Sujet Précédent Sujet Suivant

Anti virus bloqué

Fermé
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 - 3 oct. 2009 à 21:09
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 - 2 nov. 2009 à 21:53
Bonjour,
J'utilise BitDefender 2009 est le problème est qu'il est bloqué et je ne peux plus analyser. Mon ordi est ,je crois, infècté de virus???
Svp aidez moi
A voir également:

59 réponses

Précédent
Réponse 21 / 59
swan1966
7 oct. 2009 à 23:19
Il n'est pas complet voici le lien

https://www.cjoint.com/?khxrPe6UuQ
0
Réponse 22 / 59
jfkpresident Messages postés 13408 Date d'inscription lundi 3 septembre 2007 Statut Contributeur sécurité Dernière intervention 5 janvier 2015 1 175
8 oct. 2009 à 12:30
Maintenant tu va faire ceci (utilise cijoint pour le lien):

Ouvre ce lien et télécharge ZHPDiag :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html


Une fois le téléchargement achevé, double clique sur ZHPDiag.exe(clic droit ,"éxécuter en tant qu'administrateur" pour Vista).

Double-clique sur l'icône pour lancer le programme.

Clique sur "options"(icone petit tournevis) puis cocher "tous" (toutes les cases doivent etre cochés sauf les 061).

Clique sur la loupe pour lancer l'analyse.

A la fin de l'analyse, clique sur l'appareil photo et enregistre le rapport sur ton Bureau.

Ouvre le fichier sauvegardé (ZHPDiag.txt)avec le Bloc-Notes et copie son contenu dans ta réponse.

Postes le en deux fois s'il le faut (le log est assez long).


0
Réponse 23 / 59
swan1966
8 oct. 2009 à 23:44
je ne vois pas la suite de la discussion
0
Réponse 24 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
9 oct. 2009 à 00:01
Je n'arrête pas de poster mon rapport mais il n'apparait pas sur la fenêtre de discussion
Je l'ai même poster en deux fois mais ça ne marche pas
je vais essayer de poster des petites parties
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
9 oct. 2009 à 00:06
Rapport de ZHPDiag v1.24.18 par Nicolas Coolman
Run by Souâd at 08/10/2009 22:54:58
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Platform : Windows Vista (TM) Home Premium (6.0.6002) Service Pack 2
MSIE: Internet Explorer v8.0.6001.18813
MFIE: Mozilla Firefox (3.5.2)

Boot mode: Normal (Normal boot)
Total RAM: 3,7 Gb (59 % free)
System drive C: 69 Go (24 Go free)

---\\ Processus lancés
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe
C:\Windows\system32\NeroCheck.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehTray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\IncrediMail\bin\IncMail.exe
C:\Windows\system32\svchost.exe
C:\Program Files\AGI\common\win32\PythonService.exe
C:\Acer\ALaunch\ALaunchSvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
C:\Acer\Empowering Technology\eNet\eNet Service.exe
C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
C:\Acer\Mobility Center\MobilityService.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Windows\system32\lsass.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
\??\C:\Program Files\Acer Arcade Deluxe\Play Movie\000.fcl

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=explorer.exe

---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr

---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: AGSearchHook Class - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - C:\Program Files\AGI\common\agcutils.dll

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O3 - Toolbar: C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ALaunch] C:\Acer\ALaunch\AlaunchClient.exe
O4 - HKLM\..\Run: [SynTPStart] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [PlayMovie] C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
O4 - HKLM\..\Run: [PLFSet] rundll32.exe C:\Windows\PLFSet.dll,PLFDefSetting
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [NeroCheck] C:\Windows\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKLM\..\policies\Explorer: [BindDirectlyToPropertySetStorage] Data=0
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - Global Startup: Empowering Technology Launcher.lnk - C:\Acer\Empowering Technology\eAPLauncher.exe
O4 - Startup: SETAUDIO.EXE
O4 - Startup: SETRES.EXE
O4 - Global Startup: Notification de cadeaux MSN.lnk - C:\Users\Souâd\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Global Startup: Orion.lnk - C:\Program Files\Convesoft\Orion\Messenger.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll,201
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO

---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] secuser.com

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: CabBuilder (CabBuilder) - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://files-mjf.jeuxvideo-flash.com/popcap/popcaploader_v10_fr.cab

---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AG Windows Service (AGWinService) - C:\Program Files\AGI\common\win32\PythonService.exe
O23 - Service: ALaunch Service (ALaunchService) - C:\Acer\ALaunch\ALaunchSvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: (Ati External Event Utility) - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eDataSecurity Service (eDataSecurity Service) - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: eLock Service (eLockService) - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service (eNet Service) - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Software Updater (gusvc) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe" /service
O23 - Service: MobilityService (MobilityService) - C:\Acer\Mobility Center\MobilityService.exe -p
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SeaPort (SeaPort) - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - C:\Windows\system32\SLsvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - C:\Windows\System32\spoolsv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe" /service
O23 - Service: ePower Service (WMIService) - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - C:\Windows\system32\SearchIndexer.exe /Embedding
O23 - Service: XAudioService (XAudioService) - C:\Windows\system32\DRIVERS\xaudio.exe
O23 - Service: {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) - C:\WindowsC:\Program Files\Acer Arcade Deluxe\Play Movie\000.fcl

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Google Software Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\User_Feed_Synchronization-{770596D8-6ECF-4E56-9BE9-FCFCAB51A966}.job

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - (not file)
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\Windows\system32\regsvr32.exe /s /n /i:/UserInstall C:\Windows\system32\themeui.dll
O40 - ASIC: Offline Browsing Pack - {3af36230-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
O40 - ASIC: DirectDrawEx - {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - (not file)
O40 - ASIC: Internet Explorer Help - {45ea75a0-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Microsoft Windows Script 5.8 - {4f645220-306d-11d2-995d-00c04f98bbc9} - (not file)
O40 - ASIC: Internet Explorer Setup Tools - {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\Windows\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
O40 - ASIC: MSN Site Access - {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - (not file)
O40 - ASIC: Dossiers Web - {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - (not file)
O40 - ASIC: Address Book 7 - {7790769C-0471-11d2-AF11-00C04FA35D02} - (not file)
O40 - ASIC: .NET Framework - {7C028AF8-F614-47B3-82DA-BA94E41B1089} - (not file)
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
O40 - ASIC: Dynamic HTML Data Binding - {9381D8F2-0288-11D0-9501-00AA00B911A5} - (not file)
O40 - ASIC: .NET Framework - {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - (not file)
O40 - ASIC: Internet Explorer Core Fonts - {C9E9A340-D1F1-11D0-821E-444553540600} - (not file)
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} - C:\Windows\system32\Macromed\Flash\Flash10b.ocx
O40 - ASIC: HTML Help - {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Active Directory Service Interface - {E92B03AB-B707-11d2-9CBD-0000F87A369E} - (not file)
0
Réponse 26 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
9 oct. 2009 à 00:08
OK ça marche
_______________________________________________________________________

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: AVerMedia A310 DVB-T (A310) - C:\WINDOWS\system32\DRIVERS\AVerA310USB.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32000 (AsyncMac) - C:\WINDOWS\system32\DRIVERS\asyncmac.sys
O41 - Driver: (no object) (atikmdag) - C:\WINDOWS\system32\DRIVERS\atikmdag.sys
O41 - Driver: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60x) - C:\WINDOWS\system32\DRIVERS\b57nd60x.sys
O41 - Driver: AVerMedia A310 BDA DVBT Capture Device (BDASwCap) - C:\WINDOWS\system32\drivers\AVerA310Cap.sys
O41 - Driver: BitDefender Firewall NDIS Filter Service (Bdfndisf) - C:\WINDOWS\system32\DRIVERS\bdfndisf.sys
O41 - Driver: bdfsfltr (bdfsfltr) - C:\WINDOWS\system32\DRIVERS\bdfsfltr.sys
O41 - Driver: BDSelfPr (BDSelfPr) - C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys
O41 - Driver: BDVEDISK (BDVEDISK) - C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys
O41 - Driver: Pilote pour Batterie à méthode de contrôle ACPI Microsoft (CmBatt) - C:\WINDOWS\system32\DRIVERS\CmBatt.sys
O41 - Driver: Dritek Keyboard Filter Driver (DKbFltr) - C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
O41 - Driver: Filtre de décodeur DRM (Noyau Microsoft) (drmkaud) - C:\WINDOWS\system32\drivers\drmkaud.sys
O41 - Driver: Intel(R) PRO/1000 NDIS 6 Adapter Driver (E1G60) - C:\WINDOWS\system32\DRIVERS\E1G60I32.sys
O41 - Driver: GEAR ASPI Filter Driver (GEARAspiWDM) - C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
O41 - Driver: Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio (HdAudAddService) - C:\WINDOWS\system32\drivers\HdAudio.sys
O41 - Driver: (no object) (HSFHWAZL) - C:\WINDOWS\system32\DRIVERS\VSTAZL3.SYS
O41 - Driver: (no object) (HSF_DPV) - C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
O41 - Driver: (no object) (HSXHWAZL) - C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
O41 - Driver: Intel AHCI Controller (iaStor) - C:\WINDOWS\system32\DRIVERS\iaStor.sys
O41 - Driver: int15 (int15) - C:\Acer\Empowering Technology\eRecovery\int15.sys
O41 - Driver: Service for Realtek HD Audio (WDM) (IntcAzAudAddService) - C:\WINDOWS\system32\drivers\RTKVHDA.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32013 (IpFilterDriver) - C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
O41 - Driver: IP in IP Tunnel Driver (IpInIp) - C:\WINDOWS\system32\DRIVERS\ipinip.sys
O41 - Driver: Link-Layer Topology Discovery Mapper I/O Driver (lltdio) - C:\WINDOWS\system32\DRIVERS\lltdio.sys
O41 - Driver: (no object) (mdmxsdk) - C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
O41 - Driver: Service Pilote de fonction de classe Moniteur Microsoft (monitor) - C:\WINDOWS\system32\DRIVERS\monitor.sys
O41 - Driver: Motorola USB CDC ACM Driver (motmodem) - C:\WINDOWS\system32\DRIVERS\motmodem.sys
O41 - Driver: Proxy de service de répartition Microsoft (MSKSSRV) - C:\WINDOWS\system32\drivers\MSKSSRV.sys
O41 - Driver: Proxy d'horloge de répartition Microsoft (MSPCLOCK) - C:\WINDOWS\system32\drivers\MSPCLOCK.sys
O41 - Driver: Proxy de gestion de qualité de répartition Microsoft (MSPQM) - C:\WINDOWS\system32\drivers\MSPQM.sys
O41 - Driver: Convertisseur en T/site-à-site de répartition Microsoft (MSTEE) - C:\WINDOWS\system32\drivers\MSTEE.sys
O41 - Driver: Filtre NativeWiFi (NativeWifiP) - C:\WINDOWS\system32\DRIVERS\nwifi.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32001 (NdisTapi) - C:\WINDOWS\system32\DRIVERS\ndistapi.sys
O41 - Driver: NDIS Usermode I/O Protocol (Ndisuio) - C:\WINDOWS\system32\DRIVERS\ndisuio.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32002 (NdisWan) - C:\WINDOWS\system32\DRIVERS\ndiswan.sys
O41 - Driver: NetBIOS Interface (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits (NETw4v32) - C:\WINDOWS\system32\DRIVERS\NETw4v32.sys
O41 - Driver: Upper Class Filter Driver (NTIDrvr) - C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
O41 - Driver: (no object) (nvlddmkm) - C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
O41 - Driver: IPX Traffic Filter Driver (NwlnkFlt) - C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
O41 - Driver: IPX Traffic Forwarder Driver (NwlnkFwd) - C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32006 (PptpMiniport) - C:\WINDOWS\system32\DRIVERS\raspptp.sys
O41 - Driver: Profos (Profos) - C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys
O41 - Driver: @%SystemRoot%\System32\drivers\pacer.sys,-101 (PSched) - C:\WINDOWS\system32\DRIVERS\pacer.sys
O41 - Driver: Remote Access Auto Connection Driver (RasAcd) - C:\WINDOWS\System32\DRIVERS\rasacd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32005 (Rasl2tp) - C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32007 (RasPppoe) - C:\WINDOWS\system32\DRIVERS\raspppoe.sys
O41 - Driver: @%systemroot%\system32\sstpsvc.dll,-202 (RasSstp) - C:\WINDOWS\system32\DRIVERS\rassstp.sys
O41 - Driver: (no object) (rimmptsk) - C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
O41 - Driver: (no object) (rimsptsk) - C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
O41 - Driver: Ricoh xD-Picture Card Driver (rismxdp) - C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
O41 - Driver: Link-Layer Topology Discovery Responder (rspndr) - C:\WINDOWS\system32\DRIVERS\rspndr.sys
O41 - Driver: (no object) (sdbus) - C:\WINDOWS\system32\DRIVERS\sdbus.sys
O41 - Driver: @%SystemRoot%\system32\tcpipcfg.dll,-50005 (Smb) - C:\WINDOWS\system32\DRIVERS\smb.sys
O41 - Driver: USB2.0 PC Camera (SNP2UVC) (SNP2UVC) - C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
O41 - Driver: Synaptics TouchPad Driver (SynTP) - C:\WINDOWS\system32\DRIVERS\SynTP.sys
O41 - Driver: Microsoft IPv6 Protocol Driver (Tcpip6) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Trufos (Trufos) - C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys
O41 - Driver: Pilote de carte miniport Microsoft Tun (tunmp) - C:\WINDOWS\system32\DRIVERS\tunmp.sys
O41 - Driver: Pilote de carte miniport Microsoft IPv6 Tunnel (tunnel) - C:\WINDOWS\system32\DRIVERS\tunnel.sys
O41 - Driver: Pilote de scanneur USB (usbscan) - C:\WINDOWS\system32\DRIVERS\usbscan.sys
O41 - Driver: Périphérique vidéo USB (WDM) (usbvideo) - C:\WINDOWS\System32\Drivers\usbvideo.sys
O41 - Driver: (no object) (vga) - C:\WINDOWS\system32\DRIVERS\vgapnp.sys
O41 - Driver: Remote Access IP ARP Driver (Wanarp) - C:\WINDOWS\system32\DRIVERS\wanarp.sys
O41 - Driver: Remote Access IPv6 ARP Driver (Wanarpv6) - C:\WINDOWS\system32\DRIVERS\wanarp.sys
O41 - Driver: (no object) (winachsf) - C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
O41 - Driver: Winbond IR Transceiver (winbondcir) - C:\WINDOWS\system32\DRIVERS\winbondcir.sys
O41 - Driver: WpdUsb (WpdUsb) - C:\WINDOWS\system32\DRIVERS\wpdusb.sys
O41 - Driver: (no object) (WUDFRd) - C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
O41 - Driver: (no object) (XAudio) - C:\WINDOWS\system32\DRIVERS\xaudio.sys
O41 - Driver: {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) - C:\Program Files\Acer Arcade Deluxe\Play Movie\000.fcl

---\\ Logiciels installés (O42)
O42 - Logiciel: Acer Arcade Deluxe
O42 - Logiciel: Acer Crystal Eye webcam
O42 - Logiciel: Acer Empowering Technology
O42 - Logiciel: Acer GameZone Console 2.0.1.1
O42 - Logiciel: Acer GridVista
O42 - Logiciel: Acer Mobility Center Plug-In
O42 - Logiciel: Acer ScreenSaver
O42 - Logiciel: Acer eAudio Management
O42 - Logiciel: Acer eDataSecurity Management
O42 - Logiciel: Acer eLock Management
O42 - Logiciel: Acer eNet Management
O42 - Logiciel: Acer ePower Management
O42 - Logiciel: Acer ePresentation Management
O42 - Logiciel: Acer eSettings Management
O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites
O42 - Logiciel: Ad-Remover By C_XX
O42 - Logiciel: Adobe Flash Player 10 ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin
O42 - Logiciel: Adobe Reader 8.1.0
O42 - Logiciel: Apple Application Support
O42 - Logiciel: Apple Mobile Device Support
O42 - Logiciel: Apple Software Update
O42 - Logiciel: ArcSoft PhotoBase 3
O42 - Logiciel: ArcSoft PhotoStudio 5
O42 - Logiciel: Archiveur WinRAR
O42 - Logiciel: Assistant de connexion Windows Live
O42 - Logiciel: Avanquest update
O42 - Logiciel: BitDefender Internet Security 2009
O42 - Logiciel: Bonjour
O42 - Logiciel: Broadcom Gigabit Integrated Controller
O42 - Logiciel: C24_USB_Driver_2.0.2.9_for_XP_Vista32
O42 - Logiciel: CCleaner (remove only)
O42 - Logiciel: CanoScan LiDE20,30 Manual
O42 - Logiciel: Catalyst Control Center - Branding
O42 - Logiciel: FileZilla Client 3.2.2.1
O42 - Logiciel: Galerie de photos Windows Live
O42 - Logiciel: Google Earth
O42 - Logiciel: Google Toolbar for Internet Explorer
O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
O42 - Logiciel: IncrediMail
O42 - Logiciel: IncrediMail 2.0
O42 - Logiciel: Installation Windows Live
O42 - Logiciel: Intel® Matrix Storage Manager
O42 - Logiciel: Java(TM) 6 Update 15
O42 - Logiciel: Junk Mail filter update
O42 - Logiciel: Launch Manager
O42 - Logiciel: MSVCRT
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: Malwarebytes' Anti-Malware
O42 - Logiciel: Messenger Plus! Live
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft Choice Guard
O42 - Logiciel: Microsoft Office Live Add-in 1.3
O42 - Logiciel: Microsoft Office Outlook Connector
O42 - Logiciel: Microsoft Office Professional Edition 2003
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU]
O42 - Logiciel: Microsoft Search Enhancement Pack
O42 - Logiciel: Microsoft Silverlight
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86)
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86)
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable
O42 - Logiciel: Microsoft Works
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra
O42 - Logiciel: Motorola Driver Installation 3.2.0
O42 - Logiciel: Motorola Phone Tools
O42 - Logiciel: Mozilla Firefox (3.5.2)
O42 - Logiciel: NTI Backup NOW! 4.7
O42 - Logiciel: NTI CD & DVD-Maker
O42 - Logiciel: Nero - Burning Rom
O42 - Logiciel: Notepad++
O42 - Logiciel: Outil de téléchargement Windows Live
O42 - Logiciel: Peggle
O42 - Logiciel: PowerProducer
O42 - Logiciel: QuickTime
O42 - Logiciel: RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02
O42 - Logiciel: Realtek High Definition Audio Driver
O42 - Logiciel: Sandlot Games Client Services 1.2.2
O42 - Logiciel: Skype™ 4.0
O42 - Logiciel: SoftwareUpdate 1.0
O42 - Logiciel: Supercow
O42 - Logiciel: Synaptics Pointing Device Driver
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
O42 - Logiciel: Utilitaire de configuration iPhone
O42 - Logiciel: VLC media player 0.9.8a
O42 - Logiciel: Winbond CIR Drivers
O42 - Logiciel: Windows Live Call
O42 - Logiciel: Windows Live Communications Platform
O42 - Logiciel: Windows Live FolderShare
O42 - Logiciel: Windows Live Mail
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: Windows Live Movie Maker
O42 - Logiciel: Windows Live Toolbar
O42 - Logiciel: Windows Live Writer
O42 - Logiciel: XAvenger
O42 - Logiciel: Yahoo! Toolbar
O42 - Logiciel: adsl TV
O42 - Logiciel: iTunes

