Résolu UBCD v 5.0.3 à l'aide !!!

leiki · 17 Avril 2011

Je suis en mode sans échec avec prise en charge réseau.

J'ai lancé un scan ZHPDiag et un scan Malwarebytes, voici les rapports:

Rapport de ZHPDiag v1.27.1903 par Nicolas Coolman, Update du 17/04/2011
Run by Isabelle at 17/04/2011 18:52:19
Web site :

Vous devez être connecté pour voir les liens.

---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 4.0 v4.0 (Defaut)

---\\ System Information
Windows XP Home Edition Service Pack 2 (Build 2600)
Processor: x86 Family 6 Model 13 Stepping 8, GenuineIntel
Operating System: 32 Bits
Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
Total RAM: 503 MB (69% free)
System Restore: Désactivé (Disabled)
System drive C: has 65 GB (91%) free of 71 GB

---\\ Logged in mode
Computer Name: ISA
User Name: Isabelle
All Users Names: SUPPORT_388945a0, Isabelle, HelpAssistant, Administrateur,
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
%AppData%=C:\Documents and Settings\Isabelle\Application Data
%LocalAppData%=C:\Documents and Settings\Isabelle\Local Settings\Application Data
%StartMenu%=C:\Documents and Settings\Isabelle\Menu Démarrer

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 65 Go of 71 Go)
D:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

---\\ Recherche particulière de fichiers génériques
[MD5.4C33E5B9A6197B6ED215F6CFBA0A2DAA] - (.Microsoft Corporation - Explorateur Windows.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\Explorer.exe [1036288]
[MD5.B98E84E2CD3EE25D6D41936352E93112] - (.Microsoft Corporation - Internet Extensions for Win32.) (.06/05/2010 11:33:44.) -- C:\WINDOWS\system32\wininet.dll [916480]
[MD5.D2DE785AEAB0BB8CA4C14A8A199DBE4E] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\system32\Winlogon.exe [506368]
[MD5.CDFE4411A69C224BD1D11B2DA92DAC51] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.03/08/2004 22:59:44.) -- C:\WINDOWS\system32\drivers\atapi.sys [95360]
[MD5.B78BE402C3F63DD55521F73876951CDD] - (.Microsoft Corporation - NT File System Driver.) (.05/08/2004 12:00:00.) -- C:\WINDOWS\system32\drivers\ntfs.sys [574592]

---\\ Processus lancés
[MD5.6797E0F85E5F419EEFBE2E4C7A622EA1] - (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2435592]
[MD5.D6D0AD94EFC131772C3265F242D78FCB] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [644096]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M3 - MFPP: Plugins - [Isabelle] -- C:\Documents and Settings\Isabelle\Application Data\Mozilla\Firefox\Profiles\q358ipnf.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Isabelle] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN: [HKLM] [@checkpoint.com/FFApi] - (.Pas de propriétaire - npFFApi.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll
P2 - FPN: [HKLM] [@viewpoint.com/VMP] - (.Pas de propriétaire - MetaStream 3 Plugin r4.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
M0 - MFSP: prefs.js [Isabelle - q358ipnf.default]

Vous devez être connecté pour voir les liens.

M2 - MFEP: prefs.js [Isabelle - q358ipnf.default\{d7f26d0e-9801-45c3-a091-8a65e4ed73b5}] [] Protection ZoneAlarm Community Toolbar v3.3.3.2 (.Conduit Ltd..)

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =

Vous devez être connecté pour voir les liens.

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

Vous devez être connecté pour voir les liens.

R0 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\Software\Microsoft\Internet Explorer\Main,Start Page =

Vous devez être connecté pour voir les liens.

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

Vous devez être connecté pour voir les liens.

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

Vous devez être connecté pour voir les liens.

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

Vous devez être connecté pour voir les liens.

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

Vous devez être connecté pour voir les liens.

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

Vous devez être connecté pour voir les liens.

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

Vous devez être connecté pour voir les liens.

R1 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\Software\Microsoft\Internet Explorer\Main,Search Page =

Vous devez être connecté pour voir les liens.

R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18928 (longhorn_ie8_gdr.100503-1700)) -- C:\WINDOWS\system32\ieframe.dll
R3 - URLSearchHook: Protection ZoneAlarm Toolbar - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe Acrobat IE Helper Version 6.0 for Act.) -- C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Protection ZoneAlarm - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Protection ZoneAlarm Toolbar - {d7f26d0e-9801-45c3-a091-8a65e4ed73b5} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Protection_ZoneAlarm\prxtbProt.dll
O3 - Toolbar: ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\TrustCheckerIEPlugin.dll

---\\ ---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [igfxtray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (...) -- C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] . (.SigmaTel, Inc. - Sigmatel Audio system tray application.) -- C:\WINDOWS\stsystra.exe
O4 - HKLM\..\Run: [DMXLauncher] . (...) -- C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Dell QuickSet] . (.Dell Inc - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - Dell Wireless WLAN Card Wireless Network Tr.) -- C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Computer, Inc. - Pas de description.) -- C:\Program Files\QuickTime\qttask.exe
O4 - HKLM\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe
O4 - HKLM\..\Run: [ISUSScheduler] . (.InstallShield Software Corporation - InstallShield Update Service Scheduler.) -- C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
O4 - HKLM\..\Run: [DLA] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\System32\DLA\DLACTRLW.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [MSKDetectorExe] . (.McAfee, Inc. - McAfee SpamKiller Account Detector.) -- C:\Program Files\McAfee\SpamKiller\MSKDetct.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] . (.Check Point Software Technologies LTD - ZoneAlarm Client.) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [ISW] . (.Check Point Software Technologies - ZoneAlarm Browser Security.) -- C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ModemOnHold] . (...) -- C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [ModemOnHold] . (...) -- C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKUS\S-1-5-21-2984629601-318225483-1875930675-1006\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Démarrage\Digital Line Detect.lnk . (.BVRP Software.) -- C:\Program Files\Digital Line Detect\DLG.exe

