Sujet Précédent Sujet Suivant

Message d'erreur

Fermé
mitche21 Messages postés 3 Date d'inscription mercredi 4 septembre 2013 Statut Membre Dernière intervention 4 septembre 2013 - 4 sept. 2013 à 10:11
mitche21 Messages postés 3 Date d'inscription mercredi 4 septembre 2013 Statut Membre Dernière intervention 4 septembre 2013 - 4 sept. 2013 à 10:18
Bonjour, j'ai un message d'erreur à chaque démarrage de windows ( vista 32): C:\Users\jeanmi\appdata\bobsolutio\Shared\enhancedNt.Dll
Je suis aller sur ce forum j'ai fais comme indiqué, j'ai utilisé le logiciel ZHPdiag tutoriel, j'ai fais le scan et j'ai donc un rapport sur ce lien :http://cjoint.com/13sp/CIejZ3XUe5n.htm.
mais pour moi c'est du chinois, quelqu'un peut m'aider , merci d'avance.

2 réponses

Réponse 1 / 2
mitche21 Messages postés 3 Date d'inscription mercredi 4 septembre 2013 Statut Membre Dernière intervention 4 septembre 2013
4 sept. 2013 à 10:15
Pardon, le lien n'est pas bon, celui ci est , j'espère meilleur: http://www.cjoint.com/efface.php/?CIejZ3XUe5n
0
Réponse 2 / 2
mitche21 Messages postés 3 Date d'inscription mercredi 4 septembre 2013 Statut Membre Dernière intervention 4 septembre 2013
4 sept. 2013 à 10:18
Désolé!! le lien ne fonctionne pas, je post donc le rapport complet.
~ Rapport de ZHPDiag v2013.9.2.3 - Nicolas Coolman (03/09/2013)
~ Lancé par jenmi (04/09/2013 09:45:11)
~ Adresse du Site Web https://nicolascoolman.webs.com/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v7.0.6000.16982
MFIE: Mozilla Firefox 22.0 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Vista Home Premium Edition, 32-bit (Build 6000)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 2V7GR
Windows License : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection du système
Avira Free Antivirus v13.0.0.3885
McAfee Security Scan Plus v3.0.285.6

---\\ Logiciels d'optimisation du système
CCleaner v4.05 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2037 MB (44% free)
System Restore: Activé (Enable)
System drive C: has 55 GB (59%) free of 92 GB

---\\ Mode de connexion au système
~ Computer Name: PC
~ User Name: jenmi
~ All Users Names: jenmi, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Users\jenmi\AppData\Roaming\
~ %Desktop% : C:\Users\jenmi\Desktop\
~ %Favorites% : C:\Users\jenmi\Favorites\
~ %LocalAppData% : C:\Users\jenmi\AppData\Local\
~ %StartMenu% : C:\Users\jenmi\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C:\ Hard drive, Flash drive, Thumb drive (Free 55 Go of 92 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 45 Go of 45 Go)
E:\ CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 26 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - (.Microsoft Corporation - Explorateur Windows.) (.03/09/2013 - 07:59:20.) -- C:\Windows\Explorer.exe [2923520]
[MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] - (.Microsoft Corporation - Application de démarrage de Windows.) (.02/11/2006 - 10:45:57.) -- C:\Windows\System32\Wininit.exe [95744]
[MD5.C7A318E74FEF945EBFF855C1513CD96C] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.02/09/2013 - 19:22:48.) -- C:\Windows\System32\wininet.dll [832512]
[MD5.9F75392B9128A91ABAFB044EA350BAAD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.02/11/2006 - 10:45:57.) -- C:\Windows\System32\Winlogon.exe [308224]
[MD5.5D24CAF8EFD924A875698FF28384DB8B] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.02/11/2006 - 09:58:43.) -- C:\Windows\system32\Drivers\AFD.sys [270336]
[MD5.E03E8C99D15D0381E02743C36AFC7C6F] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.03/09/2013 - 07:59:45.) -- C:\Windows\system32\Drivers\atapi.sys [21560]
[MD5.6C3A437FC873C6F6A4FC620B6888CB86] - (.Microsoft Corporation - CD-ROM File System Driver.) (.02/11/2006 - 09:30:50.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.8D1866E61AF096AE8B582454F5E4D303] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.02/11/2006 - 09:51:44.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.A7179DE59AE269AB70345527894CCD7C] - (.Microsoft Corporation - DFS Client MUP Surrogate Driver.) (.02/11/2006 - 09:31:04.) -- C:\Windows\system32\Drivers\DfsC.sys [74752]
[MD5.0DB613A7E427B5663563677796FD5258] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.01/08/2007 - 15:22:57.) -- C:\Windows\system32\Drivers\HDAudBus.sys [53760]
[MD5.1C9EE072BAA3ABB460B91D7EE9152660] - (.Microsoft Corporation - Pilote de port i8042.) (.03/09/2013 - 07:53:45.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.10077C35845101548037DF04FD1A420B] - (.Microsoft Corporation - IP Network Address Translator.) (.02/11/2006 - 09:58:09.) -- C:\Windows\system32\Drivers\IpNat.sys [99840]
[MD5.8AF705CE1BB907932157FAB821170F27] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.03/09/2013 - 08:19:59.) -- C:\Windows\system32\Drivers\MRxSmb.sys [102400]
[MD5.E3A168912E7EEFC3BD3B814720D68B41] - (.Microsoft Corporation - MBT Transport driver.) (.02/11/2006 - 09:57:20.) -- C:\Windows\system32\Drivers\netBT.sys [184320]
[MD5.37430AA7A66D7A63407ADC2C0D05E9F6] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.02/09/2013 - 19:10:51.) -- C:\Windows\system32\Drivers\ntfs.sys [1060920]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.88587DD843E2059848995B407B67F6CF] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.02/11/2006 - 09:58:13.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [75776]
[MD5.E8BD98D46F2ED77132BA927FCCB47D8B] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.02/11/2006 - 10:03:00.) -- C:\Windows\system32\Drivers\rdpdr.sys [242688]
[MD5.AC0D90738ADB51A6FD12FF00874A2162] - (.Microsoft Corporation - SMB Transport driver.) (.02/11/2006 - 09:57:10.) -- C:\Windows\system32\Drivers\smb.sys [66048]
[MD5.AB4FDE8AF4A0270A46A001C08CBCE1C2] - (.Microsoft Corporation - TDI Translation Driver.) (.02/11/2006 - 09:57:35.) -- C:\Windows\system32\Drivers\tdx.sys [68096]
[MD5.80DC0C9BCB579ED9815001A4D37CBFD5] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.03/09/2013 - 07:59:44.) -- C:\Windows\system32\Drivers\volsnap.sys [211000]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2
~ Mes musiques (My Musics) : 1/2
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/18
~ Mes Documents (My Documents) : 1/1506
~ Mon Bureau (My Desktop) : 1/4
~ Menu demarrer (Programs) : 1/26
~ Hidden Files: Scanned in 00mn 02s