---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\Acer
O43 - CFD:Common File Directory ----D- C:\Program Files\Acer Arcade Deluxe
O43 - CFD:Common File Directory ----D- C:\Program Files\ACER CrystalEye webcam
O43 - CFD:Common File Directory ----D- C:\Program Files\Acer GameZone
O43 - CFD:Common File Directory ----D- C:\Program Files\Acer Inc
O43 - CFD:Common File Directory ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD:Common File Directory ----D- C:\Program Files\Ad-Remover
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\adslTV
O43 - CFD:Common File Directory ----D- C:\Program Files\AGI
O43 - CFD:Common File Directory ----D- C:\Program Files\ahead
O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software
O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update
O43 - CFD:Common File Directory ----D- C:\Program Files\ArcSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Avanquest update
O43 - CFD:Common File Directory ----D- C:\Program Files\Big Kahuna Reef
O43 - CFD:Common File Directory ----D- C:\Program Files\BitDefender
O43 - CFD:Common File Directory ----D- C:\Program Files\Bonjour
O43 - CFD:Common File Directory ----D- C:\Program Files\Broadcom
O43 - CFD:Common File Directory ----D- C:\Program Files\Canon
O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files\CONEXANT
O43 - CFD:Common File Directory ----D- C:\Program Files\CyberLink
O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers communs
O43 - CFD:Common File Directory ----D- C:\Program Files\FileZilla FTP Client
O43 - CFD:Common File Directory ----D- C:\Program Files\Google
O43 - CFD:Common File Directory ----D- C:\Program Files\IncrediMail
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Intel
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\iPod
O43 - CFD:Common File Directory ----D- C:\Program Files\iTunes
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Launch Manager
O43 - CFD:Common File Directory ----D- C:\Program Files\ma-config.com
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger Plus! Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office Outlook Connector
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET
O43 - CFD:Common File Directory ----D- C:\Program Files\Motorola
O43 - CFD:Common File Directory ----D- C:\Program Files\Motorola Phone Tools
O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0
O43 - CFD:Common File Directory ----D- C:\Program Files\Navilog1
O43 - CFD:Common File Directory ----D- C:\Program Files\NewTech Infosystems
O43 - CFD:Common File Directory ----D- C:\Program Files\Notepad++
O43 - CFD:Common File Directory ----D- C:\Program Files\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek
O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files\SiteAdvisor
O43 - CFD:Common File Directory R---D- C:\Program Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files\SUYIN
O43 - CFD:Common File Directory ----D- C:\Program Files\Synaptics
O43 - CFD:Common File Directory ----D- C:\Program Files\trend micro
O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Utilitaire de configuration iPhone
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\Winbond Electronics
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Calendar
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Collaboration
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Gallery
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar
O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR
O43 - CFD:Common File Directory ----D- C:\Program Files\Yahoo!
O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Apple
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\BitDefender
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\LightScribe
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Motorola Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\muvee Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\NewTech Infosystems
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Sandlot Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\snp2uvc
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD:Common File Directory -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:Last File Created 02/10/2009 - 20:47:58 ---A- C:\Windows\System32\FNTCACHE.DAT
O44 - LFC:Last File Created 02/10/2009 - 21:21:49 ---A- C:\Windows\DirectX.log
O44 - LFC:Last File Created 04/10/2009 - 19:44:25 --HA- C:\Windows\System32\ezsidmv.dat
O44 - LFC:Last File Created 06/10/2009 - 22:00:07 ---A- C:\Windows\System32\as.disabled
O44 - LFC:Last File Created 07/10/2009 - 22:32:34 ---A- C:\Windows\System32\bdod.bin
O44 - LFC:Last File Created 08/10/2009 - 17:35:14 ---A- C:\Windows\PFRO.log
O44 - LFC:Last File Created 08/10/2009 - 17:36:02 ---A- C:\Windows\WindowsUpdate.log
O44 - LFC:Last File Created 08/10/2009 - 20:19:07 ---A- C:\Windows\setupact.log
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\PerfStringBackup.INI
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\perfc009.dat
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\perfc00C.dat
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\perfh009.dat
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\perfh00C.dat
O44 - LFC:Last File Created 08/10/2009 - 21:10:00 -S-A- C:\Windows\bootstat.dat
O44 - LFC:Last File Created 10/09/2009 - 13:53:50 ---A- C:\Windows\System32\drivers\mbam.sys
O44 - LFC:Last File Created 10/09/2009 - 13:54:06 ---A- C:\Windows\System32\drivers\mbamswissarmy.sys
O44 - LFC:Last File Created 15/09/2009 - 21:35:33 --HA- C:\Windows\System32\drivers\Msft_Kernel_motmodem_01005.Wdf
O44 - LFC:Last File Created 15/09/2009 - 21:47:05 --HA- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
O44 - LFC:Last File Created 23/09/2009 - 20:04:11 ---A- C:\Windows\System32\jupdate-1.6.0_15-b03.log
O44 - LFC:Last File Created 29/09/2009 - 20:31:48 ---A- C:\Windows\setuperr.log
0
Réponse 27 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
9 oct. 2009 à 00:09
OK ça marche
_______________________________________________________________________

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: AVerMedia A310 DVB-T (A310) - C:\WINDOWS\system32\DRIVERS\AVerA310USB.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32000 (AsyncMac) - C:\WINDOWS\system32\DRIVERS\asyncmac.sys
O41 - Driver: (no object) (atikmdag) - C:\WINDOWS\system32\DRIVERS\atikmdag.sys
O41 - Driver: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60x) - C:\WINDOWS\system32\DRIVERS\b57nd60x.sys
O41 - Driver: AVerMedia A310 BDA DVBT Capture Device (BDASwCap) - C:\WINDOWS\system32\drivers\AVerA310Cap.sys
O41 - Driver: BitDefender Firewall NDIS Filter Service (Bdfndisf) - C:\WINDOWS\system32\DRIVERS\bdfndisf.sys
O41 - Driver: bdfsfltr (bdfsfltr) - C:\WINDOWS\system32\DRIVERS\bdfsfltr.sys
O41 - Driver: BDSelfPr (BDSelfPr) - C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys
O41 - Driver: BDVEDISK (BDVEDISK) - C:\Program Files\BitDefender\BitDefender 2009\BDVEDISK.sys
O41 - Driver: Pilote pour Batterie à méthode de contrôle ACPI Microsoft (CmBatt) - C:\WINDOWS\system32\DRIVERS\CmBatt.sys
O41 - Driver: Dritek Keyboard Filter Driver (DKbFltr) - C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
O41 - Driver: Filtre de décodeur DRM (Noyau Microsoft) (drmkaud) - C:\WINDOWS\system32\drivers\drmkaud.sys
O41 - Driver: Intel(R) PRO/1000 NDIS 6 Adapter Driver (E1G60) - C:\WINDOWS\system32\DRIVERS\E1G60I32.sys
O41 - Driver: GEAR ASPI Filter Driver (GEARAspiWDM) - C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
O41 - Driver: Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio (HdAudAddService) - C:\WINDOWS\system32\drivers\HdAudio.sys
O41 - Driver: (no object) (HSFHWAZL) - C:\WINDOWS\system32\DRIVERS\VSTAZL3.SYS
O41 - Driver: (no object) (HSF_DPV) - C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
O41 - Driver: (no object) (HSXHWAZL) - C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
O41 - Driver: Intel AHCI Controller (iaStor) - C:\WINDOWS\system32\DRIVERS\iaStor.sys
O41 - Driver: int15 (int15) - C:\Acer\Empowering Technology\eRecovery\int15.sys
O41 - Driver: Service for Realtek HD Audio (WDM) (IntcAzAudAddService) - C:\WINDOWS\system32\drivers\RTKVHDA.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32013 (IpFilterDriver) - C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
O41 - Driver: IP in IP Tunnel Driver (IpInIp) - C:\WINDOWS\system32\DRIVERS\ipinip.sys
O41 - Driver: Link-Layer Topology Discovery Mapper I/O Driver (lltdio) - C:\WINDOWS\system32\DRIVERS\lltdio.sys
O41 - Driver: (no object) (mdmxsdk) - C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
O41 - Driver: Service Pilote de fonction de classe Moniteur Microsoft (monitor) - C:\WINDOWS\system32\DRIVERS\monitor.sys
O41 - Driver: Motorola USB CDC ACM Driver (motmodem) - C:\WINDOWS\system32\DRIVERS\motmodem.sys
O41 - Driver: Proxy de service de répartition Microsoft (MSKSSRV) - C:\WINDOWS\system32\drivers\MSKSSRV.sys
O41 - Driver: Proxy d'horloge de répartition Microsoft (MSPCLOCK) - C:\WINDOWS\system32\drivers\MSPCLOCK.sys
O41 - Driver: Proxy de gestion de qualité de répartition Microsoft (MSPQM) - C:\WINDOWS\system32\drivers\MSPQM.sys
O41 - Driver: Convertisseur en T/site-à-site de répartition Microsoft (MSTEE) - C:\WINDOWS\system32\drivers\MSTEE.sys
O41 - Driver: Filtre NativeWiFi (NativeWifiP) - C:\WINDOWS\system32\DRIVERS\nwifi.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32001 (NdisTapi) - C:\WINDOWS\system32\DRIVERS\ndistapi.sys
O41 - Driver: NDIS Usermode I/O Protocol (Ndisuio) - C:\WINDOWS\system32\DRIVERS\ndisuio.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32002 (NdisWan) - C:\WINDOWS\system32\DRIVERS\ndiswan.sys
O41 - Driver: NetBIOS Interface (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: Pilote de carte Intel(R) Wireless WiFi Link pour Windows Vista 32 bits (NETw4v32) - C:\WINDOWS\system32\DRIVERS\NETw4v32.sys
O41 - Driver: Upper Class Filter Driver (NTIDrvr) - C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
O41 - Driver: (no object) (nvlddmkm) - C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
O41 - Driver: IPX Traffic Filter Driver (NwlnkFlt) - C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
O41 - Driver: IPX Traffic Forwarder Driver (NwlnkFwd) - C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32006 (PptpMiniport) - C:\WINDOWS\system32\DRIVERS\raspptp.sys
O41 - Driver: Profos (Profos) - C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys
O41 - Driver: @%SystemRoot%\System32\drivers\pacer.sys,-101 (PSched) - C:\WINDOWS\system32\DRIVERS\pacer.sys
O41 - Driver: Remote Access Auto Connection Driver (RasAcd) - C:\WINDOWS\System32\DRIVERS\rasacd.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32005 (Rasl2tp) - C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
O41 - Driver: @%systemroot%\system32\rascfg.dll,-32007 (RasPppoe) - C:\WINDOWS\system32\DRIVERS\raspppoe.sys
O41 - Driver: @%systemroot%\system32\sstpsvc.dll,-202 (RasSstp) - C:\WINDOWS\system32\DRIVERS\rassstp.sys
O41 - Driver: (no object) (rimmptsk) - C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
O41 - Driver: (no object) (rimsptsk) - C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
O41 - Driver: Ricoh xD-Picture Card Driver (rismxdp) - C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
O41 - Driver: Link-Layer Topology Discovery Responder (rspndr) - C:\WINDOWS\system32\DRIVERS\rspndr.sys
O41 - Driver: (no object) (sdbus) - C:\WINDOWS\system32\DRIVERS\sdbus.sys
O41 - Driver: @%SystemRoot%\system32\tcpipcfg.dll,-50005 (Smb) - C:\WINDOWS\system32\DRIVERS\smb.sys
O41 - Driver: USB2.0 PC Camera (SNP2UVC) (SNP2UVC) - C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
O41 - Driver: Synaptics TouchPad Driver (SynTP) - C:\WINDOWS\system32\DRIVERS\SynTP.sys
O41 - Driver: Microsoft IPv6 Protocol Driver (Tcpip6) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Trufos (Trufos) - C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys
O41 - Driver: Pilote de carte miniport Microsoft Tun (tunmp) - C:\WINDOWS\system32\DRIVERS\tunmp.sys
O41 - Driver: Pilote de carte miniport Microsoft IPv6 Tunnel (tunnel) - C:\WINDOWS\system32\DRIVERS\tunnel.sys
O41 - Driver: Pilote de scanneur USB (usbscan) - C:\WINDOWS\system32\DRIVERS\usbscan.sys
O41 - Driver: Périphérique vidéo USB (WDM) (usbvideo) - C:\WINDOWS\System32\Drivers\usbvideo.sys
O41 - Driver: (no object) (vga) - C:\WINDOWS\system32\DRIVERS\vgapnp.sys
O41 - Driver: Remote Access IP ARP Driver (Wanarp) - C:\WINDOWS\system32\DRIVERS\wanarp.sys
O41 - Driver: Remote Access IPv6 ARP Driver (Wanarpv6) - C:\WINDOWS\system32\DRIVERS\wanarp.sys
O41 - Driver: (no object) (winachsf) - C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
O41 - Driver: Winbond IR Transceiver (winbondcir) - C:\WINDOWS\system32\DRIVERS\winbondcir.sys
O41 - Driver: WpdUsb (WpdUsb) - C:\WINDOWS\system32\DRIVERS\wpdusb.sys
O41 - Driver: (no object) (WUDFRd) - C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
O41 - Driver: (no object) (XAudio) - C:\WINDOWS\system32\DRIVERS\xaudio.sys
O41 - Driver: {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) - C:\Program Files\Acer Arcade Deluxe\Play Movie\000.fcl

---\\ Logiciels installés (O42)
O42 - Logiciel: Acer Arcade Deluxe
O42 - Logiciel: Acer Crystal Eye webcam
O42 - Logiciel: Acer Empowering Technology
O42 - Logiciel: Acer GameZone Console 2.0.1.1
O42 - Logiciel: Acer GridVista
O42 - Logiciel: Acer Mobility Center Plug-In
O42 - Logiciel: Acer ScreenSaver
O42 - Logiciel: Acer eAudio Management
O42 - Logiciel: Acer eDataSecurity Management
O42 - Logiciel: Acer eLock Management
O42 - Logiciel: Acer eNet Management
O42 - Logiciel: Acer ePower Management
O42 - Logiciel: Acer ePresentation Management
O42 - Logiciel: Acer eSettings Management
O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites
O42 - Logiciel: Ad-Remover By C_XX
O42 - Logiciel: Adobe Flash Player 10 ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin
O42 - Logiciel: Adobe Reader 8.1.0
O42 - Logiciel: Apple Application Support
O42 - Logiciel: Apple Mobile Device Support
O42 - Logiciel: Apple Software Update
O42 - Logiciel: ArcSoft PhotoBase 3
O42 - Logiciel: ArcSoft PhotoStudio 5
O42 - Logiciel: Archiveur WinRAR
O42 - Logiciel: Assistant de connexion Windows Live
O42 - Logiciel: Avanquest update
O42 - Logiciel: BitDefender Internet Security 2009
O42 - Logiciel: Bonjour
O42 - Logiciel: Broadcom Gigabit Integrated Controller
O42 - Logiciel: C24_USB_Driver_2.0.2.9_for_XP_Vista32
O42 - Logiciel: CCleaner (remove only)
O42 - Logiciel: CanoScan LiDE20,30 Manual
O42 - Logiciel: Catalyst Control Center - Branding
O42 - Logiciel: FileZilla Client 3.2.2.1
O42 - Logiciel: Galerie de photos Windows Live
O42 - Logiciel: Google Earth
O42 - Logiciel: Google Toolbar for Internet Explorer
O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
O42 - Logiciel: IncrediMail
O42 - Logiciel: IncrediMail 2.0
O42 - Logiciel: Installation Windows Live
O42 - Logiciel: Intel® Matrix Storage Manager
O42 - Logiciel: Java(TM) 6 Update 15
O42 - Logiciel: Junk Mail filter update
O42 - Logiciel: Launch Manager
O42 - Logiciel: MSVCRT
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: Malwarebytes' Anti-Malware
O42 - Logiciel: Messenger Plus! Live
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft Choice Guard
O42 - Logiciel: Microsoft Office Live Add-in 1.3
O42 - Logiciel: Microsoft Office Outlook Connector
O42 - Logiciel: Microsoft Office Professional Edition 2003
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU]
O42 - Logiciel: Microsoft Search Enhancement Pack
O42 - Logiciel: Microsoft Silverlight
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86)
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86)
O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable
O42 - Logiciel: Microsoft Works
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra
O42 - Logiciel: Motorola Driver Installation 3.2.0
O42 - Logiciel: Motorola Phone Tools
O42 - Logiciel: Mozilla Firefox (3.5.2)
O42 - Logiciel: NTI Backup NOW! 4.7
O42 - Logiciel: NTI CD & DVD-Maker
O42 - Logiciel: Nero - Burning Rom
O42 - Logiciel: Notepad++
O42 - Logiciel: Outil de téléchargement Windows Live
O42 - Logiciel: Peggle
O42 - Logiciel: PowerProducer
O42 - Logiciel: QuickTime
O42 - Logiciel: RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02
O42 - Logiciel: Realtek High Definition Audio Driver
O42 - Logiciel: Sandlot Games Client Services 1.2.2
O42 - Logiciel: Skype™ 4.0
O42 - Logiciel: SoftwareUpdate 1.0
O42 - Logiciel: Supercow
O42 - Logiciel: Synaptics Pointing Device Driver
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
O42 - Logiciel: Utilitaire de configuration iPhone
O42 - Logiciel: VLC media player 0.9.8a
O42 - Logiciel: Winbond CIR Drivers
O42 - Logiciel: Windows Live Call
O42 - Logiciel: Windows Live Communications Platform
O42 - Logiciel: Windows Live FolderShare
O42 - Logiciel: Windows Live Mail
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: Windows Live Movie Maker
O42 - Logiciel: Windows Live Toolbar
O42 - Logiciel: Windows Live Writer
O42 - Logiciel: XAvenger
O42 - Logiciel: Yahoo! Toolbar
O42 - Logiciel: adsl TV
O42 - Logiciel: iTunes