---\\ ---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Adobe Reader 6.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A00000000001}\SC_Reader_PM.ico
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation.) -- C:\Program Files\Microsoft Works\msworks.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Les services Haut-Débit.lnk . (...) -- C:\Program Files\Dell\ArtEuro\html\index.htm
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\MSN.lnk . (.Microsoft Corporation.) -- C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Tiscali Internet.lnk . (.InstallShield Software Corp..) -- C:\WINDOWS\Installer\{58B2B6D3-E5FF-4D16-87AC-52CC5717C7C6}\NewShortcut1_58B2B6D3E5FF4D1687AC52CC5717C7C6.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk . (.Microsoft Corporation.) -- C:\Program Files\Messenger\msmsgs.exe
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk . (.Microsoft Corporation.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Assistance à distance.lnk . (.Microsoft Corporation.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Lecteur Windows Media.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Documents And Settings\Isabelle\Menu Démarrer\Programmes\Outlook Express.lnk . (.Microsoft Corporation.) -- C:\Program Files\Outlook Express\msimn.exe

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline
O9 - Extra button: Console Java (Sun) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} . (...) -- C:\Program Files\Real\RealPlayer\eb_act.ico
O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (...) -- C:\Program Files\Real\RealPlayer\eb_act.ico
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{8048532B-E5B9-4C0D-9987-BC098FDA361F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{A8A19810-3312-4F80-994C-05D3E55819BC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} . (.Pas de propriétaire - insmimefilter Module.) -- C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\Windows\System32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\Windows\System32\cscdll.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\Windows\System32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\Windows\System32\wlnotify.dll

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll

---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {438755C2-A8BA-11D1-B96B-00A0C90312E1} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: (dmadmin) . (.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: (IswSvc) . (.Check Point Software Technologies - ZoneAlarm Browser Security.) - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: (NICCONFIGSVC) . (.Dell Inc. - Internal Network Card Power Management Ser.) - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: (vsmon) . (.Check Point Software Technologies LTD - TrueVector Service.) - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: (wltrysvc) . (...) - C:\WINDOWS\System32\WLTRYSVC.exe

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Rappel d'abonnement 1 auprès de l'ISP.job

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\WINDOWS\system32\drivers\afd.sys
O41 - Driver: (APPDRV) . (.Dell Inc - App Support Driver.) - C:\WINDOWS\sysTEM32\DRIVERS\APPDRV.sys
O41 - Driver: (Cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (DLACDBHM) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLACDBHM.sys
O41 - Driver: (DLARTL_N) . (.Sonic Solutions - Shared Driver Component.) - C:\Windows\System32\Drivers\DLARTL_N.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (Imapi) . (.Microsoft Corporation - IMAPI Kernel Driver.) - C:\Windows\System32\DRIVERS\imapi.sys
O41 - Driver: (intelppm) . (.Microsoft Corporation - Pilote de périphérique processeur.) - C:\Windows\System32\DRIVERS\intelppm.sys
O41 - Driver: (IPSec) . (.Microsoft Corporation - IPSec Driver.) - C:\Windows\System32\DRIVERS\ipsec.sys
O41 - Driver: (Kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (Mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (MRxSmb) . (.Microsoft Corporation - Windows NT SMB Minirdr.) - C:\Windows\System32\DRIVERS\mrxsmb.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (Rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (redbook) . (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) - C:\Windows\System32\DRIVERS\redbook.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: (Tcpip) . (.Microsoft Corporation - TCP/IP Protocol Driver.) - C:\Windows\System32\DRIVERS\tcpip.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\WINDOWS\system32\drivers\vga.sys
O41 - Driver: (vsdatant) . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - C:\Windows\System32\vsdatant.sys

