PC bloqué virus

[tilly33]

Bonjour,

Help please !!! j'ai téléchargé une MAJ sur mon ordi portable pour gérer les transfert depuis mon téléphone LG KB770. L'icone est resté pixellisé et en fait, un programme a pris la main en tant qu'administrateur sur mon PC. La carte réseau est bloquée, je n'ai plus accès aux paramétrages, je ne peux plus charger les Windows updates et il m'a désactivé Kapersky pure qui est mon antivirus. Pouvez vous m'aider... Merci d'avance.

[pear]

Bonjour,

 

Lancez cet outil de diagnostic:

Téléchargez ZhpDiag de Coolman

Double-cliquer sur ZHPDiag.exe pour installer l'outil

Sur le bureau ,il y aura 3 icônes

 

Sous XP, double clic sur l'icône ZhpDiag

Sous Vista/7, faire un clic droit et Exécuter en tant qu'administrateur

Cliquez sur le tounevis et choisissez Tous

En cas de blocage, sur O80 par exemple, cliquez sur le tournevis pour le décocher

 

Clic sur la Loupe pour lancer le scan

Postez le rapport ZhpDiag.txt qui apparait sur le bureau

Comment poster les rapports

Vous copiez/collez tout ou partie des rapports dans un ou plusieurs messages.

Autre solution:

Aller sur le site :Ci-Joint

Appuyez sur Parcourir et chercher les rapports sur le disque,

Ensuite appuyez sur Créer le lien CJoint,

>> dans la page suivante --> ,,

une adresse http//.. sera créée

Copier /coller cette adresse dans votre prochain message.

 

[tilly33]

Merci pour votre mail. Cijoint le rapport de diagnostic effectué avec votre utilitaire :

Rapport de ZHPDiag/MD5 v1.28.1367 par Nicolas Coolman, Update du 05/10/2011

Run by N at 14/10/2011 19:57:18

Web site : ZHPDiag Outil de diagnostic

State :

 

 

---\\ Web Browser

MSIE: Internet Explorer v9.0.8112.16421

GCIE: Google Chrome v13.0.782.220 (Defaut)

 

---\\ Windows Product Information

Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Windows Server License Manager Script : OK

Software Protection Service (Protection logicielle) : KO

Windows Automatic Updates : OK

Windows Activation Technologies : OK

 

---\\ System Information

~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel

~ Operating System: 64 Bits

Boot mode: Sans échec (Fail-safe boot)

Total RAM: 3948 MB (84% free)

System Restore: Activé (Enable)

System drive C: has 56 GB (37%) free of 149 GB

 

---\\ Logged in mode

~ Computer Name: N

~ User Name: N

~ All Users Names: N, HomeGroupUser$, Administrateur,

~ Unselected Option: None

Logged in as Administrator

 

---\\ Environnement Variables

~ System Unit : C:\

~ %AppData% : C:\Users\N\AppData\Roaming\

~ %Desktop% : C:\Users\N\Desktop\

~ %Favorites% : C:\Users\N\Favorites\

~ %LocalAppData% : C:\Users\N\AppData\Local\

~ %StartMenu% : C:\Users\N\AppData\Roaming\Microsoft\Windows\Start Menu\

~ %Windir% : C:\Windows\

~ %System% : C:\Windows\system32\

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 56 Go of 149 Go)

D:\ Hard drive, Flash drive, Thumb drive (Free 425 Go of 426 Go)

E:\ CD-ROM drive (Not Inserted)

 

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK

~ Scan Security Center in 00mn 00s

 

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.03/05/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]

[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]

[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]

[MD5.0732B49B250E306F7A6591029AF9885B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.11/08/2011 - 06:36:16.) -- C:\Windows\system32\wininet.dll [1389056]

[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.09/05/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]

[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.09/05/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]

[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.09/05/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]

[MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.23/06/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200] *1908

[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128] *1828

[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160] *1828

[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.09/05/2011 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456] *1820

[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.09/05/2011 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400] *1884

[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.09/05/2011 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368] *1908

[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472] *1892

[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224] *1860

[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.23/06/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208] *1852

[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.09/05/2011 - 10:23:20.) -- C:\Windows\system32\drivers\netBT.sys [261632] *1828

[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/05/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776] *1908

[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280] *1892

[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.09/05/2011 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536] *1916

[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.09/05/2011 - 10:21:56.) -- C:\Windows\system32\drivers\tdx.sys [119296] *1820

~ Scan Generic Processes in 00mn 00s

 

 

 

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes images (My Pictures) : 10/989

~ Mes Videos (My Videos) : 1/72

~ Mes Favoris (My Favorites) : 2/46

~ Mes Documents (My Documents) : 25/16040

~ Mon Bureau (My Desktop) : 4/36

~ Menu demarrer (Programs) : 7/70

~ Scan Hidden Files in 00mn 06s

 

 

 

---\\ Processus lancés

[MD5.F516CE308B3DCD9E3BC467EF248AB694] - (.Sysinternals - www.sysinternals.com - File version and signature viewer.) -- C:\Program Files (x86)\ZHPDiag\sigcheck.exe [220520] [PID.1428]

[MD5.7B2E3899314974CC40D93A6CD7C855C8] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [2134016] [PID.1000]

~ Scan Processes Running in 00mn 03s

 

 

 

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

C:\Users\N\AppData\Local\Google\Chrome\User Data\Default\Preferences

G1 - GCS: Preference [user Data\Default] Bing

G0 - GCSP: Preference [user Data\Default][HomePage] MSN Hotmail, Messenger, Actualité, Sport, People, Femmes - MSN France

~ Scan Google Browser in 00mn 00s

 

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN Hotmail, Messenger, Actualité, Sport, People, Femmes - MSN France

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R0 - HKUS\S-1-5-21-1491634347-2486834485-3182085919-1000\Software\Microsoft\Internet Explorer\Main,Start Page = MSN Hotmail, Messenger, Actualité, Sport, People, Femmes - MSN France

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = Google

R1 - HKUS\S-1-5-21-1491634347-2486834485-3182085919-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll

R3 - URLSearchHook: (no name) [64Bits] - {37483b40-c254-4a72-bda4-22ee90182c1e} . (...) (No version) -- (.not file.)

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1

~ Scan IE Browser in 00mn 00s

 

 

 

---\\ Redirection du fichier Hosts (O1)

~ Le fichier hosts est sain (The hosts file is clean).

~ Scan Hosts File in 00mn 00s

 

 

 

---\\ Browser Helper Objects de navigateur (O2)

[MD5.D7DC74D1474EC1678730AD972EB70FF2] - (.Kaspersky Lab - IE Virtual Keyboard.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\x64\ievkbd.dll [61528] [PID.]

[MD5.12DE3039ED87AEF27A37A9A8BEED3071] - (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [529280] [PID.]

[MD5.181896A4B938E5B91313C7F219F63CB5] - (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [346736] [PID.]

