000 \SystemRoot\system32\DRIVERS\mrxdav.sys

0xECFE6000 \SystemRoot\system32\drivers\wdmaud.sys

0xED2C8000 \SystemRoot\system32\drivers\sysaudio.sys

0xECC5C000 \SystemRoot\system32\DRIVERS\srv.sys

0xECF00000 \SystemRoot\System32\Drivers\Cdfs.SYS

0xEC5A4000 \SystemRoot\System32\Drivers\HTTP.sys

0xEC63D000 \??\C:\WINDOWS\system32\FsUsbExDisk.SYS

0xEC4EC000 \SystemRoot\system32\DRIVERS\psi_mf.sys

0xBA59F000 \SystemRoot\system32\drivers\kmixer.sys

0x7C910000 \WINDOWS\system32\ntdll.dll

0x10000000 \Program Files\DAEMON Tools Lite\Engine.dll

 

Processes (total 45):

0 System Idle Process

4 SYSTEM

512 C:\WINDOWS\system32\smss.exe

588 csrss.exe

612 C:\WINDOWS\system32\winlogon.exe

660 C:\WINDOWS\system32\services.exe

672 C:\WINDOWS\system32\lsass.exe

836 C:\WINDOWS\system32\ati2evxx.exe

856 C:\WINDOWS\system32\svchost.exe

940 svchost.exe

1020 C:\WINDOWS\system32\svchost.exe

1072 C:\WINDOWS\system32\svchost.exe

1176 svchost.exe

1252 svchost.exe

1320 C:\WINDOWS\system32\ZoneLabs\vsmon.exe

1488 C:\WINDOWS\system32\ati2evxx.exe

1600 C:\WINDOWS\explorer.exe

1852 C:\WINDOWS\system32\spoolsv.exe

1896 C:\Program Files\Avira\AntiVir Desktop\sched.exe

160 svchost.exe

1420 C:\Program Files\Avira\AntiVir Desktop\avguard.exe

1532 C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE

1424 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

1620 C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE

1636 C:\WINDOWS\system32\FsUsbExService.Exe

1988 C:\Program Files\Java\jre6\bin\jqs.exe

236 C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

1160 C:\WINDOWS\system32\ps2.EXE

584 C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

1352 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

468 C:\Program Files\Microsoft LifeCam\MSCamSvc.exe

1468 C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe

1504 C:\Program Files\Secunia\PSI\psia.exe

1880 C:\WINDOWS\system32\ctfmon.exe

2064 C:\Program Files\Secunia\PSI\psi_tray.exe

2176 C:\WINDOWS\system32\svchost.exe

2188 C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

3108 C:\WINDOWS\system32\wbem\wmiapsrv.exe

3320 alg.exe

3740 C:\Program Files\Secunia\PSI\sua.exe

3820 C:\WINDOWS\system32\svchost.exe

4036 C:\WINDOWS\system32\wuauclt.exe

3780 <unknown>

1284 C:\WINDOWS\system32\wscntfy.exe

2796 C:\Program Files\ZHPDiag\mbrcheck.exe

 

\\.\C: --> \\.\PhysicalDrive1 at offset 0x00000000`fa8de000 (NTFS)

\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)

\\.\E: --> \\.\PhysicalDrive1 at offset 0x00000000`00007e00 (FAT32)

 

PhysicalDrive1 Model Number: ST3250823AS, Rev: 3.03

PhysicalDrive0 Model Number: ST31000528AS, Rev: CC46

 

Size Device Name MBR Status

--------------------------------------------

232 GB \\.\PhysicalDrive1 Legit MBR code detected

SHA1: F75A10171F7488C11BA9A98CEC3D186D7A8D3972

931 GB \\.\PhysicalDrive0 Windows XP MBR code detected

SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A

 

 

Done!

 

l'ordi ne semble pas ramer mais pour ce qui est des MAJ windows je n'ai pas encore essayé. Je le fais???

