Scan report
dermocuivre
Messages postés
3
Date d'inscription
Statut
Membre
Dernière intervention
-
dermocuivre Messages postés 3 Date d'inscription Statut Membre Dernière intervention -
dermocuivre Messages postés 3 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
voila 3 scan report que j'ai fait avec des logiciels qui reviennent souvent sur le forum, je suis rediriger vers des après de pubs après avoir fait une recherche google
scan 1
Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 06:59:41, on 13/02/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\System32\CtHelper.exe
C:\Windows\vspc1300.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
D:\## Games ##\Steam\steam.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [spc1300] C:\Windows\vspc1300.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Steam] "d:\## games ##\steam\steam.exe" -silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CtxfiReg] CTXFIREG.exe /FAIL1 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CtxfiReg] CTXFIREG.exe /FAIL1 (User 'Default user')
O4 - Startup: Notification de cadeaux MSN.lnk = Dermo\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15111/CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Ventrilo - Unknown owner - C:\Program Files\VentSrv\ventrilo_svc.exe
--
End of file - 6728 bytes
scan 2
Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3718
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
13/02/2010 07:06:44
mbam-log-2010-02-13 (07-06-38).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 230568
Temps écoulé: 19 minute(s), 17 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
D:\Mes Documents\Logiciels\hfs242.exe (Malware.Tool) -> No action taken.
scan 3
Rapport de ZHPDiag v1.25.114 par Nicolas Coolman
Run by Dermo at 13/02/2010 06:57:55
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox (3.6)
---\\ System Information
Platform : Windows 7 Ultimate (6.1.7600)
Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3327 MB (60% free)
System drive C: has 39 GB (56%) free of 69 GB
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 39 Go of 69 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 716 Go of 932 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
---\\ Processus lancés
[MD5.A42DBD6A193BF3C790C9C9A1EF216770] - (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
[MD5.C7C5264BAA313E4CC7BDD2955D410302] - (.Advanced Micro Devices, Inc. - ATI Customer Care.) -- C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe
[MD5.D1FB260EE5C88B26BF798810130C9590] - (.Sonix - CameraMonitor Application.) -- C:\Windows\vspc1300.exe
[MD5.E0D6538B62C79FCBF0B27F95FAF3208B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[MD5.318270684C812E88FE63DC4C3021FC2B] - (.ALWIL Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
[MD5.466CE40EAA865752F4930A472563E4E1] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[MD5.73BB442A717B9BB0097C243374C14A3E] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.18B4B12358EFCF68D76812058A26181F] - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
[MD5.A740B005ADD7DEBEAF922C4AE86F7C2D] - (.Valve Corporation - Steam 732897.) -- d:\## games ##\steam\steam.exe
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
[MD5.4B7A840613734F1FE0D102346640E300] - (.Crawler.com - Crawler Spyware Terminator.) -- C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
[MD5.EA6EADF6314E43783BA8EEE79F93F73C] - (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
[MD5.BBA1A5B86134F496B926DDAF247DB871] - (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
[MD5.62A91789C1165E86196980827FEF492E] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe
[MD5.54A47F6B5E09A77E61649109C6A08866] - (.Microsoft Corporation - Host Process for Windows Services.) -- C:\Windows\System32\svchost.exe
[MD5.61D3B90C1600165110470502835FB646] - (.ALWIL Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
[MD5.3F56903E124E820AEECE6D471583C6C1] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
[MD5.87CB26A58E2B8BF57F4FC92838318C12] - (.Creative Technology Ltd - Creative Audio Service.) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
[MD5.A1DD33D16F277CE34124EE52AB2C0F14] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\PnkBstrA.exe
[MD5.F42309C4191C506B71DB5D1126D26318] - (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
[MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
[MD5.49B6DD6AB3715B7A67965F17194E98A9] - (.Microsoft Corporation - Spooler SubSystem App.) -- C:\Windows\System32\spoolsv.exe
[MD5.4C287F9069FEDBD791178876EE9DE536] - (.Microsoft Corporation - Microsoft Software Protection Platform Serv.) -- C:\Windows\system32\sppsvc.exe
[MD5.7601CC42B6382FA03C3F55A663761D3B] - (.Crawler.com - Spyware Terminator Realtime Shield Service.) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
[MD5.9A5724F90FD12CFF67CB6B7D7DE5E018] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\VentSrv\ventrilo_svc.exe
[MD5.77FBD400984CF72BA0FC4B3489D65F74] - (.Microsoft Corporation - Windows Media Player Network Sharing Servic.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
[MD5.622D95520182F6D3D05310D5810CA8B3] - (.Microsoft Corporation - Microsoft Windows Search Indexer.) -- C:\Windows\system32\SearchIndexer.exe
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=explorer.exe
---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [ATICustomerCare] . (.Advanced Micro Devices, Inc. - ATI Customer Care.) -- C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe
O4 - HKLM\..\Run: [spc1300] . (.Sonix - CameraMonitor Application.) -- C:\Windows\vspc1300.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast5] . (.ALWIL Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam 732897.) -- d:\## games ##\steam\steam.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] . (.Crawler.com - Crawler Spyware Terminator.) -- C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\Run: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - Global Startup: Notification de cadeaux MSN.lnk . (.Pas de propriétaire - Pas de description.) -- C:\Users\Dermo\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} . (.Apple Inc. - Bonjour Resource Module.) -- C:\Program Files\Bonjour\ExplorerPlugin.Resources\ExplorerPluginResources.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) -
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15111/CTPID.cab
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (.not file.)
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: (avast! Antivirus) . (.ALWIL Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (CTAudSvcService) . (.Creative Technology Ltd - Creative Audio Service.) - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: (PnkBstrA) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\PnkBstrA.exe
O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: (sp_rssrv) . (.Crawler.com - Spyware Terminator Realtime Shield Service.) - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: (Ventrilo) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\VentSrv\ventrilo_svc.exe
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\WPFHWKHPX.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r42.) -- C:\Windows\system32\Macromed\Flash\Flash10d.ocx
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (sp_rsdrv2) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\sp_rsdrv2.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: AMD DnD V1.0.19 - (.AMD.)
O42 - Logiciel: ATI Catalyst Registration - (.ATI Technologies Inc..)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..)
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.)
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.)
O42 - Logiciel: Adobe Reader 9.3 - Français - (.Adobe Systems Incorporated.)
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: BS Contact - (.Pas de propriétaire.)
O42 - Logiciel: Battlefield Bad Company 2 Beta - (.DICE.)
O42 - Logiciel: Bonjour - (.Apple Inc..)
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.)
O42 - Logiciel: Counter-Strike - (.Valve.)
O42 - Logiciel: Counter-Strike: Source - (.Valve.)
O42 - Logiciel: Creative Audio Console - (.Creative Technology Limited.)
O42 - Logiciel: Creative Software AutoUpdate - (.Creative Technology Limited.)
O42 - Logiciel: Crysis WARHEAD(R) - (.Crytek.)
O42 - Logiciel: Crysis WARHEAD(R) - (.Electronic Arts.)
O42 - Logiciel: Digsby - (.dotSyntax, LLC.)
O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..)
O42 - Logiciel: EA Download Manager UI - (.Electronic Arts.)
O42 - Logiciel: ESET Online Scanner v3 - (.Pas de propriétaire.)
O42 - Logiciel: Fraps - (.Pas de propriétaire.)
