Aller au contenu
  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Messages d'erreur : virus sur PC


Aissuber

Messages recommandés

Bonjour a tous, alors voila après plusieurs messages d'erreurs qui surviennent aléatoirement je décide de faire un scan avec Hijackthis et la j'ai tout plein de croix rouges, mais en recherchant sur internet les croix rouges ne semble pas méchantes, j'ai besoin d'une confirmation car je ne suis pas un pro.

 

Merci d'avance a tout ceux qui pourront m'apporter de l'aide.

Le rapport :

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 16:09:10, on 15/10/2011

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Windows\RtHDVCpl.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\LOLReplay\LOLRecorder.exe

C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\system32\mmc.exe

C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

C:\Windows\system32\SearchFilterHost.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb32&d=0110&m=imedia_d4410_fr

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Abonnement Adsl Haut débit avec Alice France. Page d'accueil du portail.

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Hotmail, Messenger, Actualité, Sport, People, Femmes - MSN France

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb32&d=0110&m=imedia_d4410_fr

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe

O1 - Hosts: ::1 localhost

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-21-3320974865-676787251-981333123-1001\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'UpdatusUser')

O4 - Global Startup: LOLRecorder.lnk = C:\Program Files\LOLReplay\LOLRecorder.exe

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html

O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: Sélection intelligente HP - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe

O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe

O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\emdmgmt.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Easybits Shared Services for Windows (ezSharedSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe

O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe

O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe

O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe

O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe

O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe

O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%windir%\WindowsMobile\rapimgr.dll,-104 (RapiMgr) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe

O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe

O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe

O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe

O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe

O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe

O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%windir%\WindowsMobile\wcescomm.dll,-40079 (WcesComm) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe

O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe

O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe

O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe

O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe

 

--

End of file - 19079 bytes

Lien vers le commentaire
Partager sur d’autres sites

Bonjour, et bien mon problème provient de certain jeux, par exemple a 8h du matin le jeu ne voudra pas se lancer mais a 16h il va partir correctement. Souvent des plantage aléatoire (explorer.exe a cessé de fonctionner). Et pour le rapport c'est que j'ai fait comme a mon habitude un nettoyage avec ccleaner etc et je fait un scan hijack a chaque fois, et la ça m'a parue étrange toutes les croix.

Ba merci de ta réponse alors si tout vas bien tant mieux, par contre pourquoi toutes ces croix au final ? Parceque je n'ai pas d'anti virus ?

Lien vers le commentaire
Partager sur d’autres sites

Aissuber les robots analyseur HJT ne sont absolument pas fiable :D

 

Par contre il te faut un antivirus sur ton pc,il y en a des gratuit qui sont tout a fait performant.

Actuelement avast 6 est trés bien .

Télécharge ici la version gratiut

Avast6

 

Et voici un bon tutoriel pour le configurer

Merci malekal

 

Si tu veux pour une analyse un peu plus détailler de ton ordinateur

Applique cette procédure stp.

 

Télécharge ZHPDiag de Nicolas Coolman sur ton Bureau

 

  • Lance l'outil : double-clique sur ZHPDiag pour XP
    Pour Vista et seven
    fais un clique droit sur l'icône et exécute en tant qu'administrateur.
     
    Clique sur le Tournevis a droit en haut
    tournevis.jpg
     
    Coche toutes les cases .
  • Puis Clique sur la petite loupe loupe.jpg en haut à gauche pour débuter l'analyse :
  • L'analyse peut durer une dizaine de minutes.
  • Le rapport généré par l'outil se nomme ZHPDiag.txt
  • Clique sur le bouton avec l'appareil photo pour copier le contenu intégral du rapport généré par l'outil dans le presse-papier :
  • Dans ta prochaine réponse
    clique sur les touches CTRL+V pour coller ce rapport.
  • Si tu rencontres un message d'erreur
    cela signifie que le rapport est trop long. Il faut donc l'éditer en plusieurs parties en veillant bien à ne rien oublier
     
  • héberger le fichier contenant ce rapport ici
    http://cjoint.com/
  • Indique ensuite dans ta prochaine réponse l'adresse d'hébergement de ce rapport pour que je puisse le télécharger et l'analyser.

 

A+

Lien vers le commentaire
Partager sur d’autres sites

Mon rapport :

 

Rapport de ZHPDiag v1.28.1367 par Nicolas Coolman, Update du 05/10/2011

Run by bonjour at 15/10/2011 21:14:18

Web site : ZHPDiag Outil de diagnostic

State : Version à jour.

 

 

---\\ Web Browser

MSIE: Internet Explorer v9.0.8112.16421

MFIE: Mozilla Firefox 7.0.1 v7.0.1 (Defaut)

GCIE: Google Chrome v14.0.835.202

 

---\\ Windows Product Information

Windows Vista Home Basic Edition, 32-bit Service Pack 2 (Build 6002)

Windows Server License Manager Script : OK

~ Vista, OEM_SLP channel

System Locked Preinstallation (OEM_SLP) : OK

Windows ID Activation : OK

~ Windows Partial Key : KRDMH

Windows License : OK

Windows Automatic Updates : OK

 

---\\ System Information

~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel

~ Operating System: 32 Bits

Boot mode: Normal (Normal boot)

Total RAM: 2814 MB (53% free)

System Restore: Activé (Enable)

System drive C: has 184 GB (64%) free of 284 GB

 

---\\ Logged in mode

~ Computer Name: PC-DE-BONJOUR

~ User Name: bonjour

~ All Users Names: UpdatusUser, bonjour, Administrateur,

~ Unselected Option: None

Logged in as Administrator

 

---\\ Environnement Variables

~ System Unit : C:\

~ %AppData% : C:\Users\bonjour\AppData\Roaming\

~ %Desktop% : C:\Users\bonjour\Desktop\

~ %Favorites% : C:\Users\bonjour\Favorites\

~ %LocalAppData% : C:\Users\bonjour\AppData\Local\

~ %StartMenu% : C:\Users\bonjour\AppData\Roaming\Microsoft\Windows\Start Menu\

~ %Windir% : C:\Windows\

~ %System% : C:\Windows\system32\

 

---\\ DOS/Devices

C:\ Hard drive, Flash drive, Thumb drive (Free 184 Go of 284 Go)

D:\ CD-ROM drive (Not Inserted)

 

 

 

---\\ Security Center & Tools Informations

[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoDispScrSavPage: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK

~ Scan Security Center in 00mn 00s

 

 

 

---\\ Recherche particulière de fichiers génériques

[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.31/07/2010 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]

[MD5.4B555106290BD117334E9A08761C035A] - (....) (.02/11/2006 - 10:45:37.) -- C:\Windows\system32\rundll32.exe [44544]

[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:33:13.) -- C:\Windows\system32\Wininit.exe [96768]

[MD5.D3788D91530CFA005BD516189A4C676E] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/10/2011 - 03:28:15.) -- C:\Windows\system32\wininet.dll [1126912]

[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.31/07/2010 - 07:28:13.) -- C:\Windows\system32\Winlogon.exe [314368]

[MD5.95F5FF73B076576C41740F1A842B9B57] - (....) (.15/11/2008 - 11:49:18.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]

[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.23/06/2011 - 14:58:27.) -- C:\Windows\system32\drivers\AFD.sys [273408] 1916

[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.31/07/2010 - 07:32:26.) -- C:\Windows\system32\drivers\atapi.sys [19944] 1836

[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:33:23.) -- C:\Windows\system32\drivers\Cdfs.sys [70144] 1844

[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.31/07/2010 - 05:39:17.) -- C:\Windows\system32\drivers\Cdrom.sys [67072] 1812

[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.23/06/2011 - 15:59:03.) -- C:\Windows\system32\drivers\DfsC.sys [75264] 1884

[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.31/07/2010 - 05:42:42.) -- C:\Windows\system32\drivers\HDAudBus.sys [561152] 1916

[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:32:45.) -- C:\Windows\system32\drivers\i8042prt.sys [54784] 1900

[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:34:06.) -- C:\Windows\system32\drivers\IpNat.sys [100864] 1868

[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.23/06/2011 - 14:24:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [106496] 1852

[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.31/07/2010 - 05:45:37.) -- C:\Windows\system32\drivers\netBT.sys [185856] 1820

[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/07/2010 - 07:32:49.) -- C:\Windows\system32\drivers\ntfs.sys [1083880] 1916

[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\drivers\Parport.sys [79360] 1900

[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:34:44.) -- C:\Windows\system32\drivers\Rasl2tp.sys [76288] 1916

[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:32:22.) -- C:\Windows\system32\drivers\rdpdr.sys [248832] 1868

[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.31/07/2010 - 05:45:56.) -- C:\Windows\system32\drivers\tdx.sys [72192] 1812

~ Scan Generic Processes in 00mn 00s

 

 

 

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes images (My Pictures) : 1/414

~ Mes musiques (My Musics) : 1/2

~ Mes Videos (My Videos) : 1/2

~ Mes Favoris (My Favorites) : 2/22

~ Mes Documents (My Documents) : 2/303

~ Mon Bureau (My Desktop) : 2/3073

~ Menu demarrer (Programs) : 7/34

~ Scan Hidden Files in 00mn 03s

 

 

 

---\\ Processus lancés

[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.1660]

[MD5.E6CB83FF2C098C6FFCF2D43A4AAC9B54] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [6139904] [PID.1752]

[MD5.87EFAF863E584CF0878AEA9E37AA5DF3] - (.Pas de propriétaire - LOLRecord.) -- C:\Program Files\LOLReplay\LOLRecorder.exe [405504] [PID.2196]

[MD5.4E5585800B561FBEF64B27425365A36F] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [924632] [PID.3540]

[MD5.83F4BA8B8CDA4F063AA2002955A508A9] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16856] [PID.2476]

[MD5.B0FD3872F6958AA93D6A7103AC01852C] - (...) -- C:\Program Files\VideoLAN\VLC\vlc.exe [108032] [PID.3680]

[MD5.6D0505BBBDB3F13E0FF30F0F0307E2FB] - (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) -- C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe [8284928] [PID.3152]

[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.3248]

[MD5.7B2E3899314974CC40D93A6CD7C855C8] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2134016] [PID.4500]

[MD5.26DB28B32E8D2F57CB5065A4A053801A] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 280.2.) -- C:\Windows\system32\nvvsvc.exe [599144] [PID.]

[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.]

[MD5.1D70198EB53348374F211BEB62F4F8DC] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [812648] [PID.]

[MD5.875E4E0661F3A5994DF9E5E3A0A4F96B] - (.Prolific Technology Inc. - PLFlash DeviceIoControl Service.) -- C:\Windows\system32\IoctlSvc.exe [81920] [PID.]

[MD5.E5C796B621F6FBA8616511063D7F0FFE] - (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688] [PID.]

[MD5.A19BBE1E3E3FEF50B94CA07DCC0FB776] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2255464] [PID.]

~ Scan Processes Running in 00mn 00s

 

 

 

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

C:\Users\bonjour\AppData\Local\Google\Chrome\User Data\Default\Preferences

G1 - GCS: Preference [user Data\Default] None

G0 - GCSP: Preference [user Data\Default][HomePage] Google

~ Scan Google Browser in 00mn 00s

 

 

 

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

C:\Users\bonjour\AppData\Roaming\Mozilla\Firefox\Profiles\zshsy02p.default\prefs.js

C:\Users\bonjour\AppData\Roaming\Mozilla\Firefox\Profiles\zshsy02p.default\user.js

M3 - MFPP: Plugins - [bonjour] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml

M3 - MFPP: Plugins - [bonjour] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml

M3 - MFPP: Plugins - [bonjour] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml

M3 - MFPP: Plugins - [bonjour] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml

M3 - MFPP: Plugins - [bonjour] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml

M3 - MFPP: Plugins - [bonjour] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml

M3 - MFPP: Plugins - [bonjour] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml

M0 - MFSP: prefs.js [bonjour - zshsy02p.default] Abonnement Adsl Haut débit avec Alice France. Page d'accueil du portail.

M2 - MFEP: prefs.js [bonjour - zshsy02p.default\[email protected]] [] Form History Control v1.2.9.3 (.Stephan Mahieu.)

M2 - MFEP: prefs.js [bonjour - zshsy02p.default\{20a82645-c095-46ed-80e3-08825760534b}(18)] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)

M2 - MFEP: prefs.js [bonjour - zshsy02p.default\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(19)] [yahoo.ytff] Yahoo! Toolbar v2.1.3.20100310105313 (.Yahoo!.)

P2 - FPN:Firefox Plugin Navigator . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll

P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll

P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.6.1.629.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll

P2 - FPN: [HKLM] [@esn.me/esnsonar,version=0.70.0] - (...) -- C:\Program Files\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll (.not file.)

P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Oracle Corporation - Next Generation Java Plug-in 10.0.0 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll

P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll

P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll

P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll

P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\bonjour\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll

P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\bonjour\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll

P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

~ Scan Firefox Browser in 00mn 00s

 

 

 

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Abonnement Adsl Haut débit avec Alice France. Page d'accueil du portail.

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com

R0 - HKUS\S-1-5-21-3320974865-676787251-981333123-1001-3320974865-676787251-981333123-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Abonnement Adsl Haut débit avec Alice France. Page d'accueil du portail.

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKUS\S-1-5-21-3320974865-676787251-981333123-1001-3320974865-676787251-981333123-1000\Software\Microsoft\Internet Explorer\Main,Search Page = Google

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\system32\ieframe.dll

~ Scan IE Browser in 00mn 00s

 

 

 

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

~ Scan Proxy management in 00mn 00s

 

 

 

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe

F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

~ Scan Keys in 00mn 00s

 

 

 

---\\ Redirection du fichier Hosts (O1)

~ Le fichier hosts est sain (The hosts file is clean).

~ Scan Hosts File in 00mn 00s

 

 

 

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

~ Scan BHO in 00mn 00s

 

 

 

---\\ Applications démarrées par registre & par dossier (O4)

O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe

O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKCU\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) -- C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe

O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll

O4 - HKUS\S-1-5-21-3320974865-676787251-981333123-1001-3320974865-676787251-981333123-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-21-3320974865-676787251-981333123-1001-3320974865-676787251-981333123-1000\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) -- C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv

~ Scan Application in 00mn 00s

 

 

 

---\\ Autres liens utilisateurs (O4)

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update Checker.lnk . (.FileHippo.com.) -- C:\Program Files\FileHippo.com\UpdateChecker.exe

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

O4 - Global Startup: C:\Users\bonjour\Desktop\HiJackThis.lnk . (.Trend Micro Inc..) -- C:\Users\bonjour\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

O4 - Global Startup: C:\Users\bonjour\Desktop\Zeb-Utility 2.1.lnk . (.Zebulon.fr.) -- C:\Program Files\Zeb-Utility\Zeb-Utility.exe

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\eBay.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Users\bonjour\AppData\Local\Google\Chrome\Application\chrome.exe

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O4 - Global Startup: C:\Users\bonjour\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe

~ Scan Global Startup in 00mn 00s

 

 

 

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)

O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe

O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll

~ Scan IE Menu Contextuel in 00mn 00s

 

 

 

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: &Envoyer à OneNote - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO

O9 - Extra button: &Envoyer à OneNote - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

~ Scan IE Extra Buttons in 00mn 00s

 

 

 

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

~ Scan Winsock in 00mn 00s

 

 

 

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{09610DE5-E31D-446E-9A99-946C3543BB58}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CCS\Services\Tcpip\..\{C49E98CB-9CA3-41EE-8B17-0F7D04FFB483}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{E525DF59-CF71-4502-A83D-88DD1721401D}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CS1\Services\Tcpip\..\{09610DE5-E31D-446E-9A99-946C3543BB58}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CS1\Services\Tcpip\..\{C49E98CB-9CA3-41EE-8B17-0F7D04FFB483}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{E525DF59-CF71-4502-A83D-88DD1721401D}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CS2\Services\Tcpip\..\{09610DE5-E31D-446E-9A99-946C3543BB58}: DhcpNameServer = 192.168.1.254

O17 - HKLM\System\CS2\Services\Tcpip\..\{C49E98CB-9CA3-41EE-8B17-0F7D04FFB483}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{E525DF59-CF71-4502-A83D-88DD1721401D}: DhcpNameServer = 192.168.1.254

~ Scan Domain in 00mn 00s

 

 

 

---\\ Protocole additionnel (O18)

O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll

O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll

O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll

O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll

O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (...) --

O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll

O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll

O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll

O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll

O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll

O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll

O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (...) --

O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll

O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll

O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\system32\mshtml.dll

O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll

O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll

O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll

O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL

~ Scan Protocole Additionnel in 00mn 00s

 

 

 

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll

~ Scan SSODL in 00mn 00s

 

 

 

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)

O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll

~ Scan STS/SSO in 00mn 00s

 

 

 

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 280.2.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: PLFlash DeviceIoControl Service (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc. - PLFlash DeviceIoControl Service.) - C:\Windows\system32\IoctlSvc.exe

O23 - Service: StarWind AE Service (StarWindServiceAE) . (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

~ Scan Services in 00mn 00s

 

 

 

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe

~ Scan Desktop Component in 00mn 00s

 

 

 

---\\ Tâches planifiées en automatique (O39)

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Extension de garantie-bonjour.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3320974865-676787251-981333123-1000Core.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3320974865-676787251-981333123-1000UA.job

O39 - APT:Automatic Planified Task - C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job

[MD5.00000000000000000000000000000000] [APT] [Extension de garantie-bonjour] (...) -- C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe (.not file.)