---\\ Logiciels installés (O42)
O42 - Logiciel: ARTEuro - (.Dell.) [HKLM] -- {1D3C662A-F6C6-4767-A788-7AA43A9A1317}
O42 - Logiciel: Adobe Acrobat - Reader 6.0.2 Update - (.Adobe Systems.) [HKLM] -- {AC76BA86-0000-0000-0000-6028747ADE01}
O42 - Logiciel: Adobe Reader 6.0.1 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A00000000001}
O42 - Logiciel: Broadcom Management Programs - (.Broadcom Corporation.) [HKLM] -- {26E1BFB0-E87E-4696-9F89-B467F01F81E5}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Conexant HDA D110 MDC V.92 Modem - (.Pas de propriétaire.) [HKLM] -- CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3
O42 - Logiciel: DMX Update - (.Pas de propriétaire.) [HKLM] -- {C41F4616-44B6-4E8D-BFC7-4267862A2CE1}
O42 - Logiciel: Dell CinePlayer - (.Dell.) [HKLM] -- {43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}
O42 - Logiciel: Dell Driver Reset Tool - (.Dell Inc..) [HKLM] -- {5905F42D-3F5F-4916-ADA6-94A3646AEE76}
O42 - Logiciel: Dell Media Experience - (.Dell.) [HKLM] -- {AC0EE5B0-A8FB-4D0A-AF03-2EDC518F841B}
O42 - Logiciel: Dell Wireless WLAN Card - (.Dell Inc..) [HKLM] -- Broadcom 802.11b Network Adapter
O42 - Logiciel: Digital Line Detect - (.BVRP Software, Inc.) [HKLM] -- {E646DCF0-5A68-11D5-B229-002078017FBF}
O42 - Logiciel: Ecran de veille AOL Photos - (.Pas de propriétaire.) [HKLM] -- AOL YGP Screensaver
O42 - Logiciel: High Definition Audio Driver Package - KB835221 - (.Microsoft Corporation.) [HKLM] -- KB835221WXP
O42 - Logiciel: Hotfix for Windows XP (KB943232) - (.Microsoft Corporation.) [HKLM] -- KB943232
O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver for Mobile - (.Pas de propriétaire.) [HKLM] -- {8A708DD8-A5E6-11D4-A706-000629E95E20}
O42 - Logiciel: Internet Explorer Default Page - (.Dell Inc..) [HKLM] -- {35BDEFF1-A610-4956-A00D-15453C116395}
O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.2_03 - (.Sun Microsystems, Inc..) [HKLM] -- {7148F0A8-6813-11D6-A77B-00B0D0142030}
O42 - Logiciel: Learn2 Player (Uninstall Only) - (.Pas de propriétaire.) [HKLM] -- StreetPlugin
O42 - Logiciel: MCU - (.Dell.) [HKLM] -- {D2988E9B-C73F-422C-AD4B-A66EBE257120}
O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033)
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700}
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Works 7.0 - (.Microsoft Corporation.) [HKLM] -- {64D114CE-4234-45C2-B60A-2B07D5A48F72}
O42 - Logiciel: Modem Helper - (.BVRP Software.) [HKLM] -- {7F142D56-3326-11D5-B229-002078017FBF}
O42 - Logiciel: Mozilla Firefox 4.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 4.0 (x86 fr)
O42 - Logiciel: MyWay Search Assistant - (.MyWay.) [HKLM] -- {E7559288-223B-453C-9F06-340E3BE21E39}
O42 - Logiciel: NetWaiting - (.BVRP Software, Inc.) [HKLM] -- {3F92ABBB-6BBF-11D5-B229-002078017FBF}
O42 - Logiciel: QuickSet - (.Pas de propriétaire.) [HKLM] -- {C5074CC4-0E26-4716-A307-960272A90040}
O42 - Logiciel: QuickTime - (.Pas de propriétaire.) [HKLM] -- QuickTime
O42 - Logiciel: RealPlayer Basic - (.Pas de propriétaire.) [HKLM] -- RealPlayer 6.0
O42 - Logiciel: Roxio DLA - (.Roxio.) [HKLM] -- {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
O42 - Logiciel: Roxio MyDVD LE - (.Roxio.) [HKLM] -- {21657574-BD54-48A2-9450-EB03B2C7FC29}
O42 - Logiciel: Roxio RecordNow Audio - (.Roxio.) [HKLM] -- {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
O42 - Logiciel: Roxio RecordNow Copy - (.Roxio.) [HKLM] -- {B12665F4-4E93-4AB4-B7FC-37053B524629}
O42 - Logiciel: Roxio RecordNow Data - (.Roxio.) [HKLM] -- {075473F5-846A-448B-BCB3-104AA1760205}
O42 - Logiciel: Sonic Activation Module - (.Sonic Solutions.) [HKLM] -- {5B6BE547-21E2-49CA-B2E2-6A5F470593B1}
O42 - Logiciel: Sonic Update Manager - (.Sonic Solutions.) [HKLM] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: Tiscali Internet - (.Tiscali.) [HKLM] -- {58B2B6D3-E5FF-4D16-87AC-52CC5717C7C6}
O42 - Logiciel: Viewpoint Media Player - (.Pas de propriétaire.) [HKLM] -- ViewpointMediaPlayer
O42 - Logiciel: Visual C++ 8.0 CRT (x86) WinSXS MSM - (.Microsoft Corporation.) [HKLM] -- {98CB24AD-52FB-DB5F-FF1F-C8B3B9A1E18E}
O42 - Logiciel: Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM - (.Microsoft Corporation.) [HKLM] -- {63E949F6-03BC-5C40-FF1F-C8B3B9A1E18E}
O42 - Logiciel: Wanadoo Europe Installer - (.Wanadoo.) [HKLM] -- {B7AC5A96-C8BC-431C-B661-27A09781DFA8}
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130) - (.Microsoft Corporation.) [HKLM] -- KB892130
O42 - Logiciel: Windows Installer 3.1 (KB893803) - (.Microsoft Corporation.) [HKLM] -- KB893803v2
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8
O42 - Logiciel: Windows Media Format Runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime
O42 - Logiciel: ZoneAlarm - (.Check Point, Inc.) [HKLM] -- ZoneAlarm
O42 - Logiciel: ZoneAlarm Toolbar - (.Check Point Software Technologies.) [HKLM] -- ZoneAlarm Toolbar
O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM] -- avast