---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\Acer
O43 - CFD:Common File Directory ----D- C:\Program Files\Acer Arcade Deluxe
O43 - CFD:Common File Directory ----D- C:\Program Files\ACER CrystalEye webcam
O43 - CFD:Common File Directory ----D- C:\Program Files\Acer GameZone
O43 - CFD:Common File Directory ----D- C:\Program Files\Acer Inc
O43 - CFD:Common File Directory ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD:Common File Directory ----D- C:\Program Files\Ad-Remover
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\adslTV
O43 - CFD:Common File Directory ----D- C:\Program Files\AGI
O43 - CFD:Common File Directory ----D- C:\Program Files\ahead
O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software
O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update
O43 - CFD:Common File Directory ----D- C:\Program Files\ArcSoft
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Avanquest update
O43 - CFD:Common File Directory ----D- C:\Program Files\Big Kahuna Reef
O43 - CFD:Common File Directory ----D- C:\Program Files\BitDefender
O43 - CFD:Common File Directory ----D- C:\Program Files\Bonjour
O43 - CFD:Common File Directory ----D- C:\Program Files\Broadcom
O43 - CFD:Common File Directory ----D- C:\Program Files\Canon
O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files\CONEXANT
O43 - CFD:Common File Directory ----D- C:\Program Files\CyberLink
O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers communs
O43 - CFD:Common File Directory ----D- C:\Program Files\FileZilla FTP Client
O43 - CFD:Common File Directory ----D- C:\Program Files\Google
O43 - CFD:Common File Directory ----D- C:\Program Files\IncrediMail
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Intel
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\iPod
O43 - CFD:Common File Directory ----D- C:\Program Files\iTunes
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Launch Manager
O43 - CFD:Common File Directory ----D- C:\Program Files\ma-config.com
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger Plus! Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office Outlook Connector
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET
O43 - CFD:Common File Directory ----D- C:\Program Files\Motorola
O43 - CFD:Common File Directory ----D- C:\Program Files\Motorola Phone Tools
O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0
O43 - CFD:Common File Directory ----D- C:\Program Files\Navilog1
O43 - CFD:Common File Directory ----D- C:\Program Files\NewTech Infosystems
O43 - CFD:Common File Directory ----D- C:\Program Files\Notepad++
O43 - CFD:Common File Directory ----D- C:\Program Files\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime
O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek
O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files\SiteAdvisor
O43 - CFD:Common File Directory R---D- C:\Program Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files\SUYIN
O43 - CFD:Common File Directory ----D- C:\Program Files\Synaptics
O43 - CFD:Common File Directory ----D- C:\Program Files\trend micro
O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Utilitaire de configuration iPhone
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\Winbond Electronics
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Calendar
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Collaboration
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Gallery
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar
O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR
O43 - CFD:Common File Directory ----D- C:\Program Files\Yahoo!
O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Apple
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\BitDefender
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\LightScribe
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Motorola Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\muvee Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\NewTech Infosystems
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Oberon Media
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Sandlot Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\snp2uvc
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD:Common File Directory -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:Last File Created 02/10/2009 - 20:47:58 ---A- C:\Windows\System32\FNTCACHE.DAT
O44 - LFC:Last File Created 02/10/2009 - 21:21:49 ---A- C:\Windows\DirectX.log
O44 - LFC:Last File Created 04/10/2009 - 19:44:25 --HA- C:\Windows\System32\ezsidmv.dat
O44 - LFC:Last File Created 06/10/2009 - 22:00:07 ---A- C:\Windows\System32\as.disabled
O44 - LFC:Last File Created 07/10/2009 - 22:32:34 ---A- C:\Windows\System32\bdod.bin
O44 - LFC:Last File Created 08/10/2009 - 17:35:14 ---A- C:\Windows\PFRO.log
O44 - LFC:Last File Created 08/10/2009 - 17:36:02 ---A- C:\Windows\WindowsUpdate.log
O44 - LFC:Last File Created 08/10/2009 - 20:19:07 ---A- C:\Windows\setupact.log
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\PerfStringBackup.INI
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\perfc009.dat
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\perfc00C.dat
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\perfh009.dat
O44 - LFC:Last File Created 08/10/2009 - 20:20:28 ---A- C:\Windows\System32\perfh00C.dat
O44 - LFC:Last File Created 08/10/2009 - 21:10:00 -S-A- C:\Windows\bootstat.dat
O44 - LFC:Last File Created 10/09/2009 - 13:53:50 ---A- C:\Windows\System32\drivers\mbam.sys
O44 - LFC:Last File Created 10/09/2009 - 13:54:06 ---A- C:\Windows\System32\drivers\mbamswissarmy.sys
O44 - LFC:Last File Created 15/09/2009 - 21:35:33 --HA- C:\Windows\System32\drivers\Msft_Kernel_motmodem_01005.Wdf
O44 - LFC:Last File Created 15/09/2009 - 21:47:05 --HA- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
O44 - LFC:Last File Created 23/09/2009 - 20:04:11 ---A- C:\Windows\System32\jupdate-1.6.0_15-b03.log
O44 - LFC:Last File Created 29/09/2009 - 20:31:48 ---A- C:\Windows\setuperr.log
0
Réponse 28 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
9 oct. 2009 à 00:10
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:13:43 ---A- C:\Windows\Prefetch\Layout.ini
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:21:06 ---A- C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:21:06 ---A- C:\Windows\Prefetch\DFRGNTFS.EXE-7E4077FE.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:47:09 ---A- C:\Windows\Prefetch\NAVILOG1.EXE-C6CFF4A1.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:47:51 ---A- C:\Windows\Prefetch\CHKNTFS.EXE-4D884E7D.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:47:51 ---A- C:\Windows\Prefetch\GETPATHS.EXE-E690506B.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:48:53 ---A- C:\Windows\Prefetch\OSV.EXE-4FE3C523.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:52:02 ---A- C:\Windows\Prefetch\WSQMCONS.EXE-118B52B7.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:57:08 ---A- C:\Windows\Prefetch\CATCHME.EXE-FE243694.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:58:59 ---A- C:\Windows\Prefetch\FAV.EXE-A4DBC5FC.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:04:53 ---A- C:\Windows\Prefetch\SHUTDOWN.EXE-E7D5C9CC.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:05:04 ---A- C:\Windows\Prefetch\WLRMDR.EXE-C2B47318.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:07:06 ---A- C:\Windows\Prefetch\ALG.EXE-1D11534C.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:07:09 ---A- C:\Windows\Prefetch\PRESENTATIONSETTINGS.EXE-2F4708C9.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:07:47 ---A- C:\Windows\Prefetch\SORT.EXE-99A4F778.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:07:56 ---A- C:\Windows\Prefetch\GNC.EXE-A09CA6F0.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:09:17 ---A- C:\Windows\Prefetch\GNC.EXE-6FDCCFE2.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:09:17 ---A- C:\Windows\Prefetch\GNC.EXE-7D4CB148.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:09:17 ---A- C:\Windows\Prefetch\GNC.EXE-B831DDB9.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:09:41 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-86E0E9B9.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:31:41 ---A- C:\Windows\Prefetch\SVCHOST.EXE-CFF8C7D9.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:40:41 ---A- C:\Windows\Prefetch\MPHONETOOLS.EXE-DB08BC9E.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:41:59 ---A- C:\Windows\Prefetch\TOOLBARSD.EXE-E7F863DE.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:44:56 ---A- C:\Windows\Prefetch\FIND.EXE-E2237F6D.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:44:57 ---A- C:\Windows\Prefetch\SETPATH.EXE-07E5BD22.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:44:58 ---A- C:\Windows\Prefetch\OSV.EXE-31EF8BDD.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:44:58 ---A- C:\Windows\Prefetch\WSCRIPT.EXE-52CF1F0C.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:03 ---A- C:\Windows\Prefetch\PV.EXE-DD51ED13.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:03 ---A- C:\Windows\Prefetch\REGEDIT.EXE-90FEEA06.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:17 ---A- C:\Windows\Prefetch\ATTRIB.EXE-A990CB86.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:27 ---A- C:\Windows\Prefetch\SC.EXE-945D79AE.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:46 ---A- C:\Windows\Prefetch\FINDSTR.EXE-2E9C6FE2.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:58:24 ---A- C:\Windows\Prefetch\MBAM-SETUP.EXE-6C40DF23.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:58:25 ---A- C:\Windows\Prefetch\MBAM-SETUP.TMP-373BF8C4.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:59:30 ---A- C:\Windows\Prefetch\MBAMGUI.EXE-4FE652ED.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:59:31 ---A- C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 22:00:08 ---A- C:\Windows\Prefetch\ITUNESHELPER.EXE-FCF4252E.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 22:00:17 ---A- C:\Windows\Prefetch\EHMSAS.EXE-2D3B2F21.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:24:54 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-6F94BF04.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:25:58 ---A- C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:27:14 ---A- C:\Windows\Prefetch\SILVERLIGHT.3.0.EXE-BEFA2024.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:27:16 ---A- C:\Windows\Prefetch\INSTALL.EXE-70ABB4D6.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:27:16 ---A- C:\Windows\Prefetch\MSI95E9.TMP-AD85F328.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:27:47 ---A- C:\Windows\Prefetch\SEAPORT.EXE-61743F47.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:31:25 ---A- C:\Windows\Prefetch\ACER CRYSTAL EYE WEBCAM.EXE-F3CB14D4.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:54:30 ---A- C:\Windows\Prefetch\OUTLOOK.EXE-C10375AB.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:04:52 ---A- C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:05:04 ---A- C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:05:07 ---A- C:\Windows\Prefetch\CSC.EXE-A3B8D95D.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:05:07 ---A- C:\Windows\Prefetch\CVTRES.EXE-069169FB.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:05:12 ---A- C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:12:20 ---A- C:\Windows\Prefetch\VLC.EXE-A11F73EE.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 19:39:28 ---A- C:\Windows\Prefetch\SETAUDIO.EXE-CB581C61.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 19:48:37 ---A- C:\Windows\Prefetch\PYTHONW.EXE-EA868671.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 19:48:39 ---A- C:\Windows\Prefetch\DLLHOST.EXE-7ED62AA2.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 20:21:12 ---A- C:\Windows\Prefetch\ACRORD32INFO.EXE-500FD695.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 20:36:57 ---A- C:\Windows\Prefetch\IMLC.EXE-51CFD0FD.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:10:38 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-7C58D346.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:10:38 ---A- C:\Windows\Prefetch\SIGNCHECK.EXE-F7A4690C.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:10:44 ---A- C:\Windows\Prefetch\RSIT.EXE-C41443D6.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:47:09 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-1304AE86.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:58:59 ---A- C:\Windows\Prefetch\RUNXX.EXE-BD684DBD.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:59:07 ---A- C:\Windows\Prefetch\CDMKR32.EXE-3BB1E0CC.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:59:56 ---A- C:\Windows\Prefetch\SECCENTER.EXE-39AA8555.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:12:39 ---A- C:\Windows\Prefetch\WRITEACERADAPTERKEY.EXE-C47871BB.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:12:40 ---A- C:\Windows\Prefetch\SIDEBAR.EXE-FA75EA61.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:12:48 ---A- C:\Windows\Prefetch\EPOWER_DMC.EXE-F199D292.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:13:36 ---A- C:\Windows\Prefetch\POWERPNT.EXE-93414AAD.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:15:24 ---A- C:\Windows\Prefetch\IELOWUTIL.EXE-3885C25E.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:32:27 ---A- C:\Windows\Prefetch\FLASHUTIL10B.EXE-06DAF439.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:32:33 ---A- C:\Windows\Prefetch\GOOGLETOOLBARUSER_32.EXE-4E14BB2A.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:33:13 ---A- C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:33:48 ---A- C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:34:05 ---A- C:\Windows\Prefetch\DLLHOST.EXE-6BCB9FAA.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:36:12 ---A- C:\Windows\Prefetch\SKYPE.EXE-4929A84C.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:36:33 ---A- C:\Windows\Prefetch\MBAM.EXE-305FF92C.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:37:03 ---A- C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:37:19 ---A- C:\Windows\Prefetch\ACER.EMPOWERING.FRAMEWORK.SUP-54963495.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:37:22 ---A- C:\Windows\Prefetch\DLLHOST.EXE-8EF34503.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:39:14 ---A- C:\Windows\Prefetch\CONIME.EXE-9781FD5F.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:48:32 ---A- C:\Windows\Prefetch\WERCON.EXE-E36BD04E.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:05:26 ---A- C:\Windows\Prefetch\UISCAN.EXE-DF5279E0.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:06:41 ---A- C:\Windows\Prefetch\MFPMP.EXE-26F35380.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:14:10 ---A- C:\Windows\Prefetch\MSNMSGR.EXE-9974F251.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:14:34 ---A- C:\Windows\Prefetch\WLCOMM.EXE-272FF9F7.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:35:32 ---A- C:\Windows\Prefetch\UPGREPL.EXE-8D67C7F1.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:58:55 ---A- C:\Windows\Prefetch\CHCP.COM-61043047.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:58:55 ---A- C:\Windows\Prefetch\MODE.COM-DB34C082.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 22:04:55 ---A- C:\Windows\Prefetch\REG.EXE-E7E8BD26.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 22:06:27 ---A- C:\Windows\Prefetch\CMD.EXE-4A81B364.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 22:18:37 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 22:32:33 ---A- C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:36:14 ---A- C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:36:52 ---A- C:\Windows\Prefetch\EDSDTS.EXE-13B85DBF.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:36:55 ---A- C:\Windows\Prefetch\SYNTPENH.EXE-E6DC1353.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:06 ---A- C:\Windows\Prefetch\IPODSERVICE.EXE-37C43D64.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:08 ---A- C:\Windows\Prefetch\EAUDIO.EXE-EE0A24DD.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:12 ---A- C:\Windows\Prefetch\SKYPEPM.EXE-EECA8925.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:13 ---A- C:\Windows\Prefetch\CCC.EXE-AE792174.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:19 ---A- C:\Windows\Prefetch\IMLPP.EXE-8B4B9E1E.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:20 ---A- C:\Windows\Prefetch\IMAPP.EXE-005076D7.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:48:39 ---A- C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 18:02:13 ---A- C:\Windows\Prefetch\SSTEXT3D.SCR-DBBF7C58.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:18:26 ---A- C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:18:32 ---A- C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:18:52 ---A- C:\Windows\Prefetch\AgCx_SC2.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:19:05 ---A- C:\Windows\Prefetch\DRVINST.EXE-4CB4314A.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:21:42 ---A- C:\Windows\Prefetch\IPCONFIG.EXE-912F3D5B.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:27:51 ---A- C:\Windows\Prefetch\WMPLAYER.EXE-BAD6BD53.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:27:53 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-41CD37D2.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:01 ---A- C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:01 ---A- C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:02 ---A- C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:02 ---A- C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:03 ---A- C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:09 ---A- C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:21 ---A- C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:35 ---A- C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:52 ---A- C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:11:03 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-5D22A0B6.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:11:09 ---A- C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:11:29 ---A- C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:12:35 ---A- C:\Windows\Prefetch\IMNOTFY.EXE-E138605A.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:12:57 ---A- C:\Windows\Prefetch\INCMAIL.EXE-8674A44D.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:14:40 ---A- C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1115839460-3346716925-1851633873-1000.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:14:41 ---A- C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1115839460-3346716925-1851633873-1000.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:15:10 ---A- C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-09540BCD.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:15:19 ---A- C:\Windows\Prefetch\GOOGLEUPDATER.EXE-39628337.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:25:31 ---A- C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:37:38 ---A- C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:41:26 ---A- C:\Windows\Prefetch\WINWORD.EXE-71DAFA5C.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:41:27 ---A- C:\Windows\Prefetch\OFFICELIVESIGNIN.EXE-B83AEDE8.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:49:32 ---A- C:\Windows\Prefetch\SSVAGENT.EXE-42E515EF.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:49:41 ---A- C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:49:41 ---A- C:\Windows\Prefetch\WLTUSER.EXE-697D492E.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:51:51 ---A- C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:52:07 ---A- C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:53:09 ---A- C:\Windows\Prefetch\MSFEEDSSYNC.EXE-6E6FBDF4.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:53:46 ---A- C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf

---\\ Export de clé d'application autorisée (ECAA)(O47)
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr"

---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\volmgrx.sys

---\\ Trojan Driver Search Data (TDSD) (O52)
O52 - TDSD:HKLM\...\Drivers\"timer"="timer.drv"
O52 - TDSD:HKLM\...\Drivers32\"vidc.mrle"="msrle32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.msvc"="msvidc32.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.imaadpcm"="imaadp32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msg711"="msg711.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msgsm610"="msgsm32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msadpcm"="msadp32.acm"
O52 - TDSD:HKLM\...\Drivers32\"midimapper"="midimap.dll"
O52 - TDSD:HKLM\...\Drivers32\"wavemapper"="msacm32.drv"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.UYVY"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YUY2"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVYU"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.IYUV"="iyuv_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.i420"="iyuv_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVU9"="tsbyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm"
O52 - TDSD:HKLM\...\Drivers32\"vidc.cvid"="iccvid.dll"
O52 - TDSD:HKLM\...\Drivers32\"MSVideo8"="VfWWDM32.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.mkdmp3enc"="C:\PROGRA~1\ACERAR~1\DVWIZA~1\Kernel\Burner\MKDMP3Enc.ACM"
O52 - TDSD:HKLM\...\Drivers32\"msacm.siren"="sirenacm.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msaudio1"="msaud32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.sl_anet"="sl_anet.acm"
O52 - TDSD:HKLM\...\Drivers32\"wave1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"aux1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"wave"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"aux"="wdmaud.drv"
O52 - TDSD:HKLM\...\drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec"
O52 - TDSD:HKLM\...\drivers.desc\"wdmaud.drv"="Realtek High Definition Audio"
O52 - TDSD:HKLM\...\drivers.desc\"vfwwdm32.dll"="WDM Video For Windows Capture Driver (Win32)"
O52 - TDSD:HKLM\...\drivers.desc\"C:\PROGRA~1\ACERAR~1\VIDEOM~1\Kernel\Burner\MKDMP3Enc.ACM"="MP3 PowerEncoder"
O52 - TDSD:HKLM\...\drivers.desc\"C:\PROGRA~1\ACERAR~1\DVWIZA~1\Kernel\Burner\MKDMP3Enc.ACM"="MP3 PowerEncoder"
O52 - TDSD:HKLM\...\drivers.desc\"sirenacm.dll"="Messenger Audio Codec"
O52 - TDSD:HKLM\...\drivers.desc\"msaud32.acm"="Windows Media Audio"
O52 - TDSD:HKLM\...\drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec"

