API tools faq
paste
Guest User

Untitled

a guest
May 15th, 2011
379
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 93.26 KB | None | 0 0
raw download clone embed print report
  1. Rapport de ZHPDiag v1.27.204 par Nicolas Coolman, Update du 14/05/2011
  2. Run by Amandine at 15/05/2011 18:37:51
  3. Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
  4.  
  5.  
  6. ---\\ Web Browser
  7. MSIE: Internet Explorer v9.0.8112.16421
  8. OPIE: Opera v11.10 (Defaut)
  9.  
  10. ---\\ System Information
  11. Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
  12. Processor: x86 Family 15 Model 76 Stepping 2, AuthenticAMD
  13. Operating System: 32 Bits
  14. Boot mode: Normal (Normal boot)
  15. Total RAM: 957 MB (37% free)
  16. System Restore: Activé (Enable)
  17. System drive C: has 10 GB (30%) free of 33 GB
  18.  
  19. ---\\ Logged in mode
  20. Computer Name: AMANDINE
  21. User Name: Amandine
  22. All Users Names: Amandine, Administrateur,
  23. Unselected Option: O45,O61,O62,O65,O66,O82
  24. Logged in as Administrator
  25.  
  26. ---\\ Environnement Variables
  27. %AppData%=C:\Users\Mme BINEAU\AppData\Roaming
  28. %LocalAppData%=C:\Users\Mme BINEAU\AppData\Local
  29. %StartMenu%=C:\Users\Mme BINEAU\AppData\Roaming\Microsoft\Windows\Start Menu
  30.  
  31. ---\\ DOS/Devices
  32. C:\ Hard drive, Flash drive, Thumb drive (Free 10 Go of 33 Go)
  33. D:\ Hard drive, Flash drive, Thumb drive (Free 23 Go of 33 Go)
  34. F:\ CD-ROM drive (Free 0 Go of 0 Go)
  35.  
  36.  
  37.  
  38. ---\\ Security Center & Tools Informations
  39. [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
  40. [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
  41. [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
  42. [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
  43. [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
  44. [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
  45. [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
  46. [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
  47. [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
  48. [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
  49. [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
  50. [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
  51. [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
  52. [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
  53. [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
  54. [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
  55. [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
  56. [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
  57. [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
  58. [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
  59. [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
  60. [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
  61. [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
  62. [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
  63.  
  64.  
  65.  
  66. ---\\ Recherche particulière de fichiers génériques
  67. [MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
  68. [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.19/01/2008 08:33:37.) -- C:\Windows\system32\Wininit.exe [96768]
  69. [MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.10/04/2011 12:53:10.) -- C:\Windows\system32\wininet.dll [1126912]
  70. [MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 07:28:13.) -- C:\Windows\system32\Winlogon.exe [314368]
  71. [MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 07:32:26.) -- C:\Windows\system32\drivers\atapi.sys [19944]
  72. [MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 07:32:49.) -- C:\Windows\system32\drivers\ntfs.sys [1083880]
  73.  
  74.  
  75.  
  76. ---\\ Processus lancés
  77. [MD5.32E4E820EDBD675009605F90DD97EE6C] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [4186112]
  78. [MD5.4C6898F15701AE7C41775C14E423FE25] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3459712]
  79. [MD5.AC42E793F760034FC6F0BACB17E94003] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [646144]
  80.  
  81.  
  82.  
  83. ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
  84. P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
  85. P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.9.620.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
  86. P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_25 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
  87. P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
  88. P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60310.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
  89. P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.53\npGoogleUpdate3.dll
  90. P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.53\npGoogleUpdate3.dll
  91.  
  92.  
  93.  
  94. ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
  95. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
  96. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
  97. R0 - HKUS\S-1-5-21-2280735587-2711250404-1988597715-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
  98. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
  99. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
  100. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
  101. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
  102. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
  103. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
  104. R1 - HKUS\S-1-5-21-2280735587-2711250404-1988597715-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = yahoo! search
  105. R1 - HKUS\S-1-5-21-2280735587-2711250404-1988597715-1000\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com
  106. R1 - HKUS\S-1-5-21-2280735587-2711250404-1988597715-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
  107. R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\system32\ieframe.dll
  108. R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
  109.  
  110.  
  111.  
  112. ---\\ Internet Explorer, Proxy Management (R5)
  113. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
  114. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
  115. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
  116. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
  117. R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
  118. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
  119. R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
  120. R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
  121. R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
  122.  
  123.  
  124.  
  125. ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
  126. F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
  127. F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
  128.  
  129.  
  130.  
  131. ---\\ Browser Helper Objects de navigateur (O2)
  132. O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
  133. O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  134. O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
  135.  
  136.  
  137.  
  138. ---\\ ---\\ Applications démarrées par registre & par dossier (O4)
  139. O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe
  140. O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
  141. O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
  142. O4 - HKUS\S-1-5-21-2280735587-2711250404-1988597715-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
  143.  
  144.  
  145.  
  146. ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
  147. O9 - Extra button: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} . (...) -- C:\Windows\bdoscandel.exe
  148.  
  149.  
  150.  
  151. ---\\ Winsock hijacker (Layered Service Provider) (O10)
  152. O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
  153. O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
  154. O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
  155. O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
  156. O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
  157. O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
  158. O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
  159.  
  160.  
  161.  
  162. ---\\ Objets ActiveX (Downloaded Program Files)(O16)
  163. O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
  164. O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab
  165. O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://www.ma-config.com/plugins/MaConfig_5_1_2_3.cab
  166. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
  167. O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
  168.  
  169.  
  170.  
  171. ---\\ Modification Domaine/Adresses DNS (O17)
  172. O17 - HKLM\System\CCS\Services\Tcpip\..\{A63B7DF5-DB16-489E-BC8E-84EE65464F7C}: DhcpNameServer = 192.168.1.1 192.168.1.1
  173. O17 - HKLM\System\CCS\Services\Tcpip\..\{D28A4C51-28A7-4327-B9BD-8114B2B53BB1}: DhcpNameServer = 192.168.1.1 192.168.1.1
  174. O17 - HKLM\System\CS1\Services\Tcpip\..\{A63B7DF5-DB16-489E-BC8E-84EE65464F7C}: DhcpNameServer = 192.168.1.1 192.168.1.1
  175. O17 - HKLM\System\CS1\Services\Tcpip\..\{D28A4C51-28A7-4327-B9BD-8114B2B53BB1}: DhcpNameServer = 192.168.1.1 192.168.1.1
  176. O17 - HKLM\System\CS2\Services\Tcpip\..\{A63B7DF5-DB16-489E-BC8E-84EE65464F7C}: DhcpNameServer = 192.168.1.1 192.168.1.1
  177. O17 - HKLM\System\CS2\Services\Tcpip\..\{D28A4C51-28A7-4327-B9BD-8114B2B53BB1}: DhcpNameServer = 192.168.1.1 192.168.1.1
  178. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
  179.  
  180.  
  181.  
  182. ---\\ Protocole additionnel et piratage de protocole (O18)
  183. O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
  184.  
  185.  
  186.  
  187. ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
  188. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
  189.  
  190.  
  191.  
  192. ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
  193. O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll
  194.  
  195.  
  196.  
  197. ---\\ Liste des services NT non Microsoft et non désactivés (O23)
  198. O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  199. O23 - Service: (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\system32\Ati2evxx.exe
  200. O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
  201. O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
  202. O23 - Service: (eLockService) . (.Acer Inc. - Acer eLock Management.) - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
  203. O23 - Service: (eNet Service) . (.Acer Inc. - acer eNet Management Service.) - C:\Acer\Empowering Technology\eNet\eNet Service.exe
  204. O23 - Service: (eRecoveryService) . (.Acer Inc. - eRecoveryService.) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
  205. O23 - Service: (eSettingsService) . (.Pas de propriétaire - Service.) - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
  206. O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
  207. O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
  208. O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (32-bit).) - C:\Program Files\iPod\bin\iPodService.exe
  209. O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - Pas de description.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
  210. O23 - Service: (maconfservice) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\maconfservice.exe
  211. O23 - Service: (MobilityService) . (...) - C:\Acer\Mobility Center\MobilityService.exe
  212. O23 - Service: (NMSAccessU) . (...) - C:\Program Files\CDBurnerXP\NMSAccessU.exe
  213. O23 - Service: (Steam Client Service) . (.Valve Corporation - Steam Client Service.) - C:\Program Files\Common Files\Steam\SteamService.exe
  214. O23 - Service: (WMIService) . (.acer - WMIServi Application.) - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
  215. O23 - Service: (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\system32\DRIVERS\xaudio.exe
  216.  
  217.  
  218.  
  219. ---\\ Enumération Active Desktop & MHTML Editor (O24)
  220. O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Word.) - C:\Program Files\Microsoft Office\Office10\WINWORD.exe
  221.  
  222.  
  223.  
  224. ---\\ Tâches planifiées en automatique (O39)
  225. [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
  226. [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
  227. [MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
  228.  
  229.  
  230.  