O42 - Logiciel: Futuremark SystemInfo - (.Futuremark Corporation.)
O42 - Logiciel: Half-Life 2 - (.Valve.)
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..)
O42 - Logiciel: MSVCRT - (.Microsoft.)
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.)
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.)
O42 - Logiciel: Mozilla Firefox (3.6) - (.Mozilla.)
O42 - Logiciel: Mumble and Murmur - (.Mumble.)
O42 - Logiciel: OpenAL - (.Pas de propriétaire.)
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: PeerGuardian 2.0 - (.Methlabs Productions.)
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..)
O42 - Logiciel: Skype™ 4.1 - (.Skype Technologies S.A..)
O42 - Logiciel: Source SDK Base - (.Valve.)
O42 - Logiciel: SpeedFan (remove only) - (.Pas de propriétaire.)
O42 - Logiciel: Spotify - (.Pas de propriétaire.)
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.)
O42 - Logiciel: Spyware Terminator - (.Crawler Inc..)
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.)
O42 - Logiciel: Tunatic - (.Pas de propriétaire.)
O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.)
O42 - Logiciel: Ventrilo Client - (.Flagship Industries, Inc..)
O42 - Logiciel: Ventrilo Server - (.Flagship Industries, Inc..)
O42 - Logiciel: WinPatrol 2009 - (.BillP Studios.)
O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.)
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.)
O42 - Logiciel: ZebHelpProcess 2.34 - (.Nicolas Coolman.)
O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.)
O42 - Logiciel: mIRC - (.mIRC Co. Ltd..)
O42 - Logiciel: µTorrent - (.Pas de propriétaire.)
---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\BillP Studios
O43 - CFD:Common File Directory ----D- C:\Program Files\Bitmanagement Software
O43 - CFD:Common File Directory ----D- C:\Program Files\Bonjour
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files\Creative
O43 - CFD:Common File Directory ----D- C:\Program Files\DAEMON Tools Lite
O43 - CFD:Common File Directory ----D- C:\Program Files\Digsby
O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\Electronic Arts
O43 - CFD:Common File Directory ----D- C:\Program Files\ESET
O43 - CFD:Common File Directory ----D- C:\Program Files\Fraps
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Intel
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files\mIRC
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\Mumble
O43 - CFD:Common File Directory ----D- C:\Program Files\OpenAL
O43 - CFD:Common File Directory ----D- C:\Program Files\PeerGuardian2
O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies
O43 - CFD:Common File Directory R---D- C:\Program Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files\SpeedFan
O43 - CFD:Common File Directory ----D- C:\Program Files\Spotify
O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD:Common File Directory ----D- C:\Program Files\Spyware Terminator
O43 - CFD:Common File Directory ----D- C:\Program Files\TeamSpeak 3 Client
O43 - CFD:Common File Directory ----D- C:\Program Files\TrendMicro
O43 - CFD:Common File Directory ----D- C:\Program Files\Tunatic
O43 - CFD:Common File Directory ----D- C:\Program Files\uTorrent
O43 - CFD:Common File Directory ----D- C:\Program Files\Ventrilo
O43 - CFD:Common File Directory ----D- C:\Program Files\VentSrv
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live Safety Center
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Portable Devices
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar
O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR
O43 - CFD:Common File Directory ----D- C:\Program Files\ZebHelpProcess
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe AIR
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Borland Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Creative Labs Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Futuremark Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Steam
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Wise Installation Wizard
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.00000000000000000000000000000000] - 13/02/2010 - 06:53:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log
O44 - LFC:[MD5.00000000000000000000000000000000] - 13/02/2010 - 06:43:30 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\PDOXUSRS.NET
O44 - LFC:[MD5.A2B6B1BFC1DEB07B8F6D831203D00CD5] - 13/02/2010 - 06:01:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log
O44 - LFC:[MD5.CD2EC9BD7685D0D1B6E35FE132F108CF] - 13/02/2010 - 06:01:24 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat
O44 - LFC:[MD5.1877744B24FC81698A3F5C40BBDB1D79] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\BMXBkpCtrlState-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.1877744B24FC81698A3F5C40BBDB1D79] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\BMXCtrlState-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.CD68682DFB3A863D7F460811CF4806F9] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\BMXState-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.CD68682DFB3A863D7F460811CF4806F9] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\BMXStateBkp-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.FDA10FEA8A7084F2582FE847D76DBC75] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\DVCState-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.5D5F2F0144B75B9A6611B26F3806DDC2] - 13/02/2010 - 06:00:36 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\{00000002-00000000-00000000-00001102-00000004-20021102}.BAK
O44 - LFC:[MD5.00000000000000000000000000000000] - 13/02/2010 - 06:00:36 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\{00000002-00000000-00000000-00001102-00000004-20021102}.CDF
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 13/02/2010 - 05:59:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\config.nt
O44 - LFC:[MD5.A0160AD4CE53CDB21ABC67F6B6E1E07B] - 11/02/2010 - 19:53:57 ---A- . (.ALWIL Software - avast! Screen Saver stub.) -- C:\Windows\System32\avastSS.scr
O44 - LFC:[MD5.61C5F7D57D5D91003A9CAAB01DF61883] - 11/02/2010 - 19:53:36 ---A- . (.ALWIL Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe
O44 - LFC:[MD5.EC8EF1CE2D6CA1071BE8B7888FFA48C0] - 11/02/2010 - 19:42:34 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\System32\drivers\aswTdi.sys
O44 - LFC:[MD5.67DB88B01FC1D815968230458814EB8D] - 11/02/2010 - 19:42:13 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys
O44 - LFC:[MD5.CC40B9C301AF5D145713B2764EEC3907] - 11/02/2010 - 19:39:01 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\System32\drivers\aswRdr.sys
O44 - LFC:[MD5.1BA678226FCF8EA47793C99992E8EE31] - 11/02/2010 - 19:38:45 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys
O44 - LFC:[MD5.A289930E70F3FA3B07DF80D2B052794E] - 11/02/2010 - 19:38:23 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\drivers\aswFsBlk.sys
O44 - LFC:[MD5.10BE25C04613B70D8CE1F412E14D9454] - 10/02/2010 - 10:25:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\PnkBstrK.sys
O44 - LFC:[MD5.9A386EC60A166DF66205343CA12C6B86] - 10/02/2010 - 10:25:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrB.exe
O44 - LFC:[MD5.9A386EC60A166DF66205343CA12C6B86] - 10/02/2010 - 10:25:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrB.xtr
O44 - LFC:[MD5.8831252BCF05FCFB5ABD116A22E552D8] - 10/02/2010 - 06:05:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\sp_rsdrv2.sys
O44 - LFC:[MD5.18DCAA0D7981EC3DA51D7BA7BD866674] - 10/02/2010 - 05:53:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/02/2010 - 08:54:15 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
O44 - LFC:[MD5.87E5AAE1AA9431EF1DDEDC46D2145BDB] - 08/02/2010 - 07:27:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setup.log