---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\America Online]
[HKCU\Software\AppDataLow\ISWVolatile]
[HKCU\Software\AppDataLow]
[HKCU\Software\Broadcom]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conduit]
[HKCU\Software\Corel]
[HKCU\Software\Dell Computer Corporation]
[HKCU\Software\InstallShield]
[HKCU\Software\Intel]
[HKCU\Software\InterActual Technologies]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\McAfee.com]
[HKCU\Software\MyWaySA]
[HKCU\Software\Netscape]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Protection_ZoneAlarm]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Sonic]
[HKCU\Software\Synaptics]
[HKCU\Software\Tiscali]
[HKCU\Software\Zone Labs]
[HKCU\Software\toolbar]
[HKLM\Software\AVAST Software]
[HKLM\Software\Adobe]
[HKLM\Software\America Online]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\BVRP Software, Inc]
[HKLM\Software\BVRP Software]
[HKLM\Software\Broadcom]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CXT]
[HKLM\Software\CheckPoint]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conduit]
[HKLM\Software\Conexant]
[HKLM\Software\Corel]
[HKLM\Software\Debug]
[HKLM\Software\Dell Computer Corporation]
[HKLM\Software\Dell Computers]
[HKLM\Software\Dell]
[HKLM\Software\GTek]
[HKLM\Software\Gemplus]
[HKLM\Software\Google]
[HKLM\Software\InstallShield]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\InterActual Technologies]
[HKLM\Software\JavaSoft]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\McAfee]
[HKLM\Software\MetaStream]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\MyWaySA]
[HKLM\Software\NeoWorx]
[HKLM\Software\Network Associates]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Program Groups]
[HKLM\Software\Protection_ZoneAlarm]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Roxio]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Schlumberger]
[HKLM\Software\Secure]
[HKLM\Software\Sigmatel]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\Viewpoint]
[HKLM\Software\Windows 3.1 Migration Status]
[HKLM\Software\Zone Labs]
[HKLM\Software\lameme]
[HKLM\Software\mozilla.org]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/06/2006 - 22:06:48 - [75865552] ----D- C:\Program Files\Adobe
O43 - CFD: 16/04/2011 - 19:05:50 - [152144511] ----D- C:\Program Files\AVAST Software
O43 - CFD: 14/06/2006 - 22:03:36 - [2413725] ----D- C:\Program Files\Broadcom
O43 - CFD: 16/04/2011 - 21:50:40 - [3673632] ----D- C:\Program Files\CCleaner
O43 - CFD: 16/04/2011 - 22:06:04 - [26830342] ----D- C:\Program Files\CheckPoint
O43 - CFD: 20/08/2004 - 11:35:04 - [0] ----D- C:\Program Files\ComPlus Applications
O43 - CFD: 16/04/2011 - 22:06:34 - [634976] ----D- C:\Program Files\Conduit
O43 - CFD: 14/06/2006 - 22:00:38 - [577536] ----D- C:\Program Files\CONEXANT
O43 - CFD: 16/04/2011 - 21:58:40 - [104] ----D- C:\Program Files\Corel
O43 - CFD: 14/06/2006 - 22:09:20 - [0] ----D- C:\Program Files\Corel Corporation
O43 - CFD: 14/06/2006 - 22:07:08 - [197784446] ----D- C:\Program Files\Dell
O43 - CFD: 14/06/2006 - 22:03:00 - [233995] ----D- C:\Program Files\Digital Line Detect
O43 - CFD: 16/04/2011 - 22:02:12 - [112758500] ----D- C:\Program Files\Fichiers communs
O43 - CFD: 14/06/2006 - 22:08:30 - [12679267] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 14/06/2006 - 22:02:44 - [8591894] ----D- C:\Program Files\InterActual
O43 - CFD: 17/04/2011 - 14:13:26 - [5297624] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/06/2006 - 21:58:12 - [43515348] ----D- C:\Program Files\Java
O43 - CFD: 14/06/2006 - 22:06:30 - [711772] ----D- C:\Program Files\Learn2.com
O43 - CFD: 16/04/2011 - 20:02:44 - [4920556] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 14/06/2006 - 22:13:58 - [1511201] ----D- C:\Program Files\McAfee
O43 - CFD: 17/04/2011 - 00:02:56 - [2146435] ----D- C:\Program Files\Messenger
O43 - CFD: 20/08/2004 - 11:37:28 - [0] ----D- C:\Program Files\microsoft frontpage
O43 - CFD: 14/06/2006 - 22:05:08 - [110239853] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 14/06/2006 - 22:02:52 - [3514234] ----D- C:\Program Files\Modem Helper
O43 - CFD: 17/04/2011 - 00:18:10 - [10371290] ----D- C:\Program Files\Movie Maker
O43 - CFD: 16/04/2011 - 21:23:26 - [32939757] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 20/08/2004 - 11:34:08 - [19278399] ----D- C:\Program Files\MSN
O43 - CFD: 20/08/2004 - 11:34:16 - [8745735] ----D- C:\Program Files\MSN Gaming Zone
O43 - CFD: 20/08/2004 - 11:35:26 - [3285523] ----D- C:\Program Files\NetMeeting
O43 - CFD: 14/06/2006 - 22:02:44 - [883217] ----D- C:\Program Files\NetWaiting
O43 - CFD: 20/08/2004 - 11:34:26 - [1708] ----D- C:\Program Files\Online Services
