Nouveaux malware memory fixer

fredderf35 Messages postés 14 Statut Membre -  
 Utilisateur anonyme -
bonjour apres un passage sur le net google chrome a enregistrer "memory fixer " sur mon pc.....
Il s'agirait d'un malware mon anti virus avira en a supprimer des parties mais google chrome ne fonctionne plus j'ai aussi un rapport dds et malwarebytes mais je ne sais pas les exploiter
pouvez vous m'aider merci
A voir également:

5 réponses

Réponse 1 / 5
Utilisateur anonyme
 
bonsoir,
copie et colle le rapport de MBAM sur ton prochain message

0
fredderf35 Messages postés 14 Statut Membre
 
desole je suis loin d'etre un pro mais voici le rapport
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 5465

Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005

05/01/2011 22:17:09
mbam-log-2011-01-05 (22-17-09).txt

Type d'examen: Examen complet (C:\|D:\|F:\|)
Elément(s) analysé(s): 324833
Temps écoulé: 1 heure(s), 48 minute(s), 27 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 9

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
c:\Users\fred\AppData\Local\friapne.dll (Trojan.Agent) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Akizijiwanomohag (Trojan.Agent) -> Value: Akizijiwanomohag -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\Users\fred\AppData\Local\friapne.dll (Trojan.Agent) -> Delete on reboot.
c:\programdata\gnghpnckobir.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\fred\AppData\LocalLow\Sun\Java\deployment\cache\6.0\47\1073662f-56c99884 (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\fred\AppData\Roaming\Adobe\plugs\kb1758895.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\fred\downloads\vlc-player.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Windows\Temp\wsget.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Temp\~nsuobw.tmp\getofferbox.php (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\fred\AppData\Roaming\Adobe\plugs\kb1818472.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\fred\AppData\Local\Temp\0.9651489844155005.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
0
Réponse 2 / 5
fredderf35 Messages postés 14 Statut Membre
 
merci du coup de main voici les rapports


DDS (Ver_10-12-12.02) - NTFSx86
Run by fred at 19:51:48,68 on 05/01/2011
Internet Explorer: 7.0.6002.18005 BrowserJavaVersion: 1.6.0_13
Microsoft® Windows Vista(TM) Édition Familiale Basique 6.0.6002.2.1252.33.1036.18.1975.693 [GMT 1:00]

AV: AntiVir Desktop *Enabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AntiVir Desktop *Enabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}

============== Running Processes ===============

C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\System32\svchost.exe -k Cognizance
C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
C:\windows\system32\svchost.exe -k rpcss
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\SLsvc.exe
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\Hpservice.exe
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\windows\system32\WLANExt.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
c:\Program Files\ActivIdentity\ActivClient\accoca.exe
C:\windows\system32\AEADISRV.EXE
C:\Windows\system32\agrsmsvc.exe
c:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\windows\System32\svchost.exe -k HPZ12
C:\Program Files\PDF Complete\pdfsvc.exe
C:\windows\System32\svchost.exe -k HPZ12
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\taskeng.exe
C:\windows\system32\rpcnet.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\System32\svchost.exe -k WerSvcGroup
C:\windows\system32\SearchIndexer.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
C:\windows\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
C:\windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
c:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\windows\System32\alg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\windows\system32\conime.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\wuauclt.exe
C:\Users\fred\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2849852
uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=83&bd=all&pf=cmnb
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=83&bd=all&pf=cmnb
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=83&bd=all&pf=cmnb
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: N/A: {9cb65206-89c4-402c-ba80-02d8c59f9b1d} - c:\program files\asktbar\srchastt\1.bin\A5SRCHAS.DLL
uURLSearchHooks: BittorrentBar_FR Toolbar: {ef79f67a-6ad7-4715-a0f8-932fca442023} - c:\program files\bittorrentbar_fr\tbBitt.dll
uURLSearchHooks: SearchElf 1.2 Toolbar: {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - c:\program files\searchelf_1.2\tbSear.dll
mURLSearchHooks: BittorrentBar_FR Toolbar: {ef79f67a-6ad7-4715-a0f8-932fca442023} - c:\program files\bittorrentbar_fr\tbBitt.dll
mURLSearchHooks: SearchElf 1.2 Toolbar: {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - c:\program files\searchelf_1.2\tbSear.dll
mWinlogon: Userinit=c:\windows\system32\userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
BHO: BHO_Startup Class: {3134413b-49b4-425c-98a5-893c1f195601} - c:\program files\hewlett-packard\file sanitizer\IEBHO.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\npdivx32.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - c:\program files\divx\divx plus web player\npdivx32.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: AOL Toolbar BHO: {7c554162-8cb7-45a4-b8f4-8ea1c75885f9} - c:\program files\aol\aol toolbar 5.0\aoltb.dll
BHO: Searchqu Toolbar: {7ff99715-3016-4381-84ce-e4e4c9673020} - c:\progra~1\wi9130~1\toolbar\SearchquDx.dll
BHO: Programme d'aide de l'Assistant de connexion Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Ask Search Assistant BHO: {9cb65201-89c4-402c-ba80-02d8c59f9b1d} - c:\program files\asktbar\srchastt\1.bin\A5SRCHAS.DLL
BHO: : {cf69d058-b623-4ae9-8514-256f04e08cd3} - c:\windows\system32\ypgvsaym.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Credential Manager for HP ProtectTools: {df21f1db-80c6-11d3-9483-b03d0ec10000} - c:\program files\hewlett-packard\iam\bin\ItIEAddIn.dll
BHO: BittorrentBar_FR Toolbar: {ef79f67a-6ad7-4715-a0f8-932fca442023} - c:\program files\bittorrentbar_fr\tbBitt.dll
BHO: SearchElf 1.2 Toolbar: {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - c:\program files\searchelf_1.2\tbSear.dll
BHO: OfferBox: {fc0d62c2-9640-4aeb-a5d5-cf25df11fa8c} - c:\program files\offerbox\OfferBoxBHO.dll
BHO: Ask Toolbar BHO: {fe063db1-4ec0-403e-8dd8-394c54984b2c} - c:\program files\asktbar\bar\1.bin\ASKTBAR.DLL
TB: {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
TB: AOL Toolbar: {de9c389f-3316-41a7-809b-aa305ed9d922} - c:\program files\aol\aol toolbar 5.0\aoltb.dll
TB: Ask Toolbar: {fe063db9-4ec0-403e-8dd8-394c54984b2c} - c:\program files\asktbar\bar\1.bin\ASKTBAR.DLL
TB: BittorrentBar_FR Toolbar: {ef79f67a-6ad7-4715-a0f8-932fca442023} - c:\program files\bittorrentbar_fr\tbBitt.dll
TB: Conduit Engine: {30f9b915-b755-4826-820b-08fba6bd249d} - c:\program files\conduitengine\ConduitEngine.dll
TB: SearchElf 1.2 Toolbar: {f4e6547e-325b-403c-a3bb-ad29ed37a92f} - c:\program files\searchelf_1.2\tbSear.dll
TB: Searchqu Toolbar: {7ff99715-3016-4381-84ce-e4e4c9673020} - c:\progra~1\wi9130~1\toolbar\SearchquDx.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [LightScribe Control Panel] c:\program files\common files\lightscribe\LightScribeControlPanel.exe -hidden
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [fnvfnfnv] "c:\users\fred\appdata\local\fnvfnfnv.exe" fnvfnfnv
uRun: [Google Update] "c:\users\fred\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [FEXeTWLLHYgf.exe] c:\programdata\FEXeTWLLHYgf.exe
uRun: [Akizijiwanomohag] rundll32.exe "c:\users\fred\appdata\local\friapne.dll",Startup
uRun: [Cx5QHgyo] c:\programdata\Cx5QHgyo.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [<NO NAME>]
mRun: [accrdsub] "c:\program files\actividentity\activclient\accrdsub.exe"
mRun: [PTHOSTTR] c:\program files\hewlett-packard\hp protecttools security manager\PTHOSTTR.EXE /Start
mRun: [CognizanceTS] rundll32.exe c:\progra~1\hewlet~1\iam\bin\ASTSVCC.dll,RegisterModule
mRun: [PDF Complete] c:\program files\pdf complete\pdfsty.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [hpWirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exe
mRun: [File Sanitizer] c:\program files\hewlett-packard\file sanitizer\CoreShredder.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [QlbCtrl.exe] c:\program files\hewlett-packard\hp quick launch buttons\QlbCtrl.exe /Start
mRun: [WatchDog] c:\program files\intervideo\dvd check\DVDCheck.exe
mRun: [SoundMAX] c:\program files\analog devices\soundmax\soundmax.exe /tray
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [HP Health Check Scheduler] c:\program files\hewlett-packard\hp health check\HPHC_Scheduler.exe
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [SoundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe
mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
mRun: [DivX Download Manager] "c:\program files\divx\divx plus web player\DDmService.exe" start
mRun: [DATAMNGR] c:\progra~1\wi9130~1\datamngr\DATAMN~1.EXE
StartupFolder: c:\users\fred\appdata\roaming\micros~1\windows\startm~1\programs\startup\limewi~1.lnk - c:\program files\limewire\LimeWire.exe
StartupFolder: c:\users\fred\appdata\roaming\micros~1\windows\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\dvdche~1.lnk - c:\program files\intervideo\dvd check\DVDCheck.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\wirele~1.lnk - c:\program files\trendnet\tew-424ub\WlanCU.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: &Recherche AOL Toolbar - c:\programdata\aol\ietoolbar\resources\fr-fr\local\search.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:\progra~1\wi9130~1\datamngr\datamngr.dll APSHook.dll
LSA: Notification Packages = scecli ASWLNPkg
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe"
Hosts: 127.0.0.1 www.spywareinfo.com