[tomtom95]

Avant de voir pour les mises a jours

 

Applique cette procédure stp

 

 

Télécharger TDSSkillerde Kaspersky sur le Bureau

• (clique droit -> lancer en tant qu'adminstrateur sous Vista et seven )
   
  
• Faire un double clique sur TDSSKiller.exe pour le lancer.(clique droit -> lancer en tant qu'adminstrateur sous Vista et seven )
  Cliquer sur Start scan pour lancer l'analyse
   
   
  
   
   
  Lorsque l'outil a terminé son travail d'inspection
  si des nuisibles ("Malicious objects") ont été trouvés
  vérifier que l'option (Cure) est sélectionnée
   
  
   
  Si des objects suspects ("Suspicious objects") ont été détectés
  sur l'écran de demande de confirmation
  modifier l'action à entreprendre et indiquer Quarantine (au lieu de Skip)
   
  Puis cliquer sur le bouton (Continue) puis sur [Reboot Now]
   
   
  Attendre l'affichage du fichier rapport.
   
  Si l'outil a besoin d'un redémarrage pour finaliser le nettoyage
  cliquer sur le bouton (Reboot computer).
  Post: le rapport de TDSSKiller (contenu du fichier SystemDrive\TDSSKiller.Version_Date_Heure_log.txt)
   
   
  
• Si TDSS.tdl2 est détecté l'option delete sera cochée par défaut.
  
• Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
  
• Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
   
  
• Si Suspicious file est indiqué
  laisse l'option cochée sur Skip
   
  
• Clique sur Continue puis sur Reboot now pour redémarrer le PC.
   
  
• Copie-colle le rapport généré dans ta prochaine réponse (Il est aussi sauvegardé à la racine de ta partition système sous le nom C:\TDSSKiller_Quarantine\JJ.MM.AA_HH.MM.SS. (JJ.MM.AA date du passage de l'outil
  HH.MM.SS heure de passage).

 

A+

[CHOUMJC]

2011/07/16 17:42:07.0328 3700 TDSS rootkit removing tool 2.5.11.0 Jul 11 2011 16:56:56

2011/07/16 17:42:08.0531 3700 ================================================================================

2011/07/16 17:42:08.0531 3700 SystemInfo:

2011/07/16 17:42:08.0531 3700

2011/07/16 17:42:08.0531 3700 OS Version: 5.1.2600 ServicePack: 3.0

2011/07/16 17:42:08.0531 3700 Product type: Workstation

2011/07/16 17:42:08.0531 3700 ComputerName: NOM-EB85C523610

2011/07/16 17:42:08.0531 3700 UserName: Compaq_Propriétaire

2011/07/16 17:42:08.0531 3700 Windows directory: C:\WINDOWS

2011/07/16 17:42:08.0531 3700 System windows directory: C:\WINDOWS

2011/07/16 17:42:08.0531 3700 Processor architecture: Intel x86

2011/07/16 17:42:08.0531 3700 Number of processors: 1

2011/07/16 17:42:08.0531 3700 Page size: 0x1000

2011/07/16 17:42:08.0531 3700 Boot type: Normal boot

2011/07/16 17:42:08.0531 3700 ================================================================================

2011/07/16 17:42:10.0578 3700 Initialize success

2011/07/16 17:44:16.0859 3180 ================================================================================

2011/07/16 17:44:16.0859 3180 Scan started

2011/07/16 17:44:16.0859 3180 Mode: Manual;

2011/07/16 17:44:16.0859 3180 ================================================================================

2011/07/16 17:44:17.0515 3180 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys

2011/07/16 17:44:17.0656 3180 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys

2011/07/16 17:44:17.0734 3180 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys

2011/07/16 17:44:17.0812 3180 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

2011/07/16 17:44:18.0031 3180 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys

2011/07/16 17:44:18.0125 3180 AgereSoftModem (593aefc67283d409f34cc1245d00a509) C:\WINDOWS\system32\DRIVERS\AGRSM.sys

2011/07/16 17:44:18.0453 3180 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys

2011/07/16 17:44:18.0625 3180 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

2011/07/16 17:44:18.0703 3180 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

2011/07/16 17:44:18.0796 3180 ati2mtag (f43601d255762f20d0e23a6d97062b0d) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys

2011/07/16 17:44:18.0921 3180 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

2011/07/16 17:44:18.0984 3180 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