O44 - LFC:[MD5.E4DA8F4DCC53E979A25461F63499F712] - 08/02/2010 - 07:00:35 ---A- . (.Sony DADC Austria AG. - SecuROM context menu for Explorer..) -- C:\Windows\System32\CmdLineExt.dll
O44 - LFC:[MD5.779F855DBA9348B05067EAC40B4EAFED] - 08/02/2010 - 06:35:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ealregsnapshot1.reg
O44 - LFC:[MD5.FB260EA651B32BA67BE41C5EA4FB2D3F] - 04/02/2010 - 22:02:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PerfStringBackup.INI
O44 - LFC:[MD5.4BAB810C8FC9E2AA406FD9F6FD4E4913] - 04/02/2010 - 22:02:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfc009.dat
O44 - LFC:[MD5.45D7364AD19A34E0CA5E514C820D4A6D] - 04/02/2010 - 22:02:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfh009.dat
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 02/02/2010 - 07:29:20 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
O44 - LFC:[MD5.A1DD33D16F277CE34124EE52AB2C0F14] - 28/01/2010 - 20:56:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrA.exe
O44 - LFC:[MD5.97AE01E23FB8D7048377AB08D1938711] - 28/01/2010 - 20:56:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\pbsvc_bc2.exe
O44 - LFC:[MD5.E0BBCEC12A1DE6E25C612AD205B719B4] - 28/01/2010 - 00:13:36 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\deploytk.dll
O44 - LFC:[MD5.AD3A2226B72F6E161425254276670117] - 28/01/2010 - 00:13:36 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe
O44 - LFC:[MD5.B427962BDB196D132AF50F6C7B78380D] - 28/01/2010 - 00:13:36 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe
O44 - LFC:[MD5.C8824405C4E358A2FE4D97C83101079A] - 28/01/2010 - 00:13:36 ---A- . (.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 27/01/2010 - 23:59:53 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\Msft_Kernel_phaudlwr_01005.Wdf
O44 - LFC:[MD5.A4001C78F2806662B3BD91ACB44E6330] - 19/01/2010 - 11:47:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\initdebug.nfo
O44 - LFC:[MD5.D22F4883D4B7EFD2516518461F5E138A] - 18/01/2010 - 19:54:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\maestro-server.log
O44 - LFC:[MD5.3765168F6C4F2D9B7E2255BDD0C52BDE] - 18/01/2010 - 03:46:22 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ezsidmv.dat
O44 - LFC:[MD5.8F0F15233F1384BF813D4EB3597B14D4] - 18/01/2010 - 02:19:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
O44 - LFC:[MD5.D494267BC169604FAC5E3679B9A97FED] - 18/01/2010 - 01:33:51 ---A- . (.Creative Labs - OpenAL32.) -- C:\Windows\System32\wrap_oal.dll
O44 - LFC:[MD5.235355A8DD26903E75D5E812ECF50E53] - 18/01/2010 - 01:33:51 ---A- . (.Portions (C) Creative Labs Inc. and NVIDIA - Standard OpenAL(TM) Implementation.) -- C:\Windows\System32\OpenAL32.dll
O44 - LFC:[MD5.2CD53BF70E1FF9A16E3087302D3AAA56] - 18/01/2010 - 01:33:51 R-HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\ctfile.rfc
O44 - LFC:[MD5.ED3AA2EB736B1DAA9BD82F7E13E8860A] - 17/01/2010 - 19:45:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\FNTCACHE.DAT
O44 - LFC:[MD5.E73694DCFE105A03479692A90E021AAD] - 17/01/2010 - 19:44:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\license.rtf
O44 - LFC:[MD5.43847ABEC85EEB2CC6A7BCB6867D1838] - 17/01/2010 - 19:44:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\TSSysprep.log
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/01/2010 - 19:43:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\ativpsrm.bin
O44 - LFC:[MD5.47B2DC29D01E6AEAA4072337905A9FD6] - 17/01/2010 - 19:42:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\DtcInstall.log
---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"VIDC.FPS1"="frapsvid.dll" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"frapsvid.dll"="Fraps Video Decompressor" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll
---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll
---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys
O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 14/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys
O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys
O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys
O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 14/07/2009 - 02:26:15 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys
O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 14/07/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys
O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 14/07/2009 - 02:26:15 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys
O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys
O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys
O58 - SDL:[MD5.D48659BB24C48345D926ECB45C1EBDF5] - 13/08/2004 - 09:56:20 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\system32\drivers\ASACPI.sys
O58 - SDL:[MD5.A289930E70F3FA3B07DF80D2B052794E] - 11/02/2010 - 19:38:23 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys
O58 - SDL:[MD5.1BA678226FCF8EA47793C99992E8EE31] - 11/02/2010 - 19:38:45 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys
O58 - SDL:[MD5.CC40B9C301AF5D145713B2764EEC3907] - 11/02/2010 - 19:39:01 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys
O58 - SDL:[MD5.67DB88B01FC1D815968230458814EB8D] - 11/02/2010 - 19:42:13 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys
O58 - SDL:[MD5.EC8EF1CE2D6CA1071BE8B7888FFA48C0] - 11/02/2010 - 19:42:34 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys
O58 - SDL:[MD5.40A07E6916AC098E31A9E39AC202B8A1] - 30/09/2009 - 15:33:56 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys
O58 - SDL:[MD5.FCD4C95B1CB2A7DFBF8DF5609C74734A] - 25/11/2009 - 04:51:32 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys
O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 13/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60x.sys
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys
O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14/07/2009 - 01:57:25 ---A- . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 13/07/2009 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys
O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys
O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14/07/2009 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys
O58 - SDL:[MD5.8ED4497E4CC0C030EAC8E2FFA1DD9679] - 23/06/2009 - 13:34:30 ---A- . (.Creative Technology Ltd - Creative Common FX Plug-in.) -- C:\Windows\system32\drivers\COMMONFX.sys
O58 - SDL:[MD5.BD18D9271BC85BF2EA74370AB2D9D6AD] - 23/06/2009 - 13:36:02 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\Windows\system32\drivers\CT0531FL.SYS
O58 - SDL:[MD5.C1E3B24CA4871BD2A8C3B95110E78721] - 23/06/2009 - 13:36:14 ---A- . (.Creative Technology Ltd - Creative AC3 SW Decoder Device Driver (WDM).) -- C:\Windows\system32\drivers\ctac32k.sys
O58 - SDL:[MD5.13E797253EA98C2574C878DE78CA691E] - 23/06/2009 - 13:36:24 ---A- . (.Creative Technology Ltd - Creative WDM Audio Device Driver.) -- C:\Windows\system32\drivers\ctaud2k.sys
O58 - SDL:[MD5.AB3456984B59D1425BEFC0D457D41DD4] - 23/06/2009 - 13:34:40 ---A- . (.Creative Technology Ltd - Creative SB FX Plug-in.) -- C:\Windows\system32\drivers\CTAUDFX.sys
O58 - SDL:[MD5.D5E38C394787C1FBFC70E0C50345C25C] - 23/06/2009 - 13:36:36 ---A- . (.Creative Technology Ltd - Creative DVD-Audio Device Driver (WDM).) -- C:\Windows\system32\drivers\ctdvda2k.sys
O58 - SDL:[MD5.B4297863E9FCE34C0493FCA66F0970A2] - 23/06/2009 - 13:35:04 ---A- . (.Creative Technology Ltd - E-MU E-DSP Effects Plugin Module.) -- C:\Windows\system32\drivers\CTERFXFX.sys
O58 - SDL:[MD5.49F4AC5788E97561C2D652CAC5956212] - 23/06/2009 - 13:37:00 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\Windows\system32\drivers\CTMMFILT.SYS
O58 - SDL:[MD5.4B8AABB697AE81A61395A19CE4447D49] - 23/06/2009 - 13:37:10 ---A- . (.Creative Technology Ltd. - Creative OS Services Driver (WDM).) -- C:\Windows\system32\drivers\ctoss2k.sys