---\\ Processus lancés au démarrage du système
[MD5.A659F31AC25418738351E5BDF4C85780] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [4669440] [PID.608]
[MD5.9A2B413994133284DF08AFF3492ED040] - (.Synaptics, Inc. - Synaptics Pointing Device starter.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe [102400] [PID.848]
[MD5.F371C6DF9A810EF2E6E4FA60ACBB5C33] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [174872] [PID.732]
[MD5.E757B9850813B2952A1742DD582A206C] - (.Woodtale Technology Inc - iSafeTray.) -- C:\Program Files\iSafe\iSafeTray.exe [316232] [PID.1024]
[MD5.8854C4474E4E31FCA0C18BB9BD3A9D47] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [141848] [PID.1292]
[MD5.CE7544B51C3A15D87A78C33FDDA9EC54] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [173592] [PID.1328]
[MD5.4FA2F9A48AA6CEB5A4E1A1BA21ED0BA8] - (.Wistron - HotkeyApp.) -- C:\Program Files\Launch Manager\HotkeyApp.exe [192512] [PID.1420]
[MD5.4631FF0EE2964CCDC646AF807CB778F5] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [345144] [PID.1488]
[MD5.A2C1288BD3DEDE03B2327E5972678C2E] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.0.285\SSScheduler.exe [271808] [PID.1088]
[MD5.D4C0835D5E0B72650944A2AEB5AC4A3B] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [252952] [PID.2208]
[MD5.E0033A799C7C761618AA22ECE403240E] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1021224] [PID.4008]
[MD5.C8D28F8B498CADBB9445AC4545BD41B7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [920472] [PID.1820]
[MD5.E9349A03FD81B4806714A16796B5E20A] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [17304] [PID.3112]
[MD5.D8425B8D6DC2AA8D871363B0775BCF18] - (.Adobe Systems, Inc. - Adobe Flash Player 11.8 r800.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe [1861512] [PID.3120]
[MD5.20CE553CFBA1BB098868285AB3E88999] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7865344] [PID.4868]
[MD5.05CB3DA78A4BBD9B799A5957F9D101CC] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [68608] [PID.5032]
[MD5.3A5B76CE720086404F32DBAF378E03D8] - (.Woodtale Technology Inc - iSafeSvc.) -- C:\Program Files\iSafe\iSafeSvc.exe [341320] [PID.1060]
[MD5.038B7D2FB12BECD7FEE8966E265E99E4] - (.Woodtale Technology Inc - iSafeSvc2.) -- C:\Program Files\iSafe\iSafeSvc2.exe [514888] [PID.1184]
[MD5.A1DCD30534835CB67733AD00175125A6] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [2605568] [PID.1336]
[MD5.99387251353598C939592FAF40DF8AA9] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024] [PID.2012]
[MD5.8491FDA93507F2F27FFBA11372764086] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088] [PID.2196]
[MD5.AE38A12F79A4980DDB88F36514F8A1DA] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [355096] [PID.2264]
[MD5.68C105908A54D734D2B154DB546F562E] - (.Avira Operations GmbH & Co. KG - Avira Shadow Copy Service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76856] [PID.3300]
[MD5.B0E6FAA0F0EAD4772C545A3737EFB47F] - (.Wistron Corp. - Pas de description.) -- C:\Program Files\Launch Manager\WisLMSvc.exe [118784] [PID.3560]
~ Processes Running: Scanned in 00mn 01s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\jenmi\AppData\Roaming\Mozilla\Firefox\Profiles\0r5gg8c4.default\prefs.js
C:\Users\jenmi\AppData\Roaming\Mozilla\Firefox\Profiles\0r5gg8c4.default\user.js
M3 - MFPP: Plugins - [jenmi] -- C:\Users\jenmi\AppData\Roaming\Mozilla\Firefox\Profiles\0r5gg8c4.default\searchplugins\Google.xml
M0 - MFSP: prefs.js [jenmi - 0r5gg8c4.default] https://www.orange.fr/portail
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll
~ Firefox Browser: 3 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.)
~ IE Browser: 9 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 20