[MD5.FA3B7CA5831D0CE4056CF06325D161EE] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [318960] [PID.]

[MD5.72BE94955F1FA775BD1C7E1BF807D210] - (.Kaspersky Lab - WebToolBar component.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\x64\klwtbbho.dll [345176] [PID.]

[MD5.D2ADA8AF0EE98F3F76536015D74EE4BF] - (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [63912] [PID.]

[MD5.347EBC2D99D375A9F4B258F67A51D895] - (.Kaspersky Lab - IE Virtual Keyboard.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\ievkbd.dll [68184] [PID.]

[MD5.CF39A105CD553EED31E2255AFF4C6742] - (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [441216] [PID.]

[MD5.0EE505F20817F13DEA0C6907A94469D2] - (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [393600] [PID.]

[MD5.EDCB1DA9E527F38C0CA53187BD653AA8] - (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [256112] [PID.]

[MD5.32201F66E39D48070D61D002A0D729DB] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [761840] [PID.]

[MD5.CB84DFAFF68CD27E840251343B9B8E99] - (.Google Inc. - Fast Search.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [458736] [PID.]

[MD5.290F158843734D00425DFB773B7788D6] - (.Kaspersky Lab - WebToolBar component.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll [268888] [PID.]

~ Scan BHO in 00mn 00s

 

 

 

---\\ Internet Explorer Toolbars (O3)

[MD5.181896A4B938E5B91313C7F219F63CB5] - (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [346736] [PID.]

~ Scan Toolbar in 00mn 00s

 

 

 

---\\ Applications démarrées par registre & par dossier (O4)

~ Scan Application in 00mn 00s

 

 

 

---\\ Autres liens utilisateurs (O4)

[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [PID.]

[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [PID.]

[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [PID.]

[MD5.2EFDD10A838F1636A6AF93BD099B8C7C] - (...) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\xlicons.exe [409600] [PID.]

[MD5.249D235E3B321A3CD07C658F9E985CB4] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1017912] [PID.]

[MD5.904E13BA41AF2E353A32CF351CA53639] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [748336] [PID.]

[MD5.D3ACE0801D540BE9AA0573A11DCDCACC] - (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe [958352] [PID.]

~ Scan Global Startup in 00mn 00s

 

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

[MD5.2D519BB384202BED2327306AB3657DFB] - (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\ie_banner_deny.htm [1452] [PID.]

[MD5.D79141D5DCB6011FAB54BCD246CF4363] - (.Microsoft Corporation - Microsoft Office Excel.) -- D:\OFFICE11\EXCEL.exe [10357584] [PID.]

~ Scan IE Menu Contextuel in 00mn 00s

 

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

~ Scan IE Extra Buttons in 00mn 00s

 

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

[MD5.2DF36F15B2BC1571A6A542A3C2107920] - (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll [70656] [PID.]

[MD5.58A0CDABEA255616827B1C22C9994466] - (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de m.) -- C:\Windows\system32\napinsp.dll [68096] [PID.]

[MD5.613C8CE10A5FDE582BA5FA64C4D56AAA] - (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll [86016] [PID.]

[MD5.613C8CE10A5FDE582BA5FA64C4D56AAA] - (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll [86016] [PID.]

[MD5.1D5185A4C7E6695431AE4B55C3D7D333] - (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\Windows\system32\mswsock.dll [326144] [PID.]

[MD5.2E2072EB48238FCA8FBB7A9F5FABAC45] - (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll [28672] [PID.]

[MD5.12B79422A23814429CDA9E734C58F78F] - (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provid.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] [PID.]

[MD5.12B79422A23814429CDA9E734C58F78F] - (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provid.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] [PID.]

~ Scan Winsock in 00mn 00s

 

 

 

---\\ Protocole additionnel (O18)

[MD5.B721EFCC393D76390A319A8A30B1B654] - (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll [17782272] [PID.]

[MD5.5FFA26235E31B244316DB1FE54D2F030] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1344512] [PID.]

[MD5.0191E738BF521FE6EC567148E73C086B] - (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll [3650560] [PID.]

[MD5.5FFA26235E31B244316DB1FE54D2F030] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1344512] [PID.]

[MD5.5FFA26235E31B244316DB1FE54D2F030] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1344512] [PID.]

[MD5.5FFA26235E31B244316DB1FE54D2F030] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1344512] [PID.]

[MD5.5FFA26235E31B244316DB1FE54D2F030] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1344512] [PID.]

[MD5.06DC527364A8CF48E472ECF2BA3F8403] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [170496] [PID.]

[MD5.B721EFCC393D76390A319A8A30B1B654] - (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll [17782272] [PID.]

[MD5.749AE81CD855A5F7BE9FC3BE0949D6FF] - (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll [65912] [PID.]

[MD5.5FFA26235E31B244316DB1FE54D2F030] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1344512] [PID.]

[MD5.B721EFCC393D76390A319A8A30B1B654] - (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll [17782272] [PID.]

[MD5.142E90CF1A4C5B6E7505810E38B07B9F] - (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll [976896] [PID.]

[MD5.5FFA26235E31B244316DB1FE54D2F030] - (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll [1344512] [PID.]

[MD5.06DC527364A8CF48E472ECF2BA3F8403] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [170496] [PID.]

[MD5.10DCCC0270637294A0A148E2A6720490] - (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [520117] [PID.]

[MD5.749AE81CD855A5F7BE9FC3BE0949D6FF] - (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll [65912] [PID.]

[MD5.CD87D4396557AA897952B0ED890DF91E] - (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL [7255872] [PID.]

[MD5.6038EB24E4B56F42E92072C5A306ECA8] - (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL [8058192] [PID.]

[MD5.B721EFCC393D76390A319A8A30B1B654] - (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll [17782272] [PID.]

[MD5.0191E738BF521FE6EC567148E73C086B] - (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll [3650560] [PID.]

[MD5.B721EFCC393D76390A319A8A30B1B654] - (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll [17782272] [PID.]

[MD5.8627BE311E0A572B1BFC23377E6DA951] - (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll [741240] [PID.]

[MD5.31D70E22E0E929E2A1279F51245624CC] - (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll [42864] [PID.]

~ Scan Protocole Additionnel in 00mn 02s

 

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

[MD5.080D98A9D1623734D7937E5C2F5BE128] - (.Kaspersky Lab - Logon Visualizer.) -- C:\Windows\System32\klogon.dll [224344] [PID.]

~ Scan Winlogon in 00mn 00s

 

 

 

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)

[MD5.B49884129D2D37B29F71683F2F10C179] - (.Kaspersky Lab - Kaspersky OE plugin loader.) -- C:\PROGRA~2\KASPER~1\KASPER~1\x64\kloehk.dll [15448] [PID.]

~ Scan AppInit DLL in 00mn 00s

 

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

~ Scan SSODL in 00mn 00s

 

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952] [PID.]