O58 - SDL:[MD5.D19AB3A7DF104250429000F26E0D4049] - 23/06/2009 - 13:37:22 ---A- . (.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) -- C:\Windows\system32\drivers\ctprxy2k.sys
O58 - SDL:[MD5.D665DA6B6AEA45B9DB090096F2AEF023] - 23/06/2009 - 13:34:52 ---A- . (.Creative Technology Ltd - Creative SB FX Plug-in.) -- C:\Windows\system32\drivers\CTSBLFX.sys
O58 - SDL:[MD5.27C23069325ACDC27021671424F11BC1] - 23/06/2009 - 13:37:32 ---A- . (.Creative Technology Ltd - SoundFont(R) Manager (WDM).) -- C:\Windows\system32\drivers\ctsfm2k.sys
O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 14/07/2009 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys
O58 - SDL:[MD5.22EF8965101685ADD128F03A2B03CE16] - 13/07/2009 - 23:02:50 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G60I32.sys
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 14/07/2009 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys
O58 - SDL:[MD5.D03A26D94F3A24CC6C32D70BD63BAEAA] - 23/06/2009 - 13:37:54 ---A- . (.Creative Technology Ltd - E-mu Plug-in Architecture Driver (WDM).) -- C:\Windows\system32\drivers\emupia2k.sys
O58 - SDL:[MD5.16EBD8BF1D5090923694CC972C7CE1B4] - 20/08/2007 - 11:05:02 ---A- . (.EnTech Taiwan - Pas de description.) -- C:\Windows\system32\drivers\Entech.sys
O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys
O58 - SDL:[MD5.F5CB6CB6D12F495516BE27CFFCCDE4BF] - 13/07/2009 - 23:02:53 ---A- . (.VIA Technologies, Inc. - NDIS 6.0 miniport driver.) -- C:\Windows\system32\drivers\fetnd6.sys
O58 - SDL:[MD5.F5F17B523E467FA3DDA7D9A40D296961] - 23/06/2009 - 13:38:06 ---A- . (.Creative Technology Ltd - Creative EMU10KX HAL (WDM).) -- C:\Windows\system32\drivers\ha10kx2k.sys
O58 - SDL:[MD5.ADF0ED3569ADC0B527687AA3F924AB5F] - 10/04/2007 - 06:03:12 ---A- . (.Creative Technology Ltd - Creative 20X HAL (WDM).) -- C:\Windows\system32\drivers\ha20x2k.sys
O58 - SDL:[MD5.42C81F4691681DED6E1FC639AABED570] - 23/06/2009 - 13:38:16 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P16v HAL (WDM).) -- C:\Windows\system32\drivers\haP16v2k.sys
O58 - SDL:[MD5.29EE8F6FCD5E9B206C0D91923E882F6A] - 23/06/2009 - 13:38:26 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P17v HAL (WDM).) -- C:\Windows\system32\drivers\haP17v2k.sys
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys
O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 14/07/2009 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys
O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys
O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys
O58 - SDL:[MD5.8C804B1FFAD1EFA952B747E8285C3B76] - 13/07/2009 - 23:02:47 ---A- . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20.) -- C:\Windows\system32\drivers\L1E62x86.sys
O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys
O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 14/07/2009 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys
O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys
O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys
O58 - SDL:[MD5.654A3F014903DC62CAF5E037F3D316D2] - 07/01/2010 - 16:07:04 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys
O58 - SDL:[MD5.C0D40BEAA6DFC05602FC8F484696F7F5] - 07/01/2010 - 16:07:14 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys
O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys
O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys
O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 14/07/2009 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys
O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 14/07/2009 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys
O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 14/07/2009 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys
O58 - SDL:[MD5.789150C11497D8706515FC939436D838] - 23/06/2009 - 13:38:36 ---A- . (.Creative Technology Ltd. - PCI/ISA Device Info. Service.) -- C:\Windows\system32\drivers\pfmodnt.sys
O58 - SDL:[MD5.021968ED24B4E44BABAF11FBF8C4FB86] - 21/10/2009 - 01:20:34 ---A- . (.Philips Applied Technologies - Philips USB Audio Processing Filter.) -- C:\Windows\system32\drivers\phaudlwr.sys
O58 - SDL:[MD5.10BE25C04613B70D8CE1F412E14D9454] - 10/02/2010 - 10:25:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\PnkBstrK.sys
O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys
O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys
O58 - SDL:[MD5.027158280EDF528EE322CFD00AE9E9BE] - 03/06/2009 - 00:35:00 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\system32\drivers\rt61.sys
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/07/2009 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys
O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys
O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys
O58 - SDL:[MD5.3F9DB70C3C55194BEEAEFEB6A26571C6] - 13/11/2007 - 11:32:36 ---A- . (.Pas de propriétaire - Philips Camera Streaming Driver.) -- C:\Windows\system32\drivers\spc1300.sys
O58 - SDL:[MD5.66B917E4AD0C6DBEDAF0159AC241576A] - 13/11/2007 - 11:32:42 ---A- . (.Pas de propriétaire - Philips Camera Streaming Driver.) -- C:\Windows\system32\drivers\spc1300c.sys
O58 - SDL:[MD5.00000000000000000000000000000000] - 08/02/2010 - 02:50:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\sptd.sys
O58 - SDL:[MD5.8831252BCF05FCFB5ABD116A22E552D8] - 10/02/2010 - 06:05:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\sp_rsdrv2.sys
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 14/07/2009 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys
O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14/07/2009 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys
O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 14/07/2009 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\ANSI.SYS
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 22:40:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\country.sys
O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 03/04/1996 - 20:33:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\giveio.sys
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 22:40:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\HIMEM.SYS
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEY01.SYS
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEYBOARD.SYS
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 22:40:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS.SYS
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 22:40:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS404.SYS
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 22:40:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS411.SYS
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 22:40:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS412.SYS
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 22:40:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS804.SYS
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 22:40:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO.SYS
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 22:40:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO404.SYS
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 22:40:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO411.SYS
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 22:40:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO412.SYS
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 22:40:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO804.SYS
O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 24/09/2006 - 14:28:46 ---A- . (.Windows (R) 2000 DDK provider - SpeedFan Device Driver.) -- C:\Windows\system32\speedfan.sys
---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)
O63 - Logiciel: HiJackThis - (.Trend Micro.)
