Problème avec NETPULSE

Fermé
SOPIHES40 - 15 sept. 2010 à 13:07
Bonjour,

J'ai téléchargé et installé ZHPDiag
J'ai récupérer le message sur le bloc note :
le voici :
Rapport de ZHPDiag v1.26.622 par Nicolas Coolman, Update du 14/09/2010
Run by SEGUES at 09/09/2010 15:46:08
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr

---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702

---\\ System Information
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
Processor: x86 Family 15 Model 2 Stepping 7, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 767 MB (54% free)
System drive C: has 45 GB (63%) free of 72 GB

---\\ Logged in mode
Computer Name: SOPHIE
User Name: SEGUES
All Users Names: SUPPORT_388945a0, SEGUES, HelpAssistant, Administrateur,
Unselected Option: None
Logged in as Administrator

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 45 Go of 72 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ CD-ROM drive (Not Inserted)


---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK


---\\ Processus lancés
[MD5.5DEBC3519D489411073FA7E56FFB4A93] - (.ALWIL Software - avast! Antivirus updating service.) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [18752]
[MD5.0AAF6B848185899CF76AE04E62EAB3D2] - (.ALWIL Software - avast! antivirus service.) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe [138680]
[MD5.0A7E9FDF3BF1980CA09FEEAC7F52EFBC] - (.ALWIL Software - avast! service GUI component.) -- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [81000]
[MD5.9704788592E8EEAEE0101E4EF1920CBC] - (.Microsoft® Corporation - Microsoft® Works PortFolio.) -- C:\Program Files\Microsoft Works\WksSb.exe [311350]
[MD5.A32B25970003B6ABA027EFF8EEDA12A3] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760]
[MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [248552]
[MD5.5F9D095CFA90C57474E295CC9F3C303D] - (.Pas de propriétaire - Pas de description.) -- C:\KMaestro\Key_f.EXE [114688]
[MD5.E13EA4860E8F2AA845B53BFD2B6FEC5B] - (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe [1695232]
[MD5.4C700ACFE1B5F8C6B0AE2B391C64FCC5] - (.Compete, Inc. - Compete DCA Update Agent.) -- C:\Program Files\Consumer Input\dca-ua.exe [179896]
[MD5.EF1ECB9DF42AF6BF7514BB5EBC5C59EC] - (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe [443968]
[MD5.9F666203E4003AF6C6B9AB848059813C] - (.Acer Incorporated - Packard Bell Software Suite.) -- C:\Program Files\Packard Bell\Software Suite\PBSoftSuite.exe [2901024]
[MD5.CD64CE62BE47DF0E9A459FD9002221FE] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe [77824]
[MD5.5AB58C337AC65837FE404462AD6265AB] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [345376]
[MD5.12CDB5DC7774298223099D6E41ED5CE7] - (.SEIKO EPSON CORPORATION - EPSON Printer Status Agent.) -- C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe [94208]
[MD5.126A16F569122AE00AD3D12EF831D651] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376]
[MD5.320FB49B88DEC36032E812A5935BE101] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 40.72.) -- C:\WINDOWS\System32\nvsvc32.exe [65536]
[MD5.D88CB557C3639952CD5C5E348E641CB4] - (.Packard Bell Services - Packard Bell Software Suite Service 1.) -- C:\Program Files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe [1002016]
[MD5.B2F564DC59B67763C73269E1A9DA7F18] - (.ALWIL Software - avast! e-Mail Scanner Service.) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [254040]
[MD5.D86010C96ABADDA75356834D6113D37D] - (.ALWIL Software - avast! Web Scanner.) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [352920]
[MD5.072C21580F8DEB7B63577D7AFD54629D] - (.Acer Incorporated - External Device Detecter.) -- C:\Program Files\Packard Bell\Software Suite\pbDevDetect.exe [537120]
[MD5.7A8EB1FBBF7F0706E48D85D87087E3D9] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [554496]


---\\ Plugins de navigateurs Opera/Firefox(P1/P2)
P2 - FPN: [HKLM] [@google.com/npPicasa2,version=2.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Picasa2\npPicasa2.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll


---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"


---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp


---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/toolbar/ie8/sidebar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/toolbar/ie8/sidebar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local


---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18939 (longhorn_ie8_gdr.100616-1700)) -- C:\WINDOWS\system32\ieframe.dll