  231. ---\\ Pilotes lancés au démarrage (O41)
  232. O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
  233. O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
  234. O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
  235. O41 - Driver: (DritekPortIO) . (.Dritek System Inc. - General Port I/O.) - C:\PROGRA~1\LAUNCH~1\DPortIO.sys
  236. O41 - Driver: (ElbyCDIO) . (.Elaborate Bytes AG - ElbyCD Windows NT/2000/XP I/O driver.) - C:\Windows\System32\Drivers\ElbyCDIO.sys
  237. O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
  238. O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
  239. O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
  240. O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
  241. O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
  242. O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
  243. O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
  244. O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
  245. O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
  246. O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
  247. O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
  248. O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
  249. O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
  250. O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
  251. O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
  252. O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
  253. O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
  254.  
  255.  
  256.  
  257. ---\\ Logiciels installés (O42)
  258. O42 - Logiciel: 7-Zip 4.65 - (.Pas de propriétaire.) [HKLM] -- 7-Zip
  259. O42 - Logiciel: ATI Uninstaller - (.ATI Technologies, Inc..) [HKLM] -- ATI Uninstaller
  260. O42 - Logiciel: Acer Empowering Technology - (.Acer Inc..) [HKLM] -- {AB6097D9-D722-4987-BD9E-A076E2848EE2}
  261. O42 - Logiciel: Acer GridVista - (.Pas de propriétaire.) [HKLM] -- GridVista
  262. O42 - Logiciel: Acer Mobility Center Plug-In - (.Acer Inc..) [HKLM] -- {11316260-6666-467B-AC34-183FCB5D4335}
  263. O42 - Logiciel: Acer OrbiCam - (.Acer OrbiCam.) [HKLM] -- {DD1DED37-2486-4F56-8F89-56AA814003F5}
  264. O42 - Logiciel: Acer OrbiCam - (.Pas de propriétaire.) [HKLM] -- {4BB1DCED-84D3-47F9-B718-5947E904593E}
  265. O42 - Logiciel: Acer eLock Management - (.Acer Inc..) [HKLM] -- {116FF17B-1A30-4FC2-9B01-5BC5BD46B0B3}
  266. O42 - Logiciel: Acer eNet Management - (.Acer Inc..) [HKLM] -- {C06554A1-2C1E-4D20-B613-EE62C79927CC}
  267. O42 - Logiciel: Acer ePower Management - (.Acer Inc..) [HKLM] -- {58E5844B-7CE2-413D-83D1-99294BF6C74F}
  268. O42 - Logiciel: Acer ePresentation Management - (.Acer Inc..) [HKLM] -- {BF839132-BD43-4056-ACBF-4377F4A88E2A}
  269. O42 - Logiciel: Acer eSettings Management - (.Acer Inc..) [HKLM] -- {CE65A9A0-9686-45C6-9098-3C9543A412F0}
  270. O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
  271. O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
  272. O42 - Logiciel: Adobe Reader 9.2 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A92000000001}
  273. O42 - Logiciel: Adobe Shockwave Player 11.5 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
  274. O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}
  275. O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {B607C354-CD79-4D22-86D1-92DC94153F42}
  276. O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {CACAEB5F-174D-4C7C-AC56-A33289A807CA}
  277. O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
  278. O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
  279. O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {D3116CC7-24DC-4CA3-9CE1-23FED836E9F2}
  280. O42 - Logiciel: Atheros for Acer Driver v7.2.0.127_Foxconn Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
  281. O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
  282. O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
  283. O42 - Logiciel: Broadcom Driver v4.102.15.63_Foxconn Installation Program - (.Broadcom.) [HKLM] -- {88410D8F-8529-492B-B556-2394A29B811B}
  284. O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
  285. O42 - Logiciel: CDBurnerXP - (.Canneverbe Limited.) [HKLM] -- {5932A5C4-BB44-4CFB-AD66-1B826F4D788B}
  286. O42 - Logiciel: EPSON SX110 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX110 Series
  287. O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1}
  288. O42 - Logiciel: Gestionnaire pour appareils Windows Mobile - (.Microsoft Corporation.) [HKLM] -- {904CCF62-818D-4675-BC76-D37EB399F917}
  289. O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
  290. O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
  291. O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
  292. O42 - Logiciel: ImgBurn - (.LIGHTNING UK!.) [HKLM] -- ImgBurn
  293. O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
  294. O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {133742BA-6F46-4D3E-85AF-78631D9AD8B8}
  295. O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}
  296. O42 - Logiciel: Java(TM) 6 Update 24 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216024FF}
  297. O42 - Logiciel: Java(TM) 6 Update 25 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216010FF}
  298. O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
  299. O42 - Logiciel: Launch Manager - (.Pas de propriétaire.) [HKLM] -- LManager
  300. O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
  301. O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F}
  302. O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF}
  303. O42 - Logiciel: MSXML 4.0 SP2 (KB941833) - (.Microsoft Corporation.) [HKLM] -- {C523D256-313D-4866-B36A-F3DE528246EF}
  304. O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
  305. O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
  306. O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
  307. O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {7DB4CB30-B94A-4282-AC8A-C86F615AA45B}
  308. O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
  309. O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
  310. O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
  311. O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297) - (.Pas de propriétaire.) [HKLM] -- M953297
  312. O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
  313. O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
  314. O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
  315. O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
  316. O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}
  317. O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
  318. O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
  319. O42 - Logiciel: Microsoft Office XP Professional avec FrontPage - (.Microsoft Corporation.) [HKLM] -- {9028040C-6000-11D3-8CFE-0050048383C9}
  320. O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
  321. O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
  322. O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118}
  323. O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
  324. O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {a0fe116e-9a8a-466f-aee0-625cb7c207e3}
  325. O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
  326. O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
  327. O42 - Logiciel: Module de compatibilité pour Microsoft Office System 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-040C-0000-0000000FF1CE}
  328. O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
  329. O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
  330. O42 - Logiciel: Mp3tag v2.48 - (.Florian Heidenreich.) [HKLM] -- Mp3tag
  331. O42 - Logiciel: NTI Backup NOW! 4.7 - (.NewTech Infosystems.) [HKLM] -- {67ADE9AF-5CD9-4089-8825-55DE4B366799}
  332. O42 - Logiciel: NTI CD & DVD-Maker - (.NewTech Infosystems.) [HKLM] -- InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2}
  333. O42 - Logiciel: OpenOffice.org 2.0 - (.OpenOffice.org.) [HKLM] -- {E2C356F6-84B5-4CCB-8FED-12E0F1C2E97B}
  334. O42 - Logiciel: Opera 11.10 - (.Opera Software ASA.) [HKLM] -- Opera 11.10.2092
  335. O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238}
  336. O42 - Logiciel: Picasa 2 - (.Google, Inc..) [HKLM] -- Picasa2
  337. O42 - Logiciel: Plants vs. Zombies Demo - (.PopCap.) [HKLM] -- Steam App 3592
  338. O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
  339. O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {A429C2AE-EBF1-4F81-A221-1C115CAADDAD}
  340. O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
  341. O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
  342. O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
  343. O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
  344. O42 - Logiciel: Skype™ 4.0 - (.Skype Technologies S.A..) [HKLM] -- {24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}
  345. O42 - Logiciel: Skype™ 5.3 - (.Skype Technologies S.A..) [HKLM] -- {5335DADB-34BA-4AE8-A519-648D78498846}
  346. O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
  347. O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
  348. O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
  349. O42 - Logiciel: TV sur PC - (.SFR.) [HKLM] -- Neuf_TV_PC
  350. O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
  351. O42 - Logiciel: VLC media player 1.1.8 - (.VideoLAN.) [HKLM] -- VLC media player
  352. O42 - Logiciel: VirtualCloneDrive - (.Elaborate Bytes.) [HKLM] -- VirtualCloneDrive
  353. O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}
  354. O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01
  355. O42 - Logiciel: WhoCrashed 3.01 - (.Resplendence Software Projects Sp..) [HKLM] -- WhoCrashed_is1
  356. O42 - Logiciel: Windows Installer Clean Up - (.Microsoft Corporation.) [HKLM] -- {121634B0-2F4B-11D3-ADA3-00C04F52DD52}
  357. O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
  358. O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
  359. O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
  360. O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {ED00D08A-3C5F-488D-93A0-A04F21F23956}
  361. O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
  362. O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
  363. O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
  364. O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1}
  365. O42 - Logiciel: Wise Registry Cleaner 5.9.4 - (.ZhiQing Soft, Inc..) [HKLM] -- Wise Registry Cleaner_is1
  366. O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM] -- avast
  367. O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {2A697B53-0DE3-42DA-B41D-C3F804B1C538}
  368. O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {D1A74FBB-CA8D-4CCA-9B89-BAAA436DB178}
  369.  
  370. ---\\ HKCU & HKLM Software Keys
  371. [HKCU\Software\7-Zip]
  372. [HKCU\Software\ALWIL Software]
  373. [HKCU\Software\ATI Technologies Inc.]
  374. [HKCU\Software\ATI]
  375. [HKCU\Software\AVAST Software]
  376. [HKCU\Software\Acer]
  377. [HKCU\Software\Adobe]
  378. [HKCU\Software\AppDataLow\Software\Adobe]
  379. [HKCU\Software\AppDataLow\Software\Microsoft]
  380. [HKCU\Software\AppDataLow\Software\Yahoo]
  381. [HKCU\Software\AppDataLow\Software]
  382. [HKCU\Software\AppDataLow]
  383. [HKCU\Software\Apple Computer, Inc.]
  384. [HKCU\Software\Apple Inc.]