End of the scan (482 lines)
voila 3 scan report que j'ai fait avec des logiciels qui reviennent souvent sur le forum, je suis rediriger vers des après de pubs après avoir fait une recherche google
scan 1
Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 06:59:41, on 13/02/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\System32\CtHelper.exe
C:\Windows\vspc1300.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
D:\## Games ##\Steam\steam.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [spc1300] C:\Windows\vspc1300.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Steam] "d:\## games ##\steam\steam.exe" -silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CtxfiReg] CTXFIREG.exe /FAIL1 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CtxfiReg] CTXFIREG.exe /FAIL1 (User 'Default user')
O4 - Startup: Notification de cadeaux MSN.lnk = Dermo\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15111/CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Ventrilo - Unknown owner - C:\Program Files\VentSrv\ventrilo_svc.exe
--
End of file - 6728 bytes
scan 2
Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3718
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
13/02/2010 07:06:44
mbam-log-2010-02-13 (07-06-38).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 230568
Temps écoulé: 19 minute(s), 17 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
D:\Mes Documents\Logiciels\hfs242.exe (Malware.Tool) -> No action taken.
scan 3
Rapport de ZHPDiag v1.25.114 par Nicolas Coolman
Run by Dermo at 13/02/2010 06:57:55
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox (3.6)
---\\ System Information
Platform : Windows 7 Ultimate (6.1.7600)
Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3327 MB (60% free)
System drive C: has 39 GB (56%) free of 69 GB
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 39 Go of 69 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 716 Go of 932 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
---\\ Processus lancés
[MD5.A42DBD6A193BF3C790C9C9A1EF216770] - (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
[MD5.C7C5264BAA313E4CC7BDD2955D410302] - (.Advanced Micro Devices, Inc. - ATI Customer Care.) -- C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe
[MD5.D1FB260EE5C88B26BF798810130C9590] - (.Sonix - CameraMonitor Application.) -- C:\Windows\vspc1300.exe
[MD5.E0D6538B62C79FCBF0B27F95FAF3208B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[MD5.318270684C812E88FE63DC4C3021FC2B] - (.ALWIL Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
[MD5.466CE40EAA865752F4930A472563E4E1] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
[MD5.73BB442A717B9BB0097C243374C14A3E] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.18B4B12358EFCF68D76812058A26181F] - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
[MD5.A740B005ADD7DEBEAF922C4AE86F7C2D] - (.Valve Corporation - Steam 732897.) -- d:\## games ##\steam\steam.exe
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
[MD5.4B7A840613734F1FE0D102346640E300] - (.Crawler.com - Crawler Spyware Terminator.) -- C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
[MD5.EA6EADF6314E43783BA8EEE79F93F73C] - (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
[MD5.BBA1A5B86134F496B926DDAF247DB871] - (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
[MD5.62A91789C1165E86196980827FEF492E] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe
[MD5.54A47F6B5E09A77E61649109C6A08866] - (.Microsoft Corporation - Host Process for Windows Services.) -- C:\Windows\System32\svchost.exe
[MD5.61D3B90C1600165110470502835FB646] - (.ALWIL Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
[MD5.3F56903E124E820AEECE6D471583C6C1] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
[MD5.87CB26A58E2B8BF57F4FC92838318C12] - (.Creative Technology Ltd - Creative Audio Service.) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
[MD5.A1DD33D16F277CE34124EE52AB2C0F14] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\PnkBstrA.exe
[MD5.F42309C4191C506B71DB5D1126D26318] - (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
[MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
[MD5.49B6DD6AB3715B7A67965F17194E98A9] - (.Microsoft Corporation - Spooler SubSystem App.) -- C:\Windows\System32\spoolsv.exe
[MD5.4C287F9069FEDBD791178876EE9DE536] - (.Microsoft Corporation - Microsoft Software Protection Platform Serv.) -- C:\Windows\system32\sppsvc.exe
[MD5.7601CC42B6382FA03C3F55A663761D3B] - (.Crawler.com - Spyware Terminator Realtime Shield Service.) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
[MD5.9A5724F90FD12CFF67CB6B7D7DE5E018] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\VentSrv\ventrilo_svc.exe
[MD5.77FBD400984CF72BA0FC4B3489D65F74] - (.Microsoft Corporation - Windows Media Player Network Sharing Servic.) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
[MD5.622D95520182F6D3D05310D5810CA8B3] - (.Microsoft Corporation - Microsoft Windows Search Indexer.) -- C:\Windows\system32\SearchIndexer.exe
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=explorer.exe
---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [ATICustomerCare] . (.Advanced Micro Devices, Inc. - ATI Customer Care.) -- C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe
O4 - HKLM\..\Run: [spc1300] . (.Sonix - CameraMonitor Application.) -- C:\Windows\vspc1300.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast5] . (.ALWIL Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\avastUI.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam 732897.) -- d:\## games ##\steam\steam.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] . (.Crawler.com - Crawler Spyware Terminator.) -- C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\Run: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - Global Startup: Notification de cadeaux MSN.lnk . (.Pas de propriétaire - Pas de description.) -- C:\Users\Dermo\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} . (.Apple Inc. - Bonjour Resource Module.) -- C:\Program Files\Bonjour\ExplorerPlugin.Resources\ExplorerPluginResources.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) -
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15111/CTPID.cab
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (.not file.)
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: (avast! Antivirus) . (.ALWIL Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: (CTAudSvcService) . (.Creative Technology Ltd - Creative Audio Service.) - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: (PnkBstrA) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\PnkBstrA.exe
O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: (sp_rssrv) . (.Crawler.com - Spyware Terminator Realtime Shield Service.) - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: (Ventrilo) . (.Pas de propriétaire - Pas de description.) - C:\Program Files\VentSrv\ventrilo_svc.exe
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\WPFHWKHPX.job
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r42.) -- C:\Windows\system32\Macromed\Flash\Flash10d.ocx
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (sp_rsdrv2) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\sp_rsdrv2.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: AMD DnD V1.0.19 - (.AMD.)
O42 - Logiciel: ATI Catalyst Registration - (.ATI Technologies Inc..)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..)
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.)
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.)
O42 - Logiciel: Adobe Reader 9.3 - Français - (.Adobe Systems Incorporated.)
O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: BS Contact - (.Pas de propriétaire.)
O42 - Logiciel: Battlefield Bad Company 2 Beta - (.DICE.)
O42 - Logiciel: Bonjour - (.Apple Inc..)
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.)
O42 - Logiciel: Counter-Strike - (.Valve.)
O42 - Logiciel: Counter-Strike: Source - (.Valve.)
O42 - Logiciel: Creative Audio Console - (.Creative Technology Limited.)
O42 - Logiciel: Creative Software AutoUpdate - (.Creative Technology Limited.)
O42 - Logiciel: Crysis WARHEAD(R) - (.Crytek.)
O42 - Logiciel: Crysis WARHEAD(R) - (.Electronic Arts.)
O42 - Logiciel: Digsby - (.dotSyntax, LLC.)
O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..)
O42 - Logiciel: EA Download Manager UI - (.Electronic Arts.)
O42 - Logiciel: ESET Online Scanner v3 - (.Pas de propriétaire.)
O42 - Logiciel: Fraps - (.Pas de propriétaire.)
O42 - Logiciel: Futuremark SystemInfo - (.Futuremark Corporation.)
O42 - Logiciel: Half-Life 2 - (.Valve.)
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: Java(TM) 6 Update 18 - (.Sun Microsystems, Inc..)
O42 - Logiciel: MSVCRT - (.Microsoft.)
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.)
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.)
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.)
O42 - Logiciel: Mozilla Firefox (3.6) - (.Mozilla.)
O42 - Logiciel: Mumble and Murmur - (.Mumble.)
O42 - Logiciel: OpenAL - (.Pas de propriétaire.)
O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.)
O42 - Logiciel: PeerGuardian 2.0 - (.Methlabs Productions.)
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..)
O42 - Logiciel: Skype™ 4.1 - (.Skype Technologies S.A..)
O42 - Logiciel: Source SDK Base - (.Valve.)
O42 - Logiciel: SpeedFan (remove only) - (.Pas de propriétaire.)