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPStart] . (.Synaptics, Inc. - Synaptics Pointing Device starter.) -- C:\Program Files\Synaptics\SynTP\SynTPStart.exe
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [HotkeyApp] . (.Wistron - HotkeyApp.) -- C:\Program Files\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKCU\..\Run: [NTRedirect] C:\Users\jenmi\AppData\Roaming\BabSolution\Shared\enhancedNT.dll (.not file.) =>Hijacker.BabSolution
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-755697015-3053948015-833960153-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-755697015-3053948015-833960153-1000\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-755697015-3053948015-833960153-1000\..\Run: [NTRedirect] C:\Users\jenmi\AppData\Roaming\BabSolution\Shared\enhancedNT.dll (.not file.) =>Hijacker.BabSolution
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Programs: Windows Mail.lnk . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - GS\Programs: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\SendTo: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe
O4 - GS\Desktop: BestPractice.lnk . (...) -- C:\Program Files\BestPractice\bp.exe
O4 - GS\Desktop: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files\FreeTime\FormatFactory\FormatFactory.exe
O4 - GS\Desktop: MP3Gain.lnk . (.Snelg Enterprises - MP3Gain GUI.) -- C:\Program Files\MP3Gain\MP3GainGUI.exe
~ Global Startup: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{1CF8190E-001A-4664-9C41-FF9284B0E99B}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{4EBCD1C4-C75B-40E2-98B0-2CD26078123A}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{1CF8190E-001A-4664-9C41-FF9284B0E99B}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{4EBCD1C4-C75B-40E2-98B0-2CD26078123A}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{1CF8190E-001A-4664-9C41-FF9284B0E99B}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{4EBCD1C4-C75B-40E2-98B0-2CD26078123A}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Titr_HJT34=Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll
~ SSODL: 1 Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Avira Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: iSafeService (iSafeService) . (.Woodtale Technology Inc - iSafeSvc.) - C:\Program Files\iSafe\iSafeSvc.exe
~ Services: 4 Scanned in 00mn 08s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (sdnclean.exe) - File not found
~ BEX: 2 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
[MD5.476BB014F3F68C0C15EDDD5B444DA8FF] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [257416]
[MD5.4C0A720AB377391D7D2EDE1ED905A420] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3676952] =>Piriform Ltd
[MD5.00000000000000000000000000000000] [APT] [Check for updates (Spybot - Search & Destroy)] (...) -- C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [EPUpdater] (...) -- C:\Users\jenmi\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe (.not file.) [0] =>Hijacker.BabSolution
[MD5.00000000000000000000000000000000] [APT] [Refresh immunization (Spybot - Search & Destroy)] (...) -- C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{1AF0A663-8733-4AAE-8E27-881665F7064D}] (...) -- E:\.\Autorun.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EE3CB342-1C30-40E5-9348-8A7591A7F45A}] (...) -- C:\Users\jenmi\Downloads\ie6setupOe.exe (.not file.) [0]
~ Scheduled Task: 8 Scanned in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys
O41 - Driver: (avkmgr) . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - C:\Windows\System32\DRIVERS\avkmgr.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DfsC) . (.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\System32\DRIVERS\ssmdrv.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers\tcpip.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
~ Drivers: 69 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Avira Free Antivirus v13.0.0.3885 - (.Avira.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: BestPractice (remove only) - (...) [HKLM] -- BestPractice
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner =>Piriform Ltd
O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1
O42 - Logiciel: FormatFactory 3.1.1 - (.Free Time.) [HKLM] -- FormatFactory
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- HDMI
O42 - Logiciel: Intel(R) Matrix Storage Manager - (...) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Intel(R) TV Wizard - (.Intel Corporation.) [HKLM] -- TVWiz
O42 - Logiciel: Launch Manager V1.4.9 - (.Wistron Corp..) [HKLM] -- {D0846526-66DD-4DC9-A02C-98F9A2806812}
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3070 B611 series - (.Hewlett-Packard Co..) [HKLM] -- {02759A25-6640-46B7-9720-17CF4C91C3D8}
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM] -- McAfee Security Scan
O42 - Logiciel: Mozilla Firefox 22.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 22.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: OpenOffice 4.0.0 - (.Apache Software Foundation.) [HKLM] -- {4F8C9861-DDCF-4EE8-978C-35B691C406B3}
O42 - Logiciel: Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Wind - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Wireless LAN Driver - (.Generic.) [HKLM] -- {8842825B-C865-40D3-89FD-A48A942195B4}
O42 - Logiciel: iSafe - (.WOODTALE TECHNOLOGY INC.) [HKLM] -- iSafe
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D}
~ Logic: 37 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AppDataLow]