O43 - CFD: 17/04/2011 - 00:20:08 - [4379833] ----D- C:\Program Files\Outlook Express
O43 - CFD: 16/04/2011 - 22:06:32 - [4556195] ----D- C:\Program Files\Protection_ZoneAlarm
O43 - CFD: 14/06/2006 - 22:06:28 - [2547686] ----D- C:\Program Files\QuickTime
O43 - CFD: 14/06/2006 - 22:05:54 - [8438745] ----D- C:\Program Files\Real
O43 - CFD: 14/06/2006 - 22:10:54 - [138403328] ----D- C:\Program Files\Roxio
O43 - CFD: 20/08/2004 - 11:35:48 - [929] ----D- C:\Program Files\Services en ligne
O43 - CFD: 14/06/2006 - 22:00:32 - [21869] ----D- C:\Program Files\Sigmatel
O43 - CFD: 14/06/2006 - 22:12:04 - [154] ----D- C:\Program Files\Sonic
O43 - CFD: 16/04/2011 - 20:39:54 - [64713893] ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 14/06/2006 - 22:03:08 - [27476486] ----D- C:\Program Files\Synaptics
O43 - CFD: 14/06/2006 - 22:07:36 - [1191936] ----D- C:\Program Files\Tiscali
O43 - CFD: 20/08/2004 - 11:41:52 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 14/06/2006 - 22:06:28 - [7558675] ----D- C:\Program Files\Viewpoint
O43 - CFD: 14/06/2006 - 22:07:28 - [53576646] ----D- C:\Program Files\Wanadoo Europe
O43 - CFD: 14/06/2006 - 22:09:16 - [4100973] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 20/08/2004 - 11:34:08 - [3940095] ----D- C:\Program Files\Windows NT
O43 - CFD: 20/08/2004 - 11:35:52 - [0] --H-D- C:\Program Files\WindowsUpdate
O43 - CFD: 20/08/2004 - 11:37:28 - [0] ----D- C:\Program Files\xerox
O43 - CFD: 14/06/2006 - 22:07:16 - [0] ----D- C:\Program Files\Your Company Name
O43 - CFD: 17/04/2011 - 18:52:28 - [3756552] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 16/04/2011 - 21:29:38 - [21741969] ----D- C:\Program Files\Zone Labs
O43 - CFD: 16/04/2011 - 21:56:20 - [1446564] ----D- C:\Program Files\Fichiers Communs\AOL
O43 - CFD: 14/06/2006 - 22:07:04 - [8637751] ----D- C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD: 14/06/2006 - 21:58:02 - [24359929] ----D- C:\Program Files\Fichiers Communs\Java
O43 - CFD: 16/04/2011 - 19:06:12 - [29997225] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD: 20/08/2004 - 11:35:30 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD: 14/06/2006 - 22:06:18 - [2392177] ----D- C:\Program Files\Fichiers Communs\Nullsoft
O43 - CFD: 20/08/2004 - 11:30:36 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC
O43 - CFD: 14/06/2006 - 22:05:56 - [9545492] ----D- C:\Program Files\Fichiers Communs\Real
O43 - CFD: 14/06/2006 - 22:02:16 - [5759929] ----D- C:\Program Files\Fichiers Communs\Roxio Shared
O43 - CFD: 20/08/2004 - 11:35:32 - [8106] ----D- C:\Program Files\Fichiers Communs\Services
O43 - CFD: 14/06/2006 - 22:11:58 - [19384045] ----D- C:\Program Files\Fichiers Communs\Sonic Shared
O43 - CFD: 20/08/2004 - 11:30:36 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD: 20/08/2004 - 11:35:24 - [6800053] ----D- C:\Program Files\Fichiers Communs\System
O43 - CFD: 14/06/2006 - 22:10:56 - [355840] ----D- C:\Program Files\Fichiers Communs\TiVo Shared
O43 - CFD: 16/04/2011 - 22:07:16 - [20495] ----D- C:\Documents and Settings\Isabelle\Application Data\CheckPoint
O43 - CFD: 20/08/2004 - 11:41:54 - [0] ----D- C:\Documents and Settings\Isabelle\Application Data\Identities
O43 - CFD: 16/04/2011 - 18:56:54 - [300] ----D- C:\Documents and Settings\Isabelle\Application Data\Macromedia
O43 - CFD: 16/04/2011 - 20:03:02 - [6759] ----D- C:\Documents and Settings\Isabelle\Application Data\Malwarebytes
O43 - CFD: 16/04/2011 - 20:03:12 - [47] ----D- C:\Documents and Settings\Isabelle\Application Data\McAfee.com Personal Firewall
O43 - CFD: 20/08/2004 - 11:30:08 - [645600] -S--D- C:\Documents and Settings\Isabelle\Application Data\Microsoft
O43 - CFD: 16/04/2011 - 21:23:46 - [17304949] ----D- C:\Documents and Settings\Isabelle\Application Data\Mozilla
O43 - CFD: 14/06/2006 - 21:58:14 - [473] ----D- C:\Documents and Settings\Isabelle\Application Data\Sun
O43 - CFD: 14/06/2006 - 22:06:30 - [0] ----D- C:\Documents and Settings\Isabelle\Application Data\You've Got Pictures Screensaver
O43 - CFD: 20/08/2004 - 11:44:00 - [5091] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 14/06/2006 - 22:02:44 - [1158] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\BVRP Software
O43 - CFD: 16/04/2011 - 23:58:26 - [146069] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Conduit
O43 - CFD: 17/04/2011 - 14:14:08 - [1955679] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Microsoft
O43 - CFD: 16/04/2011 - 21:23:36 - [30859899] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Mozilla
O43 - CFD: 16/04/2011 - 23:58:34 - [4752322] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Protection_ZoneAlarm
O43 - CFD: 16/04/2011 - 22:06:32 - [0] ----D- C:\Documents and Settings\Isabelle\Local Settings\Application Data\Temp