  385. [HKCU\Software\AusLogics]
  386. [HKCU\Software\Avid Technology GmbH]
  387. [HKCU\Software\CDBurnerXP]
  388. [HKCU\Software\CDDB]
  389. [HKCU\Software\Canneverbe Limited]
  390. [HKCU\Software\Classes]
  391. [HKCU\Software\Clients]
  392. [HKCU\Software\Compal]
  393. [HKCU\Software\CyberLink]
  394. [HKCU\Software\DivXNetworks]
  395. [HKCU\Software\EPSON]
  396. [HKCU\Software\ESTsoft]
  397. [HKCU\Software\Elaborate Bytes]
  398. [HKCU\Software\Google]
  399. [HKCU\Software\Hewlett-Packard]
  400. [HKCU\Software\HookNetwork]
  401. [HKCU\Software\IDAVLab]
  402. [HKCU\Software\IM Providers]
  403. [HKCU\Software\ImgBurn]
  404. [HKCU\Software\InstallShield]
  405. [HKCU\Software\JavaSoft]
  406. [HKCU\Software\LinchpinLabs]
  407. [HKCU\Software\Local AppWizard-Generated Applications]
  408. [HKCU\Software\Macromedia]
  409. [HKCU\Software\Malwarebytes' Anti-Malware]
  410. [HKCU\Software\Netscape]
  411. [HKCU\Software\NewTech Infosystems]
  412. [HKCU\Software\ODBC]
  413. [HKCU\Software\Opera Software]
  414. [HKCU\Software\Orange]
  415. [HKCU\Software\Piriform]
  416. [HKCU\Software\Policies]
  417. [HKCU\Software\Printers]
  418. [HKCU\Software\Realtek]
  419. [HKCU\Software\Resplendence Sp]
  420. [HKCU\Software\Safer Networking Limited]
  421. [HKCU\Software\Skype]
  422. [HKCU\Software\SteamPopCap]
  423. [HKCU\Software\Synaptics]
  424. [HKCU\Software\Sysinternals]
  425. [HKCU\Software\TriggerSoftware]
  426. [HKCU\Software\VB and VBA Program Settings]
  427. [HKCU\Software\VOB]
  428. [HKCU\Software\Valve]
  429. [HKCU\Software\cybelsoft]
  430. [HKCU\Software\nSplitter]
  431. [HKLM\Software\ABBYY]
  432. [HKLM\Software\ALWIL Software]
  433. [HKLM\Software\AMD]
  434. [HKLM\Software\ATI Technologies]
  435. [HKLM\Software\ATI]
  436. [HKLM\Software\AVAST Software]
  437. [HKLM\Software\Acer OrbiCam]
  438. [HKLM\Software\Acer]
  439. [HKLM\Software\Adobe]
  440. [HKLM\Software\AppDataLow]
  441. [HKLM\Software\Apple Computer, Inc.]
  442. [HKLM\Software\Apple Inc.]
  443. [HKLM\Software\Atheros]
  444. [HKLM\Software\Avid Technology GmbH]
  445. [HKLM\Software\BS_StillCap]
  446. [HKLM\Software\BisonCam]
  447. [HKLM\Software\Broadcom]
  448. [HKLM\Software\BrowserChoice]
  449. [HKLM\Software\CXT]
  450. [HKLM\Software\Caphyon]
  451. [HKLM\Software\Classes]
  452. [HKLM\Software\Clients]
  453. [HKLM\Software\Compal]
  454. [HKLM\Software\Conexant]
  455. [HKLM\Software\ENE Technology Inc]
  456. [HKLM\Software\EPSON]
  457. [HKLM\Software\ESTsoft]
  458. [HKLM\Software\Elaborate Bytes]
  459. [HKLM\Software\Florian Heidenreich]
  460. [HKLM\Software\GEAR Software]
  461. [HKLM\Software\Google]
  462. [HKLM\Software\Hewlett-Packard]
  463. [HKLM\Software\InstallShield]
  464. [HKLM\Software\InstalledOptions]
  465. [HKLM\Software\Intel]
  466. [HKLM\Software\JavaSoft]
  467. [HKLM\Software\JreMetrics]
  468. [HKLM\Software\Licenses]
  469. [HKLM\Software\LightScribe]
  470. [HKLM\Software\Macromedia]
  471. [HKLM\Software\Malwarebytes' Anti-Malware]
  472. [HKLM\Software\MozillaPlugins]
  473. [HKLM\Software\Netscape]
  474. [HKLM\Software\Neuf]
  475. [HKLM\Software\NewTech Infosystems]
  476. [HKLM\Software\ODBC]
  477. [HKLM\Software\OpenOffice.org]
  478. [HKLM\Software\Opera Software]
  479. [HKLM\Software\Piriform]
  480. [HKLM\Software\Policies]
  481. [HKLM\Software\Realtek]
  482. [HKLM\Software\RegisteredApplications]
  483. [HKLM\Software\Safer Networking Limited]
  484. [HKLM\Software\SecureDigitalServices]
  485. [HKLM\Software\Skype]
  486. [HKLM\Software\Smart PC Utilities]
  487. [HKLM\Software\Sonic]
  488. [HKLM\Software\Swearware]
  489. [HKLM\Software\SymNRT]
  490. [HKLM\Software\Synaptics]
  491. [HKLM\Software\TrendMicro]
  492. [HKLM\Software\USB2800]
  493. [HKLM\Software\Valve]
  494. [HKLM\Software\VideoLAN]
  495. [HKLM\Software\Volatile]
  496. [HKLM\Software\WebCam]
  497. [HKLM\Software\WholeSecurity]
  498. [HKLM\Software\Windows]
  499. [HKLM\Software\WiseCleaner]
  500. [HKLM\Software\cybelsoft]
  501. [HKLM\Software\nSplitter]
  502.  
  503.  
  504.  
  505. ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
  506. O43 - CFD: 06/11/2009 - 16:51:08 - [3094515] ----D- C:\Program Files\7-Zip
  507. O43 - CFD: 21/10/2009 - 10:17:18 - [1290312] ----D- C:\Program Files\Acer Inc
  508. O43 - CFD: 23/10/2009 - 15:39:42 - [160242488] ----D- C:\Program Files\Adobe
  509. O43 - CFD: 14/07/2010 - 15:21:22 - [156485596] ----D- C:\Program Files\Alwil Software
  510. O43 - CFD: 05/04/2010 - 13:27:22 - [2306366] ----D- C:\Program Files\Apple Software Update
  511. O43 - CFD: 23/01/2007 - 15:59:12 - [14621229] ----D- C:\Program Files\ATI
  512. O43 - CFD: 23/01/2007 - 16:00:38 - [236700468] ----D- C:\Program Files\ATI Technologies
  513. O43 - CFD: 02/04/2011 - 13:25:48 - [9590626] ----D- C:\Program Files\Auslogics
  514. O43 - CFD: 10/04/2011 - 16:17:24 - [599989] ----D- C:\Program Files\Bonjour
  515. O43 - CFD: 03/05/2011 - 21:15:20 - [3728928] ----D- C:\Program Files\CCleaner
  516. O43 - CFD: 12/01/2010 - 17:39:10 - [13567680] ----D- C:\Program Files\CDBurnerXP
  517. O43 - CFD: 02/05/2011 - 22:50:40 - [701276515] ----D- C:\Program Files\Common Files
  518. O43 - CFD: 23/10/2009 - 15:47:34 - [1723967] ----D- C:\Program Files\DivX
  519. O43 - CFD: 09/02/2010 - 16:30:50 - [2127986] ----D- C:\Program Files\Elaborate Bytes
  520. O43 - CFD: 21/09/2010 - 11:53:38 - [574761] ----D- C:\Program Files\eMule
  521. O43 - CFD: 07/02/2010 - 12:01:40 - [0] ----D- C:\Program Files\epson
  522. O43 - CFD: 07/02/2010 - 12:01:40 - [0] ----D- C:\Program Files\Epson Software
  523. O43 - CFD: 21/07/2007 - 10:09:46 - [0] -SH-D- C:\Program Files\Fichiers communs
  524. O43 - CFD: 01/05/2011 - 08:38:12 - [3914568] ----D- C:\Program Files\Google
  525. O43 - CFD: 14/03/2010 - 15:47:34 - [2226727] ----D- C:\Program Files\ImgBurn
  526. O43 - CFD: 07/02/2010 - 11:48:26 - [42539718] --H-D- C:\Program Files\InstallShield Installation Information
  527. O43 - CFD: 10/04/2011 - 13:54:52 - [7403987] ----D- C:\Program Files\Internet Explorer
  528. O43 - CFD: 04/11/2009 - 15:50:56 - [1856627] ----D- C:\Program Files\iPod
  529. O43 - CFD: 10/04/2011 - 16:23:56 - [147438526] ----D- C:\Program Files\iTunes
  530. O43 - CFD: 02/05/2011 - 22:50:14 - [89268076] ----D- C:\Program Files\Java
  531. O43 - CFD: 21/07/2007 - 10:20:34 - [2148200] ----D- C:\Program Files\Launch Manager
  532. O43 - CFD: 14/05/2011 - 18:16:16 - [6093848] ----D- C:\Program Files\ma-config.com
  533. O43 - CFD: 07/01/2011 - 21:48:16 - [4975759] ----D- C:\Program Files\Malwarebytes' Anti-Malware
  534. O43 - CFD: 04/11/2009 - 16:33:00 - [226432] ----D- C:\Program Files\Microsoft
  535. O43 - CFD: 21/07/2007 - 13:29:36 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
  536. O43 - CFD: 02/11/2006 - 14:37:36 - [93446071] ----D- C:\Program Files\Microsoft Games
  537. O43 - CFD: 09/02/2010 - 16:40:14 - [110936906] ----D- C:\Program Files\Microsoft Office
  538. O43 - CFD: 09/05/2011 - 18:58:40 - [38388859] ----D- C:\Program Files\Microsoft Silverlight
  539. O43 - CFD: 04/11/2007 - 22:34:12 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