================= FIREFOX ===================

FF - ProfilePath - c:\users\fred\appdata\roaming\mozilla\firefox\profiles\lhj2elb3.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=&SearchSource=13
FF - prefs.js: keyword.URL - hxxp://search.lphant.com//web?src=ffb&q=
FF - component: c:\program files\offerbox\offerboxffx@offerbox.com\components\OfferBoxXpCom.dll
FF - component: c:\program files\windows searchqu toolbar\datamngr\firefoxextension\components\DataMngrHlp.dll
FF - component: c:\users\fred\appdata\roaming\mozilla\firefox\profiles\lhj2elb3.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\veetle\player\npvlc.dll
FF - plugin: c:\program files\veetle\plugins\npVeetle.dll
FF - plugin: c:\users\fred\appdata\local\google\update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\users\fred\appdata\roaming\mozilla\plugins\np-mswmp.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\divx\divx plus web player\firefox\html5video
FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\divx\divx plus web player\firefox\wpa
FF - Ext: OfferBox: offerboxffx@offerbox.com - c:\program files\offerbox\offerboxffx@offerbox.com
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com

============= SERVICES / DRIVERS ===============

R?2 jtltgtbs;NVIDIA nForce RAID Helper;c:\windows\system32\svchost.exe -k netsvcs [2008-1-21 21504]
R0 SbAlg;SbAlg;c:\windows\system32\drivers\SbAlg.sys [2008-5-14 51376]
R0 SbFsLock;SbFsLock;c:\windows\system32\drivers\SbFsLock.sys [2008-5-14 12928]
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2009-8-3 11608]
R1 RsvLock;RsvLock;c:\windows\system32\drivers\rsvlock.sys [2008-5-14 12496]
R2 accoca;ActivClient Middleware Service;c:\program files\actividentity\activclient\accoca.exe [2007-5-16 182576]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\avira\antivir desktop\sched.exe [2009-8-3 108289]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2009-8-3 185089]
R2 ASBroker;Logon Session Broker;c:\windows\system32\svchost.exe -k Cognizance [2008-1-21 21504]
R2 ASChannel;Local Communication Channel;c:\windows\system32\svchost.exe -k Cognizance [2008-1-21 21504]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2009-8-3 56816]
R2 HP ProtectTools Service;HP ProtectTools Service;c:\program files\hewlett-packard\hp protecttools security manager\PTChangeFilterService.exe [2008-5-14 34184]
R2 HpFkCryptService;Drive Encryption Service;c:\program files\hewlett-packard\drive encryption\HpFkCrypt.exe [2008-5-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files\hewlett-packard\file sanitizer\HPFSService.exe [2008-7-12 77824]
R2 hpsrv;HP Service;c:\windows\system32\hpservice.exe [2008-4-7 24936]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\pdf complete\pdfsvc.exe [2008-7-12 576024]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2009-11-6 1153368]
R3 Com4QLBEx;Com4QLBEx;c:\program files\hewlett-packard\hp quick launch buttons\Com4QLBEx.exe [2008-7-12 193840]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2008-1-21 179712]
S3 FontCache;Service de cache de police Windows;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]
S3 RoxMediaDB10;RoxMediaDB10;c:\program files\common files\roxio shared\10.0\sharedcom\RoxMediaDB10.exe [2008-4-8 1112560]
S3 RTL8187B;TRENDnet TEW-424UB 54M USB Dongle;c:\windows\system32\drivers\RTL8187B.sys [2007-7-19 281088]
S3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]

=============== Created Last 30 ================

2011-01-05 17:13:32 -------- d-----w- c:\users\fred\appdata\roaming\OfferBox
2011-01-05 17:11:35 -------- d-----w- c:\progra~2\Fun4IM
2011-01-05 17:11:21 -------- d-----w- c:\program files\Windows Searchqu Toolbar
2011-01-05 17:11:18 -------- d-----w- c:\program files\Fun4IM
2011-01-05 17:10:38 -------- d-----w- c:\program files\OfferBox
2011-01-05 15:08:23 423424 ----a-w- c:\progra~2\GnGHPNcKObIR.dll
2011-01-04 19:07:47 6273872 ----a-w- c:\progra~2\microsoft\windows defender\definition updates\{e3be2e81-2690-4bb5-a8c6-c966cce6d0a3}\mpengine.dll
2010-12-30 19:41:32 -------- d-----w- c:\users\fred\appdata\roaming\Local
2010-12-30 19:40:26 -------- d-----w- c:\program files\common files\DivX Shared
2010-12-22 21:44:58 -------- d-----w- c:\program files\Veetle
2010-12-20 19:30:01 -------- d-----w- c:\program files\SearchElf_1.2
2010-12-16 18:37:57 2048 ----a-w- c:\windows\system32\tzres.dll
2010-12-16 18:36:38 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
2010-12-12 14:58:12 -------- d-----w- c:\program files\Conduit
2010-12-12 14:57:46 -------- d-----w- c:\program files\ConduitEngine
2010-12-12 14:57:26 -------- d-----w- c:\program files\BittorrentBar_FR
2010-12-12 14:57:04 -------- d-----w- c:\program files\BitTorrent

==================== Find3M ====================

2011-01-05 18:45:57 17408 ----a-w- c:\windows\system32\rpcnetp.exe
2011-01-05 18:45:55 56680 ----a-w- c:\windows\system32\rpcnet.dll
2011-01-05 16:33:49 17408 ----a-w- c:\windows\system32\rpcnetp.dll
2010-11-12 00:44:54 94208 ----a-w- c:\windows\system32\dpl100.dll
2010-11-08 22:57:04 353592 ----a-w- c:\windows\system32\DivXControlPanelApplet.cpl
2010-11-04 18:56:07 345600 ----a-w- c:\windows\system32\wmicmiplugin.dll
2010-11-04 18:55:38 352768 ----a-w- c:\windows\system32\taskschd.dll
2010-11-04 18:55:38 270336 ----a-w- c:\windows\system32\taskcomp.dll
2010-11-04 18:55:12 601600 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-04 16:34:06 171520 ----a-w- c:\windows\system32\taskeng.exe
2010-10-28 15:44:56 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-10-28 13:27:47 292352 ----a-w- c:\windows\system32\atmfd.dll
2010-10-21 20:08:42 834048 ----a-w- c:\windows\system32\wininet.dll
2010-10-21 18:30:50 389632 ----a-w- c:\windows\system32\html.iec
2010-10-20 17:41:28 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-10-19 09:41:44 222080 ------w- c:\windows\system32\MpSigStub.exe
2010-10-18 13:37:35 81920 ----a-w- c:\windows\system32\consent.exe
2010-10-18 13:31:24 2038272 ----a-w- c:\windows\system32\win32k.sys

=================== ROOTKIT ====================

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.0.6002 Disk: FUJITSU_ rev.8909 -> Harddisk0\DR0 -> \Device\Ide\iaStor0

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys hpdskflt.sys hal.dll acpi.sys >>UNKNOWN [0x86E72555]<<
c:\windows\system32\drivers\hpdskflt.sys Hewlett-Packard Corporation Hewlett-Packard Corporation Mobile Data Protection System
_asm { PUSH EBP; MOV EBP, ESP; PUSH ECX; MOV EAX, [EBP+0x8]; CMP EAX, [0x86e787b0]; MOV EAX, [0x86e7882c]; PUSH EBX; PUSH ESI; MOV ESI, [EBP+0xc]; MOV EBX, [ESI+0x60]; PUSH EDI; JNZ 0x20; MOV [EBP+0x8], EAX; }
1 ntkrnlpa!IofCallDriver[0x81E80962] -> \Device\Harddisk0\DR0[0x869D04D0]
3 CLASSPNP[0x8242F8B3] -> ntkrnlpa!IofCallDriver[0x81E80962] -> [0x869D0C88]
5 hpdskflt[0x88DC3065] -> ntkrnlpa!IofCallDriver[0x81E80962] -> [0x855EA650]
7 acpi[0x8069C6BC] -> ntkrnlpa!IofCallDriver[0x81E80962] -> [0x85651028]
\Driver\iaStor[0x86072320] -> IRP_MJ_CREATE -> 0x86E72555
kernel: MBR read successfully
_asm { XOR AX, AX; MOV SS, AX; MOV SP, 0x7c00; MOV ES, AX; MOV DS, AX; MOV SI, 0x7c00; MOV DI, 0x600; MOV CX, 0x200; CLD ; REP MOVSB ; PUSH AX; PUSH 0x61c; RETF ; STI ; PUSHA ; MOV CX, 0x132; MOV BP, 0x62a; ROR BYTE [BP+0x0], CL; INC BP; }
detected disk devices:
\Device\Ide\IAAStorageDevice-1 -> \??\IDE#DiskFUJITSU_MHZ2160BH_G2____________________8909____#4&1bcdc343&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found
detected hooks:
user != kernel MBR !!!
error: Read Impossible de satisfaire à la demande en raison d'une erreur de périphérique d'E/S.
sectors 312581806 (+255): user != kernel
Warning: possible TDL4 rootkit infection !
TDL4 rootkit infection detected ! Use: "mbr.exe -f" to fix.