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: DCA - {B49699FC-1665-4414-A1CB-C4A2A4A13EEC} . (.Compete, Inc. - Compete DCA Browser Helper Object.) -- C:\Program Files\Consumer Input\dca-bho.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java(TM) Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll


---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [avast!] . (.ALWIL Software - avast! service GUI component.) -- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [WorksFUD] . (.Microsoft® Corporation - Microsoft® Works Marketing Feature.) -- C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\System32\NvCpl.dll
O4 - HKLM\..\Run: [Microsoft Works Update Detection] . (.Microsoft® Corporation - Détection Microsoft® Works Update.) -- C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] . (.Microsoft® Corporation - Microsoft® Works PortFolio.) -- C:\Program Files\Microsoft Works\WksSb.exe
O4 - HKCU\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Consumer Input Update] . (.Compete, Inc. - Compete DCA Update Agent.) -- C:\Program Files\Consumer Input\dca-ua.exe
O4 - HKCU\..\Run: [Picasa Media Detector] . (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU\..\Run: [Packard Bell Software Suite] . (.Acer Incorporated - Packard Bell Software Suite.) -- C:\Program Files\Packard Bell\Software Suite\PBSoftSuite.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-21-201488045-4225221449-411071004-1005\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - HKUS\S-1-5-21-201488045-4225221449-411071004-1005\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-201488045-4225221449-411071004-1005\..\Run: [Consumer Input Update] . (.Compete, Inc. - Compete DCA Update Agent.) -- C:\Program Files\Consumer Input\dca-ua.exe
O4 - HKUS\S-1-5-21-201488045-4225221449-411071004-1005\..\Run: [Picasa Media Detector] . (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKUS\S-1-5-21-201488045-4225221449-411071004-1005\..\Run: [Packard Bell Software Suite] . (.Acer Incorporated - Packard Bell Software Suite.) -- C:\Program Files\Packard Bell\Software Suite\PBSoftSuite.exe


---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\Office12\EXCEL.exe


---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.)
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll


---\\ Piratage de l'Option 'Rétablir les paramètres Web' (O14)
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.connect-we.fr/


---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: DirectAnimation Java Classes (DirectAnimation Java Classes) - (.not file.) - file:\\C:\WINDOWS\Java\classes\dajava.cab
O16 - DPF: Microsoft XML Parser for Java (Microsoft XML Parser for Java) - (.not file.) - file:\\C:\WINDOWS\Java\classes\xmldso.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.extrafilm.fr/ImageUploader5.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab


---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{5650D5A7-7D2F-4196-B21A-927AD61FD9DA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{5650D5A7-7D2F-4196-B21A-927AD61FD9DA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{5650D5A7-7D2F-4196-B21A-927AD61FD9DA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{5650D5A7-7D2F-4196-B21A-927AD61FD9DA}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1


---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll


---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\System32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll


---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\System32\browseui.dll


---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) . (.ALWIL Software - avast! Antivirus updating service.) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.ALWIL Software - avast! antivirus service.) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EpsonBidirectionalService (EpsonBidirectionalService) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) . (.SEIKO EPSON CORPORATION - EPSON Printer Status Agent.) - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 40.72.) - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PowerSave Service (PowerSave) . (.Packard Bell Services - Packard Bell Software Suite Service 1.) - C:\Program Files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe


---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe


---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job


---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.1 r82.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10i.ocx


---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: KeyMaestro (KeyMaestro) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\Maestro0.sys