  540. O43 - CFD: 24/06/2010 - 00:03:36 - [15715] ----D- C:\Program Files\Microsoft.NET
  541. O43 - CFD: 15/09/2010 - 22:35:26 - [99342446] ----D- C:\Program Files\Movie Maker
  542. O43 - CFD: 10/04/2011 - 18:04:00 - [6770968] ----D- C:\Program Files\Mp3tag
  543. O43 - CFD: 02/11/2006 - 14:37:36 - [25757] ----D- C:\Program Files\MSBuild
  544. O43 - CFD: 09/02/2010 - 16:37:16 - [40813917] ----D- C:\Program Files\MSECACHE
  545. O43 - CFD: 15/05/2011 - 17:15:42 - [0] ----D- C:\Program Files\MSN
  546. O43 - CFD: 21/07/2007 - 11:46:14 - [0] ----D- C:\Program Files\MSXML 4.0
  547. O43 - CFD: 23/01/2007 - 16:12:10 - [48998359] ----D- C:\Program Files\NewTech Infosystems
  548. O43 - CFD: 21/07/2007 - 12:10:50 - [209076050] ----D- C:\Program Files\OpenOffice.org 2.0
  549. O43 - CFD: 02/05/2011 - 22:31:30 - [31682213] ----D- C:\Program Files\Opera
  550. O43 - CFD: 25/11/2007 - 19:44:40 - [36628578] ----D- C:\Program Files\Picasa2
  551. O43 - CFD: 10/04/2011 - 16:15:28 - [76530491] ----D- C:\Program Files\QuickTime
  552. O43 - CFD: 23/01/2007 - 16:06:28 - [11320082] ----D- C:\Program Files\Realtek
  553. O43 - CFD: 02/11/2006 - 14:37:36 - [38694657] ----D- C:\Program Files\Reference Assemblies
  554. O43 - CFD: 22/12/2009 - 21:08:58 - [18723911] ----D- C:\Program Files\SFR
  555. O43 - CFD: 02/04/2011 - 13:09:10 - [19051791] R---D- C:\Program Files\Skype
  556. O43 - CFD: 06/01/2011 - 23:47:16 - [53640149] ----D- C:\Program Files\Spybot - Search & Destroy
  557. O43 - CFD: 23/01/2007 - 16:08:36 - [13365574] ----D- C:\Program Files\Synaptics
  558. O43 - CFD: 02/11/2006 - 15:01:56 - [0] --H-D- C:\Program Files\Uninstall Information
  559. O43 - CFD: 21/07/2007 - 12:44:30 - [83417593] ----D- C:\Program Files\VideoLAN
  560. O43 - CFD: 15/05/2011 - 15:00:10 - [5157676] ----D- C:\Program Files\WhoCrashed
  561. O43 - CFD: 21/10/2009 - 10:50:06 - [1016832] ----D- C:\Program Files\Windows Calendar
  562. O43 - CFD: 21/10/2009 - 10:50:04 - [2737152] ----D- C:\Program Files\Windows Collaboration
  563. O43 - CFD: 21/10/2009 - 10:50:02 - [4490624] ----D- C:\Program Files\Windows Defender
  564. O43 - CFD: 29/12/2009 - 13:55:18 - [142742] ----D- C:\Program Files\Windows Installer Clean Up
  565. O43 - CFD: 21/10/2009 - 10:50:04 - [7084664] ----D- C:\Program Files\Windows Journal
  566. O43 - CFD: 04/11/2009 - 16:36:00 - [117478461] ----D- C:\Program Files\Windows Live
  567. O43 - CFD: 04/11/2009 - 16:32:48 - [245112] ----D- C:\Program Files\Windows Live SkyDrive
  568. O43 - CFD: 19/12/2010 - 15:07:14 - [9116344] ----D- C:\Program Files\Windows Mail
  569. O43 - CFD: 16/10/2010 - 00:00:48 - [4498121] ----D- C:\Program Files\Windows Media Player
  570. O43 - CFD: 21/07/2007 - 10:09:46 - [7957544] ----D- C:\Program Files\Windows NT
  571. O43 - CFD: 21/10/2009 - 10:50:04 - [13528738] ----D- C:\Program Files\Windows Photo Gallery
  572. O43 - CFD: 27/03/2010 - 20:48:32 - [134144] ----D- C:\Program Files\Windows Portable Devices
  573. O43 - CFD: 10/04/2011 - 16:45:14 - [6729719] ----D- C:\Program Files\Windows Sidebar
  574. O43 - CFD: 02/04/2011 - 13:30:52 - [29179817] ----D- C:\Program Files\Wise Registry Cleaner
  575. O43 - CFD: 15/05/2011 - 18:37:56 - [3928409] ----D- C:\Program Files\ZHPDiag
  576. O43 - CFD: 23/10/2009 - 15:40:02 - [12482893] ----D- C:\Program Files\Common Files\Adobe
  577. O43 - CFD: 04/11/2009 - 15:50:54 - [91476878] ----D- C:\Program Files\Common Files\Apple
  578. O43 - CFD: 23/10/2009 - 15:03:14 - [86016] ----D- C:\Program Files\Common Files\Designer
  579. O43 - CFD: 21/07/2007 - 10:16:18 - [8027225] ----D- C:\Program Files\Common Files\InstallShield
  580. O43 - CFD: 02/05/2011 - 22:50:40 - [1252295] ----D- C:\Program Files\Common Files\Java
  581. O43 - CFD: 23/01/2007 - 16:11:48 - [7146110] ----D- C:\Program Files\Common Files\LightScribe
  582. O43 - CFD: 09/02/2010 - 16:40:40 - [292124815] ----D- C:\Program Files\Common Files\microsoft shared
  583. O43 - CFD: 23/01/2007 - 16:12:12 - [2284846] ----D- C:\Program Files\Common Files\NewTech Infosystems
  584. O43 - CFD: 23/04/2008 - 22:24:32 - [3926944] ----D- C:\Program Files\Common Files\PX Storage Engine
  585. O43 - CFD: 02/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services
  586. O43 - CFD: 02/04/2011 - 13:09:22 - [2254216] ----D- C:\Program Files\Common Files\Skype
  587. O43 - CFD: 02/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines
  588. O43 - CFD: 07/11/2010 - 14:21:14 - [316664] ----D- C:\Program Files\Common Files\Steam
  589. O43 - CFD: 21/10/2009 - 10:50:04 - [16194082] ----D- C:\Program Files\Common Files\System
  590. O43 - CFD: 28/03/2010 - 12:52:20 - [188331244] ----D- C:\Program Files\Common Files\Windows Live
  591. O43 - CFD: 07/03/2008 - 19:25:40 - [34267850] -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller
  592. O43 - CFD: 23/10/2009 - 16:09:26 - [1527] ----D- C:\ProgramData\Adobe
  593. O43 - CFD: 14/07/2010 - 15:21:22 - [3555589] ----D- C:\ProgramData\Alwil Software
  594. O43 - CFD: 30/12/2008 - 21:52:04 - [123903488] ----D- C:\ProgramData\Apple
  595. O43 - CFD: 30/12/2008 - 21:58:14 - [311002881] ----D- C:\ProgramData\Apple Computer
  596. O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Application Data
  597. O43 - CFD: 21/07/2007 - 10:09:46 - [0] -SH-D- C:\ProgramData\Bureau
  598. O43 - CFD: 12/01/2010 - 17:38:50 - [28] ----D- C:\ProgramData\Canneverbe Limited
  599. O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Desktop
  600. O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Documents
  601. O43 - CFD: 06/02/2010 - 13:02:02 - [8683819] ----D- C:\ProgramData\EPSON
  602. O43 - CFD: 21/07/2007 - 10:09:46 - [0] -SH-D- C:\ProgramData\Favoris
  603. O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Favorites
  604. O43 - CFD: 30/04/2011 - 14:49:24 - [456304] ----D- C:\ProgramData\Google
  605. O43 - CFD: 21/07/2007 - 10:16:28 - [645] ----D- C:\ProgramData\InstallShield
  606. O43 - CFD: 14/05/2011 - 18:16:10 - [1218962] ----D- C:\ProgramData\ma-config.com
  607. O43 - CFD: 21/10/2009 - 11:25:58 - [14428455] ----D- C:\ProgramData\Malwarebytes
  608. O43 - CFD: 21/07/2007 - 10:09:46 - [0] -SH-D- C:\ProgramData\Menu Démarrer
  609. O43 - CFD: 03/06/2010 - 21:13:42 - [164899734] -S--D- C:\ProgramData\Microsoft
  610. O43 - CFD: 21/07/2007 - 10:09:46 - [0] -SH-D- C:\ProgramData\Modèles
  611. O43 - CFD: 07/11/2010 - 19:45:42 - [25] ----D- C:\ProgramData\PopCap Games
  612. O43 - CFD: 02/04/2011 - 13:09:08 - [101484564] ----D- C:\ProgramData\Skype
  613. O43 - CFD: 15/05/2011 - 12:36:40 - [7339384] ----D- C:\ProgramData\Skype Extras
  614. O43 - CFD: 03/03/2011 - 23:39:24 - [3662] ----D- C:\ProgramData\Spybot - Search & Destroy
  615. O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Start Menu
  616. O43 - CFD: 07/11/2010 - 19:45:12 - [32361866] ----D- C:\ProgramData\Steam
  617. O43 - CFD: 05/04/2011 - 21:37:10 - [189] ----D- C:\ProgramData\Sun
  618. O43 - CFD: 02/11/2006 - 15:02:06 - [0] -SH-D- C:\ProgramData\Templates
  619. O43 - CFD: 06/02/2010 - 13:07:58 - [3498] ----D- C:\ProgramData\UDL
  620. O43 - CFD: 01/07/2008 - 12:51:16 - [804071] ----D- C:\ProgramData\WindowsSearch
  621. O43 - CFD: 07/03/2008 - 19:21:24 - [459414] ----D- C:\ProgramData\WLInstaller
  622.  