============= FINISH: 19:54:50,72 ===============







Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 5465

Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005

05/01/2011 22:17:09
mbam-log-2011-01-05 (22-17-09).txt

Type d'examen: Examen complet (C:\|D:\|F:\|)
Elément(s) analysé(s): 324833
Temps écoulé: 1 heure(s), 48 minute(s), 27 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 9

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
c:\Users\fred\AppData\Local\friapne.dll (Trojan.Agent) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Akizijiwanomohag (Trojan.Agent) -> Value: Akizijiwanomohag -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\Users\fred\AppData\Local\friapne.dll (Trojan.Agent) -> Delete on reboot.
c:\programdata\gnghpnckobir.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Users\fred\AppData\LocalLow\Sun\Java\deployment\cache\6.0\47\1073662f-56c99884 (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\fred\AppData\Roaming\Adobe\plugs\kb1758895.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\fred\downloads\vlc-player.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\Windows\Temp\wsget.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Temp\~nsuobw.tmp\getofferbox.php (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Users\fred\AppData\Roaming\Adobe\plugs\kb1818472.exe (Trojan.Agent) -> Quarantined and deleted successfully.
c:\Users\fred\AppData\Local\Temp\0.9651489844155005.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
0
Réponse 3 / 5
Utilisateur anonyme
 
redemarre ton pc pour que MBAM términe la mise en quarantaine des infections !


* Télécharge ZHPDiag sur ton bureau :


https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
ou
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/

* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.

/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »

* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur Cijoint, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
http://www.cijoint.fr/
ou :
http://ww38.toofiles.com/fr/documents-upload.html
ou :
https://www.terafiles.net/

tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
0
fredderf35 Messages postés 14 Statut Membre
 
j'ai fait un diagnostic avec dds est ce pareill ?
0
fredderf35 Messages postés 14 Statut Membre
 
desole j'ai pas reussi a envoyer le fichier differement tout mon pc plante
0
Réponse 4 / 5
Utilisateur anonyme
 
je n'utilise pas DDS, zhpdiag est un outil maison, on s'en sert pas mal ici :-)

0
fredderf35 Messages postés 14 Statut Membre
 
Rapport de ZHPDiag v1.27.1483 par Nicolas Coolman, Update du 05/01/2011
Run by fred at 06/01/2011 19:22:53
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr

---\\ Web Browser
MSIE: Internet Explorer v7.0.6002.18005
MFIE: Mozilla Firefox v3.6.10 (en-US) (Defaut)
GCIE: Google Chrome v8.0.552.224

---\\ System Information
Windows Vista Home Basic Edition, 32-bit Service Pack 2 (Build 6002)
Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1975 MB (53% free)
System Restore: Activé (Enable)
System drive C: has 30 GB (21%) free of 139 GB

---\\ Logged in mode
Computer Name: PC-DE-FRED
User Name: fred
All Users Names: fred, Administrateur,
Unselected Option: O1,O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=%USERPROFILE%\AppData\Roaming
%LocalAppData%=%USERPROFILE%\AppData\Local
%StartMenu%=%USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 30 Go of 139 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 9 Go)
E:\ CD-ROM drive (Free 0 Go of 0 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 1 Go)


---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK


---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 03:33:13.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.2D9C903DC76A66813D350A562DE40ED9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.21/01/2008 03:32:21.) -- C:\Windows\System32\drivers\atapi.sys [21560]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 07:32:49.) -- C:\Windows\System32\drivers\ntfs.sys [1083880]


---\\ Processus lancés
[MD5.7EAB127C64AAAA9134283C0FEA7177D1] - (.Bioscrypt Inc. - Global Virtual Card Host.) -- c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe [65296]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184]
[MD5.66B24E2EB8F8A8340F238A346F231C79] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [178712]
[MD5.85C1D3EE666A4A2B8071A570227A68A1] - (.ActivIdentity - ActivIdentity card event handler.) -- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [293168]
[MD5.5C6EB59CE1E494A46AA7B61BB0958432] - (.Hewlett-Packard Development Company, L.P. - HP ProtectTools Security Manager.) -- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe [238984]
[MD5.62B3C9786081ECAAB272A118408D2817] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1045800]
[MD5.8CB896C573FD15AE8B13180DA53E93D2] - (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752]
[MD5.E32453D5293DC1CA34A81561C21782CA] - (.Hewlett-Packard - File Sanitizer for HP ProtectTools.) -- C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [10244096]
[MD5.A2D390F1F2408B94EF34BFE3A00C29D3] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe [148888]
[MD5.443ADA6FE624132C76D3CBF47F371D7C] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [177456]
[MD5.2620ABCC3ADC019520EFC131C82EA036] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [150040]
[MD5.D3DD48B59263881BCE0344E503B379A5] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [170520]
[MD5.3362CDE3C884A9F8D9626C632BA1A62F] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [145944]
[MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [209153]
[MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [54576]
[MD5.73BB442A717B9BB0097C243374C14A3E] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672]
[MD5.0E284B5BB0CDD631461CE7E91DCEE3E2] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [141624]
[MD5.6438FF6F59D64E97E862F90AB66B7996] - (.Analog Devices, Inc. - SMax4PNP.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816]
[MD5.A58E05767687E1E636D160ECEA9BC8ED] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1226608]
[MD5.57D8C4ED26DFD7EF0E2CB196FB8BFB54] - (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe [63360]
[MD5.A3A3C9E0ED5591C1D535D18546E21B93] - (.Discordia, LTD - Data Manager.) -- C:\Program Files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe [985488]
[MD5.6DE8F3D91387412AC2E869FFA0F6ABA6] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2289664]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2144088]
[MD5.DC35217E5F49C2FE2D5EBC7CB52FEC65] - (.Pas de propriétaire - WlanCU MFC Application.) -- C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe [434176]
[MD5.3A19B2D2B5659D375FFFBA9EB71987B8] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe [7424000]
[MD5.22209643E16EB086B4E2D070E2C1789A] - (.Intel Corporation - igfxsrvc Module.) -- C:\windows\system32\igfxsrvc.exe [256536]
[MD5.EEBD0B763F32A26421A35CC2C735E8E3] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin [7418368]
[MD5.FECB438F7ABEA262C9633616CBD8CFDF] - (.ActivIdentity - ActivIdentity Event Service.) -- c:\Program Files\ActivIdentity\ActivClient\acevents.exe [95024]
[MD5.91C7B7340109693219CE5BCDA1B8CCAC] - (. Hewlett-Packard Development Company, L.P. - Volume related element.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe [91440]
[MD5.8D07F0687318214A3CEF62EA1048D101] - (.Hewlett-Packard Development Company, L.P. - Module to process WiFi messages..) -- C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE [316720]
[MD5.1EDC4865C8003A0251956835273904B1] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe [685360]
[MD5.1F373C5DB440D92839DDDF63F5BA2E8A] - (.Synaptics, Inc. - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [95528]
[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\windows\system32\wuauclt.exe [53472]
[MD5.4B555106290BD117334E9A08761C035A] - (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\rundll32.exe [44544]
[MD5.A26898623D61508C2FA3F5672C11FA5D] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [910296]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\windows\system32\conime.exe [69120]
[MD5.31DC2DD66CE7BA5D4D96CD818371132C] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [622592]


---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@divx.com/DivX OVS Helper,version=1.0.0] - (.DivX, LLC. - DivX OVS Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@veetle.com/veetleCorePlugin,version=0.9.18] - (.Veetle Inc - Version 0.9.18, Copyright 2006-2009 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\plugins\npVeetle.dll
P2 - FPN: [HKLM] [@veetle.com/veetlePlayerPlugin,version=0.9.18] - (.Veetle Inc - Version 0.9.18, copyright 2006-2010 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\Player\npvlc.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Users\fred\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll


---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [fbdglekpmmdlmdfogflhiponnndbokpk] AT_MEcko v.2 (Activé)
G2 - GCE: Preference [User Data\Default] [fnjbmmemklcjgepojigaapkoodmkgbae] DivX HiQ v.2.1.0.900 (Activé)
G2 - GCE: Preference [User Data\Default] [nneajnkjbffgblleaoojgaacokifdkhm] \u003Cvideo\u003E HTML5 DivX Plus Web Player v.2.1.0.900 (Activé)


---\\ Internet Explorer, Démarrage,Recherche,URSearchHook (R0,R1,R3)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2849852
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R3 - URLSearchHook: BittorrentBar_FR Toolbar - {ef79f67a-6ad7-4715-a0f8-932fca442023} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.6.0) -- C:\Program Files\BittorrentBar_FR\tbBitt.dll
R3 - URLSearchHook: SearchElf 1.2 Toolbar - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.7.3) -- C:\Program Files\SearchElf_1.2\tbSear.dll
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} . (.Ask.com - Ask.com Search Assistant.) (1, 0, 2, 4) -- C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (7.00.6000.16386 (vista_rtm.061101-2205)) -- C:\Windows\system32\ieframe.dll
R3 - URLSearchHook: BittorrentBar_FR Toolbar - {ef79f67a-6ad7-4715-a0f8-932fca442023} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.6.0) -- C:\Program Files\BittorrentBar_FR\tbBitt.dll
R3 - URLSearchHook: SearchElf 1.2 Toolbar - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.7.3) -- C:\Program Files\SearchElf_1.2\tbSear.dll


---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"


---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} . (.Hewlett-Packard - File Sanitizer for HP ProtectTools.) -- C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} . (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} . (.DivX, LLC - DivX Web Player version 2.1.0.900.) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} . (.AOL LLC - AOL IE Toolbar Dynamic Link Library.) -- C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Searchqu Toolbar - {7FF99715-3016-4381-84CE-E4E4C9673020} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\WI9130~1\ToolBar\SearchquDx.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} . (.Ask.com - Ask.com Search Assistant.) -- C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: (no name) - {CF69D058-B623-4AE9-8514-256F04E08CD3} . (.Pas de propriétaire - Pas de description.) -- c:\windows\system32\ypgvsaym.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} . (.Bioscrypt Inc. - SSO IE Listener.) -- c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O2 - BHO: BittorrentBar_FR Toolbar - {ef79f67a-6ad7-4715-a0f8-932fca442023} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\BittorrentBar_FR\tbBitt.dll
O2 - BHO: SearchElf 1.2 Toolbar - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\SearchElf_1.2\tbSear.dll
O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL


---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} . (.AOL LLC - AOL IE Toolbar Dynamic Link Library.) -- C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: BittorrentBar_FR Toolbar - {ef79f67a-6ad7-4715-a0f8-932fca442023} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\BittorrentBar_FR\tbBitt.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: SearchElf 1.2 Toolbar - {f4e6547e-325b-403c-a3bb-ad29ed37a92f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\SearchElf_1.2\tbSear.dll
O3 - Toolbar: Searchqu Toolbar - {7FF99715-3016-4381-84CE-E4E4C9673020} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\WI9130~1\ToolBar\SearchquDx.dll


---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [accrdsub] . (.ActivIdentity - ActivIdentity card event handler.) -- c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
O4 - HKLM\..\Run: [PTHOSTTR] . (.Hewlett-Packard Development Company, L.P. - HP ProtectTools Security Manager.) -- c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.exe
O4 - HKLM\..\Run: [CognizanceTS] . (.Bioscrypt Inc. - Terminal Services Virtual Channel Client.) -- c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll
O4 - HKLM\..\Run: [PDF Complete] . (.PDF Complete Inc - Sentry for PDF.) -- C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [File Sanitizer] . (.Hewlett-Packard - File Sanitizer for HP ProtectTools.) -- C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
O4 - HKLM\..\Run: [WatchDog] . (.InterVideo Inc. - DVDCheck Application.) -- C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [SoundMAX] . (.Analog Devices, Inc. - SoundMAX Audio Settings (32-bit).) -- C:\Program Files\Analog Devices\SoundMAX\soundmax.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] . (.Hewlett-Packard - HP Health Check Scheduler.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [SoundMAXPnP] . (.Analog Devices, Inc. - SMax4PNP.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
O4 - HKLM\..\Run: [DivX Download Manager] . (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe
O4 - HKLM\..\Run: [DATAMNGR] . (.Discordia, LTD - Data Manager.) -- C:\PROGRA~1\WI9130~1\Datamngr\DATAMN~1.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [fnvfnfnv] c:\users\fred\appdata\local\fnvfnfnv.exe (.not file.)
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [FEXeTWLLHYgf.exe] C:\ProgramData\FexeTWLLHYgf.exe (.not file.)
O4 - HKCU\..\Run: [Cx5QHgyo] C:\ProgramData\Cx5QHgyo.exe (.not file.)
O4 - HKCU\..\Run: [Akizijiwanomohag] C:\Users\fred\AppData\Local\friapne.dll (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [fnvfnfnv] c:\users\fred\appdata\local\fnvfnfnv.exe (.not file.)
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [FEXeTWLLHYgf.exe] C:\ProgramData\FexeTWLLHYgf.exe (.not file.)
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [Cx5QHgyo] C:\ProgramData\Cx5QHgyo.exe (.not file.)
O4 - HKUS\S-1-5-21-915344025-3498794451-2370816364-1004\..\Run: [Akizijiwanomohag] C:\Users\fred\AppData\Local\friapne.dll (.not file.)
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DVD Check.lnk . (.InterVideo Inc..) -- C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Configuration Utility.lnk . (.Pas de propriétaire.) -- C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LimeWire On Startup.lnk . (.Lime Wire, LLC.) -- C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk . (.Pas de propriétaire.) -- C:\Program Files\OpenOffice.org 3\program\quickstart.exe


---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\fred\Desktop\deuxieme_couche - Raccourci.lnk . (.Pas de propriétaire.) -- C:\Users\fred\Documents\boulot cv et lettre de motiv\deuxieme_couche
O4 - Global Startup: C:\Documents And Settings\fred\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\fred\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Documents And Settings\fred\Desktop\LimeWire 5.5.10.lnk . (.Lime Wire, LLC.) -- C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: C:\Documents And Settings\fred\Desktop\Profil Lecteurs locaux Avira AntiVir Personal.LNK . (.Avira GmbH.) -- C:\Program Files\Avira\AntiVir Desktop\avscan.exe
O4 - Global Startup: C:\Documents And Settings\fred\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Documents And Settings\fred\Desktop\Warcraft III - The Frozen Throne.lnk . (.Blizzard Entertainment.) -- C:\Program Files\Warcraft III\Frozen Throne.exe
O4 - Global Startup: C:\Documents And Settings\fred\Desktop\Warcraft III.lnk . (.Blizzard Entertainment.) -- C:\Program Files\Warcraft III\Warcraft III.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\fred\Desktop\deuxieme_couche - Raccourci.lnk . (.Pas de propriétaire.) -- C:\Users\fred\Documents\boulot cv et lettre de motiv\deuxieme_couche
O4 - Global Startup: C:\Users\fred\Desktop\Google Chrome.lnk . (.Google Inc..) -- C:\Users\fred\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\fred\Desktop\LimeWire 5.5.10.lnk . (.Lime Wire, LLC.) -- C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: C:\Users\fred\Desktop\Profil Lecteurs locaux Avira AntiVir Personal.LNK . (.Avira GmbH.) -- C:\Program Files\Avira\AntiVir Desktop\avscan.exe
O4 - Global Startup: C:\Users\fred\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\fred\Desktop\Warcraft III - The Frozen Throne.lnk . (.Blizzard Entertainment.) -- C:\Program Files\Warcraft III\Frozen Throne.exe
O4 - Global Startup: C:\Users\fred\Desktop\Warcraft III.lnk . (.Blizzard Entertainment.) -- C:\Program Files\Warcraft III\Warcraft III.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Users\fred\AppData\Local\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk . (.Nero AG.) -- C:\Program Files\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - Clé orpheline
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - Clé orpheline
O4 - Global Startup: C:\Users\fred\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe


---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Recherche AOL Toolbar . (.Pas de propriétaire - Pas de description.) -- C:\ProgramData\AOL\ieToolbar\resources\fr-FR\local\search.html
O8 - Extra context menu item: E&xport to Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe


---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra 'Tools' menuitem: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.not file.) - C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - C:\Program Files\Microsoft Office\Office12\REFBARH.ICO