[MD5.734D1BA96BE6AD8D04E6AFEAD569EA8A] - (.ASUSTeK Computer Inc. - ASUS FastBoot.) -- C:\Windows\system32\FBAgent.exe [379520] [PID.]

[MD5.3D90CF67DB75823A8480E56BBCD2E028] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [202752] [PID.]

[MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [84536] [PID.]

[MD5.7910158929571214A959D5A6D16DD9C0] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.]

[MD5.A2B790F9A751F24F17967F9A5574186D] - (.Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe [348760] [PID.]

[MD5.6E5B42219F1FE4A3D087D9D501E343D5] - (.Infowatch - InfoWatch CryptoStorage Protected objects c.) -- C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [743992] [PID.]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664] [PID.]

[MD5.A1C148801B4AF64847AEB9F3AD9594EF] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [262144] [PID.]

[MD5.41118D920B2B268C0ADC36421248CDCF] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2314240] [PID.]

~ Scan Services in 00mn 00s

 

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

~ Scan Desktop Component in 00mn 00s

 

 

 

---\\ Tâches planifiées en automatique (O39)

[MD5.F2E3AD8F693825A15DE8EA728BC49620] - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1078] [PID.]

[MD5.28381E28F1940FBA0F353214A807F257] - (...) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1082] [PID.]

~ Scan Scheduled Task in 00mn 05s

 

 

 

---\\ Pilotes lancés au démarrage (O41)

~ Scan Drivers in 00mn 00s

 

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.2C227B77763BDA87588DE74E0CE80D67] - 14/10/2011 - 18:53:23 ---A- . (...) -- C:\Windows\ntbtlog.txt [615036]

O44 - LFC:[MD5.E935E24C2AB4AB8829F37F08016760F0] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [6521980]

O44 - LFC:[MD5.BBE981FB5853F19E33BC559358B65593] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfc008.dat [93398]

O44 - LFC:[MD5.79FF5D43DBCA50B69FD43DAA404786B7] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [110350]

O44 - LFC:[MD5.6B67E7389EA0B61F7AC028B75D28E509] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfc00A.dat [141024]

O44 - LFC:[MD5.3C0C4E83B0D15C2FF8649DE30C33FF61] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [134708]

O44 - LFC:[MD5.CDA718953D91593A2C012A2D30C779C2] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfc00D.dat [73056]

O44 - LFC:[MD5.DFDFE469EE9FB73F0B59BB6D7E35F194] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfc010.dat [131106]

O44 - LFC:[MD5.D66BB3D789EB751B8254775E6738E0A7] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfc013.dat [136902]

O44 - LFC:[MD5.4D598BC1F40BDC38CBB98457C317B714] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfh008.dat [563650]

O44 - LFC:[MD5.3FEE80C8EAAF805197E76ABEB585F7B9] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [627888]

O44 - LFC:[MD5.0D1103287D23D480A62C5A83630BE433] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfh00A.dat [705334]

O44 - LFC:[MD5.32237D72DE544DD1DC79FCB5858CC9B7] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [716320]

O44 - LFC:[MD5.FF9FECBE878EEB3C1D08BB585BBBEC26] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfh00D.dat [365402]

O44 - LFC:[MD5.C49F81BF6E6360A7474A26B266FCE50E] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfh010.dat [700988]

O44 - LFC:[MD5.0AC92112607A8AFFAC617DF4F046DE0B] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\perfh013.dat [703072]

O44 - LFC:[MD5.79FF5D43DBCA50B69FD43DAA404786B7] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\prfc0404.dat [110350]

O44 - LFC:[MD5.1DC1ED4B84FC98FC464D0BA801167F75] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\prfc0816.dat [137714]

O44 - LFC:[MD5.6F3FE7E7EBEDEEC421FB060FCCD3D3B6] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\prfh0404.dat [397200]

O44 - LFC:[MD5.3AA690687BCCBF933AE1205D223837D6] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\SysNative\prfh0816.dat [691222]

O44 - LFC:[MD5.E935E24C2AB4AB8829F37F08016760F0] - 14/10/2011 - 18:04:50 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [6521980]

O44 - LFC:[MD5.BBE981FB5853F19E33BC559358B65593] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfc008.dat [93398]

O44 - LFC:[MD5.79FF5D43DBCA50B69FD43DAA404786B7] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfc009.dat [110350]

O44 - LFC:[MD5.6B67E7389EA0B61F7AC028B75D28E509] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfc00A.dat [141024]

O44 - LFC:[MD5.3C0C4E83B0D15C2FF8649DE30C33FF61] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfc00C.dat [134708]

O44 - LFC:[MD5.CDA718953D91593A2C012A2D30C779C2] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfc00D.dat [73056]

O44 - LFC:[MD5.DFDFE469EE9FB73F0B59BB6D7E35F194] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfc010.dat [131106]

O44 - LFC:[MD5.D66BB3D789EB751B8254775E6738E0A7] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfc013.dat [136902]

O44 - LFC:[MD5.4D598BC1F40BDC38CBB98457C317B714] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfh008.dat [563650]

O44 - LFC:[MD5.3FEE80C8EAAF805197E76ABEB585F7B9] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfh009.dat [627888]

O44 - LFC:[MD5.0D1103287D23D480A62C5A83630BE433] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfh00A.dat [705334]

O44 - LFC:[MD5.32237D72DE544DD1DC79FCB5858CC9B7] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfh00C.dat [716320]

O44 - LFC:[MD5.FF9FECBE878EEB3C1D08BB585BBBEC26] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfh00D.dat [365402]

O44 - LFC:[MD5.C49F81BF6E6360A7474A26B266FCE50E] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfh010.dat [700988]

O44 - LFC:[MD5.0AC92112607A8AFFAC617DF4F046DE0B] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\perfh013.dat [703072]

O44 - LFC:[MD5.79FF5D43DBCA50B69FD43DAA404786B7] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\prfc0404.dat [110350]

O44 - LFC:[MD5.1DC1ED4B84FC98FC464D0BA801167F75] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\prfc0816.dat [137714]

O44 - LFC:[MD5.6F3FE7E7EBEDEEC421FB060FCCD3D3B6] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\prfh0404.dat [397200]

O44 - LFC:[MD5.3AA690687BCCBF933AE1205D223837D6] - 14/10/2011 - 18:04:50 RSHAD . (...) -- C:\Windows\system32\prfh0816.dat [691222]

O44 - LFC:[MD5.F7BF57421A2101839F384D5E6DFD5B41] - 14/10/2011 - 18:00:37 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.9E69D857A780A4556227E2F4FE568AC0] - 14/10/2011 - 17:56:52 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [10240]

O44 - LFC:[MD5.9E69D857A780A4556227E2F4FE568AC0] - 14/10/2011 - 17:56:52 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [10240]

O44 - LFC:[MD5.9E69D857A780A4556227E2F4FE568AC0] - 14/10/2011 - 17:56:52 RSHAD . (...) -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [10240]