  623.  
  624.  
  625. ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
  626. O44 - LFC:[MD5.A0EE120054896B7500FCFD7F74EF1200] - 15/05/2011 - 17:37:59 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1414980]
  627. O44 - LFC:[MD5.EA5B87A3108880F2532D24AE830316A2] - 15/05/2011 - 17:33:06 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
  628. O44 - LFC:[MD5.02D5ADE4EA464CCEBE67EB687B4DFC81] - 15/05/2011 - 16:32:18 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
  629. O44 - LFC:[MD5.9463E59CBB8E93BF3C8783F67D284E1D] - 15/05/2011 - 16:14:17 ---A- . (...) -- C:\Windows\ntbtlog.txt [638974]
  630. O44 - LFC:[MD5.F99DDD5E4F807B43E8B85DCD5F4B59EA] - 15/05/2011 - 12:05:37 ---A- . (.Microsoft - Legacy GDF resource DLL.) -- C:\Windows\System32\GameUXLegacyGDFs.dll [4240384]
  631. O44 - LFC:[MD5.094EE5CF04453228C939D7071CB4DEAF] - 14/05/2011 - 21:34:00 ---A- . (...) -- C:\Windows\System32\spsys.log [296]
  632. O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/05/2011 - 17:40:08 ---A- . (...) -- C:\Windows\ativpsrm.bin [0]
  633. O44 - LFC:[MD5.CE517C148FB9E1BD20663A4665E1C5D3] - 14/05/2011 - 16:32:25 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [404640]
  634. O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 10/05/2011 - 22:29:28 ---A- . (...) -- C:\Windows\setupact.log [0]
  635. O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 10/05/2011 - 22:29:28 ---A- . (...) -- C:\Windows\setuperr.log [0]
  636. O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 10/05/2011 - 22:25:05 ---A- . (...) -- C:\Windows\System32\config.nt [2577]
  637. O44 - LFC:[MD5.1A9CB9A6EAA8FCAAFD470BCF4CF05460] - 10/05/2011 - 21:06:22 ---A- . (...) -- C:\Windows\IE9_main.log [1193]
  638. O44 - LFC:[MD5.86C74121EDB74E65143CB259FAB1A0F1] - 10/05/2011 - 20:09:26 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1522546]
  639. O44 - LFC:[MD5.325673B7A8D1E0D347FDEB09737B9A0D] - 10/05/2011 - 20:09:26 ---A- . (...) -- C:\Windows\System32\perfc009.dat [107760]
  640. O44 - LFC:[MD5.DC996A5CF3CEFD44D4C25C2811E6AE63] - 10/05/2011 - 20:09:26 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [131074]
  641. O44 - LFC:[MD5.C01210FDE4F3335B8A4099AD79384BAC] - 10/05/2011 - 20:09:26 ---A- . (...) -- C:\Windows\System32\perfh009.dat [604324]
  642. O44 - LFC:[MD5.E904C8A97AF1560C4B56862B790CB4D8] - 10/05/2011 - 20:09:26 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [688432]
  643. O44 - LFC:[MD5.B8576757416F471C9D7F83B2B04B1F9D] - 10/05/2011 - 13:10:59 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [40112]
  644. O44 - LFC:[MD5.A4FF904203B176D2D7498AA7CECAFE0C] - 10/05/2011 - 13:10:55 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [199304]
  645. O44 - LFC:[MD5.B64134316FCD1F20E0F10EF3E65BD522] - 10/05/2011 - 13:03:54 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [441176]
  646. O44 - LFC:[MD5.D6788E3211AFA9951ED7A4D617F68A4F] - 10/05/2011 - 13:03:44 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [307928]
  647. O44 - LFC:[MD5.4D100C45517809439C7B6DD98997FA00] - 10/05/2011 - 13:02:37 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\drivers\aswTdi.sys [49240]
  648. O44 - LFC:[MD5.AC48BDD4CD5D44AF33087C06D6E9511C] - 10/05/2011 - 12:59:56 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\System32\drivers\aswRdr.sys [25432]
  649. O44 - LFC:[MD5.9BDC8E9CE17B773F69D2C6696C768C4F] - 10/05/2011 - 12:59:44 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [53592]
  650. O44 - LFC:[MD5.7F08D9C504B015D81A8ABD75C80028C5] - 10/05/2011 - 12:59:35 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\drivers\aswFsBlk.sys [19544]
  651. O44 - LFC:[MD5.48DD605FEEED97277932CF4DB3C275B9] - 03/05/2011 - 20:11:23 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [255288]
  652. O44 - LFC:[MD5.0E359AFB916C8FBC8E75E71AC5FFC9B2] - 03/05/2011 - 20:06:52 ---A- . (...) -- C:\Windows\System32\defltbase.sdb [1056768]
  653. O44 - LFC:[MD5.B157E305260FF2A607591F33DE41BFCA] - 02/05/2011 - 21:50:16 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe [145184]
  654. O44 - LFC:[MD5.364F7A2B4B535659F3B50DE5E5C20123] - 02/05/2011 - 21:50:16 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe [145184]
  655. O44 - LFC:[MD5.A0AC7907D47B54238CA60FC47807F119] - 02/05/2011 - 21:50:16 ---A- . (.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe [157472]
  656. O44 - LFC:[MD5.825AD6648813C478E53900B45CDD6F0F] - 02/05/2011 - 21:50:13 ---A- . (...) -- C:\Windows\System32\jupdate-1.6.0_25-b06.log [3396]
  657.  
  658.  
  659.  
  660. ---\\ Trojan Driver Search Data (HKLM) (O52)
  661. O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
  662. O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
  663. O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.8.5 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
  664.  
  665.  
  666.  
  667. ---\\ ShareTools MSconfig StartupReg (O53)
  668. O53 - SMSR:HKLM\...\startupreg\ehTray.exe [Key] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
  669. O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
  670. O53 - SMSR:HKLM\...\startupreg\SynTPEnh [Key] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
  671.  
  672.  
  673.  
  674. ---\\ Microsoft Control Security Providers (O54)
  675. O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll
  676. O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll
  677.  
  678.  
  679.  
  680. ---\\ Microsoft Windows Policies System (O55)
  681. O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
  682. O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
  683. O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
  684. O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
  685. O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
  686. O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
  687. O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
  688. O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
  689. O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
  690. O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
  691. O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
  692. O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
  693. O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
  694. O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
  695. O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
  696. O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
  697. O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
  698.  
  699.  
  700.  
  701. ---\\ Microsoft Windows Policies Explorer (O56)
  702. O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
  703. O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
  704. O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0
  705.  
  706.  
  707.  