[HKCU\Software\Avira]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Citrix]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DriverTuner]
[HKCU\Software\DriverTuner_Init]
[HKCU\Software\FreeTime]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\HP]
[HKCU\Software\Haali]
[HKCU\Software\HotkeyPanel]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Intel]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Mozilla]
[HKCU\Software\OpenOffice]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Synaptics]
[HKCU\Software\TeleCharger]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WEDLMNGR]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AviSynth]
[HKLM\Software\Avira]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Fujitsu Siemens Computers]
[HKLM\Software\GNU]
[HKLM\Software\Generic]
[HKLM\Software\Google]
[HKLM\Software\HP]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\HotkeyPanel]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Launch Manager]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wistron Corp.]
[HKLM\Software\X-AVCSD]
[HKLM\Software\mozilla.org]
[HKLM\Software\webtogo]
~ Key Software: 85 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 03/09/2013 - 15:19:07 - [222,113] ----D C:\Program Files\Avira
O43 - CFD: 03/09/2013 - 16:28:58 - [0,674] ----D C:\Program Files\BestPractice
O43 - CFD: 03/09/2013 - 14:52:57 - [5,736] ----D C:\Program Files\CCleaner =>Piriform Ltd
O43 - CFD: 03/09/2013 - 17:02:03 - [12,381] ----D C:\Program Files\CDBurnerXP
O43 - CFD: 03/09/2013 - 13:52:19 - [0] ----D C:\Program Files\Citrix
O43 - CFD: 02/09/2013 - 17:24:49 - [237,333] ----D C:\Program Files\Common Files
O43 - CFD: 02/09/2013 - 17:02:45 - [0] R---D C:\Program Files\Fichiers communs
O43 - CFD: 03/09/2013 - 17:57:43 - [134,175] ----D C:\Program Files\FreeTime
O43 - CFD: 03/09/2013 - 16:22:51 - [77,031] ----D C:\Program Files\HP
O43 - CFD: 02/09/2013 - 22:25:31 - [17,594] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 02/09/2013 - 21:29:20 - [19,542] ----D C:\Program Files\Intel
O43 - CFD: 02/09/2013 - 20:25:25 - [1,527] ----D C:\Program Files\Internet Explorer
O43 - CFD: 03/09/2013 - 18:45:37 - [22,491] ----D C:\Program Files\iSafe
O43 - CFD: 02/09/2013 - 22:25:32 - [0,666] ----D C:\Program Files\Launch Manager
O43 - CFD: 03/09/2013 - 17:35:42 - [2,647] ----D C:\Program Files\McAfee Security Scan
O43 - CFD: 02/11/2006 - 14:37:34 - [89,033] ----D C:\Program Files\Microsoft Games
O43 - CFD: 03/09/2013 - 09:26:42 - [95,052] ----D C:\Program Files\Movie Maker
O43 - CFD: 02/09/2013 - 21:36:53 - [47,225] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 02/09/2013 - 21:08:21 - [0,214] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 03/09/2013 - 16:33:14 - [1,080] ----D C:\Program Files\MP3Gain
O43 - CFD: 02/11/2006 - 14:37:34 - [0,012] ----D C:\Program Files\MSBuild
O43 - CFD: 02/11/2006 - 14:37:34 - [3,121] ----D C:\Program Files\MSN
O43 - CFD: 02/09/2013 - 21:23:47 - [313,889] ----D C:\Program Files\OpenOffice 4
O43 - CFD: 03/09/2013 - 18:08:00 - [0] ----D C:\Program Files\Optimizer Pro =>PUP.OptimizerPro
O43 - CFD: 02/09/2013 - 17:29:44 - [15,928] ----D C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 14:37:34 - [24,553] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 03/09/2013 - 18:51:51 - [16,053] ----D C:\Program Files\Spybot - Search & Destroy 2
O43 - CFD: 02/09/2013 - 17:28:49 - [13,602] ----D C:\Program Files\Synaptics
O43 - CFD: 02/11/2006 - 15:01:55 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 02/09/2013 - 17:44:55 - [1,013] ----D C:\Program Files\Windows Calendar
O43 - CFD: 03/09/2013 - 02:36:23 - [2,708] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 03/09/2013 - 09:26:43 - [4,394] ----D C:\Program Files\Windows Defender
O43 - CFD: 03/09/2013 - 02:36:23 - [6,874] ----D C:\Program Files\Windows Journal
O43 - CFD: 02/09/2013 - 20:25:23 - [9,174] ----D C:\Program Files\Windows Mail
O43 - CFD: 02/09/2013 - 20:25:17 - [4,431] ----D C:\Program Files\Windows Media Player
O43 - CFD: 02/09/2013 - 17:02:45 - [7,623] ----D C:\Program Files\Windows NT
O43 - CFD: 03/09/2013 - 02:36:23 - [12,950] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 03/09/2013 - 09:26:26 - [7,715] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 04/09/2013 - 09:45:37 - [16,507] ----D C:\Program Files\ZHPDiag
O43 - CFD: 02/09/2013 - 17:24:49 - [1,943] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 02/09/2013 - 21:22:02 - [187,602] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 02/11/2006 - 13:18:33 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 02/11/2006 - 13:18:33 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 02/09/2013 - 20:25:23 - [8,585] ----D C:\Program Files\Common Files\System
O43 - CFD: 03/09/2013 - 17:58:57 - [0] ----D C:\ProgramData\APN
O43 - CFD: 02/11/2006 - 15:02:03 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 03/09/2013 - 15:20:07 - [91,584] ----D C:\ProgramData\Avira
O43 - CFD: 02/09/2013 - 17:02:45 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 03/09/2013 - 17:02:15 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 02/11/2006 - 15:02:03 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 02/11/2006 - 15:02:03 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 02/09/2013 - 17:02:45 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 15:02:03 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 03/09/2013 - 16:22:54 - [1,328] ----D C:\ProgramData\HP
O43 - CFD: 03/09/2013 - 17:35:43 - [0] ----D C:\ProgramData\McAfee