2011/07/16 17:44:19.0062 3180 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys

2011/07/16 17:44:19.0187 3180 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys

2011/07/16 17:44:19.0343 3180 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\WINDOWS\system32\DRIVERS\avgntflt.sys

2011/07/16 17:44:19.0406 3180 avipbb (5fedef54757b34fb611b9ec8fb399364) C:\WINDOWS\system32\DRIVERS\avipbb.sys

2011/07/16 17:44:19.0609 3180 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

2011/07/16 17:44:19.0875 3180 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

2011/07/16 17:44:19.0953 3180 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

2011/07/16 17:44:20.0046 3180 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

2011/07/16 17:44:20.0093 3180 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

2011/07/16 17:44:20.0171 3180 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

2011/07/16 17:44:20.0437 3180 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

2011/07/16 17:44:20.0515 3180 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys

2011/07/16 17:44:20.0609 3180 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys

2011/07/16 17:44:20.0687 3180 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

2011/07/16 17:44:20.0812 3180 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

2011/07/16 17:44:20.0890 3180 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

2011/07/16 17:44:20.0984 3180 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

2011/07/16 17:44:21.0062 3180 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys

2011/07/16 17:44:21.0109 3180 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys

2011/07/16 17:44:21.0156 3180 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys

2011/07/16 17:44:21.0218 3180 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys

2011/07/16 17:44:21.0390 3180 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\WINDOWS\system32\FsUsbExDisk.SYS

2011/07/16 17:44:21.0500 3180 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

2011/07/16 17:44:21.0562 3180 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

2011/07/16 17:44:21.0640 3180 gagp30kx (3a74c423cf6bcca6982715878f450a3b) C:\WINDOWS\system32\DRIVERS\gagp30kx.sys

2011/07/16 17:44:21.0734 3180 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

2011/07/16 17:44:21.0859 3180 HdAudAddService (160b24fd894e79e71c983ea403a6e6e7) C:\WINDOWS\system32\drivers\HdAudio.sys

2011/07/16 17:44:21.0968 3180 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

2011/07/16 17:44:22.0093 3180 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys

2011/07/16 17:44:22.0203 3180 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

2011/07/16 17:44:22.0484 3180 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

2011/07/16 17:44:22.0546 3180 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

2011/07/16 17:44:22.0718 3180 IntcAzAudAddService (93903ddd430db2fc61cbeeb2be651e9f) C:\WINDOWS\system32\drivers\RtkHDAud.sys

2011/07/16 17:44:22.0843 3180 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys

2011/07/16 17:44:22.0921 3180 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys

2011/07/16 17:44:22.0984 3180 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys

2011/07/16 17:44:23.0062 3180 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

2011/07/16 17:44:23.0093 3180 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

2011/07/16 17:44:23.0156 3180 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

2011/07/16 17:44:23.0265 3180 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

2011/07/16 17:44:23.0312 3180 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

2011/07/16 17:44:23.0375 3180 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys

2011/07/16 17:44:23.0421 3180 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

2011/07/16 17:44:23.0500 3180 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys

2011/07/16 17:44:23.0593 3180 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

2011/07/16 17:44:23.0671 3180 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

2011/07/16 17:44:23.0812 3180 ltmodem5 (919de7d76d2c0c0139e08b3e7592d62e) C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys

2011/07/16 17:44:23.0906 3180 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

2011/07/16 17:44:24.0000 3180 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys

2011/07/16 17:44:24.0078 3180 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys

2011/07/16 17:44:24.0156 3180 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys

2011/07/16 17:44:24.0218 3180 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

2011/07/16 17:44:24.0296 3180 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

2011/07/16 17:44:24.0390 3180 MRxSmb (0dc719e9b15e902346e87e9dcd5751fa) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

2011/07/16 17:44:24.0546 3180 MSDV (1477849772712bac69c144dcf2c9ce81) C:\WINDOWS\system32\DRIVERS\msdv.sys

2011/07/16 17:44:24.0625 3180 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

2011/07/16 17:44:24.0671 3180 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

2011/07/16 17:44:24.0734 3180 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