---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll

---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
0
Réponse 29 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
9 oct. 2009 à 00:10
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:13:43 ---A- C:\Windows\Prefetch\Layout.ini
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:21:06 ---A- C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:21:06 ---A- C:\Windows\Prefetch\DFRGNTFS.EXE-7E4077FE.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:47:09 ---A- C:\Windows\Prefetch\NAVILOG1.EXE-C6CFF4A1.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:47:51 ---A- C:\Windows\Prefetch\CHKNTFS.EXE-4D884E7D.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:47:51 ---A- C:\Windows\Prefetch\GETPATHS.EXE-E690506B.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:48:53 ---A- C:\Windows\Prefetch\OSV.EXE-4FE3C523.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:52:02 ---A- C:\Windows\Prefetch\WSQMCONS.EXE-118B52B7.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:57:08 ---A- C:\Windows\Prefetch\CATCHME.EXE-FE243694.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 19:58:59 ---A- C:\Windows\Prefetch\FAV.EXE-A4DBC5FC.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:04:53 ---A- C:\Windows\Prefetch\SHUTDOWN.EXE-E7D5C9CC.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:05:04 ---A- C:\Windows\Prefetch\WLRMDR.EXE-C2B47318.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:07:06 ---A- C:\Windows\Prefetch\ALG.EXE-1D11534C.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:07:09 ---A- C:\Windows\Prefetch\PRESENTATIONSETTINGS.EXE-2F4708C9.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:07:47 ---A- C:\Windows\Prefetch\SORT.EXE-99A4F778.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:07:56 ---A- C:\Windows\Prefetch\GNC.EXE-A09CA6F0.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:09:17 ---A- C:\Windows\Prefetch\GNC.EXE-6FDCCFE2.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:09:17 ---A- C:\Windows\Prefetch\GNC.EXE-7D4CB148.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:09:17 ---A- C:\Windows\Prefetch\GNC.EXE-B831DDB9.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:09:41 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-86E0E9B9.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:31:41 ---A- C:\Windows\Prefetch\SVCHOST.EXE-CFF8C7D9.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:40:41 ---A- C:\Windows\Prefetch\MPHONETOOLS.EXE-DB08BC9E.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:41:59 ---A- C:\Windows\Prefetch\TOOLBARSD.EXE-E7F863DE.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:44:56 ---A- C:\Windows\Prefetch\FIND.EXE-E2237F6D.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:44:57 ---A- C:\Windows\Prefetch\SETPATH.EXE-07E5BD22.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:44:58 ---A- C:\Windows\Prefetch\OSV.EXE-31EF8BDD.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:44:58 ---A- C:\Windows\Prefetch\WSCRIPT.EXE-52CF1F0C.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:03 ---A- C:\Windows\Prefetch\PV.EXE-DD51ED13.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:03 ---A- C:\Windows\Prefetch\REGEDIT.EXE-90FEEA06.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:17 ---A- C:\Windows\Prefetch\ATTRIB.EXE-A990CB86.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:27 ---A- C:\Windows\Prefetch\SC.EXE-945D79AE.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:45:46 ---A- C:\Windows\Prefetch\FINDSTR.EXE-2E9C6FE2.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:58:24 ---A- C:\Windows\Prefetch\MBAM-SETUP.EXE-6C40DF23.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:58:25 ---A- C:\Windows\Prefetch\MBAM-SETUP.TMP-373BF8C4.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:59:30 ---A- C:\Windows\Prefetch\MBAMGUI.EXE-4FE652ED.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 20:59:31 ---A- C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 22:00:08 ---A- C:\Windows\Prefetch\ITUNESHELPER.EXE-FCF4252E.pf
O45 - LFCP:Last File Created Prefetch 04/10/2009 - 22:00:17 ---A- C:\Windows\Prefetch\EHMSAS.EXE-2D3B2F21.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:24:54 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-6F94BF04.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:25:58 ---A- C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:27:14 ---A- C:\Windows\Prefetch\SILVERLIGHT.3.0.EXE-BEFA2024.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:27:16 ---A- C:\Windows\Prefetch\INSTALL.EXE-70ABB4D6.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:27:16 ---A- C:\Windows\Prefetch\MSI95E9.TMP-AD85F328.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:27:47 ---A- C:\Windows\Prefetch\SEAPORT.EXE-61743F47.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:31:25 ---A- C:\Windows\Prefetch\ACER CRYSTAL EYE WEBCAM.EXE-F3CB14D4.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 20:54:30 ---A- C:\Windows\Prefetch\OUTLOOK.EXE-C10375AB.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:04:52 ---A- C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:05:04 ---A- C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:05:07 ---A- C:\Windows\Prefetch\CSC.EXE-A3B8D95D.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:05:07 ---A- C:\Windows\Prefetch\CVTRES.EXE-069169FB.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:05:12 ---A- C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf
O45 - LFCP:Last File Created Prefetch 05/10/2009 - 21:12:20 ---A- C:\Windows\Prefetch\VLC.EXE-A11F73EE.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 19:39:28 ---A- C:\Windows\Prefetch\SETAUDIO.EXE-CB581C61.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 19:48:37 ---A- C:\Windows\Prefetch\PYTHONW.EXE-EA868671.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 19:48:39 ---A- C:\Windows\Prefetch\DLLHOST.EXE-7ED62AA2.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 20:21:12 ---A- C:\Windows\Prefetch\ACRORD32INFO.EXE-500FD695.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 20:36:57 ---A- C:\Windows\Prefetch\IMLC.EXE-51CFD0FD.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:10:38 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-7C58D346.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:10:38 ---A- C:\Windows\Prefetch\SIGNCHECK.EXE-F7A4690C.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:10:44 ---A- C:\Windows\Prefetch\RSIT.EXE-C41443D6.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:47:09 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-1304AE86.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:58:59 ---A- C:\Windows\Prefetch\RUNXX.EXE-BD684DBD.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:59:07 ---A- C:\Windows\Prefetch\CDMKR32.EXE-3BB1E0CC.pf
O45 - LFCP:Last File Created Prefetch 06/10/2009 - 21:59:56 ---A- C:\Windows\Prefetch\SECCENTER.EXE-39AA8555.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:12:39 ---A- C:\Windows\Prefetch\WRITEACERADAPTERKEY.EXE-C47871BB.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:12:40 ---A- C:\Windows\Prefetch\SIDEBAR.EXE-FA75EA61.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:12:48 ---A- C:\Windows\Prefetch\EPOWER_DMC.EXE-F199D292.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:13:36 ---A- C:\Windows\Prefetch\POWERPNT.EXE-93414AAD.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:15:24 ---A- C:\Windows\Prefetch\IELOWUTIL.EXE-3885C25E.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:32:27 ---A- C:\Windows\Prefetch\FLASHUTIL10B.EXE-06DAF439.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:32:33 ---A- C:\Windows\Prefetch\GOOGLETOOLBARUSER_32.EXE-4E14BB2A.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:33:13 ---A- C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:33:48 ---A- C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:34:05 ---A- C:\Windows\Prefetch\DLLHOST.EXE-6BCB9FAA.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:36:12 ---A- C:\Windows\Prefetch\SKYPE.EXE-4929A84C.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:36:33 ---A- C:\Windows\Prefetch\MBAM.EXE-305FF92C.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:37:03 ---A- C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:37:19 ---A- C:\Windows\Prefetch\ACER.EMPOWERING.FRAMEWORK.SUP-54963495.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:37:22 ---A- C:\Windows\Prefetch\DLLHOST.EXE-8EF34503.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:39:14 ---A- C:\Windows\Prefetch\CONIME.EXE-9781FD5F.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 20:48:32 ---A- C:\Windows\Prefetch\WERCON.EXE-E36BD04E.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:05:26 ---A- C:\Windows\Prefetch\UISCAN.EXE-DF5279E0.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:06:41 ---A- C:\Windows\Prefetch\MFPMP.EXE-26F35380.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:14:10 ---A- C:\Windows\Prefetch\MSNMSGR.EXE-9974F251.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:14:34 ---A- C:\Windows\Prefetch\WLCOMM.EXE-272FF9F7.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:35:32 ---A- C:\Windows\Prefetch\UPGREPL.EXE-8D67C7F1.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:58:55 ---A- C:\Windows\Prefetch\CHCP.COM-61043047.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 21:58:55 ---A- C:\Windows\Prefetch\MODE.COM-DB34C082.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 22:04:55 ---A- C:\Windows\Prefetch\REG.EXE-E7E8BD26.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 22:06:27 ---A- C:\Windows\Prefetch\CMD.EXE-4A81B364.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 22:18:37 ---A- C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf
O45 - LFCP:Last File Created Prefetch 07/10/2009 - 22:32:33 ---A- C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:36:14 ---A- C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:36:52 ---A- C:\Windows\Prefetch\EDSDTS.EXE-13B85DBF.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:36:55 ---A- C:\Windows\Prefetch\SYNTPENH.EXE-E6DC1353.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:06 ---A- C:\Windows\Prefetch\IPODSERVICE.EXE-37C43D64.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:08 ---A- C:\Windows\Prefetch\EAUDIO.EXE-EE0A24DD.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:12 ---A- C:\Windows\Prefetch\SKYPEPM.EXE-EECA8925.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:13 ---A- C:\Windows\Prefetch\CCC.EXE-AE792174.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:19 ---A- C:\Windows\Prefetch\IMLPP.EXE-8B4B9E1E.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:37:20 ---A- C:\Windows\Prefetch\IMAPP.EXE-005076D7.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 17:48:39 ---A- C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 18:02:13 ---A- C:\Windows\Prefetch\SSTEXT3D.SCR-DBBF7C58.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:18:26 ---A- C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:18:32 ---A- C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:18:52 ---A- C:\Windows\Prefetch\AgCx_SC2.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:19:05 ---A- C:\Windows\Prefetch\DRVINST.EXE-4CB4314A.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:21:42 ---A- C:\Windows\Prefetch\IPCONFIG.EXE-912F3D5B.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:27:51 ---A- C:\Windows\Prefetch\WMPLAYER.EXE-BAD6BD53.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 20:27:53 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-41CD37D2.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:01 ---A- C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:01 ---A- C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:02 ---A- C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:02 ---A- C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:03 ---A- C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:09 ---A- C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:21 ---A- C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:35 ---A- C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:10:52 ---A- C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:11:03 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-5D22A0B6.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:11:09 ---A- C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:11:29 ---A- C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:12:35 ---A- C:\Windows\Prefetch\IMNOTFY.EXE-E138605A.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:12:57 ---A- C:\Windows\Prefetch\INCMAIL.EXE-8674A44D.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:14:40 ---A- C:\Windows\Prefetch\AgGlUAD_S-1-5-21-1115839460-3346716925-1851633873-1000.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:14:41 ---A- C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-1115839460-3346716925-1851633873-1000.db
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:15:10 ---A- C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-09540BCD.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:15:19 ---A- C:\Windows\Prefetch\GOOGLEUPDATER.EXE-39628337.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:25:31 ---A- C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:37:38 ---A- C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:41:26 ---A- C:\Windows\Prefetch\WINWORD.EXE-71DAFA5C.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:41:27 ---A- C:\Windows\Prefetch\OFFICELIVESIGNIN.EXE-B83AEDE8.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:49:32 ---A- C:\Windows\Prefetch\SSVAGENT.EXE-42E515EF.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:49:41 ---A- C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:49:41 ---A- C:\Windows\Prefetch\WLTUSER.EXE-697D492E.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:51:51 ---A- C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:52:07 ---A- C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:53:09 ---A- C:\Windows\Prefetch\MSFEEDSSYNC.EXE-6E6FBDF4.pf
O45 - LFCP:Last File Created Prefetch 08/10/2009 - 21:53:46 ---A- C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf

---\\ Export de clé d'application autorisée (ECAA)(O47)
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr"
O47 - AAKE:Key Export SP - "C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe"="C:\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr"

---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Minimal\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS3\Network\volmgrx.sys

---\\ Trojan Driver Search Data (TDSD) (O52)
O52 - TDSD:HKLM\...\Drivers\"timer"="timer.drv"
O52 - TDSD:HKLM\...\Drivers32\"vidc.mrle"="msrle32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.msvc"="msvidc32.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.imaadpcm"="imaadp32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msg711"="msg711.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msgsm610"="msgsm32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msadpcm"="msadp32.acm"
O52 - TDSD:HKLM\...\Drivers32\"midimapper"="midimap.dll"
O52 - TDSD:HKLM\...\Drivers32\"wavemapper"="msacm32.drv"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.UYVY"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YUY2"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVYU"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.IYUV"="iyuv_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.i420"="iyuv_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVU9"="tsbyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm"
O52 - TDSD:HKLM\...\Drivers32\"vidc.cvid"="iccvid.dll"
O52 - TDSD:HKLM\...\Drivers32\"MSVideo8"="VfWWDM32.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.mkdmp3enc"="C:\PROGRA~1\ACERAR~1\DVWIZA~1\Kernel\Burner\MKDMP3Enc.ACM"
O52 - TDSD:HKLM\...\Drivers32\"msacm.siren"="sirenacm.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msaudio1"="msaud32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.sl_anet"="sl_anet.acm"
O52 - TDSD:HKLM\...\Drivers32\"wave1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"aux1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"wave"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"aux"="wdmaud.drv"
O52 - TDSD:HKLM\...\drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec"
O52 - TDSD:HKLM\...\drivers.desc\"wdmaud.drv"="Realtek High Definition Audio"
O52 - TDSD:HKLM\...\drivers.desc\"vfwwdm32.dll"="WDM Video For Windows Capture Driver (Win32)"
O52 - TDSD:HKLM\...\drivers.desc\"C:\PROGRA~1\ACERAR~1\VIDEOM~1\Kernel\Burner\MKDMP3Enc.ACM"="MP3 PowerEncoder"
O52 - TDSD:HKLM\...\drivers.desc\"C:\PROGRA~1\ACERAR~1\DVWIZA~1\Kernel\Burner\MKDMP3Enc.ACM"="MP3 PowerEncoder"
O52 - TDSD:HKLM\...\drivers.desc\"sirenacm.dll"="Messenger Audio Codec"
O52 - TDSD:HKLM\...\drivers.desc\"msaud32.acm"="Windows Media Audio"
O52 - TDSD:HKLM\...\drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec"

