leiki
Habitué
Je suis en mode sans échec avec prise en charge réseau.
J'ai lancé un scan ZHPDiag et un scan Malwarebytes, voici les rapports:
Rapport de ZHPDiag v1.27.1903 par Nicolas Coolman, Update du 17/04/2011
Run by Isabelle at 17/04/2011 18:52:19
Web site :
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 4.0 v4.0 (Defaut)
---\\ System Information
Windows XP Home Edition Service Pack 2 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
Total RAM: 503 MB (69% free)
System Restore: Désactivé (Disabled)
System drive C: has 65 GB (91%) free of 71 GB
---\\ Logged in mode
Computer Name: ISA
User Name: Isabelle
All Users Names: SUPPORT_388945a0, Isabelle, HelpAssistant, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
%AppData%=C:\Documents and Settings\Isabelle\Application Data
%LocalAppData%=C:\Documents and Settings\Isabelle\Local Settings\Application Data
%StartMenu%=C:\Documents and Settings\Isabelle\Menu Démarrer
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 65 Go of 71 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
---\\ Recherche particulière de fichiers génériques
[MD5.4C33E5B9A6197B6ED215F6CFBA0A2DAA] - (.Microsoft Corporation - Explorateur Windows.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\Explorer.exe [1036288]
[MD5.B98E84E2CD3EE25D6D41936352E93112] - (.Microsoft Corporation - Internet Extensions for Win32.) (.06/05/2010 11:33:44.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.D2DE785AEAB0BB8CA4C14A8A199DBE4E] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\system32\Winlogon.exe [506368]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.03/08/2004 22:59:44.) -- C:\WINDOWS\system32\drivers\atapi.sys [95360]
[MD5.B78BE402C3F63DD55521F73876951CDD] - (.Microsoft Corporation - NT File System Driver.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574592]
---\\ Processus lancés
[MD5.6797E0F85E5F419EEFBE2E4C7A622EA1] - (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2435592]
[MD5.D6D0AD94EFC131772C3265F242D78FCB] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [644096]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Isabelle] -- C:\Documents and Settings\Isabelle\Application Data\Mozilla\Firefox\Profiles\q358ipnf.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN: [HKLM] [@checkpoint.com/FFApi] - (.Pas de propriétaire - npFFApi.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll
P2 - FPN: [HKLM] [@viewpoint.com/VMP] - (.Pas de propriétaire - MetaStream 3 Plugin r4.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
M0 - MFSP: prefs.js [Isabelle - q358ipnf.default]
M2 - MFEP: prefs.js [Isabelle - q358ipnf.default\{d7f26d0e-9801-45c3-a091-8a65e4ed73b5}] [] Protection ZoneAlarm Community Toolbar v3.3.3.2 (.Conduit Ltd..)
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\Software\Microsoft\Internet Explorer\Main,Search Page =
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18928 (longhorn_ie8_gdr.100503-1700)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Protection ZoneAlarm Toolbar - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe Acrobat IE Helper Version 6.0 for Act.) -- C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Protection ZoneAlarm - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Protection ZoneAlarm Toolbar - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll
O3 - Toolbar: ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [igfxtray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (...) -- C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] . (.SigmaTel, Inc. - Sigmatel Audio system tray application.) -- C:\WINDOWS\stsystra.exe
O4 - HKLM\..\Run: [DMXLauncher] . (...) -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Dell QuickSet] . (.Dell Inc - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - Dell Wireless WLAN Card Wireless Network Tr.) -- C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Computer, Inc. - Pas de description.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe
O4 - HKLM\..\Run: [ISUSScheduler] . (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [MSKDetectorExe] . (.McAfee, Inc. - McAfee SpamKiller Account Detector.) -- C:\Program Files\McAfee\SpamKiller\MSKDetct.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] . (.Check Point Software Technologies LTD - ZoneAlarm Client.) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [ISW] . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ModemOnHold] . (...) -- C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [ModemOnHold] . (...) -- C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Digital Line Detect.lnk . (.BVRP Software.) -- C:\Program Files\Digital Line Detect\DLG.exe
---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 6.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A00000000001}\SC_Reader_PM.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\msworks.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Les services Haut-Débit.lnk . (...) -- C:\Program Files\Dell\ArtEuro\html\index.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Tiscali Internet.lnk . (.InstallShield Software Corp..) -- C:\WINDOWS\Installer\{58B2B6D3-E5FF-4D16-87AC-52CC5717C7C6}\NewShortcut1_58B2B6D3E5FF4D1687AC52CC5717C7C6.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline
O9 - Extra button: Console Java (Sun) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} . (...) -- C:\Program Files\Real\RealPlayer\eb_act.ico
O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (...) -- C:\Program Files\Real\RealPlayer\eb_act.ico
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} . (.Pas de propriétaire - insmimefilter Module.) -- C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: (IswSvc) . (.Check Point Software Technologies - ZoneAlarm Browser Security.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: (NICCONFIGSVC) . (.Dell Inc. - Internal Network Card Power Management Ser.) - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: (vsmon) . (.Check Point Software Technologies LTD - TrueVector Service.) - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: (wltrysvc) . (...) - C:\WINDOWS\System32\WLTRYSVC.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Rappel d'abonnement 1 auprès de l'ISP.job
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (APPDRV) . (.Dell Inc - App Support Driver.) - C:\WINDOWS\sysTEM32\DRIVERS\APPDRV.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (vsdatant) . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - C:\Windows\System32\vsdatant.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ARTEuro - (.Dell.) [HKLM] -- {1D3C662A-F6C6-4767-A788-7AA43A9A1317}
O42 - Logiciel: Adobe Acrobat - Reader 6.0.2 Update - (.Adobe Systems.) [HKLM] -- {AC76BA86-0000-0000-0000-6028747ADE01}
O42 - Logiciel: Adobe Reader 6.0.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A00000000001}
O42 - Logiciel: Broadcom Management Programs - (.Broadcom Corporation.) [HKLM] -- {26E1BFB0-E87E-4696-9F89-B467F01F81E5}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Conexant HDA D110 MDC V.92 Modem - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3
O42 - Logiciel: DMX Update - (.Pas de propriétaire.) [HKLM] -- {C41F4616-44B6-4E8D-BFC7-4267862A2CE1}
O42 - Logiciel: Dell CinePlayer - (.Dell.) [HKLM] -- {43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}
O42 - Logiciel: Dell Driver Reset Tool - (.Dell Inc..) [HKLM] -- {5905F42D-3F5F-4916-ADA6-94A3646AEE76}
O42 - Logiciel: Dell Media Experience - (.Dell.) [HKLM] -- {AC0EE5B0-A8FB-4D0A-AF03-2EDC518F841B}
O42 - Logiciel: Dell Wireless WLAN Card - (.Dell Inc..) [HKLM] -- Broadcom 802.11b Network Adapter
O42 - Logiciel: Digital Line Detect - (.BVRP Software, Inc.) [HKLM] -- {E646DCF0-5A68-11D5-B229-002078017FBF}
O42 - Logiciel: Ecran de veille AOL Photos - (.Pas de propriétaire.) [HKLM] -- AOL YGP Screensaver
O42 - Logiciel: High Definition Audio Driver Package - KB835221 - (.Microsoft Corporation.) [HKLM] -- KB835221WXP
O42 - Logiciel: Hotfix for Windows XP (KB943232) - (.Microsoft Corporation.) [HKLM] -- KB943232
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver for Mobile - (.Pas de propriétaire.) [HKLM] -- {8A708DD8-A5E6-11D4-A706-000629E95E20}
O42 - Logiciel: Internet Explorer Default Page - (.Dell Inc..) [HKLM] -- {35BDEFF1-A610-4956-A00D-15453C116395}
O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.2_03 - (.Sun Microsystems, Inc..) [HKLM] -- {7148F0A8-6813-11D6-A77B-00B0D0142030}
O42 - Logiciel: Learn2 Player (Uninstall Only) - (.Pas de propriétaire.) [HKLM] -- StreetPlugin
O42 - Logiciel: MCU - (.Dell.) [HKLM] -- {D2988E9B-C73F-422C-AD4B-A66EBE257120}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Works 7.0 - (.Microsoft Corporation.) [HKLM] -- {64D114CE-4234-45C2-B60A-2B07D5A48F72}
O42 - Logiciel: Modem Helper - (.BVRP Software.) [HKLM] -- {7F142D56-3326-11D5-B229-002078017FBF}
O42 - Logiciel: Mozilla Firefox 4.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 4.0 (x86 fr)
O42 - Logiciel: MyWay Search Assistant - (.MyWay.) [HKLM] -- {E7559288-223B-453C-9F06-340E3BE21E39}
O42 - Logiciel: NetWaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF}
O42 - Logiciel: QuickSet - (.Pas de propriétaire.) [HKLM] -- {C5074CC4-0E26-4716-A307-960272A90040}
O42 - Logiciel: QuickTime - (.Pas de propriétaire.) [HKLM] -- QuickTime
O42 - Logiciel: RealPlayer Basic - (.Pas de propriétaire.) [HKLM] -- RealPlayer 6.0
O42 - Logiciel: Roxio DLA - (.Roxio.) [HKLM] -- {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
O42 - Logiciel: Roxio MyDVD LE - (.Roxio.) [HKLM] -- {21657574-BD54-48A2-9450-EB03B2C7FC29}
O42 - Logiciel: Roxio RecordNow Audio - (.Roxio.) [HKLM] -- {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
O42 - Logiciel: Roxio RecordNow Copy - (.Roxio.) [HKLM] -- {B12665F4-4E93-4AB4-B7FC-37053B524629}
O42 - Logiciel: Roxio RecordNow Data - (.Roxio.) [HKLM] -- {075473F5-846A-448B-BCB3-104AA1760205}
O42 - Logiciel: Sonic Activation Module - (.Sonic Solutions.) [HKLM] -- {5B6BE547-21E2-49CA-B2E2-6A5F470593B1}
