Sujet Précédent Sujet Suivant

Message d'erreur AsusWService.exe help^^

Fermé
Truitasse - 5 avril 2011 à 15:30
 Truitasse - 18 avril 2011 à 19:36
Bonjour,

j'ai un message d'erreur au demarrage de mon netbook asus eeepc "AsusWService.exe ne fonctionne plus" je ne sais pas du tout ce que ça veut dire.

J'ai lancé un rapport avec ZHPDiag le voici ci joint: pouvez vous me dire tout ce qui ne va pas dans mon ordi?

merci d'avance!

Rapport ZHPDiag:


Rapport de ZHPDiag v1.27.1862 par Nicolas Coolman, Update du 03/04/2011
Run by Truitasse at 4/5/2011 3:12:48 PM
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
GCIE: Google Chrome v10.0.648.204 (Defaut)

---\\ System Information
Windows 7 Starter Edition, 32-bit (Build 7600)
Processor: x86 Family 6 Model 28 Stepping 10, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1014.2 MB (38% free)
System Restore: Activé (Enable)
System drive C: has 66 GB (65%) free of 100 GB

---\\ Logged in mode
Computer Name: TRUITASSE-PC
User Name: Truitasse
All Users Names: Truitasse, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=C:\Users\Truitasse\AppData\Roaming
%LocalAppData%=C:\Users\Truitasse\AppData\Local
%StartMenu%=C:\Users\Truitasse\AppData\Roaming\Microsoft\Windows\Start Menu

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 66 Go of 100 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 117 Go of 118 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK



---\\ Recherche particulière de fichiers génériques
[MD5.2626FC9755BE22F805D3CFA0CE3EE727] - (.Microsoft Corporation - Explorateur Windows.) (.10/31/2009 6:45:39 AM.) -- C:\windows\Explorer.exe [2614272]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.7/14/2009 2:14:45 AM.) -- C:\windows\system32\Wininit.exe [96256]
[MD5.78B9ADA2BC8946AF7B17678E0D07A773] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.12/21/2010 6:38:22 AM.) -- C:\windows\system32\wininet.dll [981504]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.10/28/2009 7:17:59 AM.) -- C:\windows\system32\Winlogon.exe [285696]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.7/14/2009 2:26:15 AM.) -- C:\windows\system32\drivers\atapi.sys [21584]
[MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.7/14/2009 2:20:44 AM.) -- C:\windows\system32\drivers\ntfs.sys [1210432]



---\\ Processus lancés
[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904]
[MD5.F2E0D536DF86C0BF795B95A251F07659] - (.Pas de propriétaire - Eee Docking Application.) -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe [415920]
[MD5.285FBAB6FACA1E3166FB352C34AAC762] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [141848]
[MD5.DC8F297AC5D203AB8D3B70709740F29C] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [173592]
[MD5.D165F0D7BDCDE31BE4B1E2149E92AC2A] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [150552]
[MD5.808B469BC03B39D735742D8D41D1C2C0] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9177632]
[MD5.2E86071D074339BE1386DC7DB032557B] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664]
[MD5.D36DA0A5C531353C5FF5E29242649257] - (.Boingo Wireless, Inc. - Boingo Wi-Fi.) -- C:\Program Files\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe [365936]
[MD5.4D2987AFADD5A32417BD744C34ADF9FF] - (.Synaptics Incorporated - Asus Custom Acpi Monitor Application.) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [83240]
[MD5.2E9A1A6555C20424FC6DCC3AF21F4D68] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [3451496]
[MD5.41E7042F32E30363FCE1ABCCF630DDA4] - (.Intel Corporation - igfxsrvc Module.) -- C:\windows\system32\igfxsrvc.exe [252952]
[MD5.E5B82EA4B98828D50C61137BFA8793F1] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421160]
[MD5.D523A9BB4D1C1DEF96A3555AE472BFF1] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [103720]
[MD5.B0DA80FF42A0819D162A86612896AAF2] - (.Microsoft Corporation - Windows Update.) -- C:\windows\system32\wuauclt.exe [47104]
[MD5.453B783EAEC289407002AE37752D229D] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1004088]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- C:\windows\system32\rundll32.exe [44544]
[MD5.C2271BD91106CEEC631265842CAD09DC] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Users\ZHPDiag\ZHPDiag.exe [642048]



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@google.com/npPicasa3,version=3.0.0] - (.Google, Inc. - Picasa plugin.) -- C:\Program Files\Google\Picasa3\npPicasa3.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60129.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60129.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://downloads.phpnuke.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://downloads.phpnuke.org
R0 - HKUS\S-1-5-21-3372664736-3149389414-628643374-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://downloads.phpnuke.org
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-3372664736-3149389414-628643374-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://downloads.phpnuke.org
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: (no name) - {ef79f67a-6ad7-4715-a0f8-932fca442023} Clé orpheline
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll



---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\WINDOWS\system32\SystemPropertiesPerformance.exe