O44 - LFC:[MD5.9E69D857A780A4556227E2F4FE568AC0] - 14/10/2011 - 17:56:52 RSHAD . (...) -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [10240]

O44 - LFC:[MD5.4A3BC8E4414E4A9B719A25DF2C8F4D34] - 14/10/2011 - 17:54:03 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1055235]

O44 - LFC:[MD5.882C8485B291D410D70BACA6DDD7E0BD] - 14/10/2011 - 17:47:54 ---A- . (...) -- C:\Windows\setupact.log [81861]

~ Scan Files in 00mn 03s

 

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:[MD5.CEC2B702D818BDF574A90BDEF258C9E9] - [MD5.CEC2B702D818BDF574A90BDEF258C9E9] - 02/05/2011 - 12:39:05 ---A- - C:\Windows\Prefetch\WUAPP.EXE-C6167071.pf

O45 - LFCP:[MD5.49D102A893BD8886799F5C10E286F625] - [MD5.49D102A893BD8886799F5C10E286F625] - 02/05/2011 - 16:20:49 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf

O45 - LFCP:[MD5.28F3EE2A9DC60026ABEF65EEA9318211] - [MD5.28F3EE2A9DC60026ABEF65EEA9318211] - 02/05/2011 - 16:42:48 ---A- - C:\Windows\Prefetch\AgCx_SC1.db

O45 - LFCP:[MD5.D87787EBF939DBAAF80F98ECFE8CBA34] - [MD5.D87787EBF939DBAAF80F98ECFE8CBA34] - 02/05/2011 - 16:42:48 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx

O45 - LFCP:[MD5.C4AE1658EDF75DED6C9BBC0BB0B1DD8C] - [MD5.C4AE1658EDF75DED6C9BBC0BB0B1DD8C] - 02/05/2011 - 16:57:00 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-072DB435.pf

O45 - LFCP:[MD5.E42A5C10F13BEC1F1D0D70A946CB14AD] - [MD5.E42A5C10F13BEC1F1D0D70A946CB14AD] - 02/05/2011 - 17:21:31 ---A- - C:\Windows\Prefetch\LAUNCHERMA.EXE-15D8CC3F.pf

O45 - LFCP:[MD5.E561C6AD3A9BCEE9AD6EE10B2F7FA8B7] - [MD5.E561C6AD3A9BCEE9AD6EE10B2F7FA8B7] - 02/05/2011 - 17:22:05 ---A- - C:\Windows\Prefetch\GOOGLETOOLBARUSER_32.EXE-34B1B1C5.pf

O45 - LFCP:[MD5.B010DBA279DF954DFB4E18F063AB6012] - [MD5.B010DBA279DF954DFB4E18F063AB6012] - 02/05/2011 - 17:22:40 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf

O45 - LFCP:[MD5.CC5ECAF493994651A6983FBBAD2096AF] - [MD5.CC5ECAF493994651A6983FBBAD2096AF] - 02/05/2011 - 17:35:52 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf

O45 - LFCP:[MD5.6755C6A0ED133782DD8264E0E3AE5140] - [MD5.6755C6A0ED133782DD8264E0E3AE5140] - 02/05/2011 - 17:38:19 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-4B6C9213.pf

O45 - LFCP:[MD5.C292E15A2A2862CDA5766026ED1760FB] - [MD5.C292E15A2A2862CDA5766026ED1760FB] - 02/05/2011 - 17:49:28 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf

O45 - LFCP:[MD5.16767AEBC566970A7A90EF0C22D2DEAA] - [MD5.16767AEBC566970A7A90EF0C22D2DEAA] - 02/05/2011 - 17:49:51 ---A- - C:\Windows\Prefetch\MUISTARTMENU.EXE-F128F39F.pf

O45 - LFCP:[MD5.FBC94B46F113893F429A83F3202E6013] - [MD5.FBC94B46F113893F429A83F3202E6013] - 02/05/2011 - 17:49:57 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf

O45 - LFCP:[MD5.35E3E9488EF777BD483C4F106F3350B6] - [MD5.35E3E9488EF777BD483C4F106F3350B6] - 02/05/2011 - 17:50:06 ---A- - C:\Windows\Prefetch\BOINGO WI-FI.EXE-6B0CF3D7.pf

O45 - LFCP:[MD5.B6C0177E015648DDBCD9ABE3DBAFB692] - [MD5.B6C0177E015648DDBCD9ABE3DBAFB692] - 02/05/2011 - 17:50:41 ---A- - C:\Windows\Prefetch\FANCYSTART.EXE-91A615E7.pf

O45 - LFCP:[MD5.12BC86FF9D25D031D105284532EDFA3A] - [MD5.12BC86FF9D25D031D105284532EDFA3A] - 02/05/2011 - 17:50:46 ---A- - C:\Windows\Prefetch\CLISTART.EXE-0F58A398.pf

O45 - LFCP:[MD5.BFCEFF878684C0E9F8E2F799FF56DF46] - [MD5.BFCEFF878684C0E9F8E2F799FF56DF46] - 02/05/2011 - 17:50:51 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf

O45 - LFCP:[MD5.07A5324E3E248BAE7B489B339182E9F6] - [MD5.07A5324E3E248BAE7B489B339182E9F6] - 02/05/2011 - 17:50:52 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf

O45 - LFCP:[MD5.F7E83446CE786007BB3C494503849D67] - [MD5.F7E83446CE786007BB3C494503849D67] - 02/05/2011 - 17:50:54 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf

O45 - LFCP:[MD5.302DA5E2A078CCF5EE489F1FEA2DE10A] - [MD5.302DA5E2A078CCF5EE489F1FEA2DE10A] - 02/05/2011 - 17:51:10 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf

O45 - LFCP:[MD5.80B5EED0B0DDDD001E1EB924EEB4CC20] - [MD5.80B5EED0B0DDDD001E1EB924EEB4CC20] - 02/05/2011 - 17:51:10 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf

O45 - LFCP:[MD5.4FF9D05CD02BD4E3E1523DED7E6F6A15] - [MD5.4FF9D05CD02BD4E3E1523DED7E6F6A15] - 02/05/2011 - 17:51:39 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf

O45 - LFCP:[MD5.095C58808DF594A27B0C65BA4A47D05B] - [MD5.095C58808DF594A27B0C65BA4A47D05B] - 02/05/2011 - 17:51:41 ---A- - C:\Windows\Prefetch\UNS.EXE-E6E49771.pf

O45 - LFCP:[MD5.0404A7D7B21DFBA56C83737BDB7E1886] - [MD5.0404A7D7B21DFBA56C83737BDB7E1886] - 02/05/2011 - 17:52:28 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-ECB71776.pf

O45 - LFCP:[MD5.351E166033CB740A98F897295ED6BFBA] - [MD5.351E166033CB740A98F897295ED6BFBA] - 02/05/2011 - 17:53:42 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf

O45 - LFCP:[MD5.DFEAEED52DACA28B13878BC454DB6DEF] - [MD5.DFEAEED52DACA28B13878BC454DB6DEF] - 02/05/2011 - 17:53:54 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf

O45 - LFCP:[MD5.4A94FAB295DE87EE9AC0778F073FBD2D] - [MD5.4A94FAB295DE87EE9AC0778F073FBD2D] - 02/05/2011 - 17:54:38 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf

O45 - LFCP:[MD5.ABC1F33CA737C501AB9A944D910B1880] - [MD5.ABC1F33CA737C501AB9A944D910B1880] - 02/05/2011 - 17:55:04 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf

O45 - LFCP:[MD5.3F797C1F58BB986639F1D50F5E9BA1A5] - [MD5.3F797C1F58BB986639F1D50F5E9BA1A5] - 02/05/2011 - 17:55:36 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf

O45 - LFCP:[MD5.2AE1B6A2847B553C71DDE595270C4B74] - [MD5.2AE1B6A2847B553C71DDE595270C4B74] - 02/05/2011 - 17:55:58 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf

O45 - LFCP:[MD5.940DD273B7F6C2649BAB30E6F02D0757] - [MD5.940DD273B7F6C2649BAB30E6F02D0757] - 02/05/2011 - 17:57:31 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf

O45 - LFCP:[MD5.8D4433DD60C6DA944B85825AD43D235B] - [MD5.8D4433DD60C6DA944B85825AD43D235B] - 02/05/2011 - 17:58:44 ---A- - C:\Windows\Prefetch\LIVEUPDT.EXE-DAF7AD9D.pf

O45 - LFCP:[MD5.171C47A9D4E83B53EFF360FA578AF3B5] - [MD5.171C47A9D4E83B53EFF360FA578AF3B5] - 02/05/2011 - 18:09:29 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf

O45 - LFCP:[MD5.D6DFC383FBDA3A24743103303079438B] - [MD5.D6DFC383FBDA3A24743103303079438B] - 02/05/2011 - 18:09:41 ---A- - C:\Windows\Prefetch\ATIECLXX.EXE-48B31DFA.pf

O45 - LFCP:[MD5.9528400E918ACD9E8453FA6187CF3193] - [MD5.9528400E918ACD9E8453FA6187CF3193] - 02/05/2011 - 18:18:14 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-031A2FE9.pf

O45 - LFCP:[MD5.3834BA402F8557E8DDB8D17BC622BC81] - [MD5.3834BA402F8557E8DDB8D17BC622BC81] - 02/05/2011 - 18:18:14 ---A- - C:\Windows\Prefetch\XWIZARD.EXE-B087025D.pf

O45 - LFCP:[MD5.6B5E347531EE2E4FDA4C7B4B82160E03] - [MD5.6B5E347531EE2E4FDA4C7B4B82160E03] - 02/05/2011 - 19:08:30 ---A- - C:\Windows\Prefetch\SAIICPL.EXE-B8307A71.pf

O45 - LFCP:[MD5.72AF012A5EC032ADAE1C23A8A054B16C] - [MD5.72AF012A5EC032ADAE1C23A8A054B16C] - 02/05/2011 - 19:08:40 ---A- - C:\Windows\Prefetch\ETDCTRL.EXE-EC9938C4.pf

O45 - LFCP:[MD5.28808F8451F95E1EC896498F5AB36897] - [MD5.28808F8451F95E1EC896498F5AB36897] - 02/05/2011 - 19:08:41 ---A- - C:\Windows\Prefetch\ASUSWSSERVICE.EXE-BD6817B0.pf

O45 - LFCP:[MD5.2F5A0EFDC65412B7236AF115C48D2645] - [MD5.2F5A0EFDC65412B7236AF115C48D2645] - 02/05/2011 - 19:30:47 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1491634347-2486834485-3182085919-1000.db

O45 - LFCP:[MD5.592B4331DD76F79A5D4E50BEE98E907D] - [MD5.592B4331DD76F79A5D4E50BEE98E907D] - 02/05/2011 - 19:30:48 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1491634347-2486834485-3182085919-1000.db

O45 - LFCP:[MD5.FDFA58FA8B7C3A6AC0035EB5A67AB9B0] - [MD5.FDFA58FA8B7C3A6AC0035EB5A67AB9B0] - 02/05/2011 - 19:30:53 ---A- - C:\Windows\Prefetch\AgRobust.db

O45 - LFCP:[MD5.11EDDA4B38B5A936FDC6E96250BDA00D] - [MD5.11EDDA4B38B5A936FDC6E96250BDA00D] - 02/05/2011 - 19:30:53 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin

O45 - LFCP:[MD5.A9628ED4F03FC062C84E1569184B17B0] - [MD5.A9628ED4F03FC062C84E1569184B17B0] - 02/05/2011 - 19:30:54 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:[MD5.9A8BB108A5EF5B6779591939A82C8801] - [MD5.9A8BB108A5EF5B6779591939A82C8801] - 02/05/2011 - 19:30:54 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:[MD5.4CEEBFF263A7260ABEADCDE2283800DF] - [MD5.4CEEBFF263A7260ABEADCDE2283800DF] - 02/05/2011 - 19:30:54 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:[MD5.CA23A6D53048EB01CF1C14F8E5F16555] - [MD5.CA23A6D53048EB01CF1C14F8E5F16555] - 02/05/2011 - 19:42:47 ---A- - C:\Windows\Prefetch\SMARTLOGON.EXE-8F794AF5.pf

O45 - LFCP:[MD5.F599E9F7AB9F3D87F56A01B759BD1C59] - [MD5.F599E9F7AB9F3D87F56A01B759BD1C59] - 02/05/2011 - 19:47:53 ---A- - C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf

O45 - LFCP:[MD5.46374017AFCAC48F0A31AFD5462821AC] - [MD5.46374017AFCAC48F0A31AFD5462821AC] - 02/05/2011 - 19:49:56 ---A- - C:\Windows\Prefetch\DEVICEDISPLAYOBJECTPROVIDER.E-17410B90.pf

O45 - LFCP:[MD5.2AEBDECE92AB856C4D3C16A8E505E8E4] - [MD5.2AEBDECE92AB856C4D3C16A8E505E8E4] - 02/05/2011 - 19:50:36 ---A- - C:\Windows\Prefetch\MSDT.EXE-09841468.pf

O45 - LFCP:[MD5.9C456EAD5629DA9BFE3D39EED1B55CF8] - [MD5.9C456EAD5629DA9BFE3D39EED1B55CF8] - 02/05/2011 - 19:54:40 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-28BF826E.pf

O45 - LFCP:[MD5.A2E320B4E69F03EA710661C3907CD396] - [MD5.A2E320B4E69F03EA710661C3907CD396] - 02/05/2011 - 20:40:04 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf

O45 - LFCP:[MD5.0B3CCD55D9AE8480BA5026685E3C0B0C] - [MD5.0B3CCD55D9AE8480BA5026685E3C0B0C] - 02/05/2011 - 20:40:34 ---A- - C:\Windows\Prefetch\CONTROLDECK.EXE-1EFEC479.pf

O45 - LFCP:[MD5.6B3627068D3B272FDC14D7412D83E1EF] - [MD5.6B3627068D3B272FDC14D7412D83E1EF] - 02/05/2011 - 20:42:04 ---A- - C:\Windows\Prefetch\PRESENTATIONFONTCACHE.EXE-73BE9E78.pf

O45 - LFCP:[MD5.B8F7CF9036C31926159A3FAABB2CB209] - [MD5.B8F7CF9036C31926159A3FAABB2CB209] - 02/05/2011 - 20:42:19 ---A- - C:\Windows\Prefetch\HELPPANE.EXE-FEDC965B.pf

O45 - LFCP:[MD5.18C468D91848EEB24DC286C6F946DB99] - [MD5.18C468D91848EEB24DC286C6F946DB99] - 02/05/2011 - 20:43:10 ---A- - C:\Windows\Prefetch\USERACCOUNTCONTROLSETTINGS.EX-1B2F66BE.pf

O45 - LFCP:[MD5.0ABA897F3B102CC0D70408DADF269BAC] - [MD5.0ABA897F3B102CC0D70408DADF269BAC] - 02/05/2011 - 20:51:22 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf

O45 - LFCP:[MD5.2FA702049660EA753F8A41B0B60AD042] - [MD5.2FA702049660EA753F8A41B0B60AD042] - 02/05/2011 - 20:54:16 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf

O45 - LFCP:[MD5.DB349B13FA2DC022ACAB637AE6C884C4] - [MD5.DB349B13FA2DC022ACAB637AE6C884C4] - 02/05/2011 - 20:54:23 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf

O45 - LFCP:[MD5.02FBCCA8ABC6BF5F815935B01FF4A984] - [MD5.02FBCCA8ABC6BF5F815935B01FF4A984] - 02/05/2011 - 21:00:38 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf

O45 - LFCP:[MD5.DE5BA2EC41EA3E95B813BC4358FE2E95] - [MD5.DE5BA2EC41EA3E95B813BC4358FE2E95] - 02/05/2011 - 21:01:07 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf

O45 - LFCP:[MD5.5D98949ECDA5204AF5D43B1505BF0C15] - [MD5.5D98949ECDA5204AF5D43B1505BF0C15] - 02/05/2011 - 22:30:21 ---A- - C:\Windows\Prefetch\COMPANIONUSER.EXE-C2435D5F.pf

O45 - LFCP:[MD5.70CF5730ADB2EB63BFF023EF969C0DB5] - [MD5.70CF5730ADB2EB63BFF023EF969C0DB5] - 03/05/2011 - 17:14:05 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:[MD5.8CE1A52680DCB96A8E6166F6A33A118A] - [MD5.8CE1A52680DCB96A8E6166F6A33A118A] - 03/05/2011 - 17:44:35 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf

O45 - LFCP:[MD5.0AA071D01FC14F7322F6DD1D53AD52E7] - [MD5.0AA071D01FC14F7322F6DD1D53AD52E7] - 03/05/2011 - 17:50:50 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf

O45 - LFCP:[MD5.5C381831C6602C67E5FBF12CC34D4836] - [MD5.5C381831C6602C67E5FBF12CC34D4836] - 03/05/2011 - 17:52:05 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf

O45 - LFCP:[MD5.B95277FBDA9250B71806BD079511D764] - [MD5.B95277FBDA9250B71806BD079511D764] - 03/05/2011 - 17:54:43 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf

O45 - LFCP:[MD5.855E2319B530192920E51F7F212339C9] - [MD5.855E2319B530192920E51F7F212339C9] - 03/05/2011 - 17:54:44 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf

O45 - LFCP:[MD5.AEA8A7125CD3E8C3F2F92B6467106864] - [MD5.AEA8A7125CD3E8C3F2F92B6467106864] - 03/05/2011 - 18:10:33 ---A- - C:\Windows\Prefetch\CLMLSVC.EXE-2A642111.pf

O45 - LFCP:[MD5.ABD4590E12B4AEAEFA35E6A9B8934462] - [MD5.ABD4590E12B4AEAEFA35E6A9B8934462] - 03/05/2011 - 18:11:44 ---A- - C:\Windows\Prefetch\AgCx_SC4.db

O45 - LFCP:[MD5.FF9F42BEB943BB308185C6414BF0FC86] - [MD5.FF9F42BEB943BB308185C6414BF0FC86] - 03/05/2011 - 18:25:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-29388D79.pf

O45 - LFCP:[MD5.97DF0D6943B70778483CFF0C83C10E2F] - [MD5.97DF0D6943B70778483CFF0C83C10E2F] - 03/05/2011 - 19:09:04 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf

O45 - LFCP:[MD5.F297B90EF774306BFE39C31B2F814A07] - [MD5.F297B90EF774306BFE39C31B2F814A07] - 03/05/2011 - 20:43:02 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf

O45 - LFCP:[MD5.8A7BFA956D47A873F34641F1EAE9556A] - [MD5.8A7BFA956D47A873F34641F1EAE9556A] - 04/10/2011 - 16:29:05 ---A- - C:\Windows\Prefetch\AgCx_S2_S-1-5-21-1491634347-2486834485-3182085919-1000.snp.db

O45 - LFCP:[MD5.42C00746DA070851378715669359384E] - [MD5.42C00746DA070851378715669359384E] - 05/05/2011 - 16:42:17 ---A- - C:\Windows\Prefetch\AgCx_SC2.db

O45 - LFCP:[MD5.7CFB7664C0FEA0182E0DAE9CC109DFA1] - [MD5.7CFB7664C0FEA0182E0DAE9CC109DFA1] - 05/10/2011 - 17:51:19 ---A- - C:\Windows\Prefetch\WMI64.EXE-36A8BE07.pf

O45 - LFCP:[MD5.4778A9681AB9A04F3643AEE63632D16F] - [MD5.4778A9681AB9A04F3643AEE63632D16F] - 07/05/2011 - 10:24:03 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-1491634347-2486834485-3182085919-1000.snp.db

O45 - LFCP:[MD5.F0ADF127288F450F0B3E4537B816138D] - [MD5.F0ADF127288F450F0B3E4537B816138D] - 07/05/2011 - 16:30:53 ---A- - C:\Windows\Prefetch\AgCx_SC3_A3221B49BFD58B5F.db

~ Scan Prefetcher in 00mn 00s

 

 

 

---\\ Contrôle du Safe Boot (CSB) (O49)

~ Scan CSB in 00mn 00s

 

 

 

---\\ MountPoints2 Shell Key (O51)

~ Scan Keys in 00mn 00s

 

 

 

---\\ ShareTools MSconfig StartupReg (O53)

~ Scan SMSR Keys in 00mn 00s

 

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 10/06/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]