---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9.3.4 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {B2D328BE-45AD-4D92-96F9-2151490A203E}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {0CB9668D-F979-4F31-B8B8-67FE90F929F8}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Consumer Input Software (remove only) - (.Compete Inc..) [HKCU] -- Consumer Input Software
O42 - Logiciel: CutePDF Writer 2.8 - (.Pas de propriétaire.) [HKLM] -- CutePDF Writer Installation
O42 - Logiciel: EPSON Copy Utility - (.Pas de propriétaire.) [HKLM] -- {B69CC1A5-0404-11D6-ABCB-005004C21D30}
O42 - Logiciel: EPSON Logiciel imprimante - (.Pas de propriétaire.) [HKLM] -- EPSON Printer and Utilities
O42 - Logiciel: EPSON Photo Print - (.Pas de propriétaire.) [HKLM] -- {C24FE0B8-0A25-42E6-8532-A4ABAA1FA400}
O42 - Logiciel: EPSON PhotoQuicker3.2 - (.Pas de propriétaire.) [HKLM] -- {B2EFE303-A594-11D5-95EB-005004BC1C65}
O42 - Logiciel: EPSON Smart Panel - (.Pas de propriétaire.) [HKLM] -- {6C11D561-620B-47DA-A693-4C597F3CDF40}
O42 - Logiciel: EPSON TWAIN 5 - (.Pas de propriétaire.) [HKLM] -- {9A3EABC0-CA06-11D4-BF77-00104B130C19}
O42 - Logiciel: Grisbi 0.5.9 - (.grisbi.org.) [HKLM] -- GRISBI
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: InterVideo WinDVD 4 - (.InterVideo Inc..) [HKLM] -- {98E8A2EF-4EAE-43B8-A172-74842B764777}
O42 - Logiciel: Java(TM) 6 Update 21 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216019FF}
O42 - Logiciel: KeyMaestro Input Device Driver V2.0.1-32A2 MUL - (.Pas de propriétaire.) [HKLM] -- KeyMaestro
O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player
O42 - Logiciel: Microsoft .NET Framework (French) - (.Microsoft.) [HKLM] -- {6B908BF7-A583-4962-B068-69657D87CD56}
O42 - Logiciel: Microsoft .NET Framework (French) v1.0.3705 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework Full v1.0.3705 (1036)
O42 - Logiciel: Microsoft .NET Framework 1.0 Hotfix (KB928367) - (.Pas de propriétaire.) [HKLM] -- M9283671036
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Works 6.0 - (.Microsoft Corporation.) [HKLM] -- {75DEB69B-4B6C-11D4-B0CE-00AA00BCC218}
O42 - Logiciel: NVIDIA Windows 2000/XP Display Drivers - (.Pas de propriétaire.) [HKLM] -- NVIDIA
O42 - Logiciel: Packard Bell Software Suite - (.Acer Incorporated.) [HKLM] -- Packard Bell Software Suite
O42 - Logiciel: Picasa 2 - (.Google, Inc..) [HKLM] -- Picasa2
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {3D9892BB-A751-4E48-ADC8-E4289956CE1D}
O42 - Logiciel: ScanToWeb - (.Pas de propriétaire.) [HKLM] -- {EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}
O42 - Logiciel: SiS Audio Driver - (.Pas de propriétaire.) [HKLM] -- SiS7012
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (kb977719) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C0C92202-5215-4EFA-B0B9-B3A0DEABCDF1}
O42 - Logiciel: VLC media player 1.1.4 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11
O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11
O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- Windows XP Service
O42 - Logiciel: avast! Antivirus - (.Alwil Software.) [HKLM] -- avast!

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\Acro Software Inc]
[HKCU\Software\Adobe]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Aurigma]
[HKCU\Software\BITSoft]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\CompeteInc]
[HKCU\Software\Compete]
[HKCU\Software\Cygnus Solutions]
[HKCU\Software\EPSON]
[HKCU\Software\Google]
[HKCU\Software\InterVideo]
[HKCU\Software\JavaSoft]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Packard Bell]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\ReducBarre]
[HKCU\Software\Sony Corporation]
[HKCU\Software\Sysinternals]
[HKCU\Software\TNS]
[HKCU\Software\Textalk]
[HKCU\Software\Thong Nguyen]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\YahooPartnerToolbar]
[HKLM\Software\ALWIL Software]
[HKLM\Software\Acro Software Inc]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\BrowserChoice]
[HKLM\Software\C07ft5Y]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CompeteInc]
[HKLM\Software\Cygnus Solutions]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\Driver-Soft]
[HKLM\Software\EPSON Photo Print]
[HKLM\Software\EPSON]
[HKLM\Software\GEAR Software]
[HKLM\Software\GPL Ghostscript]
[HKLM\Software\Gemplus]
[HKLM\Software\Generic]
[HKLM\Software\Google]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\Python]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SEIKO EPSON CORP.]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Silicon Integrated Systems Corporation]
[HKLM\Software\VideoLAN]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Windows]