O42 - Logiciel: Sonic Update Manager - (.Sonic Solutions.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Tiscali Internet - (.Tiscali.) [HKLM] -- {58B2B6D3-E5FF-4D16-87AC-52CC5717C7C6}
O42 - Logiciel: Viewpoint Media Player - (.Pas de propriétaire.) [HKLM] -- ViewpointMediaPlayer
O42 - Logiciel: Visual C++ 8.0 CRT (x86) WinSXS MSM - (.Microsoft Corporation.) [HKLM] -- {98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E}
O42 - Logiciel: Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM - (.Microsoft Corporation.) [HKLM] -- {63E949F6-03BC-5C40-FF1F-C8B3B9A1E18E}
O42 - Logiciel: Wanadoo Europe Installer - (.Wanadoo.) [HKLM] -- {B7AC5A96-C8BC-431C-B661-27A09781DFA8}
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Installer 3.1 (KB893803) - (.Microsoft Corporation.) [HKLM] -- KB893803v2
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format Runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: ZoneAlarm - (.Check Point, Inc.) [HKLM] -- ZoneAlarm
O42 - Logiciel: ZoneAlarm Toolbar - (.Check Point Software Technologies.) [HKLM] -- ZoneAlarm Toolbar
O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM] -- avast
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\America Online]
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow]
[HKCU\Software\Broadcom]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conduit]
[HKCU\Software\Corel]
[HKCU\Software\Dell Computer Corporation]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\InterActual Technologies]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\McAfee.com]
[HKCU\Software\MyWaySA]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Protection_ZoneAlarm]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Sonic]
[HKCU\Software\Synaptics]
[HKCU\Software\Tiscali]
[HKCU\Software\Zone Labs]
[HKCU\Software\toolbar]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\America Online]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\BVRP Software, Inc]
[HKLM\Software\BVRP Software]
[HKLM\Software\Broadcom]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CXT]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Conexant]
[HKLM\Software\Corel]
[HKLM\Software\Debug]
[HKLM\Software\Dell Computer Corporation]
[HKLM\Software\Dell Computers]
[HKLM\Software\Dell]
[HKLM\Software\GTek]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\InterActual Technologies]
[HKLM\Software\JavaSoft]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\McAfee]
[HKLM\Software\MetaStream]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\MyWaySA]
[HKLM\Software\NeoWorx]
[HKLM\Software\Network Associates]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\Protection_ZoneAlarm]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Roxio]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Sigmatel]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\Viewpoint]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Zone Labs]
[HKLM\Software\lameme]
[HKLM\Software\mozilla.org]
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/06/2006 - 22:06:48 - [75865552] ----D- C:\Program Files\Adobe
O43 - CFD: 16/04/2011 - 19:05:50 - [152144511] ----D- C:\Program Files\AVAST Software
O43 - CFD: 14/06/2006 - 22:03:36 - [2413725] ----D- C:\Program Files\Broadcom
O43 - CFD: 16/04/2011 - 21:50:40 - [3673632] ----D- C:\Program Files\CCleaner
O43 - CFD: 16/04/2011 - 22:06:04 - [26830342] ----D- C:\Program Files\CheckPoint
O43 - CFD: 20/08/2004 - 11:35:04 - [0] ----D- C:\Program Files\ComPlus Applications
O43 - CFD: 16/04/2011 - 22:06:34 - [634976] ----D- C:\Program Files\Conduit
O43 - CFD: 14/06/2006 - 22:00:38 - [577536] ----D- C:\Program Files\CONEXANT
O43 - CFD: 16/04/2011 - 21:58:40 - [104] ----D- C:\Program Files\Corel
O43 - CFD: 14/06/2006 - 22:09:20 - [0] ----D- C:\Program Files\Corel Corporation
O43 - CFD: 14/06/2006 - 22:07:08 - [197784446] ----D- C:\Program Files\Dell
O43 - CFD: 14/06/2006 - 22:03:00 - [233995] ----D- C:\Program Files\Digital Line Detect
O43 - CFD: 16/04/2011 - 22:02:12 - [112758500] ----D- C:\Program Files\Fichiers communs
O43 - CFD: 14/06/2006 - 22:08:30 - [12679267] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 14/06/2006 - 22:02:44 - [8591894] ----D- C:\Program Files\InterActual
O43 - CFD: 17/04/2011 - 14:13:26 - [5297624] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/06/2006 - 21:58:12 - [43515348] ----D- C:\Program Files\Java
O43 - CFD: 14/06/2006 - 22:06:30 - [711772] ----D- C:\Program Files\Learn2.com
O43 - CFD: 16/04/2011 - 20:02:44 - [4920556] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 14/06/2006 - 22:13:58 - [1511201] ----D- C:\Program Files\McAfee
O43 - CFD: 17/04/2011 - 00:02:56 - [2146435] ----D- C:\Program Files\Messenger
O43 - CFD: 20/08/2004 - 11:37:28 - [0] ----D- C:\Program Files\microsoft frontpage
O43 - CFD: 14/06/2006 - 22:05:08 - [110239853] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 14/06/2006 - 22:02:52 - [3514234] ----D- C:\Program Files\Modem Helper
O43 - CFD: 17/04/2011 - 00:18:10 - [10371290] ----D- C:\Program Files\Movie Maker
O43 - CFD: 16/04/2011 - 21:23:26 - [32939757] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 20/08/2004 - 11:34:08 - [19278399] ----D- C:\Program Files\MSN
O43 - CFD: 20/08/2004 - 11:34:16 - [8745735] ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD: 20/08/2004 - 11:35:26 - [3285523] ----D- C:\Program Files\NetMeeting
O43 - CFD: 14/06/2006 - 22:02:44 - [883217] ----D- C:\Program Files\NetWaiting
O43 - CFD: 20/08/2004 - 11:34:26 - [1708] ----D- C:\Program Files\Online Services
O43 - CFD: 17/04/2011 - 00:20:08 - [4379833] ----D- C:\Program Files\Outlook Express
O43 - CFD: 16/04/2011 - 22:06:32 - [4556195] ----D- C:\Program Files\Protection_ZoneAlarm
O43 - CFD: 14/06/2006 - 22:06:28 - [2547686] ----D- C:\Program Files\QuickTime
O43 - CFD: 14/06/2006 - 22:05:54 - [8438745] ----D- C:\Program Files\Real
O43 - CFD: 14/06/2006 - 22:10:54 - [138403328] ----D- C:\Program Files\Roxio
O43 - CFD: 20/08/2004 - 11:35:48 - [929] ----D- C:\Program Files\Services en ligne
O43 - CFD: 14/06/2006 - 22:00:32 - [21869] ----D- C:\Program Files\Sigmatel
O43 - CFD: 14/06/2006 - 22:12:04 - [154] ----D- C:\Program Files\Sonic
O43 - CFD: 16/04/2011 - 20:39:54 - [64713893] ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 14/06/2006 - 22:03:08 - [27476486] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/06/2006 - 22:07:36 - [1191936] ----D- C:\Program Files\Tiscali
O43 - CFD: 20/08/2004 - 11:41:52 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 14/06/2006 - 22:06:28 - [7558675] ----D- C:\Program Files\Viewpoint
O43 - CFD: 14/06/2006 - 22:07:28 - [53576646] ----D- C:\Program Files\Wanadoo Europe
O43 - CFD: 14/06/2006 - 22:09:16 - [4100973] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 20/08/2004 - 11:34:08 - [3940095] ----D- C:\Program Files\Windows NT
O43 - CFD: 20/08/2004 - 11:35:52 - [0] --H-D- C:\Program Files\WindowsUpdate
O43 - CFD: 20/08/2004 - 11:37:28 - [0] ----D- C:\Program Files\xerox
O43 - CFD: 14/06/2006 - 22:07:16 - [0] ----D- C:\Program Files\Your Company Name
O43 - CFD: 17/04/2011 - 18:52:28 - [3756552] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 16/04/2011 - 21:29:38 - [21741969] ----D- C:\Program Files\Zone Labs
O43 - CFD: 16/04/2011 - 21:56:20 - [1446564] ----D- C:\Program Files\Fichiers Communs\AOL
O43 - CFD: 14/06/2006 - 22:07:04 - [8637751] ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD: 14/06/2006 - 21:58:02 - [24359929] ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD: 16/04/2011 - 19:06:12 - [29997225] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD: 20/08/2004 - 11:35:30 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD: 14/06/2006 - 22:06:18 - [2392177] ----D- C:\Program Files\Fichiers Communs\Nullsoft
O43 - CFD: 20/08/2004 - 11:30:36 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD: 14/06/2006 - 22:05:56 - [9545492] ----D- C:\Program Files\Fichiers Communs\Real
O43 - CFD: 14/06/2006 - 22:02:16 - [5759929] ----D- C:\Program Files\Fichiers Communs\Roxio Shared
O43 - CFD: 20/08/2004 - 11:35:32 - [8106] ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD: 14/06/2006 - 22:11:58 - [19384045] ----D- C:\Program Files\Fichiers Communs\Sonic Shared
O43 - CFD: 20/08/2004 - 11:30:36 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD: 20/08/2004 - 11:35:24 - [6800053] ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD: 14/06/2006 - 22:10:56 - [355840] ----D- C:\Program Files\Fichiers Communs\TiVo Shared
O43 - CFD: 16/04/2011 - 22:07:16 - [20495] ----D- C:\Documents and Settings\Isabelle\Application Data\CheckPoint
O43 - CFD: 20/08/2004 - 11:41:54 - [0] ----D- C:\Documents and Settings\Isabelle\Application Data\Identities
O43 - CFD: 16/04/2011 - 18:56:54 - [300] ----D- C:\Documents and Settings\Isabelle\Application Data\Macromedia
O43 - CFD: 16/04/2011 - 20:03:02 - [6759] ----D- C:\Documents and Settings\Isabelle\Application Data\Malwarebytes
O43 - CFD: 16/04/2011 - 20:03:12 - [47] ----D- C:\Documents and Settings\Isabelle\Application Data\McAfee.com Personal Firewall
O43 - CFD: 20/08/2004 - 11:30:08 - [645600] -S--D- C:\Documents and Settings\Isabelle\Application Data\Microsoft
O43 - CFD: 16/04/2011 - 21:23:46 - [17304949] ----D- C:\Documents and Settings\Isabelle\Application Data\Mozilla
O43 - CFD: 14/06/2006 - 21:58:14 - [473] ----D- C:\Documents and Settings\Isabelle\Application Data\Sun
O43 - CFD: 14/06/2006 - 22:06:30 - [0] ----D- C:\Documents and Settings\Isabelle\Application Data\You've Got Pictures Screensaver
O43 - CFD: 20/08/2004 - 11:44:00 - [5091] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 14/06/2006 - 22:02:44 - [1158] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\BVRP Software
O43 - CFD: 16/04/2011 - 23:58:26 - [146069] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Conduit
O43 - CFD: 17/04/2011 - 14:14:08 - [1955679] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Microsoft