---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll

---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
0
Réponse 30 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
9 oct. 2009 à 00:13
---\\ Liste des services Legacy (LALS) (O64)
O64 - Services: CurCS - 03147745 (03147745) - LEGACY_03147745
O64 - Services: CurCS - 0543b3d9 (0543b3d9) - LEGACY_0543B3D9
O64 - Services: CurCS - 05fdda87 (05fdda87) - LEGACY_05FDDA87
O64 - Services: CurCS - 072fcb58 (072fcb58) - LEGACY_072FCB58
O64 - Services: CurCS - 075a0c17 (075a0c17) - LEGACY_075A0C17
O64 - Services: CurCS - 0a77df4a (0a77df4a) - LEGACY_0A77DF4A
O64 - Services: CurCS - 0bc5059c (0bc5059c) - LEGACY_0BC5059C
O64 - Services: CurCS - 0bf065d1 (0bf065d1) - LEGACY_0BF065D1
O64 - Services: CurCS - 0deed165 (0deed165) - LEGACY_0DEED165
O64 - Services: CurCS - 0ee54850 (0ee54850) - LEGACY_0EE54850
O64 - Services: CurCS - 107408e5 (107408e5) - LEGACY_107408E5
O64 - Services: CurCS - 11e4b974 (11e4b974) - LEGACY_11E4B974
O64 - Services: CurCS - 142c6d25 (142c6d25) - LEGACY_142C6D25
O64 - Services: CurCS - 1458a6fc (1458a6fc) - LEGACY_1458A6FC
O64 - Services: CurCS - 24873837 (24873837) - LEGACY_24873837
O64 - Services: CurCS - 2574f06c (2574f06c) - LEGACY_2574F06C
O64 - Services: CurCS - 29db77ec (29db77ec) - LEGACY_29DB77EC
O64 - Services: CurCS - 2a799fcb (2a799fcb) - LEGACY_2A799FCB
O64 - Services: CurCS - 2c112930 (2c112930) - LEGACY_2C112930
O64 - Services: CurCS - 2c98da79 (2c98da79) - LEGACY_2C98DA79
O64 - Services: CurCS - 30a51377 (30a51377) - LEGACY_30A51377
O64 - Services: CurCS - 354511f8 (354511f8) - LEGACY_354511F8
O64 - Services: CurCS - 3a172279 (3a172279) - LEGACY_3A172279
O64 - Services: CurCS - 3a35875a (3a35875a) - LEGACY_3A35875A
O64 - Services: CurCS - 3a80dfe8 (3a80dfe8) - LEGACY_3A80DFE8
O64 - Services: CurCS - 3bf3bdeb (3bf3bdeb) - LEGACY_3BF3BDEB
O64 - Services: CurCS - 416b37bb (416b37bb) - LEGACY_416B37BB
O64 - Services: CurCS - 4294a607 (4294a607) - LEGACY_4294A607
O64 - Services: CurCS - 4a948068 (4a948068) - LEGACY_4A948068
O64 - Services: CurCS - 4ac4fdda (4ac4fdda) - LEGACY_4AC4FDDA
O64 - Services: CurCS - 4ac535e8 (4ac535e8) - LEGACY_4AC535E8
O64 - Services: CurCS - 4ac7822c (4ac7822c) - LEGACY_4AC7822C
O64 - Services: CurCS - 4ad0ecf0 (4ad0ecf0) - LEGACY_4AD0ECF0
O64 - Services: CurCS - 4adade2c (4adade2c) - LEGACY_4ADADE2C
O64 - Services: CurCS - 4bcc865e (4bcc865e) - LEGACY_4BCC865E
O64 - Services: CurCS - 4c4d5c53 (4c4d5c53) - LEGACY_4C4D5C53
O64 - Services: CurCS - 4fdae482 (4fdae482) - LEGACY_4FDAE482
O64 - Services: CurCS - 50242881 (50242881) - LEGACY_50242881
O64 - Services: CurCS - 5aaad414 (5aaad414) - LEGACY_5AAAD414
O64 - Services: CurCS - 5c9da445 (5c9da445) - LEGACY_5C9DA445
O64 - Services: CurCS - 5ca635e8 (5ca635e8) - LEGACY_5CA635E8
O64 - Services: CurCS - 5dbe0c82 (5dbe0c82) - LEGACY_5DBE0C82
O64 - Services: CurCS - 5fd0be6b (5fd0be6b) - LEGACY_5FD0BE6B
O64 - Services: CurCS - 68326922 (68326922) - LEGACY_68326922
O64 - Services: CurCS - 68774ae4 (68774ae4) - LEGACY_68774AE4
O64 - Services: CurCS - 6942d485 (6942d485) - LEGACY_6942D485
O64 - Services: CurCS - 6b43c4d1 (6b43c4d1) - LEGACY_6B43C4D1
O64 - Services: CurCS - 6c4abd6b (6c4abd6b) - LEGACY_6C4ABD6B
O64 - Services: CurCS - 6dd04ae8 (6dd04ae8) - LEGACY_6DD04AE8
O64 - Services: CurCS - 6f762894 (6f762894) - LEGACY_6F762894
O64 - Services: CurCS - 711343c4 (711343c4) - LEGACY_711343C4
O64 - Services: CurCS - 7443a60b (7443a60b) - LEGACY_7443A60B
O64 - Services: CurCS - 756c1714 (756c1714) - LEGACY_756C1714
O64 - Services: CurCS - 75ee87d6 (75ee87d6) - LEGACY_75EE87D6
O64 - Services: CurCS - 77c0c66d (77c0c66d) - LEGACY_77C0C66D
O64 - Services: CurCS - 77cb3542 (77cb3542) - LEGACY_77CB3542
O64 - Services: CurCS - 77cb5af8 (77cb5af8) - LEGACY_77CB5AF8
O64 - Services: CurCS - 78ef4398 (78ef4398) - LEGACY_78EF4398
O64 - Services: CurCS - 797571fc (797571fc) - LEGACY_797571FC
O64 - Services: CurCS - 822c35fa (822c35fa) - LEGACY_822C35FA
O64 - Services: CurCS - 8265214f (8265214f) - LEGACY_8265214F
O64 - Services: CurCS - 8369c550 (8369c550) - LEGACY_8369C550
O64 - Services: CurCS - 84b56cb8 (84b56cb8) - LEGACY_84B56CB8
O64 - Services: CurCS - 86371d1c (86371d1c) - LEGACY_86371D1C
O64 - Services: CurCS - 871429e8 (871429e8) - LEGACY_871429E8
O64 - Services: CurCS - 8721bd5d (8721bd5d) - LEGACY_8721BD5D
O64 - Services: CurCS - 87685fc5 (87685fc5) - LEGACY_87685FC5
O64 - Services: CurCS - 8e1b7f8d (8e1b7f8d) - LEGACY_8E1B7F8D
O64 - Services: CurCS - 92bec9a7 (92bec9a7) - LEGACY_92BEC9A7
O64 - Services: CurCS - 9450c274 (9450c274) - LEGACY_9450C274
O64 - Services: CurCS - 94d696de (94d696de) - LEGACY_94D696DE
O64 - Services: CurCS - 96a5ac4f (96a5ac4f) - LEGACY_96A5AC4F
O64 - Services: CurCS - 96c2a6c0 (96c2a6c0) - LEGACY_96C2A6C0
O64 - Services: CurCS - 97092165 (97092165) - LEGACY_97092165
O64 - Services: CurCS - 9822ecd3 (9822ecd3) - LEGACY_9822ECD3
O64 - Services: CurCS - 9aed82ac (9aed82ac) - LEGACY_9AED82AC
O64 - Services: CurCS - 9c3b0b79 (9c3b0b79) - LEGACY_9C3B0B79
O64 - Services: CurCS - 9c4522de (9c4522de) - LEGACY_9C4522DE
O64 - Services: CurCS - a03acd08 (a03acd08) - LEGACY_A03ACD08
O64 - Services: CurCS - a08e452e (a08e452e) - LEGACY_A08E452E
O64 - Services: CurCS - a51b2cd6 (a51b2cd6) - LEGACY_A51B2CD6
O64 - Services: CurCS - a522c179 (a522c179) - LEGACY_A522C179
O64 - Services: CurCS - a648c3c0 (a648c3c0) - LEGACY_A648C3C0
O64 - Services: CurCS - a66b425c (a66b425c) - LEGACY_A66B425C
O64 - Services: CurCS - aa12964f (aa12964f) - LEGACY_AA12964F
O64 - Services: CurCS - Ancilliary Function Driver for Winsock (AFD) - LEGACY_AFD
O64 - Services: CurCS - aswFsBlk (aswFsBlk) - LEGACY_ASWFSBLK
O64 - Services: CurCS - aswMonFlt (aswMonFlt) - LEGACY_ASWMONFLT
O64 - Services: CurCS - aswRdr (aswRdr) - LEGACY_ASWRDR
O64 - Services: CurCS - avast! Self Protection (aswSP) - LEGACY_ASWSP
O64 - Services: CurCS - avast! Network Shield Support (aswTdi) - LEGACY_ASWTDI
O64 - Services: CurCS - b182e0be (b182e0be) - LEGACY_B182E0BE
O64 - Services: CurCS - b1e0a535 (b1e0a535) - LEGACY_B1E0A535
O64 - Services: CurCS - b34af014 (b34af014) - LEGACY_B34AF014
O64 - Services: CurCS - b9c57865 (b9c57865) - LEGACY_B9C57865
O64 - Services: CurCS - bc68e1ee (bc68e1ee) - LEGACY_BC68E1EE
O64 - Services: CurCS - BDFM (bdfm) - LEGACY_BDFM
O64 - Services: CurCS - bdfsfltr (bdfsfltr) - LEGACY_BDFSFLTR
O64 - Services: CurCS - bdftdif (bdftdif) - LEGACY_BDFTDIF
O64 - Services: CurCS - BDSelfPr (BDSelfPr) - LEGACY_BDSELFPR
O64 - Services: CurCS - BDVEDISK (BDVEDISK) - LEGACY_BDVEDISK
O64 - Services: CurCS - Beep (Beep) - LEGACY_BEEP
O64 - Services: CurCS - Bowser (bowser) - LEGACY_BOWSER
O64 - Services: CurCS - c025e85d (c025e85d) - LEGACY_C025E85D
O64 - Services: CurCS - c0dde596 (c0dde596) - LEGACY_C0DDE596
O64 - Services: CurCS - c22cd448 (c22cd448) - LEGACY_C22CD448
O64 - Services: CurCS - c57302fa (c57302fa) - LEGACY_C57302FA
O64 - Services: CurCS - c5fcc2a6 (c5fcc2a6) - LEGACY_C5FCC2A6
O64 - Services: CurCS - c66b94f0 (c66b94f0) - LEGACY_C66B94F0
O64 - Services: CurCS - c7e1c628 (c7e1c628) - LEGACY_C7E1C628
O64 - Services: CurCS - cad2a660 (cad2a660) - LEGACY_CAD2A660
O64 - Services: CurCS - catchme (catchme) - LEGACY_CATCHME
O64 - Services: CurCS - cb0a25b1 (cb0a25b1) - LEGACY_CB0A25B1
O64 - Services: CurCS - CD/DVD File System Reader (cdfs) - LEGACY_CDFS
O64 - Services: CurCS - Common Log (CLFS) (CLFS) - LEGACY_CLFS
O64 - Services: CurCS - Crcdisk Filter Driver (crcdisk) - LEGACY_CRCDISK
O64 - Services: CurCS - d1e5efe5 (d1e5efe5) - LEGACY_D1E5EFE5
O64 - Services: CurCS - d402320b (d402320b) - LEGACY_D402320B
O64 - Services: CurCS - d4a1d903 (d4a1d903) - LEGACY_D4A1D903
O64 - Services: CurCS - dd25de11 (dd25de11) - LEGACY_DD25DE11
O64 - Services: CurCS - ddc4f071 (ddc4f071) - LEGACY_DDC4F071
O64 - Services: CurCS - de6b2f5a (de6b2f5a) - LEGACY_DE6B2F5A
O64 - Services: CurCS - @%systemroot%\system32\drivers\dfsc.sys,-101 (DfsC) - LEGACY_DFSC
O64 - Services: CurCS - LDDM Graphics Subsystem (DXGKrnl) - LEGACY_DXGKRNL
O64 - Services: CurCS - e01432a1 (e01432a1) - LEGACY_E01432A1
O64 - Services: CurCS - e0d48082 (e0d48082) - LEGACY_E0D48082
O64 - Services: CurCS - e5f8ecec (e5f8ecec) - LEGACY_E5F8ECEC
O64 - Services: CurCS - e79e7762 (e79e7762) - LEGACY_E79E7762
O64 - Services: CurCS - e805df73 (e805df73) - LEGACY_E805DF73
O64 - Services: CurCS - e82f4673 (e82f4673) - LEGACY_E82F4673
O64 - Services: CurCS - ebb67604 (ebb67604) - LEGACY_EBB67604
O64 - Services: CurCS - ec05c494 (ec05c494) - LEGACY_EC05C494
O64 - Services: CurCS - ec172cf8 (ec172cf8) - LEGACY_EC172CF8
O64 - Services: CurCS - eca63a13 (eca63a13) - LEGACY_ECA63A13
O64 - Services: CurCS - f0401261 (f0401261) - LEGACY_F0401261
O64 - Services: CurCS - f0df77c0 (f0df77c0) - LEGACY_F0DF77C0
O64 - Services: CurCS - f4f29a4f (f4f29a4f) - LEGACY_F4F29A4F
O64 - Services: CurCS - f8072935 (f8072935) - LEGACY_F8072935
O64 - Services: CurCS - f8114665 (f8114665) - LEGACY_F8114665
O64 - Services: CurCS - FAT12/16/32 File System Driver (fastfat) - LEGACY_FASTFAT
O64 - Services: CurCS - fc253d82 (fc253d82) - LEGACY_FC253D82
O64 - Services: CurCS - fdc2f075 (fdc2f075) - LEGACY_FDC2F075
O64 - Services: CurCS - File Information FS MiniFilter (FileInfo) - LEGACY_FILEINFO
O64 - Services: CurCS - FltMgr (FltMgr) - LEGACY_FLTMGR
O64 - Services: CurCS - Fs_Rec (Fs_Rec) - LEGACY_FS_REC
O64 - Services: CurCS - HTTP (HTTP) - LEGACY_HTTP
O64 - Services: CurCS - int15 (int15) - LEGACY_INT15
O64 - Services: CurCS - @%systemroot%\system32\rascfg.dll,-32013 (IpFilterDriver) - LEGACY_IPFILTERDRIVER
O64 - Services: CurCS - IP Network Address Translator (IPNAT) - LEGACY_IPNAT
O64 - Services: CurCS - KSecDD (KSecDD) - LEGACY_KSECDD
O64 - Services: CurCS - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) - LEGACY_LLTDIO
O64 - Services: CurCS - UAC File Virtualization (luafv) - LEGACY_LUAFV
O64 - Services: CurCS - McAfee Inc. (mfehidk) - LEGACY_MFEHIDK
O64 - Services: CurCS - McAfee Inc. (mfehidk01) - LEGACY_MFEHIDK01
O64 - Services: CurCS - Mount Point Manager (MountMgr) - LEGACY_MOUNTMGR
O64 - Services: CurCS - MPFP (MPFP) - LEGACY_MPFP
O64 - Services: CurCS - @%SystemRoot%\system32\FirewallAPI.dll,-23092 (mpsdrv) - LEGACY_MPSDRV
O64 - Services: CurCS - WebDav Client Redirector Driver (MRxDAV) - LEGACY_MRXDAV
O64 - Services: CurCS - SMB MiniRedirector Wrapper and Engine (mrxsmb) - LEGACY_MRXSMB
O64 - Services: CurCS - SMB 1.x MiniRedirector (mrxsmb10) - LEGACY_MRXSMB10
O64 - Services: CurCS - SMB 2.0 MiniRedirector (mrxsmb20) - LEGACY_MRXSMB20
O64 - Services: CurCS - Msfs (Msfs) - LEGACY_MSFS
O64 - Services: CurCS - ISA/EISA Class Driver (msisadrv) - LEGACY_MSISADRV
O64 - Services: CurCS - Mup (Mup) - LEGACY_MUP
O64 - Services: CurCS - NativeWiFi Filter (NativeWifiP) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - NDIS System Driver (NDIS) - LEGACY_NDIS
O64 - Services: CurCS - NDIS Usermode I/O Protocol (Ndisuio) - LEGACY_NDISUIO
O64 - Services: CurCS - NDProxy (NDProxy) - LEGACY_NDPROXY
O64 - Services: CurCS - NetBIOS Interface (NetBIOS) - LEGACY_NETBIOS
O64 - Services: CurCS - NETBT (netbt) - LEGACY_NETBT
O64 - Services: CurCS - Npfs (Npfs) - LEGACY_NPFS
O64 - Services: CurCS - NSI proxy service (nsiproxy) - LEGACY_NSIPROXY
O64 - Services: CurCS - Ntfs (Ntfs) - LEGACY_NTFS
O64 - Services: CurCS - Null (Null) - LEGACY_NULL
O64 - Services: CurCS - PEAUTH (PEAUTH) - LEGACY_PEAUTH
O64 - Services: CurCS - Profos (Profos) - LEGACY_PROFOS
O64 - Services: CurCS - @%SystemRoot%\System32\drivers\pacer.sys,-101 (PSched) - LEGACY_PSCHED
O64 - Services: CurCS - PSDFilter (PSDFilter) - LEGACY_PSDFILTER
O64 - Services: CurCS - PSDNServ (PSDNServ) - LEGACY_PSDNSERV
O64 - Services: CurCS - PSDVdisk (psdvdisk) - LEGACY_PSDVDISK
O64 - Services: CurCS - Remote Access Auto Connection Driver (RasAcd) - LEGACY_RASACD
O64 - Services: CurCS - Redirected Buffering Sub Sysytem (rdbss) - LEGACY_RDBSS
O64 - Services: CurCS - RDPCDD (RDPCDD) - LEGACY_RDPCDD
O64 - Services: CurCS - RDP Encoder Mirror Driver (RDPENCDD) - LEGACY_RDPENCDD
O64 - Services: CurCS - Link-Layer Topology Discovery Responder (rspndr) - LEGACY_RSPNDR
O64 - Services: CurCS - Security Driver (secdrv) - LEGACY_SECDRV
O64 - Services: CurCS - @%SystemRoot%\system32\tcpipcfg.dll,-50005 (Smb) - LEGACY_SMB
O64 - Services: CurCS - Security Processor Loader Driver (spldr) - LEGACY_SPLDR
O64 - Services: CurCS - srv (srv) - LEGACY_SRV
O64 - Services: CurCS - srv2 (srv2) - LEGACY_SRV2
O64 - Services: CurCS - srvnet (srvnet) - LEGACY_SRVNET
O64 - Services: CurCS - @%SystemRoot%\system32\tcpipcfg.dll,-50003 (Tcpip) - LEGACY_TCPIP
O64 - Services: CurCS - TCP/IP Registry Compatibility (tcpipreg) - LEGACY_TCPIPREG
O64 - Services: CurCS - @%SystemRoot%\system32\tcpipcfg.dll,-50004 (tdx) - LEGACY_TDX
O64 - Services: CurCS - Trufos (Trufos) - LEGACY_TRUFOS
O64 - Services: CurCS - udfs (udfs) - LEGACY_UDFS
O64 - Services: CurCS - VgaSave (VgaSave) - LEGACY_VGASAVE
O64 - Services: CurCS - Dynamic Volume Manager (volmgrx) - LEGACY_VOLMGRX
O64 - Services: CurCS - Volumes de stockage (volsnap) - LEGACY_VOLSNAP
O64 - Services: CurCS - Remote Access IPv6 ARP Driver (Wanarpv6) - LEGACY_WANARPV6
O64 - Services: CurCS - Kernel Mode Driver Frameworks service (Wdf01000) - LEGACY_WDF01000
O64 - Services: CurCS - XAudio (XAudio) - LEGACY_XAUDIO
O64 - Services: CurCS - {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) - LEGACY_{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}
O64 - Services: CS003 - 03147745 (03147745) - LEGACY_03147745
O64 - Services: CS003 - 0543b3d9 (0543b3d9) - LEGACY_0543B3D9
O64 - Services: CS003 - 05fdda87 (05fdda87) - LEGACY_05FDDA87
O64 - Services: CS003 - 072fcb58 (072fcb58) - LEGACY_072FCB58
O64 - Services: CS003 - 075a0c17 (075a0c17) - LEGACY_075A0C17
O64 - Services: CS003 - 0a77df4a (0a77df4a) - LEGACY_0A77DF4A
O64 - Services: CS003 - 0bc5059c (0bc5059c) - LEGACY_0BC5059C
O64 - Services: CS003 - 0bf065d1 (0bf065d1) - LEGACY_0BF065D1
O64 - Services: CS003 - 0deed165 (0deed165) - LEGACY_0DEED165
O64 - Services: CS003 - 0ee54850 (0ee54850) - LEGACY_0EE54850
O64 - Services: CS003 - 107408e5 (107408e5) - LEGACY_107408E5
O64 - Services: CS003 - 11e4b974 (11e4b974) - LEGACY_11E4B974
O64 - Services: CS003 - 142c6d25 (142c6d25) - LEGACY_142C6D25
O64 - Services: CS003 - 1458a6fc (1458a6fc) - LEGACY_1458A6FC
O64 - Services: CS003 - 24873837 (24873837) - LEGACY_24873837
O64 - Services: CS003 - 2574f06c (2574f06c) - LEGACY_2574F06C
O64 - Services: CS003 - 29db77ec (29db77ec) - LEGACY_29DB77EC
O64 - Services: CS003 - 2a799fcb (2a799fcb) - LEGACY_2A799FCB
O64 - Services: CS003 - 2c112930 (2c112930) - LEGACY_2C112930
O64 - Services: CS003 - 2c98da79 (2c98da79) - LEGACY_2C98DA79
O64 - Services: CS003 - 30a51377 (30a51377) - LEGACY_30A51377
O64 - Services: CS003 - 354511f8 (354511f8) - LEGACY_354511F8
O64 - Services: CS003 - 3a172279 (3a172279) - LEGACY_3A172279
O64 - Services: CS003 - 3a35875a (3a35875a) - LEGACY_3A35875A
O64 - Services: CS003 - 3a80dfe8 (3a80dfe8) - LEGACY_3A80DFE8
O64 - Services: CS003 - 3bf3bdeb (3bf3bdeb) - LEGACY_3BF3BDEB
O64 - Services: CS003 - 416b37bb (416b37bb) - LEGACY_416B37BB
O64 - Services: CS003 - 4294a607 (4294a607) - LEGACY_4294A607
O64 - Services: CS003 - 4a948068 (4a948068) - LEGACY_4A948068
O64 - Services: CS003 - 4ac4fdda (4ac4fdda) - LEGACY_4AC4FDDA
O64 - Services: CS003 - 4ac535e8 (4ac535e8) - LEGACY_4AC535E8
O64 - Services: CS003 - 4ac7822c (4ac7822c) - LEGACY_4AC7822C
O64 - Services: CS003 - 4ad0ecf0 (4ad0ecf0) - LEGACY_4AD0ECF0
O64 - Services: CS003 - 4adade2c (4adade2c) - LEGACY_4ADADE2C
O64 - Services: CS003 - 4bcc865e (4bcc865e) - LEGACY_4BCC865E
O64 - Services: CS003 - 4c4d5c53 (4c4d5c53) - LEGACY_4C4D5C53
O64 - Services: CS003 - 4fdae482 (4fdae482) - LEGACY_4FDAE482
O64 - Services: CS003 - 50242881 (50242881) - LEGACY_50242881
O64 - Services: CS003 - 5aaad414 (5aaad414) - LEGACY_5AAAD414
O64 - Services: CS003 - 5c9da445 (5c9da445) - LEGACY_5C9DA445
O64 - Services: CS003 - 5ca635e8 (5ca635e8) - LEGACY_5CA635E8
O64 - Services: CS003 - 5dbe0c82 (5dbe0c82) - LEGACY_5DBE0C82
O64 - Services: CS003 - 5fd0be6b (5fd0be6b) - LEGACY_5FD0BE6B
O64 - Services: CS003 - 68326922 (68326922) - LEGACY_68326922
O64 - Services: CS003 - 68774ae4 (68774ae4) - LEGACY_68774AE4
O64 - Services: CS003 - 6942d485 (6942d485) - LEGACY_6942D485
O64 - Services: CS003 - 6b43c4d1 (6b43c4d1) - LEGACY_6B43C4D1
O64 - Services: CS003 - 6c4abd6b (6c4abd6b) - LEGACY_6C4ABD6B
O64 - Services: CS003 - 6dd04ae8 (6dd04ae8) - LEGACY_6DD04AE8
O64 - Services: CS003 - 6f762894 (6f762894) - LEGACY_6F762894
O64 - Services: CS003 - 711343c4 (711343c4) - LEGACY_711343C4
O64 - Services: CS003 - 7443a60b (7443a60b) - LEGACY_7443A60B
O64 - Services: CS003 - 756c1714 (756c1714) - LEGACY_756C1714
O64 - Services: CS003 - 75ee87d6 (75ee87d6) - LEGACY_75EE87D6
O64 - Services: CS003 - 77c0c66d (77c0c66d) - LEGACY_77C0C66D
O64 - Services: CS003 - 77cb3542 (77cb3542) - LEGACY_77CB3542
O64 - Services: CS003 - 77cb5af8 (77cb5af8) - LEGACY_77CB5AF8
O64 - Services: CS003 - 78ef4398 (78ef4398) - LEGACY_78EF4398
O64 - Services: CS003 - 797571fc (797571fc) - LEGACY_797571FC
O64 - Services: CS003 - 822c35fa (822c35fa) - LEGACY_822C35FA
O64 - Services: CS003 - 8265214f (8265214f) - LEGACY_8265214F
O64 - Services: CS003 - 8369c550 (8369c550) - LEGACY_8369C550
O64 - Services: CS003 - 84b56cb8 (84b56cb8) - LEGACY_84B56CB8
O64 - Services: CS003 - 86371d1c (86371d1c) - LEGACY_86371D1C
O64 - Services: CS003 - 871429e8 (871429e8) - LEGACY_871429E8
O64 - Services: CS003 - 8721bd5d (8721bd5d) - LEGACY_8721BD5D
O64 - Services: CS003 - 87685fc5 (87685fc5) - LEGACY_87685FC5
O64 - Services: CS003 - 8e1b7f8d (8e1b7f8d) - LEGACY_8E1B7F8D
O64 - Services: CS003 - 92bec9a7 (92bec9a7) - LEGACY_92BEC9A7
O64 - Services: CS003 - 9450c274 (9450c274) - LEGACY_9450C274
O64 - Services: CS003 - 94d696de (94d696de) - LEGACY_94D696DE
O64 - Services: CS003 - 96a5ac4f (96a5ac4f) - LEGACY_96A5AC4F
O64 - Services: CS003 - 96c2a6c0 (96c2a6c0) - LEGACY_96C2A6C0
O64 - Services: CS003 - 97092165 (97092165) - LEGACY_97092165
O64 - Services: CS003 - 9822ecd3 (9822ecd3) - LEGACY_9822ECD3
O64 - Services: CS003 - 9aed82ac (9aed82ac) - LEGACY_9AED82AC
O64 - Services: CS003 - 9c3b0b79 (9c3b0b79) - LEGACY_9C3B0B79
O64 - Services: CS003 - 9c4522de (9c4522de) - LEGACY_9C4522DE
O64 - Services: CS003 - a03acd08 (a03acd08) - LEGACY_A03ACD08
O64 - Services: CS003 - a08e452e (a08e452e) - LEGACY_A08E452E
O64 - Services: CS003 - a51b2cd6 (a51b2cd6) - LEGACY_A51B2CD6
O64 - Services: CS003 - a522c179 (a522c179) - LEGACY_A522C179
O64 - Services: CS003 - a648c3c0 (a648c3c0) - LEGACY_A648C3C0
O64 - Services: CS003 - a66b425c (a66b425c) - LEGACY_A66B425C
O64 - Services: CS003 - aa12964f (aa12964f) - LEGACY_AA12964F
O64 - Services: CS003 - Ancilliary Function Driver for Winsock (AFD) - LEGACY_AFD
O64 - Services: CS003 - aswFsBlk (aswFsBlk) - LEGACY_ASWFSBLK
O64 - Services: CS003 - aswMonFlt (aswMonFlt) - LEGACY_ASWMONFLT
O64 - Services: CS003 - aswRdr (aswRdr) - LEGACY_ASWRDR
O64 - Services: CS003 - avast! Self Protection (aswSP) - LEGACY_ASWSP
O64 - Services: CS003 - avast! Network Shield Support (aswTdi) - LEGACY_ASWTDI
O64 - Services: CS003 - b182e0be (b182e0be) - LEGACY_B182E0BE
O64 - Services: CS003 - b1e0a535 (b1e0a535) - LEGACY_B1E0A535
O64 - Services: CS003 - b34af014 (b34af014) - LEGACY_B34AF014
O64 - Services: CS003 - b9c57865 (b9c57865) - LEGACY_B9C57865
O64 - Services: CS003 - bc68e1ee (bc68e1ee) - LEGACY_BC68E1EE
O64 - Services: CS003 - BDFM (bdfm) - LEGACY_BDFM
O64 - Services: CS003 - bdfsfltr (bdfsfltr) - LEGACY_BDFSFLTR
O64 - Services: CS003 - bdftdif (bdftdif) - LEGACY_BDFTDIF
O64 - Services: CS003 - BDSelfPr (BDSelfPr) - LEGACY_BDSELFPR
O64 - Services: CS003 - BDVEDISK (BDVEDISK) - LEGACY_BDVEDISK
O64 - Services: CS003 - Beep (Beep) - LEGACY_BEEP
O64 - Services: CS003 - Bowser (bowser) - LEGACY_BOWSER
O64 - Services: CS003 - c025e85d (c025e85d) - LEGACY_C025E85D
O64 - Services: CS003 - c0dde596 (c0dde596) - LEGACY_C0DDE596
O64 - Services: CS003 - c22cd448 (c22cd448) - LEGACY_C22CD448
O64 - Services: CS003 - c57302fa (c57302fa) - LEGACY_C57302FA
O64 - Services: CS003 - c5fcc2a6 (c5fcc2a6) - LEGACY_C5FCC2A6
O64 - Services: CS003 - c66b94f0 (c66b94f0) - LEGACY_C66B94F0
O64 - Services: CS003 - c7e1c628 (c7e1c628) - LEGACY_C7E1C628
O64 - Services: CS003 - cad2a660 (cad2a660) - LEGACY_CAD2A660
O64 - Services: CS003 - catchme (catchme) - LEGACY_CATCHME
O64 - Services: CS003 - cb0a25b1 (cb0a25b1) - LEGACY_CB0A25B1
O64 - Services: CS003 - CD/DVD File System Reader (cdfs) - LEGACY_CDFS
O64 - Services: CS003 - Common Log (CLFS) (CLFS) - LEGACY_CLFS
O64 - Services: CS003 - Crcdisk Filter Driver (crcdisk) - LEGACY_CRCDISK
O64 - Services: CS003 - d1e5efe5 (d1e5efe5) - LEGACY_D1E5EFE5
O64 - Services: CS003 - d402320b (d402320b) - LEGACY_D402320B
O64 - Services: CS003 - d4a1d903 (d4a1d903) - LEGACY_D4A1D903
O64 - Services: CS003 - dd25de11 (dd25de11) - LEGACY_DD25DE11
O64 - Services: CS003 - ddc4f071 (ddc4f071) - LEGACY_DDC4F071
O64 - Services: CS003 - de6b2f5a (de6b2f5a) - LEGACY_DE6B2F5A
O64 - Services: CS003 - @%systemroot%\system32\drivers\dfsc.sys,-101 (DfsC) - LEGACY_DFSC
O64 - Services: CS003 - LDDM Graphics Subsystem (DXGKrnl) - LEGACY_DXGKRNL
O64 - Services: CS003 - e01432a1 (e01432a1) - LEGACY_E01432A1
O64 - Services: CS003 - e0d48082 (e0d48082) - LEGACY_E0D48082
O64 - Services: CS003 - e5f8ecec (e5f8ecec) - LEGACY_E5F8ECEC
O64 - Services: CS003 - e79e7762 (e79e7762) - LEGACY_E79E7762
O64 - Services: CS003 - e805df73 (e805df73) - LEGACY_E805DF73
O64 - Services: CS003 - e82f4673 (e82f4673) - LEGACY_E82F4673
O64 - Services: CS003 - ebb67604 (ebb67604) - LEGACY_EBB67604
O64 - Services: CS003 - ec05c494 (ec05c494) - LEGACY_EC05C494
O64 - Services: CS003 - ec172cf8 (ec172cf8) - LEGACY_EC172CF8
O64 - Services: CS003 - eca63a13 (eca63a13) - LEGACY_ECA63A13
O64 - Services: CS003 - f0401261 (f0401261) - LEGACY_F0401261
O64 - Services: CS003 - f0df77c0 (f0df77c0) - LEGACY_F0DF77C0
O64 - Services: CS003 - f4f29a4f (f4f29a4f) - LEGACY_F4F29A4F
O64 - Services: CS003 - f8072935 (f8072935) - LEGACY_F8072935
O64 - Services: CS003 - f8114665 (f8114665) - LEGACY_F8114665
O64 - Services: CS003 - FAT12/16/32 File System Driver (fastfat) - LEGACY_FASTFAT
O64 - Services: CS003 - fc253d82 (fc253d82) - LEGACY_FC253D82
O64 - Services: CS003 - fdc2f075 (fdc2f075) - LEGACY_FDC2F075
O64 - Services: CS003 - File Information FS MiniFilter (FileInfo) - LEGACY_FILEINFO
O64 - Services: CS003 - FltMgr (FltMgr) - LEGACY_FLTMGR
O64 - Services: CS003 - Fs_Rec (Fs_Rec) - LEGACY_FS_REC
O64 - Services: CS003 - HTTP (HTTP) - LEGACY_HTTP
O64 - Services: CS003 - int15 (int15) - LEGACY_INT15
O64 - Services: CS003 - @%systemroot%\system32\rascfg.dll,-32013 (IpFilterDriver) - LEGACY_IPFILTERDRIVER
O64 - Services: CS003 - IP Network Address Translator (IPNAT) - LEGACY_IPNAT
O64 - Services: CS003 - KSecDD (KSecDD) - LEGACY_KSECDD
O64 - Services: CS003 - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) - LEGACY_LLTDIO
O64 - Services: CS003 - UAC File Virtualization (luafv) - LEGACY_LUAFV
O64 - Services: CS003 - McAfee Inc. (mfehidk) - LEGACY_MFEHIDK
O64 - Services: CS003 - McAfee Inc. (mfehidk01) - LEGACY_MFEHIDK01
O64 - Services: CS003 - Mount Point Manager (MountMgr) - LEGACY_MOUNTMGR
O64 - Services: CS003 - MPFP (MPFP) - LEGACY_MPFP
O64 - Services: CS003 - @%SystemRoot%\system32\FirewallAPI.dll,-23092 (mpsdrv) - LEGACY_MPSDRV
O64 - Services: CS003 - WebDav Client Redirector Driver (MRxDAV) - LEGACY_MRXDAV
O64 - Services: CS003 - SMB MiniRedirector Wrapper and Engine (mrxsmb) - LEGACY_MRXSMB
O64 - Services: CS003 - SMB 1.x MiniRedirector (mrxsmb10) - LEGACY_MRXSMB10
O64 - Services: CS003 - SMB 2.0 MiniRedirector (mrxsmb20) - LEGACY_MRXSMB20
O64 - Services: CS003 - Msfs (Msfs) - LEGACY_MSFS
O64 - Services: CS003 - ISA/EISA Class Driver (msisadrv) - LEGACY_MSISADRV
O64 - Services: CS003 - Mup (Mup) - LEGACY_MUP
O64 - Services: CS003 - NativeWiFi Filter (NativeWifiP) - LEGACY_NATIVEWIFIP
O64 - Services: CS003 - NDIS System Driver (NDIS) - LEGACY_NDIS
O64 - Services: CS003 - NDIS Usermode I/O Protocol (Ndisuio) - LEGACY_NDISUIO
O64 - Services: CS003 - NDProxy (NDProxy) - LEGACY_NDPROXY
O64 - Services: CS003 - NetBIOS Interface (NetBIOS) - LEGACY_NETBIOS
O64 - Services: CS003 - NETBT (netbt) - LEGACY_NETBT
O64 - Services: CS003 - Npfs (Npfs) - LEGACY_NPFS
O64 - Services: CS003 - NSI proxy service (nsiproxy) - LEGACY_NSIPROXY
O64 - Services: CS003 - Ntfs (Ntfs) - LEGACY_NTFS
O64 - Services: CS003 - Null (Null) - LEGACY_NULL
O64 - Services: CS003 - PEAUTH (PEAUTH) - LEGACY_PEAUTH
O64 - Services: CS003 - Profos (Profos) - LEGACY_PROFOS
O64 - Services: CS003 - @%SystemRoot%\System32\drivers\pacer.sys,-101 (PSched) - LEGACY_PSCHED
O64 - Services: CS003 - PSDFilter (PSDFilter) - LEGACY_PSDFILTER
O64 - Services: CS003 - PSDNServ (PSDNServ) - LEGACY_PSDNSERV
O64 - Services: CS003 - PSDVdisk (psdvdisk) - LEGACY_PSDVDISK
O64 - Services: CS003 - Remote Access Auto Connection Driver (RasAcd) - LEGACY_RASACD
O64 - Services: CS003 - Redirected Buffering Sub Sysytem (rdbss) - LEGACY_RDBSS
O64 - Services: CS003 - RDPCDD (RDPCDD) - LEGACY_RDPCDD
O64 - Services: CS003 - RDP Encoder Mirror Driver (RDPENCDD) - LEGACY_RDPENCDD
O64 - Services: CS003 - Link-Layer Topology Discovery Responder (rspndr) - LEGACY_RSPNDR
O64 - Services: CS003 - Security Driver (secdrv) - LEGACY_SECDRV
O64 - Services: CS003 - @%SystemRoot%\system32\tcpipcfg.dll,-50005 (Smb) - LEGACY_SMB
O64 - Services: CS003 - Security Processor Loader Driver (spldr) - LEGACY_SPLDR
O64 - Services: CS003 - srv (srv) - LEGACY_SRV
O64 - Services: CS003 - srv2 (srv2) - LEGACY_SRV2
O64 - Services: CS003 - srvnet (srvnet) - LEGACY_SRVNET
O64 - Services: CS003 - @%SystemRoot%\system32\tcpipcfg.dll,-50003 (Tcpip) - LEGACY_TCPIP
O64 - Services: CS003 - TCP/IP Registry Compatibility (tcpipreg) - LEGACY_TCPIPREG
O64 - Services: CS003 - @%SystemRoot%\system32\tcpipcfg.dll,-50004 (tdx) - LEGACY_TDX
O64 - Services: CS003 - Trufos (Trufos) - LEGACY_TRUFOS
O64 - Services: CS003 - udfs (udfs) - LEGACY_UDFS
O64 - Services: CS003 - VgaSave (VgaSave) - LEGACY_VGASAVE
O64 - Services: CS003 - Dynamic Volume Manager (volmgrx) - LEGACY_VOLMGRX
O64 - Services: CS003 - Volumes de stockage (volsnap) - LEGACY_VOLSNAP
O64 - Services: CS003 - Remote Access IPv6 ARP Driver (Wanarpv6) - LEGACY_WANARPV6
O64 - Services: CS003 - Kernel Mode Driver Frameworks service (Wdf01000) - LEGACY_WDF01000
O64 - Services: CS003 - XAudio (XAudio) - LEGACY_XAUDIO
O64 - Services: CS003 - {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) - LEGACY_{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}