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corp. - Microsoft Search Helper Extention.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll



---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [SuperHybridEngine] . (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\EeePC\SHE\SuperHybridEngine.exe
O4 - HKLM\..\Run: [LiveUpdate] . (...) -- C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
O4 - HKLM\..\Run: [CapsHook] . (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\EeePC\CapsHook\CapsHook.exe
O4 - HKLM\..\Run: [Eee Docking] . (.Pas de propriétaire - Eee Docking Application.) -- C:\Program Files\ASUS\Eee Docking\Eee Docking.exe
O4 - HKLM\..\Run: [ASUS WebStorage] . (...) -- C:\Program Files\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Boingo Wi-Fi] . (...) -- C:\Program Files\Boingo\Boingo Wi-Fi\Boingo.lnk
O4 - HKLM\..\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files\ASUS\APRP\APRP.exe
O4 - HKLM\..\Run: [SynAsusAcpi] . (.Synaptics Incorporated - Asus Custom Acpi Monitor Application.) -- C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [HotkeyMon] C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe (.not file.)
O4 - HKLM\..\Run: [HotkeyService] . (.ASUSTeK Computer Inc. - Asus Eee PC Hotkey Service.) -- C:\Program Files\EeePC\HotkeyService\HotkeyService.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe



---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Truitasse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Truitasse\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Truitasse\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Add to Google Photos Screensa&ver . (.Google Inc. - Google Photos Screensaver.) -- C:\windows\system32\GPhotos.scr



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} . (.Pinball Corporation - ClickPotato.) -- C:\Program Files\ClickPotatoLite\bin\10.0.666.0\ClickPotatoLiteSABHO.dll



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{B3B1275B-935D-4457-A684-02A00071D656}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B3B1275B-935D-4457-A684-02A00071D656}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{B3B1275B-935D-4457-A684-02A00071D656}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (32-bit).) - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: (SeaPort) . (.Microsoft Corp. - Microsoft SeaPort Search Enhancement Broker.) - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\windows\system32\drivers\afd.sys
O41 - Driver: (AsUpIO) . (...) - C:\Windows\System32\drivers\AsUpIO.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: C:\windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys



---\\ Logiciels installés (O42)
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {859D40CF-8491-44AD-8FA8-7389CB418C64}
O42 - Logiciel: ALTools Update - (.ESTsoft Corp..) [HKLM] -- ALUpdate_is1
O42 - Logiciel: ALZip - (.ESTsoft Corp..) [HKLM] -- ALZip_is1
O42 - Logiciel: ASUS VIBE - (.Ecareme, Inc..) [HKLM] -- ASUS VIBE
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM] -- ASUS WebStorage
O42 - Logiciel: ASUSUpdate for Eee PC - (.ASUSTeK Computer Inc..) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: BitTorrent - (.Pas de propriétaire.) [HKLM] -- BitTorrent
O42 - Logiciel: Boingo Wi-Fi - (.Boingo Wireless, Inc..) [HKLM] -- {7E49ED48-B67E-4A27-839D-EE08590A96BB}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CapsHook - (.AsusTek Computer.) [HKLM] -- {4B5092B6-F231-4D18-83BC-2618B729CA45}
O42 - Logiciel: Chicken Invaders 2 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}
O42 - Logiciel: ClickPotato - (.Pinball Corporation..) [HKLM] -- ClickPotatoLiteSA
O42 - Logiciel: E-Cam - (.Pas de propriétaire.) [HKLM] -- {185AFA7A-F63E-450B-94AA-011CAC18090E}
O42 - Logiciel: Eee Docking 3.7.0 - (.ASUSTek Computer Inc..) [HKLM] -- Eee Docking_is1
O42 - Logiciel: EeeSplendid - (.ASUS.) [HKLM] -- {6333FC29-BFE5-4024-AC78-958A1A7555D1}
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- {17780F99-A9DF-450B-81B3-6781B20A17A8}
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1}
O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM] -- {D44AA979-47C2-4BC0-A860-09A54224EA44}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Hotkey Service - (.AsusTek Computer.) [HKLM] -- {71C0E38E-09F2-4386-9977-404D4F6640CD}
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: LiveUpdate - (.Asus.) [HKLM] -- {38E5A3B1-ADF1-47E0-8024-76310A30EB36}
O42 - Logiciel: LocaleMe - (.ASUS.) [HKLM] -- {F58C1D44-4AC9-48E8-9049-7A6CDFCB415C}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Office 2010 - (.Microsoft Corporation.) [HKLM] -- {95140000-0070-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM] -- {266517E6-D866-439D-919C-B8B1A52E6080}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM] -- Picasa 3
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: Ralink RT2860 Wireless LAN Card - (.Ralink.) [HKLM] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: ShopperReports - (.SmartShopper.) [HKLM] -- ShopperReportsSA
O42 - Logiciel: StarterBackgroundChanger - (.Renaud Gerson.) [HKLM] -- StarterBackgroundChanger
O42 - Logiciel: Super Hybrid Engine - (.AsusTek Computer.) [HKLM] -- {88F08F98-12BC-4613-81A2-8F9B88CFC73E}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: VLC media player 1.1.5 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/17/2009 6.2.0.9403) - (.Broadcom.) [HKLM] -- B41C7C96D83162A676DA7365ADEFD6C1AF62A4EE
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (07/29/2009 6.1.7100.0) - (.Broadcom.) [HKLM] -- B5C82F3814F82FB37F1513B3185399BD88892B08
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- BF20603967CFDCB2BBF91950E8A56DFBC5C833FE
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3B4E636E-9D65-4D67-BA61-189800823F52}
O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {D5D81435-B8DE-4CAF-867F-7998F2B92CFC}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1}
O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {F7D27C70-90F5-49B9-B188-0A133C0CE353}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}
O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: ebi.BookReader3J - (.eBOOK Initiative Japan Co., Ltd..) [HKLM] -- {F3D2DEDC-4732-4188-8A3A-1A3FFBD4D6C8}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {881F5DE8-9367-4B81-A325-E91BBC6472F9}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ALWIL Software]
[HKCU\Software\ASProtect]
[HKCU\Software\ASUS]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\BittorrentBar_FR]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\PriceGong]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\BitTorrent]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\EBI]
[HKCU\Software\ECAREME]
[HKCU\Software\ESTsoft]
[HKCU\Software\GoBoingo]
[HKCU\Software\Google]
[HKCU\Software\Intel]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Oberon Media]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\ShopperReports3]
[HKCU\Software\Skype]
[HKCU\Software\StarterBackgroundChanger]
[HKCU\Software\Sun Microsystems]
[HKCU\Software\Synaptics]
[HKCU\Software\WideAngleSoftware]
[HKCU\Software\clickpotatolitesa]
[HKCU\Software\geissplugin]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\AsusTek Computer]
[HKLM\Software\Atheros Communications Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\ClickPotatoLite]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\CoreSecurity]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EBI]
[HKLM\Software\ECAREME]
[HKLM\Software\ESTsoft]
[HKLM\Software\GEAR Software]
[HKLM\Software\GoBoingo]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Hudson]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nullsoft]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Ralink]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\ShopperReports3]
[HKLM\Software\Synaptics]
[HKLM\Software\VideoLAN]