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.13A474ACFFD3BCD923F9FD8B01CE9BF8] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\PerfStringBackup.INI [956504]
O44 - LFC:[MD5.64CB50D6CA4EB2B4C00520AFEDA4A7E8] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfc009.dat [53436]
O44 - LFC:[MD5.C020ABCB4EC5540EDAB1CA1BA56DA551] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfc00C.dat [64484]
O44 - LFC:[MD5.D6315521842076995591903AF2AB087B] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfh009.dat [381692]
O44 - LFC:[MD5.18ECE5F82A134AACEA225D26CC32E217] - 17/04/2011 - 17:45:47 ---A- . (...) -- C:\WINDOWS\System32\perfh00C.dat [446566]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/04/2011 - 17:41:53 ---A- . (...) -- C:\WINDOWS\0.log [0]
O44 - LFC:[MD5.15FA6E5D744875D64D65574866610620] - 17/04/2011 - 17:41:46 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [139402]
O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 17/04/2011 - 17:41:01 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048]
O44 - LFC:[MD5.0514FCD182B4C33FC64A6ECFABC52343] - 17/04/2011 - 16:52:37 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1655602]
O44 - LFC:[MD5.028D873EA63F41923A5B41277681BC15] - 17/04/2011 - 15:15:00 ---A- . (...) -- C:\WINDOWS\setuplog.txt [137961]
O44 - LFC:[MD5.A4285111CA11451FCAA32D37E3DA5926] - 17/04/2011 - 14:45:22 ---A- . (...) -- C:\WINDOWS\KB970430.log [3982]
O44 - LFC:[MD5.8C6E84FBB6EDA616068A26F981A1F029] - 17/04/2011 - 14:45:17 ---A- . (...) -- C:\WINDOWS\KB971737.log [3720]
O44 - LFC:[MD5.EC1260A8ECF74C46E13A696366DEDE9B] - 17/04/2011 - 14:44:52 ---A- . (...) -- C:\WINDOWS\KB967715.log [32740]
O44 - LFC:[MD5.072FD534FD02D047C8F45C392C8929CA] - 17/04/2011 - 14:43:21 ---A- . (...) -- C:\WINDOWS\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt [4148]
O44 - LFC:[MD5.11F4A705816E738FB66E1FCECF869D04] - 17/04/2011 - 14:29:16 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [7242]
O44 - LFC:[MD5.FCEB85884AA69B2940B47041E0ABD03B] - 17/04/2011 - 13:15:04 ---A- . (...) -- C:\WINDOWS\spupdsvc.log [8788]
O44 - LFC:[MD5.2D04CC5CCAAF04624EEBD655F2BF9BBB] - 17/04/2011 - 13:13:30 ---A- . (...) -- C:\WINDOWS\System32\FNTCACHE.DAT [145216]
O44 - LFC:[MD5.55476081EF4159D7396C3CEF3C6EF66E] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [518849]
O44 - LFC:[MD5.51BE0C861AED0574125589991146FBBB] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\KB2229593.log [53468]
O44 - LFC:[MD5.7743D68BF9055528B60910F99466A0AC] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\comsetup.log [177245]
O44 - LFC:[MD5.61EA6B165273FC93835FA228ACF4E14B] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\iis6.log [78148]
O44 - LFC:[MD5.BE4254F921BF4B288CA30DA00D90B4B3] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.842247C07EF02F8EBC653AC26FA54578] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\msgsocm.log [25541]
O44 - LFC:[MD5.59E5488858F400C98F90C857DB99F4DB] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [106390]
O44 - LFC:[MD5.16632D11D9ABECAB88F28C64E5AFCFCF] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ocgen.log [253508]
O44 - LFC:[MD5.14315089C744A38C222DAFFDF97ABF9D] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\ocmsn.log [28104]
O44 - LFC:[MD5.3A08F516FA9BAA29AC90C753A0ACC987] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\setupapi.log [779672]
O44 - LFC:[MD5.71429C35909AEBDD03087E69F0DAAAF0] - 16/04/2011 - 23:21:56 ---A- . (...) -- C:\WINDOWS\tsoc.log [198047]
O44 - LFC:[MD5.6C4B7A03F6FB3B7B90E5B8B7D7FE16BC] - 16/04/2011 - 23:21:44 ---A- . (...) -- C:\WINDOWS\KB982381.log [74135]
O44 - LFC:[MD5.049F1ED937E32157E00604C5BD899E5F] - 16/04/2011 - 23:21:44 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]
O44 - LFC:[MD5.F3886FE6CCAE21289F7DF53146377AF6] - 16/04/2011 - 23:21:39 ---A- . (...) -- C:\WINDOWS\updspapi.log [46431]
O44 - LFC:[MD5.EED27DC64F617D4D0D3122C1289B0502] - 16/04/2011 - 23:21:21 ---A- . (...) -- C:\WINDOWS\KB979559.log [63094]
O44 - LFC:[MD5.1A948FE1A86F67A621529D5FA116B3B3] - 16/04/2011 - 23:21:08 ---A- . (...) -- C:\WINDOWS\KB975562.log [58172]
O44 - LFC:[MD5.535CD2680B457DCAD98B8BE08D0D1703] - 16/04/2011 - 23:20:55 ---A- . (...) -- C:\WINDOWS\KB979482.log [58919]
O44 - LFC:[MD5.E557405E2185B05AA08F4F52D7B34CCC] - 16/04/2011 - 23:20:43 ---A- . (...) -- C:\WINDOWS\KB980195.log [51716]
O44 - LFC:[MD5.17047A2F276F496E2F65EFE32DF8F245] - 16/04/2011 - 23:20:32 ---A- . (...) -- C:\WINDOWS\KB978695.log [52325]