---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll


---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2FDDC7B3-EA14-49B3-8CD7-E5407C4C12CD}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{5459FB0B-F6C4-43BB-B0BB-79EFF33EC9CC}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{2FDDC7B3-EA14-49B3-8CD7-E5407C4C12CD}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{5459FB0B-F6C4-43BB-B0BB-79EFF33EC9CC}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{2FDDC7B3-EA14-49B3-8CD7-E5407C4C12CD}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{5459FB0B-F6C4-43BB-B0BB-79EFF33EC9CC}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{2FDDC7B3-EA14-49B3-8CD7-E5407C4C12CD}: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\..\{5459FB0B-F6C4-43BB-B0BB-79EFF33EC9CC}: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\..\{2FDDC7B3-EA14-49B3-8CD7-E5407C4C12CD}: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\..\{5459FB0B-F6C4-43BB-B0BB-79EFF33EC9CC}: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\..\{2FDDC7B3-EA14-49B3-8CD7-E5407C4C12CD}: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\..\{5459FB0B-F6C4-43BB-B0BB-79EFF33EC9CC}: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254


---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll


---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Discordia, LTD - Data Manager.) - C:\PROGRA~1\WI9130~1\Datamngr\datamngr.dll


---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll


---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\windows\system32\browseui.dll


---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (accoca) . (.ActivIdentity - ActivIdentity Cache Server.) - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: (AEADIFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) - C:\windows\system32\AEADISRV.exe
O23 - Service: (AgereModemAudio) . (.Agere Systems - Agere Soft Modem Call Progress Service.) - C:\Windows\system32\agrsmsvc.exe
O23 - Service: (AMService) . (.Pas de propriétaire - Pas de description.) - C:\windows\TEMP\rbyq\setup.exe
O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - Apple Mobile Device Service.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: (HP ProtectTools Service) . (.Hewlett-Packard Development Company, L.P - PTChangeFilterService.) - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: (HpFkCryptService) . (.SafeBoot International - Drive Encryption for HP ProtectTools Servic.) - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: (HPFSService) . (.Hewlett-Packard - File Sanitizer for HP ProtectTools.) - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: (hpsrv) . (.Hewlett-Packard Corporation - HpService.) - C:\windows\system32\Hpservice.exe
O23 - Service: (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: (IviRegMgr) . (.InterVideo - RegMgr Module.) - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: (pdfcDispatcher) - Clé orpheline
O23 - Service: (rpcnet) . (.Absolute Software Corp. - rpcnet.) - C:\windows\system32\rpcnet.exe
O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe


---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.)


---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-915344025-3498794451-2370816364-1004Core.job
O39 - APT:Automatic Planified Task - C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-915344025-3498794451-2370816364-1004UA.job
O39 - APT:Automatic Planified Task - C:\windows\Tasks\HPCeeScheduleForfred.job
O39 - APT:Automatic Planified Task - C:\windows\Tasks\User_Feed_Synchronization-{B7498B6A-5898-4617-967C-300F15E4849F}.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-915344025-3498794451-2370816364-1004Core] (.Google Inc..) -- C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-915344025-3498794451-2370816364-1004UA] (.Google Inc..) -- C:\Users\fred\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.AE37F6508716D2DD6122744C46686BEC] [APT] [HP Health Check] (.Hewlett-Packard.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
[MD5.3D79C0903A45A63AA39370B664FB239B] [APT] [HPCeeScheduleForfred] (.Hewlett-Packard.) -- C:\Program Files\hewlett-packard\sdp\ceement\HPCEE.exe
[MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe


---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\windows\system32\drivers\afd.sys
O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: C:\windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys


---\\ Logiciels installés (O42)
O42 - Logiciel: 2007 Microsoft Office system - (.Microsoft Corporation.) [HKLM] -- PROHYBRIDR
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {2614F54E-A828-49FA-93BA-45A3F756BFAA}
O42 - Logiciel: AOL Toolbar 5.0 - (.AOL LLC.) [HKLM] -- AOL Toolbar
O42 - Logiciel: ActivClient 6.1 x86 - (.ActivIdentity.) [HKLM] -- {AC194855-F7AC-4D04-B4C9-07BA46FCB697}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Flash Player ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9.3 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A93000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d}
O42 - Logiciel: Agere Systems HDA Modem - (.Agere Systems.) [HKLM] -- Agere Systems Soft Modem
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {B2D328BE-45AD-4D92-96F9-2151490A203E}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {85991ED2-010C-4930-96FA-52F43C2CE98A}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {6956856F-B6B3-4BE0-BA0B-8F495BE32033}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: BIOS Configuration for HP ProtectTools - (.Hewlett-Packard.) [HKLM] -- {A1410161-F615-4B91-A019-FA33833EF00D}
O42 - Logiciel: BittorrentBar_FR Toolbar - (.BittorrentBar_FR.) [HKLM] -- BittorrentBar_FR Toolbar
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {0CB9668D-F979-4F31-B8B8-67FE90F929F8}
O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM] -- conduitEngine
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM] -- DivX Setup.divx.com
O42 - Logiciel: Credential Manager for HP ProtectTools - (.Hewlett-Packard Company.) [HKLM] -- {0F98662A-EA83-414F-8766-3FCE46A32641}
O42 - Logiciel: Dolphin 1.3 beta - (.Dolphin DevTeam.) [HKLM] -- Dolphin
O42 - Logiciel: Drive Encryption for HP ProtectTools - (.Hewlett-Packard.) [HKLM] -- {9DBD8BEE-B3EC-4D82-A81C-0F6250176DCC}
O42 - Logiciel: ESU for Microsoft Vista SP1 - (.Hewlett-Packard.) [HKLM] -- {01F81577-D786-49D7-BAAF-B8A8B44CE251}
O42 - Logiciel: Favorit (fnvfnfnv) - (.Pas de propriétaire.) [HKLM] -- fnvfnfnv
O42 - Logiciel: File Sanitizer For HP ProtectTools - (.Hewlett-Packard.) [HKLM] -- {789C97CE-9E17-4126-BDF4-11FF458BF705}
O42 - Logiciel: Fun4IM - (.Bandoo Media Inc.) [HKLM] -- Bandoo
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU] -- Google Chrome
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard.) [HKLM] -- {44F061CA-A548-4EA7-BC94-9AD841BFF573}
O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {420BBA1D-B275-4891-838C-EA88FE87A632}
O42 - Logiciel: HP Doc Viewer - (.Hewlett-Packard.) [HKLM] -- {082702D5-5DD8-4600-BCE5-48B15174687F}
O42 - Logiciel: HP Easy Setup - Frontend - (.Hewlett-Packard.) [HKLM] -- {8BB128BE-2670-485D-A221-B00715BCEBCF}
O42 - Logiciel: HP Help and Support - (.Hewlett-Packard.) [HKLM] -- {E333CA5F-00ED-4EEF-90E5-6A33A8FE969F}
O42 - Logiciel: HP JavaCard for HP ProtectTools - (.Hewlett-Packard.) [HKLM] -- {2086797F-A4BA-4CD3-8104-09B8D39DA5D8}
O42 - Logiciel: HP ProtectTools Security Manager - (.Hewlett-Packard.) [HKLM] -- {926F4D5F-C8FC-4FB7-8E09-BCB8A997D1C7}
O42 - Logiciel: HP ProtectTools Security Manager Suite - (.Hewlett-Packard.) [HKLM] -- {75D7BB3A-9AB7-4ad1-AD5E-0059B90C624B}
O42 - Logiciel: HP Quick Launch Buttons 6.40 E1 - (.Hewlett-Packard.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: HP Software Setup 5.00.A.7 - (.Hewlett-Packard Company.) [HKLM] -- {70CEFEBA-F757-4DBE-8A21-027C326137CE}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {74DC0593-6BC6-4001-AD5F-D810AFB68D86}
O42 - Logiciel: HP User Guides 0108 - (.Hewlett-Packard.) [HKLM] -- {B79DB290-9F72-4B20-9776-848D7832705B}
O42 - Logiciel: HP Wallpaper - (.Hewlett-Packard.) [HKLM] -- {F173C2B3-296F-458C-98FF-1676A42EBA02}
O42 - Logiciel: HP Webcam - (.Sonix.) [HKLM] -- {399C37FB-08AF-493B-BFED-20FBD85EDF7F}
O42 - Logiciel: HP Webcam Application - (.Chicony Electronics Co.,Ltd..) [HKLM] -- {154E4F71-DFC0-4B31-8D99-F97615031B02}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {9ADABDDE-9644-461B-9E73-83FA3EFCAB50}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: HPNetworkAssistant - (.Hewlett-Packard..) [HKLM] -- {228C6B46-64E2-404E-898A-EF0830603EF4}
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: InterVideo DVD Check - (.Pas de propriétaire.) [HKLM] -- {5D97A4A7-C274-4B63-86D9-07A33435F505}
O42 - Logiciel: InterVideo WinDVD - (.Pas de propriétaire.) [HKLM] -- {91810AFC-A4F8-4EBA-A5AA-B198BBC81144}
O42 - Logiciel: Java(TM) 6 Update 13 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216013FF}
O42 - Logiciel: Java(TM) 6 Update 6 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160060}
O42 - Logiciel: LightScribe System Software 1.12.37.1 - (.LightScribe.) [HKLM] -- {004C5DA2-2051-4D25-94BA-51CF810C91EB}
O42 - Logiciel: LimeWire 5.5.10 - (.Lime Wire, LLC.) [HKLM] -- LimeWire
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB2416447) - (.Pas de propriétaire.) [HKLM] -- M2416447
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0407-0000-0000000FF1CE}_PROHYBRIDR_{9BD40163-B95D-4B07-8991-0AB775B6D88B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROHYBRIDR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0410-0000-0000000FF1CE}_PROHYBRIDR_{71CCE0F1-A3B4-49C9-A328-1DABE845E0C4}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-0413-0000-0000000FF1CE}_PROHYBRIDR_{DC387AA5-94A6-4920-B004-D59846526D81}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0407-0000-0000000FF1CE}_PROHYBRIDR_{26454C26-D259-4543-AA60-3189E09C5F76}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0409-0000-0000000FF1CE}_PROHYBRIDR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROHYBRIDR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0410-0000-0000000FF1CE}_PROHYBRIDR_{0A75DA12-55CB-4DE5-8B6A-74D97847204E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-0413-0000-0000000FF1CE}_PROHYBRIDR_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0115-0409-0000-0000000FF1CE}_PROHYBRIDR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0117-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
O42 - Logiciel: Microsoft Office Access MUI (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Access MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Access MUI (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Access MUI (Italian) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-0410-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Access Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0117-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel 2007 Help - Aggiornamento (KB963678) - (.Microsoft.) [HKLM] -- {90120000-0016-0410-0000-0000000FF1CE}_PROHYBRIDR_{9F57BDED-B51B-4D2F-B360-5B4EFAAF0F1A}
O42 - Logiciel: Microsoft Office Excel MUI (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (Italian) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-0410-0000-0000000FF1CE}
O42 - Logiciel: Microsoft O
0
fredderf35 Messages postés 14 Statut Membre
 