O43 - CFD: 16/04/2011 - 21:23:36 - [30859899] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Mozilla
O43 - CFD: 16/04/2011 - 23:58:34 - [4752322] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Protection_ZoneAlarm
O43 - CFD: 16/04/2011 - 22:06:32 - [0] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Temp
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.13A474ACFFD3BCD923F9FD8B01CE9BF8] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [956504]
O44 - LFC:[MD5.64CB50D6CA4EB2B4C00520AFEDA4A7E8] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [53436]
O44 - LFC:[MD5.C020ABCB4EC5540EDAB1CA1BA56DA551] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfc00C.dat [64484]
O44 - LFC:[MD5.D6315521842076995591903AF2AB087B] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [381692]
O44 - LFC:[MD5.18ECE5F82A134AACEA225D26CC32E217] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfh00C.dat [446566]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/04/2011 - 17:41:53 ---A- . (...) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.15FA6E5D744875D64D65574866610620] - 17/04/2011 - 17:41:46 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [139402]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 17/04/2011 - 17:41:01 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.0514FCD182B4C33FC64A6ECFABC52343] - 17/04/2011 - 16:52:37 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1655602]
O44 - LFC:[MD5.028D873EA63F41923A5B41277681BC15] - 17/04/2011 - 15:15:00 ---A- . (...) -- C:\WINDOWS\setuplog.txt [137961]
O44 - LFC:[MD5.A4285111CA11451FCAA32D37E3DA5926] - 17/04/2011 - 14:45:22 ---A- . (...) -- C:\WINDOWS\KB970430.log [3982]
O44 - LFC:[MD5.8C6E84FBB6EDA616068A26F981A1F029] - 17/04/2011 - 14:45:17 ---A- . (...) -- C:\WINDOWS\KB971737.log [3720]
O44 - LFC:[MD5.EC1260A8ECF74C46E13A696366DEDE9B] - 17/04/2011 - 14:44:52 ---A- . (...) -- C:\WINDOWS\KB967715.log [32740]
O44 - LFC:[MD5.072FD534FD02D047C8F45C392C8929CA] - 17/04/2011 - 14:43:21 ---A- . (...) -- C:\WINDOWS\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt [4148]
O44 - LFC:[MD5.11F4A705816E738FB66E1FCECF869D04] - 17/04/2011 - 14:29:16 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [7242]
O44 - LFC:[MD5.FCEB85884AA69B2940B47041E0ABD03B] - 17/04/2011 - 13:15:04 ---A- . (...) -- C:\WINDOWS\spupdsvc.log [8788]
O44 - LFC:[MD5.2D04CC5CCAAF04624EEBD655F2BF9BBB] - 17/04/2011 - 13:13:30 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [145216]
O44 - LFC:[MD5.55476081EF4159D7396C3CEF3C6EF66E] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [518849]
O44 - LFC:[MD5.51BE0C861AED0574125589991146FBBB] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\KB2229593.log [53468]
O44 - LFC:[MD5.7743D68BF9055528B60910F99466A0AC] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\comsetup.log [177245]
O44 - LFC:[MD5.61EA6B165273FC93835FA228ACF4E14B] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\iis6.log [78148]
O44 - LFC:[MD5.BE4254F921BF4B288CA30DA00D90B4B3] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.842247C07EF02F8EBC653AC26FA54578] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\msgsocm.log [25541]
O44 - LFC:[MD5.59E5488858F400C98F90C857DB99F4DB] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [106390]
O44 - LFC:[MD5.16632D11D9ABECAB88F28C64E5AFCFCF] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ocgen.log [253508]
O44 - LFC:[MD5.14315089C744A38C222DAFFDF97ABF9D] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ocmsn.log [28104]
O44 - LFC:[MD5.3A08F516FA9BAA29AC90C753A0ACC987] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\setupapi.log [779672]
O44 - LFC:[MD5.71429C35909AEBDD03087E69F0DAAAF0] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\tsoc.log [198047]
O44 - LFC:[MD5.6C4B7A03F6FB3B7B90E5B8B7D7FE16BC] - 16/04/2011 - 23:21:44 ---A- . (...) -- C:\WINDOWS\KB982381.log [74135]
O44 - LFC:[MD5.049F1ED937E32157E00604C5BD899E5F] - 16/04/2011 - 23:21:44 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]
O44 - LFC:[MD5.F3886FE6CCAE21289F7DF53146377AF6] - 16/04/2011 - 23:21:39 ---A- . (...) -- C:\WINDOWS\updspapi.log [46431]
O44 - LFC:[MD5.EED27DC64F617D4D0D3122C1289B0502] - 16/04/2011 - 23:21:21 ---A- . (...) -- C:\WINDOWS\KB979559.log [63094]
O44 - LFC:[MD5.1A948FE1A86F67A621529D5FA116B3B3] - 16/04/2011 - 23:21:08 ---A- . (...) -- C:\WINDOWS\KB975562.log [58172]
O44 - LFC:[MD5.535CD2680B457DCAD98B8BE08D0D1703] - 16/04/2011 - 23:20:55 ---A- . (...) -- C:\WINDOWS\KB979482.log [58919]
O44 - LFC:[MD5.E557405E2185B05AA08F4F52D7B34CCC] - 16/04/2011 - 23:20:43 ---A- . (...) -- C:\WINDOWS\KB980195.log [51716]
O44 - LFC:[MD5.17047A2F276F496E2F65EFE32DF8F245] - 16/04/2011 - 23:20:32 ---A- . (...) -- C:\WINDOWS\KB978695.log [52325]
O44 - LFC:[MD5.E5C0517DED0DA908D4972375C2E291FE] - 16/04/2011 - 23:20:26 ---A- . (...) -- C:\WINDOWS\KB980218.log [61494]
O44 - LFC:[MD5.21DA88D9101F4CF5675C714FFBBD8256] - 16/04/2011 - 23:20:15 ---A- . (...) -- C:\WINDOWS\KB981793.log [48893]
O44 - LFC:[MD5.33A2BE30077508B304DE25F49668FBA4] - 16/04/2011 - 23:20:15 ---A- . (...) -- C:\WINDOWS\System32\TZLog.log [4326]
O44 - LFC:[MD5.FB330A5C263BB7A5F237DADB760565E8] - 16/04/2011 - 23:20:09 ---A- . (...) -- C:\WINDOWS\KB978542.log [59260]
O44 - LFC:[MD5.9FC7143FF6AD0431AF0CFD9E9A495D4A] - 16/04/2011 - 23:19:57 ---A- . (...) -- C:\WINDOWS\KB976002-v5.log [48499]
O44 - LFC:[MD5.1871455A9F18BD52DDD6E2D14B71C5D0] - 16/04/2011 - 23:19:51 ---A- . (...) -- C:\WINDOWS\KB978601.log [58052]
O44 - LFC:[MD5.572C9A030C79E7628FD07101A9F25AE8] - 16/04/2011 - 23:19:40 ---A- . (...) -- C:\WINDOWS\KB979402.log [50259]
O44 - LFC:[MD5.6F53D12AA5E45A39AE108F0E6025AD68] - 16/04/2011 - 23:19:40 ---A- . (...) -- C:\WINDOWS\wmsetup.log [39947]
O44 - LFC:[MD5.B40EE8072466B6E82307D5ADFBD50D31] - 16/04/2011 - 23:19:32 ---A- . (...) -- C:\WINDOWS\KB979683.log [58719]
O44 - LFC:[MD5.8B7172C1AFAE9EDF958F566116B299D9] - 16/04/2011 - 23:19:13 ---A- . (...) -- C:\WINDOWS\KB978338.log [61087]
O44 - LFC:[MD5.31038C9EA8E8DD8C4055FF1208CFC310] - 16/04/2011 - 23:19:01 ---A- . (...) -- C:\WINDOWS\KB979309.log [57089]
O44 - LFC:[MD5.4E56632D65ED567BB18E3B23B3A10C4A] - 16/04/2011 - 23:18:50 ---A- . (...) -- C:\WINDOWS\KB981350.log [60579]
O44 - LFC:[MD5.E901287996B515619D7F21FB0E0C87AC] - 16/04/2011 - 23:18:34 ---A- . (...) -- C:\WINDOWS\KB977816.log [59378]
O44 - LFC:[MD5.F801AE0F7906DE10F344EE7E7295DEB8] - 16/04/2011 - 23:18:23 ---A- . (...) -- C:\WINDOWS\KB980232.log [53649]
O44 - LFC:[MD5.74A7A4F2E321942D99DCE1C9C91EEC10] - 16/04/2011 - 23:18:11 ---A- . (...) -- C:\WINDOWS\KB975561.log [53263]
O44 - LFC:[MD5.BA98C5317F8FCA4AF83B11977503680C] - 16/04/2011 - 23:17:59 ---A- . (...) -- C:\WINDOWS\KB978706.log [58337]
O44 - LFC:[MD5.C524589AED10A9435D02CE6ECBBBA52D] - 16/04/2011 - 23:17:47 ---A- . (...) -- C:\WINDOWS\KB971468.log [53678]
O44 - LFC:[MD5.72B25379B3F83F7CF8D205DAB9BF28FE] - 16/04/2011 - 23:17:36 ---A- . (...) -- C:\WINDOWS\KB977914.log [61727]
O44 - LFC:[MD5.8D17A24BE02A18A645B8C8D6373F17DA] - 16/04/2011 - 23:17:22 ---A- . (...) -- C:\WINDOWS\KB975560.log [62394]
O44 - LFC:[MD5.EE32127F3C477D78B5A4A3E0401F025D] - 16/04/2011 - 23:17:07 ---A- . (...) -- C:\WINDOWS\KB978037.log [61205]
O44 - LFC:[MD5.AE510B9FFAD8645B1CD8E3BEEF619B30] - 16/04/2011 - 23:16:57 ---A- . (...) -- C:\WINDOWS\KB975713.log [37917]
O44 - LFC:[MD5.A3711865ADCCBDCCB1CB501C20937440] - 16/04/2011 - 23:16:50 ---A- . (...) -- C:\WINDOWS\KB972270.log [53689]
O44 - LFC:[MD5.6AFDC5687503F74A0CB7BCE4F021CCC3] - 16/04/2011 - 23:16:39 ---A- . (...) -- C:\WINDOWS\KB973904.log [53738]
O44 - LFC:[MD5.6DFBA63F8876F1965424D93F0B38EFB1] - 16/04/2011 - 23:16:25 ---A- . (...) -- C:\WINDOWS\KB955759.log [55010]
O44 - LFC:[MD5.B92430EC9A51588DC0AC0F210BA7ADB7] - 16/04/2011 - 23:16:11 ---A- . (...) -- C:\WINDOWS\KB974392.log [59348]
O44 - LFC:[MD5.3265D7E2D9EFAC18AE2D8329D7BC6EE3] - 16/04/2011 - 23:16:00 ---A- . (...) -- C:\WINDOWS\KB974318.log [58968]
O44 - LFC:[MD5.68EB724B02B8860267D0857744EF5798] - 16/04/2011 - 23:15:49 ---A- . (...) -- C:\WINDOWS\KB952069.log [53745]
O44 - LFC:[MD5.A56D3EDEE47D08E4AA453CB6CCA283C4] - 16/04/2011 - 23:15:41 ---A- . (...) -- C:\WINDOWS\KB973687.log [52526]
O44 - LFC:[MD5.0FE5B3DC6E869244B66640D4DE8AA811] - 16/04/2011 - 23:15:29 ---A- . (...) -- C:\WINDOWS\KB975467.log [62806]
O44 - LFC:[MD5.ECCE50FB55926D1D2856293B00EF8055] - 16/04/2011 - 23:15:16 ---A- . (...) -- C:\WINDOWS\KB968389.log [62562]
O44 - LFC:[MD5.64E288D6487700FB2E3A1EA2F020A046] - 16/04/2011 - 23:14:59 ---A- . (...) -- C:\WINDOWS\KB969059.log [56130]
O44 - LFC:[MD5.CCD94C96C9F4B3AD06574766BC7F2926] - 16/04/2011 - 23:14:48 ---A- . (...) -- C:\WINDOWS\KB958869.log [45837]
O44 - LFC:[MD5.3E311A6D3CD980FC9E62F8C8BB477CDF] - 16/04/2011 - 23:14:40 ---A- . (...) -- C:\WINDOWS\KB974112.log [55676]
O44 - LFC:[MD5.DF5F9E3E8E03657BCCD19194698ACFD2] - 16/04/2011 - 23:14:30 ---A- . (...) -- C:\WINDOWS\KB974571.log [55467]
O44 - LFC:[MD5.63AD8BF12F2F8A48C820F3922C25DAE9] - 16/04/2011 - 23:14:20 ---A- . (...) -- C:\WINDOWS\KB975025.log [56804]
O44 - LFC:[MD5.FA06C7851DB465D052DD1C4C8977F189] - 16/04/2011 - 23:14:11 ---A- . (...) -- C:\WINDOWS\KB954155.log [45831]
O44 - LFC:[MD5.CEA54DF6B75CED52EA9F2280C8730CE3] - 16/04/2011 - 23:14:05 ---A- . (...) -- C:\WINDOWS\KB971961.log [48232]
O44 - LFC:[MD5.877609BE2B28E4E601BBE08AD34F9757] - 16/04/2011 - 23:13:55 ---A- . (...) -- C:\WINDOWS\KB956844.log [49084]
O44 - LFC:[MD5.1FE4073C11747A17F531FBCE6A58EA3B] - 16/04/2011 - 23:13:45 ---A- . (...) -- C:\WINDOWS\ie8_main.log [76106]
O44 - LFC:[MD5.114CEF7E4D3119FB78D1B6FBD87D068B] - 16/04/2011 - 23:13:42 ---A- . (...) -- C:\WINDOWS\KB982381-IE8.log [57590]
O44 - LFC:[MD5.4582880B9C6160403953F7FFD581910D] - 16/04/2011 - 23:12:55 ---A- . (...) -- C:\WINDOWS\ie8.log [55225]
O44 - LFC:[MD5.5305B1DB1C1DD14FF93A8331B0C6C0C3] - 16/04/2011 - 23:06:55 ---A- . (...) -- C:\WINDOWS\KB971657.log [31281]
O44 - LFC:[MD5.700294193EA8D1F2A1E5D2A29EC8ECA4] - 16/04/2011 - 23:06:47 ---A- . (...) -- C:\WINDOWS\KB973815.log [29320]
O44 - LFC:[MD5.A8A16F98DECE09F406028F928EF81987] - 16/04/2011 - 23:06:36 ---A- . (...) -- C:\WINDOWS\KB960859.log [32375]