O44 - LFC:[MD5.E5C0517DED0DA908D4972375C2E291FE] - 16/04/2011 - 23:20:26 ---A- . (...) -- C:\WINDOWS\KB980218.log [61494]
O44 - LFC:[MD5.21DA88D9101F4CF5675C714FFBBD8256] - 16/04/2011 - 23:20:15 ---A- . (...) -- C:\WINDOWS\KB981793.log [48893]
O44 - LFC:[MD5.33A2BE30077508B304DE25F49668FBA4] - 16/04/2011 - 23:20:15 ---A- . (...) -- C:\WINDOWS\System32\TZLog.log [4326]
O44 - LFC:[MD5.FB330A5C263BB7A5F237DADB760565E8] - 16/04/2011 - 23:20:09 ---A- . (...) -- C:\WINDOWS\KB978542.log [59260]
O44 - LFC:[MD5.9FC7143FF6AD0431AF0CFD9E9A495D4A] - 16/04/2011 - 23:19:57 ---A- . (...) -- C:\WINDOWS\KB976002-v5.log [48499]
O44 - LFC:[MD5.1871455A9F18BD52DDD6E2D14B71C5D0] - 16/04/2011 - 23:19:51 ---A- . (...) -- C:\WINDOWS\KB978601.log [58052]
O44 - LFC:[MD5.572C9A030C79E7628FD07101A9F25AE8] - 16/04/2011 - 23:19:40 ---A- . (...) -- C:\WINDOWS\KB979402.log [50259]
O44 - LFC:[MD5.6F53D12AA5E45A39AE108F0E6025AD68] - 16/04/2011 - 23:19:40 ---A- . (...) -- C:\WINDOWS\wmsetup.log [39947]
O44 - LFC:[MD5.B40EE8072466B6E82307D5ADFBD50D31] - 16/04/2011 - 23:19:32 ---A- . (...) -- C:\WINDOWS\KB979683.log [58719]
O44 - LFC:[MD5.8B7172C1AFAE9EDF958F566116B299D9] - 16/04/2011 - 23:19:13 ---A- . (...) -- C:\WINDOWS\KB978338.log [61087]
O44 - LFC:[MD5.31038C9EA8E8DD8C4055FF1208CFC310] - 16/04/2011 - 23:19:01 ---A- . (...) -- C:\WINDOWS\KB979309.log [57089]
O44 - LFC:[MD5.4E56632D65ED567BB18E3B23B3A10C4A] - 16/04/2011 - 23:18:50 ---A- . (...) -- C:\WINDOWS\KB981350.log [60579]
O44 - LFC:[MD5.E901287996B515619D7F21FB0E0C87AC] - 16/04/2011 - 23:18:34 ---A- . (...) -- C:\WINDOWS\KB977816.log [59378]
O44 - LFC:[MD5.F801AE0F7906DE10F344EE7E7295DEB8] - 16/04/2011 - 23:18:23 ---A- . (...) -- C:\WINDOWS\KB980232.log [53649]
O44 - LFC:[MD5.74A7A4F2E321942D99DCE1C9C91EEC10] - 16/04/2011 - 23:18:11 ---A- . (...) -- C:\WINDOWS\KB975561.log [53263]
O44 - LFC:[MD5.BA98C5317F8FCA4AF83B11977503680C] - 16/04/2011 - 23:17:59 ---A- . (...) -- C:\WINDOWS\KB978706.log [58337]
O44 - LFC:[MD5.C524589AED10A9435D02CE6ECBBBA52D] - 16/04/2011 - 23:17:47 ---A- . (...) -- C:\WINDOWS\KB971468.log [53678]
O44 - LFC:[MD5.72B25379B3F83F7CF8D205DAB9BF28FE] - 16/04/2011 - 23:17:36 ---A- . (...) -- C:\WINDOWS\KB977914.log [61727]
O44 - LFC:[MD5.8D17A24BE02A18A645B8C8D6373F17DA] - 16/04/2011 - 23:17:22 ---A- . (...) -- C:\WINDOWS\KB975560.log [62394]
O44 - LFC:[MD5.EE32127F3C477D78B5A4A3E0401F025D] - 16/04/2011 - 23:17:07 ---A- . (...) -- C:\WINDOWS\KB978037.log [61205]
O44 - LFC:[MD5.AE510B9FFAD8645B1CD8E3BEEF619B30] - 16/04/2011 - 23:16:57 ---A- . (...) -- C:\WINDOWS\KB975713.log [37917]
O44 - LFC:[MD5.A3711865ADCCBDCCB1CB501C20937440] - 16/04/2011 - 23:16:50 ---A- . (...) -- C:\WINDOWS\KB972270.log [53689]
O44 - LFC:[MD5.6AFDC5687503F74A0CB7BCE4F021CCC3] - 16/04/2011 - 23:16:39 ---A- . (...) -- C:\WINDOWS\KB973904.log [53738]
O44 - LFC:[MD5.6DFBA63F8876F1965424D93F0B38EFB1] - 16/04/2011 - 23:16:25 ---A- . (...) -- C:\WINDOWS\KB955759.log [55010]
O44 - LFC:[MD5.B92430EC9A51588DC0AC0F210BA7ADB7] - 16/04/2011 - 23:16:11 ---A- . (...) -- C:\WINDOWS\KB974392.log [59348]
O44 - LFC:[MD5.3265D7E2D9EFAC18AE2D8329D7BC6EE3] - 16/04/2011 - 23:16:00 ---A- . (...) -- C:\WINDOWS\KB974318.log [58968]
O44 - LFC:[MD5.68EB724B02B8860267D0857744EF5798] - 16/04/2011 - 23:15:49 ---A- . (...) -- C:\WINDOWS\KB952069.log [53745]
O44 - LFC:[MD5.A56D3EDEE47D08E4AA453CB6CCA283C4] - 16/04/2011 - 23:15:41 ---A- . (...) -- C:\WINDOWS\KB973687.log [52526]
O44 - LFC:[MD5.0FE5B3DC6E869244B66640D4DE8AA811] - 16/04/2011 - 23:15:29 ---A- . (...) -- C:\WINDOWS\KB975467.log [62806]
O44 - LFC:[MD5.ECCE50FB55926D1D2856293B00EF8055] - 16/04/2011 - 23:15:16 ---A- . (...) -- C:\WINDOWS\KB968389.log [62562]
O44 - LFC:[MD5.64E288D6487700FB2E3A1EA2F020A046] - 16/04/2011 - 23:14:59 ---A- . (...) -- C:\WINDOWS\KB969059.log [56130]
O44 - LFC:[MD5.CCD94C96C9F4B3AD06574766BC7F2926] - 16/04/2011 - 23:14:48 ---A- . (...) -- C:\WINDOWS\KB958869.log [45837]
O44 - LFC:[MD5.3E311A6D3CD980FC9E62F8C8BB477CDF] - 16/04/2011 - 23:14:40 ---A- . (...) -- C:\WINDOWS\KB974112.log [55676]
O44 - LFC:[MD5.DF5F9E3E8E03657BCCD19194698ACFD2] - 16/04/2011 - 23:14:30 ---A- . (...) -- C:\WINDOWS\KB974571.log [55467]
O44 - LFC:[MD5.63AD8BF12F2F8A48C820F3922C25DAE9] - 16/04/2011 - 23:14:20 ---A- . (...) -- C:\WINDOWS\KB975025.log [56804]
O44 - LFC:[MD5.FA06C7851DB465D052DD1C4C8977F189] - 16/04/2011 - 23:14:11 ---A- . (...) -- C:\WINDOWS\KB954155.log [45831]