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 6/24/2010 - 6:12:16 PM - [685151689] ----D- C:\Program Files\Adobe
O43 - CFD: 12/25/2010 - 5:13:46 PM - [157695620] ----D- C:\Program Files\Alwil Software
O43 - CFD: 1/17/2011 - 6:49:20 PM - [2306366] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 12/25/2010 - 1:07:22 PM - [139377000] ----D- C:\Program Files\ASUS
O43 - CFD: 6/24/2010 - 6:02:18 PM - [1078] ----D- C:\Program Files\Atheros
O43 - CFD: 2/22/2011 - 12:26:48 AM - [4765040] ----D- C:\Program Files\BitTorrent
O43 - CFD: 12/25/2010 - 1:08:42 PM - [4358809] ----D- C:\Program Files\Boingo
O43 - CFD: 1/17/2011 - 6:48:26 PM - [617126] ----D- C:\Program Files\Bonjour
O43 - CFD: 4/5/2011 - 2:55:06 PM - [3673632] ----D- C:\Program Files\CCleaner
O43 - CFD: 2/10/2011 - 11:16:38 PM - [2505972] ----D- C:\Program Files\ClickPotatoLite
O43 - CFD: 2/22/2011 - 8:59:12 PM - [459339462] ----D- C:\Program Files\Common Files
O43 - CFD: 6/24/2010 - 6:04:04 PM - [544736] ----D- C:\Program Files\DIFX
O43 - CFD: 2/10/2011 - 7:43:54 PM - [4191414] ----D- C:\Program Files\DVD Maker
O43 - CFD: 12/25/2010 - 1:08:32 PM - [20397197] ----D- C:\Program Files\E-Cam
O43 - CFD: 6/24/2010 - 6:07:58 PM - [18289098] ----D- C:\Program Files\EBI
O43 - CFD: 6/24/2010 - 6:21:14 PM - [8783649] ----D- C:\Program Files\EeePC
O43 - CFD: 1/17/2011 - 5:56:58 PM - [26839443] ----D- C:\Program Files\ESTsoft
O43 - CFD: 3/7/2011 - 7:36:36 PM - [440734683] ----D- C:\Program Files\Google
O43 - CFD: 3/23/2011 - 1:06:14 AM - [78265646] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 6/24/2010 - 6:00:54 PM - [61805388] ----D- C:\Program Files\Intel
O43 - CFD: 2/10/2011 - 7:43:54 PM - [5619349] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 2/23/2011 - 10:16:36 AM - [1856115] ----D- C:\Program Files\iPod
O43 - CFD: 2/23/2011 - 10:20:06 AM - [128525040] ----D- C:\Program Files\iTunes
O43 - CFD: 1/3/2011 - 6:22:08 PM - [16295712] ----D- C:\Program Files\JRE
O43 - CFD: 2/23/2011 - 12:56:56 AM - [77824] ----D- C:\Program Files\MediaMonkey
O43 - CFD: 12/25/2010 - 1:11:56 PM - [854520] ----D- C:\Program Files\Microsoft
O43 - CFD: 7/14/2009 - 6:52:32 AM - [46990135] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 1/3/2011 - 6:19:32 PM - [6423243] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 3/18/2011 - 2:21:10 PM - [38371963] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 12/25/2010 - 1:12:52 PM - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 12/25/2010 - 1:14:48 PM - [2188837] ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 1/4/2011 - 9:31:52 AM - [15715] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 7/14/2009 - 6:52:32 AM - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 12/25/2010 - 6:06:52 PM - [31177262] ----D- C:\Program Files\MSECache
O43 - CFD: 6/24/2010 - 7:02:52 PM - [154033] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 1/3/2011 - 6:22:08 PM - [346763277] ----D- C:\Program Files\OpenOffice.org 3
O43 - CFD: 4/5/2011 - 2:33:52 PM - [573440] ----D- C:\Program Files\QuestBrwSearch
O43 - CFD: 2/23/2011 - 10:11:28 AM - [76322555] ----D- C:\Program Files\QuickTime
O43 - CFD: 12/25/2010 - 1:03:04 PM - [15158377] ----D- C:\Program Files\Realtek
O43 - CFD: 7/14/2009 - 6:52:32 AM - [38597377] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 3/8/2011 - 8:51:48 PM - [2320004] ----D- C:\Program Files\ShopperReports3
O43 - CFD: 1/3/2011 - 7:19:44 PM - [1319936] ----D- C:\Program Files\StarterBackgroundChanger
O43 - CFD: 12/25/2010 - 1:04:34 PM - [30140789] ----D- C:\Program Files\Synaptics
O43 - CFD: 12/25/2010 - 1:03:58 PM - [0] --H-D- C:\Program Files\Temp
O43 - CFD: 7/14/2009 - 6:53:24 AM - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 12/26/2010 - 3:04:26 AM - [80529230] ----D- C:\Program Files\VideoLAN
O43 - CFD: 2/23/2011 - 1:08:04 AM - [3749216] ----D- C:\Program Files\Winamp
O43 - CFD: 2/10/2011 - 7:43:52 PM - [3049984] ----D- C:\Program Files\Windows Defender
O43 - CFD: 12/25/2010 - 1:15:28 PM - [142064877] ----D- C:\Program Files\Windows Live
O43 - CFD: 2/10/2011 - 7:43:54 PM - [6180864] ----D- C:\Program Files\Windows Mail
O43 - CFD: 2/10/2011 - 7:43:54 PM - [6607787] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 7/14/2009 - 6:52:32 AM - [12197556] ----D- C:\Program Files\Windows NT