O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]

O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]

O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 RSHAD . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]

O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 03/05/2011 - 07:41:12 RSHAD . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]

O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 10/06/2009 - 02:52:20 RSHAD . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]

O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 03/05/2011 - 07:41:12 RSHAD . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]

O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]

O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]

O58 - SDL:[MD5.88FBC8BEBFD38566235EAA5E4DBC4E05] - 08/12/2010 - 20:49:44 RSHAD . (.ASUSTek Computer Inc - Data Security Manager Driver.) -- C:\Windows\system32\drivers\AsDsm.sys [35384]

O58 - SDL:[MD5.F8633CDD09647A64EE8DB550630427FF] - 02/03/2010 - 09:45:23 RSHAD . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1594368]

O58 - SDL:[MD5.FB7602C5C508BE281368AAE0B61B51C6] - 08/12/2010 - 02:34:31 RSHAD . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys [121872]

O58 - SDL:[MD5.52679612D742BF74CA1BA6AB86DDF431] - 08/12/2010 - 02:13:23 RSHAD . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [6233088]

O58 - SDL:[MD5.414E0788920A8C856032BE2CBF29F984] - 08/12/2010 - 01:07:55 RSHAD . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\system32\drivers\atikmpag.sys [161280]

O58 - SDL:[MD5.52679612D742BF74CA1BA6AB86DDF431] - 08/12/2010 - 02:13:23 RSHAD . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atipmdag.sys [6233088]

O58 - SDL:[MD5.032D35C996F21D19A205A7C8F0B76F3C] - 08/12/2010 - 18:07:20 RSHAD . (.ASUS - ATK0100 ACPI Utility.) -- C:\Windows\system32\drivers\ATK64AMD.sys [15928]

O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]

O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 14/07/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]

O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 14/07/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]

O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 RSHAD . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]

O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]

O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]

O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]

O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]

O58 - SDL:[MD5.F7CA3ACCF5AA0E2182546C5BE42B2E96] - 30/10/2009 - 03:50:03 RSHAD . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\CHDRT64.sys [704512]

O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 RSHAD . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]

O58 - SDL:[MD5.AB1201F8DE199E764DA9A32ABF71049C] - 04/08/2011 - 11:44:24 RSHAD . (.Infowatch - Cryptographic Algorithm Lib Driver..) -- C:\Windows\system32\drivers\CSCrySec.sys [85048]

O58 - SDL:[MD5.A6EED705BB510FA6B0F9F097165A3395] - 04/08/2011 - 11:44:24 RSHAD . (.Infowatch - Virtual Volume Container Driver (wnet).) -- C:\Windows\system32\drivers\CSVirtualDiskDrv.sys [66104]

O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 10/06/2009 - 02:47:48 RSHAD . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]

O58 - SDL:[MD5.0975BF32399A24117E317B5BF1D5D0AA] - 13/04/2010 - 11:15:03 RSHAD . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Windows\system32\drivers\ETD.sys [135560]

O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]

O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 14/07/2009 - 21:31:59 RSHAD . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]

O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 08/12/2010 - 21:54:54 RSHAD . (.Intel Corporation - Intel® Management Engine Interface.) -- C:\Windows\system32\drivers\HECIx64.sys [56344]

O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 09/05/2011 - 14:33:35 RSHAD . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720]

O58 - SDL:[MD5.2064090C9FAAD92C090D77E50E735B2E] - 08/06/2010 - 03:33:13 RSHAD . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [540696]

O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 03/05/2011 - 07:41:26 RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]

O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 13/07/2009 - 02:48:04 RSHAD . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]

O58 - SDL:[MD5.DB917B998CBC15A153C00DD6EFC34C13] - 18/08/2009 - 09:23:31 RSHAD . (.JMicron Technology Corporation - JMicron JMB38X Flash Media Controller Driver.) -- C:\Windows\system32\drivers\jmcr.sys [143472]

O58 - SDL:[MD5.DE4B2249D95C7815D06A39EA5FF4EE53] - 25/02/2010 - 04:26:57 RSHAD . (.JMicron Technology Corp. - JMicron NDIS6.20 Driver.) -- C:\Windows\system32\drivers\JME.sys [115312]

O58 - SDL:[MD5.E63EF8C3271D014F14E2469CE75FECB4] - 20/07/2009 - 10:29:39 RSHAD . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\system32\drivers\kbfiltr.sys [15416]

O58 - SDL:[MD5.DB449F50E5141458EB58E64FFAC4863F] - 27/08/2011 - 14:29:56 RSHAD . (.Kaspersky Lab - Kaspersky Unified Driver.) -- C:\Windows\system32\drivers\kl1.sys [157712]

O58 - SDL:[MD5.87200A8AFE40532BAA4D2B24A7BA0EEA] - 27/08/2011 - 20:18:38 RSHAD . (.Kaspersky Lab - Kaspersky Lab Boot Guard Driver.) -- C:\Windows\system32\drivers\klbg.sys [40464]

O58 - SDL:[MD5.34D49307217B20E5A845B7DB50CDD4FA] - 27/08/2011 - 12:10:18 RSHAD . (.Kaspersky Lab - Klif Mini-Filter [fre_wlh_AMD64].) -- C:\Windows\system32\drivers\klif.sys [353296]

O58 - SDL:[MD5.630F22545379437737CF4172F09FE449] - 27/08/2011 - 13:46:42 RSHAD . (.Kaspersky Lab - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\system32\drivers\klim6.sys [27152]

O58 - SDL:[MD5.786791291939ABB11F6D0F040DA23912] - 27/08/2011 - 18:39:32 RSHAD . (.Kaspersky Lab - KLMOUFLT Mouse Device Filter [fre_wlh_AMD64].) -- C:\Windows\system32\drivers\klmouflt.sys [21008]

O58 - SDL:[MD5.F075E77AAB531D7DB0B2AF1299EB9D7C] - 13/07/2011 - 14:55:00 RSHAD . (.LG Electronics Inc. - LG CDMA USB Multi function Driver.) -- C:\Windows\system32\drivers\lgx64bus.sys [17408]

O58 - SDL:[MD5.B4024E7D497738B7F737401CA9F49ABA] - 13/07/2011 - 14:55:00 RSHAD . (.LG Electronics Inc. - LG CDMA USB Diagnostics Driver.) -- C:\Windows\system32\drivers\lgx64diag.sys [27136]

O58 - SDL:[MD5.978C3EF5E7A4F8ADACB2368D7A65F4EF] - 13/07/2011 - 14:55:00 RSHAD . (.LG Electronics Inc. - LG CDMA USB Modem Driver.) -- C:\Windows\system32\drivers\lgx64modem.sys [33792]

O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]

O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]

O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]

O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]

O58 - SDL:[MD5.085435AE1A124361304044029B5CC644] - 23/05/2011 - 21:18:10 RSHAD . (.Windows ® Win 7 DDK provider - ASUS CopyProtect driver.) -- C:\Windows\system32\drivers\lullaby.sys [15928]