O43 - CFD: 03/09/2013 - 17:35:44 - [0,001] ----D C:\ProgramData\McAfee Security Scan
O43 - CFD: 02/09/2013 - 17:02:45 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 03/09/2013 - 18:51:50 - [150,312] -S--D C:\ProgramData\Microsoft
O43 - CFD: 02/09/2013 - 17:02:45 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 02/09/2013 - 21:08:21 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 03/09/2013 - 18:12:03 - [1,249] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 02/11/2006 - 15:02:03 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 03/09/2013 - 18:07:03 - [0] ----D C:\ProgramData\TEMP
O43 - CFD: 02/11/2006 - 15:02:04 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 02/09/2013 - 18:31:23 - [0] ----D C:\Users\jenmi\AppData\Roaming\Adobe
O43 - CFD: 03/09/2013 - 15:23:24 - [0] ----D C:\Users\jenmi\AppData\Roaming\Avira
O43 - CFD: 03/09/2013 - 18:06:24 - [0] ----D C:\Users\jenmi\AppData\Roaming\BabSolution =>Hijacker.BabSolution
O43 - CFD: 03/09/2013 - 17:02:03 - [0,001] ----D C:\Users\jenmi\AppData\Roaming\Canneverbe Limited
O43 - CFD: 03/09/2013 - 18:43:03 - [0,073] ----D C:\Users\jenmi\AppData\Roaming\eCyber
O43 - CFD: 02/09/2013 - 17:07:01 - [0] ----D C:\Users\jenmi\AppData\Roaming\Identities
O43 - CFD: 02/09/2013 - 17:29:29 - [0] ----D C:\Users\jenmi\AppData\Roaming\InstallShield
O43 - CFD: 04/09/2013 - 07:29:08 - [0,223] ----D C:\Users\jenmi\AppData\Roaming\iSafe
O43 - CFD: 02/09/2013 - 18:31:28 - [0,000] ----D C:\Users\jenmi\AppData\Roaming\Macromedia
O43 - CFD: 02/11/2006 - 14:37:34 - [0] ----D C:\Users\jenmi\AppData\Roaming\Media Center Programs
O43 - CFD: 04/09/2013 - 09:38:10 - [0,074] -S--D C:\Users\jenmi\AppData\Roaming\Microsoft
O43 - CFD: 02/09/2013 - 21:08:37 - [21,098] ----D C:\Users\jenmi\AppData\Roaming\Mozilla
O43 - CFD: 02/09/2013 - 21:25:50 - [7,757] ----D C:\Users\jenmi\AppData\Roaming\OpenOffice
O43 - CFD: 03/09/2013 - 17:35:48 - [0] ----D C:\Users\jenmi\AppData\Local\Adobe
O43 - CFD: 02/09/2013 - 17:06:52 - [0] ----D C:\Users\jenmi\AppData\Local\Application Data
O43 - CFD: 03/09/2013 - 13:52:13 - [2,458] ----D C:\Users\jenmi\AppData\Local\Citrix
O43 - CFD: 03/09/2013 - 14:20:25 - [0] ----D C:\Users\jenmi\AppData\Local\DriverTuner
O43 - CFD: 02/09/2013 - 17:06:52 - [0] ----D C:\Users\jenmi\AppData\Local\Historique
O43 - CFD: 03/09/2013 - 19:21:12 - [0,034] ----D C:\Users\jenmi\AppData\Local\HP
O43 - CFD: 04/09/2013 - 09:38:10 - [0] ----D C:\Users\jenmi\AppData\Local\Macromedia
O43 - CFD: 04/09/2013 - 09:38:10 - [20,362] ----D C:\Users\jenmi\AppData\Local\Microsoft
O43 - CFD: 02/09/2013 - 21:08:27 - [23,527] ----D C:\Users\jenmi\AppData\Local\Mozilla
O43 - CFD: 04/09/2013 - 09:44:17 - [120,428] ----D C:\Users\jenmi\AppData\Local\Temp
O43 - CFD: 02/09/2013 - 17:06:52 - [0] ----D C:\Users\jenmi\AppData\Local\Temporary Internet Files
O43 - CFD: 03/09/2013 - 16:44:24 - [0,000] ----D C:\Users\jenmi\AppData\Local\VirtualStore
O43 - CFD: 02/11/2006 - 14:54:36 - [0,015] R---D C:\Users\jenmi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 02/09/2013 - 17:07:13 - [0,000] R---D C:\Users\jenmi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 03/09/2013 - 16:28:58 - [0] ----D C:\Users\jenmi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BestPractice
O43 - CFD: 03/09/2013 - 17:58:25 - [0,004] ----D C:\Users\jenmi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 02/11/2006 - 14:50:41 - [0,001] R---D C:\Users\jenmi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 03/09/2013 - 16:33:14 - [0] ----D C:\Users\jenmi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain
O43 - CFD: 02/09/2013 - 17:07:13 - [0,000] R---D C:\Users\jenmi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ Program Folder: 96 Scanned in 00mn 04s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.2818B3A6B741476065E3CD98C07C9D5C] - 04/09/2013 - 06:47:08 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1862163]
O44 - LFC:[MD5.EBAB8CA4DD06CC40ED0261718621B1DC] - 04/09/2013 - 06:27:55 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.26CE573DAC9BE8E8157EE13C8A2B077D] - 03/09/2013 - 18:24:34 ---A- . (...) -- C:\Windows\PFRO.log [7308]
O44 - LFC:[MD5.A5C72D2EB51B0B444E93D120B864B944] - 03/09/2013 - 17:38:23 ---A- . (...) -- C:\Windows\wininit.ini [957]
O44 - LFC:[MD5.804E1719ED5B679523D1FF2AC0F79BEA] - 03/09/2013 - 17:34:11 ---A- . (...) -- C:\Windows\System32\perfc009.dat [103924]
O44 - LFC:[MD5.FB485590099151791690AB183505681E] - 03/09/2013 - 17:34:11 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [117572]
O44 - LFC:[MD5.13D5D823B4CEC9B854787886898B0F11] - 03/09/2013 - 17:34:11 ---A- . (...) -- C:\Windows\System32\perfh009.dat [610142]
O44 - LFC:[MD5.3993D97449584894FC310269C22338A6] - 03/09/2013 - 17:34:11 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [690832]
O44 - LFC:[MD5.6CBACA685A4221B59F8D4B519FAF3FD8] - 03/09/2013 - 17:34:10 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1512256]
O44 - LFC:[MD5.81360ACBCA851F9FEE87E6BDC53E1289] - 03/09/2013 - 16:35:38 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe [692104]
O44 - LFC:[MD5.8C1348AB014241E4C92E12AC5B0C34FC] - 03/09/2013 - 16:35:38 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [71048]
O44 - LFC:[MD5.FB034DE7F0D706EBA9513D8ED7478ACB] - 03/09/2013 - 15:27:05 ----- . (.Hewlett-Packard Co. - HP Discovery Port Monitor.) -- C:\Windows\System32\HPDiscoPMa211.dll [580712]
O44 - LFC:[MD5.A36EE93698802CD899F98BFD553D8185] - 03/09/2013 - 14:17:39 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\System32\Drivers\ssmdrv.sys [28520]