[MD5.969E43EA0B85819365A60C1F8DBEA8ED] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities\initialize.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskUserS-1-5-21-3320974865-676787251-981333123-1000Core] (.Google Inc..) -- C:\Users\bonjour\AppData\Local\Google\Update\GoogleUpdate.exe

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskUserS-1-5-21-3320974865-676787251-981333123-1000UA] (.Google Inc..) -- C:\Users\bonjour\AppData\Local\Google\Update\GoogleUpdate.exe

[MD5.5D539617604E953FD2DF852F4B51A383] [APT] [{7E425606-111C-4759-AB8E-8A113A8831D5}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe

~ Scan Scheduled Task in 00mn 04s

 

 

 

---\\ Pilotes lancés au démarrage (O41)

O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys

O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys

O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\system32\DRIVERS\i8042prt.sys

O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\system32\DRIVERS\kbdclass.sys

O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\system32\DRIVERS\kbdhid.sys

O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\system32\DRIVERS\mouclass.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys

O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys

O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys

O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\system32\DRIVERS\rasacd.sys

O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\system32\DRIVERS\rdbss.sys

O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys

O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\system32\DRIVERS\smb.sys

O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys

~ Scan Drivers in 00mn 00s

 

 

 

---\\ Logiciels installés (O42)

O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}

O42 - Logiciel: AIDA64 Extreme Edition v1.80 - (.FinalWire Ltd..) [HKLM] -- AIDA64 Extreme Edition_is1

O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {ACEB2BAF-96DF-48FD-ADD5-43842D4C443D}

O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin

O42 - Logiciel: Adobe Reader 8 - (.Pas de propriétaire.) [HKLM] -- AdobeReader

O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner

O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}

O42 - Logiciel: Dragon Nest SEA - (.Shanda Games International.) [HKLM] -- {3566D7DB-EA10-49DE-A95B-F4AB41FC0A93}

O42 - Logiciel: Elsword_FR - (.Pas de propriétaire.) [HKLM] -- Elsword_FR_is1

O42 - Logiciel: FileHippo.com Update Checker - (.Pas de propriétaire.) [HKLM] -- FileHippo.com

O42 - Logiciel: Game Booster 3 - (.IObit.) [HKLM] -- Game Booster 3_is1

O42 - Logiciel: Glary Utilities 2.38.0.1288 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {B3FED300-806C-11E0-A0D0-B8AC6F97B88E}

O42 - Logiciel: HP Customer Participation Program 10.0 - (.HP.) [HKLM] -- HPExtendedCapabilities

O42 - Logiciel: HP Deskjet F4200 All-In-One Driver Software 10.0 Rel .3 - (.HP.) [HKLM] -- {AE9A67F9-ADF1-4a44-BAB5-C1DB302B37A2}

O42 - Logiciel: HP Imaging Device Functions 10.0 - (.HP.) [HKLM] -- HP Imaging Device Functions

O42 - Logiciel: HP Photosmart Essential 2.5 - (.HP.) [HKLM] -- HP Photosmart Essential

O42 - Logiciel: HP Smart Web Printing - (.HP.) [HKLM] -- HP Smart Web Printing

O42 - Logiciel: HP Solution Center 10.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}

O42 - Logiciel: Hercules Classic Webcam Drivers - (.Hercules.) [HKLM] -- {5F0EE12C-44B1-4FCB-87E3-4686C888774A}

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595

O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484

O42 - Logiciel: Java 6 Update 26 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216020FF}

O42 - Logiciel: Java 7 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217000FF}

O42 - Logiciel: LOLReplay - (.www.leaguereplays.com.) [HKLM] -- LOLReplay

O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM] -- {918A9082-6287-4D25-9002-5E5D5E4971CB}

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {A4EF9D8B-E19B-45ED-BFAF-CB4364574FFF}

O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1

O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile

O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}

O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {F2508213-9989-4E85-A078-72BE483917EF}

O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}

O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}

O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office File Validation Add-In - (.Microsoft Corporation.) [HKLM] -- {90140000-2005-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- HOMESTUDENTR

O42 - Logiciel: Microsoft Office Home and Student 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French) - (.Microsoft Corporation.) [HKLM] -- {95120000-00AF-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}

O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}

O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Office Suite Activation Assistant - (.Microsoft Corporation.) [HKLM] -- {E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}

O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}

O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}

O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}

O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - (.Microsoft Corporation.) [HKLM] -- {9BE518E6-ECC6-35A9-88E4-87755C07200F}

O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}

O42 - Logiciel: Microsoft Works 9 SE - (.Pas de propriétaire.) [HKLM] -- works9se

O42 - Logiciel: Microsoft® Office Trial 2007 - (.Pas de propriétaire.) [HKLM] -- OFF2k7_FR

O42 - Logiciel: Mises à jour NVIDIA 1.4.28 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update

O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}

O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra

O42 - Logiciel: Mozilla Firefox 7.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 7.0.1 (x86 fr)

O42 - Logiciel: NVIDIA 3D Vision Controller Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIA StereoUSB Driver

O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers

O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 280.19 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB

O42 - Logiciel: NVIDIA Pilote graphique 280.26 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver

O42 - Logiciel: Packard Bell ImageWriter - (.Pas de propriétaire.) [HKLM] -- ImageWriter

O42 - Logiciel: Packard Bell LCD Test - (.Pas de propriétaire.) [HKLM] -- LCDTest

O42 - Logiciel: Packard Bell Updator - (.Pas de propriétaire.) [HKLM] -- Updator

O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}

O42 - Logiciel: Power Cinema 6 - (.Pas de propriétaire.) [HKLM] -- PowerCinema6

O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {EB900AF8-CC61-4E15-871B-98D1EA3E8025}

O42 - Logiciel: RIFT - (.Trion Worlds, Inc..) [HKLM] -- InstallShield_{D7A0A22A-C132-4B6F-8D68-67B95117DE93}

O42 - Logiciel: RIFT - (.Trion Worlds, Inc..) [HKLM] -- {D7A0A22A-C132-4B6F-8D68-67B95117DE93}

O42 - Logiciel: Ralink Wireless LAN Card - (.RALINK.) [HKLM] -- {E91E8912-769D-42F0-8408-0E329443BABC}

O42 - Logiciel: Ralink Wireless LAN Card - (.RALINK.) [HKLM] -- {FAB1F336-1B7C-4057-A7BC-2922CD82A781}

O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}

O42 - Logiciel: Realtek HD Audio V6.0.1.5618 - (.Pas de propriétaire.) [HKLM] -- AUDIO_REALTEK

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Revo Uninstaller 1.93 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller

O42 - Logiciel: SeaTools for Windows - (.Seagate Technology.) [HKLM] -- {98613C99-1399-416C-A07C-1EE1C585D872}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5C497F0B-2061-4CC9-A61C-6B45B867354D}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CD769337-C8AC-46DB-A7DC-643E50089263}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{536FB502-775F-4494-BACE-C02CC90B7A5B}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2553074) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{5729F1AE-5895-468F-9165-BAD161C9E982}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2553089) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{01D4CA59-7070-4420-9BCC-0EFA7C5D76BE}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2553090) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{643C12A2-AF9A-4712-B8BE-3B7650AFE00A}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2584063) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BF3F1CBD-B05C-4644-AE43-6EE0FCC227A4}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}

O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7F207DCA-3399-40CB-A968-6E5991B1421A}

O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636

O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2572078

O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2553073) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{65EA4836-B5A3-4C1D-8883-0C35E471003A}

O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1}

O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062}

O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}

O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}

O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}

O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}

O42 - Logiciel: Skype 5.3 - (.Skype Technologies S.A..) [HKLM] -- {D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}

O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}

O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM] -- TeamSpeak 3 Client

O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}

O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871

O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523

O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}

O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}

O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{329050A9-EF80-40F9-B633-74508F54C1FF}

O42 - Logiciel: VCRedistSetup - (.Nero AG.) [HKLM] -- {3921A67A-5AB1-4E48-9444-C71814CF3027}

O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM] -- VLC media player

O42 - Logiciel: Video NVIDIA V163.96 - (.Pas de propriétaire.) [HKLM] -- VIDEO_NVIDIA_GOB

O42 - Logiciel: WinRAR 4.01 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver

O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}

O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {D45240D3-B6B3-4FF9-B243-54ECE3E10066}

O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {61AD15B2-50DB-4686-A739-14FE180D4429}

O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {0B0F231F-CE6A-483D-AA23-77B364F75917}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {6057E21C-ABE9-4059-AE3E-3BEB9925E660}

O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {EB4DF488-AAEF-406F-A341-CB2AAA315B90}

O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {83C292B7-38A5-440B-A731-07070E81A64F}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {A9BDCA6B-3653-467B-AC83-94367DA3BFE3}

O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {C893D8C0-1BA0-4517-B11C-E89B65E72F70}

O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {682B3E4F-696A-42DE-A41C-4C07EA1678B4}

O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {200FEC62-3C34-4D60-9CE8-EC372E01C08F}

O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}

O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {05E379CC-F626-4E7D-8354-463865B303BF}

O42 - Logiciel: Zeb-Utility 1.2 - (.Pas de propriétaire.) [HKLM] -- Zeb-Utility 1.2

O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}

O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}

 

---\\ HKCU & HKLM Software Keys

[HKCU\Software\89DGCM7LPJ]

[HKCU\Software\8DDYX0ZBPZ]

[HKCU\Software\Adobe]

[HKCU\Software\AhnLab]

[HKCU\Software\Alcohol Soft]

[HKCU\Software\AppDataLow\Software\Google]

[HKCU\Software\AppDataLow\Software\Macromedia]

[HKCU\Software\AppDataLow\Software\Microsoft]

[HKCU\Software\AppDataLow\Software]

[HKCU\Software\AppDataLow]

[HKCU\Software\Apple Computer, Inc.]

[HKCU\Software\Avast Software]

[HKCU\Software\Bugsplat]

[HKCU\Software\ClassesB]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\Cryptic]

[HKCU\Software\CyberLink]

[HKCU\Software\DSS]

[HKCU\Software\EasyBits]

[HKCU\Software\FileHippo.com]

[HKCU\Software\GlarySoft]

[HKCU\Software\Google]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\HookNetwork]

[HKCU\Software\IM Providers]

[HKCU\Software\JEDI-VCL]

[HKCU\Software\JavaSoft]

[HKCU\Software\LOLReplay]

[HKCU\Software\Lavalys]

[HKCU\Software\Macromedia]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Netscape]

[HKCU\Software\NtWqIVLZEWZU]

[HKCU\Software\ODBC]

[HKCU\Software\OTGV1DNWQQ]

[HKCU\Software\Overwolf]

[HKCU\Software\Packard Bell]

[HKCU\Software\Pando Networks]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Realtek]

[HKCU\Software\Skype]

[HKCU\Software\Symantec]

[HKCU\Software\Sysinternals]

[HKCU\Software\TeamSpeak 3 Client]

[HKCU\Software\TomTom]

[HKCU\Software\Trend Micro]

[HKCU\Software\Trolltech]

[HKCU\Software\VSRevoGroup]

[HKCU\Software\Valve]

[HKCU\Software\WinRAR SFX]

[HKCU\Software\WinRAR]

[HKCU\Software\XBV6RD5SZF]

[HKCU\Software\YahooPartnerToolbar]

[HKCU\Software\ZU6RKI1ONY]

[HKCU\Software\Zylom]

[HKCU\Software\cybelsoft]

[HKCU\Software\yahooinstall]

[HKLM\Software\Adobe]

[HKLM\Software\Alcohol Soft]

[HKLM\Software\AppDataLow]

[HKLM\Software\Apple Computer, Inc.]

[HKLM\Software\BrowserChoice]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\CyberLink]

[HKLM\Software\Digital River]

[HKLM\Software\ESN Sonar-0.70.0]

[HKLM\Software\EasyBits]

[HKLM\Software\GlarySoft]

[HKLM\Software\Google]

[HKLM\Software\HP]

[HKLM\Software\Hewlett-Packard]

[HKLM\Software\ICE]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\JreMetrics]

[HKLM\Software\Khronos]

[HKLM\Software\MDC]

[HKLM\Software\Macromedia]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NEC Computers International]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\NeroDigital]

[HKLM\Software\Nero]

[HKLM\Software\ODBC]

[HKLM\Software\OemSetup]

[HKLM\Software\PB_EBAY]

[HKLM\Software\PBreg]

[HKLM\Software\Packard Bell]

[HKLM\Software\Pando Networks]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\RALINK]

[HKLM\Software\RTLSetup]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\Riot Games]

[HKLM\Software\Skype]

[HKLM\Software\SymDebug]

[HKLM\Software\Symantec]

[HKLM\Software\TrendMicro]

[HKLM\Software\Trion]

[HKLM\Software\Valve]

[HKLM\Software\VideoLAN]

[HKLM\Software\WOW6432Node]

[HKLM\Software\WholeSecurity]

[HKLM\Software\WinRAR]

[HKLM\Software\Zeb-Utility]

[HKLM\Software\cybelsoft]

[HKLM\Software\mozilla.org]

~ Scan Softwares in 00mn 01s

 

 

 

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 13/10/2011 - 02:36:20 - [39081627] ----D- C:\Program Files\Adobe

O43 - CFD: 24/06/2011 - 09:40:42 - [51751989] ----D- C:\Program Files\Adobe(0)

O43 - CFD: 13/10/2011 - 15:52:46 - [9767138] ----D- C:\Program Files\Alcohol Soft

O43 - CFD: 29/07/2011 - 20:06:12 - [0] ----D- C:\Program Files\Alwil Software

O43 - CFD: 13/10/2011 - 02:48:52 - [0] ----D- C:\Program Files\Apple Software Update

O43 - CFD: 29/07/2011 - 19:59:04 - [0] ----D- C:\Program Files\AVAST Software

O43 - CFD: 13/10/2011 - 02:33:40 - [4174784] ----D- C:\Program Files\CCleaner

O43 - CFD: 06/10/2011 - 20:09:32 - [1326474] ----D- C:\Program Files\Cheat Engine 6.1

O43 - CFD: 13/10/2011 - 03:20:42 - [576799257] ----D- C:\Program Files\Common Files

O43 - CFD: 15/01/2010 - 15:25:32 - [0] -SH-D- C:\Program Files\Fichiers communs

O43 - CFD: 09/10/2011 - 13:07:56 - [381086] ----D- C:\Program Files\FileHippo.com

O43 - CFD: 11/08/2011 - 14:30:50 - [23278650] ----D- C:\Program Files\FinalWire

O43 - CFD: 13/10/2011 - 03:06:12 - [2067] ----D- C:\Program Files\Frets on Fire

O43 - CFD: 09/10/2011 - 18:53:36 - [1371527683] ----D- C:\Program Files\Gameforge4D

O43 - CFD: 15/10/2011 - 14:23:02 - [19527151] ----D- C:\Program Files\Glary Utilities

O43 - CFD: 28/06/2011 - 11:49:52 - [95903195] ----D- C:\Program Files\Google

O43 - CFD: 06/10/2011 - 22:07:38 - [3932252] ----D- C:\Program Files\gtk2

O43 - CFD: 13/10/2011 - 03:09:48 - [8834] ----D- C:\Program Files\HDReg

O43 - CFD: 22/09/2011 - 18:28:28 - [0] ----D- C:\Program Files\Hercules

O43 - CFD: 31/07/2010 - 15:03:22 - [0] ----D- C:\Program Files\Hewlett-Packard

O43 - CFD: 31/07/2010 - 15:04:00 - [132435092] ----D- C:\Program Files\HP

O43 - CFD: 13/10/2011 - 02:57:52 - [45476907] --H-D- C:\Program Files\InstallShield Installation Information