End of the scan: 1505 lines
0
Réponse 31 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
9 oct. 2009 à 00:15
Mon dieu qu'il est lent mon ordi!!!!!!
0
Réponse 32 / 59
jfkpresident Messages postés 13408 Date d'inscription lundi 3 septembre 2007 Statut Contributeur sécurité Dernière intervention 5 janvier 2015 1 175
9 oct. 2009 à 23:42
Télécharges ComboFix à partir d'un de ces liens :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe
https://forospyware.com
http://www.geekstogo.com/forum/files/file/197-combofix-by-subs/

Et important, enregistre le sur le bureau.

Avant d'utiliser ComboFix :

? Déconnecte toi d'internet et referme les fenêtres de tous les programmes en cours.

? Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
la protection en temps réel de ton Antivirus et de tes Antispywares,
qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.


Une fois fait, sur ton bureau double-clic sur Combofix.exe.

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redémarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt,.
est automatiquement sauvegardé et rangé à C:\Combofix.txt)

? Réactive la protection en temps réel de ton Antivirus et de tes Antispywares,
avant de te reconnecter à internet.

? Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
0
swan1966
10 oct. 2009 à 02:55
J'espère que je n'ai pas fait de conneries, car malgré que j'ai désactivé mon anti virus et par feu combofix me signalait qu'ils étaient activés alors c'était à mes risques et périls
merci encore et voilà le rapport


ComboFix 09-10-08.04 - Souâd 10/10/2009 2:26.1.2 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3070.1937 [GMT 2:00]
Lancé depuis: c:\users\Souâd\Desktop\ComboFix.exe
AV: Antivirus BitDefender *On-access scanning enabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}
FW: Pare-feu BitDefender *enabled* {4055920F-2E99-48A8-A270-4243D2B8F242}
SP: BitDefender AntiSpam *enabled* (Updated) {8B2012EC-32D4-494F-BC03-832DB3BDF911}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-1115839460-3346716925-1851633873-500
c:\windows\Downloaded Program Files\popcaploader.dll
c:\windows\Downloaded Program Files\popcaploader.inf

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-09-10 au 2009-10-10 ))))))))))))))))))))))))))))))))))))
.

2009-10-10 00:34 . 2009-10-10 00:34 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-10-08 20:52 . 2009-10-08 20:55 -------- d-----w- c:\program files\ZHPDiag
2009-10-07 21:08 . 2009-10-07 21:08 -------- d-sh--w- c:\users\SouÔd
2009-10-07 19:33 . 2009-10-07 21:06 -------- d-----w- c:\program files\Ad-Remover
2009-10-04 19:15 . 2009-10-04 19:45 -------- d-----w- C:\ToolBar SD
2009-10-04 18:47 . 2009-10-04 20:57 -------- d-----w- c:\program files\Navilog1
2009-10-04 18:44 . 2009-10-04 18:44 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-10-04 15:16 . 2009-10-04 15:17 -------- d-----w- C:\rsit
2009-10-04 15:16 . 2009-10-04 15:16 -------- d-----w- c:\program files\trend micro
2009-10-02 20:23 . 2009-10-06 18:38 -------- d-----w- c:\program files\Microsoft Silverlight
2009-10-02 20:23 . 2009-10-02 20:23 -------- d-----w- c:\program files\Microsoft Office Outlook Connector
2009-10-02 20:22 . 2009-10-02 20:22 -------- d-----w- c:\program files\Microsoft Sync Framework
2009-10-02 20:21 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2009-10-02 20:21 . 2009-10-02 20:21 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2009-10-02 20:20 . 2009-10-02 20:23 -------- d-----w- c:\program files\Microsoft
2009-10-01 21:14 . 2009-10-01 21:16 -------- d-----w- c:\programdata\IM
2009-10-01 21:14 . 2009-10-01 21:14 -------- d-----w- c:\programdata\IncrediMail
2009-10-01 21:14 . 2009-10-01 21:14 -------- d-----w- c:\program files\IncrediMail
2009-09-24 21:35 . 2009-10-09 09:46 815 ----a-w- C:\rtsr_eml_sr.dat
2009-09-24 21:35 . 2009-10-09 09:46 141 ----a-w- C:\dwl.dat
2009-09-24 21:35 . 2009-10-08 22:19 132 ----a-w- C:\httpdwl.dat
2009-09-24 20:19 . 2009-09-24 20:19 16 ----a-w- C:\asdict.dat
2009-09-21 18:03 . 2009-09-10 12:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-21 18:03 . 2009-10-04 19:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-09-21 18:03 . 2009-09-21 18:03 -------- d-----w- c:\programdata\Malwarebytes
2009-09-21 18:03 . 2009-09-10 12:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-21 17:59 . 2009-09-21 17:59 -------- d-----w- c:\program files\CCleaner
2009-09-16 20:04 . 2009-09-16 20:04 -------- d-----w- c:\programdata\PC Drivers HeadQuarters
2009-09-15 20:29 . 2009-09-15 20:29 -------- d-----w- c:\program files\Avanquest update
2009-09-15 20:28 . 2009-09-15 20:28 -------- d-----w- c:\programdata\BVRP Software
2009-09-15 20:28 . 2009-09-15 20:28 -------- d-----w- c:\program files\Motorola Phone Tools
2009-09-15 18:12 . 2009-09-15 18:13 -------- d-----w- c:\windows\system32\ca-ES
2009-09-15 18:12 . 2009-09-15 18:13 -------- d-----w- c:\windows\system32\eu-ES
2009-09-15 18:12 . 2009-09-15 18:13 -------- d-----w- c:\windows\system32\vi-VN
2009-09-15 17:55 . 2009-09-15 17:55 -------- d-----w- c:\program files\Motorola
2009-09-15 17:53 . 2009-09-15 17:53 -------- d-----w- c:\program files\Utilitaire de configuration iPhone
2009-09-15 17:52 . 2009-05-18 12:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2009-09-15 17:52 . 2008-04-17 11:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2009-09-15 17:51 . 2009-09-15 17:51 -------- d-----w- c:\program files\iPod
2009-09-15 17:51 . 2009-09-15 17:52 -------- d-----w- c:\programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-09-15 17:51 . 2009-09-15 17:52 -------- d-----w- c:\program files\iTunes
2009-09-15 17:48 . 2009-09-15 17:49 -------- d-----w- c:\program files\QuickTime
2009-09-15 17:42 . 2009-09-15 17:42 -------- d-----w- c:\windows\system32\EventProviders
2009-09-15 17:15 . 1998-06-17 17:07 57344 ------w- c:\windows\system32\Mfc42loc.dll
2009-09-13 11:02 . 2009-08-14 16:27 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-09-13 11:02 . 2009-08-14 13:48 105984 ----a-w- c:\windows\system32\netiohlp.dll
2009-09-13 11:02 . 2009-08-14 13:49 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-09-13 11:02 . 2009-08-14 13:49 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-09-13 11:02 . 2009-08-14 13:49 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-09-13 11:02 . 2009-08-14 13:49 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-09-13 11:02 . 2009-08-14 13:49 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-09-13 11:02 . 2009-08-14 13:49 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-09-13 11:02 . 2009-08-14 13:49 10240 ----a-w- c:\windows\system32\finger.exe
2009-09-13 11:02 . 2009-08-14 13:48 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-09-13 11:02 . 2009-08-14 15:53 17920 ----a-w- c:\windows\system32\netevent.dll
2009-09-13 11:00 . 2009-04-11 06:28 499712 ----a-w- c:\windows\system32\wbem\WmiPrvSD.dll
2009-09-13 10:59 . 2009-04-11 06:28 83968 ----a-w- c:\windows\system32\wbem\wmiutils.dll
2009-09-13 10:59 . 2009-04-11 06:28 744448 ----a-w- c:\windows\system32\wbem\wbemcore.dll
2009-09-13 10:59 . 2009-04-11 06:28 30208 ----a-w- c:\windows\system32\wbem\wbemprox.dll
2009-09-13 10:59 . 2009-04-11 06:28 265728 ----a-w- c:\windows\system32\wbem\repdrvfs.dll
2009-09-13 10:59 . 2009-04-11 06:28 189440 ----a-w- c:\windows\system32\wbem\mofd.dll
2009-09-13 10:59 . 2009-04-11 06:28 614912 ----a-w- c:\windows\system32\wbem\fastprox.dll
2009-09-13 10:59 . 2009-04-11 06:28 265728 ----a-w- c:\windows\system32\wbem\esscli.dll
2009-09-13 10:59 . 2009-04-11 06:28 705536 ----a-w- c:\windows\system32\SmiEngine.dll
2009-09-13 10:59 . 2009-04-11 06:28 218624 ----a-w- c:\windows\system32\wdscore.dll
2009-09-13 10:59 . 2009-04-11 06:27 130560 ----a-w- c:\windows\system32\PkgMgr.exe
2009-09-13 10:59 . 2009-04-11 06:28 247808 ----a-w- c:\windows\system32\drvstore.dll
2009-09-13 10:55 . 2009-04-11 06:28 1696768 ----a-w- c:\windows\system32\gameux.dll
2009-09-13 10:55 . 2009-08-29 00:14 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-09-13 10:55 . 2009-08-29 00:27 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-09-10 17:33 . 2009-09-10 17:33 -------- d-----w- c:\program files\ma-config.com
2009-09-10 17:33 . 2009-09-10 17:33 -------- d-----w- c:\programdata\ma-config.com