O43 - CFD: 2/10/2011 - 7:43:54 PM - [4417800] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 7/14/2009 - 6:52:34 AM - [189440] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 2/10/2011 - 7:43:54 PM - [6141521] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 6/24/2010 - 6:11:26 PM - [14779391] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 6/24/2010 - 6:08:24 PM - [32158176] ----D- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 2/23/2011 - 10:16:32 AM - [94762864] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 12/25/2010 - 1:02:54 PM - [4774918] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 1/3/2011 - 6:19:32 PM - [17973372] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 6/24/2010 - 6:10:26 PM - [354896] ----D- C:\Program Files\Common Files\Oberon Media
O43 - CFD: 2/22/2011 - 8:59:14 PM - [4167008] ----D- C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 7/14/2009 - 4:37:06 AM - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 7/14/2009 - 4:37:06 AM - [41103783] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2/10/2011 - 7:43:54 PM - [10102259] ----D- C:\Program Files\Common Files\System
O43 - CFD: 12/25/2010 - 1:09:00 PM - [239160093] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 2/10/2011 - 11:16:40 PM - [0] ----D- C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
O43 - CFD: 6/24/2010 - 6:12:06 PM - [807] ----D- C:\ProgramData\Adobe
O43 - CFD: 12/25/2010 - 5:13:46 PM - [6921860] ----D- C:\ProgramData\Alwil Software
O43 - CFD: 1/17/2011 - 6:47:38 PM - [32861696] ----D- C:\ProgramData\Apple
O43 - CFD: 1/17/2011 - 6:53:26 PM - [66876133] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 6/24/2010 - 6:02:32 PM - [9357] ----D- C:\ProgramData\Atheros
O43 - CFD: 3/21/2011 - 2:44:08 PM - [2197008] ----D- C:\ProgramData\ClickPotatoLiteSA
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 6/24/2010 - 6:08:04 PM - [0] ----D- C:\ProgramData\EBI
O43 - CFD: 1/17/2011 - 5:57:00 PM - [1519624] ----D- C:\ProgramData\ESTsoft
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 12/25/2010 - 1:08:42 PM - [22329942] ----D- C:\ProgramData\GoBoingo
O43 - CFD: 12/25/2010 - 1:14:40 PM - [8126055570] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 6/24/2010 - 6:10:30 PM - [17890096] ----D- C:\ProgramData\OberonGameConsole
O43 - CFD: 6/24/2010 - 6:03:00 PM - [2305427] ----D- C:\ProgramData\Ralink Driver
O43 - CFD: 6/24/2010 - 6:08:04 PM - [0] ----D- C:\ProgramData\RSMR
O43 - CFD: 1/17/2011 - 3:02:34 PM - [19925144] ----D- C:\ProgramData\Skype
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 7/14/2009 - 6:53:56 AM - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 2/22/2011 - 7:38:38 PM - [71831] ----D- C:\ProgramData\WindSolutions
O43 - CFD: 6/24/2010 - 6:55:22 PM - [15400692] ----D- C:\Users\Truitasse\AppData\Roaming\Adobe
O43 - CFD: 1/17/2011 - 6:56:26 PM - [60746669] ----D- C:\Users\Truitasse\AppData\Roaming\Apple Computer
O43 - CFD: 6/24/2010 - 6:31:26 PM - [51833456] ----D- C:\Users\Truitasse\AppData\Roaming\ASUS WebStorage
O43 - CFD: 4/5/2011 - 3:01:10 PM - [1606366] ----D- C:\Users\Truitasse\AppData\Roaming\BitTorrent
O43 - CFD: 2/10/2011 - 11:16:38 PM - [0] ----D- C:\Users\Truitasse\AppData\Roaming\ClickPotatoLite
O43 - CFD: 12/25/2010 - 5:29:26 PM - [1368790] ----D- C:\Users\Truitasse\AppData\Roaming\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1
O43 - CFD: 12/25/2010 - 1:07:40 PM - [384] ----D- C:\Users\Truitasse\AppData\Roaming\E-Cam
O43 - CFD: 3/28/2011 - 4:46:16 PM - [10609653] ----D- C:\Users\Truitasse\AppData\Roaming\ESTsoft
O43 - CFD: 7/14/2009 - 6:54:14 AM - [0] ----D- C:\Users\Truitasse\AppData\Roaming\Identities
O43 - CFD: 6/24/2010 - 6:00:40 PM - [0] ----D- C:\Users\Truitasse\AppData\Roaming\InstallShield
O43 - CFD: 2/22/2011 - 7:45:42 PM - [157] ----D- C:\Users\Truitasse\AppData\Roaming\KDE
O43 - CFD: 6/24/2010 - 6:08:18 PM - [44269] ----D- C:\Users\Truitasse\AppData\Roaming\Macromedia
O43 - CFD: 1/3/2011 - 6:23:30 PM - [1331085] -S--D- C:\Users\Truitasse\AppData\Roaming\Microsoft
O43 - CFD: 1/3/2011 - 6:24:20 PM - [2327063] ----D- C:\Users\Truitasse\AppData\Roaming\OpenOffice.org
O43 - CFD: 12/25/2010 - 6:02:46 PM - [143840] ----D- C:\Users\Truitasse\AppData\Roaming\RGE
O43 - CFD: 2/22/2011 - 6:22:06 PM - [0] ----D- C:\Users\Truitasse\AppData\Roaming\SharePod
O43 - CFD: 3/8/2011 - 8:51:48 PM - [0] ----D- C:\Users\Truitasse\AppData\Roaming\ShopperReports3
O43 - CFD: 3/21/2011 - 3:48:48 PM - [1081143] ----D- C:\Users\Truitasse\AppData\Roaming\vlc
O43 - CFD: 2/22/2011 - 8:34:52 PM - [1578888] ----D- C:\Users\Truitasse\AppData\Roaming\WindSolutions