O44 - LFC:[MD5.41D9C787D068E13346DD3DCE6356B4BB] - 16/04/2011 - 23:06:27 ---A- . (...) -- C:\WINDOWS\KB973507.log [31312]
O44 - LFC:[MD5.44735BD547A6A49F7D6AFDC473309A7D] - 16/04/2011 - 23:06:18 ---A- . (...) -- C:\WINDOWS\KB958470.log [31189]
O44 - LFC:[MD5.C18084806C66F51B1F2334F7DB24ED97] - 16/04/2011 - 23:06:03 ---A- . (...) -- C:\WINDOWS\KB973869.log [24117]
O44 - LFC:[MD5.30A4E5C0A0E7A02AFCB95DAB3519F8C4] - 16/04/2011 - 23:05:55 ---A- . (...) -- C:\WINDOWS\KB973540.log [21724]
O44 - LFC:[MD5.1AD85D7958C7F55580852E531F5D67EC] - 16/04/2011 - 23:05:45 ---A- . (...) -- C:\WINDOWS\KB970238.log [30338]
O44 - LFC:[MD5.BE5D278C1073F6CEA86C09CFB2D82366] - 16/04/2011 - 23:05:35 ---A- . (...) -- C:\WINDOWS\KB961501.log [30961]
O44 - LFC:[MD5.4107B30F3ACC5017FB8587AF01E74D3B] - 16/04/2011 - 23:05:26 ---A- . (...) -- C:\WINDOWS\KB959426.log [32186]
O44 - LFC:[MD5.E664B57BE5B1B31CB1FDB38E70BAD190] - 16/04/2011 - 23:05:16 ---A- . (...) -- C:\WINDOWS\KB960803.log [22970]
O44 - LFC:[MD5.46FF44D81B6FF9239E459AA1E4772B08] - 16/04/2011 - 23:05:06 ---A- . (...) -- C:\WINDOWS\KB952004.log [32224]
O44 - LFC:[MD5.16E7F42FEE4EE38556A6EA44B5AD97A3] - 16/04/2011 - 23:04:55 ---A- . (...) -- C:\WINDOWS\KB956572.log [30710]
O44 - LFC:[MD5.1525A594DEE777326E88A3FCBE9FDBFA] - 16/04/2011 - 23:04:31 ---A- . (...) -- C:\WINDOWS\KB923561.log [18852]
O44 - LFC:[MD5.3ECF1DE8F9A58219A354228F32F07AA0] - 16/04/2011 - 23:04:05 ---A- . (...) -- C:\WINDOWS\KB960225.log [23252]
O44 - LFC:[MD5.40725965F9532ECF3D90084C0FC36001] - 16/04/2011 - 23:03:57 ---A- . (...) -- C:\WINDOWS\KB956803.log [15578]
O44 - LFC:[MD5.6F0A128D45B39C7A0119BA7FE4C0DD50] - 16/04/2011 - 23:03:49 ---A- . (...) -- C:\WINDOWS\KB956802.log [20309]
O44 - LFC:[MD5.5D6F55787E210417DEB120A24C0EBC57] - 16/04/2011 - 23:03:42 ---A- . (...) -- C:\WINDOWS\KB923723.log [7613]
O44 - LFC:[MD5.115BA995D11CC7EC243BBF8F0E826F73] - 16/04/2011 - 23:03:36 ---A- . (...) -- C:\WINDOWS\KB955069.log [15180]
O44 - LFC:[MD5.D4D8D51E4CFF44F13B006BD0BAB09983] - 16/04/2011 - 23:03:27 ---A- . (...) -- C:\WINDOWS\KB958644.log [14681]
O44 - LFC:[MD5.E65EAC8F5199657FEAAC8D936B55FB31] - 16/04/2011 - 23:03:19 ---A- . (...) -- C:\WINDOWS\KB952287.log [13873]
O44 - LFC:[MD5.5C30B195186BDD9844C12555AC8E2180] - 16/04/2011 - 23:03:11 ---A- . (...) -- C:\WINDOWS\KB950974.log [20013]
O44 - LFC:[MD5.F53B045FCD9B53192A1AE5E230173F49] - 16/04/2011 - 23:03:04 ---A- . (...) -- C:\WINDOWS\KB952954.log [21709]
O44 - LFC:[MD5.C812BC3C6559BF24C4A9CC5FFE4ABB1B] - 16/04/2011 - 23:02:56 ---A- . (...) -- C:\WINDOWS\KB946648.log [13811]
O44 - LFC:[MD5.D53A90FDA1DBC78BA171111D154E5E02] - 16/04/2011 - 23:02:48 ---A- . (...) -- C:\WINDOWS\KB944338-v2.log [17777]
O44 - LFC:[MD5.39F7D07CD450EFE1C5DB40B1540247DA] - 16/04/2011 - 23:02:40 ---A- . (...) -- C:\WINDOWS\KB951748.log [20715]
O44 - LFC:[MD5.34615815AFE4B280CBE8CE8069926D01] - 16/04/2011 - 23:02:30 ---A- . (...) -- C:\WINDOWS\KB951376-v2.log [12062]
O44 - LFC:[MD5.836DEC66D07B36B869F3535C7FF9DEAB] - 16/04/2011 - 23:02:23 ---A- . (...) -- C:\WINDOWS\KB950762.log [12298]
O44 - LFC:[MD5.05F9905B6B76B920BF4F573339F62CC8] - 16/04/2011 - 23:02:09 ---A- . (...) -- C:\WINDOWS\KB941569.log [9106]
O44 - LFC:[MD5.785EDE97141488A657A9343DB0822AF8] - 16/04/2011 - 23:00:44 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [2206]
O44 - LFC:[MD5.BBF5D750547B723B2E16830B5E06A1A9] - 16/04/2011 - 23:00:27 ---A- . (...) -- C:\WINDOWS\KB892130.log [6374]
O44 - LFC:[MD5.B57654B6411471C9E8D84D56A6315B35] - 16/04/2011 - 21:07:53 ---A- . (...) -- C:\WINDOWS\System32\vsconfig.xml [427421]
O44 - LFC:[MD5.A3EF1DA5857EE3D82B91BC45391AF946] - 16/04/2011 - 21:05:54 --HA- . (...) -- C:\WINDOWS\System32\zllictbl.dat [4212]
O44 - LFC:[MD5.5BAD0B37217AFEA95B1024AF3BE4E9B4] - 16/04/2011 - 21:05:44 ---A- . (.Zone Labs Inc. - TrueVector Service.) -- C:\WINDOWS\System32\vsutil_loc040c.dll [46592]
O44 - LFC:[MD5.2DFEAC2C914CACE4BA5836139BF09EC3] - 16/04/2011 - 21:05:43 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsregexp.dll [58368]
O44 - LFC:[MD5.85C09B9B43AA7CE7C672A39C80176090] - 16/04/2011 - 21:05:40 ---A- . (.Check Point Software Technologies LTD - ZLComm.) -- C:\WINDOWS\System32\zlcomm.dll [69120]
O44 - LFC:[MD5.01054D95D578FFEDEC6FC124ED595A5E] - 16/04/2011 - 21:05:40 ---A- . (.Check Point Software Technologies LTD - ZLCommDB.) -- C:\WINDOWS\System32\zlcommdb.dll [104448]
O44 - LFC:[MD5.196773E724A1C283BEF7E21BDF2D2F8D] - 16/04/2011 - 21:05:34 ---A- . (.Check Point Software Technologies LTD - vsmon component.) -- C:\WINDOWS\System32\vswmi.dll [43008]
O44 - LFC:[MD5.41995A9476529835851B61369596E5D2] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - Check Point Endpoint Security.) -- C:\WINDOWS\System32\zpeng25.dll [1238528]
O44 - LFC:[MD5.9B8AF90986E11DCA788B1F8E55C82A78] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Client Interface.) -- C:\WINDOWS\System32\vsmonapi.dll [108032]
O44 - LFC:[MD5.4636FABD1DBF097F39D0F2679E185BC7] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vspubapi.dll [302592]
O44 - LFC:[MD5.18F9AB94694843A35178711A1B96BB1A] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsxml.dll [110080]
O44 - LFC:[MD5.050C38EBB22512122E54B47DC278BCCD] - 16/04/2011 - 21:05:30 ---A- . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) -- C:\WINDOWS\System32\vsdatant.sys [532224]
O44 - LFC:[MD5.9A5E521DDF4F1B025F6F6C99BFB46F67] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service DLL.) -- C:\WINDOWS\System32\vsdata.dll [112128]
O44 - LFC:[MD5.320653DC5250B36C57FDC7C60CD3C23A] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsinit.dll [228864]
O44 - LFC:[MD5.D47B2CB64DA21201252A6623C7EE1AF3] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsutil.dll [715264]
O44 - LFC:[MD5.2B137B8428D6052CF7CF75933FD21852] - 16/04/2011 - 21:01:33 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.EE03C17149BA2D8CC7405E39085CBA1D] - 16/04/2011 - 21:01:32 ---A- . (...) -- C:\WINDOWS\wiadebug.log [216]
O44 - LFC:[MD5.8715347D6B7B2E3A7CFE5ADF2D510CE3] - 16/04/2011 - 20:56:19 ---A- . (...) -- C:\WINDOWS\win.ini [477]
O44 - LFC:[MD5.81051BCC2CF1BEDF378224B0A93E2877] - 16/04/2011 - 20:55:56 ---A- . (...) -- C:\WINDOWS\msoffice.ini [2]
O44 - LFC:[MD5.1AC62414BB7F245209FBEC512F72EFB1] - 16/04/2011 - 20:53:09 ---A- . (...) -- C:\WINDOWS\System32\Status.MPF [46784]
O44 - LFC:[MD5.828E91D83E1275F34B2F30628573F87C] - 16/04/2011 - 20:30:25 ---A- . (...) -- C:\WINDOWS\KB943232.log [7820]
O44 - LFC:[MD5.41E821B7F4628D2E3000EBECE4DB2294] - 16/04/2011 - 19:04:25 ---A- . (...) -- C:\WINDOWS\KB898461.log [6921]
O44 - LFC:[MD5.E74DC2F3F9675A6025A4AA020EDD4341] - 16/04/2011 - 19:02:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [38224]
O44 - LFC:[MD5.9B5CC6C481BDD00A963829B892623247] - 16/04/2011 - 19:02:35 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [20952]
O44 - LFC:[MD5.8E46199F26F306D147BF36307F6D5888] - 16/04/2011 - 18:49:42 ---A- . (...) -- C:\WINDOWS\OEWABLog.txt [1178]
O44 - LFC:[MD5.49FD2619B5356280831A083455DD139A] - 16/04/2011 - 18:49:23 ---A- . (...) -- C:\WINDOWS\System32\$winnt$.inf [403]
O44 - LFC:[MD5.BDCFDD5684DD8BBB7A76EE0F88C5ED06] - 16/04/2011 - 18:49:21 ---A- . (...) -- C:\WINDOWS\setupact.log [993]
O44 - LFC:[MD5.574C94EED8119C6860546294753EC938] - 16/04/2011 - 18:49:19 RSHA- . (...) -- C:\boot.ini [216]
O44 - LFC:[MD5.B1DD7ED7E0C91ADFC0C6EB65049482E0] - 16/04/2011 - 18:46:59 ---A- . (...) -- C:\WINDOWS\sessmgr.setup.log [2739]
O44 - LFC:[MD5.9D092EBA53FF2563E086B00CFCEDAE4B] - 16/04/2011 - 18:46:52 ---A- . (...) -- C:\WINDOWS\DtcInstall.log [641]
O44 - LFC:[MD5.63D32AE123241C49802DCF71A70E5C33] - 16/04/2011 - 18:45:24 ---A- . (...) -- C:\WINDOWS\regopt.log [3002]
O44 - LFC:[MD5.61E2844FF36A1569015D0634D2EF0620] - 16/04/2011 - 18:44:36 ---A- . (...) -- C:\WINDOWS\REGLOCS.OLD [8192]
O44 - LFC:[MD5.1C2E6BB4FE8621B1B863855B02BC33EB] - 16/04/2011 - 18:06:24 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [19544]
O44 - LFC:[MD5.4B1A54BA2BC5873A774DF6B70AB8B0B3] - 16/04/2011 - 18:06:24 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswSP.sys [301528]
O44 - LFC:[MD5.C7F1CEA32766184911293F4E1EE653F5] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\System32\drivers\aswTdi.sys [49240]
O44 - LFC:[MD5.B6A9373619D851BE80FB5F1B5EED0D4E] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\WINDOWS\System32\drivers\aswRdr.sys [25432]
O44 - LFC:[MD5.9BE41C1AE8BC481EB662D85C98D979C2] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [371544]
O44 - LFC:[MD5.9681A655BE1D8AFF0D1A352504E4AF0C] - 16/04/2011 - 18:06:21 ---A- . (...) -- C:\WINDOWS\System32\CONFIG.NT [3120]
O44 - LFC:[MD5.83631291ADF2887CFFC786D034D3FA15] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for W.) -- C:\WINDOWS\System32\drivers\aavmker4.sys [30680]
O44 - LFC:[MD5.687BB5CCB764C2E3DA9F1D4892E50327] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! File System Filter Driver for Window.) -- C:\WINDOWS\System32\drivers\aswmon.sys [96344]
O44 - LFC:[MD5.452D0ECD14FA02F9B061F42C8A30DD49] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! File System Filter Driver for Window.) -- C:\WINDOWS\System32\drivers\aswmon2.sys [102232]
O44 - LFC:[MD5.0439C6170F7F6355BB5275C9CAA6050F] - 16/04/2011 - 18:06:00 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\WINDOWS\avastSS.scr [40648]
O44 - LFC:[MD5.C6E1D434F1F3A5226B0DDFDF84B12677] - 16/04/2011 - 18:05:59 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\WINDOWS\System32\aswBoot.exe [190016]
---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\ZoneLabs\vsmon.exe" [Enabled] .(.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.83631291ADF2887CFFC786D034D3FA15] - 23/02/2011 - 14:54:57 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys [30680]
O58
J'ai lancé un scan ZHPDiag et un scan Malwarebytes, voici les rapports:
Rapport de ZHPDiag v1.27.1903 par Nicolas Coolman, Update du 17/04/2011
Run by Isabelle at 17/04/2011 18:52:19
Web site :
Vous devez être connecté pour voir les liens.