  708. ---\\ Liste des Drivers Système (O58)
  709. O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [420968]
  710. O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297576]
  711. O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [98408]
  712. O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [147048]
  713. O58 - SDL:[MD5.90395B64600EBB4552E26E178C94B2E4] - 02/11/2006 - 10:49:20 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14952]
  714. O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [67688]
  715. O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [67688]
  716. O58 - SDL:[MD5.7F08D9C504B015D81A8ABD75C80028C5] - 10/05/2011 - 12:59:35 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys [19544]
  717. O58 - SDL:[MD5.9BDC8E9CE17B773F69D2C6696C768C4F] - 10/05/2011 - 12:59:44 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys [53592]
  718. O58 - SDL:[MD5.AC48BDD4CD5D44AF33087C06D6E9511C] - 10/05/2011 - 12:59:56 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys [25432]
  719. O58 - SDL:[MD5.B64134316FCD1F20E0F10EF3E65BD522] - 10/05/2011 - 13:03:54 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys [441176]
  720. O58 - SDL:[MD5.D6788E3211AFA9951ED7A4D617F68A4F] - 10/05/2011 - 13:03:44 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys [307928]
  721. O58 - SDL:[MD5.4D100C45517809439C7B6DD98997FA00] - 10/05/2011 - 13:02:37 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys [49240]
  722. O58 - SDL:[MD5.8B412DDC62A0510767C5D48192EE1324] - 30/09/2009 - 06:53:12 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athr.sys [1184768]
  723. O58 - SDL:[MD5.7DB96C2801A78513BDC133C25D07929E] - 11/02/2010 - 08:42:22 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [4450816]
  724. O58 - SDL:[MD5.CF6A67C90951E3E763D2135DEDE44B85] - 02/11/2006 - 08:30:53 ---A- . (.Broadcom Corporation - BCM 802.11g Network Adapter wireless driver.) -- C:\Windows\system32\drivers\BCMWL6.SYS [464384]
  725. O58 - SDL:[MD5.D8BA0E0FFBCE2DD5DE110C5146C438B4] - 27/12/2006 - 02:57:22 ---A- . (.Bison Electronics. Inc. - Universal Serial Bus Camera Driver.) -- C:\Windows\system32\drivers\BisonC07.sys [792368]
  726. O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]
  727. O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]
  728. O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]
  729. O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]
  730. O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]
  731. O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]
  732. O58 - SDL:[MD5.45201046C776FFDAF3FC8A0029C581C8] - 02/11/2006 - 10:49:28 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [16488]
  733. O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]
  734. O58 - SDL:[MD5.73BAF270D24FE726B9CD7F80BB17A23D] - 02/11/2006 - 14:29:38 ---A- . (.Dritek System Inc. - Dritek PS2 Keyboard Filter Driver.) -- C:\Windows\system32\drivers\DKbFltr.sys [21264]
  735. O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G60I32.sys [117760]
  736. O58 - SDL:[MD5.44996A2ADDD2DB7454F2CA40B67D8941] - 18/12/2009 - 23:25:12 ---A- . (.Elaborate Bytes AG - ElbyCD Windows NT/2000/XP I/O driver.) -- C:\Windows\system32\drivers\ElbyCDIO.sys [26024]
  737. O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [316520]
  738. O58 - SDL:[MD5.FFA45148A2D5D05DBB3C0997E579FC9C] - 21/12/2005 - 09:14:52 ---A- . (.Pinnacle Systems, Inc. - USB Audio Driver.) -- C:\Windows\system32\drivers\emAudio.sys [19712]
  739. O58 - SDL:[MD5.5118EA8A2F55FA4D4295516500B78229] - 21/12/2005 - 09:14:52 ---A- . (.eMPIA Technology, Inc. - USB 28xx WDM Driver.) -- C:\Windows\system32\drivers\emDevice.sys [100957]
  740. O58 - SDL:[MD5.6F87E4706F59463B74BC4FAD0F67338F] - 21/12/2005 - 09:14:52 ---A- . (.eMPIA Technology, Inc. - USB 28xx WDM Lower filter.) -- C:\Windows\system32\drivers\emFilter.sys [5245]
  741. O58 - SDL:[MD5.1FA3F9DF8983873746FA6B72DD7E3C2C] - 25/10/2006 - 07:36:36 ---A- . (.ENE Technology Inc. - ENE PCI Memory Stick Card Reader Driver.) -- C:\Windows\system32\drivers\EMS7SK.sys [62208]
  742. O58 - SDL:[MD5.F5A633609777C212EC5FF19927FC5955] - 21/12/2005 - 09:14:52 ---A- . (.eMPIA Technology, Inc. - USB 28xx WDM Upper Filter.) -- C:\Windows\system32\drivers\emScan.sys [4493]
  743. O58 - SDL:[MD5.CDD7F3B57E8988F4F60B877A6BF1E9D6] - 21/12/2005 - 09:14:52 ---A- . (.eMPIA Technology, Inc. - USB 28xx WDM Driver Library.) -- C:\Windows\system32\drivers\emStream.sys [24269]
  744. O58 - SDL:[MD5.9C7487253AAD6BF61F9BC83D50E32CCC] - 25/10/2006 - 07:36:48 ---A- . (.ENE Technology Inc. - ENE PCI Secure Digital / MMC Card Reader Driver.) -- C:\Windows\system32\drivers\ESD7SK.sys [42240]
  745. O58 - SDL:[MD5.99589D975DA04F8BD31F124428FCC797] - 25/10/2006 - 07:36:44 ---A- . (.ENE Technology Inc. - ENE PCI SmartMedia / XD Card Reader Driver.) -- C:\Windows\system32\drivers\ESM7SK.sys [76928]
  746. O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 14:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [26600]
  747. O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [37480]
  748. O58 - SDL:[MD5.7E775360ECE92156CED6ED3B1DAF6208] - 09/11/2006 - 00:53:58 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\HSXHWAZL.sys [206848]
  749. O58 - SDL:[MD5.CF27EDAC75C87F2B776D9218F02F8301] - 09/11/2006 - 00:53:48 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\HSX_CNXT.sys [659968]
  750. O58 - SDL:[MD5.9EFA5FEC26CEC696A66A891AC90B412D] - 09/11/2006 - 00:55:10 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\HSX_DPV.sys [986624]
  751. O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [232040]
  752. O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]
  753. O58 - SDL:[MD5.9D64201C9E5AC8D1F088762BA00FF3AB] - 02/01/2007 - 16:43:34 ---A- . (...) -- C:\Windows\system32\drivers\int15.sys [76584]
  754. O58 - SDL:[MD5.91B61589BB2915E81D436EFE07548507] - 02/01/2007 - 16:43:34 ---A- . (...) -- C:\Windows\system32\drivers\int15_64.sys [15656]
  755. O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]
  756. O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]
  757. O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [65640]
  758. O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [65640]
  759. O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [65640]
  760. O58 - SDL:[MD5.269C14D512B74CC28D2812FF7D1EB066] - 02/06/2005 - 18:28:38 ---A- . (.Pinnacle Systems GmbH - Pinnacle Marvin Discrete Bus Enumerator.) -- C:\Windows\system32\drivers\MarvinBus.sys [171008]
  761. O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [20952]
  762. O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224]
  763. O58 - SDL:[MD5.0CEA2D0D3FA284B85ED5B68365114F76] - 19/06/2006 - 07:26:58 ---A- . (.Conexant - Diagnostic Interface x86 Driver.) -- C:\Windows\system32\drivers\mdmxsdk.sys [12672]
  764. O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [28776]
  765. O58 - SDL:[MD5.4D2D882DAEE49B35B7B56FD9444564E9] - 11/12/2007 - 00:05:36 ---A- . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\system32\drivers\mod7700.sys [554240]
  766. O58 - SDL:[MD5.370E88453EC0D7BEA6EB24BE8D865DBE] - 19/10/2007 - 13:32:58 ---A- . (.DiBcom S.A. - HID Infrared Remote Control minidriver.) -- C:\Windows\system32\drivers\modrc.sys [13824]
  767. O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]
  768. O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]
  769. O58 - SDL:[MD5.7F1C1F78D709C4A54CBB46EDE7E0B48D] - 23/01/2007 - 15:11:10 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [6144]
  770. O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]
  771. O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [88680]
  772. O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [40040]
  773. O58 - SDL:[MD5.671F788336DD6A129D0B3743CECE6EEF] - 02/01/2007 - 18:59:18 ---A- . (.HiTRUST - PSD Filter Driver.) -- C:\Windows\system32\drivers\psdfilter.sys [20264]
  774. O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [900712]
  775. O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]
  776. O58 - SDL:[MD5.04BEF1C4AA990E0D5851C7532FC8642C] - 01/12/2006 - 06:38:00 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHDA.sys [1655464]
  777. O58 - SDL:[MD5.EC8BD9A495DD4231553B8F9258CA3B2A] - 21/11/2006 - 07:24:02 ---A- . (.Realtek Corporation - Realtek 8101/8168/8169 NDIS6 32-bit Driver.) -- C:\Windows\system32\drivers\Rtlh86.sys [62464]
  778. O58 - SDL:[MD5.FDDE6B3598660D3C51CB45EB3A95FE67] - 06/11/2006 - 03:01:20 ---A- . (.Realtek Semiconductor Corporation - Realtek 10/100 NDIS 5.1 Driver.) -- C:\Windows\system32\drivers\Rtnicxp.sys [51200]
  779. O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]
  780. O58 - SDL:[MD5.F459DD5EE69D4B68CB6767C9731B5FAF] - 20/08/2008 - 17:27:08 ---A- . (.Silicon Image, Inc - Serial ATA miniport driver.) -- C:\Windows\system32\drivers\SI3112.sys [74280]
  781. O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [38504]
  782. O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [71784]
  783. O58 - SDL:[MD5.96B43459E9BD1DAD1873A47DDDE9BDF4] - 20/08/2008 - 17:27:36 ---A- . (.Silicon Image, Inc - Windows Accelerator Driver.) -- C:\Windows\system32\drivers\SiWinAcc.sys [19240]
  784. O58 - SDL:[MD5.CED16C76469BA00E2AB310857CD4C767] - 18/10/2006 - 08:44:30 ---A- . (.SMSC - SMSC Fast Infrared Driver.) -- C:\Windows\system32\drivers\smscirda.sys [31232]
  785. O58 - SDL:[MD5.A0EE120054896B7500FCFD7F74EF1200] - 23/10/2009 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [721904]
  786. O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]
  787. O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]
  788. O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]