O43 - CFD: 13/10/2011 - 04:47:10 - [5268449] ----D- C:\Program Files\Internet Explorer

O43 - CFD: 13/10/2011 - 01:47:22 - [11646017] ----D- C:\Program Files\IObit

O43 - CFD: 11/08/2011 - 14:04:34 - [187127978] ----D- C:\Program Files\Java

O43 - CFD: 22/09/2011 - 16:18:22 - [1273108] ----D- C:\Program Files\LOLReplay

O43 - CFD: 10/10/2011 - 21:26:16 - [6511189] ----D- C:\Program Files\ma-config.com

O43 - CFD: 31/07/2011 - 10:23:56 - [0] ----D- C:\Program Files\Microsoft

O43 - CFD: 11/10/2011 - 19:27:38 - [1116889678] ----D- C:\Program Files\Microsoft DirectX SDK (June 2010)

O43 - CFD: 02/11/2006 - 14:35:52 - [46946424] ----D- C:\Program Files\Microsoft Games

O43 - CFD: 22/09/2011 - 14:49:52 - [9362570] ----D- C:\Program Files\Microsoft Games for Windows - LIVE

O43 - CFD: 01/07/2011 - 07:54:32 - [382160841] ----D- C:\Program Files\Microsoft Office

O43 - CFD: 15/11/2008 - 04:44:46 - [7791803] ----D- C:\Program Files\Microsoft Office Suite Activation Assistant

O43 - CFD: 23/06/2011 - 18:46:46 - [146410748] ----D- C:\Program Files\Microsoft Works

O43 - CFD: 23/06/2011 - 21:10:18 - [8167779] ----D- C:\Program Files\Microsoft.NET

O43 - CFD: 06/10/2011 - 22:07:38 - [17547560] ----D- C:\Program Files\mlt

O43 - CFD: 24/06/2011 - 18:38:06 - [20470054] ----D- C:\Program Files\Movie Maker

O43 - CFD: 05/10/2011 - 10:25:36 - [36603827] ----D- C:\Program Files\Mozilla Firefox

O43 - CFD: 02/11/2006 - 14:35:52 - [25757] ----D- C:\Program Files\MSBuild

O43 - CFD: 17/01/2010 - 19:25:02 - [0] ----D- C:\Program Files\MSXML 4.0

O43 - CFD: 13/10/2011 - 04:48:32 - [0] ----D- C:\Program Files\Nero

O43 - CFD: 10/10/2011 - 21:54:44 - [606298867] ----D- C:\Program Files\NVIDIA Corporation

O43 - CFD: 13/10/2011 - 03:20:44 - [2012] ----D- C:\Program Files\Overwolf

O43 - CFD: 13/10/2011 - 03:21:38 - [499765033] ----D- C:\Program Files\Packard Bell

O43 - CFD: 12/08/2011 - 10:03:56 - [7466286] ----D- C:\Program Files\Pando Networks

O43 - CFD: 29/06/2011 - 09:17:06 - [75221834] ----D- C:\Program Files\QuickTime

O43 - CFD: 10/09/2008 - 01:32:24 - [147833238] ----D- C:\Program Files\RALINK

O43 - CFD: 12/08/2011 - 10:09:42 - [25057869] ----D- C:\Program Files\Realtek

O43 - CFD: 02/11/2006 - 14:35:52 - [38694657] ----D- C:\Program Files\Reference Assemblies

O43 - CFD: 15/10/2011 - 21:09:14 - [10233012035] ----D- C:\Program Files\RIFT Game

O43 - CFD: 15/11/2008 - 04:27:28 - [10614072] ----D- C:\Program Files\Seagate

O43 - CFD: 13/10/2011 - 02:50:44 - [15141852] R---D- C:\Program Files\Skype

O43 - CFD: 13/10/2011 - 03:05:08 - [206355798] ----D- C:\Program Files\Steam

O43 - CFD: 12/08/2011 - 09:58:40 - [51482184] ----D- C:\Program Files\TeamSpeak 3 Client

O43 - CFD: 09/10/2011 - 02:22:20 - [55815] ----D- C:\Program Files\TeamViewer

O43 - CFD: 15/10/2011 - 16:07:02 - [407177] ----D- C:\Program Files\Trend Micro

O43 - CFD: 02/11/2006 - 14:58:20 - [0] --H-D- C:\Program Files\Uninstall Information

O43 - CFD: 09/10/2011 - 03:47:26 - [425145721] ----D- C:\Program Files\Unity

O43 - CFD: 30/08/2010 - 10:41:58 - [84714811] ----D- C:\Program Files\VideoLAN

O43 - CFD: 12/08/2011 - 10:33:22 - [6817825] ----D- C:\Program Files\VS Revo Group

O43 - CFD: 24/06/2011 - 18:38:06 - [1016832] ----D- C:\Program Files\Windows Calendar

O43 - CFD: 24/06/2011 - 18:38:06 - [2737152] ----D- C:\Program Files\Windows Collaboration

O43 - CFD: 24/06/2011 - 18:38:04 - [4490624] ----D- C:\Program Files\Windows Defender

O43 - CFD: 09/10/2011 - 01:58:00 - [9196554] ----D- C:\Program Files\Windows Live

O43 - CFD: 13/10/2011 - 04:47:08 - [8935608] ----D- C:\Program Files\Windows Mail

O43 - CFD: 24/06/2011 - 18:38:06 - [4498121] ----D- C:\Program Files\Windows Media Player

O43 - CFD: 15/01/2010 - 15:25:32 - [7957544] ----D- C:\Program Files\Windows NT

O43 - CFD: 24/06/2011 - 18:38:06 - [8228002] ----D- C:\Program Files\Windows Photo Gallery

O43 - CFD: 25/06/2011 - 07:25:12 - [134144] ----D- C:\Program Files\Windows Portable Devices

O43 - CFD: 24/06/2011 - 18:38:06 - [7611608] ----D- C:\Program Files\Windows Sidebar

O43 - CFD: 24/09/2011 - 14:35:22 - [4142972] ----D- C:\Program Files\WinRAR

O43 - CFD: 15/10/2011 - 16:22:08 - [308148782] ----D- C:\Program Files\Zeb-Utility

O43 - CFD: 15/10/2011 - 21:14:36 - [5451006] ----D- C:\Program Files\ZHPDiag

O43 - CFD: 13/10/2011 - 02:36:12 - [39363570] ----D- C:\Program Files\Common Files\Adobe AIR

O43 - CFD: 24/06/2011 - 09:40:50 - [7151143] ----D- C:\Program Files\Common Files\Adobe(1)

O43 - CFD: 24/06/2011 - 09:44:02 - [193675] ----D- C:\Program Files\Common Files\Apple

O43 - CFD: 15/11/2008 - 04:40:06 - [92976] ----D- C:\Program Files\Common Files\DESIGNER

O43 - CFD: 09/10/2011 - 00:54:16 - [0] --H-D- C:\Program Files\Common Files\EAInstaller

O43 - CFD: 31/07/2010 - 15:03:12 - [469525] ----D- C:\Program Files\Common Files\Hewlett-Packard

O43 - CFD: 31/07/2010 - 15:02:40 - [5280332] ----D- C:\Program Files\Common Files\HP

O43 - CFD: 06/10/2011 - 21:53:30 - [6676882] ----D- C:\Program Files\Common Files\InstallShield

O43 - CFD: 28/05/2011 - 05:22:02 - [1258951] ----D- C:\Program Files\Common Files\Java

O43 - CFD: 09/10/2011 - 13:09:54 - [249031605] ----D- C:\Program Files\Common Files\microsoft shared

O43 - CFD: 09/10/2011 - 04:16:22 - [18480] ----D- C:\Program Files\Common Files\PACE Anti-Piracy

O43 - CFD: 02/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services

O43 - CFD: 02/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines

O43 - CFD: 12/08/2011 - 21:26:10 - [407336] ----D- C:\Program Files\Common Files\Steam

O43 - CFD: 23/06/2011 - 20:39:12 - [520120] ----D- C:\Program Files\Common Files\Symantec Shared

O43 - CFD: 09/10/2011 - 04:18:58 - [42751098] ----D- C:\Program Files\Common Files\System

O43 - CFD: 24/06/2011 - 18:05:08 - [182479127] ----D- C:\Program Files\Common Files\Windows Live

O43 - CFD: 15/11/2008 - 04:26:38 - [972] ----D- C:\ProgramData\Acer

O43 - CFD: 13/10/2011 - 02:36:28 - [49847041] ----D- C:\ProgramData\Adobe

O43 - CFD: 29/06/2011 - 09:17:00 - [26927616] ----D- C:\ProgramData\Apple Computer

O43 - CFD: 02/11/2006 - 14:59:46 - [0] -SH-D- C:\ProgramData\Application Data

O43 - CFD: 12/08/2011 - 10:21:30 - [0] ----D- C:\ProgramData\AVAST Software

O43 - CFD: 15/01/2010 - 15:25:32 - [0] -SH-D- C:\ProgramData\Bureau

O43 - CFD: 02/11/2006 - 14:59:46 - [0] -SH-D- C:\ProgramData\Desktop

O43 - CFD: 02/11/2006 - 14:59:46 - [0] -SH-D- C:\ProgramData\Documents

O43 - CFD: 22/09/2011 - 14:53:02 - [4357] -SH-D- C:\ProgramData\DSS

O43 - CFD: 07/10/2011 - 01:24:48 - [0] ----D- C:\ProgramData\EA Core

O43 - CFD: 13/10/2011 - 03:13:44 - [577] ----D- C:\ProgramData\Electronic Arts

O43 - CFD: 15/01/2010 - 15:25:32 - [0] -SH-D- C:\ProgramData\Favoris

O43 - CFD: 02/11/2006 - 14:59:46 - [0] -SH-D- C:\ProgramData\Favorites

O43 - CFD: 23/06/2011 - 20:59:44 - [526512] ----D- C:\ProgramData\Google

O43 - CFD: 31/07/2010 - 15:15:22 - [147291] ----D- C:\ProgramData\Hewlett-Packard

O43 - CFD: 31/07/2010 - 15:16:46 - [7016570] ----D- C:\ProgramData\HP

O43 - CFD: 09/10/2011 - 13:08:00 - [8959] ----D- C:\ProgramData\HP Product Assistant

O43 - CFD: 28/06/2011 - 08:02:30 - [264] ----D- C:\ProgramData\HPSSUPPLY

O43 - CFD: 13/10/2011 - 01:47:22 - [2787183] ----D- C:\ProgramData\IObit

O43 - CFD: 10/10/2011 - 21:26:12 - [1254657] ----D- C:\ProgramData\ma-config.com

O43 - CFD: 15/01/2010 - 15:25:32 - [0] -SH-D- C:\ProgramData\Menu Démarrer

O43 - CFD: 22/09/2011 - 14:49:32 - [206800837] -S--D- C:\ProgramData\Microsoft

O43 - CFD: 11/10/2011 - 19:31:32 - [57072] ----D- C:\ProgramData\Microsoft Help

O43 - CFD: 15/01/2010 - 15:25:32 - [0] -SH-D- C:\ProgramData\Modèles

O43 - CFD: 10/10/2011 - 21:53:58 - [3133256] ----D- C:\ProgramData\NVIDIA

O43 - CFD: 07/10/2011 - 01:46:56 - [982805] ----D- C:\ProgramData\NVIDIA Corporation

O43 - CFD: 09/10/2011 - 04:18:58 - [2166] ----D- C:\ProgramData\PACE Anti-Piracy

O43 - CFD: 14/10/2011 - 20:45:28 - [738] ----D- C:\ProgramData\PMB Files

O43 - CFD: 23/09/2011 - 02:14:00 - [25139060] ----D- C:\ProgramData\Skype

O43 - CFD: 02/11/2006 - 14:59:46 - [0] -SH-D- C:\ProgramData\Start Menu

O43 - CFD: 04/09/2010 - 02:03:08 - [189] ----D- C:\ProgramData\Sun

O43 - CFD: 23/06/2011 - 20:19:14 - [51534] ----D- C:\ProgramData\Symantec

O43 - CFD: 02/11/2006 - 14:59:46 - [0] -SH-D- C:\ProgramData\Templates

O43 - CFD: 25/07/2011 - 08:52:34 - [35869] ----D- C:\ProgramData\TomTom

O43 - CFD: 31/07/2010 - 15:17:04 - [240] ----D- C:\ProgramData\WEBREG

O43 - CFD: 13/10/2011 - 02:36:28 - [7508478] ----D- C:\Users\bonjour\AppData\Roaming\Adobe

O43 - CFD: 13/10/2011 - 02:57:20 - [0] ----D- C:\Users\bonjour\AppData\Roaming\CyberLink

O43 - CFD: 09/10/2011 - 12:50:34 - [335569] ----D- C:\Users\bonjour\AppData\Roaming\Dropbox

O43 - CFD: 04/10/2011 - 13:32:12 - [0] ----D- C:\Users\bonjour\AppData\Roaming\FOG Downloader

O43 - CFD: 15/10/2011 - 14:30:34 - [166317] ----D- C:\Users\bonjour\AppData\Roaming\GlarySoft

O43 - CFD: 17/01/2010 - 15:33:18 - [0] ----D- C:\Users\bonjour\AppData\Roaming\Google

O43 - CFD: 04/08/2010 - 14:00:02 - [208478] ----D- C:\Users\bonjour\AppData\Roaming\HP

O43 - CFD: 05/08/2011 - 08:44:34 - [2298] ----D- C:\Users\bonjour\AppData\Roaming\HpUpdate

O43 - CFD: 01/08/2010 - 18:58:04 - [1163] ----D- C:\Users\bonjour\AppData\Roaming\Identities

O43 - CFD: 22/09/2011 - 18:24:50 - [0] ----D- C:\Users\bonjour\AppData\Roaming\InstallShield

O43 - CFD: 22/09/2011 - 14:50:40 - [334742] ----D- C:\Users\bonjour\AppData\Roaming\Lionhead Studios

O43 - CFD: 12/08/2011 - 21:44:18 - [461] ----D- C:\Users\bonjour\AppData\Roaming\LolClient

O43 - CFD: 17/01/2010 - 15:33:36 - [3151093] ----D- C:\Users\bonjour\AppData\Roaming\Macromedia

O43 - CFD: 15/10/2011 - 16:07:02 - [2239978] -S--D- C:\Users\bonjour\AppData\Roaming\Microsoft

O43 - CFD: 13/10/2011 - 03:10:06 - [20079304] ----D- C:\Users\bonjour\AppData\Roaming\Mozilla

O43 - CFD: 09/10/2011 - 04:18:58 - [2136] ----D- C:\Users\bonjour\AppData\Roaming\PACE Anti-Piracy

O43 - CFD: 31/07/2010 - 15:20:18 - [37] ----D- C:\Users\bonjour\AppData\Roaming\Packard Bell

O43 - CFD: 15/10/2011 - 20:57:28 - [2228] ----D- C:\Users\bonjour\AppData\Roaming\RIFT

O43 - CFD: 13/10/2011 - 02:48:18 - [2187590] ----D- C:\Users\bonjour\AppData\Roaming\Skype

O43 - CFD: 15/01/2010 - 15:34:18 - [0] ----D- C:\Users\bonjour\AppData\Roaming\Symantec

O43 - CFD: 09/10/2011 - 03:25:42 - [39811] ----D- C:\Users\bonjour\AppData\Roaming\TeamViewer

O43 - CFD: 06/08/2010 - 19:36:38 - [13824] ----D- C:\Users\bonjour\AppData\Roaming\Template

O43 - CFD: 25/07/2011 - 08:49:32 - [3044023] ----D- C:\Users\bonjour\AppData\Roaming\TomTom

O43 - CFD: 13/10/2011 - 02:59:38 - [726205] ----D- C:\Users\bonjour\AppData\Roaming\TS3Client

O43 - CFD: 09/10/2011 - 04:20:38 - [91463] ----D- C:\Users\bonjour\AppData\Roaming\Unity

O43 - CFD: 09/10/2011 - 13:08:00 - [86462] ----D- C:\Users\bonjour\AppData\Roaming\vlc

O43 - CFD: 24/09/2011 - 14:43:32 - [12] ----D- C:\Users\bonjour\AppData\Roaming\WinRAR