O42 - Logiciel: Spotify - (.Pas de propriétaire.)
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.)
O42 - Logiciel: Spyware Terminator - (.Crawler Inc..)
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.)
O42 - Logiciel: Tunatic - (.Pas de propriétaire.)
O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.)
O42 - Logiciel: Ventrilo Client - (.Flagship Industries, Inc..)
O42 - Logiciel: Ventrilo Server - (.Flagship Industries, Inc..)
O42 - Logiciel: WinPatrol 2009 - (.BillP Studios.)
O42 - Logiciel: WinRAR archiver - (.Pas de propriétaire.)
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.)
O42 - Logiciel: Windows Live OneCare safety scanner - (.Microsoft Corporation.)
O42 - Logiciel: ZebHelpProcess 2.34 - (.Nicolas Coolman.)
O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.)
O42 - Logiciel: mIRC - (.mIRC Co. Ltd..)
O42 - Logiciel: µTorrent - (.Pas de propriétaire.)
---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI
O43 - CFD:Common File Directory ----D- C:\Program Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\BillP Studios
O43 - CFD:Common File Directory ----D- C:\Program Files\Bitmanagement Software
O43 - CFD:Common File Directory ----D- C:\Program Files\Bonjour
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files
O43 - CFD:Common File Directory ----D- C:\Program Files\Creative
O43 - CFD:Common File Directory ----D- C:\Program Files\DAEMON Tools Lite
O43 - CFD:Common File Directory ----D- C:\Program Files\Digsby
O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Maker
O43 - CFD:Common File Directory ----D- C:\Program Files\Electronic Arts
O43 - CFD:Common File Directory ----D- C:\Program Files\ESET
O43 - CFD:Common File Directory ----D- C:\Program Files\Fraps
O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files\Intel
O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games
O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD:Common File Directory ----D- C:\Program Files\mIRC
O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files\Mumble
O43 - CFD:Common File Directory ----D- C:\Program Files\OpenAL
O43 - CFD:Common File Directory ----D- C:\Program Files\PeerGuardian2
O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies
O43 - CFD:Common File Directory R---D- C:\Program Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files\SpeedFan
O43 - CFD:Common File Directory ----D- C:\Program Files\Spotify
O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD:Common File Directory ----D- C:\Program Files\Spyware Terminator
O43 - CFD:Common File Directory ----D- C:\Program Files\TeamSpeak 3 Client
O43 - CFD:Common File Directory ----D- C:\Program Files\TrendMicro
O43 - CFD:Common File Directory ----D- C:\Program Files\Tunatic
O43 - CFD:Common File Directory ----D- C:\Program Files\uTorrent
O43 - CFD:Common File Directory ----D- C:\Program Files\Ventrilo
O43 - CFD:Common File Directory ----D- C:\Program Files\VentSrv
O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live Safety Center
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Portable Devices
O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar
O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR
O43 - CFD:Common File Directory ----D- C:\Program Files\ZebHelpProcess
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe AIR
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\ATI Technologies
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Borland Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Creative Labs Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Futuremark Shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Steam
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Wise Installation Wizard
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.00000000000000000000000000000000] - 13/02/2010 - 06:53:22 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log
O44 - LFC:[MD5.00000000000000000000000000000000] - 13/02/2010 - 06:43:30 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\PDOXUSRS.NET
O44 - LFC:[MD5.A2B6B1BFC1DEB07B8F6D831203D00CD5] - 13/02/2010 - 06:01:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log
O44 - LFC:[MD5.CD2EC9BD7685D0D1B6E35FE132F108CF] - 13/02/2010 - 06:01:24 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat
O44 - LFC:[MD5.1877744B24FC81698A3F5C40BBDB1D79] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\BMXBkpCtrlState-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.1877744B24FC81698A3F5C40BBDB1D79] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\BMXCtrlState-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.CD68682DFB3A863D7F460811CF4806F9] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\BMXState-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.CD68682DFB3A863D7F460811CF4806F9] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\BMXStateBkp-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.FDA10FEA8A7084F2582FE847D76DBC75] - 13/02/2010 - 06:00:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\DVCState-{00000002-00000000-00000000-00001102-00000004-20021102}.rfx
O44 - LFC:[MD5.5D5F2F0144B75B9A6611B26F3806DDC2] - 13/02/2010 - 06:00:36 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\{00000002-00000000-00000000-00001102-00000004-20021102}.BAK
O44 - LFC:[MD5.00000000000000000000000000000000] - 13/02/2010 - 06:00:36 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\{00000002-00000000-00000000-00001102-00000004-20021102}.CDF
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 13/02/2010 - 05:59:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\config.nt
O44 - LFC:[MD5.A0160AD4CE53CDB21ABC67F6B6E1E07B] - 11/02/2010 - 19:53:57 ---A- . (.ALWIL Software - avast! Screen Saver stub.) -- C:\Windows\System32\avastSS.scr
O44 - LFC:[MD5.61C5F7D57D5D91003A9CAAB01DF61883] - 11/02/2010 - 19:53:36 ---A- . (.ALWIL Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe
O44 - LFC:[MD5.EC8EF1CE2D6CA1071BE8B7888FFA48C0] - 11/02/2010 - 19:42:34 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\System32\drivers\aswTdi.sys
O44 - LFC:[MD5.67DB88B01FC1D815968230458814EB8D] - 11/02/2010 - 19:42:13 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys
O44 - LFC:[MD5.CC40B9C301AF5D145713B2764EEC3907] - 11/02/2010 - 19:39:01 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\System32\drivers\aswRdr.sys
O44 - LFC:[MD5.1BA678226FCF8EA47793C99992E8EE31] - 11/02/2010 - 19:38:45 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys
O44 - LFC:[MD5.A289930E70F3FA3B07DF80D2B052794E] - 11/02/2010 - 19:38:23 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\drivers\aswFsBlk.sys
O44 - LFC:[MD5.10BE25C04613B70D8CE1F412E14D9454] - 10/02/2010 - 10:25:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\PnkBstrK.sys
O44 - LFC:[MD5.9A386EC60A166DF66205343CA12C6B86] - 10/02/2010 - 10:25:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrB.exe
O44 - LFC:[MD5.9A386EC60A166DF66205343CA12C6B86] - 10/02/2010 - 10:25:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrB.xtr
O44 - LFC:[MD5.8831252BCF05FCFB5ABD116A22E552D8] - 10/02/2010 - 06:05:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\sp_rsdrv2.sys
O44 - LFC:[MD5.18DCAA0D7981EC3DA51D7BA7BD866674] - 10/02/2010 - 05:53:55 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/02/2010 - 08:54:15 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
O44 - LFC:[MD5.87E5AAE1AA9431EF1DDEDC46D2145BDB] - 08/02/2010 - 07:27:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setup.log
O44 - LFC:[MD5.E4DA8F4DCC53E979A25461F63499F712] - 08/02/2010 - 07:00:35 ---A- . (.Sony DADC Austria AG. - SecuROM context menu for Explorer..) -- C:\Windows\System32\CmdLineExt.dll
O44 - LFC:[MD5.779F855DBA9348B05067EAC40B4EAFED] - 08/02/2010 - 06:35:47 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ealregsnapshot1.reg