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.B0F2D3A6E310CE7A4EBFA0CE2BA68392] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\1QpNcLQ [29]
O44 - LFC:[MD5.84AC2F60DDF78A4CF3196264B99E42C9] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\1tvkA [42]
O44 - LFC:[MD5.B26A5988ECB2CE2A89B8027214B0C109] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\27pGl6miJ [47]
O44 - LFC:[MD5.2ABE8AD615E06605CA43A467073F9E8B] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\3VrJKy [33]
O44 - LFC:[MD5.9A2DB400ED19344189440C4CF00E01E3] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\4v7PuPrsJ [44]
O44 - LFC:[MD5.A754B4C51B80E230119A337B5B8BC303] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\7Py35G [36]
O44 - LFC:[MD5.3C1737F82B381745476E97D90EF861CA] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\7ysALMl5Yi [32]
O44 - LFC:[MD5.F1759BC863D44A538D402B47F6168E41] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\AlSXOlDC [32]
O44 - LFC:[MD5.6A7A4DBA377B4FE4B75EC959DCC7DB36] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\CbQWbCO [38]
O44 - LFC:[MD5.489F58A2CAC40EA21BBA1997AC00CDE7] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\D1gQFhmM [39]
O44 - LFC:[MD5.4AE7B48B7F45DA71A595631AC749ED71] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\DHgFX [44]
O44 - LFC:[MD5.826E3B69537A32A11CAA6B763E4FC920] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\DIUNopDhrs [44]
O44 - LFC:[MD5.E699D66BF4617A721F792B6952250CD8] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\Dk5BXG [33]
O44 - LFC:[MD5.985AC2029EE49C1A28FB86D9D3A911DA] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\EtWGqQ [31]
O44 - LFC:[MD5.E9AD06D48CBA9FAD7DD04FFFF79C48E2] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\EyUEwhL5Ad [24]
O44 - LFC:[MD5.EF4292E34652147207CD3449C7EA94DF] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\G8mqQyaY1 [37]
O44 - LFC:[MD5.409A411D0C288DD306225FEBFB884D3D] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\GMWuAoe [43]
O44 - LFC:[MD5.D098B1DA2E437144F4CDFBD4E6B9DCD2] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\H4UUCWl [37]
O44 - LFC:[MD5.9C14B61298D5EB418ECD652CE234AAF9] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\HKivYReJ [29]
O44 - LFC:[MD5.D2366E87613BE605243E2AF55C6342CF] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\KCj8Qd [47]
O44 - LFC:[MD5.85BBD9A54DD46E1FF108046065E14F49] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\KlMvNXdIl [34]
O44 - LFC:[MD5.DE2337147B61E94C488993A92D79322E] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\LLJ8Qkw7 [24]
O44 - LFC:[MD5.9BB7B7F6D360E8523D5BA1B6D9C09F05] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\MojnXS [43]
O44 - LFC:[MD5.0EB43049872963F3CA32DCF9165D925E] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\Ms4KL8Xl [28]
O44 - LFC:[MD5.47394E162695009A16B0E828F8BC0134] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\O6aqlYx [45]
O44 - LFC:[MD5.F937B38AA052892EBB7E57DB016D38C8] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\OCIDeDpR [37]
O44 - LFC:[MD5.F095AE3016A7C1C6C5A5283AD10388DD] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\Scfhh [27]
O44 - LFC:[MD5.0657598C158A381584D55B08F46D5F88] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\THgMik [33]
O44 - LFC:[MD5.FB6A057491B331C43EE36B319798CA9C] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\UFLNiEkO [49]
O44 - LFC:[MD5.CA6FAC8BD4954290E66CB722999827D6] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\XLGSHo [29]
O44 - LFC:[MD5.B9FE638E9EF578D465E1157AA4865B18] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\Xr4cfF [43]
O44 - LFC:[MD5.5B48B049A4EDE54726365A276AD5CF27] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\Y13U8Qrv [30]
O44 - LFC:[MD5.0F59FE2F5398B32E9A4146BE9943FBDB] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\YN2chndwuL [35]
O44 - LFC:[MD5.3AF24A284ACB7D97B31EECCA5E4539F2] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\YXhqFu8pY [47]
O44 - LFC:[MD5.74E5AD307AD6CA324F11653456187AA1] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\aLKubquphi [28]
O44 - LFC:[MD5.3F4D0034E53B266EF681FE46DBA9A6C4] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\agP7PxLp6 [43]
O44 - LFC:[MD5.C3F16B79F29F713004CFCAC5C3ADB0D5] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\cReTykQ [43]
O44 - LFC:[MD5.6D3515D600BC7C83EAE0B4BC227B61E6] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\dLfW4yK [33]
O44 - LFC:[MD5.6BCC984521019B4FF3BB701ABC216C9C] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\dSa1Y6u [34]
O44 - LFC:[MD5.3ABE18B82D5C9A664C1C868DA543263B] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\dYPwL [31]
O44 - LFC:[MD5.6B30294F2A771A28ABBED3A78EFFF09D] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\dfVcjX6ws [34]
O44 - LFC:[MD5.103CFE52927BF7A397EC37605CA7C702] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\fJWoMCJn2 [44]
O44 - LFC:[MD5.11EEC1C84467F331F5EFE6E61D5721EA] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\fop27bCH [38]
O44 - LFC:[MD5.7125948D0509573A33CE975B60EB81DD] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\gxs1YoS [27]
O44 - LFC:[MD5.314FF97BFE36B00A6CC47811956E765D] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\h3nk3swUW [40]
O44 - LFC:[MD5.49C620FF14AFBF3235012126DE4DDA9F] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\hkAHEHUwv [39]
O44 - LFC:[MD5.7A9BAB6638DF4EECE267BD38055B6B6B] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\hkLr7YHVJW [32]
O44 - LFC:[MD5.CC75B6B460D84B66BAA9D4F2475D15A2] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\ij1l5 [41]
O44 - LFC:[MD5.10E529065C9CA6531390F8B601DFBDA3] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\kNieLR [27]
O44 - LFC:[MD5.6F1541F4BB124C2C5E3A965116FE8A43] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\kUF7Fwy8T [45]
O44 - LFC:[MD5.90B8F34DE66C9288DB91E40A7282B671] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\lgvw3Q [45]
O44 - LFC:[MD5.710C4B65380FA8816ADCE0F02D827631] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\mNGCd [39]
O44 - LFC:[MD5.5A2B5B82C2F079F8186F2DC0A2118709] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\mQs8O [25]
O44 - LFC:[MD5.B4015589F75E564E97EEA971B1D8E18B] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\n47VYy6n [37]
O44 - LFC:[MD5.070E0AC0CE04C03284E86298696E203B] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\nRMdDg [46]
O44 - LFC:[MD5.8067F7D350F318B75450DD3B58E2A0EB] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\oiFxDIwRm [38]
O44 - LFC:[MD5.AFF3AEC12DBA276453D024360B223E3D] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\oliq5 [45]
O44 - LFC:[MD5.E5D127EC8B7DD1A81D300E7BBAC4EDD1] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\peDjeMar [44]
O44 - LFC:[MD5.E8164D3C2BC1CB0F1629F3BE00318213] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\qhn1Kb [37]
O44 - LFC:[MD5.A7C63BD16AF47276316777A8D1AF33D6] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\s7mXr86eJ [25]
O44 - LFC:[MD5.B5A3194241250DF6DC0FA9B5A121ED2A] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\smS67 [40]
O44 - LFC:[MD5.019E2503FC60D623D73B8E29D7E3C679] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\t3XGf [28]
O44 - LFC:[MD5.49E141DBA1B07E950E32446544A8428A] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\tJMPX [30]
O44 - LFC:[MD5.26776AD98D76276C10402401BF1EB219] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\vMrdxI [41]
O44 - LFC:[MD5.68002E7ECB3870A74BAF75F927E13F61] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\wVvOe [40]
O44 - LFC:[MD5.10CD466C147BFDE5868165D499DA090A] - 06/01/2011 - 19:04:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\y8E2exvp [35]
O44 - LFC:[MD5.E83D68AF9E75E883E3D287F8C0311F5E] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\2itBap [36]
O44 - LFC:[MD5.F5F815B8205B2B6231439665D661169E] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\7dUncB [35]
O44 - LFC:[MD5.CA919119B2B34C513703EE02A013C0CA] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\8jejoQT [44]
O44 - LFC:[MD5.AD7B991468DD737473F9C377E612C208] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\DYPBW [40]
O44 - LFC:[MD5.03196A41FDDB498542FBF7D5B64DF72F] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\GqDTNjDBw2 [32]
O44 - LFC:[MD5.79DD46836DC623700F6B5BF4F107785A] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\IldR4yhX [49]
O44 - LFC:[MD5.641DE81CE68A60B8C37317A00B3C2D72] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\JtkuNV1q [39]
O44 - LFC:[MD5.A0D126F91F8CBC35A47469E58C9163B5] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\L4V7s [40]
O44 - LFC:[MD5.C250F313EB3ED7EA780545659BDD336B] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\L8Ttsb [43]
O44 - LFC:[MD5.9216D62795E63A94F307C11FBDAA6917] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\MDREw [32]
O44 - LFC:[MD5.FE462DD2B03F9F938B1AD0F374EBC84B] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\N41Pp [26]
O44 - LFC:[MD5.1624D68C023EA43E85F2E817A907F8A3] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\NQLE7u3k23 [43]
O44 - LFC:[MD5.2B21DD9BAC77937E69228DCCB202F64D] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\Nn8gO [38]
O44 - LFC:[MD5.A66E4EC2A2EC44D7E7DAEF49FB3B9EF8] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\OwihnOpmNX [33]
O44 - LFC:[MD5.438B64EB6A3E51293F4CAB6464050CE4] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\VkDKja [40]
O44 - LFC:[MD5.FF4C5AF79231319D6A16565990FB57A4] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\cxKNqF [27]
O44 - LFC:[MD5.694E4AA2145C4486D181D381B638B4E9] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\dCvqDMoHtI [41]
0
fredderf35 Messages postés 14 Statut Membre
 