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-10 00:01 . 2008-01-21 08:40 669566 ----a-w- c:\windows\system32\perfh00C.dat
2009-10-10 00:01 . 2008-01-21 08:40 123556 ----a-w- c:\windows\system32\perfc00C.dat
2009-10-09 23:57 . 2009-01-11 15:57 -------- d-----w- c:\programdata\Google Updater
2009-10-09 09:46 . 2009-01-19 18:56 81984 ----a-w- c:\windows\system32\bdod.bin
2009-10-08 21:55 . 2008-03-27 02:28 -------- d-----w- c:\program files\Common Files\Adobe
2009-10-02 20:22 . 2008-11-12 15:47 -------- d-----w- c:\program files\Windows Live
2009-09-23 19:04 . 2009-03-13 08:49 -------- d-----w- c:\program files\Java
2009-09-15 20:47 . 2009-09-15 20:47 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-09-15 20:35 . 2009-09-15 20:35 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_motmodem_01005.Wdf
2009-09-15 20:29 . 2008-03-27 01:56 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2009-09-15 18:13 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2009-09-15 17:51 . 2009-01-27 16:12 -------- d-----w- c:\program files\Common Files\Apple
2009-09-09 17:37 . 2009-09-09 17:37 -------- d-----w- c:\program files\Common Files\Motorola Shared
2009-08-23 22:31 . 2009-08-23 21:55 -------- d-----w- c:\program files\Notepad++
2009-08-22 13:59 . 2009-02-12 14:52 104456 ----a-w- c:\windows\system32\drivers\bdfndisf.sys
2009-08-22 13:40 . 2009-08-22 13:37 -------- d-----w- c:\programdata\BitDefender
2009-08-22 13:37 . 2009-08-22 13:36 -------- d-----w- c:\program files\Common Files\BitDefender
2009-08-22 13:28 . 2009-08-22 13:27 98864 ----a-w- C:\BdUninstallTool2009.08.22-03.27.31.reg
2009-08-14 16:16 . 2008-11-12 19:39 -------- d-----w- c:\programdata\Yahoo! Companion
2009-07-26 14:44 . 2009-07-26 14:44 48448 ----a-w- c:\windows\system32\sirenacm.dll
2009-07-25 03:23 . 2009-03-13 08:50 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-21 21:52 . 2009-09-01 19:43 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-21 21:47 . 2009-09-01 19:43 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-07-21 21:47 . 2009-09-01 19:43 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-07-21 20:13 . 2009-09-01 19:43 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-07-17 13:54 . 2009-08-14 16:28 71680 ----a-w- c:\windows\system32\atl.dll
2009-07-15 12:40 . 2009-08-14 16:23 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-07-15 12:39 . 2009-08-14 16:23 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-15 12:39 . 2009-08-14 16:23 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-07-15 12:39 . 2009-08-14 16:23 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-03-05 16:08 . 2009-08-24 16:32 49664 ----a-w- c:\program files\mozilla firefox\components\FFComm.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{0BC6E3FA-78EF-4886-842C-5A1258C4455A}"= "c:\program files\AGI\common\agcutils.dll" [2009-04-19 43520]

[HKEY_CLASSES_ROOT\clsid\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}]
[HKEY_CLASSES_ROOT\agcutils.AGSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{647B16D8-AD7B-4983-82D7-82A270FC9E6D}]
[HKEY_CLASSES_ROOT\agcutils.AGSearchHook]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-01-03 01:00 39472 ----a-w- c:\acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-12-07 39408]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-02-04 23975720]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2009-10-01 271744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvSvc"="c:\windows\system32\nvsvc.dll" [2008-03-11 92704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-03-11 8534560]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-03-11 88608]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2008-01-24 102400]
"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-02-25 518656]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-11-22 178712]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"LManager"="c:\progra~1\LAUNCH~1\QtZgAcer.EXE" [2008-01-02 707080]
"PlayMovie"="c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe" [2008-01-22 200704]
"PLFSet"="c:\windows\PLFSet.dll" [2007-04-25 45056]
"WarReg_PopUp"="c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe" [2008-01-29 303104]
"NeroCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-04 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-09-08 305440]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-01-24 4702208]

c:\users\Souƒd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Notification de cadeaux MSN.lnk - c:\users\Souƒd\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe [2009-8-30 135680]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Empowering Technology Launcher.lnk - c:\acer\Empowering Technology\eAPLauncher.exe [2008-3-27 535336]
SETAUDIO.EXE [2008-4-4 20480]
SETRES.EXE [2008-4-4 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"FilterAdministratorToken"= 1 (0x1)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):be,4c,ee,47,31,36,ca,01

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{50EE9C1C-53B4-4D7B-B7E5-B1247A916E35}"= c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe:Acer Arcade Deluxe
"{9646821E-AA4D-4EBB-91DE-C16DBFAA16AB}"= c:\program files\Acer Arcade Deluxe\VideoMagician\VideoMagician.exe:VideoMagician
"{F7C96D37-D50D-474C-BC72-0B4DCDB7F566}"= c:\program files\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe:HomeMedia
"{8B91EBA4-FCB5-4048-BA9C-DED98F7F4709}"= c:\program files\Acer Arcade Deluxe\DV Wizard\DV Wizard.exe:DV Wizard
"{4E58F5DB-0C95-4DA2-BC92-AAB96FFF4056}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{0E4A5ED0-3552-44DD-B6F9-CA2CDCBCF20C}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{77364ED0-8AA0-4922-93B1-260CEDC14984}"= c:\program files\Acer Arcade Deluxe\DVDivine\DVDivine.exe:DVDivine
"{F355C2CD-0FC6-4AF0-AAD8-780A25FFAFE9}"= c:\program files\Acer Arcade Deluxe\Play Movie\PlayMovie.exe:Play Movie
"{481D2CDD-D76A-4BFF-9BED-A57A38D87397}"= c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe:Play Movie Resident Program
"TCP Query User{333A6DF4-9B93-4558-8311-5EA7B60DADC9}c:\\program files\\adsltv\\vlc.exe"= UDP:c:\program files\adsltv\vlc.exe:VLC media player
"UDP Query User{C672B28F-0AC8-4C33-8A07-D4FBB6EA5FCB}c:\\program files\\adsltv\\vlc.exe"= TCP:c:\program files\adsltv\vlc.exe:VLC media player
"TCP Query User{73E17627-3E9F-4897-A0E6-72E10626C626}c:\\program files\\videolan\\vlc\\vlc.exe"= UDP:c:\program files\videolan\vlc\vlc.exe:VLC media player
"UDP Query User{4DC9A8F2-AE20-42CB-B277-E4EF69AD2EE8}c:\\program files\\videolan\\vlc\\vlc.exe"= TCP:c:\program files\videolan\vlc\vlc.exe:VLC media player
"{0CA4AC01-948F-407E-A66F-FA9FD993FBA7}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{C73E5082-0404-4925-B5CF-CB7730B2AB09}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{DCB5DA3A-E1EE-45D5-816F-67530C41077D}"= c:\program files\Skype\Phone\Skype.exe:Skype
"{EB4E91B1-10BA-4433-ACE2-4F58128ECFE6}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{C161A0B9-1B91-4CF4-A63C-B42A08E658F9}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{134351EB-6160-4449-920C-28AB770FF5E9}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{52FD2A45-9016-4C73-A39B-4CBE41A0355A}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{9BCFCBD0-5A26-4AEB-B753-B5286A933236}"= Disabled:UDP:c:\program files\IncrediMail\Bin\ImpCnt.exe:IncrediMail
"{553715F2-0541-4389-90A8-A27DE0A20BAE}"= Disabled:TCP:c:\program files\IncrediMail\Bin\ImpCnt.exe:IncrediMail
"{74F877FB-E759-4094-AE88-A6B2A5B69667}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live FolderShare
"{82617375-6B92-47D9-A6F0-C5F2EF4607B2}"= Disabled:UDP:c:\program files\IncrediMail\Bin\ImApp.exe:IncrediMail
"{60D3F555-C2DD-47E1-BE68-CBF6EECB23C0}"= Disabled:TCP:c:\program files\IncrediMail\Bin\ImApp.exe:IncrediMail
"{FCDF34A0-945D-495B-948B-E6FCBED78CA8}"= Disabled:UDP:c:\program files\IncrediMail\Bin\IncMail.exe:IncrediMail
"{37725786-190A-40B5-A701-48988C69016B}"= Disabled:TCP:c:\program files\IncrediMail\Bin\IncMail.exe:IncrediMail
"{F39B8071-F8B9-4072-9E7D-011240A14A5A}"= Disabled:UDP:c:\program files\IncrediMail\Bin\IncMail.exe:IncrediMail
"{70E28A11-4D88-4027-A54F-003343ED12F5}"= Disabled:TCP:c:\program files\IncrediMail\Bin\IncMail.exe:IncrediMail
"{BCB38CCD-95A6-4D2E-9052-27194C484536}"= Disabled:UDP:c:\program files\IncrediMail\Bin\ImApp.exe:IncrediMail
"{919F236F-66DB-47BA-8D54-23B8065B3413}"= Disabled:TCP:c:\program files\IncrediMail\Bin\ImApp.exe:IncrediMail

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSfsu.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\encryption.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\decryption.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSMgr.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDStbmngr.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\eDSfsu.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\encryption.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\decryption.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\eDSMgr.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\eDStbmngr.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr

R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl [23/05/2008 12:52 41456]
R2 AGWinService;AG Windows Service;c:\program files\AGI\common\win32\pythonservice.exe [19/04/2009 17:06 10240]
R2 ALaunchService;ALaunch Service;c:\acer\ALaunch\ALaunchSvc.exe [27/03/2008 05:02 51200]
R2 BDVEDISK;BDVEDISK;c:\program files\BitDefender\BitDefender 2009\BDVEDISK.sys [06/10/2008 18:16 82696]
R3 bdfm;BDFM;c:\windows\System32\drivers\bdfm.sys [18/09/2008 12:09 111112]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\System32\drivers\bdfndisf.sys [12/02/2009 16:52 104456]
R3 winbondcir;Winbond IR Transceiver;c:\windows\System32\drivers\winbondcir.sys [27/03/2008 11:22 43008]
S3 A310;AVerMedia A310 DVB-T;c:\windows\System32\drivers\AVerA310USB.sys [27/03/2008 11:22 26752]
S3 Arrakis3;BitDefender Arrakis Server;c:\program files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [20/01/2009 19:16 172032]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [27/03/2008 11:22 179712]
S3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\System32\drivers\AVerA310Cap.sys [27/03/2008 11:22 42752]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx REG_MULTI_SZ scan

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contenu du dossier 'Tâches planifiées'

2009-10-09 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-07 19:54]

2009-10-10 c:\windows\Tasks\User_Feed_Synchronization-{770596D8-6ECF-4E56-9BE9-FCFCAB51A966}.job
- c:\windows\system32\msfeedssync.exe [2009-09-01 20:13]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://mystart.incredimail.com/
mWindow Title =
uInternet Settings,ProxyOverride = *.local
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Envoyer à &Bluetooth - c:\program files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
Trusted Zone: secuser.com\www
DPF: CabBuilder - hxxp://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
FF - ProfilePath - c:\users\Souâd\AppData\Roaming\Mozilla\Firefox\Profiles\by4xkehz.default\
FF - prefs.js: browser.search.selectedEngine - MyStart Search
FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/?loc=ff_address_bar_im2_test_v2&search=
FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/
FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/?loc=ff_address_bar_im2_test_v2&search=
FF - prefs.js: browser.search.selectedEngine - MyStart Search
FF - component: c:\program files\Mozilla Firefox\components\FFComm.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHELINS SUPPRIMES - - - -

HKLM-Run-ALaunch - c:\acer\ALaunch\AlaunchClient.exe
HKLM-Run-eRecoveryService - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-10 02:34
Windows 6.0.6002 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'Explorer.exe'(5328)
c:\acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
c:\acer\Empowering Technology\eDataSecurity\x86\sysenv.dll
c:\acer\Empowering Technology\EPOWER\SysHook.dll
.
Heure de fin: 2009-10-10 2:36
ComboFix-quarantined-files.txt 2009-10-10 00:36

Avant-CF: 29 663 047 680 octets libres
Après-CF: 28 702 048 256 octets libres

310 --- E O F --- 2009-10-05 19:27
0
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
17 oct. 2009 à 17:40
Bonjour

dois je comprendre qur tu as terminé de t'occuper de mon ordi ou tout simplement tu es occupé comme l'indique ta devise

**si je ne réponds pas de suite, c'est que moi aussi j'ai un­ métier et une famille **


Merci de me tenir au courant car j'ai toujours des blèmes sur mon ordi

Merci à toi
0
Réponse 33 / 59
jfkpresident Messages postés 13408 Date d'inscription lundi 3 septembre 2007 Statut Contributeur sécurité Dernière intervention 5 janvier 2015 1 175
17 oct. 2009 à 17:54
Salut ;

En fait je t'ai oublié ........:(

> Ferme tout tes navigateurs (donc copie ou imprime les instructions avant)
- Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie/colle dedans les lignes suivantes :


Driver::

Folder::

File::
c:\windows\system32\NeroCheck.exe
c:\program files\AGI\common\agcutils.dll
Reg::
[-HKEY_CLASSES_ROOT\clsid\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}]
[-HKEY_CLASSES_ROOT\agcutils.AGSearchHook.1]
[-HKEY_CLASSES_ROOT\TypeLib\{647B16D8-AD7B-4983-82D7-82A270FC9E6D}]
[-HKEY_CLASSES_ROOT\agcutils.AGSearchHook]

- Enregistre ce fichier sous le nom CFScript
- Fait un glisser/déposer de ce fichier CFScrïpt sur le fichier ComboFix.exe comme sur cette image. (Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relache la souris.) Combofix va démarrer.
- Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.
- Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!
- Ne touche à rien tant que le scan n'est pas terminé sinon le PC peut planter !
- Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
Note : Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt
0
swan1966
18 oct. 2009 à 22:13
Bonsoir
J'ai fais ce que tu m'as demandé . Mais je n'ai pas eu directement une fenêtre bleu? d"abore des avertissements combofix périmé ...
apres la fenêtre bleu et je nai pas eu type 1 to continue.....il ascanner sans validation voilâ

Ci joint le rapport
et j'espère que cette fois ci tu ne m'oubliras pas, Snniffffff!!!!!!!!!!!!!

Merci

--------------------------------
ComboFix 09-10-08.04 - Souâd 18/10/2009 22:01.1.2 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.3070.1953 [GMT 2:00]
Lancé depuis: c:\users\Souâd\Desktop\Nettoyage\ComboFix.exe
Commutateurs utilisés :: c:\users\Souâd\Desktop\Nettoyage\CFScript.txt
AV: Antivirus BitDefender *On-access scanning enabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}
FW: Pare-feu BitDefender *enabled* {4055920F-2E99-48A8-A270-4243D2B8F242}
SP: BitDefender AntiSpam *enabled* (Updated) {8B2012EC-32D4-494F-BC03-832DB3BDF911}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.
- Mode FONCTIONNALITES REDUITES -

FILE ::
"c:\program files\AGI\common\agcutils.dll"
"c:\windows\system32\NeroCheck.exe"
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\AGI\common\agcutils.dll
c:\windows\system32\NeroCheck.exe

.
((((((((((((((((((((((((((((( Fichiers créés du 2009-09-18 au 2009-10-18 ))))))))))))))))))))))))))))))))))))
.

2009-10-18 20:02 . 2009-10-18 20:02 -------- d-----w- c:\users\Public\AppData\Local\temp
2009-10-18 20:02 . 2009-10-18 20:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-10-17 15:40 . 2009-09-14 09:29 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2009-10-17 15:40 . 2009-05-08 12:53 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2009-10-08 20:52 . 2009-10-08 20:55 -------- d-----w- c:\program files\ZHPDiag
2009-10-07 21:08 . 2009-10-07 21:08 -------- d-sh--w- c:\users\SouÔd
2009-10-07 19:33 . 2009-10-07 21:06 -------- d-----w- c:\program files\Ad-Remover
2009-10-04 19:15 . 2009-10-04 19:45 -------- d-----w- C:\ToolBar SD
2009-10-04 18:47 . 2009-10-04 20:57 -------- d-----w- c:\program files\Navilog1
2009-10-04 18:44 . 2009-10-04 18:44 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-10-04 15:16 . 2009-10-04 15:17 -------- d-----w- C:\rsit
2009-10-04 15:16 . 2009-10-04 15:16 -------- d-----w- c:\program files\trend micro
2009-10-02 20:23 . 2009-10-06 18:38 -------- d-----w- c:\program files\Microsoft Silverlight
2009-10-02 20:23 . 2009-10-02 20:23 -------- d-----w- c:\program files\Microsoft Office Outlook Connector
2009-10-02 20:22 . 2009-10-02 20:22 -------- d-----w- c:\program files\Microsoft Sync Framework
2009-10-02 20:21 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2009-10-02 20:21 . 2009-10-02 20:21 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2009-10-02 20:20 . 2009-10-02 20:23 -------- d-----w- c:\program files\Microsoft
2009-10-01 21:14 . 2009-10-01 21:16 -------- d-----w- c:\programdata\IM
2009-10-01 21:14 . 2009-10-01 21:14 -------- d-----w- c:\programdata\IncrediMail
2009-09-24 21:35 . 2009-10-11 20:15 132 ----a-w- C:\httpdwl.dat
2009-09-24 21:35 . 2009-10-11 20:15 815 ----a-w- C:\rtsr_eml_sr.dat
2009-09-24 21:35 . 2009-10-11 20:15 141 ----a-w- C:\dwl.dat
2009-09-24 20:19 . 2009-09-24 20:19 16 ----a-w- C:\asdict.dat
2009-09-21 18:03 . 2009-09-10 12:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-21 18:03 . 2009-10-04 19:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-09-21 18:03 . 2009-09-21 18:03 -------- d-----w- c:\programdata\Malwarebytes
2009-09-21 18:03 . 2009-09-10 12:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-21 17:59 . 2009-09-21 17:59 -------- d-----w- c:\program files\CCleaner