O43 - CFD: 01/08/2010 - 18:58:04 - [260420] ----D- C:\Users\bonjour\AppData\Roaming\Zylom

O43 - CFD: 09/10/2011 - 04:18:58 - [941] --H-D- C:\Users\bonjour\AppData\Local\1FqwdgLtkB

O43 - CFD: 13/10/2011 - 02:35:58 - [219204] ----D- C:\Users\bonjour\AppData\Local\Adobe

O43 - CFD: 24/06/2011 - 09:43:56 - [0] ----D- C:\Users\bonjour\AppData\Local\Apple

O43 - CFD: 15/01/2010 - 15:28:42 - [0] -SH-D- C:\Users\bonjour\AppData\Local\Application Data

O43 - CFD: 06/10/2011 - 11:39:06 - [28868] ----D- C:\Users\bonjour\AppData\Local\ESN Sonar

O43 - CFD: 13/10/2011 - 03:10:06 - [297584411] ----D- C:\Users\bonjour\AppData\Local\Google

O43 - CFD: 15/01/2010 - 15:28:42 - [0] -SH-D- C:\Users\bonjour\AppData\Local\Historique

O43 - CFD: 04/08/2010 - 14:00:02 - [287389] ----D- C:\Users\bonjour\AppData\Local\HP

O43 - CFD: 22/09/2011 - 14:50:18 - [196645099] ----D- C:\Users\bonjour\AppData\Local\Microsoft

O43 - CFD: 11/10/2011 - 19:24:26 - [0] ----D- C:\Users\bonjour\AppData\Local\Microsoft Help

O43 - CFD: 07/08/2010 - 08:22:46 - [1068071280] ----D- C:\Users\bonjour\AppData\Local\Mozilla

O43 - CFD: 09/10/2011 - 14:00:40 - [888598] ----D- C:\Users\bonjour\AppData\Local\Overwolf

O43 - CFD: 09/10/2011 - 04:16:22 - [0] ----D- C:\Users\bonjour\AppData\Local\PACE Anti-Piracy

O43 - CFD: 23/06/2011 - 20:13:08 - [27925514] ----D- C:\Users\bonjour\AppData\Local\Packard Bell

O43 - CFD: 14/10/2011 - 20:45:28 - [266270] ----D- C:\Users\bonjour\AppData\Local\PMB Files

O43 - CFD: 15/10/2011 - 21:14:00 - [297563] ----D- C:\Users\bonjour\AppData\Local\Temp

O43 - CFD: 15/01/2010 - 15:28:42 - [0] -SH-D- C:\Users\bonjour\AppData\Local\Temporary Internet Files

O43 - CFD: 25/07/2011 - 08:49:32 - [2046778] ----D- C:\Users\bonjour\AppData\Local\TomTom

O43 - CFD: 09/10/2011 - 04:20:20 - [14011] ----D- C:\Users\bonjour\AppData\Local\Unity

O43 - CFD: 11/08/2010 - 11:29:42 - [1227776] ----D- C:\Users\bonjour\AppData\Local\VirtualStore

O43 - CFD: 09/10/2011 - 02:03:08 - [45056] ----D- C:\Users\bonjour\AppData\Local\Windows Live

O43 - CFD: 01/08/2010 - 18:57:58 - [0] ----D- C:\Users\bonjour\AppData\Local\Zylom Games

O43 - CFD: 07/07/2011 - 06:21:38 - [0] ----D- C:\Users\bonjour\AppData\Local\{0715089C-5C34-4AF5-B1D8-B9C6FD68CF07}

O43 - CFD: 26/06/2011 - 20:38:44 - [0] ----D- C:\Users\bonjour\AppData\Local\{0AA49B0E-9AF2-486B-9A62-9E6B08E42CC8}

O43 - CFD: 17/07/2011 - 08:06:26 - [0] ----D- C:\Users\bonjour\AppData\Local\{13D7EB5A-BAB5-4916-8AFD-6627AB5B0D13}

O43 - CFD: 25/06/2011 - 09:48:28 - [0] ----D- C:\Users\bonjour\AppData\Local\{1D4BA8D6-C008-42BE-9165-BFB5C50BA83C}

O43 - CFD: 28/06/2011 - 06:36:56 - [0] ----D- C:\Users\bonjour\AppData\Local\{20EA9AA1-46CF-4BBD-89A1-6B54CA8A77F0}

O43 - CFD: 18/07/2011 - 08:00:46 - [0] ----D- C:\Users\bonjour\AppData\Local\{3065D07D-9BB1-496D-810F-1EB51B14B886}

O43 - CFD: 09/10/2011 - 02:02:16 - [0] ----D- C:\Users\bonjour\AppData\Local\{418A79D4-D0CC-450E-8229-CCAEFE882BAE}

O43 - CFD: 14/07/2011 - 19:17:48 - [0] ----D- C:\Users\bonjour\AppData\Local\{53329DBA-A1AF-41FA-892E-80C7362B9F71}

O43 - CFD: 11/07/2011 - 07:37:06 - [0] ----D- C:\Users\bonjour\AppData\Local\{561EB9F1-ABBE-41F0-8AD6-51ABB4F9D992}

O43 - CFD: 09/07/2011 - 08:59:14 - [0] ----D- C:\Users\bonjour\AppData\Local\{5651ECB5-79B5-40F2-AE08-EFC35AC0EF8B}

O43 - CFD: 28/06/2011 - 18:37:18 - [0] ----D- C:\Users\bonjour\AppData\Local\{5E8BAB13-E468-431F-981C-D984EE92E747}

O43 - CFD: 06/07/2011 - 08:33:54 - [0] ----D- C:\Users\bonjour\AppData\Local\{64A6C4C6-2860-4D5D-B926-7BC775401A3B}

O43 - CFD: 03/07/2011 - 11:51:54 - [0] ----D- C:\Users\bonjour\AppData\Local\{6727D9ED-BB8E-45F3-A1DB-1EE954AD090A}

O43 - CFD: 09/10/2011 - 02:03:04 - [0] ----D- C:\Users\bonjour\AppData\Local\{6DC6AE66-5BB8-4EE9-9A89-084C124001E9}

O43 - CFD: 05/07/2011 - 09:33:40 - [0] ----D- C:\Users\bonjour\AppData\Local\{7680C079-C2C4-48DB-81B3-8143A813F50D}

O43 - CFD: 29/06/2011 - 13:37:30 - [0] ----D- C:\Users\bonjour\AppData\Local\{8319DF91-51B6-440E-86D5-7CBE0AEE00C7}

O43 - CFD: 12/07/2011 - 11:16:36 - [0] ----D- C:\Users\bonjour\AppData\Local\{8A6A32A5-B44F-4A63-9C60-E2DDB414C072}

O43 - CFD: 14/07/2011 - 07:17:24 - [0] ----D- C:\Users\bonjour\AppData\Local\{8E6D1500-66B1-4218-A832-838474A2A0E0}

O43 - CFD: 08/07/2011 - 08:16:06 - [0] ----D- C:\Users\bonjour\AppData\Local\{A99F9A6E-895C-4A50-AE3B-2286EB5C22A4}

O43 - CFD: 10/07/2011 - 07:25:44 - [0] ----D- C:\Users\bonjour\AppData\Local\{AAF61ED2-DE74-4625-8CB5-B384F0091529}

O43 - CFD: 04/07/2011 - 08:25:34 - [0] ----D- C:\Users\bonjour\AppData\Local\{B3D65E78-7528-477B-9B91-9493D1709091}

O43 - CFD: 15/07/2011 - 08:02:54 - [0] ----D- C:\Users\bonjour\AppData\Local\{C248A6B3-1BB3-44EC-A8DB-A51958EF07CE}

O43 - CFD: 28/06/2011 - 06:39:44 - [0] ----D- C:\Users\bonjour\AppData\Local\{C6C18460-DEC8-4700-98C6-E68656D460AA}

O43 - CFD: 01/07/2011 - 07:20:44 - [0] ----D- C:\Users\bonjour\AppData\Local\{C796879F-33E2-458F-B80A-7B869077DA9F}

O43 - CFD: 16/07/2011 - 06:32:44 - [0] ----D- C:\Users\bonjour\AppData\Local\{CB93F73F-361C-48C0-8A35-19B4766A2656}

O43 - CFD: 30/06/2011 - 07:01:00 - [0] ----D- C:\Users\bonjour\AppData\Local\{E8641EE7-8A43-476E-8975-3C379F2BA484}

~ Scan Program Folder in 00mn 05s

 

 

 

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.8860B5E88249B763002F140809166F62] - 15/10/2011 - 20:06:42 ---A- . (...) -- C:\Windows\ntbtlog.txt [77486]

O44 - LFC:[MD5.DB17ECF1D826A30578608B7845E83EF5] - 15/10/2011 - 16:50:54 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1717182]

O44 - LFC:[MD5.0286895D3B2E53A47BB5582C80FCF045] - 15/10/2011 - 14:59:39 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [5552]

O44 - LFC:[MD5.30E3871483374BC70F0A9FDD639E07A0] - 15/10/2011 - 14:59:39 ---A- . (...) -- C:\Windows\system32\perfc009.dat [247586]

O44 - LFC:[MD5.D3DCC1737BAACAFCAA9D3036E8779736] - 15/10/2011 - 14:59:39 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [292940]

O44 - LFC:[MD5.91A149121CA577D1D1A83ED3520A4584] - 15/10/2011 - 14:59:39 ---A- . (...) -- C:\Windows\system32\perfh009.dat [743842]

O44 - LFC:[MD5.D446B43874365A50374D9FE5AC8DC6E3] - 15/10/2011 - 14:59:39 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [1181876]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/10/2011 - 14:55:31 ---A- . (...) -- C:\Windows\setupact.log [0]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/10/2011 - 14:55:31 ---A- . (...) -- C:\Windows\setuperr.log [0]

O44 - LFC:[MD5.E1A46189458DB5DBAC601589375239FA] - 15/10/2011 - 14:53:22 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.E3D49349BDC11E32702BB8FF524644FC] - 15/10/2011 - 14:53:18 ---A- . (...) -- C:\Windows\PFRO.log [14356]

O44 - LFC:[MD5.E230E31F083B4BEBABCD75B24A1292FD] - 13/10/2011 - 03:49:44 ---A- . (...) -- C:\Windows\system32\FNTCACHE.DAT [303160]

O44 - LFC:[MD5.7776EACF03BC5D02826CF323248BFEA0] - 13/10/2011 - 02:13:52 ---A- . (...) -- C:\Windows\system32\regsvr32.exe.log [234]

O44 - LFC:[MD5.2EF9F78F66B5BE9A9091C258D6C0E8B3] - 13/10/2011 - 01:52:12 ---A- . (...) -- C:\PS.log [91]

O44 - LFC:[MD5.7752AFC696C181C2FDE83D6B9EBA5CD0] - 10/10/2011 - 20:52:38 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\system32\OpenCL.dll [57960]

O44 - LFC:[MD5.AD4B58A364D0AE442C0FE11DC8402A8C] - 10/10/2011 - 20:52:38 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 280.26.) -- C:\Windows\system32\nvcuda.dll [5404776]

O44 - LFC:[MD5.142E77E0074EEB96FAF532AA7080863A] - 10/10/2011 - 20:52:38 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 280.2.) -- C:\Windows\system32\nvcuvid.dll [2391656]

O44 - LFC:[MD5.714D2F93EF696854016A2549E19A2A06] - 10/10/2011 - 20:52:38 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 280.26.) -- C:\Windows\system32\nvcuvenc.dll [2090088]

O44 - LFC:[MD5.D35B780879ED27FFE669249D833DE311] - 10/10/2011 - 20:52:38 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\system32\nvoglv32.dll [16595560]

O44 - LFC:[MD5.21DB81AEE7308071DAA13861C65F45FB] - 10/10/2011 - 20:52:38 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 280.26.) -- C:\Windows\system32\nvcompiler.dll [17193576]

O44 - LFC:[MD5.4152708C0C24E30DAE7FA87D5AFE1D7B] - 10/10/2011 - 20:52:38 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\system32\drivers\nvlddmkm.sys [10304104]

O44 - LFC:[MD5.565B1D3EBC2EC349A732F10B053C147F] - 07/10/2011 - 01:08:15 ---A- . (...) -- C:\shared.log [14530]

O44 - LFC:[MD5.ECD81B99477AB4A93D7838EB40B870D0] - 22/09/2011 - 20:02:26 ---A- . (...) -- C:\Windows\system32\icrav03.rat [8798]

O44 - LFC:[MD5.6D21D0A95286DCD09E354B612F592EB7] - 22/09/2011 - 20:02:26 ---A- . (...) -- C:\Windows\system32\ticrf.rat [1988]

O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 22/09/2011 - 20:02:16 ---A- . (...) -- C:\Windows\system32\ieuinit.inf [72822]

O44 - LFC:[MD5.EEBACD996A2059BAE2181BB60673B938] - 22/09/2011 - 17:33:37 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\system32\FlashPlayerCPLApp.cpl [404640]

O44 - LFC:[MD5.7AF8E2849F31AA42EE6A7AD2E6612789] - 22/09/2011 - 17:24:50 ---A- . (.OmniVision Technologies Inc. - Dual Mode USB Camera 530 Universal Serial.) -- C:\Windows\system32\drivers\ov530cmd.sys [25177]

O44 - LFC:[MD5.DDD13F2ADEF13CE594634FEF9FEE0FFC] - 22/09/2011 - 17:24:50 ---A- . (.OmniVision Technologies, Inc. - OV530 Still Image Support Library.) -- C:\Windows\ov530dib.dll [61440]

O44 - LFC:[MD5.8D8F822516F67192E5329C5428B7C9C9] - 22/09/2011 - 17:24:49 ---A- . (.OmniVision Technologies Inc. - Dual Mode USB Camera 530 DShow Extension P.) -- C:\Windows\system32\ov530ext.ax [18972]

O44 - LFC:[MD5.09F672AF3E29454DED0B21BE06805910] - 22/09/2011 - 17:24:49 ---A- . (.OmniVision Technologies Inc. - Dual Mode USB Camera 530 Still Image Device.) -- C:\Windows\system32\ov530usd.dll [16440]

O44 - LFC:[MD5.ED393797520CBC97C3C7E82932B0A31A] - 22/09/2011 - 17:24:49 ---A- . (.OmniVision Technologies Inc. - Dual Mode USB Camera 530 VFW Extention Page.) -- C:\Windows\system32\ov530ext.dll [40960]

O44 - LFC:[MD5.71CFFB1E06AA8978A7B4A346C191F8BA] - 22/09/2011 - 17:24:49 ---A- . (.OmniVision Technologies, Inc. - Dual Mode USB Camera 530 Stream Class Mini.) -- C:\Windows\system32\drivers\ov530vid.sys [161792]

~ Scan Files in 00mn 04s

 

 

 

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)

O45 - LFCP:[MD5.F43DF8C68FE61A15E6272BF6352B1256] - 07/10/2011 - 14:55:59 ---A- - C:\Windows\Prefetch\UNSECAPP.EXE-A02905A6.pf

O45 - LFCP:[MD5.15A4544A132128B06BD819AE2BDF4F0E] - 07/10/2011 - 14:57:16 ---A- - C:\Windows\Prefetch\DAEMONU.EXE-4BD6E483.pf

O45 - LFCP:[MD5.64292D1CB0C03E105391DEA8729AC11C] - 08/09/2010 - 15:25:48 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-A606B53C.pf

O45 - LFCP:[MD5.42B70358A7AFE9D6E8CAE51A6EF59209] - 08/09/2010 - 19:56:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-41468F42.pf

O45 - LFCP:[MD5.E2952365DEDD36D7D43D53D139AE275A] - 08/10/2011 - 14:56:05 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf

O45 - LFCP:[MD5.E4F82C7E9DD97AB2FBC866549E2A4360] - 09/09/2010 - 14:56:21 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf

O45 - LFCP:[MD5.830C8252455D9F73BB00FE79CF68E62D] - 11/08/2010 - 14:55:16 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf

O45 - LFCP:[MD5.E7ABE213A2051537C4A5C56C0DA623D6] - 11/08/2010 - 14:57:17 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-DD6406E8.pf

O45 - LFCP:[MD5.FEEF6BD8D21358C607610A7B8B36A8B9] - 11/08/2010 - 16:49:10 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf

O45 - LFCP:[MD5.3D2A18A0512E10857495BCCA7A41F61F] - 11/10/2011 - 20:07:38 ---A- - C:\Windows\Prefetch\RIFT.EXE-12A397DA.pf