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 4.0 v4.0 (Defaut)
---\\ System Information
Windows XP Home Edition Service Pack 2 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
Total RAM: 503 MB (69% free)
System Restore: Désactivé (Disabled)
System drive C: has 65 GB (91%) free of 71 GB
---\\ Logged in mode
Computer Name: ISA
User Name: Isabelle
All Users Names: SUPPORT_388945a0, Isabelle, HelpAssistant, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
%AppData%=C:\Documents and Settings\Isabelle\Application Data
%LocalAppData%=C:\Documents and Settings\Isabelle\Local Settings\Application Data
%StartMenu%=C:\Documents and Settings\Isabelle\Menu Démarrer
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 65 Go of 71 Go)
D:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
---\\ Recherche particulière de fichiers génériques
[MD5.4C33E5B9A6197B6ED215F6CFBA0A2DAA] - (.Microsoft Corporation - Explorateur Windows.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\Explorer.exe [1036288]
[MD5.B98E84E2CD3EE25D6D41936352E93112] - (.Microsoft Corporation - Internet Extensions for Win32.) (.06/05/2010 11:33:44.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.D2DE785AEAB0BB8CA4C14A8A199DBE4E] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\system32\Winlogon.exe [506368]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.03/08/2004 22:59:44.) -- C:\WINDOWS\system32\drivers\atapi.sys [95360]
[MD5.B78BE402C3F63DD55521F73876951CDD] - (.Microsoft Corporation - NT File System Driver.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574592]
---\\ Processus lancés
[MD5.6797E0F85E5F419EEFBE2E4C7A622EA1] - (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2435592]
[MD5.D6D0AD94EFC131772C3265F242D78FCB] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [644096]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Isabelle] -- C:\Documents and Settings\Isabelle\Application Data\Mozilla\Firefox\Profiles\q358ipnf.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN: [HKLM] [@checkpoint.com/FFApi] - (.Pas de propriétaire - npFFApi.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll
P2 - FPN: [HKLM] [@viewpoint.com/VMP] - (.Pas de propriétaire - MetaStream 3 Plugin r4.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
M0 - MFSP: prefs.js [Isabelle - q358ipnf.default]
Vous devez être connecté pour voir les liens.
M2 - MFEP: prefs.js [Isabelle - q358ipnf.default\{d7f26d0e-9801-45c3-a091-8a65e4ed73b5}] [] Protection ZoneAlarm Community Toolbar v3.3.3.2 (.Conduit Ltd..)
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
Vous devez être connecté pour voir les liens.
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
Vous devez être connecté pour voir les liens.
R0 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\Software\Microsoft\Internet Explorer\Main,Start Page =
Vous devez être connecté pour voir les liens.
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
Vous devez être connecté pour voir les liens.
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
Vous devez être connecté pour voir les liens.
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
Vous devez être connecté pour voir les liens.
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
Vous devez être connecté pour voir les liens.
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
Vous devez être connecté pour voir les liens.
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
Vous devez être connecté pour voir les liens.
R1 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\Software\Microsoft\Internet Explorer\Main,Search Page =
Vous devez être connecté pour voir les liens.
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18928 (longhorn_ie8_gdr.100503-1700)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Protection ZoneAlarm Toolbar - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe Acrobat IE Helper Version 6.0 for Act.) -- C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Protection ZoneAlarm - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Protection ZoneAlarm Toolbar - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll
O3 - Toolbar: ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [igfxtray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (...) -- C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] . (.SigmaTel, Inc. - Sigmatel Audio system tray application.) -- C:\WINDOWS\stsystra.exe
O4 - HKLM\..\Run: [DMXLauncher] . (...) -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Dell QuickSet] . (.Dell Inc - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - Dell Wireless WLAN Card Wireless Network Tr.) -- C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Computer, Inc. - Pas de description.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe
O4 - HKLM\..\Run: [ISUSScheduler] . (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [MSKDetectorExe] . (.McAfee, Inc. - McAfee SpamKiller Account Detector.) -- C:\Program Files\McAfee\SpamKiller\MSKDetct.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] . (.Check Point Software Technologies LTD - ZoneAlarm Client.) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [ISW] . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ModemOnHold] . (...) -- C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [ModemOnHold] . (...) -- C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Digital Line Detect.lnk . (.BVRP Software.) -- C:\Program Files\Digital Line Detect\DLG.exe
---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 6.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A00000000001}\SC_Reader_PM.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\msworks.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Les services Haut-Débit.lnk . (...) -- C:\Program Files\Dell\ArtEuro\html\index.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Tiscali Internet.lnk . (.InstallShield Software Corp..) -- C:\WINDOWS\Installer\{58B2B6D3-E5FF-4D16-87AC-52CC5717C7C6}\NewShortcut1_58B2B6D3E5FF4D1687AC52CC5717C7C6.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline
O9 - Extra button: Console Java (Sun) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} . (...) -- C:\Program Files\Real\RealPlayer\eb_act.ico
O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (...) -- C:\Program Files\Real\RealPlayer\eb_act.ico
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} . (.Pas de propriétaire - insmimefilter Module.) -- C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: (IswSvc) . (.Check Point Software Technologies - ZoneAlarm Browser Security.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: (NICCONFIGSVC) . (.Dell Inc. - Internal Network Card Power Management Ser.) - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: (vsmon) . (.Check Point Software Technologies LTD - TrueVector Service.) - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: (wltrysvc) . (...) - C:\WINDOWS\System32\WLTRYSVC.exe
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Rappel d'abonnement 1 auprès de l'ISP.job
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (APPDRV) . (.Dell Inc - App Support Driver.) - C:\WINDOWS\sysTEM32\DRIVERS\APPDRV.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (vsdatant) . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - C:\Windows\System32\vsdatant.sys
---\\ Logiciels installés (O42)
O42 - Logiciel: ARTEuro - (.Dell.) [HKLM] -- {1D3C662A-F6C6-4767-A788-7AA43A9A1317}
O42 - Logiciel: Adobe Acrobat - Reader 6.0.2 Update - (.Adobe Systems.) [HKLM] -- {AC76BA86-0000-0000-0000-6028747ADE01}
O42 - Logiciel: Adobe Reader 6.0.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A00000000001}
O42 - Logiciel: Broadcom Management Programs - (.Broadcom Corporation.) [HKLM] -- {26E1BFB0-E87E-4696-9F89-B467F01F81E5}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Conexant HDA D110 MDC V.92 Modem - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3
O42 - Logiciel: DMX Update - (.Pas de propriétaire.) [HKLM] -- {C41F4616-44B6-4E8D-BFC7-4267862A2CE1}
O42 - Logiciel: Dell CinePlayer - (.Dell.) [HKLM] -- {43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}
O42 - Logiciel: Dell Driver Reset Tool - (.Dell Inc..) [HKLM] -- {5905F42D-3F5F-4916-ADA6-94A3646AEE76}
O42 - Logiciel: Dell Media Experience - (.Dell.) [HKLM] -- {AC0EE5B0-A8FB-4D0A-AF03-2EDC518F841B}
O42 - Logiciel: Dell Wireless WLAN Card - (.Dell Inc..) [HKLM] -- Broadcom 802.11b Network Adapter
O42 - Logiciel: Digital Line Detect - (.BVRP Software, Inc.) [HKLM] -- {E646DCF0-5A68-11D5-B229-002078017FBF}
O42 - Logiciel: Ecran de veille AOL Photos - (.Pas de propriétaire.) [HKLM] -- AOL YGP Screensaver
O42 - Logiciel: High Definition Audio Driver Package - KB835221 - (.Microsoft Corporation.) [HKLM] -- KB835221WXP
O42 - Logiciel: Hotfix for Windows XP (KB943232) - (.Microsoft Corporation.) [HKLM] -- KB943232
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver for Mobile - (.Pas de propriétaire.) [HKLM] -- {8A708DD8-A5E6-11D4-A706-000629E95E20}
O42 - Logiciel: Internet Explorer Default Page - (.Dell Inc..) [HKLM] -- {35BDEFF1-A610-4956-A00D-15453C116395}
O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.2_03 - (.Sun Microsystems, Inc..) [HKLM] -- {7148F0A8-6813-11D6-A77B-00B0D0142030}
O42 - Logiciel: Learn2 Player (Uninstall Only) - (.Pas de propriétaire.) [HKLM] -- StreetPlugin
O42 - Logiciel: MCU - (.Dell.) [HKLM] -- {D2988E9B-C73F-422C-AD4B-A66EBE257120}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Works 7.0 - (.Microsoft Corporation.) [HKLM] -- {64D114CE-4234-45C2-B60A-2B07D5A48F72}
O42 - Logiciel: Modem Helper - (.BVRP Software.) [HKLM] -- {7F142D56-3326-11D5-B229-002078017FBF}
O42 - Logiciel: Mozilla Firefox 4.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 4.0 (x86 fr)
O42 - Logiciel: MyWay Search Assistant - (.MyWay.) [HKLM] -- {E7559288-223B-453C-9F06-340E3BE21E39}
O42 - Logiciel: NetWaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF}
O42 - Logiciel: QuickSet - (.Pas de propriétaire.) [HKLM] -- {C5074CC4-0E26-4716-A307-960272A90040}
O42 - Logiciel: QuickTime - (.Pas de propriétaire.) [HKLM] -- QuickTime