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.DE54B2D1DA450A9F9FFE6C454E2559B4] - 11/26/2009 - 3:00:38 PM ---A- . (...) -- C:\windows\AsAcpiSvrLang.ini [25616]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 3/22/2011 - 10:10:35 PM ---A- . (...) -- C:\windows\System32\config.nt [2577]
O44 - LFC:[MD5.9BE41C1AE8BC481EB662D85C98D979C2] - 3/22/2011 - 10:10:35 PM ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\windows\System32\drivers\aswSnx.sys [371544]
O44 - LFC:[MD5.BED6E0C439DCB7E7AA18FFD083766321] - 3/7/2011 - 8:37:41 PM ---A- . (...) -- C:\windows\System32\PerfStringBackup.INI [1575208]
O44 - LFC:[MD5.07EC6228BE862A43212269DB731DDDB8] - 3/7/2011 - 8:37:41 PM ---A- . (...) -- C:\windows\System32\perfc009.dat [110276]
O44 - LFC:[MD5.C05852A899266C546AE326900EA9B6A5] - 3/7/2011 - 8:37:41 PM ---A- . (...) -- C:\windows\System32\perfc00C.dat [134914]
O44 - LFC:[MD5.B053F76B06A454C46C8C52D3C3544C93] - 3/7/2011 - 8:37:41 PM ---A- . (...) -- C:\windows\System32\perfh009.dat [624292]
O44 - LFC:[MD5.D3B9FD4DDD7A9B42A757C28ECC26421F] - 3/7/2011 - 8:37:41 PM ---A- . (...) -- C:\windows\System32\perfh00C.dat [713224]
O44 - LFC:[MD5.A6C0D0F4C72593003DDE18777DEDCF06] - 4/5/2011 - 1:33:59 PM -S-A- . (...) -- C:\windows\bootstat.dat [67584]
O44 - LFC:[MD5.58F0B52E432306B7006920C226BF23E7] - 4/5/2011 - 1:41:40 PM --HA- . (...) -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [9696]
O44 - LFC:[MD5.58F0B52E432306B7006920C226BF23E7] - 4/5/2011 - 1:41:40 PM --HA- . (...) -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [9696]