O45 - LFCP:[MD5.E3CFEAA54FC4DE7F84D903D8810E9DE1] - 11/10/2011 - 20:07:38 ---A- - C:\Windows\Prefetch\RIFTERRORHANDLER.EXE-82D98CFA.pf

O45 - LFCP:[MD5.9763EB6AC2C0CB7A6E83EB79157C6CFE] - 11/10/2011 - 20:08:51 ---A- - C:\Windows\Prefetch\RIFTPATCHLIVE.EXE-F160AF9A.pf

O45 - LFCP:[MD5.656BA19183EE63ABA47D277C0C1C2212] - 12/08/2011 - 20:05:42 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf

O45 - LFCP:[MD5.B3E9E7B217B3402C95667079C92ABDA5] - 13/10/2011 - 01:27:16 ---A- - C:\Windows\Prefetch\LEAGUE OF LEGENDS.EXE-9FE6B02D.pf

O45 - LFCP:[MD5.19AE80275721C82B67D24E0B19EDC639] - 13/10/2011 - 12:45:04 ---A- - C:\Windows\Prefetch\WUAPP.EXE-C6167071.pf

O45 - LFCP:[MD5.816D84BCEB76036E448C1511874420F5] - 13/10/2011 - 13:13:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-BF1A352E.pf

O45 - LFCP:[MD5.A55DE5ADDE67AE04AFC04929745C53A9] - 13/10/2011 - 13:13:49 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-FD126C57.pf

O45 - LFCP:[MD5.C306158746F88FC0BC30CEEB47B518DA] - 13/10/2011 - 13:22:20 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf

O45 - LFCP:[MD5.6E8A4A20384909BE7F75CD76705F04F0] - 13/10/2011 - 13:55:28 ---A- - C:\Windows\Prefetch\AUTOUPDATE.EXE-AD28A918.pf

O45 - LFCP:[MD5.99D4C2530F6B7A876EBF206F23431D40] - 13/10/2011 - 13:55:35 ---A- - C:\Windows\Prefetch\GAMEBOOSTER.EXE-2AC7FB5C.pf

O45 - LFCP:[MD5.64D91F91968634EBBA0602B948F8D7B0] - 13/10/2011 - 13:55:36 ---A- - C:\Windows\Prefetch\GBTRAY.EXE-46C75E49.pf

O45 - LFCP:[MD5.B2D0E066C181E2DDC7E89EB8C9253500] - 13/10/2011 - 14:17:03 ---A- - C:\Windows\Prefetch\SPTDINST.EXE-81865649.pf

O45 - LFCP:[MD5.D3EB122F5F51CF8159CAEDC80329284A] - 13/10/2011 - 14:17:04 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-B2EB1806.pf

O45 - LFCP:[MD5.0A8C41FB55AFE3B533F103F1352D8BD8] - 13/10/2011 - 14:29:10 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf

O45 - LFCP:[MD5.DC66C242D5EFBED88EDB7BBBE95B4545] - 13/10/2011 - 14:34:58 ---A- - C:\Windows\Prefetch\DRVINST.EXE-4CB4314A.pf

O45 - LFCP:[MD5.89D95187B1FA0FDB760C150125C8DF3D] - 13/10/2011 - 14:37:42 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf

O45 - LFCP:[MD5.2E950E665DE6BEE2B8CA2D25A461FDCD] - 13/10/2011 - 14:48:19 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf

O45 - LFCP:[MD5.CBFE30B2BE739152EB24CA6A17A525F0] - 13/10/2011 - 14:52:36 ---A- - C:\Windows\Prefetch\ALCOHOL-120_ALCOHOL_120_2.0.1-EFA7E0AA.pf

O45 - LFCP:[MD5.CCCB745055D187A78803FAFAC821E3CB] - 13/10/2011 - 14:52:45 ---A- - C:\Windows\Prefetch\AXSHLEXHLPER.EXE-A70B8881.pf

O45 - LFCP:[MD5.1EE9CD748D24401550DE56C38EC9DB9B] - 13/10/2011 - 14:52:47 ---A- - C:\Windows\Prefetch\MX_SWINST.EXE-5A76D608.pf

O45 - LFCP:[MD5.24494AF20581ECBA0FE4B8C1D5617FA8] - 13/10/2011 - 14:52:57 ---A- - C:\Windows\Prefetch\STARWINDSERVICEAE.EXE-A5A5C380.pf

O45 - LFCP:[MD5.7EC2DC99FD6A29EBE86D2B61BF56FC5D] - 13/10/2011 - 14:53:00 ---A- - C:\Windows\Prefetch\ALCOHOL.EXE-EDB47553.pf

O45 - LFCP:[MD5.952C25CC664E3F2A4B40E6A8FBC051B2] - 13/10/2011 - 14:56:23 ---A- - C:\Windows\Prefetch\MCSTUBUSER.EXE-B48ADE55.pf

O45 - LFCP:[MD5.352F13EEFFE6F55E73B6B539E64787D9] - 13/10/2011 - 14:56:25 ---A- - C:\Windows\Prefetch\MACONFSERVICE.EXE-7C991E75.pf

O45 - LFCP:[MD5.418D61A3E8C5E473F373A9AEF2BE38D0] - 13/10/2011 - 14:59:42 ---A- - C:\Windows\Prefetch\WINRAR.EXE-94E7D80C.pf

O45 - LFCP:[MD5.D2E1DCCC779442AA377B5F25F554D775] - 13/10/2011 - 15:09:20 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf

O45 - LFCP:[MD5.329316EC5BC09A28BEBC4116A8B874BC] - 13/10/2011 - 15:15:15 ---A- - C:\Windows\Prefetch\COMUPDATUS.EXE-D7F34848.pf

O45 - LFCP:[MD5.FBE806A81D95AB4F82B6BCD402BBC9B3] - 13/10/2011 - 16:48:49 ---A- - C:\Windows\Prefetch\LOLLAUNCHER.EXE-1DEAE616.pf

O45 - LFCP:[MD5.457E7A0F1CA7EFF8ED325879CFC8A075] - 13/10/2011 - 16:49:03 ---A- - C:\Windows\Prefetch\LOLCLIENT.EXE-6D6C0241.pf

O45 - LFCP:[MD5.47BE127ABDB21092004F0F105CD557DD] - 13/10/2011 - 17:15:19 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf

O45 - LFCP:[MD5.F906AF016FFB3CC2A06403D3EB5A920D] - 13/10/2011 - 17:20:44 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-BAD6BD53.pf

O45 - LFCP:[MD5.71E3B97C99379C036AED971E9BF3B447] - 13/10/2011 - 18:50:46 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf

O45 - LFCP:[MD5.4A744ED069CE76696A33155E6FC382C7] - 13/10/2011 - 18:50:52 ---A- - C:\Windows\Prefetch\DFRGNTFS.EXE-7E4077FE.pf

O45 - LFCP:[MD5.4D8C5DA2F0764213A78CB50695679DDC] - 13/10/2011 - 19:49:23 ---A- - C:\Windows\Prefetch\TS3CLIENT_WIN32.EXE-D6C9A946.pf

O45 - LFCP:[MD5.3968DCFEB8E9A4CCFB2DFE2EE48CB479] - 13/10/2011 - 20:01:16 ---A- - C:\Windows\Prefetch\UPDATECHECKER.EXE-DF356CBF.pf

O45 - LFCP:[MD5.5112BDE965CEBF430C8BFDEE6E985222] - 13/10/2011 - 20:04:31 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-5F5F473D.pf

O45 - LFCP:[MD5.342EA11D3499290423934A44DD09511E] - 13/10/2011 - 20:06:43 ---A- - C:\Windows\Prefetch\CONIME.EXE-9781FD5F.pf

O45 - LFCP:[MD5.6143057B043B46A3B6CB5E4CB2D5F74A] - 14/10/2011 - 01:26:10 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf

O45 - LFCP:[MD5.2FAEA2F9DA33C87F0A80E2E86ED5603E] - 14/10/2011 - 17:53:07 ---A- - C:\Windows\Prefetch\LEAGUE OF LEGENDS.EXE-8D0C69AA.pf

O45 - LFCP:[MD5.BFAD8BCB6F50729AF15F72A14E278C79] - 14/10/2011 - 20:03:12 ---A- - C:\Windows\Prefetch\HARDWAREDETECTOR.EXE-FE814351.pf

O45 - LFCP:[MD5.19EAFF76CBD466BE483D5B9FFDF47098] - 14/10/2011 - 22:25:55 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf

O45 - LFCP:[MD5.676F41D2A95F470A1996C0AC599DDD67] - 14/10/2011 - 22:25:56 ---A- - C:\Windows\Prefetch\MPAS-D_BD1.EXE-97E29C40.pf

O45 - LFCP:[MD5.9CBC81490E1774C4D08A76F296FA04A6] - 14/10/2011 - 22:25:58 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-032F445F.pf

O45 - LFCP:[MD5.61D0DE55CB962B51A3A91333C05FC8C4] - 14/10/2011 - 22:25:58 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf

O45 - LFCP:[MD5.0A0517C407BDC3FF8B29EBE963D3F0A2] - 15/01/2010 - 14:48:28 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin

O45 - LFCP:[MD5.B28CAB22C1241987FF1AEC27D31A26ED] - 15/01/2010 - 14:54:19 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf

O45 - LFCP:[MD5.DCA1D270EF0F6E5C27D8540CA95DDBEE] - 15/01/2010 - 14:57:22 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf

O45 - LFCP:[MD5.38680E79AF6AF9E646484E40A32D4069] - 15/01/2010 - 14:57:49 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf

O45 - LFCP:[MD5.45300A7E360614690B5F645E16D440E4] - 15/01/2010 - 20:04:19 ---A- - C:\Windows\Prefetch\AgRobust.db

O45 - LFCP:[MD5.A2DC5CBE95EFED3B0CFD1AC749B2B87B] - 15/01/2010 - 20:04:20 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db

O45 - LFCP:[MD5.2F8FA2B53A2C9056696D4D2C20F11919] - 15/01/2010 - 20:04:21 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db

O45 - LFCP:[MD5.A04002999940F7DB7DF0266DEC301583] - 15/01/2010 - 20:04:21 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db

O45 - LFCP:[MD5.C2306BCE10450D56E3AEE0DC5322AA5A] - 15/01/2010 - 20:08:40 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf

O45 - LFCP:[MD5.56121605DD4E23ADDB3F71A59BAC22A3] - 15/01/2010 - 20:14:28 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf

O45 - LFCP:[MD5.CAC3C36BAD11B26DE7B9A0A32E412660] - 15/10/2011 - 03:56:03 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-D01B88BA.pf

O45 - LFCP:[MD5.585FAB78380AAC045C757D13D1C4054B] - 15/10/2011 - 03:58:00 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-7F4C2B52.pf

O45 - LFCP:[MD5.3B654124C8973FE9F36AD5E7C45980CC] - 15/10/2011 - 13:22:58 ---A- - C:\Windows\Prefetch\GLARY-UTILITIES_GLARY_UTILITI-5C08AFBA.pf

O45 - LFCP:[MD5.8D001D3C205412DC6656917B80EF2E46] - 15/10/2011 - 13:22:58 ---A- - C:\Windows\Prefetch\GLARY-UTILITIES_GLARY_UTILITI-D010BF52.pf

O45 - LFCP:[MD5.9E9474059578F21BB698DEACFED2574A] - 15/10/2011 - 13:23:02 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf

O45 - LFCP:[MD5.CD0D0481BF53EFD2443C09ADDBC04BB6] - 15/10/2011 - 13:23:05 ---A- - C:\Windows\Prefetch\INITIALIZE.EXE-7DCDC37F.pf

O45 - LFCP:[MD5.CFC963894ABC60F0380B35B255E2509C] - 15/10/2011 - 13:23:14 ---A- - C:\Windows\Prefetch\INTEGRATOR.EXE-84638148.pf

O45 - LFCP:[MD5.79F1D1548424E0BF5724D777A4E905D4] - 15/10/2011 - 13:54:12 ---A- - C:\Windows\Prefetch\MEMDEFRAG.EXE-5B92D9FD.pf

O45 - LFCP:[MD5.498782B270B2D45CA8A39EE3939F55C1] - 15/10/2011 - 13:54:44 ---A- - C:\Windows\Prefetch\CMM.EXE-0B0622BE.pf

O45 - LFCP:[MD5.449097DA16818AF071F944B5B33E723B] - 15/10/2011 - 13:55:04 ---A- - C:\Windows\Prefetch\WINSTD.EXE-344A5252.pf

O45 - LFCP:[MD5.0D1C8DEA15D1BFFE6C13C8732304B6FE] - 15/10/2011 - 13:55:08 ---A- - C:\Windows\Prefetch\SFC.EXE-8103D384.pf

O45 - LFCP:[MD5.C682E97F54DEF0C5733714093971A8B5] - 15/10/2011 - 14:54:41 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-ADBD5ECB.pf

O45 - LFCP:[MD5.CD599B239DBE42D3C562E5AD15FC5B8E] - 15/10/2011 - 14:55:26 ---A- - C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf

O45 - LFCP:[MD5.A91B821F2247350F6ECD8A0A6583EB2C] - 15/10/2011 - 14:59:52 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-0F5EF4A8.pf

O45 - LFCP:[MD5.3067CC0D57657E7740048468E926FCF4] - 15/10/2011 - 15:03:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-FEEF008C.pf

O45 - LFCP:[MD5.E97356321C08BFD525D314C84E8D6E24] - 15/10/2011 - 15:04:05 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-5A1F9372.pf

O45 - LFCP:[MD5.60978575828A5467D19EA7C9089F18A7] - 15/10/2011 - 15:04:09 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-296436B2.pf

O45 - LFCP:[MD5.09BA89A4873D144FF58CA082069434DC] - 15/10/2011 - 15:09:17 ---A- - C:\Windows\Prefetch\HIJACKTHIS.EXE-9FD56571.pf

O45 - LFCP:[MD5.9736E3F347DA872AD056E0ACDC48BBD9] - 15/10/2011 - 15:21:23 ---A- - C:\Windows\Prefetch\SETUP_ZEB-UTILITY.EXE-531FFA71.pf

O45 - LFCP:[MD5.A7EE2C8234ABAA6A75246D04CD46CEB6] - 15/10/2011 - 15:22:08 ---A- - C:\Windows\Prefetch\REGEDIT.EXE-90FEEA06.pf

O45 - LFCP:[MD5.E1A33475C0B8EAFBB12AFF9AF670F47E] - 15/10/2011 - 15:22:11 ---A- - C:\Windows\Prefetch\ZEB-UTILITY.EXE-2121B86A.pf

O45 - LFCP:[MD5.0CC2CA01CBED0F1A486E16AAB9C0680A] - 15/10/2011 - 15:23:02 ---A- - C:\Windows\Prefetch\ZEB-RAM.EXE-99CF3E9E.pf

O45 - LFCP:[MD5.4F1EDE1E83B7E6F708F40DEB9FBFD229] - 15/10/2011 - 15:23:49 ---A- - C:\Windows\Prefetch\PERFORMANCE.EXE-5BE83AF2.pf

O45 - LFCP:[MD5.BA18593BAD57DA6C6F3F98EBD43A4DB9] - 15/10/2011 - 15:37:02 ---A- - C:\Windows\Prefetch\VLC.EXE-A11F73EE.pf

O45 - LFCP:[MD5.0E043B636166B14D24C0330C562CBB66] - 15/10/2011 - 18:13:46 ---A- - C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf

O45 - LFCP:[MD5.ACC7715F998C368DBB70F923394B7AB2] - 15/10/2011 - 18:14:53 ---A- - C:\Windows\Prefetch\MMC.EXE-D5033898.pf

O45 - LFCP:[MD5.B2525230D04FDC180909741574A39075] - 15/10/2011 - 19:57:19 ---A- - C:\Windows\Prefetch\DXDIAG.EXE-1F1A4BF5.pf

O45 - LFCP:[MD5.9D7D583E2C1576320D23EC974B7CA2E6] - 15/10/2011 - 20:05:53 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-ACB02144.pf

O45 - LFCP:[MD5.FC6E5C3E0A3E2372C61E54CA8927D53A] - 15/10/2011 - 20:05:53 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-A9CA7035.pf

O45 - LFCP:[MD5.13034EECA026942894AAAE476AD1C71E] - 15/10/2011 - 20:08:45 ---A- - C:\Windows\Prefetch\LADS.EXE-3D3801BD.pf

O45 - LFCP:[MD5.3117CEB95C694799A1A165F0D8F1F55B] - 15/10/2011 - 20:08:47 ---A- - C:\Windows\Prefetch\SUBINACL.EXE-7FBD134E.pf