---\\ Contenu des dossiers ProgramFiles/ProgramData (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\Acro Software
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Ahead
O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software
O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update
O43 - CFD:Common File Directory ----D- C:\Program Files\Bonjour
O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner
O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications
O43 - CFD:Common File Directory ----D- C:\Program Files\Consumer Input
O43 - CFD:Common File Directory ----D- C:\Program Files\EPSON
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs
O43 - CFD:Common File Directory ----D- C:\Program Files\Google
O43 - CFD:Common File Directory ----D- C:\Program Files\GPLGS
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\InterVideo
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger
O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works
O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\MSECache
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN
O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting
O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express
O43 - CFD:Common File Directory ----D- C:\Program Files\Packard Bell
O43 - CFD:Common File Directory ----D- C:\Program Files\Packard Bell External HDD
O43 - CFD:Common File Directory ----D- C:\Program Files\Picasa2
O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime
O43 - CFD:Common File Directory ----D- C:\Program Files\SEIKO EPSON Corp
O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne
O43 - CFD:Common File Directory ----D- C:\Program Files\SiS7012
O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate
O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR
O43 - CFD:Common File Directory ----D- C:\Program Files\xerox
O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Apple
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DESIGNER
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\EPSON
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Python
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System


---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.00000000000000000000000000000000] - 09/09/2010 - 14:47:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [1581052]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/09/2010 - 14:44:18 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.00000000000000000000000000000000] - 09/09/2010 - 14:44:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.00000000000000000000000000000000] - 09/09/2010 - 14:44:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 09/09/2010 - 14:43:48 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.00000000000000000000000000000000] - 09/09/2010 - 14:39:53 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SchedLgU.Txt [32534]
O44 - LFC:[MD5.92EB46BB0F429832CDCA8B4F04257FDE] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\FaxSetup.log [43279]
O44 - LFC:[MD5.778068ACECB4A7F66F50A6C727EB48F5] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2259922.log [9680]
O44 - LFC:[MD5.50354A401138749A66BD78A258E373E5] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\comsetup.log [14340]
O44 - LFC:[MD5.BA46D1BC5A7EA882A882CEC4BC0A1052] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\iis6.log [6838]
O44 - LFC:[MD5.4BF93F91DC10B89A057744DE121F4521] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.log [1355]
O44 - LFC:[MD5.5A5379F502A47C45E6B444870B4700AD] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msgsocm.log [2163]
O44 - LFC:[MD5.6D2A2126C8413AED465194F1DAC8071E] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ntdtcsetup.log [8693]
O44 - LFC:[MD5.A030C835FB321340CC153BCB3BE9A6D8] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocgen.log [20692]
O44 - LFC:[MD5.7816DE342A9A1FFA32456CEDD16A1789] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocmsn.log [2394]
O44 - LFC:[MD5.71B123C471CB12420EB049283B5D2558] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupapi.log [13196]
O44 - LFC:[MD5.81189C823F495C64D07FBA4B3E79B0CC] - 09/09/2010 - 13:39:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\tsoc.log [16513]
O44 - LFC:[MD5.9700EF1D71BCBC7D89256CB2CC14C983] - 09/09/2010 - 13:38:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB975558.log [9632]
O44 - LFC:[MD5.37624991D4F82E883838ABDCB03109A9] - 09/09/2010 - 13:38:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.BAK [1355]
O44 - LFC:[MD5.15513A2F9BB78F9E85D45D0382B7F99D] - 09/09/2010 - 13:38:51 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2347290.log [15257]
O44 - LFC:[MD5.EB31DA8CCBCA82ED0D87BCEEAE83465D] - 09/09/2010 - 13:38:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\updspapi.log [2192]
O44 - LFC:[MD5.1C468E990A99FB888076BB079F8B8A01] - 09/09/2010 - 13:38:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2121546.log [14744]
O44 - LFC:[MD5.E38CA0A0C624218EFE55A2F93C1AA949] - 09/09/2010 - 13:38:36 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB982802.log [14249]
O44 - LFC:[MD5.793A40CE0431A46CBBC239E96E5DDB67] - 09/09/2010 - 13:38:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB981322.log [13560]
O44 - LFC:[MD5.BA8CBB420E7863B830DEFA37A47BC3C4] - 09/09/2010 - 13:33:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2141007.log [12088]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/09/2010 - 13:33:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupact.log [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/09/2010 - 13:33:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setuperr.log [0]
O44 - LFC:[MD5.59DE7B9025AA27A215390ED43301B044] - 09/09/2010 - 00:09:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PerfStringBackup.INI [906434]
O44 - LFC:[MD5.687AC986B58A347559E67E1A2CA52DA6] - 09/09/2010 - 00:09:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc009.dat [46252]
O44 - LFC:[MD5.D1F18186DEE5AF2419EE3B6B87714F05] - 09/09/2010 - 00:09:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc00C.dat [55620]
O44 - LFC:[MD5.75B0A8F698D39242AA0F02E56EB1CF70] - 09/09/2010 - 00:09:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh009.dat [366638]
O44 - LFC:[MD5.1B28BB43DDE665DCAB815350B3DFE1DC] - 09/09/2010 - 00:09:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh00C.dat [429032]
O44 - LFC:[MD5.C475EF8636E91F19627AD3EE3F4FBA13] - 15/08/2010 - 19:32:57 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\FNTCACHE.DAT [267800]
O44 - LFC:[MD5.E4478DF37C06221A5E3F4EAE52F88F90] - 15/08/2010 - 17:38:12 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\WINDOWS\System32\java.exe [145184]
O44 - LFC:[MD5.359B080F9226D078847E363C7AEDA903] - 15/08/2010 - 17:38:12 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\WINDOWS\System32\javaw.exe [145184]
O44 - LFC:[MD5.06CCE24882D9577D3795432E1B22FE4A] - 15/08/2010 - 17:38:12 ---A- . (.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\WINDOWS\System32\javaws.exe [153376]
O44 - LFC:[MD5.D0E675E1479A8BE24D30EEC2B8A152E7] - 15/08/2010 - 17:37:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\jupdate-1.6.0_21-b07.log [5222]