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\windows\system32\credssp.dll



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\system32\drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 7/14/2009 - 2:26:17 AM ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\system32\drivers\adpahci.sys [297552]
O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\windows\system32\drivers\adpu320.sys [146512]
O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 7/14/2009 - 2:26:15 AM ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\system32\drivers\aliide.sys [14400]
O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 7/14/2009 - 2:26:15 AM ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\windows\system32\drivers\amdsata.sys [79952]
O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 7/14/2009 - 2:26:15 AM ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\windows\system32\drivers\amdsbs.sys [159312]
O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 7/14/2009 - 2:26:15 AM ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\system32\drivers\amdxata.sys [23616]
O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\system32\drivers\arc.sys [76368]
O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 7/14/2009 - 2:26:15 AM ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\system32\drivers\arcsas.sys [86608]
O58 - SDL:[MD5.561D6B76C045311691B870F6B3F19EAB] - 6/21/2010 - 3:31:18 PM ---A- . (...) -- C:\windows\system32\drivers\AsUpIO.sys [11520]
O58 - SDL:[MD5.B6B5566B24329432E0FD1E4ED15A683B] - 3/6/1999 - 12:38:28 PM ---A- . (...) -- C:\windows\system32\drivers\ASUSHWIO.SYS [6144]
O58 - SDL:[MD5.1C2E6BB4FE8621B1B863855B02BC33EB] - 2/23/2011 - 3:54:55 PM ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\windows\system32\drivers\aswFsBlk.sys [19544]
O58 - SDL:[MD5.B0F137F664F10829CD2380B0E20E7C29] - 2/23/2011 - 3:55:03 PM ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\windows\system32\drivers\aswMonFlt.sys [53592]
O58 - SDL:[MD5.B6A9373619D851BE80FB5F1B5EED0D4E] - 2/23/2011 - 3:55:10 PM ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\windows\system32\drivers\aswRdr.sys [25432]
O58 - SDL:[MD5.9BE41C1AE8BC481EB662D85C98D979C2] - 2/23/2011 - 3:56:55 PM ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\windows\system32\drivers\aswSnx.sys [371544]
O58 - SDL:[MD5.4B1A54BA2BC5873A774DF6B70AB8B0B3] - 2/23/2011 - 3:56:45 PM ---A- . (.AVAST Software - avast! self protection module.) -- C:\windows\system32\drivers\aswSP.sys [301528]
O58 - SDL:[MD5.C7F1CEA32766184911293F4E1EE653F5] - 2/23/2011 - 3:55:49 PM ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\windows\system32\drivers\aswTdi.sys [49240]
O58 - SDL:[MD5.B01751CC563AECAC09BBE36AAA21FBEF] - 10/5/2009 - 5:31:50 PM ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\windows\system32\drivers\athr.sys [1221632]
O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 7/14/2009 - 11:02:49 PM ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\windows\system32\drivers\b57nd60x.sys [229888]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 7/14/2009 - 11:53:28 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 7/14/2009 - 11:53:28 PM ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 7/14/2009 - 1:57:25 AM ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\windows\system32\drivers\BrSerId.sys [272128]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 7/14/2009 - 11:53:32 PM ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 7/14/2009 - 11:53:33 PM ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 7/14/2009 - 11:53:33 PM ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.92C5B845803F3662637EB691AC0B250F] - 4/13/2010 - 3:36:46 AM ---A- . (.Broadcom Corporation. - Widcomm Bluetooth USB Filter for Windows XP.) -- C:\windows\system32\drivers\btusbflt.sys [43944]
O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 7/14/2009 - 11:02:48 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\system32\drivers\bxvbdx.sys [430080]
O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 7/14/2009 - 2:26:21 AM ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\system32\drivers\cmdide.sys [15952]
O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 7/14/2009 - 2:20:28 AM ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\windows\system32\drivers\djsvs.sys [70720]
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 7/14/2009 - 2:20:28 AM ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\windows\system32\drivers\elxstor.sys [453712]
O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 7/14/2009 - 11:02:48 PM ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\system32\drivers\evbdx.sys [3100160]
O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 5/18/2009 - 1:17:00 PM ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\windows\system32\drivers\GEARAspiWDM.sys [26600]
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 7/14/2009 - 11:54:14 PM ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\windows\system32\drivers\hcw85cir.sys [26624]
O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 7/14/2009 - 2:20:28 AM ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\windows\system32\drivers\HpSAMD.sys [67152]
O58 - SDL:[MD5.D483687EACE0C065EE772481A96E05F5] - 6/5/2009 - 2:43:16 AM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\system32\drivers\iaStor.sys [330264]