O44 - LFC:[MD5.D50FBA68163BC498F2C136E0E5BA8E2F] - 03/09/2013 - 14:17:39 ---A- . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\Drivers\avipbb.sys [135136]
O44 - LFC:[MD5.CB8741CD7B126499FED40C9B197F6AC5] - 03/09/2013 - 14:17:39 ---A- . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\Drivers\avkmgr.sys [37352]
O44 - LFC:[MD5.87425709A251386064C99B684BF96F72] - 03/09/2013 - 14:17:39 ---A- . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys [84744]
O44 - LFC:[MD5.5A5CFF37F1BD0F86B9BDAAD7A9445882] - 03/09/2013 - 08:31:34 R-HA- . (...) -- C:\Windows\WindowsShell.Manifest [749]
O44 - LFC:[MD5.E5509F00FE067C8E33A0E1577B4666E6] - 03/09/2013 - 08:29:02 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [256488]
O44 - LFC:[MD5.A002ADF7893D34C3629B13E45245EBD0] - 03/09/2013 - 08:24:26 ---A- . (.Microsoft Corporation - Écran de veille Photos.) -- C:\Windows\System32\PhotoScreensaver.scr [704000]
O44 - LFC:[MD5.4D14689094BFE7C16CDECF659D8A80F6] - 03/09/2013 - 08:24:25 ---A- . (.Microsoft Corporation - Windows Terminal Server SDK APIs.) -- C:\Windows\System32\wtsapi32.dll [24064]
O44 - LFC:[MD5.722936AFB75A7F509662B69B5632F48A] - 03/09/2013 - 08:24:24 ---A- . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\Drivers\compbatt.sys [20920]
O44 - LFC:[MD5.84FC6DF81212D16BE5C4F441682FECCC] - 03/09/2013 - 08:24:24 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [258232]
O44 - LFC:[MD5.17EAC0D023A65FA9B02114CC2BAACAD5] - 03/09/2013 - 08:24:24 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [11264]
O44 - LFC:[MD5.C8739C95CF801C8BC35735E012230770] - 03/09/2013 - 08:24:23 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [28344]
O44 - LFC:[MD5.ED97AD3DF1B9005989EAF149BF06C821] - 03/09/2013 - 08:24:23 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys [14208]
O44 - LFC:[MD5.8F2B5FEDE18BD3C4C926CBF88E6F1264] - 03/09/2013 - 08:24:21 ---A- . (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\System32\sysmain.dll [542720]
O44 - LFC:[MD5.01E41C264EEDCB827820A1909162579F] - 03/09/2013 - 08:23:17 ---A- . (.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) -- C:\Windows\System32\WebClnt.dll [194560]
O44 - LFC:[MD5.1D8828B98EE309D65E006F0829E280E5] - 03/09/2013 - 08:23:17 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [110080]
O44 - LFC:[MD5.62E97AB216871DB8A8E8154FC00908BD] - 03/09/2013 - 08:22:38 ---A- . (...) -- C:\Windows\System32\wlan.tmf [1657350]
O44 - LFC:[MD5.75526C6269C87DED13F1223446B79B9A] - 03/09/2013 - 08:22:38 ---A- . (.Microsoft Corporation - Classes d'assistance aux diagnostics de séc.) -- C:\Windows\System32\L2SecHC.dll [123904]
O44 - LFC:[MD5.AB2FDF76CD9D5906710150461967DD3E] - 03/09/2013 - 08:22:37 ---A- . (.Microsoft Corporation - DLL de l'API côté client de configuration a.) -- C:\Windows\System32\wlanapi.dll [47104]
O44 - LFC:[MD5.7640ACEA41348BFEF34B76E245501261] - 03/09/2013 - 08:22:37 ---A- . (.Microsoft Corporation - DLL du service de configuration automatique.) -- C:\Windows\System32\wlansvc.dll [502272]
O44 - LFC:[MD5.3D8BFFCD8D9BDD142F58B3D51514A8B7] - 03/09/2013 - 08:22:37 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 Client Side Hel.) -- C:\Windows\System32\wlanhlp.dll [67584]
O44 - LFC:[MD5.8C9513713A1A830EE9A716FB91E08267] - 03/09/2013 - 08:22:37 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 MSM DLL.) -- C:\Windows\System32\wlanmsm.dll [290816]
O44 - LFC:[MD5.DA8F5026ABAC8A5F965256AAD5B8B667] - 03/09/2013 - 08:22:37 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 MSM Security Mo.) -- C:\Windows\System32\wlansec.dll [297984]
O44 - LFC:[MD5.C72DC4848F94A84BDBAE3B1080086316] - 03/09/2013 - 08:21:50 ---A- . (.Microsoft Corporation - MSXML 3.0 SP10.) -- C:\Windows\System32\msxml3.dll [1260032]
O44 - LFC:[MD5.C826B13C55449140899C9E99DE7E1982] - 03/09/2013 - 08:21:50 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml3r.dll [2048]
O44 - LFC:[MD5.473DF61261C234A4A4C577F3631B9327] - 03/09/2013 - 08:21:49 ---A- . (.Microsoft Corporation - MSXML 6.0 SP2.) -- C:\Windows\System32\msxml6.dll [1406464]
O44 - LFC:[MD5.64EE0F31A2AE438AD8F634D87FD655CC] - 03/09/2013 - 08:21:49 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml6r.dll [2048]
O44 - LFC:[MD5.C5213AC0CD7D4A6BE4BBABA0B18B9BE5] - 03/09/2013 - 08:20:51 ---A- . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll [216576]
O44 - LFC:[MD5.90B3FC7BD6B3D7EE7635DEBBA2187F66] - 03/09/2013 - 08:20:00 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [58368]
O44 - LFC:[MD5.47E13AB23371BE3279EEF22BBFA2C1BE] - 03/09/2013 - 08:20:00 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [211968]
O44 - LFC:[MD5.8AF705CE1BB907932157FAB821170F27] - 03/09/2013 - 08:19:59 ---A- . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\Drivers\mrxsmb.sys [102400]
O44 - LFC:[MD5.2F8A776FF2087357DDEB9992E06EECAA] - 03/09/2013 - 08:19:23 ---A- . (.Microsoft Corporation - Client Server Runtime Process.) -- C:\Windows\System32\csrsrv.dll [49664]
O44 - LFC:[MD5.E3F137ADC0A9D7F3A2E4F557272FE6B3] - 03/09/2013 - 08:19:23 ---A- . (.Microsoft Corporation - DLL serveur de Windows multi-utilisateurs.) -- C:\Windows\System32\winsrv.dll [376320]
O44 - LFC:[MD5.4E36F6595A9BAA2D349D46924D8BAB19] - 03/09/2013 - 08:18:49 ---A- . (.Microsoft Corporation - DLL d'erreur Media Foundation.) -- C:\Windows\System32\mferror.dll [2048]
O44 - LFC:[MD5.CB7BCE033EA4262A875E7DBC329025EC] - 03/09/2013 - 08:18:49 ---A- . (.Microsoft Corporation - Media Foundation DLL.) -- C:\Windows\System32\mf.dll [2855424]