O42 - Logiciel: RealPlayer Basic - (.Pas de propriétaire.) [HKLM] -- RealPlayer 6.0
O42 - Logiciel: Roxio DLA - (.Roxio.) [HKLM] -- {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
O42 - Logiciel: Roxio MyDVD LE - (.Roxio.) [HKLM] -- {21657574-BD54-48A2-9450-EB03B2C7FC29}
O42 - Logiciel: Roxio RecordNow Audio - (.Roxio.) [HKLM] -- {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
O42 - Logiciel: Roxio RecordNow Copy - (.Roxio.) [HKLM] -- {B12665F4-4E93-4AB4-B7FC-37053B524629}
O42 - Logiciel: Roxio RecordNow Data - (.Roxio.) [HKLM] -- {075473F5-846A-448B-BCB3-104AA1760205}
O42 - Logiciel: Sonic Activation Module - (.Sonic Solutions.) [HKLM] -- {5B6BE547-21E2-49CA-B2E2-6A5F470593B1}
O42 - Logiciel: Sonic Update Manager - (.Sonic Solutions.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Tiscali Internet - (.Tiscali.) [HKLM] -- {58B2B6D3-E5FF-4D16-87AC-52CC5717C7C6}
O42 - Logiciel: Viewpoint Media Player - (.Pas de propriétaire.) [HKLM] -- ViewpointMediaPlayer
O42 - Logiciel: Visual C++ 8.0 CRT (x86) WinSXS MSM - (.Microsoft Corporation.) [HKLM] -- {98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E}
O42 - Logiciel: Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM - (.Microsoft Corporation.) [HKLM] -- {63E949F6-03BC-5C40-FF1F-C8B3B9A1E18E}
O42 - Logiciel: Wanadoo Europe Installer - (.Wanadoo.) [HKLM] -- {B7AC5A96-C8BC-431C-B661-27A09781DFA8}
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Installer 3.1 (KB893803) - (.Microsoft Corporation.) [HKLM] -- KB893803v2
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format Runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: ZoneAlarm - (.Check Point, Inc.) [HKLM] -- ZoneAlarm
O42 - Logiciel: ZoneAlarm Toolbar - (.Check Point Software Technologies.) [HKLM] -- ZoneAlarm Toolbar
O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM] -- avast
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\America Online]
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow]
[HKCU\Software\Broadcom]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conduit]
[HKCU\Software\Corel]
[HKCU\Software\Dell Computer Corporation]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\InterActual Technologies]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\McAfee.com]
[HKCU\Software\MyWaySA]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Protection_ZoneAlarm]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Sonic]
[HKCU\Software\Synaptics]
[HKCU\Software\Tiscali]
[HKCU\Software\Zone Labs]
[HKCU\Software\toolbar]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\America Online]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\BVRP Software, Inc]
[HKLM\Software\BVRP Software]
[HKLM\Software\Broadcom]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CXT]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Conexant]
[HKLM\Software\Corel]
[HKLM\Software\Debug]
[HKLM\Software\Dell Computer Corporation]
[HKLM\Software\Dell Computers]
[HKLM\Software\Dell]
[HKLM\Software\GTek]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\InterActual Technologies]
[HKLM\Software\JavaSoft]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\McAfee]
[HKLM\Software\MetaStream]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\MyWaySA]
[HKLM\Software\NeoWorx]
[HKLM\Software\Network Associates]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\Protection_ZoneAlarm]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Roxio]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Sigmatel]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\Viewpoint]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Zone Labs]
[HKLM\Software\lameme]
[HKLM\Software\mozilla.org]
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/06/2006 - 22:06:48 - [75865552] ----D- C:\Program Files\Adobe
O43 - CFD: 16/04/2011 - 19:05:50 - [152144511] ----D- C:\Program Files\AVAST Software
O43 - CFD: 14/06/2006 - 22:03:36 - [2413725] ----D- C:\Program Files\Broadcom
O43 - CFD: 16/04/2011 - 21:50:40 - [3673632] ----D- C:\Program Files\CCleaner
O43 - CFD: 16/04/2011 - 22:06:04 - [26830342] ----D- C:\Program Files\CheckPoint
O43 - CFD: 20/08/2004 - 11:35:04 - [0] ----D- C:\Program Files\ComPlus Applications
O43 - CFD: 16/04/2011 - 22:06:34 - [634976] ----D- C:\Program Files\Conduit
O43 - CFD: 14/06/2006 - 22:00:38 - [577536] ----D- C:\Program Files\CONEXANT
O43 - CFD: 16/04/2011 - 21:58:40 - [104] ----D- C:\Program Files\Corel
O43 - CFD: 14/06/2006 - 22:09:20 - [0] ----D- C:\Program Files\Corel Corporation
O43 - CFD: 14/06/2006 - 22:07:08 - [197784446] ----D- C:\Program Files\Dell
O43 - CFD: 14/06/2006 - 22:03:00 - [233995] ----D- C:\Program Files\Digital Line Detect
O43 - CFD: 16/04/2011 - 22:02:12 - [112758500] ----D- C:\Program Files\Fichiers communs
O43 - CFD: 14/06/2006 - 22:08:30 - [12679267] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 14/06/2006 - 22:02:44 - [8591894] ----D- C:\Program Files\InterActual
O43 - CFD: 17/04/2011 - 14:13:26 - [5297624] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/06/2006 - 21:58:12 - [43515348] ----D- C:\Program Files\Java
O43 - CFD: 14/06/2006 - 22:06:30 - [711772] ----D- C:\Program Files\Learn2.com
O43 - CFD: 16/04/2011 - 20:02:44 - [4920556] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 14/06/2006 - 22:13:58 - [1511201] ----D- C:\Program Files\McAfee
O43 - CFD: 17/04/2011 - 00:02:56 - [2146435] ----D- C:\Program Files\Messenger
O43 - CFD: 20/08/2004 - 11:37:28 - [0] ----D- C:\Program Files\microsoft frontpage
O43 - CFD: 14/06/2006 - 22:05:08 - [110239853] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 14/06/2006 - 22:02:52 - [3514234] ----D- C:\Program Files\Modem Helper
O43 - CFD: 17/04/2011 - 00:18:10 - [10371290] ----D- C:\Program Files\Movie Maker
O43 - CFD: 16/04/2011 - 21:23:26 - [32939757] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 20/08/2004 - 11:34:08 - [19278399] ----D- C:\Program Files\MSN
O43 - CFD: 20/08/2004 - 11:34:16 - [8745735] ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD: 20/08/2004 - 11:35:26 - [3285523] ----D- C:\Program Files\NetMeeting
O43 - CFD: 14/06/2006 - 22:02:44 - [883217] ----D- C:\Program Files\NetWaiting
O43 - CFD: 20/08/2004 - 11:34:26 - [1708] ----D- C:\Program Files\Online Services
O43 - CFD: 17/04/2011 - 00:20:08 - [4379833] ----D- C:\Program Files\Outlook Express
O43 - CFD: 16/04/2011 - 22:06:32 - [4556195] ----D- C:\Program Files\Protection_ZoneAlarm
O43 - CFD: 14/06/2006 - 22:06:28 - [2547686] ----D- C:\Program Files\QuickTime
O43 - CFD: 14/06/2006 - 22:05:54 - [8438745] ----D- C:\Program Files\Real
O43 - CFD: 14/06/2006 - 22:10:54 - [138403328] ----D- C:\Program Files\Roxio
O43 - CFD: 20/08/2004 - 11:35:48 - [929] ----D- C:\Program Files\Services en ligne
O43 - CFD: 14/06/2006 - 22:00:32 - [21869] ----D- C:\Program Files\Sigmatel
O43 - CFD: 14/06/2006 - 22:12:04 - [154] ----D- C:\Program Files\Sonic
O43 - CFD: 16/04/2011 - 20:39:54 - [64713893] ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 14/06/2006 - 22:03:08 - [27476486] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/06/2006 - 22:07:36 - [1191936] ----D- C:\Program Files\Tiscali
O43 - CFD: 20/08/2004 - 11:41:52 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 14/06/2006 - 22:06:28 - [7558675] ----D- C:\Program Files\Viewpoint
O43 - CFD: 14/06/2006 - 22:07:28 - [53576646] ----D- C:\Program Files\Wanadoo Europe
O43 - CFD: 14/06/2006 - 22:09:16 - [4100973] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 20/08/2004 - 11:34:08 - [3940095] ----D- C:\Program Files\Windows NT
O43 - CFD: 20/08/2004 - 11:35:52 - [0] --H-D- C:\Program Files\WindowsUpdate
O43 - CFD: 20/08/2004 - 11:37:28 - [0] ----D- C:\Program Files\xerox
O43 - CFD: 14/06/2006 - 22:07:16 - [0] ----D- C:\Program Files\Your Company Name
O43 - CFD: 17/04/2011 - 18:52:28 - [3756552] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 16/04/2011 - 21:29:38 - [21741969] ----D- C:\Program Files\Zone Labs
O43 - CFD: 16/04/2011 - 21:56:20 - [1446564] ----D- C:\Program Files\Fichiers Communs\AOL
O43 - CFD: 14/06/2006 - 22:07:04 - [8637751] ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD: 14/06/2006 - 21:58:02 - [24359929] ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD: 16/04/2011 - 19:06:12 - [29997225] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD: 20/08/2004 - 11:35:30 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD: 14/06/2006 - 22:06:18 - [2392177] ----D- C:\Program Files\Fichiers Communs\Nullsoft
O43 - CFD: 20/08/2004 - 11:30:36 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD: 14/06/2006 - 22:05:56 - [9545492] ----D- C:\Program Files\Fichiers Communs\Real
O43 - CFD: 14/06/2006 - 22:02:16 - [5759929] ----D- C:\Program Files\Fichiers Communs\Roxio Shared
O43 - CFD: 20/08/2004 - 11:35:32 - [8106] ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD: 14/06/2006 - 22:11:58 - [19384045] ----D- C:\Program Files\Fichiers Communs\Sonic Shared
O43 - CFD: 20/08/2004 - 11:30:36 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD: 20/08/2004 - 11:35:24 - [6800053] ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD: 14/06/2006 - 22:10:56 - [355840] ----D- C:\Program Files\Fichiers Communs\TiVo Shared
O43 - CFD: 16/04/2011 - 22:07:16 - [20495] ----D- C:\Documents and Settings\Isabelle\Application Data\CheckPoint
O43 - CFD: 20/08/2004 - 11:41:54 - [0] ----D- C:\Documents and Settings\Isabelle\Application Data\Identities
O43 - CFD: 16/04/2011 - 18:56:54 - [300] ----D- C:\Documents and Settings\Isabelle\Application Data\Macromedia
O43 - CFD: 16/04/2011 - 20:03:02 - [6759] ----D- C:\Documents and Settings\Isabelle\Application Data\Malwarebytes
O43 - CFD: 16/04/2011 - 20:03:12 - [47] ----D- C:\Documents and Settings\Isabelle\Application Data\McAfee.com Personal Firewall
O43 - CFD: 20/08/2004 - 11:30:08 - [645600] -S--D- C:\Documents and Settings\Isabelle\Application Data\Microsoft
O43 - CFD: 16/04/2011 - 21:23:46 - [17304949] ----D- C:\Documents and Settings\Isabelle\Application Data\Mozilla
O43 - CFD: 14/06/2006 - 21:58:14 - [473] ----D- C:\Documents and Settings\Isabelle\Application Data\Sun