O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 7/14/2009 - 2:20:36 AM ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\system32\drivers\iaStorV.sys [332352]
O58 - SDL:[MD5.D0074897C6BC132F3980EA4654BF7FB9] - 6/22/2010 - 7:48:04 AM ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\system32\drivers\igdkmd32.sys [4806144]
O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 7/14/2009 - 2:20:36 AM ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\system32\drivers\iirsp.sys [41040]
O58 - SDL:[MD5.3EB803312987FF44265C87CB960DF6AB] - 4/13/2010 - 3:36:12 AM ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\windows\system32\drivers\kbfiltr.sys [13880]
O58 - SDL:[MD5.A158CEA8644B8A5C1EC0E9A81B70F65A] - 4/13/2010 - 3:39:17 AM ---A- . (.Atheros Communications, Inc. - Atheros L1c PCI-E Gigabit Ethernet Controller.) -- C:\windows\system32\drivers\L1C62x86.sys [51712]
O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\windows\system32\drivers\lsi_fc.sys [95824]
O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 7/14/2009 - 2:20:37 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas.sys [89168]
O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\system32\drivers\lsi_sas2.sys [54864]
O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\system32\drivers\lsi_scsi.sys [96848]
O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\windows\system32\drivers\megasas.sys [30800]
O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 7/14/2009 - 2:20:36 AM ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\system32\drivers\MegaSR.sys [235584]
O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 7/14/2009 - 2:20:44 AM ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\system32\drivers\nfrd960.sys [44624]
O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 7/14/2009 - 2:20:44 AM ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\windows\system32\drivers\nvraid.sys [117312]
O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 7/14/2009 - 2:20:44 AM ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\windows\system32\drivers\nvstor.sys [142416]
O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 7/14/2009 - 2:19:04 AM ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\system32\drivers\ql2300.sys [1383488]
O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 7/14/2009 - 2:19:04 AM ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\system32\drivers\ql40xx.sys [106064]
O58 - SDL:[MD5.BF9866875EDF86AAE24DD8BD9418DEFF] - 6/22/2010 - 7:43:55 AM ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\windows\system32\drivers\RTKVHDA.sys [3084256]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 7/13/2009 - 9:50:20 PM ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 7/14/2009 - 2:19:04 AM ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\system32\drivers\sisraid2.sys [40016]
O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 7/14/2009 - 2:19:04 AM ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\system32\drivers\sisraid4.sys [77888]
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 7/14/2009 - 2:19:04 AM ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\windows\system32\drivers\stexstor.sys [21072]
O58 - SDL:[MD5.BD8E7F87DE409A745A132A8812DE5A96] - 4/13/2010 - 3:37:48 AM ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\windows\system32\drivers\SynTP.sys [230448]
O58 - SDL:[MD5.5C2BDC152BBAB34F36473DEAF7713F22] - 9/28/2010 - 3:44:52 PM ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\windows\system32\drivers\usbaapl.sys [41984]
O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 7/14/2009 - 2:19:10 AM ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\system32\drivers\viaide.sys [16976]
O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 7/14/2009 - 2:19:11 AM ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\system32\drivers\vsmraid.sys [141904]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 7/13/2009 - 10:40:41 PM ---A- . (...) -- C:\windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.B01751CC563AECAC09BBE36AAA21FBEF] - 10/5/2009 - 5:31:50 PM ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\windows\system32\athr.sys [1221632]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 7/13/2009 - 10:40:44 PM ---A- . (...) -- C:\windows\system32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 7/13/2009 - 10:40:40 PM ---A- . (...) -- C:\windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 7/13/2009 - 10:40:43 PM ---A- . (...) -- C:\windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 7/13/2009 - 10:40:43 PM ---A- . (...) -- C:\windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 7/13/2009 - 10:40:23 PM ---A- . (...) -- C:\windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 7/13/2009 - 10:40:31 PM ---A- . (...) -- C:\windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 7/13/2009 - 10:40:35 PM ---A- . (...) -- C:\windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 7/13/2009 - 10:40:39 PM ---A- . (...) -- C:\windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 7/13/2009 - 10:40:27 PM ---A- . (...) -- C:\windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 7/13/2009 - 10:40:11 PM ---A- . (...) -- C:\windows\system32\NTIO.SYS [33952]