---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:Last File Created Prefetch 08/09/2010 - 14:44:10 ---A- C:\WINDOWS\Prefetch\MSFEEDSSYNC.EXE-25E13438.pf
O45 - LFCP:Last File Created Prefetch 08/09/2010 - 15:07:23 ---A- C:\WINDOWS\Prefetch\DEFRAG.EXE-273F131E.pf
O45 - LFCP:Last File Created Prefetch 08/09/2010 - 15:07:23 ---A- C:\WINDOWS\Prefetch\DFRGNTFS.EXE-269967DF.pf
O45 - LFCP:Last File Created Prefetch 08/09/2010 - 15:46:35 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-216D6B08.pf
O45 - LFCP:Last File Created Prefetch 08/09/2010 - 15:46:54 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-32BF2561.pf
O45 - LFCP:Last File Created Prefetch 08/09/2010 - 15:50:14 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-1498EC69.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 00:09:50 ---A- C:\WINDOWS\Prefetch\WMIADAP.EXE-2DF425B2.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 00:11:01 ---A- C:\WINDOWS\Prefetch\OUTLOOK.EXE-1615251F.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 00:12:49 ---A- C:\WINDOWS\Prefetch\JAVA.EXE-0C263507.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 00:30:52 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-198C86D5.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 01:03:56 ---A- C:\WINDOWS\Prefetch\ALG.EXE-0F138680.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 01:03:56 ---A- C:\WINDOWS\Prefetch\ASHMAISV.EXE-12E27032.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 01:03:56 ---A- C:\WINDOWS\Prefetch\ASHWEBSV.EXE-0548EF0A.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 01:03:56 ---A- C:\WINDOWS\Prefetch\WTS_KEY.EXE-0A7829F8.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 01:04:05 ---A- C:\WINDOWS\Prefetch\OFFLB.EXE-23F1475F.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 01:10:15 ---A- C:\WINDOWS\Prefetch\JAUCHECK.EXE-12D84157.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 01:10:16 ---A- C:\WINDOWS\Prefetch\JAVAW.EXE-2DC32ABC.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 01:10:16 ---A- C:\WINDOWS\Prefetch\JAVAWS.EXE-021AC9A9.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 05:31:52 ---A- C:\WINDOWS\Prefetch\IMAPI.EXE-0BF740A4.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 05:51:10 ---A- C:\WINDOWS\Prefetch\WIAACMGR.EXE-212ED878.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 08:58:14 ---A- C:\WINDOWS\Prefetch\CLICKME.EXE-0E5B5983.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 08:58:19 ---A- C:\WINDOWS\Prefetch\AUTOCD.EXE-15C56013.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 09:49:03 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-188DF14E.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 09:49:13 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-405DA0B3.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 09:58:39 ---A- C:\WINDOWS\Prefetch\CLICKME.EXE-005A7703.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 09:59:06 ---A- C:\WINDOWS\Prefetch\AUTOCD.EXE-0636676B.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 10:02:13 ---A- C:\WINDOWS\Prefetch\GRISBI.EXE-1C446C32.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 10:11:33 ---A- C:\WINDOWS\Prefetch\DRWTSN32.EXE-2B4B52AC.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:05:47 ---A- C:\WINDOWS\Prefetch\ADOBEARM.EXE-1095AC0A.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:34:04 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-24DBE541.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:36:56 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-2B4F5F34.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:39:54 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-22E35C38.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:40:35 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-41B0B52A.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:40:54 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-2A3370F2.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:41:32 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-11CCD5B1.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:42:54 ---A- C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:43:02 ---A- C:\WINDOWS\Prefetch\CONTROL.EXE-013DBFB5.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:51:34 ---A- C:\WINDOWS\Prefetch\HELPCTR.EXE-3862B6F5.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:51:35 ---A- C:\WINDOWS\Prefetch\HELPSVC.EXE-2878DDA2.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:51:43 ---A- C:\WINDOWS\Prefetch\HELPHOST.EXE-247D2792.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:56:41 ---A- C:\WINDOWS\Prefetch\PBDEVDETECT.EXE-217BBDAB.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 11:56:41 ---A- C:\WINDOWS\Prefetch\SVCHOST.EXE-3530F672.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 12:56:13 ---A- C:\WINDOWS\Prefetch\OXAPP4.EXE-17F81AB5.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 12:56:15 ---A- C:\WINDOWS\Prefetch\REGEDIT.EXE-1B606482.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 12:56:27 ---A- C:\WINDOWS\Prefetch\USBUNP.EXE-08D0DDEB.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 12:56:28 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-451FC2C0.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:00:36 ---A- C:\WINDOWS\Prefetch\QTTASK.EXE-342507FB.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:10:08 ---A- C:\WINDOWS\Prefetch\VLC.EXE-22DF01AA.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:12:56 ---A- C:\WINDOWS\Prefetch\ACRORD32INFO.EXE-242CE4AA.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:18:09 ---A- C:\WINDOWS\Prefetch\UTORRENT.EXE-3888D1B0.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:18:12 ---A- C:\WINDOWS\Prefetch\PING.EXE-31216D26.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:19:57 ---A- C:\WINDOWS\Prefetch\MYSURVEYMESSENGER.EXE-3A0117B5.