O44 - LFC:[MD5.69DC2AF1AF055B970E3391769BF2493C] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\hBKARaiJbw [29]
O44 - LFC:[MD5.9687EA03AC8E81C71351A1BE3AF140CF] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\kNUjmt3 [30]
O44 - LFC:[MD5.321C2598B79043EA1521595CB9F37794] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\mrlJgcL7 [30]
O44 - LFC:[MD5.AFFC73DE50A219A9486CA12D55FF8061] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\pCVfT3 [46]
O44 - LFC:[MD5.895E2609DB2F162A5E89F490E28B08EA] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\qVgVC8gccH [42]
O44 - LFC:[MD5.C1FE595733805F4986D62C5D346F7FF4] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\vCkBbuYuu5 [45]
O44 - LFC:[MD5.73FAFF0792C71BF8FCD6E8022434C83A] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\vXi1S7Oxt [27]
O44 - LFC:[MD5.2372B233915057B96AA0E8E41083CE96] - 06/01/2011 - 19:04:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\x8nKqH [37]
O44 - LFC:[
0
fredderf35 Messages postés 14 Statut Membre
 
---\\ MountPoints2 Shell Key (MPSK) (O51)
O51 - MPSK:{3d4f6a04-a216-11de-9e3a-0024815c2019}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- G:\EmDesk.exe (.not file.)
O51 - MPSK:{807f8b1d-4c8a-11df-9e1f-0024815c2019}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- H:\ji83j.exe (.not file.)
O51 - MPSK:{807f8b1d-4c8a-11df-9e1f-0024815c2019}\Shell\open\command. (.Pas de propriétaire - Pas de description.) -- H:\ji83j.exe (.not file.)
O51 - MPSK:{d2706fcb-8f1e-11de-a5a4-0024815c2019}\Shell\AutoRun\command - Clé orpheline
O51 - MPSK:{d2706fcb-8f1e-11de-a5a4-0024815c2019}\Shell\open\command - Clé orpheline


---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\windows\System32\DivX.dll
O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\windows\System32\DivX.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)


---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\windows\system32\credssp.dll


---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0


---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
0
fredderf35 Messages postés 14 Statut Membre
 