8 réponses

Réponse 1 / 8
pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
6 avril 2011 à 22:04
Bonsoir,

Le rapport ZHP diag n'est pas complet, il faudrais me le joindre en faisant ceci :

Bonjour,


Pour me le transmettre clique sur ce lien :

http://www.cijoint.fr/

==> Clique sur Parcourir et cherche le fichier ZHPDiag.txt

==> Clique sur Ouvrir.

==> Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt

est ajouté dans la page.

==> Copie ce lien dans ta réponse.
1
Truitasse
7 avril 2011 à 18:05
Bonjour,

merci, voici le lien du rapport:

http://www.cijoint.fr/cjlink.php?file=cj201104/cijP1fko8f.txt

voilà voilà ^^

en attendant votre réponse,

bonne soirée.
0
Réponse 2 / 8
Truitasse
7 avril 2011 à 18:07
Bonsoir,

merci devotre aide, voici le lien du rapport:

http://www.cijoint.fr/cjlink.php?file=cj201104/cijP1fko8f.txt

en attendant votre réponse ^^

bonne soirée.
0
Réponse 3 / 8
pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
8 avril 2011 à 23:31
Bonsoir,



ton system est très infecté, non à jour et en plus tu fais du peer to peer



1ère chose à faire :


▶ Désactiver vos logiciels de sécurité tel qu'antivirus...

▶ Rends-toi à cette adresse afin de télécharger AD-Remover (créé par C_XX) :

http://www.teamxscript.org/adremoverTelechargement.html


/!\ Déconnecte-toi d'internet et ferme toutes applications en cours /!\

▶ Double-clique sur l'icône Ad-remover située sur ton Bureau.

▶ Sur la page, clique sur le bouton « Scanner »

▶ Confirme lancement du scan

▶ Laisse travailler l'outil.

▶ Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report.)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Tuto
0
Réponse 4 / 8
Truitasse
12 avril 2011 à 17:58
Bonsoir

voici le lien du rapport:

http://www.cijoint.fr/cjlink.php?file=cj201104/cijK0qwGGc.txt

merci de votre aide,
cordialement.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
12 avril 2011 à 22:47
Bonsoir,

Parfais la suite :

Nettoyage:

/!\ Ferme toutes tes applications ouvertes. /!\

▶ Double-clique sur l'icône Ad-remover située sur ton Bureau.

▶ Sur la page, clique sur le bouton « Nettoyer »

▶ Confirme l'opération

▶ Laisse travailler l'outil.

▶ Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report.

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Tuto
0
Réponse 6 / 8
Truitasse
13 avril 2011 à 15:40
bonjour,

voici le rapport du nettoyage:

http://www.cijoint.fr/cjlink.php?file=cj201104/cijkuAEiiK.txt

:)
0
Réponse 7 / 8
pimprenelle27 Messages postés 20857 Date d'inscription lundi 10 décembre 2007 Statut Contributeur sécurité Dernière intervention 8 octobre 2019 2 502
15 avril 2011 à 22:17
Bonsoir,

je te donne la suite :

Pensez à mettre à jour Malwarebyte's Anti-Malware si vous l'avez déjà sur votre bureau.

▶ Télécharge https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/


▶ Fais la mise à jour du logiciel (elle se fait normalement à l'installation)

▶ Lance une analyse complète en cliquant sur "Exécuter un examen complet"

▶ Sélectionnes les disques que tu veux analyser et cliques sur "Lancer l'examen"

▶ L'analyse peut durer un bon moment.....

▶ Une fois l'analyse terminée, cliques sur "OK" puis sur "Afficher les résultats"

▶ Vérifies que tout est bien coché et cliques sur "Supprimer la sélection" => et ensuite sur "OK"

▶ Un rapport va s'ouvrir dans le bloc note... Fais un copié/collé du rapport dans ta prochaine réponse sur le forum


* Il se pourrait que certains fichiers devront être supprimés au redémarrage du PC... Faites le en cliquant sur "oui" à la question posée
0
Réponse 8 / 8
Truitasse
18 avril 2011 à 19:36
Bonsoir,

voici la suite, donc le rapport:


hMalwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6344

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

18/04/2011 19:27:00
mbam-log-2011-04-18 (19-27-00).txt

Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 218447
Temps écoulé: 1 heure(s), 29 minute(s), 25 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

cordialement
0

Discussions similaires

qu'est-ce que diff message ?
zebulonmarie -
mumu -

18 réponses
Instagram "Désolé, une erreur s'est produite"
bananamilk -
cedric.masdeb -

60 réponses
Comment reconnaitre si un SMS m'indiquant un message vocal est une arnaque ?
kikidefer -
brucine -

9 réponses
Erreur vidéo inconnue sur le Freebox Player
mouhaaV2.0 -
moi -

61 réponses
Erreur de lecture sur iptv smarters
Bogs -
bazfile -

1 réponse