2011/07/16 17:44:24.0921 3180 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

2011/07/16 17:44:24.0984 3180 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

2011/07/16 17:44:25.0062 3180 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys

2011/07/16 17:44:25.0140 3180 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys

2011/07/16 17:44:25.0218 3180 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

2011/07/16 17:44:25.0328 3180 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

2011/07/16 17:44:25.0421 3180 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys

2011/07/16 17:44:25.0484 3180 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

2011/07/16 17:44:25.0531 3180 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

2011/07/16 17:44:25.0593 3180 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

2011/07/16 17:44:25.0656 3180 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

2011/07/16 17:44:25.0765 3180 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

2011/07/16 17:44:25.0828 3180 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

2011/07/16 17:44:25.0921 3180 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys

2011/07/16 17:44:25.0984 3180 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

2011/07/16 17:44:26.0046 3180 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

2011/07/16 17:44:26.0156 3180 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

2011/07/16 17:44:26.0218 3180 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

2011/07/16 17:44:26.0281 3180 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

2011/07/16 17:44:26.0359 3180 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys

2011/07/16 17:44:26.0437 3180 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys

2011/07/16 17:44:26.0500 3180 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

2011/07/16 17:44:26.0578 3180 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys

2011/07/16 17:44:26.0640 3180 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys

2011/07/16 17:44:26.0703 3180 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys

2011/07/16 17:44:26.0796 3180 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys

2011/07/16 17:44:26.0875 3180 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys

2011/07/16 17:44:27.0140 3180 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

2011/07/16 17:44:27.0203 3180 Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys

2011/07/16 17:44:27.0343 3180 Ps2 (9b793a1ffd480155fe9ee5261153f21b) C:\WINDOWS\system32\DRIVERS\PS2.sys

2011/07/16 17:44:27.0421 3180 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

2011/07/16 17:44:27.0515 3180 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\WINDOWS\system32\DRIVERS\psi_mf.sys

2011/07/16 17:44:27.0578 3180 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

2011/07/16 17:44:27.0656 3180 PxHelp20 (30cbae0a34359f1cd19d1576245149ed) C:\WINDOWS\system32\Drivers\PxHelp20.sys

2011/07/16 17:44:27.0921 3180 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

2011/07/16 17:44:28.0000 3180 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

2011/07/16 17:44:28.0140 3180 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

2011/07/16 17:44:28.0203 3180 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

2011/07/16 17:44:28.0328 3180 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

2011/07/16 17:44:28.0421 3180 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

2011/07/16 17:44:28.0515 3180 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys

2011/07/16 17:44:28.0625 3180 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys

2011/07/16 17:44:28.0750 3180 rtl8139 (2ef9c0dc26b30b2318b1fc3faa1f0ae7) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS

2011/07/16 17:44:28.0859 3180 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

2011/07/16 17:44:29.0031 3180 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys

2011/07/16 17:44:29.0093 3180 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys

2011/07/16 17:44:29.0234 3180 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys

2011/07/16 17:44:29.0281 3180 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys

2011/07/16 17:44:29.0343 3180 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys

2011/07/16 17:44:29.0421 3180 sfsync02 (efebbc1d13fdb77a6af4eddfc7232edf) C:\WINDOWS\system32\drivers\sfsync02.sys

2011/07/16 17:44:29.0500 3180 sfvfs02 (9ef50060cc7e6953bab83f2a42ccc421) C:\WINDOWS\system32\drivers\sfvfs02.sys

2011/07/16 17:44:29.0625 3180 SISNIC (3fbb6ef8b5a71a2fa11f5f461bb73219) C:\WINDOWS\system32\DRIVERS\sisnic.sys

2011/07/16 17:44:29.0718 3180 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys

2011/07/16 17:44:29.0812 3180 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

2011/07/16 17:44:29.0906 3180 sptd (614deea4bdcec3fd5a07bdc705723ad7) C:\WINDOWS\System32\Drivers\sptd.sys

2011/07/16 17:44:29.0906 3180 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 614deea4bdcec3fd5a07bdc705723ad7

2011/07/16 17:44:29.0921 3180 sptd - detected LockedFile.Multi.Generic (1)