O44 - LFC:[MD5.A1F4D5D9893AF30BC3450F53AD3CB14F] - 03/09/2013 - 08:18:49 ---A- . (.Microsoft Corporation - Media Foundation Proxy DLL.) -- C:\Windows\System32\mfps.dll [98816]
O44 - LFC:[MD5.E5E06215ECC7B60648DDB8C4F28319B4] - 03/09/2013 - 08:18:49 ---A- . (.Microsoft Corporation - Programme d'installation R&R.) -- C:\Windows\System32\rrinstaller.exe [52736]
O44 - LFC:[MD5.A2FF49DFD628B93705EECB2AAE0AD043] - 03/09/2013 - 08:18:48 ---A- . (.Microsoft Corporation - EXE de pipeline protégé par Media Foundatio.) -- C:\Windows\System32\mfpmp.exe [24576]
O44 - LFC:[MD5.D9AB631DFE5B28815838FC38F632B6C1] - 03/09/2013 - 08:18:47 ---A- . (.Microsoft Corporation - Windows Media Playback/Authoring DLL.) -- C:\Windows\System32\WMVCORE.DLL [2433536]
O44 - LFC:[MD5.D8077969EE22B889B793D076FDCA7066] - 03/09/2013 - 08:17:55 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntkrnlpa.exe [3502480]
O44 - LFC:[MD5.DC44BF78DEB87B7737D0D29B5B8EDAE3] - 03/09/2013 - 08:17:55 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [3468168]
O44 - LFC:[MD5.195766F84BDB446AE8E454D810E3207D] - 03/09/2013 - 08:15:51 ---A- . (.Microsoft Corporation - Services HTTP Windows.) -- C:\Windows\System32\winhttp.dll [376832]
O44 - LFC:[MD5.8DCBBB56B1300FDF301BEB2CF6AA013E] - 03/09/2013 - 08:15:15 ---A- . (.Microsoft Corporation - Microsoft (R) VBScript.) -- C:\Windows\System32\vbscript.dll [434176]
O44 - LFC:[MD5.36C5C3CAB3B467BA68AE345C9B9DADC3] - 03/09/2013 - 08:14:39 ---A- . (.Microsoft Corporation - ATL Module for Windows XP (Unicode).) -- C:\Windows\System32\atl.dll [71680]
O44 - LFC:[MD5.7887CE56934E7F104E98C975F47353C5] - 03/09/2013 - 08:14:04 ---A- . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [55296]
O44 - LFC:[MD5.71A0DC633D1D76744441EFD4B7FB230F] - 03/09/2013 - 08:13:30 ---A- . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll [297472]
O44 - LFC:[MD5.D683E38FC6251958D75DE073D4F17C1F] - 03/09/2013 - 08:12:13 ---A- . (.Microsoft Corporation - Intel Microcode Update Library.) -- C:\Windows\System32\mcupdate_GenuineIntel.dll [374456]
O44 - LFC:[MD5.358D458A63F29CC13E34CDD342AB21E5] - 03/09/2013 - 08:11:37 ---A- . (.Microsoft Corporation - MS DTCOLE Transactions interface proxy DLL.) -- C:\Windows\System32\msdtcprx.dll [500736]
O44 - LFC:[MD5.7216BBEBB46A77EB5D2346DC9F276D56] - 03/09/2013 - 08:11:37 ---A- . (.Microsoft Corporation - MS DTChelper APIs DLL.) -- C:\Windows\System32\xolehlp.dll [30208]
O44 - LFC:[MD5.435F0F6DC87A4B5DA78F1FA309884189] - 03/09/2013 - 08:10:51 ---A- . (.Microsoft Corporation - DLL du service Station de travail.) -- C:\Windows\System32\wkssvc.dll [156160]
O44 - LFC:[MD5.24657B6A3C8393F363D49A1087467B88] - 03/09/2013 - 08:10:13 ---A- . (.Microsoft Corporation - Client ActiveX des services Terminal Server.) -- C:\Windows\System32\mstscax.dll [1871872]
O44 - LFC:[MD5.CE2743826838FBA6F8581EBA3F811E91] - 03/09/2013 - 08:10:13 ---A- . (.Microsoft Corporation - Client avec accès à distance.) -- C:\Windows\System32\aaclient.dll [116736]
O44 - LFC:[MD5.9616FB80BA68F22C7159DE3ED3E1AC5F] - 03/09/2013 - 08:10:13 ---A- . (.Microsoft Corporation - QEC TSGateway.) -- C:\Windows\System32\tsgqec.dll [36352]
O44 - LFC:[MD5.3941F48C4D671DCD757C1265B794C3B9] - 03/09/2013 - 08:09:28 ---A- . (.Microsoft Corporation - Windows Media Player Effects.) -- C:\Windows\System32\wmpeffects.dll [303616]
O44 - LFC:[MD5.BA174723B7998BC2332D657DE720A9D3] - 03/09/2013 - 08:07:45 ---A- . (.Microsoft Corporation - Panneau de configuration Date/Heure.) -- C:\Windows\System32\timedate.cpl [713728]
O44 - LFC:[MD5.50D273A6B25A2550834AA26E069EF1DD] - 03/09/2013 - 08:07:06 ---A- . (.Microsoft Corporation - Media Metadata Handler.) -- C:\Windows\System32\MediaMetadataHandler.dll [356864]
O44 - LFC:[MD5.5ED6BB7CB8726BB1E5EE479FB9E61A18] - 03/09/2013 - 08:06:30 ---A- . (.Microsoft Corporation - API du Pare-feu Windows.) -- C:\Windows\System32\FirewallAPI.dll [392192]
O44 - LFC:[MD5.6E7A7F0C1193EE5648443FE2D4B789EC] - 03/09/2013 - 08:06:30 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [63488]
O44 - LFC:[MD5.563ED845885C6A7C09A7715D8BD0585C] - 03/09/2013 - 08:06:30 ---A- . (.Microsoft Corporation - Service de protection Microsoft.) -- C:\Windows\System32\MPSSVC.dll [396800]
O44 - LFC:[MD5.5B528E983C5217E26D15D5D3F9FDEFF9] - 03/09/2013 - 08:06:29 ---A- . (.Microsoft Corporation - Windows Firewal ICF Settings Upgrade.) -- C:\Windows\System32\icfupgd.dll [86016]
O44 - LFC:[MD5.4A448F53FEA2AF8DC606827BCB2B703A] - 03/09/2013 - 08:06:29 ---A- . (.Microsoft Corporation - Windows Firewall GPO Helper dll.) -- C:\Windows\System32\wfapigp.dll [16896]
O44 - LFC:[MD5.248A0B63C4BD5055DC09993213E95864] - 03/09/2013 - 08:06:29 ---A- . (.Microsoft Corporation - Windows Firewall rule configuration plug-in.) -- C:\Windows\System32\cmifw.dll [61952]
O44 - LFC:[MD5.E3AFCA30714898BAAE6F12B52627761C] - 03/09/2013 - 08:05:55 ---A- . (.Microsoft Corporation - Net Win32 API DLL.) -- C:\Windows\System32\netapi32.dll [425472]
O44 - LFC:[MD5.1D9EB8A57EDF88592684D703935870B1] - 03/09/2013 - 08:03:43 ---A- . (.Microsoft Corporation - Filtre XDS Codec & filtres de balises de c.) -- C:\Windows\System32\EncDec.dll [428032]
O44 - LFC:[MD5.79221032AE314F6EFD1C7F032AEA7702] - 03/09/2013 - 08:03:43 ---A- . (.Microsoft Corporation - DirectShow MPEG-2 Splitter..) -- C:\Windows\System32\mpg2splt.ax [177152]
O44 - LFC:[MD5.C3773FCD0C127D6F03104C77171C5787] - 03/09/2013 - 08:03:43 ---A- . (.Microsoft Corporation - MCMDE DLL.) -- C:\Windows\System32\mcmde.dll [1244672]