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:20:29 ---A- C:\WINDOWS\Prefetch\OXAPP1.EXE-0CA02419.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:30:29 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-2138A4AF.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:30:30 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-187A1067.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:30:35 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-0C8116DA.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:30:36 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-1DD412E4.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:30:41 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-2874172D.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:30:45 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-0441BC61.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:30:51 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-16FFEC3B.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:32:38 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-277715BA.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:33:09 ---A- C:\WINDOWS\Prefetch\MRTSTUB.EXE-126818EC.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:33:17 ---A- C:\WINDOWS\Prefetch\WINDOWS-KB890830-V3.11-DELTA.-155B39EF.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:33:22 ---A- C:\WINDOWS\Prefetch\MRT.EXE-1B4A8D49.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:38:27 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-32D5A71B.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:38:36 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-2DD6773B.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:38:44 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-2036C23A.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:38:51 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-01191ECD.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:38:56 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-01A777BD.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:39:04 ---A- C:\WINDOWS\Prefetch\UPDATE.EXE-07D233EE.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 13:54:44 ---A- C:\WINDOWS\Prefetch\Layout.ini
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:09:29 ---A- C:\WINDOWS\Prefetch\LOGON.SCR-151EFAEA.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:09:41 ---A- C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:10:35 ---A- C:\WINDOWS\Prefetch\BT-UNINST.EXE-26390435.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:10:38 ---A- C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:12:45 ---A- C:\WINDOWS\Prefetch\MSMSGS.EXE-2B6052DE.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:13:45 ---A- C:\WINDOWS\Prefetch\DLLHOST.EXE-205D880D.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:13:48 ---A- C:\WINDOWS\Prefetch\SOFTWAREUPDATE.EXE-1415D1B8.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:14:10 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-4489B61B.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:14:20 ---A- C:\WINDOWS\Prefetch\MSIEXEC.EXE-2F8A8CAE.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:15:11 ---A- C:\WINDOWS\Prefetch\UNINSTALL.EXE-2AC36718.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:15:21 ---A- C:\WINDOWS\Prefetch\AU_.EXE-28C95016.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:18:45 ---A- C:\WINDOWS\Prefetch\IKERNEL.EXE-048903CE.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:18:45 ---A- C:\WINDOWS\Prefetch\RUNDLL32.EXE-4298C573.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:18:45 ---A- C:\WINDOWS\Prefetch\SET46.TMP-1BA48A99.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:20:25 ---A- C:\WINDOWS\Prefetch\TASKMGR.EXE-20256C55.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:22:10 ---A- C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:24:32 ---A- C:\WINDOWS\Prefetch\ZHPDIAG[1].EXE-07122FD1.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:24:32 ---A- C:\WINDOWS\Prefetch\ZHPDIAG[1].TMP-35BE78DB.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:28:22 ---A- C:\WINDOWS\Prefetch\IEXPLORE.EXE-27122324.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:36:10 ---A- C:\WINDOWS\Prefetch\MBR.EXE-313604BE.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:36:20 ---A- C:\WINDOWS\Prefetch\MBRCHECK.EXE-2B10ECF1.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:37:20 ---A- C:\WINDOWS\Prefetch\CMD.EXE-087B4001.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:37:20 ---A- C:\WINDOWS\Prefetch\LADS.EXE-06335087.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:37:21 ---A- C:\WINDOWS\Prefetch\SUBINACL.EXE-17974576.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:37:22 ---A- C:\WINDOWS\Prefetch\SETACL.EXE-33B348AC.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:37:22 ---A- C:\WINDOWS\Prefetch\SIGCHECK.EXE-306CABDB.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:37:34 ---A- C:\WINDOWS\Prefetch\DUMPREP.EXE-1B46F901.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:37:43 ---A- C:\WINDOWS\Prefetch\DWWIN.EXE-30875ADC.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:38:20 ---A- C:\WINDOWS\Prefetch\OUTLOOK.EXE-39385AAC.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:39:48 ---A- C:\WINDOWS\Prefetch\LOGONUI.EXE-0AF22957.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:45:15 ---A- C:\WINDOWS\Prefetch\AVAST.SETUP-032170A8.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:45:15 ---A- C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:45:15 ---A- C:\WINDOWS\Prefetch\WMIAPSRV.EXE-1E2270A5.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:45:16 ---A- C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf
O45 - LFCP:Last File Created Prefetch 09/09/2010 - 14:46:02 ---A- C:\WINDOWS\Prefetch\ZHPDIAG.EXE-021B7932.pf
O45 - LFCP:Last File Created Prefetch 15/08/2010 - 18:41:35 ---A- C:\WINDOWS\Prefetch\POWERPNT.EXE-364EC56A.pf