O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 10/06/2009 - 02:48:04 RSHAD . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]

O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]

O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 13/07/2009 - 02:48:26 RSHAD . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]

O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 03/05/2011 - 07:41:34 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]

O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 03/05/2011 - 07:41:34 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]

O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 10/06/2009 - 02:45:46 RSHAD . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]

O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 13/07/2009 - 02:45:45 RSHAD . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]

O58 - SDL:[MD5.72AECF54AAC22B20956D08610972B5A1] - 03/05/2011 - 18:03:13 RSHAD . (.Sunbelt Software - Anti-Rootkit Engine.) -- C:\Windows\system32\drivers\SBREDrv.sys [93360]

O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 14/07/2009 - 21:37:19 RSHAD . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]

O58 - SDL:[MD5.1BC348CF6BAA90EC8E533EF6E6A69933] - 10/06/2009 - 21:35:57 RSHAD . (.Silicon Integrated Systems Corp. - NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device.) -- C:\Windows\system32\drivers\SiSG664.sys [56832]

O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 10/06/2009 - 02:45:45 RSHAD . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]

O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 13/07/2009 - 02:45:46 RSHAD . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]

O58 - SDL:[MD5.1CDADE078F46F10919F21E08E22D227D] - 29/12/2008 - 10:14:27 RSHAD . (.Pas de propriétaire - USBCAMD for Sonix UVC.) -- C:\Windows\system32\drivers\sncduvc.sys [35456]

O58 - SDL:[MD5.2114518E55B380A3ACC28B2C27FD499A] - 20/08/2009 - 03:41:37 RSHAD . (.Pas de propriétaire - UVC Camera Streaming Driver.) -- C:\Windows\system32\drivers\snp2uvc.sys [1800192]

O58 - SDL:[MD5.8F8324ED1DE63FFC7B1A02CD2D963C72] - 04/08/2011 - 08:45:54 RSHAD . (.MCCI Corporation - SAMSUNG Android USB Composite Device Driver.) -- C:\Windows\system32\drivers\ssadbus.sys [157672]

O58 - SDL:[MD5.D13C15E4124B6AD2BAF9CB2192213EA7] - 04/08/2011 - 08:45:54 RSHAD . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadcm.sys [13288]

O58 - SDL:[MD5.D13C15E4124B6AD2BAF9CB2192213EA7] - 04/08/2011 - 08:45:54 RSHAD . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadcmnt.sys [13288]

O58 - SDL:[MD5.58221EFCB74167B73667F0024C661CE0] - 04/08/2011 - 08:45:54 RSHAD . (.MCCI Corporation - SAMSUNG Android USB Modem Filter Driver.) -- C:\Windows\system32\drivers\ssadmdfl.sys [16872]

O58 - SDL:[MD5.4DA7C71BFAC5AD71255B7E4CAB980163] - 04/08/2011 - 08:45:54 RSHAD . (.MCCI Corporation - SAMSUNG Android USB Modem.) -- C:\Windows\system32\drivers\ssadmdm.sys [177640]

O58 - SDL:[MD5.8EEA35B5D1718C546C767FF47CEDF4FE] - 04/08/2011 - 08:45:54 RSHAD . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadwh.sys [13800]

O58 - SDL:[MD5.8EEA35B5D1718C546C767FF47CEDF4FE] - 04/08/2011 - 08:45:54 RSHAD . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadwhnt.sys [13800]

O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 13/07/2009 - 02:45:55 RSHAD . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]

O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 RSHAD . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]

O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 10/06/2009 - 02:45:55 RSHAD . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]

~ Scan Drivers in 00mn 01s

 

 

 

End of the scan (535 lines in 01mn 13s)(0)

 

J'espère que vous pourrez m'aider, je vous confirme également que je n'attive pas à supprimer les deux logiciels LG(update et modem driver) dans le panneau de config. J'utilise un autre pc prêté avec connection sur ma carte réseau qui fonctionne parfaitement. Mais sur mon pc, la carte réseau n'est pas identifiée malgré la recherche, et le message aucune connection disponible s'affiche. En plus de mon profil N, dans le gestionnaire des comptes s'affiche un profil local non identifié.

Cordialement, N

[pear]

Bonjour,

 

Votre rapport est propre, donc aucune infection visible.

 

Vous devriez trouver une aide appropriée sur Internet-et-reseaux de ce site.

[tilly33]

Bonjour,

Merci pour votre analyse. Avez-vous remarqué sur le rapport que la ligne Windows Protection Service est mentionnée KO et non pas OK ? Ce pourrait il être le souci et pourquoi ? Ce malware doit être bien caché car il contrôle toutes les fonctionnalités, en plus j'ai essayé de brancher un disque dur externe pour transferer mes données qui est compatible et le pc me le refuse aussi. La carte réseau est mentionnée inexistante je ne peux même pas me connecter à internet pour effectuer les MAJ Windows depuis qq jours. J'ai effectué un point de restauration à 3 semaines en arrière, rien ne change. Mais le plus flagrant c'est que je n'ai pas accès au gestionnaire des comptes utilisateurs, et qu'il me refuse de supprimer certains programmes comme le modem driver de LG même en mode sans échec. Enfin il y a une barre de tâche noire qui s'affiche en haut lors de la mise sous tension lorsque je dois rentrer mon mot de passe, elle affiche un onglet langue ; correctif ; aide onglets qui n'aboutissent à rien. Que puis-je faire, svp c'est un gros souci. Merci d'avance.

[pear]

Bonsoir,

 

Je vous ai répondu "Aucune infection visible".

 

Reste la possibilité d'un rootkit.

 

Télécharger GMER

clic sur "Download EXE" et télécharger le fichier sur le bureau.

 

Désactiver les protection (antivirus, antispyware etc) et fermer tous les programmes ouverts.

Double-clic sur le fichier GMER téléchargé.

- Dans la section de droite de la fenêtre de l'outil, Vérifiez que soient décochées :

Show All

Une fois lancé, clic droit sur le fond blanc et clic sur "Only Non MS files"

Clic en bas à droite sur le bouton "Scan" pour lancer le scan.

 

 

Lorsque le scan est terminé, clic sur "Copy"

 

Il peut arriver que GMER plante sans raison apparente.

Vous pouvez essayer ceci : décocher "Devices" dans un premier temps et repasser l'outil ;

si ça coince toujours, décocher en plus "Files" et ré-essayez un scan.

Lorsque les informations sur le scan s'affichent , Les éléments détectés comme rootkit apparaissent en rougel dans chaque section.

Pour supprimer:

Clic droit et faire l'action voulue selon le type de la colonne de gauche.

Delete the service si c'est un service

Delete File pour le reste

Ouvrez le bloc-note et clic sur le Menu Edition / Coller

Le rapport doit alors apparaître.

Enregistrer le fichier sur le bureau et copier/coller le contenu.

 

[/color]