O45 - LFCP:[MD5.AA22868AB917375C96F277B37A4170A0] - 15/10/2011 - 20:08:48 ---A- - C:\Windows\Prefetch\SETACL.EXE-ED98B555.pf

O45 - LFCP:[MD5.86A00399C212B969435EF9807C568521] - 15/10/2011 - 20:08:58 ---A- - C:\Windows\Prefetch\SIGCHECK.EXE-C8DFE9C6.pf

O45 - LFCP:[MD5.56EEFF762899F0EB62B8B016C14FB33A] - 15/10/2011 - 20:11:56 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-5F50D22C.pf

O45 - LFCP:[MD5.1D76F1136D6059BBC6EBA9368236482D] - 15/10/2011 - 20:14:28 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf

O45 - LFCP:[MD5.72173E07964DC6AAE757DE750719C1CC] - 15/10/2011 - 20:14:28 ---A- - C:\Windows\Prefetch\CSCRIPT.EXE-D1EF4768.pf

O45 - LFCP:[MD5.091CE7268C8589E09D791559116067E9] - 15/10/2011 - 20:14:34 ---A- - C:\Windows\Prefetch\PV.EXE-7B89A1E7.pf

O45 - LFCP:[MD5.0C26FE57E73A186805D5F898B017639E] - 15/10/2011 - 20:14:39 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf

O45 - LFCP:[MD5.8B85684037BF309D90B53D947D79D33C] - 16/01/2010 - 15:06:29 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf

O45 - LFCP:[MD5.FD53DDC7FB025119C3E64316D5640022] - 16/01/2010 - 19:42:26 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-3320974865-676787251-981333123-1000.db

O45 - LFCP:[MD5.7EEA4FA28CCB19F0B74ACD6739675CA1] - 16/01/2010 - 19:42:26 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-3320974865-676787251-981333123-1000.db

O45 - LFCP:[MD5.DA41223CDC0B683A10283EADAE96E2F9] - 16/01/2010 - 21:00:00 ---A- - C:\Windows\Prefetch\PBCARNOT.EXE-21B8D0CA.pf

O45 - LFCP:[MD5.57D129C6C2F16A73524D5F64F4CDF65B] - 17/01/2010 - 14:28:48 ---A- - C:\Windows\Prefetch\Layout.ini

O45 - LFCP:[MD5.4C4B3130461578619A34BCF5270BD562] - 22/09/2011 - 16:48:37 ---A- - C:\Windows\Prefetch\LOL.LAUNCHER.EXE-4C860503.pf

O45 - LFCP:[MD5.338A5970A1D9F23B136C85CBB89BD8C1] - 22/09/2011 - 16:48:47 ---A- - C:\Windows\Prefetch\RADS_USER_KERNEL.EXE-9DAAF573.pf

O45 - LFCP:[MD5.42CB81F5E3612205D3254FC8C59A1CC4] - 22/09/2011 - 18:36:27 ---A- - C:\Windows\Prefetch\PMB.EXE-BFCEBC66.pf

O45 - LFCP:[MD5.83D3B71AF79A03B5C3061019A472C683] - 22/09/2011 - 20:05:42 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf

O45 - LFCP:[MD5.048E6D8C1EB9AB6D95DE964D4D74013E] - 24/06/2011 - 14:57:05 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf

O45 - LFCP:[MD5.78C19BCC714DDEFB0164CA7BF7C6DA7B] - 24/06/2011 - 20:16:15 ---A- - C:\Windows\Prefetch\CHROME.EXE-0BAEB297.pf

O45 - LFCP:[MD5.C0A3CC8A1D380BE275EA244125C8C4FA] - 25/06/2011 - 15:25:50 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-7226D1F8.pf

O45 - LFCP:[MD5.34D8678423D9C4BA4EC6AD0F46D7E912] - 26/06/2011 - 15:06:29 ---A- - C:\Windows\Prefetch\WERCON.EXE-E36BD04E.pf

O45 - LFCP:[MD5.ED49422E68F8B79A96B56627CD14B1DC] - 27/06/2011 - 15:06:44 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf

O45 - LFCP:[MD5.1FEA1C75A0961A8E3DC0E3A017D6A26E] - 27/06/2011 - 15:06:56 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf

O45 - LFCP:[MD5.170B62DB112FA33188F0EC6124A1AC27] - 28/05/2011 - 15:06:43 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf

O45 - LFCP:[MD5.D0183BF407BBFB74DCB005CDD48FFD1B] - 31/07/2010 - 14:55:09 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf

O45 - LFCP:[MD5.A9B8883CB1A96B2AD038FB2DF9E65BDB] - 31/07/2010 - 19:58:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-FE771DDA.pf

~ Scan Prefetcher in 00mn 02s

 

 

 

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\system32\Drivers\volmgrx.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\system32\Drivers\volmgrx.sys

~ Scan CSB in 00mn 00s

 

 

 

---\\ Trojan Driver Search Data (HKLM) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

~ Scan Keys in 00mn 00s

 

 

 

---\\ ShareTools MSconfig StartupReg (O53)

O53 - SMSR:HKLM\...\startupreg\FileHippo.com [Key] . (.FileHippo.com - FileHippo.com Update Checker.) -- C:\Program Files\FileHippo.com\UpdateChecker.exe

O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\bonjour\AppData\Local\Google\Update\GoogleUpdate.exe

O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O53 - SMSR:HKLM\...\startupreg\Pando Media Booster [Key] . (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe

O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe

O53 - SMSR:HKLM\...\startupreg\Steam [Key] . (.Valve Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe

O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe

O53 - SMSR:HKLM\...\startupreg\Windows Mobile-based device management [Key] . (.Microsoft Corporation - User session Windows Mobile device handler.) -- C:\Windows\WindowsMobile\wmdSync.exe

O53 - SMSR:HKLM\...\startupreg\WMPNSCFG [Key] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe

~ Scan SMSR Keys in 00mn 00s

 

 

 

---\\ Microsoft Control Security Providers (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

~ Scan Keys in 00mn 00s

 

 

 

---\\ Microsoft Windows Policies System (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0

~ Scan Keys in 00mn 00s

 

 

 

---\\ Microsoft Windows Policies Explorer (O56)

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLogoff"=0

O56 - MWPE:[HKCU\...\policies\Explorer] - "NoClose"=0

O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0

~ Scan Keys in 00mn 00s

 

 

 

---\\ Liste des Drivers Système (O58)

O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:32:46 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422968]

O58 - SDL:[MD5.60505E0041F7751BDBB80F88BF45C2CE] - 21/01/2008 - 03:32:51 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [300600]

O58 - SDL:[MD5.8A42779B02AEC986EAB64ECFC98F8BD7] - 21/01/2008 - 03:32:52 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [101432]

O58 - SDL:[MD5.241C9E37F8CE45EF51C3DE27515CA4E5] - 21/01/2008 - 03:32:53 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [149560]

O58 - SDL:[MD5.2F7F3E8DA380325866E566F5D5EC23D5] - 10/09/2008 - 00:19:06 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\Windows\system32\drivers\AegisP.sys [20747]

O58 - SDL:[MD5.9EAEF5FC9B8E351AFA7E78A6FAE91F91] - 21/01/2008 - 03:32:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [17464]

O58 - SDL:[MD5.5D2888182FB46632511ACEE92FDAD522] - 21/01/2008 - 03:32:49 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [79416]

O58 - SDL:[MD5.5E2A321BD7C8B3624E41FDEC3E244945] - 21/01/2008 - 03:32:50 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [79928]

O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]

O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]

O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]

O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]

O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]

O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]

O58 - SDL:[MD5.0CA25E686A4928484E9FDABD168AB629] - 21/01/2008 - 03:32:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [19000]

O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]

O58 - SDL:[MD5.5425F74AC0C1DBD96A1E04F17D63F94C] - 21/01/2008 - 03:32:50 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel® PRO/1000.) -- C:\Windows\system32\drivers\E1G60I32.sys [118784]

O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:32:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [342584]

O58 - SDL:[MD5.16EE7B23A009E00D835CDB79574A91A6] - 21/01/2008 - 03:32:52 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [40504]

O58 - SDL:[MD5.54155EA1B0DF185878E0FC9EC3AC3A14] - 21/01/2008 - 03:32:49 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [235064]

O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]

O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]

O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]

O58 - SDL:[MD5.C7E15E82879BF3235B559563D4185365] - 21/01/2008 - 03:32:49 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [96312]

O58 - SDL:[MD5.EE01EBAE8C9BF0FA072E0FF68718920A] - 21/01/2008 - 03:32:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89656]

O58 - SDL:[MD5.912A04696E9CA30146A62AFA1463DD5C] - 21/01/2008 - 03:32:48 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96312]

O58 - SDL:[MD5.0001CE609D66632FA17B84705F658879] - 21/01/2008 - 03:32:53 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [31288]

O58 - SDL:[MD5.C252F32CD9A49DBFC25ECF26EBD51A99] - 21/01/2008 - 03:32:52 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [386616]

O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]

O58 - SDL:[MD5.91D44AA2A61006136DA32118A179BF12] - 11/05/2007 - 15:40:42 ---A- . (.Ralink Technology Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\system32\drivers\netr73.sys [329728]

O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]

O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]

O58 - SDL:[MD5.4152708C0C24E30DAE7FA87D5AFE1D7B] - 10/10/2011 - 12:50:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 280.26.) -- C:\Windows\system32\drivers\nvlddmkm.sys [10304104]

O58 - SDL:[MD5.2EDF9E7751554B42CBB60116DE727101] - 21/01/2008 - 03:32:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [102968]

O58 - SDL:[MD5.B8D6145D3EB05E9F81BADE9B7AFC2C80] - 15/11/2008 - 11:23:22 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvrd32.sys [124960]

O58 - SDL:[MD5.C44EE36DD84FA95EB81D79C374756003] - 15/11/2008 - 15:53:10 ---A- . (.NVIDIA Corporation - NVIDIA® nForce SMU Microcontroller Driver.) -- C:\Windows\system32\drivers\nvsmu.sys [13312]

O58 - SDL:[MD5.ABED0C09758D1D97DB0042DBB2688177] - 21/01/2008 - 03:32:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [45112]

O58 - SDL:[MD5.97778C3CB3AF6B2243648D0DCD4D8916] - 09/10/2011 - 01:32:36 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor32.sys [215656]

O58 - SDL:[MD5.7AF8E2849F31AA42EE6A7AD2E6612789] - 22/09/2011 - 23:37:32 ---A- . (.OmniVision Technologies Inc. - Dual Mode USB Camera 530 Universal Serial Bus Camera Driver.) -- C:\Windows\system32\drivers\ov530cmd.sys [25177]

O58 - SDL:[MD5.71CFFB1E06AA8978A7B4A346C191F8BA] - 22/09/2011 - 16:04:00 ---A- . (.OmniVision Technologies, Inc. - Dual Mode USB Camera 530 Stream Class Mini Driver.) -- C:\Windows\system32\drivers\ov530vid.sys [161792]

O58 - SDL:[MD5.0A6DB55AFB7820C99AA1F3A1D270F4F6] - 21/01/2008 - 03:32:50 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1122360]

O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]

O58 - SDL:[MD5.A019E752588930DAA2B3BAFCCF3B382A] - 10/09/2008 - 18:19:06 ---A- . (.Ralink Technology Inc. - RT2500 802.11g Wireless Adapter Driver.) -- C:\Windows\system32\drivers\RT2500.SYS [242048]

O58 - SDL:[MD5.70AEEC67E87A2002E6B2CC353D56E222] - 10/09/2008 - 18:50:06 ---A- . (.Ralink Technology Inc. - Sample Driver for Ralink 802.11g Wireless USB Adapters.) -- C:\Windows\system32\drivers\rt2500usb.SYS [245376]

O58 - SDL:[MD5.788E3A2113C47F66A912491C8730F96D] - 10/09/2008 - 11:22:00 ---A- . (.Ralink Technology Inc. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\system32\drivers\rt61.sys [339072]

O58 - SDL:[MD5.6EA04A4370609E5E1EAEEE898A2AB6AC] - 10/09/2008 - 18:46:28 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\Windows\system32\drivers\rt73.sys [252928]

O58 - SDL:[MD5.219CA9A36D6DE2EC04F958C907673436] - 15/11/2008 - 18:22:50 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHDA.sys [2134424]

O58 - SDL:[MD5.F9575B977A13965BBE0181A6604F4F04] - 12/08/2011 - 13:21:54 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS6 32-bit Driver.) -- C:\Windows\system32\drivers\Rtlh86.sys [319592]

O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]

O58 - SDL:[MD5.A99C6C8B0BAA970D8AA59DDC50B57F94] - 21/01/2008 - 03:32:52 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [74808]

O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/10/2011 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [436792]

O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]

O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]

O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]

O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:32:45 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [238648]

O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]

O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:32:49 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]

O58 - SDL:[MD5.AADF5587A4063F52C2C3FED7887426FC] - 21/01/2008 - 03:32:21 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [20024]

O58 - SDL:[MD5.587253E09325E6BF226B299774B728A9] - 21/01/2008 - 03:32:49 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [130616]

O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]

O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]

O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]

O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]

O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]

O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]

O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]

O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]

O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]

O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]

O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]

O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]

O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]

O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]

O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]

~ Scan Drivers in 00mn 03s

 

 

 

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC:Last File Created 01/07/2011 - 15:15:10 ---A- C:\Users\All Users\NVIDIA\Updatus\updtConfig.xml [2548]

O61 - LFC:Last File Created 03/07/2011 - 14:36:58 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.main.xml.bak [9885]

O61 - LFC:Last File Created 03/07/2011 - 15:14:22 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.jour.dat.bak [252]

O61 - LFC:Last File Created 09/10/2011 - 20:09:18 ---A- C:\Users\bonjour\AppData\Roaming\RIFT\riftpatch.cfg [147]

O61 - LFC:Last File Created 09/10/2011 - 20:09:27 ---A- C:\Users\bonjour\AppData\Roaming\RIFT\rift.cfg [1621]

O61 - LFC:Last File Created 10/10/2011 - 01:50:41 ---A- C:\Users\bonjour\AppData\Local\Google\Chrome\User Data\Default\Preferences [18279]

O61 - LFC:Last File Created 10/10/2011 - 14:56:23 ---A- C:\Users\All Users\ma-config.com\Logs\mcstubuser.txt [611]

O61 - LFC:Last File Created 10/10/2011 - 14:56:25 ---A- C:\Users\All Users\ma-config.com\Logs\maconfservice.txt [3492]

O61 - LFC:Last File Created 10/10/2011 - 15:23:52 ---A- C:\Users\All Users\ma-config.com\Logs\npapi.txt [29292]

O61 - LFC:Last File Created 11/08/2011 - 04:12:02 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\resolved.dat [70]

O61 - LFC:Last File Created 11/08/2011 - 04:12:02 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\subscribemode.dat [4]

O61 - LFC:Last File Created 11/08/2011 - 13:00:00 ---A- C:\Users\bonjour\AppData\Local\Packard Bell\Setup my PC\2.MSG [2606]

O61 - LFC:Last File Created 11/08/2011 - 13:24:12 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\chats\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\channel.txt [43828]

O61 - LFC:Last File Created 11/08/2011 - 14:48:11 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\chats\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\channel.html [272170]

O61 - LFC:Last File Created 11/08/2011 - 19:49:17 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\ts3clientui_qt.secrets.conf [975]

O61 - LFC:Last File Created 11/08/2011 - 19:49:18 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\ts3clientui_qt.conf [4501]

O61 - LFC:Last File Created 11/08/2011 - 19:50:21 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\chats\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\server.html [211379]

O61 - LFC:Last File Created 11/10/2011 - 17:21:19 ---A- C:\Users\bonjour\AppData\Roaming\RIFT\recents.cfg [460]

O61 - LFC:Last File Created 12/10/2011 - 03:46:38 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_12-10-11_03-58-08.lrf [6164228]

O61 - LFC:Last File Created 12/10/2011 - 05:10:58 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_12-10-11_05-10-45.lrf [8441341]

O61 - LFC:Last File Created 12/10/2011 - 22:25:50 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_12-10-11_22-41-04.lrf [5765153]

O61 - LFC:Last File Created 13/10/2011 - 00:46:27 ---A- C:\Users\bonjour\Downloads\gb3-setup.exe [4869208]

O61 - LFC:Last File Created 13/10/2011 - 01:22:00 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_13-10-11_02-20-32.lrf [81988]