O44 - LFC:[MD5.FB260EA651B32BA67BE41C5EA4FB2D3F] - 04/02/2010 - 22:02:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PerfStringBackup.INI
O44 - LFC:[MD5.4BAB810C8FC9E2AA406FD9F6FD4E4913] - 04/02/2010 - 22:02:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfc009.dat
O44 - LFC:[MD5.45D7364AD19A34E0CA5E514C820D4A6D] - 04/02/2010 - 22:02:37 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfh009.dat
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 02/02/2010 - 07:29:20 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
O44 - LFC:[MD5.A1DD33D16F277CE34124EE52AB2C0F14] - 28/01/2010 - 20:56:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PnkBstrA.exe
O44 - LFC:[MD5.97AE01E23FB8D7048377AB08D1938711] - 28/01/2010 - 20:56:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\pbsvc_bc2.exe
O44 - LFC:[MD5.E0BBCEC12A1DE6E25C612AD205B719B4] - 28/01/2010 - 00:13:36 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\deploytk.dll
O44 - LFC:[MD5.AD3A2226B72F6E161425254276670117] - 28/01/2010 - 00:13:36 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe
O44 - LFC:[MD5.B427962BDB196D132AF50F6C7B78380D] - 28/01/2010 - 00:13:36 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe
O44 - LFC:[MD5.C8824405C4E358A2FE4D97C83101079A] - 28/01/2010 - 00:13:36 ---A- . (.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 27/01/2010 - 23:59:53 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\drivers\Msft_Kernel_phaudlwr_01005.Wdf
O44 - LFC:[MD5.A4001C78F2806662B3BD91ACB44E6330] - 19/01/2010 - 11:47:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\initdebug.nfo
O44 - LFC:[MD5.D22F4883D4B7EFD2516518461F5E138A] - 18/01/2010 - 19:54:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\maestro-server.log
O44 - LFC:[MD5.3765168F6C4F2D9B7E2255BDD0C52BDE] - 18/01/2010 - 03:46:22 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\ezsidmv.dat
O44 - LFC:[MD5.8F0F15233F1384BF813D4EB3597B14D4] - 18/01/2010 - 02:19:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
O44 - LFC:[MD5.D494267BC169604FAC5E3679B9A97FED] - 18/01/2010 - 01:33:51 ---A- . (.Creative Labs - OpenAL32.) -- C:\Windows\System32\wrap_oal.dll
O44 - LFC:[MD5.235355A8DD26903E75D5E812ECF50E53] - 18/01/2010 - 01:33:51 ---A- . (.Portions (C) Creative Labs Inc. and NVIDIA - Standard OpenAL(TM) Implementation.) -- C:\Windows\System32\OpenAL32.dll
O44 - LFC:[MD5.2CD53BF70E1FF9A16E3087302D3AAA56] - 18/01/2010 - 01:33:51 R-HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\ctfile.rfc
O44 - LFC:[MD5.ED3AA2EB736B1DAA9BD82F7E13E8860A] - 17/01/2010 - 19:45:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\FNTCACHE.DAT
O44 - LFC:[MD5.E73694DCFE105A03479692A90E021AAD] - 17/01/2010 - 19:44:29 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\license.rtf
O44 - LFC:[MD5.43847ABEC85EEB2CC6A7BCB6867D1838] - 17/01/2010 - 19:44:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\TSSysprep.log
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/01/2010 - 19:43:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\ativpsrm.bin
O44 - LFC:[MD5.47B2DC29D01E6AEAA4072337905A9FD6] - 17/01/2010 - 19:42:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\DtcInstall.log
---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"VIDC.FPS1"="frapsvid.dll" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"frapsvid.dll"="Fraps Video Decompressor" . (.Beepa P/L - Fraps.) -- C:\Windows\System32\frapsvid.dll
---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll
---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys
O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 14/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys
O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys
O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys
O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 14/07/2009 - 02:26:15 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys
O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 14/07/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys
O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 14/07/2009 - 02:26:15 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys
O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys
O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys
O58 - SDL:[MD5.D48659BB24C48345D926ECB45C1EBDF5] - 13/08/2004 - 09:56:20 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\system32\drivers\ASACPI.sys
O58 - SDL:[MD5.A289930E70F3FA3B07DF80D2B052794E] - 11/02/2010 - 19:38:23 ---A- . (.ALWIL Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys
O58 - SDL:[MD5.1BA678226FCF8EA47793C99992E8EE31] - 11/02/2010 - 19:38:45 ---A- . (.ALWIL Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys
O58 - SDL:[MD5.CC40B9C301AF5D145713B2764EEC3907] - 11/02/2010 - 19:39:01 ---A- . (.ALWIL Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys
O58 - SDL:[MD5.67DB88B01FC1D815968230458814EB8D] - 11/02/2010 - 19:42:13 ---A- . (.ALWIL Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys
O58 - SDL:[MD5.EC8EF1CE2D6CA1071BE8B7888FFA48C0] - 11/02/2010 - 19:42:34 ---A- . (.ALWIL Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys
O58 - SDL:[MD5.40A07E6916AC098E31A9E39AC202B8A1] - 30/09/2009 - 15:33:56 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\AtiHdmi.sys
O58 - SDL:[MD5.FCD4C95B1CB2A7DFBF8DF5609C74734A] - 25/11/2009 - 04:51:32 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys
O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 13/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60x.sys
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys
O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14/07/2009 - 01:57:25 ---A- . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 13/07/2009 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys
O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys
O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14/07/2009 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys
O58 - SDL:[MD5.8ED4497E4CC0C030EAC8E2FFA1DD9679] - 23/06/2009 - 13:34:30 ---A- . (.Creative Technology Ltd - Creative Common FX Plug-in.) -- C:\Windows\system32\drivers\COMMONFX.sys
O58 - SDL:[MD5.BD18D9271BC85BF2EA74370AB2D9D6AD] - 23/06/2009 - 13:36:02 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\Windows\system32\drivers\CT0531FL.SYS
O58 - SDL:[MD5.C1E3B24CA4871BD2A8C3B95110E78721] - 23/06/2009 - 13:36:14 ---A- . (.Creative Technology Ltd - Creative AC3 SW Decoder Device Driver (WDM).) -- C:\Windows\system32\drivers\ctac32k.sys
O58 - SDL:[MD5.13E797253EA98C2574C878DE78CA691E] - 23/06/2009 - 13:36:24 ---A- . (.Creative Technology Ltd - Creative WDM Audio Device Driver.) -- C:\Windows\system32\drivers\ctaud2k.sys
O58 - SDL:[MD5.AB3456984B59D1425BEFC0D457D41DD4] - 23/06/2009 - 13:34:40 ---A- . (.Creative Technology Ltd - Creative SB FX Plug-in.) -- C:\Windows\system32\drivers\CTAUDFX.sys
O58 - SDL:[MD5.D5E38C394787C1FBFC70E0C50345C25C] - 23/06/2009 - 13:36:36 ---A- . (.Creative Technology Ltd - Creative DVD-Audio Device Driver (WDM).) -- C:\Windows\system32\drivers\ctdvda2k.sys
O58 - SDL:[MD5.B4297863E9FCE34C0493FCA66F0970A2] - 23/06/2009 - 13:35:04 ---A- . (.Creative Technology Ltd - E-MU E-DSP Effects Plugin Module.) -- C:\Windows\system32\drivers\CTERFXFX.sys
O58 - SDL:[MD5.49F4AC5788E97561C2D652CAC5956212] - 23/06/2009 - 13:37:00 ---A- . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\Windows\system32\drivers\CTMMFILT.SYS
O58 - SDL:[MD5.4B8AABB697AE81A61395A19CE4447D49] - 23/06/2009 - 13:37:10 ---A- . (.Creative Technology Ltd. - Creative OS Services Driver (WDM).) -- C:\Windows\system32\drivers\ctoss2k.sys
O58 - SDL:[MD5.D19AB3A7DF104250429000F26E0D4049] - 23/06/2009 - 13:37:22 ---A- . (.Creative Technology Ltd - Creative Proxy Device Driver (WDM).) -- C:\Windows\system32\drivers\ctprxy2k.sys