---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll


---\\ Export de clé d'application autorisée (ECAA) (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe
O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\Temp\NavBrowser.exe" [Enabled] .(.Naviant, Inc. - NAVBrowser.) -- C:\WINDOWS\Temp\NavBrowser.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe


---\\ Déni du service (Local Security Authority) (LSA) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll


---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d


---\\ MountPoints2 Shell Key (MPSK) (O51)
O51 - MPSK:{09e05a82-20c4-11df-aaca-005070b41ee2}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- K:\ClickMe.exe (.not file.)
O51 - MPSK:{4e1e8e5a-8eb8-11df-ab35-005070b41ee2}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\ClickMe.exe (.not file.)


---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.iac2"="iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\System32\iac25_32.ax
O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)


---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll


---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1


---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1


---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.2CCFA74242741CA22A4267CCE9B586F4] - 25/11/2009 - 00:47:54 ---A- . (.ALWIL Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys
O58 - SDL:[MD5.B4079A98F294A3E262872CB76F4849F0] - 25/11/2009 - 00:50:00 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys
O58 - SDL:[MD5.F5296ECFCBFE5935253AE6C29E6D086E] - 25/11/2009 - 00:51:09 ---A- . (.ALWIL Software - avast! File System Filter Driver for Windows NT/2000.) -- C:\WINDOWS\system32\drivers\aswmon.sys
O58 - S