O61 - LFC:Last File Created 13/10/2011 - 01:23:55 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_13-10-11_02-23-04.lrf [25981]

O61 - LFC:Last File Created 13/10/2011 - 01:31:58 ---A- C:\Users\bonjour\Downloads\LeagueofLegends(1).exe [2307072]

O61 - LFC:Last File Created 13/10/2011 - 01:32:01 ---A- C:\Users\bonjour\Downloads\ccsetup311.exe [3496848]

O61 - LFC:Last File Created 13/10/2011 - 01:34:58 ---A- C:\Users\bonjour\Documents\cc_20111013_023451.reg [143096]

O61 - LFC:Last File Created 13/10/2011 - 01:35:12 ---A- C:\Users\bonjour\Downloads\AdobeAIRInstaller.exe [15154600]

O61 - LFC:Last File Created 13/10/2011 - 01:35:25 ---A- C:\Users\bonjour\AppData\Local\PMB Files\g3c9cdjlhv4r6xrl5txvrusrdwngy256.pando [43853]

O61 - LFC:Last File Created 13/10/2011 - 01:36:27 ---A- C:\Users\bonjour\AppData\Roaming\Adobe\AIR\eulaAccepted [1]

O61 - LFC:Last File Created 13/10/2011 - 01:36:31 ---A- C:\Users\All Users\Adobe\AIR\Updater\initialPingback [0]

O61 - LFC:Last File Created 13/10/2011 - 01:36:31 ---A- C:\Users\All Users\Adobe\AIR\Updater\updatePingback [0]

O61 - LFC:Last File Created 13/10/2011 - 01:36:31 ---A- C:\Users\bonjour\AppData\Roaming\Adobe\AIR\Updater\lastUpdateCheck [35]

O61 - LFC:Last File Created 13/10/2011 - 01:59:36 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\icon_1351251661 [804]

O61 - LFC:Last File Created 13/10/2011 - 01:59:36 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\icon_1381439482 [909]

O61 - LFC:Last File Created 13/10/2011 - 01:59:36 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\icon_1965981407 [7130]

O61 - LFC:Last File Created 13/10/2011 - 01:59:36 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\icon_2308298598 [2295]

O61 - LFC:Last File Created 13/10/2011 - 01:59:36 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\icon_347727580 [957]

O61 - LFC:Last File Created 13/10/2011 - 01:59:36 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\icon_363798967 [4832]

O61 - LFC:Last File Created 13/10/2011 - 02:07:12 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\dummy.png [109]

O61 - LFC:Last File Created 13/10/2011 - 02:53:50 ---A- C:\Users\bonjour\AppData\Local\PMB Files\7C\91\7C916E63D9D5EF78840D7E0FC80940982B74A0BE.ct2 [439]

O61 - LFC:Last File Created 13/10/2011 - 02:55:18 ---A- C:\Users\bonjour\AppData\Local\PMB Files\7C\91\7C916E63D9D5EF78840D7E0FC80940982B74A0BE.dat [266]

O61 - LFC:Last File Created 13/10/2011 - 04:12:00 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\channels\cache.dat [4]

O61 - LFC:Last File Created 13/10/2011 - 04:12:00 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\perm.dat [79436]

O61 - LFC:Last File Created 13/10/2011 - 13:37:44 ---A- C:\Users\All Users\PMB Files\D891781C1062.tok [20]

O61 - LFC:Last File Created 13/10/2011 - 13:37:45 ---A- C:\Users\bonjour\AppData\Local\PMB Files\7lo5rv4pbplb1glv2yzolaefg8h8m6mv.pando [9154]

O61 - LFC:Last File Created 13/10/2011 - 13:39:27 ---A- C:\Users\bonjour\AppData\Local\PMB Files\B5\93\B5935618A69AC4579E0508C578E0AD9C04AADC4D.dat [54]

O61 - LFC:Last File Created 13/10/2011 - 13:40:28 ---A- C:\Users\bonjour\AppData\Local\PMB Files\3yfid474n56ap7lqvz854ylee0jald6g.pando [2914]

O61 - LFC:Last File Created 13/10/2011 - 13:40:56 ---A- C:\Users\bonjour\AppData\Local\PMB Files\FF\08\FF080A99D828161E001F30DBF802205B8DF20561.dat [15]

O61 - LFC:Last File Created 13/10/2011 - 13:41:05 ---A- C:\Users\All Users\PMB Files\C4266042AE26.tok [20]

O61 - LFC:Last File Created 13/10/2011 - 13:41:05 ---A- C:\Users\bonjour\AppData\Local\PMB Files\u009tkgmwh26c40trqbk0vz3ijizfmjm.pando [2466]

O61 - LFC:Last File Created 13/10/2011 - 13:41:26 ---A- C:\Users\bonjour\AppData\Local\PMB Files\E6\C1\E6C1916687AB8AC3F07CAE9A7D51B90C1ACC04AD.dat [12]

O61 - LFC:Last File Created 13/10/2011 - 13:42:10 ---A- C:\Users\bonjour\AppData\Local\PMB Files\E6\C1\E6C1916687AB8AC3F07CAE9A7D51B90C1ACC04AD.ct2 [317]

O61 - LFC:Last File Created 13/10/2011 - 13:49:19 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\icon_4082930923 [800]

O61 - LFC:Last File Created 13/10/2011 - 13:49:19 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\icons\icon_771128283 [1652]

O61 - LFC:Last File Created 13/10/2011 - 14:03:56 ---A- C:\Users\All Users\PMB Files\229B1E97C053.tok [20]

O61 - LFC:Last File Created 13/10/2011 - 14:03:56 ---A- C:\Users\bonjour\AppData\Local\PMB Files\B5\93\B5935618A69AC4579E0508C578E0AD9C04AADC4D.ct2 [435]

O61 - LFC:Last File Created 13/10/2011 - 14:03:57 ---A- C:\Users\bonjour\AppData\Local\PMB Files\FF\08\FF080A99D828161E001F30DBF802205B8DF20561.ct2 [315]

O61 - LFC:Last File Created 13/10/2011 - 14:05:16 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_13-10-11_15-03-58.lrf [9874]

O61 - LFC:Last File Created 13/10/2011 - 14:06:19 ---A- C:\Users\All Users\PMB Files\9C161A695A67.tok [20]

O61 - LFC:Last File Created 13/10/2011 - 14:06:59 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_13-10-11_15-06-20.lrf [8929]

O61 - LFC:Last File Created 13/10/2011 - 14:11:50 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp3012 [1699]

O61 - LFC:Last File Created 13/10/2011 - 14:16:37 ---A- C:\Users\bonjour\Downloads\alcohol-120_alcohol_120_2.0.1.2033_anglais_11016.exe [9670496]

O61 - LFC:Last File Created 13/10/2011 - 14:21:01 ---A- C:\Users\All Users\PMB Files\4E38BAC1EC9B.tok [20]

O61 - LFC:Last File Created 13/10/2011 - 14:21:01 ---A- C:\Users\bonjour\AppData\Local\PMB Files\FF\08\FF080A99D828161E001F30DBF802205B8DF20561.ct1 [315]

O61 - LFC:Last File Created 13/10/2011 - 14:59:48 ---A- C:\Users\bonjour\Documents\ax_files.xml [124]

O61 - LFC:Last File Created 13/10/2011 - 15:07:02 ---A- C:\Users\bonjour\AppData\Local\Temp\bonjour.bmp [31832]

O61 - LFC:Last File Created 13/10/2011 - 20:31:03 ---A- C:\Users\All Users\PMB Files\2C527EC4EA02.tok [20]

O61 - LFC:Last File Created 13/10/2011 - 21:02:46 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_13-10-11_21-31-04.lrf [2948960]

O61 - LFC:Last File Created 13/10/2011 - 21:03:04 ---A- C:\Users\bonjour\Documents\LOLReplay\assets\champions\Yorick.png [3094]

O61 - LFC:Last File Created 13/10/2011 - 21:07:04 ---A- C:\Users\All Users\PMB Files\EA19B0311291.tok [20]

O61 - LFC:Last File Created 13/10/2011 - 21:25:39 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_13-10-11_22-07-04.lrf [1504079]

O61 - LFC:Last File Created 13/10/2011 - 21:26:39 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp3556 [1699]

O61 - LFC:Last File Created 13/10/2011 - 21:50:06 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp1740 [1699]

O61 - LFC:Last File Created 14/10/2011 - 00:33:03 ---A- C:\Users\All Users\PMB Files\44AD361AC688.tok [20]

O61 - LFC:Last File Created 14/10/2011 - 00:56:50 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_14-10-11_01-33-08.lrf [2605420]

O61 - LFC:Last File Created 14/10/2011 - 01:00:01 ---A- C:\Users\All Users\PMB Files\D01144E1883F.tok [20]

O61 - LFC:Last File Created 14/10/2011 - 01:23:04 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_14-10-11_02-00-01.lrf [2968705]

O61 - LFC:Last File Created 14/10/2011 - 01:27:07 ---A- C:\Users\All Users\PMB Files\0ABCC8EA6E28.tok [20]

O61 - LFC:Last File Created 14/10/2011 - 01:52:08 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_14-10-11_02-27-08.lrf [2945568]

O61 - LFC:Last File Created 14/10/2011 - 01:55:10 ---A- C:\Users\bonjour\AppData\Roaming\LolClient\Local Store\#SharedObjects\analytics.sol [461]

O61 - LFC:Last File Created 14/10/2011 - 01:55:22 ---A- C:\Users\All Users\PMB Files\7E4DDCC6BC9D.tok [20]

O61 - LFC:Last File Created 14/10/2011 - 01:56:06 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp5956 [1699]

O61 - LFC:Last File Created 14/10/2011 - 16:52:52 ---A- C:\Users\All Users\PMB Files\C2C40681B452.tok [20]

O61 - LFC:Last File Created 14/10/2011 - 17:19:55 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_14-10-11_17-52-52.lrf [3056417]

O61 - LFC:Last File Created 14/10/2011 - 17:24:21 ---A- C:\Users\All Users\PMB Files\4E0052750802.tok [20]

O61 - LFC:Last File Created 14/10/2011 - 17:48:26 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_14-10-11_18-24-22.lrf [2771104]

O61 - LFC:Last File Created 14/10/2011 - 17:53:02 ---A- C:\Users\All Users\PMB Files\48EEA66A38EF.tok [20]

O61 - LFC:Last File Created 14/10/2011 - 18:36:17 ---A- C:\Users\bonjour\AppData\Local\PMB Files\cert\secmod.db [16384]

O61 - LFC:Last File Created 14/10/2011 - 18:36:26 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\replay_14-10-11_18-53-02.lrf [4910021]

O61 - LFC:Last File Created 14/10/2011 - 19:45:26 ---A- C:\Users\All Users\PMB Files\9EAF22324A4C.tok [20]

O61 - LFC:Last File Created 14/10/2011 - 19:45:26 ---A- C:\Users\bonjour\AppData\Local\PMB Files\7C\91\7C916E63D9D5EF78840D7E0FC80940982B74A0BE.ct1 [440]

O61 - LFC:Last File Created 14/10/2011 - 19:45:26 ---A- C:\Users\bonjour\AppData\Local\PMB Files\B5\93\B5935618A69AC4579E0508C578E0AD9C04AADC4D.ct1 [436]

O61 - LFC:Last File Created 14/10/2011 - 19:45:26 ---A- C:\Users\bonjour\AppData\Local\PMB Files\E6\C1\E6C1916687AB8AC3F07CAE9A7D51B90C1ACC04AD.ct1 [376]

O61 - LFC:Last File Created 14/10/2011 - 19:45:27 ---A- C:\Users\bonjour\AppData\Local\PMB Files\pando.save [38840]

O61 - LFC:Last File Created 14/10/2011 - 19:45:28 ---A- C:\Users\bonjour\AppData\Local\PMB Files\cert\cert8.db [65536]

O61 - LFC:Last File Created 14/10/2011 - 19:45:28 ---A- C:\Users\bonjour\AppData\Local\PMB Files\cert\key3.db [16384]

O61 - LFC:Last File Created 14/10/2011 - 19:45:52 ---A- C:\Users\bonjour\AppData\Local\Temp\ver3 [15774]

O61 - LFC:Last File Created 14/10/2011 - 19:51:36 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp5444 [2291]

O61 - LFC:Last File Created 14/10/2011 - 19:53:46 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Ip5444 [2291]

O61 - LFC:Last File Created 14/10/2011 - 22:28:51 ---A- C:\Users\bonjour\AppData\Roaming\TS3Client\cache\a3d6MkFHQm1qdnJwdDZnUVBMN1pJcGJmUEhBPQ==\clients\avatar_oflhggiemfpealadlmimbhbpakohfipnegdbadih [34224]

O61 - LFC:Last File Created 14/10/2011 - 23:02:48 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp4148 [1699]

O61 - LFC:Last File Created 15/01/2010 - 03:22:18 --HA- C:\Users\bonjour\AppData\Local\IconCache.db [2980458]

O61 - LFC:Last File Created 15/10/2011 - 12:33:52 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.main.xml [9885]

O61 - LFC:Last File Created 15/10/2011 - 13:16:28 ---A- C:\Users\bonjour\AppData\Local\Temp\ver4 [15774]

O61 - LFC:Last File Created 15/10/2011 - 13:18:04 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp4032 [2291]

O61 - LFC:Last File Created 15/10/2011 - 13:18:43 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Ip4032 [2291]

O61 - LFC:Last File Created 15/10/2011 - 13:21:56 ---A- C:\Users\bonjour\Downloads\glary-utilities_glary_utilities_2.38.0.1288_francais_73266.exe [6401096]

O61 - LFC:Last File Created 15/10/2011 - 13:23:06 ---A- C:\Users\bonjour\AppData\Local\Temp\~gu-ver.dat [124]

O61 - LFC:Last File Created 15/10/2011 - 13:30:33 ---A- C:\Users\bonjour\AppData\Roaming\GlarySoft\Glary Utilities\Backups\40831,6045425926 [156277]

O61 - LFC:Last File Created 15/10/2011 - 13:30:34 ---A- C:\Users\bonjour\AppData\Roaming\GlarySoft\Glary Utilities\Backups\40831,6045690162 [324]

O61 - LFC:Last File Created 15/10/2011 - 13:32:46 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp1208 [2302]

O61 - LFC:Last File Created 15/10/2011 - 13:32:52 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Ip1208 [2291]

O61 - LFC:Last File Created 15/10/2011 - 13:52:40 ---A- C:\Users\bonjour\AppData\Roaming\GlarySoft\Glary Utilities\Backups\40831,6199127315 [9311]

O61 - LFC:Last File Created 15/10/2011 - 13:52:40 ---A- C:\Users\bonjour\AppData\Roaming\GlarySoft\Glary Utilities\Backups\40831,6199142477 [245]

O61 - LFC:Last File Created 15/10/2011 - 13:56:18 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.qHp260 [2291]

O61 - LFC:Last File Created 15/10/2011 - 14:48:38 ---A- C:\Users\All Users\NVIDIA\Updatus\updtclient.log.bak [205]

O61 - LFC:Last File Created 15/10/2011 - 15:06:16 ---A- C:\Users\bonjour\Downloads\HiJackThis.msi [1402880]

O61 - LFC:Last File Created 15/10/2011 - 15:07:01 R--A- C:\Users\bonjour\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe [388096]

O61 - LFC:Last File Created 15/10/2011 - 15:15:12 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.jour.dat [252]

O61 - LFC:Last File Created 15/10/2011 - 15:20:50 ---A- C:\Users\bonjour\Downloads\Setup_Zeb-Utility.exe [1400897]

O61 - LFC:Last File Created 15/10/2011 - 15:26:05 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp3480 [2291]

O61 - LFC:Last File Created 15/10/2011 - 16:09:09 ---A- C:\Users\bonjour\AppData\Local\Temp\NiStandardMaterial\00000100-00000800-00000000-00080000-P.hlsl [4428]

O61 - LFC:Last File Created 15/10/2011 - 16:09:09 ---A- C:\Users\bonjour\AppData\Local\Temp\NiStandardMaterial\01000000-00000000-12000000-00000000-V.hlsl [3466]

O61 - LFC:Last File Created 15/10/2011 - 16:09:09 ---A- C:\Users\bonjour\AppData\Local\Temp\NiStandardMaterial_ps_3_0_DX9.cache [400]

O61 - LFC:Last File Created 15/10/2011 - 16:09:09 ---A- C:\Users\bonjour\AppData\Local\Temp\NiStandardMaterial_vs_3_0_DX9.cache [670]