O58 - SDL:[MD5.D665DA6B6AEA45B9DB090096F2AEF023] - 23/06/2009 - 13:34:52 ---A- . (.Creative Technology Ltd - Creative SB FX Plug-in.) -- C:\Windows\system32\drivers\CTSBLFX.sys
O58 - SDL:[MD5.27C23069325ACDC27021671424F11BC1] - 23/06/2009 - 13:37:32 ---A- . (.Creative Technology Ltd - SoundFont(R) Manager (WDM).) -- C:\Windows\system32\drivers\ctsfm2k.sys
O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 14/07/2009 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys
O58 - SDL:[MD5.22EF8965101685ADD128F03A2B03CE16] - 13/07/2009 - 23:02:50 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G60I32.sys
O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 14/07/2009 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys
O58 - SDL:[MD5.D03A26D94F3A24CC6C32D70BD63BAEAA] - 23/06/2009 - 13:37:54 ---A- . (.Creative Technology Ltd - E-mu Plug-in Architecture Driver (WDM).) -- C:\Windows\system32\drivers\emupia2k.sys
O58 - SDL:[MD5.16EBD8BF1D5090923694CC972C7CE1B4] - 20/08/2007 - 11:05:02 ---A- . (.EnTech Taiwan - Pas de description.) -- C:\Windows\system32\drivers\Entech.sys
O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys
O58 - SDL:[MD5.F5CB6CB6D12F495516BE27CFFCCDE4BF] - 13/07/2009 - 23:02:53 ---A- . (.VIA Technologies, Inc. - NDIS 6.0 miniport driver.) -- C:\Windows\system32\drivers\fetnd6.sys
O58 - SDL:[MD5.F5F17B523E467FA3DDA7D9A40D296961] - 23/06/2009 - 13:38:06 ---A- . (.Creative Technology Ltd - Creative EMU10KX HAL (WDM).) -- C:\Windows\system32\drivers\ha10kx2k.sys
O58 - SDL:[MD5.ADF0ED3569ADC0B527687AA3F924AB5F] - 10/04/2007 - 06:03:12 ---A- . (.Creative Technology Ltd - Creative 20X HAL (WDM).) -- C:\Windows\system32\drivers\ha20x2k.sys
O58 - SDL:[MD5.42C81F4691681DED6E1FC639AABED570] - 23/06/2009 - 13:38:16 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P16v HAL (WDM).) -- C:\Windows\system32\drivers\haP16v2k.sys
O58 - SDL:[MD5.29EE8F6FCD5E9B206C0D91923E882F6A] - 23/06/2009 - 13:38:26 ---A- . (.Creative Technology Ltd - Creative EMU10KX-P17v HAL (WDM).) -- C:\Windows\system32\drivers\haP17v2k.sys
O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys
O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 14/07/2009 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys
O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys
O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys
O58 - SDL:[MD5.8C804B1FFAD1EFA952B747E8285C3B76] - 13/07/2009 - 23:02:47 ---A- . (.Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20.) -- C:\Windows\system32\drivers\L1E62x86.sys
O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys
O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 14/07/2009 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys
O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys
O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys
O58 - SDL:[MD5.654A3F014903DC62CAF5E037F3D316D2] - 07/01/2010 - 16:07:04 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys
O58 - SDL:[MD5.C0D40BEAA6DFC05602FC8F484696F7F5] - 07/01/2010 - 16:07:14 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys
O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys
O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys
O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 14/07/2009 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys
O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 14/07/2009 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys
O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 14/07/2009 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys
O58 - SDL:[MD5.789150C11497D8706515FC939436D838] - 23/06/2009 - 13:38:36 ---A- . (.Creative Technology Ltd. - PCI/ISA Device Info. Service.) -- C:\Windows\system32\drivers\pfmodnt.sys
O58 - SDL:[MD5.021968ED24B4E44BABAF11FBF8C4FB86] - 21/10/2009 - 01:20:34 ---A- . (.Philips Applied Technologies - Philips USB Audio Processing Filter.) -- C:\Windows\system32\drivers\phaudlwr.sys
O58 - SDL:[MD5.10BE25C04613B70D8CE1F412E14D9454] - 10/02/2010 - 10:25:25 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\PnkBstrK.sys
O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys
O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys
O58 - SDL:[MD5.027158280EDF528EE322CFD00AE9E9BE] - 03/06/2009 - 00:35:00 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\system32\drivers\rt61.sys
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/07/2009 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys
O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys
O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys
O58 - SDL:[MD5.3F9DB70C3C55194BEEAEFEB6A26571C6] - 13/11/2007 - 11:32:36 ---A- . (.Pas de propriétaire - Philips Camera Streaming Driver.) -- C:\Windows\system32\drivers\spc1300.sys
O58 - SDL:[MD5.66B917E4AD0C6DBEDAF0159AC241576A] - 13/11/2007 - 11:32:42 ---A- . (.Pas de propriétaire - Philips Camera Streaming Driver.) -- C:\Windows\system32\drivers\spc1300c.sys
O58 - SDL:[MD5.00000000000000000000000000000000] - 08/02/2010 - 02:50:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\sptd.sys
O58 - SDL:[MD5.8831252BCF05FCFB5ABD116A22E552D8] - 10/02/2010 - 06:05:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\drivers\sp_rsdrv2.sys
O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 14/07/2009 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys
O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14/07/2009 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys
O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 14/07/2009 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\ANSI.SYS
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 22:40:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\country.sys
O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 03/04/1996 - 20:33:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\giveio.sys
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 22:40:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\HIMEM.SYS
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEY01.SYS
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEYBOARD.SYS
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 22:40:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS.SYS
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 22:40:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS404.SYS
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 22:40:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS411.SYS
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 22:40:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS412.SYS
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 22:40:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS804.SYS
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 22:40:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO.SYS
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 22:40:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO404.SYS
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 22:40:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO411.SYS
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 22:40:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO412.SYS
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 22:40:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO804.SYS
O58 - SDL:[MD5.5D6401DB90EC81B71F8E2C5C8F0FEF23] - 24/09/2006 - 14:28:46 ---A- . (.Windows (R) 2000 DDK provider - SpeedFan Device Driver.) -- C:\Windows\system32\speedfan.sys
---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.)
O63 - Logiciel: HiJackThis - (.Trend Micro.)
End of the scan (482 lines)
Configuration: Windows 7 Firefox 3.6
A voir également:
- Scan report
- Scan qr code pc - Guide
- Sfc scan - Guide
- Crystal report viewer - Télécharger - Gestion de données
- Directory report - Télécharger - Gestion de fichiers
- Google traduction photo scan - Guide