  789. O58 - SDL:[MD5.F7A4250BB3E3AFCD4AF100E551509352] - 23/10/2006 - 04:17:32 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\Windows\system32\drivers\SynTP.sys [179896]
  790. O58 - SDL:[MD5.97DD70FECA64FB4F63DE7BB7E66A80B1] - 02/01/2007 - 16:43:34 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\system32\drivers\TVicPort.sys [14544]
  791. O58 - SDL:[MD5.4E104EBC164231D2272CC9BDD1EF5C40] - 02/01/2007 - 16:43:34 ---A- . (.EnTech Taiwan - TVicPort Driver for Windows NT/2000/XP.) -- C:\Windows\system32\drivers\TVicPort64.sys [8704]
  792. O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [235112]
  793. O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]
  794. O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]
  795. O58 - SDL:[MD5.E8C1B9EBAC65288E1B51E8A987D98AF6] - 16/10/2009 - 01:33:06 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl.sys [41472]
  796. O58 - SDL:[MD5.94D73B62E458FB56C9CE60AA96D914F9] - 09/08/2009 - 22:25:56 ---A- . (.Elaborate Bytes AG - VirtualCloneCD Driver.) -- C:\Windows\system32\drivers\VClone.sys [29696]
  797. O58 - SDL:[MD5.FD2E3175FCADA350C7AB4521DCA187EC] - 02/11/2006 - 10:49:30 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17512]
  798. O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys [112232]
  799. O58 - SDL:[MD5.46D67209550973257601A533E2AC5785] - 02/11/2006 - 08:41:49 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL3.SYS [200704]
  800. O58 - SDL:[MD5.5C7BDCF5864DB00323FE2D90FA26A8A2] - 02/11/2006 - 08:41:48 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT3.SYS [654336]
  801. O58 - SDL:[MD5.EC36F1D542ED4252390D446BF6D4DFD0] - 02/11/2006 - 08:41:50 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV3.SYS [987648]
  802. O58 - SDL:[MD5.5A7FF9A18FF6D7E0527FE3ABF9204EF8] - 04/08/2006 - 10:39:10 ---A- . (.Conexant Systems, Inc. - Modem Audio Device Driver.) -- C:\Windows\system32\drivers\XAudio.sys [8192]
  803. O58 - SDL:[MD5.40AC8590CC9006DBB99FFCB37879D4C6] - 02/01/2007 - 16:43:34 ---A- . (.Zeal SoftStudio - zntport.) -- C:\Windows\system32\drivers\zntport.sys [6080]
  804. O58 - SDL:[MD5.F2F291F29B4ECE0394F9A28F8E829AFA] - 02/01/2007 - 16:43:34 ---A- . (.Zeal SoftStudio - NTPort Library kernel driver.) -- C:\Windows\system32\drivers\zntport64.sys [6144]
  805. O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]
  806. O58 - SDL:[MD5.999EFF35B4C6D969B232BF575972F86F] - 23/01/2007 - 16:25:36 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\athr.sys [689664]
  807. O58 - SDL:[MD5.746F59822A5187510471FC46889B8CC9] - 19/12/2006 - 12:18:28 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\system32\bcmwl6.sys [534016]
  808. O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]
  809. O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]
  810. O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]
  811. O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]
  812. O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]
  813. O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]
  814. O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]
  815. O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]
  816. O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]
  817. O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]
  818. O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]
  819. O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]
  820. O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]
  821. O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]
  822. O58 - SDL:[MD5.E57B778208C783D8DEBAB320C16A1B82] - 12/11/2009 - 13:48:58 ---A- . (...) -- C:\Windows\system32\StarOpen.sys [5504]
  823.  
  824.  
  825.  
  826. ---\\ Liste des outils de nettoyage (O63)
  827. O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis
  828. O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
  829.  
  830.  
  831.  
  832. ---\\ Liste des services Legacy (O64)
  833. O64 - Services: CurCS - 18/02/2011 - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - Apple Mobile Device(Apple Mobile Device) .(.Apple Inc. - MobileDeviceService.) - LEGACY_APPLE_MOBILE_DEVICE
  834. O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK
  835. O64 - Services: CurCS - 10/05/2011 - C:\Windows\system32\drivers\aswMonFlt.sys - aswMonFlt(aswMonFlt) .(.AVAST Software - avast! File System Minifilter for Windows 2.) - LEGACY_ASWMONFLT
  836. O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR
  837. O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSNX.sys - (.not file.) - aswSnx (aswSnx) .(...) - LEGACY_ASWSNX
  838. O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWSP.sys - (.not file.) - avast! Self Protection (aswSP) .(...) - LEGACY_ASWSP
  839. O64 - Services: CurCS - C:\Windows\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI
  840. O64 - Services: CurCS - 11/02/2010 - C:\Windows\system32\Ati2evxx.exe - Ati External Event Utility(Ati External Event Utility) .(.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - LEGACY_ATI_EXTERNAL_EVENT_UTILITY
  841. O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP
  842. O64 - Services: CurCS - 07/10/2010 - C:\Program Files\Bonjour\mDNSResponder.exe - Service Bonjour(Bonjour Service) .(.Apple Inc. - Bonjour Service.) - LEGACY_BONJOUR_SERVICE
  843. O64 - Services: CurCS - (.not file.) - catchme (catchme) .(...) - LEGACY_CATCHME
  844. O64 - Services: CurCS - (.not file.) - (.not file.) - @comres.dll,-947 (COMSysApp) .(...) - LEGACY_COMSYSAPP
  845. O64 - Services: CurCS - 02/11/2006 - C:\PROGRA~1\LAUNCH~1\DPortIO.sys - Dritek General Port I/O(DritekPortIO) .(.Dritek System Inc. - General Port I/O.) - LEGACY_DRITEKPORTIO
  846. O64 - Services: CurCS - 30/08/2010 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2(driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2
  847. O64 - Services: CurCS - 17/12/2009 - C:\Windows\System32\Drivers\ElbyCDIO.sys - ElbyCDIO Driver(ElbyCDIO) .(.Elaborate Bytes AG - ElbyCD Windows NT/2000/XP I/O driver.) - LEGACY_ELBYCDIO
  848. O64 - Services: CurCS - 22/12/2006 - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe - eLock Service(eLockService) .(.Acer Inc. - Acer eLock Management.) - LEGACY_ELOCKSERVICE
  849. O64 - Services: CurCS - 28/12/2006 - C:\Acer\Empowering Technology\eNet\eNet Service.exe - eNet Service(eNet Service) .(.Acer Inc. - acer eNet Management Service.) - LEGACY_ENET_SERVICE
  850. O64 - Services: CurCS - 28/12/2006 - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe - eRecovery Service(eRecoveryService) .(.Acer Inc. - eRecoveryService.) - LEGACY_ERECOVERYSERVICE
  851. O64 - Services: CurCS - 02/01/2007 - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe - eSettings Service(eSettingsService) .(.Pas de propriétaire - Service.) - LEGACY_ESETTINGSSERVICE
  852. O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT
  853. O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC
  854. O64 - Services: CurCS - 30/04/2011 - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate)(gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE
  855. O64 - Services: CurCS - C:\Acer\Empowering Technology\eRecovery\int15.sys - int15 (int15) .(...) - LEGACY_INT15
  856. O64 - Services: CurCS - 07/03/2011 - C:\Program Files\iPod\bin\iPodService.exe - Service de l’iPod(iPod Service) .(.Apple Inc. - iPodService Module (32-bit).) - LEGACY_IPOD_SERVICE
  857. O64 - Services: CurCS - C:\Users\MMEBIN~1\AppData\Local\Temp\mbr.sys (.not file.) - mbr (mbr) .(...) - LEGACY_MBR
  858. O64 - Services: CurCS - C:\Acer\Mobility Center\MobilityService.exe - MobilityService (MobilityService) .(...) - LEGACY_MOBILITYSERVICE
  859. O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS
  860. O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY
  861. O64 - Services: CurCS - C:\Program Files\CDBurnerXP\NMSAccessU.exe - NMSAccessU (NMSAccessU) .(...) - LEGACY_NMSACCESSU
  862. O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS
  863. O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS
  864. O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL
  865. O64 - Services: CurCS - 28/11/2006 - C:\Windows\System32\Drivers\PCAMp50.sys - PCAMp50 NDIS Protocol Driver(PCAMp50) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) - LEGACY_PCAMP50
  866. O64 - Services: CurCS - 28/11/2006 - C:\Windows\System32\Drivers\PCASp50.sys - PCASp50 NDIS Protocol Driver(PCASp50) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 SPR Protocol Driver.) - LEGACY_PCASP50
  867. O64 - Services: CurCS - (.not file.) - PROCEXP113 (PROCEXP113) .(...) - LEGACY_PROCEXP113
  868. O64 - Services: CurCS - (.not file.) - pwlyrpog (pwlyrpog) .(...) - LEGACY_PWLYRPOG
  869. O64 - Services: CurCS - (.not file.) - pwtcrpog (pwtcrpog) .(...) - LEGACY_PWTCRPOG
  870. O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV
  871. O64 - Services: CurCS - 20/08/2008 - C:\Windows\System32\DRIVERS\SiWinAcc.sys - SATALink driver accelerator(SiFilter) .(.Silicon Image, Inc - Windows Accelerator Driver.) - LEGACY_SIFILTER
  872. O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR
  873. O64 - Services: CurCS - C:\Windows\System32\Drivers\sptd.sys - sptd (sptd) .(...) - LEGACY_SPTD
  874. O64 - Services: CurCS - 02/01/2007 - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe - ePower Service(WMIService) .(.acer - WMIServi Application.) - LEGACY_WMISERVICE
  875. O64 - Services: CurCS - 04/08/2006 - C:\Windows\System32\DRIVERS\xaudio.sys - XAudio(XAudio) .(.Conexant Systems, Inc. - Modem Audio Device Driver.) - LEGACY_XAUDIO
  876. O64 - Services: CurCS - 04/08/2006 - C:\Windows\system32\DRIVERS\xaudio.exe - XAudioService(XAudioService) .(.Conexant Systems, Inc. - Modem Audio Service.) - LEGACY_XAUDIOSERVICE
  877.  