O61 - LFC:Last File Created 15/10/2011 - 19:52:54 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp2752 [2291]

O61 - LFC:Last File Created 15/10/2011 - 19:52:57 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Ip2752 [2291]

O61 - LFC:Last File Created 15/10/2011 - 19:53:49 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp2840 [2291]

O61 - LFC:Last File Created 15/10/2011 - 19:55:06 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.qHp832 [2291]

O61 - LFC:Last File Created 15/10/2011 - 19:56:51 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp3024 [2291]

O61 - LFC:Last File Created 15/10/2011 - 20:00:30 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp2352 [2291]

O61 - LFC:Last File Created 15/10/2011 - 20:01:54 ---A- C:\Users\bonjour\Downloads\install_flash_player_32bit.exe [3760800]

O61 - LFC:Last File Created 15/10/2011 - 20:05:42 ---A- C:\Users\bonjour\Downloads\ZHPDiag2.exe [2563773]

O61 - LFC:Last File Created 15/10/2011 - 20:09:13 ---A- C:\Users\bonjour\AppData\Local\Temp\qt_temp.Hp2184 [2291]

O61 - LFC:Last File Created 22/09/2011 - 17:53:02 ---A- C:\Users\bonjour\Documents\LOLReplay\replays\client.ver [11]

O61 - LFC:Last File Created 22/09/2011 - 18:36:27 --H-- C:\Users\bonjour\Documents\LOLReplay\replays\.lrfcache [55690]

O61 - LFC:Last File Created 22/09/2011 - 19:49:14 ---A- C:\Users\bonjour\Documents\LOLReplay\recorder_log.txt [450]

O61 - LFC:Last File Created 23/06/2011 - 01:48:14 ---A- C:\Users\bonjour\AppData\Local\Google\Chrome\User Data\Default\Favicons [90112]

O61 - LFC:Last File Created 23/06/2011 - 01:48:15 ---A- C:\Users\bonjour\AppData\Local\Google\Chrome\User Data\Default\Cookies [187392]

O61 - LFC:Last File Created 23/06/2011 - 01:57:45 ---A- C:\Users\bonjour\AppData\Local\Google\Chrome\User Data\Default\History [172032]

~ Scan Files in 00mn 25s

 

 

 

---\\ Liste des outils de nettoyage (O63)

O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

O63 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7}

~ Scan ADS in 00mn 00s

 

 

 

---\\ Liste des services Legacy (O64)

O64 - Services: CurCS - 10/09/2008 - C:\Windows\system32\DRIVERS\AegisP.sys - AEGIS Protocol (IEEE 802.1x) v3.4.3.0(AegisP) .(.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) - LEGACY_AEGISP

O64 - Services: CurCS - 21/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2(driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2

O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\EagleXNt.sys (.not file.) - EagleXNt (EagleXNt) .(...) - LEGACY_EAGLEXNT

O64 - Services: CurCS - 21/01/2008 - C:\Windows\system32\drivers\nvraid.sys - NVIDIA nForce RAID Driver (nvraid) .(.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) - LEGACY_NVRAID

O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD

~ Scan Services in 00mn 01s

 

 

 

---\\ Liste des fichiers non signés (O65)

O65 - LUF:09/01/2004 (.Pas de propriétaire - ActiveSkin Module.) (4, 2, 7, 3) - c:\windows\system32\actskin4.ocx

O65 - LUF:17/05/2005 (.Pas de propriétaire - AegisInstall Application.) (3, 3, 0, 5) - c:\windows\system32\AegisI5.exe

O65 - LUF:18/01/2006 (.Pas de propriétaire - Install Dynamic Link Library.) (1, 0, 0, 1) - c:\windows\system32\Install7x.dll

~ Scan Sigcheck in 02mn 41s

 

 

 

---\\ File Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe

O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*

O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

~ Scan Keys in 00mn 00s

 

 

 

---\\ Start Menu Internet (O68)

O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\bonjour\AppData\Local\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

~ Scan Keys in 00mn 00s

 

 

 

---\\ Search Browser Infection (O69)

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - Google

O69 - SBI: SearchScopes [HKCU] {9D5BD211-422C-4164-9298-BB4186A30F31} - (Bing) - Bing

O69 - SBI: SearchScopes [HKCU] {BE43FA78-7C67-46C4-AC94-1B0BC7A0BD34} - (Google) - Google

~ Scan Keys in 00mn 00s

 

 

 

---\\ Firewall Active Exception List (FirewallRules) (O87)

O87 - FAEL: "{4F1DF216-E972-4D65-949C-5DAC2B5D9DCF}" | In - Private - P6 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe

O87 - FAEL: "{DE440D8F-B4F1-4E2A-9CB9-3579220FCBBF}" | In - Private - P17 - TRUE | .(.Valve Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe

O87 - FAEL: "TCP Query User{946B4108-C95C-4D18-8A65-163580FAE489}C:\program files\steam\steamapps\common\champions online\champions online\live\gameclient.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\steam\steamapps\common\champions online

O87 - FAEL: "UDP Query User{2B4A7436-F3F9-46E7-84D6-0FB0E9D9E7FA}C:\program files\steam\steamapps\common\champions online\champions online\live\gameclient.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\steam\steamapps\common\champions onlin

O87 - FAEL: "TCP Query User{306908C4-C6B1-46CB-8F0A-437238347ACE}C:\program files\steam\steamapps\common\fable 3\fable3.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\steam\steamapps\common\fable 3\fable3.exe (.not file.)

O87 - FAEL: "UDP Query User{0CD5BFCB-D4FF-4D48-AA18-05A96BC092A7}C:\program files\steam\steamapps\common\fable 3\fable3.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\steam\steamapps\common\fable 3\fable3.exe (.not file.)

O87 - FAEL: "{A85DF676-B8D7-4D77-A8BA-7465D5182AA1}" |In - Private - P6 - TRUE | .(...) -- C:\Users\bonjour\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe (.not file.)

O87 - FAEL: "{80AB280A-F8D5-4EAB-BD10-4C762063D06A}" |In - Private - P17 - TRUE | .(...) -- C:\Users\bonjour\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe (.not file.)

O87 - FAEL: "{BFF49153-09BE-4666-9726-0AF07FBDDF50}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe

O87 - FAEL: "{CE02C1AA-8CB3-45EC-9673-C0743A519754}" | In - Private - P6 - TRUE | .(...) -- C:\CherryDeGames\Dragon Nest\DragonNest.exe

O87 - FAEL: "{2E12C456-223C-4D54-8AA1-84AB3DF63C2A}" | In - Private - P17 - TRUE | .(...) -- C:\CherryDeGames\Dragon Nest\DragonNest.exe

O87 - FAEL: "{F4703130-93F3-49E0-A798-24754D23CCCB}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files\Battlelog Web Plugins\Sonar\0.70.0\SonarHost.exe (.not file.)

O87 - FAEL: "{51BFA708-8F61-47D6-97B8-495D48A6C7B3}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files\Battlelog Web Plugins\Sonar\0.70.0\SonarHost.exe (.not file.)

O87 - FAEL: "{B0F91192-E4CF-4A3A-9DD5-4CC1DF0A919F}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe

O87 - FAEL: "{C6344704-D6B0-480D-89A7-652DB60CB9A1}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe

O87 - FAEL: "{6EEAF9A2-4035-4092-989A-88BF6BF35F29}" | In - Private - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O87 - FAEL: "{2F38DE14-322C-441E-A246-A5E1FAE56CD8}" | In - Private - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O87 - FAEL: "{3265A17E-4EF6-492A-A037-B513A0352F95}" | In - Domain - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{A1A0AA84-9F1B-40C9-ADCB-85D1B7B55310}" | In - Domain - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{223B470F-A4F4-44FD-977B-0AE7294CF099}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{0E75F792-F0D9-45B3-9327-680D196FEB26}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{4A160FC8-F11E-4B3E-9407-E4D3A4608530}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files\Pando Networks\Media Booster\PMB.exe

O87 - FAEL: "{6766673B-709F-43AD-A6F5-55AAD687C926}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\CyberLink\PowerCinema\PCMService.exe (.not file.)

O87 - FAEL: "{109093D4-9839-4F23-8AAC-51A1D5155E28}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\CyberLink\PowerCinema\Kernel\DMP\CLBrowserEngine.exe (.not file.)

O87 - FAEL: "{3A35BD22-BCD1-4B52-90EB-2C0A009184C7}" |In - None - P17 - TRUE | .(...) -- C:\Program Files\CyberLink\PowerCinema\Kernel\DMS\CLMSService.exe (.not file.)

~ Scan Firewall in 00mn 01s

 

 

 

---\\ Scan Additionnel (O88)

Database Version : 8762 - (05/10/2011)

Clés trouvées (Keys found) : 4

Valeurs trouvées (Values found) : 0

Dossiers trouvés (Folders found) : 0

Fichiers trouvés (Files found) : 0

 

[HKCU\Software\Microsoft\handle] =>Malware.Trace

[HKCU\Software\NtWqIVLZEWZU] =>Trojan.FakeAlert

[HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\] =>Hijack.Zones

~ Scan Additionnel in 00mn 37s

 

 

 

---\\ Recherche détournement de DNS routeur (O89)

Serveur : UnKnown

Address: 192.168.1.254

Nom : www.l.google.com

Addresses: 74.125.39.99

74.125.39.104

74.125.39.103

74.125.39.106

74.125.39.147

74.125.39.105

Aliases: www.google.fr

www.google.com

~ Scan DNS in 00mn 02s

 

 

 

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Demand 28824 | (AIDA64Driver) . (...) - C:\Program Files\FinalWire\AIDA64 Extreme Edition\kerneld.x32

SS - | Disabled 10/09/2008 135664 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Disabled 10/09/2008 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe

SS - | Demand 10/10/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe

SS - | Disabled 0 | (NMIndexingService) . (...) - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

SR - | Auto 09/10/2011 599144 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe

SR - | Auto 01/07/2011 2255464 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

SR - | Auto 15/11/2008 81920 | (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc..) - C:\Windows\system32\IoctlSvc.exe

SR - | Auto 13/10/2011 370688 | (StarWindServiceAE) . (.StarWind Software.) - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

SS - | Demand 12/08/2011 407336 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe

SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

~ Scan Services in 00mn 03s

 

 

 

---\\ Recherche Master Boot Record Infection (MBR)(O80)

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover

~ Scan MBR in 00mn 05s

 

 

 

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by bonjour at 15/10/2011 21:20:05

 

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

~ Scan MBR in 00mn 07s

 

 

 

End of the scan (1516 lines in 05mn 46s)(0)

Lien vers le commentaire
Partager sur d’autres sites

Bonjour Aissuber

 

Pour les prochains rapports stp héberger le fichier sur Cjoint :D

 

Attention a certains programmes qui ne conviennent pas pour tout les système exploitation.

Zeb-Utility n'est que Pour (Win98 - WinMe - NT - 2000 - XP)

Ne pas l'utiliser sur un VISTA.Désinstalle-le stp ;)

 

AIDA64 Extreme Edition v1.80 c'est une version officiel acheté ?

 

Ton ordinateur est infecté,il faut absolument installer un antivirus sur cette machine.

BIEN LIRE LES INDICATIONS

 

Télécharger DeFogger de Jpshortstuff sur le bureau.

  • Double cliquer sur DeFogger pour démarrer l'outil.
  • Pour Vista et seven
    fais un clique droit sur l'icône et exécute en tant qu'administrateur.
  • La fenêtre de DeFogger apparaît
  • Cliquer sur le bouton Disable pour désactiver les pilotes d'émulateurs CD.
  • Cliquer sur Yes pour continuer.
    Un message 'Finished!' apparaîtra
  • Cliquer sur OK
  • DeFogger peut te demander de redémarrer la machine
    Clique sur OK
  • Ne réactive PAS ces pilotes avant la fin de la désinfection

 

  • Aprés Ferme toutes les applications ouvertes
  • Désactive tes défenses (anti-virus et anti-spyware)
  • Double-clique sur ZHPFix Un raccourci installé par ZHPDiag sur le Bureau
     
    Pour Vista et seven
    fais un clique droit sur l'icône et exécute en tant qu'administrateur
    zhpfix.jpg
    Sélectionne et surligne correctement avec la souris et "Clique droit > "Copier" ou "Ctrl+C"
    ces lignes ci dessous :
     
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
    P2 - FPN: [HKLM] [@esn.me/esnsonar,version=0.70.0] - (...) -- C:\Program Files\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll (.not file.)
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
    [MD5.00000000000000000000000000000000] [APT] [Extension de garantie-bonjour] (...) -- C:\Program Files\Packard Bell\SetupmyPC\PBCarNot.exe (.not file.)
    [HKCU\Software\89DGCM7LPJ]
    [HKCU\Software\8DDYX0ZBPZ]
    [HKCU\Software\NtWqIVLZEWZU]
    [HKCU\Software\OTGV1DNWQQ]
    [HKCU\Software\Symantec]
    [HKCU\Software\XBV6RD5SZF]
    [HKCU\Software\ZU6RKI1ONY]
    [HKLM\Software\Symantec]
    [HKCU\Software\Microsoft\handle]
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\]
    O43 - CFD: 23/06/2011 - 20:39:12 - [520120] ----D- C:\Program Files\Common Files\Symantec Shared
    O43 - CFD: 23/06/2011 - 20:19:14 - [51534] ----D- C:\ProgramData\Symantec
    O43 - CFD: 15/01/2010 - 15:34:18 - [0] ----D- C:\Users\bonjour\AppData\Roaming\Symantec
    O43 - CFD: 09/10/2011 - 04:18:58 - [941] --H-D- C:\Users\bonjour\AppData\Local\1FqwdgLtkB
    O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\drivers\EagleXNt.sys (.not file.) - EagleXNt (EagleXNt) .(...) - LEGACY_EAGLEXNT
     
    FirewallRAZ
    EmptyTemp
    EmptyFlash
  • Clique successivement sur l'icône H (pour effacer le rapport qui s'est affiché) icone-H.jpg puis sur l'icône de la "malette cachée par la feuille" malette-cachee.jpg .
     
  • Vérifie que toutes les lignes que je t'ai demandé de copier sont dans la fenêtre.
  • Et seulement ces lignes
  • Puis clique sur le bouton [OK]
  • A ce moment apparaîtra au début de chaque ligne
    une petite case vide. [ ]
  • Ensuite clique sur Tous puis sur Nettoyer
  • Valide par Oui la désinstallation des programmes si demandé
  • Laisse l'outil travailler. Si un redémarrage est demandé accepte et redémarre le PC
  • Le rapport ZHPFixReport.txt s'affiche. Copie-colle le contenu de ce rapport dans ta réponse.
     
    Le rapport ZHPFixReport.txt est enregistré sous C:\Program files\ZHPFix\ZHPFixReport.txt

 

  • Télécharge
Temp File Cleaner (TFC) de Old Timer :
•Enregistre-le sur le Bureau
•Enregistre (sauvegarde) tous tes travaux en cours et ferme les applications - quitte-les définitivement (l'outil les fermera de toute façon automatiquement)
•Double-clique sur TFC.exe (sous Vista - Windows 7 clique droit
"exécuter en tant qu'administrateur)
•Clique sur Start
•Laisse l'outil travailler (cela prend de quelques secondes à quelques minutes)
Si l'outil demande à redémarrer :
Clique sur Yes
•Si l'outil ne propose pas le redémarrage
redémarrer manuellement.
Dans la barre de TFC il va y avoir un chiffre noté en rouge
indique le moi.

 

Télécharge la dernier version MalwareByte's sur ton Bureau.

 

met a jour ta version présente sur ton pc V 1.51.2.1300

 

  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
    Une fois l'installation et la mise à jour effectuées :
  • Branche tes supports externes sur le pc (Clé USB,Disque Dur,etc..)
    Sans les ouvrirs
  • Exécute maintenant MalwareByte's Anti-Malware.
    sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche clique sur"Rechercher".
  • Coche toutes les cases de tes lecteurs
  • Une fois le scan terminé une fenêtre s'ouvre clique sur OK.
  • Si des infections sont présentes
    clique sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
  • poste le rapport dans ta prochaine réponse.

 

REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression accepte en cliquant sur Ok.

 

Post les rapports:

ZHPFixReport.txt

Mbam.log

 

A+

 

Aucunes réponse depuis une semane,sujet supprimer de mes suivis

Modifié par tomtom95
Lien vers le commentaire
Partager sur d’autres sites

  • Tonton a modifié le titre en Messages d'erreur : virus sur PC

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...