---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.A9B917777841B76F299E2EA946E03ADF] - 07/04/2008 - 19:13:42 ---A- . (.Hewlett-Packard Corporation - HP Accelerometer.) -- C:\windows\system32\drivers\Accelerometer.sys [34664]
O58 - SDL:[MD5.364A903711E84EB1386FA04106681B7A] - 11/04/2008 - 15:38:44 ---A- . (.Analog Devices, Inc. - High Definition Audio Function Driver.) -- C:\windows\system32\drivers\ADIHdAud.sys [382464]
O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:32:46 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\system32\drivers\adp94xx.sys [422968]
O58 - SDL:[MD5.60505E0041F7751BDBB80F88BF45C2CE] - 21/01/2008 - 03:32:51 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\system32\drivers\adpahci.sys [300600]
O58 - SDL:[MD5.8A42779B02AEC986EAB64ECFC98F8BD7] - 21/01/2008 - 03:32:52 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\windows\system32\drivers\adpu160m.sys [101432]
O58 - SDL:[MD5.241C9E37F8CE45EF51C3DE27515CA4E5] - 21/01/2008 - 03:32:53 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\windows\system32\drivers\adpu320.sys [149560]
O58 - SDL:[MD5.38325C6AA8EAE011897D61CE48EC6435] - 29/02/2008 - 17:13:38 ---A- . (.Agere Systems - SoftModem Device Driver.) -- C:\windows\system32\drivers\AGRSM.sys [1202560]
O58 - SDL:[MD5.9EAEF5FC9B8E351AFA7E78A6FAE91F91] - 21/01/2008 - 03:32:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\system32\drivers\aliide.sys [17464]
O58 - SDL:[MD5.5D2888182FB46632511ACEE92FDAD522] - 21/01/2008 - 03:32:49 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\system32\drivers\arc.sys [79416]
O58 - SDL:[MD5.5E2A321BD7C8B3624E41FDEC3E244945] - 21/01/2008 - 03:32:50 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\system32\drivers\arcsas.sys [79928]
O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 10/12/2009 - 16:41:14 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\windows\system32\drivers\avgntflt.sys [56816]
O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\windows\system32\drivers\avipbb.sys [96104]
O58 - SDL:[MD5.502F1C30BD50B32D00CE4DCAECC3D3C7] - 21/01/2008 - 03:32:44 ---A- . (.Broadcom Corporation - Pilote NDIS6.0 Broadcom NetXtreme Gigabit Ethernet..) -- C:\windows\system32\drivers\b57nd60x.sys [179712]
O58 - SDL:[MD5.3F5E7621CDF6867D3D8417D13A098277] - 21/03/2008 - 19:35:24 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\windows\system32\drivers\BCMWL6.SYS [1207288]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\windows\system32\drivers\BrSerId.sys [71808]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.9714B7C918C6543D69074EC101F86AC4] - 12/03/2008 - 04:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\windows\system32\drivers\cdr4_xp.sys [9072]
O58 - SDL:[MD5.0D856D16C08440BFB566D6CDD9948D4E] - 12/03/2008 - 04:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\windows\system32\drivers\cdralw2k.sys [9200]
O58 - SDL:[MD5.0CA25E686A4928484E9FDABD168AB629] - 21/01/2008 - 03:32:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\system32\drivers\cmdide.sys [19000]
O58 - SDL:[MD5.88A78635B41ED4B261365FADEB28FE81] - 14/04/2008 - 22:39:06 ---A- . (.Hewlett-Packard Development Company, L.P. - HP Tablet PC Key Button HID Driver.) -- C:\windows\system32\drivers\CPQBttn.sys [9344]
O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\windows\system32\drivers\djsvs.sys [71272]
O58 - SDL:[MD5.5425F74AC0C1DBD96A1E04F17D63F94C] - 21/01/2008 - 03:32:50 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel(R) PRO/1000.) -- C:\windows\system32\drivers\E1G60I32.sys [118784]
O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:32:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\windows\system32\drivers\elxstor.sys [342584]
O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 13:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\windows\system32\drivers\GEARAspiWDM.sys [26600]
O58 - SDL:[MD5.16EE7B23A009E00D835CDB79574A91A6] - 21/01/2008 - 03:32:52 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\windows\system32\drivers\HpCISSs.sys [40504]
O58 - SDL:[MD5.3520A74FCA88A5AEFBBE7B937BEA75F7] - 07/04/2008 - 19:13:46 ---A- . (.Hewlett-Packard Corporation - HP Disk Filter - SATA/RAID.) -- C:\windows\system32\drivers\hpdskflt.sys [25448]
O58 - SDL:[MD5.35956140E686D53BF676CF0C778880FC] - 19/06/2007 - 01:12:04 ---A- . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\windows\system32\drivers\HpqKbFiltr.sys [16768]
O58 - SDL:[MD5.DB0CC620B27A928D968C1A1E9CD9CB87] - 15/04/2008 - 18:53:44 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\system32\drivers\iaStor.sys [312344]
O58 - SDL:[MD5.54155EA1B0DF185878E0FC9EC3AC3A14] - 21/01/2008 - 03:32:49 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\windows\system32\drivers\iaStorV.sys [235064]
O58 - SDL:[MD5.D97E70E4E243C9660F91C1112E36C73B] - 21/05/2008 - 15:07:48 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\system32\drivers\igdkmd32.sys [2369536]
O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\system32\drivers\iirsp.sys [41576]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\windows\system32\drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\windows\system32\drivers\iteraid.sys [35944]
O58 - SDL:[MD5.C7E15E82879BF3235B559563D4185365] - 21/01/2008 - 03:32:49 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\windows\system32\drivers\lsi_fc.sys [96312]
O58 - SDL:[MD5.EE01EBAE8C9BF0FA072E0FF68718920A] - 21/01/2008 - 03:32:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas.sys [89656]
O58 - SDL:[MD5.912A04696E9CA30146A62AFA1463DD5C] - 21/01/2008 - 03:32:48 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\system32\drivers\lsi_scsi.sys [96312]
O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbam.sys [20952]
O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\windows\system32\drivers\mbamswissarmy.sys [38224]
O58 - SDL:[MD5.0001CE609D66632FA17B84705F658879] - 21/01/2008 - 03:32:53 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\windows\system32\drivers\megasas.sys [31288]
O58 - SDL:[MD5.C252F32CD9A49DBFC25ECF26EBD51A99] - 21/01/2008 - 03:32:52 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\system32\drivers\MegaSR.sys [386616]
O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\windows\system32\drivers\Mraid35x.sys [33384]
O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\system32\drivers\nfrd960.sys [45160]
O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\windows\system32\drivers\ntrigdigi.sys [20608]
O58 - SDL:[MD5.2EDF9E7751554B42CBB60116DE727101] - 21/01/2008 - 03:32:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\windows\system32\drivers\nvraid.sys [102968]
O58 - SDL:[MD5.ABED0C09758D1D97DB0042DBB2688177] - 21/01/2008 - 03:32:47 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\windows\system32\drivers\nvstor.sys [45112]
O58 - SDL:[MD5.0A6DB55AFB7820C99AA1F3A1D270F4F6] - 21/01/2008 - 03:32:50 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\system32\drivers\ql2300.sys [1122360]
O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\system32\drivers\ql40xx.sys [106088]
O58 - SDL:[MD5.3BEEFE509C414F3A6E55E5C7C4024581] - 14/05/2008 - 01:36:20 ---A- . (.SafeBoot International - SafeBoot Reserved Files Lock Driver.) -- C:\windows\system32\drivers\rsvlock.sys [12496]
O58 - SDL:[MD5.E0EA9F5F94814F8A31F4B40175E1456E] - 19/07/2007 - 00:40:00 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8187B NDIS Driver.) -- C:\windows\system32\drivers\RTL8187B.sys [281088]
O58 - SDL:[MD5.F0EC12005489CC7600FCFD7FC4ED1200] - 14/05/2008 - 00:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\drivers\SafeBoot.sys [108752]
O58 - SDL:[MD5.52DCDE2D1787217E15FFDCA1CBF8CCE9] - 14/05/2008 - 01:36:26 ---A- . (.SafeBoot N.V. - SafeBoot FIPS AES Algorithm (256 bit).) -- C:\windows\system32\drivers\SbAlg.sys [51376]
O58 - SDL:[MD5.69A5AF9CE49A0982E7AE7C7D62BDB2B1] - 14/05/2008 - 01:36:22 ---A- . (.SafeBoot International - SafeBoot FS Locker.) -- C:\windows\system32\drivers\SbFsLock.sys [12928]
O58 - SDL:[MD5.24521CB68290D96CB4B3822B074E4341] - 14/05/2008 - 01:36:24 ---A- . (.SafeBoot International - SafeBoot Hibernation Filter.) -- C:\windows\system32\drivers\SbHiber.sys [10832]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.A99C6C8B0BAA970D8AA59DDC50B57F94] - 21/01/2008 - 03:32:52 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\system32\drivers\sisraid4.sys [74808]
O58 - SDL:[MD5.0057F29323C393A35903B4C5DAF9A144] - 10/05/2007 - 05:16:40 ---A- . (.Pas de propriétaire - USBCAMD for Sonix UVC.) -- C:\windows\system32\drivers\sncduvc.sys [28160]
O58 - SDL:[MD5.CF9CDE12FBC19DBA8DE528B7511A2F4F] - 10/04/2008 - 16:27:34 ---A- . (.Pas de propriétaire - UVC Camera Streaming Driver.) -- C:\windows\system32\drivers\snp2uvc.sys [1804160]
O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 03/08/2009 - 23:21:16 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\windows\system32\drivers\ssmdrv.sys [28520]
O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\windows\system32\drivers\symc8xx.sys [35944]
O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\windows\system32\drivers\sym_hi.sys [31848]
O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\windows\system32\drivers\sym_u3.sys [34920]
O58 - SDL:[MD5.F5D926807BD9BC0AF68F9376144DE425] - 27/03/2008 - 20:06:00 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\windows\system32\drivers\SynTP.sys [199472]
O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:32:45 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\windows\system32\drivers\uliahci.sys [238648]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\windows\system32\drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:32:49 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\windows\system32\drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.4B8A9C16B6D9258ED99C512AECB8C555] - 19/04/2010 - 19:47:42 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\windows\system32\drivers\usbaapl.sys [41984]
O58 - SDL:[MD5.AADF5587A4063F52C2C3FED7887426FC] - 21/01/2008 - 03:32:21 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\system32\drivers\viaide.sys [20024]
O58 - SDL:[MD5.587253E09325E6BF226B299774B728A9] - 21/01/2008 - 03:32:49 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\system32\drivers\vsmraid.sys [130616]
O58 - SDL:[MD5.F72D4BFFA37E857D195048C498AFC61B] - 17/01/2008 - 22:28:00 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\windows\system32\drivers\yk60x86.sys [298496]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\windows\system32\NTIO804.SYS [34672]
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
Utilisateur anonyme
 
c'est fructueux de lire un rapport en 1000 moreaux, mais on est y est :-)

* /!\Avertissement :
Ce logiciel n'est à utiliser que prescrit par un helper qualifié.
Ne pas utiliser en dehors de ce cas de figure : dangereux!


/!\ Utilisateur de Vista : Ne pas oublier de désactiver l'UAC juste le temps de désinfection de ton pc, il sera à réactiver plus tard :
Tuto : https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac

► Télécharges ComboFix à partir de ce lien et enregistres le sur ton bureau :
https://forum.pcastuces.com/combofix_renomme_au_telechargement-f31s22.htm
ou ici :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
A lire
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

Avant d'utiliser ComboFix :

► ferme les fenêtres de tous les programmes en cours.

► Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
Une fois fait, sur ton bureau double-clic sur Combofix.exe.
/!\Utilisateur de Vista : Clique droit sur le logo de Combofix, « exécuter en tant qu'Administrateur »

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

- il se peut que Combofix ait besoin de se connecter à internet pour trouver les mises à jour, donc il faut l'autoriser.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redémarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.
- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt)
► Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
► Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
0

Discussions similaires

supprimer tor.jack android
sabinelouisonbruno -
akaloupile -

4 réponses
Tor.Jack.Malware
Camille -
bazfile -

1 réponse
Ecran bleu attempted write to readonly memory et erreur critique
Guirec.b -
guirec.b -

4 réponses
fiabilité WISE MEMORY OPTIMIZER
Barbara66R -
Barbara66R -

22 réponses
Win64 malware gen
jules555 -
bazfile -

1 réponse