  878.  
  879.  
  880. ---\\ File Associations Shell Spawning (O67)
  881. O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)
  882. O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
  883. O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)
  884. O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] "%1" %* (.not file.)
  885. O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)
  886. O67 - Shell Spawning: <.html> <Opera.HTML>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Opera.exe
  887. O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
  888. O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
  889. O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
  890. O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
  891. O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)
  892. O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
  893. O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)
  894. O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] "%1" %* (.not file.)
  895. O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)
  896. O67 - Shell Spawning: <.html> <Opera.HTML>[HKCR\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Opera.exe
  897. O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
  898. O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
  899.  
  900.  
  901.  
  902. ---\\ Start Menu Internet (O68)
  903. O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
  904. O68 - StartMenuInternet: <Opera.exe> <Opera>[HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\Opera.exe
  905.  
  906.  
  907.  
  908. ---\\ Search Browser Infection (O69)
  909. O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
  910. O69 - SBI: SearchScopes [HKCU] {1030E450-E42A-4167-B079-203DECC30449} [DefaultScope] - (Google) - http://www.google.fr
  911. O69 - SBI: SearchScopes [HKCU] {3208F65D-505C-4A85-84DD-124E7F142478} - (Yahoo! Search) - http://search.yahoo.com
  912. O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
  913.  
  914.  
  915.  
  916. ---\\ Firewall Active Exception List (FirewallRules) (O87)
  917. O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
  918. O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
  919. O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
  920. O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
  921. O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
  922. O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
  923. O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
  924. O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
  925. O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
  926. O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
  927. O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
  928. O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
  929. O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
  930. O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
  931. O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l’autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe
  932. O87 - FAEL: "{F8FFB88B-33E5-4AD5-8135-AEDD1071A5DF}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
  933. O87 - FAEL: "{1D951957-C1AB-451E-A1D8-3948E9FEBEFD}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
  934. O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
  935. O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
  936. O87 - FAEL: "FPS-SpoolSvc-In-TCP_1" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
  937. O87 - FAEL: "TCP Query User{25D3DBFC-9378-41C7-A4AA-7C538E0B983E}C:\program files\internet explorer\iexplore.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe
  938. O87 - FAEL: "UDP Query User{05223E76-32CE-4D0F-91E1-6006D5A548D3}C:\program files\internet explorer\iexplore.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe
  939. O87 - FAEL: "{057ABEC2-6DEC-486F-A748-AF6B9BAC2AAD}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
  940. O87 - FAEL: "{C797F210-1789-4942-9729-B058003C3166}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
  941. O87 - FAEL: "{8611E487-A8C4-4016-84A4-4C4882BD34ED}" | In - Public - P6 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
  942. O87 - FAEL: "{91527CFE-4B07-45C4-816A-B2C3B8D9AA01}" | In - Public - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
  943. O87 - FAEL: "{ECD0CF42-9902-4989-8BF7-057435AEAEA1}" | In - Private - P6 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
  944. O87 - FAEL: "{6473C914-4048-4C54-AB02-F18D39C3EA9A}" | In - Private - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
  945. O87 - FAEL: "{F05363E3-71FF-4237-81CD-356DB196DBC9}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
  946. O87 - FAEL: "{CD622D8C-EB7F-4657-8661-A84DA161C9A9}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
  947. O87 - FAEL: "TCP Query User{8B07415E-5A37-46B9-B863-A292F092E7C3}C:\program files\opera\opera.exe" | In - Public - P6 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\program files\opera\opera.exe
  948. O87 - FAEL: "UDP Query User{EB50E535-A47A-4549-AA1D-0F2329C16AA9}C:\program files\opera\opera.exe" | In - Public - P17 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\program files\opera\opera.exe
  949. O87 - FAEL: "{8508DA7C-8A02-4C48-A091-95B6027C2D7E}" | In - Private - P6 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\opera.exe
  950. O87 - FAEL: "{DC85FB08-C4AB-41D1-9DC1-EE64D6F8C0DA}" | In - Private - P17 - TRUE | .(.Opera Software - Opera Internet Browser.) -- C:\Program Files\Opera\opera.exe
  951. O87 - FAEL: "TCP Query User{22949B10-D64A-46FB-A46D-564CE2CFE13C}C:\program files\skype\phone\skype.exe" | In - Private - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe
  952. O87 - FAEL: "UDP Query User{6CA76788-9AB2-4ED8-B8BF-B826D328E3F4}C:\program files\skype\phone\skype.exe" | In - Private - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files\skype\phone\skype.exe
  953. O87 - FAEL: "{1B5D0576-3444-4F74-B396-7BE4DD85C36A}" | In - Domain - P17 - TRUE | .(.Skype Technologies - Skype Extras Manager.) -- C:\Program Files\Skype\Plugin Manager\skypePM.exe
  954. O87 - FAEL: "{B8909CDA-1167-43B4-AC40-F301C9D2E326}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe
  955. O87 - FAEL: "{8CE8F947-A4F7-4314-8227-48337ADEFAA3}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
  956. O87 - FAEL: "{6B42E640-C7A2-4239-B671-35EE5C42174E}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
  957.  
  958.  
  959.  
  960. ---\\ Scan Additionnel (O88)
  961. Database Version : 7426 - (14/05/2011)
  962. Clés trouvées (Keys found) : 0
  963. Valeurs trouvées (Values found) : 0
  964. Dossiers trouvés (Folders found) : 1
  965. Fichiers trouvés (Files found) : 0
  966.  
  967. C:\ProgramData\PopCap Games =>Adware.PopCap
  968.  
  969.  
  970.  
  971. ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
  972. SS - | Demand 18/02/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  973. SS - | Demand 11/02/2010 733184 | (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe
  974. SR - | Auto 10/05/2011 42184 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
  975. SS - | Demand 07/10/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
  976. SS - | Demand 22/12/2006 24576 | (eLockService) . (.Acer Inc..) - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
  977. SS - | Demand 28/12/2006 126976 | (eNet Service) . (.Acer Inc..) - C:\Acer\Empowering Technology\eNet\eNet Service.exe
  978. SS - | Demand 28/12/2006 49152 | (eRecoveryService) . (.Acer Inc..) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
  979. SS - | Demand 02/01/2007 24576 | (eSettingsService) . (...) - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
  980. SS - | Demand 30/04/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
  981. SS - | Demand 30/04/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
  982. SS - | Demand 07/03/2011 820520 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
  983. SS - | Disabled 14/12/2006 61440 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
  984. SS - | Demand 01/05/2011 311744 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe
  985. SS - | Disabled 24/11/2006 107008 | (MobilityService) . (...) - C:\Acer\Mobility Center\MobilityService.exe
  986. SS - | Demand 12/11/2009 71096 | (NMSAccessU) . (...) - C:\Program Files\CDBurnerXP\NMSAccessU.exe
  987. SS - | Demand 16/07/2009 316664 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe
  988. SR - | Auto 02/01/2007 135168 | (WMIService) . (.acer.) - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
  989. SS - | Demand 04/08/2006 386560 | (XAudioService) . (.Conexant Systems, Inc..) - C:\Windows\system32\DRIVERS\xaudio.exe
  990.  
  991.  
  992.  
  993. ---\\ Recherche Master Boot Record Infection (MBR)(O80)
  994. Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
  995. Run by Amandine at 15/05/2011 18:38:34
  996.  
  997. device: opened successfully
  998. user: MBR read successfully
  999.  
  1000. Disk trace:
  1001. called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll >>UNKNOWN [0x8467D1F8]<<
  1002. 1 ntkrnlpa!IofCallDriver[0x82085912] -> \Device\Harddisk0\DR0[0x84AA7528]
  1003. 3 CLASSPNP[0x867A48B3] -> ntkrnlpa!IofCallDriver[0x82085912] -> [0x846EEEB8]
  1004. 5 acpi[0x807386BC] -> ntkrnlpa!IofCallDriver[0x82085912] -> \Device\Scsi\SI31121Port2Path0Target0Lun0[0x846EC030]
  1005. \Driver\SI3112[0x846E6988] -> IRP_MJ_CREATE -> 0x8467D1F8
  1006. kernel: MBR read successfully
  1007. detected disk devices:
  1008. detected hooks:
  1009. \Driver\atapi -> 0x8467c1f8
  1010. user & kernel MBR OK
  1011. Warning: possible MBR rootkit infection !
  1012.  
  1013.  
  1014.  
  1015. ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
  1016. Written by ad13, http://ad13.geekstog
  1017. Run by Amandine at 15/05/2011 18:38:36
  1018.  
  1019. ********* Dump file Name *********
  1020. C:\PhysicalDisk0_MBR.bin
  1021.  
  1022.  
  1023.  
  1024. ---\\ Liste des émulateurs de CD/DVD (Hook du MBR)
  1025. O58 - SDL:[MD5.A0EE120054896B7500FCFD7F74EF1200] - 23/10/2009 - 00:00:00 ---A- . (...) -- C:\Windows\system32\drivers\sptd.sys [721904]
  1026.  
  1027.  
  1028.  
  1029. End of the scan (1028 lines in 00mn 44s)(0)
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!