2011/07/16 17:44:29.0953 3180 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys

2011/07/16 17:44:30.0031 3180 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys

2011/07/16 17:44:30.0156 3180 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys

2011/07/16 17:44:30.0218 3180 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\WINDOWS\system32\DRIVERS\ss_bbus.sys

2011/07/16 17:44:30.0312 3180 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys

2011/07/16 17:44:30.0375 3180 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys

2011/07/16 17:44:30.0578 3180 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys

2011/07/16 17:44:30.0625 3180 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

2011/07/16 17:44:30.0843 3180 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

2011/07/16 17:44:31.0000 3180 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

2011/07/16 17:44:31.0093 3180 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

2011/07/16 17:44:31.0203 3180 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

2011/07/16 17:44:31.0265 3180 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

2011/07/16 17:44:31.0328 3180 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

2011/07/16 17:44:31.0437 3180 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

2011/07/16 17:44:31.0546 3180 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

2011/07/16 17:44:31.0656 3180 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys

2011/07/16 17:44:31.0734 3180 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

2011/07/16 17:44:31.0796 3180 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

2011/07/16 17:44:31.0859 3180 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

2011/07/16 17:44:31.0921 3180 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys

2011/07/16 17:44:31.0968 3180 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys

2011/07/16 17:44:32.0046 3180 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys

2011/07/16 17:44:32.0093 3180 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

2011/07/16 17:44:32.0125 3180 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

2011/07/16 17:44:32.0187 3180 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

2011/07/16 17:44:32.0250 3180 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys

2011/07/16 17:44:32.0312 3180 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys

2011/07/16 17:44:32.0390 3180 vsdatant (050c38ebb22512122e54b47dc278bccd) C:\WINDOWS\system32\vsdatant.sys

2011/07/16 17:44:32.0656 3180 VX1000 (56d237a542fc494f6cd77c480dbf1a15) C:\WINDOWS\system32\DRIVERS\VX1000.sys

2011/07/16 17:44:32.0953 3180 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

2011/07/16 17:44:33.0031 3180 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

2011/07/16 17:44:33.0218 3180 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys

2011/07/16 17:44:33.0328 3180 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

2011/07/16 17:44:33.0406 3180 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys

2011/07/16 17:44:33.0484 3180 WUDFRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\WUDFRd.sys

2011/07/16 17:44:33.0593 3180 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0

2011/07/16 17:44:33.0625 3180 MBR (0x1B8) (0ac6d996bce152aed9600e6d6b797e2e) \Device\Harddisk1\DR1

2011/07/16 17:44:33.0656 3180 Boot (0x1200) (278bca868049f78cdac107e860730a5c) \Device\Harddisk0\DR0\Partition0

2011/07/16 17:44:33.0671 3180 Boot (0x1200) (3c8901ab5cceade0f56a36282e837d2d) \Device\Harddisk1\DR1\Partition0

2011/07/16 17:44:33.0687 3180 Boot (0x1200) (d9b4fadb6fdb878a9d59930177830902) \Device\Harddisk1\DR1\Partition1

2011/07/16 17:44:33.0703 3180 ================================================================================

2011/07/16 17:44:33.0703 3180 Scan finished

2011/07/16 17:44:33.0703 3180 ================================================================================

2011/07/16 17:44:33.0718 4000 Detected object count: 1

2011/07/16 17:44:33.0718 4000 Actual detected object count: 1

2011/07/16 17:45:25.0156 4000 sptd (614deea4bdcec3fd5a07bdc705723ad7) C:\WINDOWS\System32\Drivers\sptd.sys

2011/07/16 17:45:25.0156 4000 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 614deea4bdcec3fd5a07bdc705723ad7

2011/07/16 17:45:25.0171 4000 C:\WINDOWS\System32\Drivers\sptd.sys - copied to quarantine

2011/07/16 17:45:25.0171 4000 LockedFile.Multi.Generic(sptd) - User select action: Quarantine

 

 

je suis pas sure d'avoir fait comme il fallait, tout ca m'a semblé un peu confus mais voici un rapport TDSSKiller.