O43 - CFD: 14/06/2006 - 22:06:30 - [0] ----D- C:\Documents and Settings\Isabelle\Application Data\You've Got Pictures Screensaver
O43 - CFD: 20/08/2004 - 11:44:00 - [5091] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 14/06/2006 - 22:02:44 - [1158] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\BVRP Software
O43 - CFD: 16/04/2011 - 23:58:26 - [146069] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Conduit
O43 - CFD: 17/04/2011 - 14:14:08 - [1955679] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Microsoft
O43 - CFD: 16/04/2011 - 21:23:36 - [30859899] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Mozilla
O43 - CFD: 16/04/2011 - 23:58:34 - [4752322] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Protection_ZoneAlarm
O43 - CFD: 16/04/2011 - 22:06:32 - [0] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Temp
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.13A474ACFFD3BCD923F9FD8B01CE9BF8] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [956504]
O44 - LFC:[MD5.64CB50D6CA4EB2B4C00520AFEDA4A7E8] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [53436]
O44 - LFC:[MD5.C020ABCB4EC5540EDAB1CA1BA56DA551] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfc00C.dat [64484]
O44 - LFC:[MD5.D6315521842076995591903AF2AB087B] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [381692]
O44 - LFC:[MD5.18ECE5F82A134AACEA225D26CC32E217] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfh00C.dat [446566]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/04/2011 - 17:41:53 ---A- . (...) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.15FA6E5D744875D64D65574866610620] - 17/04/2011 - 17:41:46 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [139402]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 17/04/2011 - 17:41:01 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.0514FCD182B4C33FC64A6ECFABC52343] - 17/04/2011 - 16:52:37 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1655602]
O44 - LFC:[MD5.028D873EA63F41923A5B41277681BC15] - 17/04/2011 - 15:15:00 ---A- . (...) -- C:\WINDOWS\setuplog.txt [137961]
O44 - LFC:[MD5.A4285111CA11451FCAA32D37E3DA5926] - 17/04/2011 - 14:45:22 ---A- . (...) -- C:\WINDOWS\KB970430.log [3982]
O44 - LFC:[MD5.8C6E84FBB6EDA616068A26F981A1F029] - 17/04/2011 - 14:45:17 ---A- . (...) -- C:\WINDOWS\KB971737.log [3720]
O44 - LFC:[MD5.EC1260A8ECF74C46E13A696366DEDE9B] - 17/04/2011 - 14:44:52 ---A- . (...) -- C:\WINDOWS\KB967715.log [32740]
O44 - LFC:[MD5.072FD534FD02D047C8F45C392C8929CA] - 17/04/2011 - 14:43:21 ---A- . (...) -- C:\WINDOWS\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt [4148]
O44 - LFC:[MD5.11F4A705816E738FB66E1FCECF869D04] - 17/04/2011 - 14:29:16 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [7242]
O44 - LFC:[MD5.FCEB85884AA69B2940B47041E0ABD03B] - 17/04/2011 - 13:15:04 ---A- . (...) -- C:\WINDOWS\spupdsvc.log [8788]
O44 - LFC:[MD5.2D04CC5CCAAF04624EEBD655F2BF9BBB] - 17/04/2011 - 13:13:30 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [145216]
O44 - LFC:[MD5.55476081EF4159D7396C3CEF3C6EF66E] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [518849]
O44 - LFC:[MD5.51BE0C861AED0574125589991146FBBB] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\KB2229593.log [53468]
O44 - LFC:[MD5.7743D68BF9055528B60910F99466A0AC] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\comsetup.log [177245]
O44 - LFC:[MD5.61EA6B165273FC93835FA228ACF4E14B] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\iis6.log [78148]
O44 - LFC:[MD5.BE4254F921BF4B288CA30DA00D90B4B3] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.842247C07EF02F8EBC653AC26FA54578] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\msgsocm.log [25541]
O44 - LFC:[MD5.59E5488858F400C98F90C857DB99F4DB] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [106390]
O44 - LFC:[MD5.16632D11D9ABECAB88F28C64E5AFCFCF] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ocgen.log [253508]
O44 - LFC:[MD5.14315089C744A38C222DAFFDF97ABF9D] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ocmsn.log [28104]
O44 - LFC:[MD5.3A08F516FA9BAA29AC90C753A0ACC987] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\setupapi.log [779672]
O44 - LFC:[MD5.71429C35909AEBDD03087E69F0DAAAF0] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\tsoc.log [198047]
O44 - LFC:[MD5.6C4B7A03F6FB3B7B90E5B8B7D7FE16BC] - 16/04/2011 - 23:21:44 ---A- . (...) -- C:\WINDOWS\KB982381.log [74135]
O44 - LFC:[MD5.049F1ED937E32157E00604C5BD899E5F] - 16/04/2011 - 23:21:44 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]
O44 - LFC:[MD5.F3886FE6CCAE21289F7DF53146377AF6] - 16/04/2011 - 23:21:39 ---A- . (...) -- C:\WINDOWS\updspapi.log [46431]
O44 - LFC:[MD5.EED27DC64F617D4D0D3122C1289B0502] - 16/04/2011 - 23:21:21 ---A- . (...) -- C:\WINDOWS\KB979559.log [63094]
O44 - LFC:[MD5.1A948FE1A86F67A621529D5FA116B3B3] - 16/04/2011 - 23:21:08 ---A- . (...) -- C:\WINDOWS\KB975562.log [58172]
O44 - LFC:[MD5.535CD2680B457DCAD98B8BE08D0D1703] - 16/04/2011 - 23:20:55 ---A- . (...) -- C:\WINDOWS\KB979482.log [58919]
O44 - LFC:[MD5.E557405E2185B05AA08F4F52D7B34CCC] - 16/04/2011 - 23:20:43 ---A- . (...) -- C:\WINDOWS\KB980195.log [51716]
O44 - LFC:[MD5.17047A2F276F496E2F65EFE32DF8F245] - 16/04/2011 - 23:20:32 ---A- . (...) -- C:\WINDOWS\KB978695.log [52325]
O44 - LFC:[MD5.E5C0517DED0DA908D4972375C2E291FE] - 16/04/2011 - 23:20:26 ---A- . (...) -- C:\WINDOWS\KB980218.log [61494]
O44 - LFC:[MD5.21DA88D9101F4CF5675C714FFBBD8256] - 16/04/2011 - 23:20:15 ---A- . (...) -- C:\WINDOWS\KB981793.log [48893]
O44 - LFC:[MD5.33A2BE30077508B304DE25F49668FBA4] - 16/04/2011 - 23:20:15 ---A- . (...) -- C:\WINDOWS\System32\TZLog.log [4326]
O44 - LFC:[MD5.FB330A5C263BB7A5F237DADB760565E8] - 16/04/2011 - 23:20:09 ---A- . (...) -- C:\WINDOWS\KB978542.log [59260]
O44 - LFC:[MD5.9FC7143FF6AD0431AF0CFD9E9A495D4A] - 16/04/2011 - 23:19:57 ---A- . (...) -- C:\WINDOWS\KB976002-v5.log [48499]
O44 - LFC:[MD5.1871455A9F18BD52DDD6E2D14B71C5D0] - 16/04/2011 - 23:19:51 ---A- . (...) -- C:\WINDOWS\KB978601.log [58052]
O44 - LFC:[MD5.572C9A030C79E7628FD07101A9F25AE8] - 16/04/2011 - 23:19:40 ---A- . (...) -- C:\WINDOWS\KB979402.log [50259]
O44 - LFC:[MD5.6F53D12AA5E45A39AE108F0E6025AD68] - 16/04/2011 - 23:19:40 ---A- . (...) -- C:\WINDOWS\wmsetup.log [39947]
O44 - LFC:[MD5.B40EE8072466B6E82307D5ADFBD50D31] - 16/04/2011 - 23:19:32 ---A- . (...) -- C:\WINDOWS\KB979683.log [58719]
O44 - LFC:[MD5.8B7172C1AFAE9EDF958F566116B299D9] - 16/04/2011 - 23:19:13 ---A- . (...) -- C:\WINDOWS\KB978338.log [61087]
O44 - LFC:[MD5.31038C9EA8E8DD8C4055FF1208CFC310] - 16/04/2011 - 23:19:01 ---A- . (...) -- C:\WINDOWS\KB979309.log [57089]
O44 - LFC:[MD5.4E56632D65ED567BB18E3B23B3A10C4A] - 16/04/2011 - 23:18:50 ---A- . (...) -- C:\WINDOWS\KB981350.log [60579]
O44 - LFC:[MD5.E901287996B515619D7F21FB0E0C87AC] - 16/04/2011 - 23:18:34 ---A- . (...) -- C:\WINDOWS\KB977816.log [59378]
O44 - LFC:[MD5.F801AE0F7906DE10F344EE7E7295DEB8] - 16/04/2011 - 23:18:23 ---A- . (...) -- C:\WINDOWS\KB980232.log [53649]
O44 - LFC:[MD5.74A7A4F2E321942D99DCE1C9C91EEC10] - 16/04/2011 - 23:18:11 ---A- . (...) -- C:\WINDOWS\KB975561.log [53263]
O44 - LFC:[MD5.BA98C5317F8FCA4AF83B11977503680C] - 16/04/2011 - 23:17:59 ---A- . (...) -- C:\WINDOWS\KB978706.log [58337]
O44 - LFC:[MD5.C524589AED10A9435D02CE6ECBBBA52D] - 16/04/2011 - 23:17:47 ---A- . (...) -- C:\WINDOWS\KB971468.log [53678]
O44 - LFC:[MD5.72B25379B3F83F7CF8D205DAB9BF28FE] - 16/04/2011 - 23:17:36 ---A- . (...) -- C:\WINDOWS\KB977914.log [61727]
O44 - LFC:[MD5.8D17A24BE02A18A645B8C8D6373F17DA] - 16/04/2011 - 23:17:22 ---A- . (...) -- C:\WINDOWS\KB975560.log [62394]
O44 - LFC:[MD5.EE32127F3C477D78B5A4A3E0401F025D] - 16/04/2011 - 23:17:07 ---A- . (...) -- C:\WINDOWS\KB978037.log [61205]
O44 - LFC:[MD5.AE510B9FFAD8645B1CD8E3BEEF619B30] - 16/04/2011 - 23:16:57 ---A- . (...) -- C:\WINDOWS\KB975713.log [37917]
O44 - LFC:[MD5.A3711865ADCCBDCCB1CB501C20937440] - 16/04/2011 - 23:16:50 ---A- . (...) -- C:\WINDOWS\KB972270.log [53689]
O44 - LFC:[MD5.6AFDC5687503F74A0CB7BCE4F021CCC3] - 16/04/2011 - 23:16:39 ---A- . (...) -- C:\WINDOWS\KB973904.log [53738]
O44 - LFC:[MD5.6DFBA63F8876F1965424D93F0B38EFB1] - 16/04/2011 - 23:16:25 ---A- . (...) -- C:\WINDOWS\KB955759.log [55010]
O44 - LFC:[MD5.B92430EC9A51588DC0AC0F210BA7ADB7] - 16/04/2011 - 23:16:11 ---A- . (...) -- C:\WINDOWS\KB974392.log [59348]
O44 - LFC:[MD5.3265D7E2D9EFAC18AE2D8329D7BC6EE3] - 16/04/2011 - 23:16:00 ---A- . (...) -- C:\WINDOWS\KB974318.log [58968]
O44 - LFC:[MD5.68EB724B02B8860267D0857744EF5798] - 16/04/2011 - 23:15:49 ---A- . (...) -- C:\WINDOWS\KB952069.log [53745]
O44 - LFC:[MD5.A56D3EDEE47D08E4AA453CB6CCA283C4] - 16/04/2011 - 23:15:41 ---A- . (...) -- C:\WINDOWS\KB973687.log [52526]
O44 - LFC:[MD5.0FE5B3DC6E869244B66640D4DE8AA811] - 16/04/2011 - 23:15:29 ---A- . (...) -- C:\WINDOWS\KB975467.log [62806]
O44 - LFC:[MD5.ECCE50FB55926D1D2856293B00EF8055] - 16/04/2011 - 23:15:16 ---A- . (...) -- C:\WINDOWS\KB968389.log [62562]
O44 - LFC:[MD5.64E288D6487700FB2E3A1EA2F020A046] - 16/04/2011 - 23:14:59 ---A- . (...) -- C:\WINDOWS\KB969059.log [56130]
O44 - LFC:[MD5.CCD94C96C9F4B3AD06574766BC7F2926] - 16/04/2011 - 23:14:48 ---A- . (...) -- C:\WINDOWS\KB958869.log [45837]
O44 - LFC:[MD5.3E311A6D3CD980FC9E62F8C8BB477CDF] - 16/04/2011 - 23:14:40 ---A- . (...) -- C:\WINDOWS\KB974112.log [55676]
O44 - LFC:[MD5.DF5F9E3E8E03657BCCD19194698ACFD2] - 16/04/2011 - 23:14:30 ---A- . (...) -- C:\WINDOWS\KB974571.log [55467]
O44 - LFC:[MD5.63AD8BF12F2F8A48C820F3922C25DAE9] - 16/04/2011 - 23:14:20 ---A- . (...) -- C:\WINDOWS\KB975025.log [56804]
O44 - LFC:[MD5.FA06C7851DB465D052DD1C4C8977F189] - 16/04/2011 - 23:14:11 ---A- . (...) -- C:\WINDOWS\KB954155.log [45831]
O44 - LFC:[MD5.CEA54DF6B75CED52EA9F2280C8730CE3] - 16/04/2011 - 23:14:05 ---A- . (...) -- C:\WINDOWS\KB971961.log [48232]
O44 - LFC:[MD5.877609BE2B28E4E601BBE08AD34F9757] - 16/04/2011 - 23:13:55 ---A- . (...) -- C:\WINDOWS\KB956844.log [49084]
O44 - LFC:[MD5.1FE4073C11747A17F531FBCE6A58EA3B] - 16/04/2011 - 23:13:45 ---A- . (...) -- C:\WINDOWS\ie8_main.log [76106]
O44 - LFC:[MD5.114CEF7E4D3119FB78D1B6FBD87D068B] - 16/04/2011 - 23:13:42 ---A- . (...) -- C:\WINDOWS\KB982381-IE8.log [57590]