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-18 19:49 . 2008-01-21 08:40 669566 ----a-w- c:\windows\system32\perfh00C.dat
2009-10-18 19:49 . 2008-01-21 08:40 123556 ----a-w- c:\windows\system32\perfc00C.dat
2009-10-18 19:07 . 2009-01-11 15:57 -------- d-----w- c:\programdata\Google Updater
2009-10-18 19:02 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-10-17 16:23 . 2009-01-19 18:56 81984 ----a-w- c:\windows\system32\bdod.bin
2009-10-17 16:19 . 2008-03-27 02:45 -------- d-----w- c:\program files\Microsoft Works
2009-10-08 21:55 . 2008-03-27 02:28 -------- d-----w- c:\program files\Common Files\Adobe
2009-10-02 20:22 . 2008-11-12 15:47 -------- d-----w- c:\program files\Windows Live
2009-09-23 19:04 . 2009-03-13 08:49 -------- d-----w- c:\program files\Java
2009-09-16 20:04 . 2009-09-16 20:04 -------- d-----w- c:\programdata\PC Drivers HeadQuarters
2009-09-15 20:47 . 2009-09-15 20:47 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-09-15 20:35 . 2009-09-15 20:35 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_motmodem_01005.Wdf
2009-09-15 20:29 . 2009-09-15 20:29 -------- d-----w- c:\program files\Avanquest update
2009-09-15 20:29 . 2008-03-27 01:56 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-09-15 20:28 . 2009-09-15 20:28 -------- d-----w- c:\programdata\BVRP Software
2009-09-15 20:28 . 2009-09-15 20:28 -------- d-----w- c:\program files\Motorola Phone Tools
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2009-09-15 18:13 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2009-09-15 17:55 . 2009-09-15 17:55 -------- d-----w- c:\program files\Motorola
2009-09-15 17:53 . 2009-09-15 17:53 -------- d-----w- c:\program files\Utilitaire de configuration iPhone
2009-09-15 17:52 . 2009-09-15 17:51 -------- d-----w- c:\programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-09-15 17:52 . 2009-09-15 17:51 -------- d-----w- c:\program files\iTunes
2009-09-15 17:51 . 2009-09-15 17:51 -------- d-----w- c:\program files\iPod
2009-09-15 17:51 . 2009-01-27 16:12 -------- d-----w- c:\program files\Common Files\Apple
2009-09-15 17:49 . 2009-09-15 17:48 -------- d-----w- c:\program files\QuickTime
2009-09-10 17:33 . 2009-09-10 17:33 -------- d-----w- c:\program files\ma-config.com
2009-09-10 17:33 . 2009-09-10 17:33 -------- d-----w- c:\programdata\ma-config.com
2009-09-10 16:48 . 2009-10-17 15:41 218624 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-09 17:37 . 2009-09-09 17:37 -------- d-----w- c:\program files\Common Files\Motorola Shared
2009-09-04 11:41 . 2009-10-17 15:41 60928 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 00:27 . 2009-09-13 10:55 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-29 00:14 . 2009-09-13 10:55 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-08-27 05:22 . 2009-10-17 15:41 916480 ----a-w- c:\windows\system32\wininet.dll
2009-08-27 05:17 . 2009-10-17 15:41 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-08-27 05:17 . 2009-10-17 15:41 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-08-27 03:42 . 2009-10-17 15:41 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-08-23 22:31 . 2009-08-23 21:55 -------- d-----w- c:\program files\Notepad++
2009-08-22 13:59 . 2009-02-12 14:52 104456 ----a-w- c:\windows\system32\drivers\bdfndisf.sys
2009-08-22 13:40 . 2009-08-22 13:37 -------- d-----w- c:\programdata\BitDefender
2009-08-22 13:37 . 2009-08-22 13:36 -------- d-----w- c:\program files\Common Files\BitDefender
2009-08-22 13:28 . 2009-08-22 13:27 98864 ----a-w- C:\BdUninstallTool2009.08.22-03.27.31.reg
2009-08-14 16:27 . 2009-09-13 11:02 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-08-14 15:53 . 2009-09-13 11:02 17920 ----a-w- c:\windows\system32\netevent.dll
2009-08-14 13:49 . 2009-09-13 11:02 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-08-14 13:49 . 2009-09-13 11:02 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-08-14 13:49 . 2009-09-13 11:02 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-08-14 13:49 . 2009-09-13 11:02 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-08-14 13:49 . 2009-09-13 11:02 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-08-14 13:49 . 2009-09-13 11:02 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-08-14 13:49 . 2009-09-13 11:02 10240 ----a-w- c:\windows\system32\finger.exe
2009-08-14 13:48 . 2009-09-13 11:02 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2009-08-14 13:48 . 2009-09-13 11:02 105984 ----a-w- c:\windows\system32\netiohlp.dll
2009-08-04 17:52 . 2009-08-04 17:52 1193832 ----a-w- c:\windows\system32\FM20.DLL
2009-08-04 12:34 . 2009-10-17 15:41 3548216 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-08-04 12:34 . 2009-10-17 15:41 3600456 ----a-w- c:\windows\system32\ntkrnlpa.exe
2009-07-26 14:44 . 2009-07-26 14:44 48448 ----a-w- c:\windows\system32\sirenacm.dll
2009-07-25 03:23 . 2009-03-13 08:50 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-03-05 16:08 . 2009-08-24 16:32 49664 ----a-w- c:\program files\mozilla firefox\components\FFComm.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-01-03 01:00 39472 ----a-w- c:\acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-12-07 39408]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-02-04 23975720]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvSvc"="c:\windows\system32\nvsvc.dll" [2008-03-11 92704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-03-11 8534560]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-03-11 88608]
"SynTPStart"="c:\program files\Synaptics\SynTP\SynTPStart.exe" [2008-01-24 102400]
"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-02-25 518656]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2007-11-22 178712]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"LManager"="c:\progra~1\LAUNCH~1\QtZgAcer.EXE" [2008-01-02 707080]
"PlayMovie"="c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe" [2008-01-22 200704]
"PLFSet"="c:\windows\PLFSet.dll" [2007-04-25 45056]
"WarReg_PopUp"="c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe" [2008-01-29 303104]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-04 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-09-08 305440]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2008-01-24 4702208]

c:\users\Souƒd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Notification de cadeaux MSN.lnk - c:\users\Souƒd\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe [2009-8-30 135680]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Empowering Technology Launcher.lnk - c:\acer\Empowering Technology\eAPLauncher.exe [2008-3-27 535336]
SETAUDIO.EXE [2008-4-4 20480]
SETRES.EXE [2008-4-4 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"FilterAdministratorToken"= 1 (0x1)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):be,4c,ee,47,31,36,ca,01

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{50EE9C1C-53B4-4D7B-B7E5-B1247A916E35}"= c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe:Acer Arcade Deluxe
"{9646821E-AA4D-4EBB-91DE-C16DBFAA16AB}"= c:\program files\Acer Arcade Deluxe\VideoMagician\VideoMagician.exe:VideoMagician
"{F7C96D37-D50D-474C-BC72-0B4DCDB7F566}"= c:\program files\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe:HomeMedia
"{8B91EBA4-FCB5-4048-BA9C-DED98F7F4709}"= c:\program files\Acer Arcade Deluxe\DV Wizard\DV Wizard.exe:DV Wizard
"{4E58F5DB-0C95-4DA2-BC92-AAB96FFF4056}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{0E4A5ED0-3552-44DD-B6F9-CA2CDCBCF20C}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{77364ED0-8AA0-4922-93B1-260CEDC14984}"= c:\program files\Acer Arcade Deluxe\DVDivine\DVDivine.exe:DVDivine
"{F355C2CD-0FC6-4AF0-AAD8-780A25FFAFE9}"= c:\program files\Acer Arcade Deluxe\Play Movie\PlayMovie.exe:Play Movie
"{481D2CDD-D76A-4BFF-9BED-A57A38D87397}"= c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe:Play Movie Resident Program
"TCP Query User{333A6DF4-9B93-4558-8311-5EA7B60DADC9}c:\\program files\\adsltv\\vlc.exe"= UDP:c:\program files\adsltv\vlc.exe:VLC media player
"UDP Query User{C672B28F-0AC8-4C33-8A07-D4FBB6EA5FCB}c:\\program files\\adsltv\\vlc.exe"= TCP:c:\program files\adsltv\vlc.exe:VLC media player
"TCP Query User{73E17627-3E9F-4897-A0E6-72E10626C626}c:\\program files\\videolan\\vlc\\vlc.exe"= UDP:c:\program files\videolan\vlc\vlc.exe:VLC media player
"UDP Query User{4DC9A8F2-AE20-42CB-B277-E4EF69AD2EE8}c:\\program files\\videolan\\vlc\\vlc.exe"= TCP:c:\program files\videolan\vlc\vlc.exe:VLC media player
"{0CA4AC01-948F-407E-A66F-FA9FD993FBA7}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{C73E5082-0404-4925-B5CF-CB7730B2AB09}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{DCB5DA3A-E1EE-45D5-816F-67530C41077D}"= c:\program files\Skype\Phone\Skype.exe:Skype
"{EB4E91B1-10BA-4433-ACE2-4F58128ECFE6}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{C161A0B9-1B91-4CF4-A63C-B42A08E658F9}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{134351EB-6160-4449-920C-28AB770FF5E9}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{52FD2A45-9016-4C73-A39B-4CBE41A0355A}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{9BCFCBD0-5A26-4AEB-B753-B5286A933236}"= Disabled:UDP:c:\program files\IncrediMail\Bin\ImpCnt.exe:IncrediMail
"{553715F2-0541-4389-90A8-A27DE0A20BAE}"= Disabled:TCP:c:\program files\IncrediMail\Bin\ImpCnt.exe:IncrediMail
"{74F877FB-E759-4094-AE88-A6B2A5B69667}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live FolderShare
"{82617375-6B92-47D9-A6F0-C5F2EF4607B2}"= Disabled:UDP:c:\program files\IncrediMail\Bin\ImApp.exe:IncrediMail
"{60D3F555-C2DD-47E1-BE68-CBF6EECB23C0}"= Disabled:TCP:c:\program files\IncrediMail\Bin\ImApp.exe:IncrediMail
"{FCDF34A0-945D-495B-948B-E6FCBED78CA8}"= Disabled:UDP:c:\program files\IncrediMail\Bin\IncMail.exe:IncrediMail
"{37725786-190A-40B5-A701-48988C69016B}"= Disabled:TCP:c:\program files\IncrediMail\Bin\IncMail.exe:IncrediMail
"{FF43884B-BB19-478F-B0CC-F2DC59E0994E}"= Disabled:UDP:c:\program files\IncrediMail\Bin\IncMail.exe:IncrediMail
"{8DD12D52-CEFF-4C84-BACE-079B8C33ED78}"= Disabled:TCP:c:\program files\IncrediMail\Bin\IncMail.exe:IncrediMail
"{A86C6940-BBBA-468E-B3CA-7605ECF07292}"= Disabled:UDP:c:\program files\IncrediMail\Bin\ImApp.exe:IncrediMail
"{9B203E9C-243F-47B5-ABA6-13EEB9BD86B9}"= Disabled:TCP:c:\program files\IncrediMail\Bin\ImApp.exe:IncrediMail

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSfsu.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\encryption.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\decryption.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSMgr.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDStbmngr.exe"= c:\acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\eDSfsu.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\encryption.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\decryption.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\eDSMgr.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr
"c:\\Acer\\Empowering Technology\\eDataSecurity\\x64\\eDStbmngr.exe"= c:\acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr

R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl [23/05/2008 12:52 41456]
R2 AGWinService;AG Windows Service;c:\program files\AGI\common\win32\pythonservice.exe [19/04/2009 17:06 10240]
R2 ALaunchService;ALaunch Service;c:\acer\ALaunch\ALaunchSvc.exe [27/03/2008 05:02 51200]
R2 BDVEDISK;BDVEDISK;c:\program files\BitDefender\BitDefender 2009\BDVEDISK.sys [06/10/2008 18:16 82696]
R3 bdfm;BDFM;c:\windows\System32\drivers\bdfm.sys [18/09/2008 12:09 111112]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\System32\drivers\bdfndisf.sys [12/02/2009 16:52 104456]
R3 winbondcir;Winbond IR Transceiver;c:\windows\System32\drivers\winbondcir.sys [27/03/2008 11:22 43008]
S3 A310;AVerMedia A310 DVB-T;c:\windows\System32\drivers\AVerA310USB.sys [27/03/2008 11:22 26752]
S3 Arrakis3;BitDefender Arrakis Server;c:\program files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [20/01/2009 19:16 172032]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [27/03/2008 11:22 179712]
S3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\System32\drivers\AVerA310Cap.sys [27/03/2008 11:22 42752]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx REG_MULTI_SZ scan

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contenu du dossier 'Tâches planifiées'

2009-10-18 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-07 19:54]

2009-10-18 c:\windows\Tasks\User_Feed_Synchronization-{770596D8-6ECF-4E56-9BE9-FCFCAB51A966}.job
- c:\windows\system32\msfeedssync.exe [2009-10-17 03:41]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://mystart.incredimail.com/
mWindow Title =
uInternet Settings,ProxyOverride = *.local
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Envoyer à &Bluetooth - c:\program files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm
Trusted Zone: secuser.com\www
DPF: CabBuilder - hxxp://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
FF - ProfilePath - c:\users\Souâd\AppData\Roaming\Mozilla\Firefox\Profiles\by4xkehz.default\
FF - prefs.js: browser.search.selectedEngine - MyStart Search
FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/?loc=ff_address_bar_im2_test_v2&search=
FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/
FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/?loc=ff_address_bar_im2_test_v2&search=
FF - prefs.js: browser.search.selectedEngine - MyStart Search
FF - component: c:\program files\Mozilla Firefox\components\FFComm.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHELINS SUPPRIMES - - - -

URLSearchHooks-{0BC6E3FA-78EF-4886-842C-5A1258C4455A} - c:\program files\AGI\common\agcutils.dll
HKLM-Run-NeroCheck - c:\windows\system32\NeroCheck.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-18 22:02
Windows 6.0.6002 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Heure de fin: 2009-10-18 22:04
ComboFix-quarantined-files.txt 2009-10-18 20:04
ComboFix2.txt 2009-10-10 00:36

Avant-CF: 25 707 257 856 octets libres
Après-CF: 25 522 737 152 octets libres

283 --- E O F --- 2009-10-17 16:23
0
Réponse 34 / 59
jfkpresident Messages postés 13408 Date d'inscription lundi 3 septembre 2007 Statut Contributeur sécurité Dernière intervention 5 janvier 2015 1 175
18 oct. 2009 à 22:48
Comment se comporte le pc ?
0
Réponse 35 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
19 oct. 2009 à 20:37
Bonsoir
Bit Defender toujours bloqué, ,depuis que vous avez commencé à me guider j'ai réussi à analyser une fois en mettant vers mode standart, ce qui n'est plus le cas maintenant
Une barre de recherche se met en route et rame, sans que je n’aie rien demandé, quand je suis sur Internet mais rien ne s’ouvre
Mon ordi lent au démarrage

Voilà docteur
J'espère que ce n'est pas trops lourd pour toi de t'occuper de moi

Merci
0
Réponse 36 / 59
jfkpresident Messages postés 13408 Date d'inscription lundi 3 septembre 2007 Statut Contributeur sécurité Dernière intervention 5 janvier 2015 1 175
19 oct. 2009 à 20:53
Je vais demander de l'aide parceque la je seche ...:(
0
Réponse 37 / 59
jfkpresident Messages postés 13408 Date d'inscription lundi 3 septembre 2007 Statut Contributeur sécurité Dernière intervention 5 janvier 2015 1 175
20 oct. 2009 à 11:00
Bitdefender est une version officielle ?

Déconnecte toi d'Internet et ferme toutes les applications ouvertes.
Copie dans le Presse-papier les lignes ci-dessous (sélectionne les avec la souris et fais simultanément Ctrl et C) 

R3 - URLSearchHook: AGSearchHook Class - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - C:\Program Files\AGI\common\agcutils.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://files-mjf.jeuxvideo-flash.com/popcap/popcaploader_v10­_fr.cab


Relance ZHPDiag sur ton Bureau.

Clique sur la loupe.

Clique sur l'icône Bouclier qui est apparue à coté de la clé à molette.

=================
Il va falloir analyser un ou des fichier(s) suspect(s) !

Il se peut qu'il se trouvent dans les " dossiers cachés " du systeme.
Il faut donc les rendre visibles pour le scan.

Pour afficher les dossiers et fichiers cachés:

Panneau de configuration > Options des dossiers > onglet Affichage.

Coche Afficher les fichiers et dossiers cachés,
Décoche Masquer les extensions de fichiers connus
Décoche Masquer les fichiers protégés du Système.
Un message de mise en garde va apparaitre. Clique sur OK pour confirmer ton choix.
Les fichiers et dossiers cachés du système apparaitront alors dans l'explorateur Windows en transparence.

Rends toi sur ce site :

https://www.virustotal.com/gui/

Clique sur parcourir et cherche ces fichiers: C:\Windows\System32\ezsidmv.dat
C:\Windows\System32\as.disabled

Clique sur Send File.

Un rapport va s'élaborer ligne à ligne.

Attends la fin. Il doit comprendre la taille du fichier envoyé.

Sauvegarde le rapport avec le bloc-note.

Copie le dans ta réponse.





Clique successivement sur l'icône H puis sur l'icône du moniteur.

Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.

Clique sur OK, ce qui fait apparaaître un carré à gauche de chaque ligne.

Clique sur "Tous" puis sur "Nettoyer".

Laisse l'outil travailler.

Si il te demande de redémarrer l'ordi pour achever le nettoyage, fais le immmédiatement.

Le rapport d'exécution va apparaître dans la fenêtre.

Copie le dans ta réponse.

0
Réponse 38 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
20 oct. 2009 à 21:21
OUI bit Defender est une version officielle

Si j'ai bien compris avnat d'analyser avec ZHBDiag il faut faire apparaitre les dossiers cachés
mais je n'arrive pas à comprendre comment faire

panneau de config ok mais options des dossiers ???? je ne vois pas
0
Réponse 39 / 59
jfkpresident Messages postés 13408 Date d'inscription lundi 3 septembre 2007 Statut Contributeur sécurité Dernière intervention 5 janvier 2015 1 175
20 oct. 2009 à 21:26
Pour afficher les dosseirs cachés sous vista :

Panneau de configuration>>>Outils>>>options de dossiers>>>Affichage>>>cocher "affiché fichiers et dossiers cachés"
0
Réponse 40 / 59
swan1966 Messages postés 92 Date d'inscription lundi 28 septembre 2009 Statut Membre Dernière intervention 12 juillet 2013 1
20 oct. 2009 à 23:06
re
je n'arrive pas à nettoyer avec ZHPDiag, j'ai fait tout sauf que au moment ou j'appuie sur nettoyer j'ai le message :
Impossible de créer le fichier « c : \ programme files \ ZHPDiag \ ZHPFixqarantine.txt. Accès refusé

?????
Je ne sais pas quoi faire
-----------------------------
Les rapports que tu m'as demandé:

-------------------------------------------
0 bytes size received / Se ha recibido un archivo vacio

J'ai l'impresion que ya rien??
----------------------------

le deuxieme rapport de ezsidmv.dat :

Antivirus Version Dernière mise à jour Résultat
a-squared 4.5.0.41 2009.10.20 -
AhnLab-V3 5.0.0.2 2009.10.20 -
AntiVir 7.9.1.35 2009.10.20 -
Antiy-AVL 2.0.3.7 2009.10.20 -
Authentium 5.1.2.4 2009.10.20 -
Avast 4.8.1351.0 2009.10.20 -
AVG 8.5.0.420 2009.10.20 -
BitDefender 7.2 2009.10.20 -
CAT-QuickHeal 10.00 2009.10.20 -
ClamAV 0.94.1 2009.10.20 -
Comodo 2670 2009.10.20 -
DrWeb 5.0.0.12182 2009.10.20 -
eSafe 7.0.17.0 2009.10.19 -
eTrust-Vet 35.1.7075 2009.10.19 -
F-Prot 4.5.1.85 2009.10.20 -
F-Secure 9.0.15300.0 2009.10.20 -
Fortinet 3.120.0.0 2009.10.20 -
GData 19 2009.10.20 -
Ikarus T3.1.1.72.0 2009.10.20 -
Jiangmin 11.0.800 2009.10.20 -
K7AntiVirus 7.10.875 2009.10.20 -
Kaspersky 7.0.0.125 2009.10.20 -
McAfee 5777 2009.10.20 -
McAfee+Artemis 5777 2009.10.20 -
McAfee-GW-Edition 6.8.5 2009.10.20 -
Microsoft 1.5101 2009.10.20 -
NOD32 4527 2009.10.20 -
Norman 6.03.02 2009.10.20 -
nProtect 2009.1.8.0 2009.10.20 -
Panda 10.0.2.2 2009.10.20 -
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.20 -
Rising 21.52.14.00 2009.10.20 -
Sophos 4.46.0 2009.10.20 -
Sunbelt 3.2.1858.2 2009.10.20 -
Symantec 1.4.4.12 2009.10.20 -
TheHacker 6.5.0.2.049 2009.10.20 -
TrendMicro 8.950.0.1094 2009.10.20 -
VBA32 3.12.10.11 2009.10.20 -
ViRobot 2009.10.20.1996 2009.10.20 -
VirusBuster 4.6.5.0 2009.10.20 -
Information additionnelle
File size: 56 bytes
MD5...: 6e318ca7e4c0571c66bc4901a100fb54
SHA1..: d708b844dca4b14bddde265fab33cc4caea57a3e
SHA256: 1accfeabb80e91f0eebc0f75e325d6e2e9066b8b9a12ebd3e604f41e4733bc63
ssdeep: 3:w7Lnfc/V0hOFpDyF8QKtuPjpon:0b0/sOfyFicjpo

PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Unknown!
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned

--------------
J'attends tes instructions
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Comment taper le anti slash?
Flagadatof -
SANG -

26 réponses
comment obtenir un slash inversé ?
Quynh-Anh -
Quynh-Anh -

5 réponses
Antislash sur AZERTY
dahamzi63 -
moh -

11 réponses