O44 - LFC:[MD5.2C20B06E359C4B661D072B42A200E863] - 03/09/2013 - 08:03:43 ---A- . (.Microsoft Corporation - Microsoft MPEG-2 Section and Table Acquisit.) -- C:\Windows\System32\Mpeg2Data.ax [68608]
O44 - LFC:[MD5.46593B98DE18B7DE6F9462BF67265AF1] - 03/09/2013 - 08:03:43 ---A- . (.Microsoft Corporation - Microsoft Network Provider for MPEG2 based.) -- C:\Windows\System32\MSNP.ax [80896]
O44 - LFC:[MD5.6D21808F000D1778AD6E10F08ADC273F] - 03/09/2013 - 08:03:43 ---A- . (.Microsoft Corporation - Microsoft SI/PSI parser for MPEG2 based net.) -- C:\Windows\System32\psisdecd.dll [292352]
O44 - LFC:[MD5.26374E59B760D0DA01D77246CC795AA4] - 03/09/2013 - 08:03:43 ---A- . (.Microsoft Corporation - Microsoft Transport Information Filter for.) -- C:\Windows\System32\psisrndr.ax [217088]
O44 - LFC:[MD5.5536868406E5A50D28062FF23980FB52] - 03/09/2013 - 08:03:42 ---A- . (.Microsoft Corporation - Microsoft Network Provider for MPEG2 based.) -- C:\Windows\System32\MSDvbNP.ax [57856]
O44 - LFC:[MD5.F17CF7CE329A178B65BE8405361E3007] - 03/09/2013 - 08:01:28 ---A- . (.Microsoft Corporation - Fichier DLL de ressources des fuseaux horai.) -- C:\Windows\System32\tzres.dll [2048]
O44 - LFC:[MD5.E37137CB0031440061EB3BF14EC6AC74] - 03/09/2013 - 08:00:43 ---A- . (.Microsoft Corporation - DLL de spouleur local.) -- C:\Windows\System32\localspl.dll [696832]
O44 - LFC:[MD5.E03E8C99D15D0381E02743C36AFC7C6F] - 03/09/2013 - 07:59:45 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [21560]
O44 - LFC:[MD5.5BD29D71B0C25CA021FC55F0710884D7] - 03/09/2013 - 07:59:44 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [110136]
O44 - LFC:[MD5.59B00EFB24EAD979BECF413703BB1FAC] - 03/09/2013 - 07:59:44 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [17976]
O44 - LFC:[MD5.6DA4A0FC7C0E83DF0CB3CFD0A514C3BC] - 03/09/2013 - 07:59:44 ---A- . (.Microsoft Corporation - NativeWiFi Miniport Driver.) -- C:\Windows\System32\Drivers\nwifi.sys [154624]
O44 - LFC:[MD5.24F15B0C541AE19B3B523D40C092084B] - 03/09/2013 - 07:59:44 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [45112]
O44 - LFC:[MD5.80DC0C9BCB579ED9815001A4D37CBFD5] - 03/09/2013 - 07:59:44 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [211000]
O44 - LFC:[MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - 03/09/2013 - 07:59:20 ---A- . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe [2923520]
O44 - LFC:[MD5.C6E246BE0C525762C474F7EC758A70A9] - 03/09/2013 - 07:58:54 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\System32\wintrust.dll [171520]
O44 - LFC:[MD5.F4AFBEB2BD4972F57C53CB8D54561C4E] - 03/09/2013 - 07:58:27 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [494592]
O44 - LFC:[MD5.67FEFD286869A5EC50257AC62DCBA2B7] - 03/09/2013 - 07:58:26 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1233920]
O44 - LFC:[MD5.0A829977B078DEA11641FC2AF87CEADE] - 03/09/2013 - 07:58:26 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [408136]
O44 - LFC:[MD5.8B8DF4AE8B98BB671E1DAB65C72411B4] - 03/09/2013 - 07:58:26 ---A- . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll [175104]
O44 - LFC:[MD5.C731B1FE449D4E9CEA358C9D55B69BE9] - 03/09/2013 - 07:58:26 ---A- . (.Microsoft Corporation - Processus de l'autorité de sécurité locale.) -- C:\Windows\System32\lsass.exe [7680]
O44 - LFC:[MD5.68410CF6FB13CED160EF0149EABFC35C] - 03/09/2013 - 07:58:26 ---A- . (.Microsoft Corporation - Security Support Provider Interface.) -- C:\Windows\System32\secur32.dll [72704]
O44 - LFC:[MD5.4F34903E7989C6EDDAAABDEE6E01D381] - 03/09/2013 - 07:58:25 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll [272384]
O44 - LFC:[MD5.478E97832B2BDC1E13735696EE416EAF] - 03/09/2013 - 07:57:56 ---A- . (.Microsoft Corporation - WinPE network installer.) -- C:\Windows\System32\netcfg.exe [24064]
O44 - LFC:[MD5.AEAE2CD378B846A5595716218C500DF9] - 03/09/2013 - 07:57:30 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0020.dll [1236992]
O44 - LFC:[MD5.6C21B3A9EAF9CFFB619F266620E2A555] - 03/09/2013 - 07:57:30 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0045.dll [1793536]
O44 - LFC:[MD5.CF40A8209EC0B9A59525E677911D4E5F] - 03/09/2013 - 07:57:30 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0046.dll [1808896]
O44 - LFC:[MD5.F9A8B225AD0F3A05D9E84852AB193279] - 03/09/2013 - 07:57:30 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0047.dll [1411072]
O44 - LFC:[MD5.BEEC0D1C722380C44F7B63FCA9C8FE16] - 03/09/2013 - 07:57:30 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0049.dll [1558016]
O44 - LFC:[MD5.9828203356BB52FE42A719B4C7EE3B04] - 03/09/2013 - 07:57:29 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0021.dll [2136064]
O44 - LFC:[MD5.5BC5CCFD94B0724CD4A4FB1181C2AC2F] - 03/09/2013 - 07:57:29 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0022.dll [5499904]
O44 - LFC:[MD5.5F58DCFA004A8334B0429A53D8E50356] - 03/09/2013 - 07:57:29 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0039.dll [1782272]
O44 - LFC:[MD5.5D9B7446A72B8CEB5C4B8BC1B0D51997] - 03/09/2013 - 07:57:28 ---A- . (.Microsoft Corporation - Microsoft Neutral Natural Language Serv
0

Discussions similaires

qu'est-ce que diff message ?
zebulonmarie -
mumu -

18 réponses
Instagram "Désolé, une erreur s'est produite"
bananamilk -
cedric.masdeb -

60 réponses
Comment reconnaitre si un SMS m'indiquant un message vocal est une arnaque ?
kikidefer -
brucine -

9 réponses
Erreur vidéo inconnue sur le Freebox Player
mouhaaV2.0 -
Perejoe59 -

60 réponses
Free erreur 38 : impossible d'envoyer des SMS
warnawak -
marcellou -

58 réponses