O44 - LFC:[MD5.4582880B9C6160403953F7FFD581910D] - 16/04/2011 - 23:12:55 ---A- . (...) -- C:\WINDOWS\ie8.log [55225]
O44 - LFC:[MD5.5305B1DB1C1DD14FF93A8331B0C6C0C3] - 16/04/2011 - 23:06:55 ---A- . (...) -- C:\WINDOWS\KB971657.log [31281]
O44 - LFC:[MD5.700294193EA8D1F2A1E5D2A29EC8ECA4] - 16/04/2011 - 23:06:47 ---A- . (...) -- C:\WINDOWS\KB973815.log [29320]
O44 - LFC:[MD5.A8A16F98DECE09F406028F928EF81987] - 16/04/2011 - 23:06:36 ---A- . (...) -- C:\WINDOWS\KB960859.log [32375]
O44 - LFC:[MD5.41D9C787D068E13346DD3DCE6356B4BB] - 16/04/2011 - 23:06:27 ---A- . (...) -- C:\WINDOWS\KB973507.log [31312]
O44 - LFC:[MD5.44735BD547A6A49F7D6AFDC473309A7D] - 16/04/2011 - 23:06:18 ---A- . (...) -- C:\WINDOWS\KB958470.log [31189]
O44 - LFC:[MD5.C18084806C66F51B1F2334F7DB24ED97] - 16/04/2011 - 23:06:03 ---A- . (...) -- C:\WINDOWS\KB973869.log [24117]
O44 - LFC:[MD5.30A4E5C0A0E7A02AFCB95DAB3519F8C4] - 16/04/2011 - 23:05:55 ---A- . (...) -- C:\WINDOWS\KB973540.log [21724]
O44 - LFC:[MD5.1AD85D7958C7F55580852E531F5D67EC] - 16/04/2011 - 23:05:45 ---A- . (...) -- C:\WINDOWS\KB970238.log [30338]
O44 - LFC:[MD5.BE5D278C1073F6CEA86C09CFB2D82366] - 16/04/2011 - 23:05:35 ---A- . (...) -- C:\WINDOWS\KB961501.log [30961]
O44 - LFC:[MD5.4107B30F3ACC5017FB8587AF01E74D3B] - 16/04/2011 - 23:05:26 ---A- . (...) -- C:\WINDOWS\KB959426.log [32186]
O44 - LFC:[MD5.E664B57BE5B1B31CB1FDB38E70BAD190] - 16/04/2011 - 23:05:16 ---A- . (...) -- C:\WINDOWS\KB960803.log [22970]
O44 - LFC:[MD5.46FF44D81B6FF9239E459AA1E4772B08] - 16/04/2011 - 23:05:06 ---A- . (...) -- C:\WINDOWS\KB952004.log [32224]
O44 - LFC:[MD5.16E7F42FEE4EE38556A6EA44B5AD97A3] - 16/04/2011 - 23:04:55 ---A- . (...) -- C:\WINDOWS\KB956572.log [30710]
O44 - LFC:[MD5.1525A594DEE777326E88A3FCBE9FDBFA] - 16/04/2011 - 23:04:31 ---A- . (...) -- C:\WINDOWS\KB923561.log [18852]
O44 - LFC:[MD5.3ECF1DE8F9A58219A354228F32F07AA0] - 16/04/2011 - 23:04:05 ---A- . (...) -- C:\WINDOWS\KB960225.log [23252]
O44 - LFC:[MD5.40725965F9532ECF3D90084C0FC36001] - 16/04/2011 - 23:03:57 ---A- . (...) -- C:\WINDOWS\KB956803.log [15578]
O44 - LFC:[MD5.6F0A128D45B39C7A0119BA7FE4C0DD50] - 16/04/2011 - 23:03:49 ---A- . (...) -- C:\WINDOWS\KB956802.log [20309]
O44 - LFC:[MD5.5D6F55787E210417DEB120A24C0EBC57] - 16/04/2011 - 23:03:42 ---A- . (...) -- C:\WINDOWS\KB923723.log [7613]
O44 - LFC:[MD5.115BA995D11CC7EC243BBF8F0E826F73] - 16/04/2011 - 23:03:36 ---A- . (...) -- C:\WINDOWS\KB955069.log [15180]
O44 - LFC:[MD5.D4D8D51E4CFF44F13B006BD0BAB09983] - 16/04/2011 - 23:03:27 ---A- . (...) -- C:\WINDOWS\KB958644.log [14681]
O44 - LFC:[MD5.E65EAC8F5199657FEAAC8D936B55FB31] - 16/04/2011 - 23:03:19 ---A- . (...) -- C:\WINDOWS\KB952287.log [13873]
O44 - LFC:[MD5.5C30B195186BDD9844C12555AC8E2180] - 16/04/2011 - 23:03:11 ---A- . (...) -- C:\WINDOWS\KB950974.log [20013]
O44 - LFC:[MD5.F53B045FCD9B53192A1AE5E230173F49] - 16/04/2011 - 23:03:04 ---A- . (...) -- C:\WINDOWS\KB952954.log [21709]
O44 - LFC:[MD5.C812BC3C6559BF24C4A9CC5FFE4ABB1B] - 16/04/2011 - 23:02:56 ---A- . (...) -- C:\WINDOWS\KB946648.log [13811]
O44 - LFC:[MD5.D53A90FDA1DBC78BA171111D154E5E02] - 16/04/2011 - 23:02:48 ---A- . (...) -- C:\WINDOWS\KB944338-v2.log [17777]
O44 - LFC:[MD5.39F7D07CD450EFE1C5DB40B1540247DA] - 16/04/2011 - 23:02:40 ---A- . (...) -- C:\WINDOWS\KB951748.log [20715]
O44 - LFC:[MD5.34615815AFE4B280CBE8CE8069926D01] - 16/04/2011 - 23:02:30 ---A- . (...) -- C:\WINDOWS\KB951376-v2.log [12062]
O44 - LFC:[MD5.836DEC66D07B36B869F3535C7FF9DEAB] - 16/04/2011 - 23:02:23 ---A- . (...) -- C:\WINDOWS\KB950762.log [12298]
O44 - LFC:[MD5.05F9905B6B76B920BF4F573339F62CC8] - 16/04/2011 - 23:02:09 ---A- . (...) -- C:\WINDOWS\KB941569.log [9106]
O44 - LFC:[MD5.785EDE97141488A657A9343DB0822AF8] - 16/04/2011 - 23:00:44 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [2206]
O44 - LFC:[MD5.BBF5D750547B723B2E16830B5E06A1A9] - 16/04/2011 - 23:00:27 ---A- . (...) -- C:\WINDOWS\KB892130.log [6374]
O44 - LFC:[MD5.B57654B6411471C9E8D84D56A6315B35] - 16/04/2011 - 21:07:53 ---A- . (...) -- C:\WINDOWS\System32\vsconfig.xml [427421]
O44 - LFC:[MD5.A3EF1DA5857EE3D82B91BC45391AF946] - 16/04/2011 - 21:05:54 --HA- . (...) -- C:\WINDOWS\System32\zllictbl.dat [4212]
O44 - LFC:[MD5.5BAD0B37217AFEA95B1024AF3BE4E9B4] - 16/04/2011 - 21:05:44 ---A- . (.Zone Labs Inc. - TrueVector Service.) -- C:\WINDOWS\System32\vsutil_loc040c.dll [46592]
O44 - LFC:[MD5.2DFEAC2C914CACE4BA5836139BF09EC3] - 16/04/2011 - 21:05:43 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsregexp.dll [58368]
O44 - LFC:[MD5.85C09B9B43AA7CE7C672A39C80176090] - 16/04/2011 - 21:05:40 ---A- . (.Check Point Software Technologies LTD - ZLComm.) -- C:\WINDOWS\System32\zlcomm.dll [69120]
O44 - LFC:[MD5.01054D95D578FFEDEC6FC124ED595A5E] - 16/04/2011 - 21:05:40 ---A- . (.Check Point Software Technologies LTD - ZLCommDB.) -- C:\WINDOWS\System32\zlcommdb.dll [104448]
O44 - LFC:[MD5.196773E724A1C283BEF7E21BDF2D2F8D] - 16/04/2011 - 21:05:34 ---A- . (.Check Point Software Technologies LTD - vsmon component.) -- C:\WINDOWS\System32\vswmi.dll [43008]
O44 - LFC:[MD5.41995A9476529835851B61369596E5D2] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - Check Point Endpoint Security.) -- C:\WINDOWS\System32\zpeng25.dll [1238528]
O44 - LFC:[MD5.9B8AF90986E11DCA788B1F8E55C82A78] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Client Interface.) -- C:\WINDOWS\System32\vsmonapi.dll [108032]
O44 - LFC:[MD5.4636FABD1DBF097F39D0F2679E185BC7] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vspubapi.dll [302592]
O44 - LFC:[MD5.18F9AB94694843A35178711A1B96BB1A] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsxml.dll [110080]
O44 - LFC:[MD5.050C38EBB22512122E54B47DC278BCCD] - 16/04/2011 - 21:05:30 ---A- . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) -- C:\WINDOWS\System32\vsdatant.sys [532224]
O44 - LFC:[MD5.9A5E521DDF4F1B025F6F6C99BFB46F67] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service DLL.) -- C:\WINDOWS\System32\vsdata.dll [112128]
O44 - LFC:[MD5.320653DC5250B36C57FDC7C60CD3C23A] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsinit.dll [228864]
O44 - LFC:[MD5.D47B2CB64DA21201252A6623C7EE1AF3] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsutil.dll [715264]
O44 - LFC:[MD5.2B137B8428D6052CF7CF75933FD21852] - 16/04/2011 - 21:01:33 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.EE03C17149BA2D8CC7405E39085CBA1D] - 16/04/2011 - 21:01:32 ---A- . (...) -- C:\WINDOWS\wiadebug.log [216]
O44 - LFC:[MD5.8715347D6B7B2E3A7CFE5ADF2D510CE3] - 16/04/2011 - 20:56:19 ---A- . (...) -- C:\WINDOWS\win.ini [477]
O44 - LFC:[MD5.81051BCC2CF1BEDF378224B0A93E2877] - 16/04/2011 - 20:55:56 ---A- . (...) -- C:\WINDOWS\msoffice.ini [2]
O44 - LFC:[MD5.1AC62414BB7F245209FBEC512F72EFB1] - 16/04/2011 - 20:53:09 ---A- . (...) -- C:\WINDOWS\System32\Status.MPF [46784]
O44 - LFC:[MD5.828E91D83E1275F34B2F30628573F87C] - 16/04/2011 - 20:30:25 ---A- . (...) -- C:\WINDOWS\KB943232.log [7820]
O44 - LFC:[MD5.41E821B7F4628D2E3000EBECE4DB2294] - 16/04/2011 - 19:04:25 ---A- . (...) -- C:\WINDOWS\KB898461.log [6921]
O44 - LFC:[MD5.E74DC2F3F9675A6025A4AA020EDD4341] - 16/04/2011 - 19:02:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [38224]
O44 - LFC:[MD5.9B5CC6C481BDD00A963829B892623247] - 16/04/2011 - 19:02:35 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [20952]
O44 - LFC:[MD5.8E46199F26F306D147BF36307F6D5888] - 16/04/2011 - 18:49:42 ---A- . (...) -- C:\WINDOWS\OEWABLog.txt [1178]
O44 - LFC:[MD5.49FD2619B5356280831A083455DD139A] - 16/04/2011 - 18:49:23 ---A- . (...) -- C:\WINDOWS\System32\$winnt$.inf [403]
O44 - LFC:[MD5.BDCFDD5684DD8BBB7A76EE0F88C5ED06] - 16/04/2011 - 18:49:21 ---A- . (...) -- C:\WINDOWS\setupact.log [993]
O44 - LFC:[MD5.574C94EED8119C6860546294753EC938] - 16/04/2011 - 18:49:19 RSHA- . (...) -- C:\boot.ini [216]
O44 - LFC:[MD5.B1DD7ED7E0C91ADFC0C6EB65049482E0] - 16/04/2011 - 18:46:59 ---A- . (...) -- C:\WINDOWS\sessmgr.setup.log [2739]
O44 - LFC:[MD5.9D092EBA53FF2563E086B00CFCEDAE4B] - 16/04/2011 - 18:46:52 ---A- . (...) -- C:\WINDOWS\DtcInstall.log [641]
O44 - LFC:[MD5.63D32AE123241C49802DCF71A70E5C33] - 16/04/2011 - 18:45:24 ---A- . (...) -- C:\WINDOWS\regopt.log [3002]
O44 - LFC:[MD5.61E2844FF36A1569015D0634D2EF0620] - 16/04/2011 - 18:44:36 ---A- . (...) -- C:\WINDOWS\REGLOCS.OLD [8192]
O44 - LFC:[MD5.1C2E6BB4FE8621B1B863855B02BC33EB] - 16/04/2011 - 18:06:24 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [19544]
O44 - LFC:[MD5.4B1A54BA2BC5873A774DF6B70AB8B0B3] - 16/04/2011 - 18:06:24 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswSP.sys [301528]
O44 - LFC:[MD5.C7F1CEA32766184911293F4E1EE653F5] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\System32\drivers\aswTdi.sys [49240]
O44 - LFC:[MD5.B6A9373619D851BE80FB5F1B5EED0D4E] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\WINDOWS\System32\drivers\aswRdr.sys [25432]
O44 - LFC:[MD5.9BE41C1AE8BC481EB662D85C98D979C2] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [371544]
O44 - LFC:[MD5.9681A655BE1D8AFF0D1A352504E4AF0C] - 16/04/2011 - 18:06:21 ---A- . (...) -- C:\WINDOWS\System32\CONFIG.NT [3120]
O44 - LFC:[MD5.83631291ADF2887CFFC786D034D3FA15] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for W.) -- C:\WINDOWS\System32\drivers\aavmker4.sys [30680]
O44 - LFC:[MD5.687BB5CCB764C2E3DA9F1D4892E50327] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! File System Filter Driver for Window.) -- C:\WINDOWS\System32\drivers\aswmon.sys [96344]
O44 - LFC:[MD5.452D0ECD14FA02F9B061F42C8A30DD49] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! File System Filter Driver for Window.) -- C:\WINDOWS\System32\drivers\aswmon2.sys [102232]
O44 - LFC:[MD5.0439C6170F7F6355BB5275C9CAA6050F] - 16/04/2011 - 18:06:00 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\WINDOWS\avastSS.scr [40648]
O44 - LFC:[MD5.C6E1D434F1F3A5226B0DDFDF84B12677] - 16/04/2011 - 18:05:59 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\WINDOWS\System32\aswBoot.exe [190016]
---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\ZoneLabs\vsmon.exe" [Enabled] .(.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.83631291ADF2887CFFC786D034D3FA15] - 23/02/2011 - 14:54:57 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys [30680]
O58