O44 - LFC:[MD5.CEA54DF6B75CED52EA9F2280C8730CE3] - 16/04/2011 - 23:14:05 ---A- . (...) -- C:\WINDOWS\KB971961.log [48232]
O44 - LFC:[MD5.877609BE2B28E4E601BBE08AD34F9757] - 16/04/2011 - 23:13:55 ---A- . (...) -- C:\WINDOWS\KB956844.log [49084]
O44 - LFC:[MD5.1FE4073C11747A17F531FBCE6A58EA3B] - 16/04/2011 - 23:13:45 ---A- . (...) -- C:\WINDOWS\ie8_main.log [76106]
O44 - LFC:[MD5.114CEF7E4D3119FB78D1B6FBD87D068B] - 16/04/2011 - 23:13:42 ---A- . (...) -- C:\WINDOWS\KB982381-IE8.log [57590]
O44 - LFC:[MD5.4582880B9C6160403953F7FFD581910D] - 16/04/2011 - 23:12:55 ---A- . (...) -- C:\WINDOWS\ie8.log [55225]
O44 - LFC:[MD5.5305B1DB1C1DD14FF93A8331B0C6C0C3] - 16/04/2011 - 23:06:55 ---A- . (...) -- C:\WINDOWS\KB971657.log [31281]
O44 - LFC:[MD5.700294193EA8D1F2A1E5D2A29EC8ECA4] - 16/04/2011 - 23:06:47 ---A- . (...) -- C:\WINDOWS\KB973815.log [29320]
O44 - LFC:[MD5.A8A16F98DECE09F406028F928EF81987] - 16/04/2011 - 23:06:36 ---A- . (...) -- C:\WINDOWS\KB960859.log [32375]
O44 - LFC:[MD5.41D9C787D068E13346DD3DCE6356B4BB] - 16/04/2011 - 23:06:27 ---A- . (...) -- C:\WINDOWS\KB973507.log [31312]
O44 - LFC:[MD5.44735BD547A6A49F7D6AFDC473309A7D] - 16/04/2011 - 23:06:18 ---A- . (...) -- C:\WINDOWS\KB958470.log [31189]
O44 - LFC:[MD5.C18084806C66F51B1F2334F7DB24ED97] - 16/04/2011 - 23:06:03 ---A- . (...) -- C:\WINDOWS\KB973869.log [24117]
O44 - LFC:[MD5.30A4E5C0A0E7A02AFCB95DAB3519F8C4] - 16/04/2011 - 23:05:55 ---A- . (...) -- C:\WINDOWS\KB973540.log [21724]
O44 - LFC:[MD5.1AD85D7958C7F55580852E531F5D67EC] - 16/04/2011 - 23:05:45 ---A- . (...) -- C:\WINDOWS\KB970238.log [30338]
O44 - LFC:[MD5.BE5D278C1073F6CEA86C09CFB2D82366] - 16/04/2011 - 23:05:35 ---A- . (...) -- C:\WINDOWS\KB961501.log [30961]
O44 - LFC:[MD5.4107B30F3ACC5017FB8587AF01E74D3B] - 16/04/2011 - 23:05:26 ---A- . (...) -- C:\WINDOWS\KB959426.log [32186]
O44 - LFC:[MD5.E664B57BE5B1B31CB1FDB38E70BAD190] - 16/04/2011 - 23:05:16 ---A- . (...) -- C:\WINDOWS\KB960803.log [22970]
O44 - LFC:[MD5.46FF44D81B6FF9239E459AA1E4772B08] - 16/04/2011 - 23:05:06 ---A- . (...) -- C:\WINDOWS\KB952004.log [32224]
O44 - LFC:[MD5.16E7F42FEE4EE38556A6EA44B5AD97A3] - 16/04/2011 - 23:04:55 ---A- . (...) -- C:\WINDOWS\KB956572.log [30710]
O44 - LFC:[MD5.1525A594DEE777326E88A3FCBE9FDBFA] - 16/04/2011 - 23:04:31 ---A- . (...) -- C:\WINDOWS\KB923561.log [18852]
O44 - LFC:[MD5.3ECF1DE8F9A58219A354228F32F07AA0] - 16/04/2011 - 23:04:05 ---A- . (...) -- C:\WINDOWS\KB960225.log [23252]
O44 - LFC:[MD5.40725965F9532ECF3D90084C0FC36001] - 16/04/2011 - 23:03:57 ---A- . (...) -- C:\WINDOWS\KB956803.log [15578]
O44 - LFC:[MD5.6F0A128D45B39C7A0119BA7FE4C0DD50] - 16/04/2011 - 23:03:49 ---A- . (...) -- C:\WINDOWS\KB956802.log [20309]
O44 - LFC:[MD5.5D6F55787E210417DEB120A24C0EBC57] - 16/04/2011 - 23:03:42 ---A- . (...) -- C:\WINDOWS\KB923723.log [7613]
O44 - LFC:[MD5.115BA995D11CC7EC243BBF8F0E826F73] - 16/04/2011 - 23:03:36 ---A- . (...) -- C:\WINDOWS\KB955069.log [15180]
O44 - LFC:[MD5.D4D8D51E4CFF44F13B006BD0BAB09983] - 16/04/2011 - 23:03:27 ---A- . (...) -- C:\WINDOWS\KB958644.log [14681]
O44 - LFC:[MD5.E65EAC8F5199657FEAAC8D936B55FB31] - 16/04/2011 - 23:03:19 ---A- . (...) -- C:\WINDOWS\KB952287.log [13873]
O44 - LFC:[MD5.5C30B195186BDD9844C12555AC8E2180] - 16/04/2011 - 23:03:11 ---A- . (...) -- C:\WINDOWS\KB950974.log [20013]
O44 - LFC:[MD5.F53B045FCD9B53192A1AE5E230173F49] - 16/04/2011 - 23:03:04 ---A- . (...) -- C:\WINDOWS\KB952954.log [21709]
O44 - LFC:[MD5.C812BC3C6559BF24C4A9CC5FFE4ABB1B] - 16/04/2011 - 23:02:56 ---A- . (...) -- C:\WINDOWS\KB946648.log [13811]
O44 - LFC:[MD5.D53A90FDA1DBC78BA171111D154E5E02] - 16/04/2011 - 23:02:48 ---A- . (...) -- C:\WINDOWS\KB944338-v2.log [17777]
O44 - LFC:[MD5.39F7D07CD450EFE1C5DB40B1540247DA] - 16/04/2011 - 23:02:40 ---A- . (...) -- C:\WINDOWS\KB951748.log [20715]
O44 - LFC:[MD5.34615815AFE4B280CBE8CE8069926D01] - 16/04/2011 - 23:02:30 ---A- . (...) -- C:\WINDOWS\KB951376-v2.log [12062]
O44 - LFC:[MD5.836DEC66D07B36B869F3535C7FF9DEAB] - 16/04/2011 - 23:02:23 ---A- . (...) -- C:\WINDOWS\KB950762.log [12298]
O44 - LFC:[MD5.05F9905B6B76B920BF4F573339F62CC8] - 16/04/2011 - 23:02:09 ---A- . (...) -- C:\WINDOWS\KB941569.log [9106]
O44 - LFC:[MD5.785EDE97141488A657A9343DB0822AF8] - 16/04/2011 - 23:00:44 ---A- . (...) -- C:\WINDOWS\System32\wpa.dbl [2206]
O44 - LFC:[MD5.BBF5D750547B723B2E16830B5E06A1A9] - 16/04/2011 - 23:00:27 ---A- . (...) -- C:\WINDOWS\KB892130.log [6374]
O44 - LFC:[MD5.B57654B6411471C9E8D84D56A6315B35] - 16/04/2011 - 21:07:53 ---A- . (...) -- C:\WINDOWS\System32\vsconfig.xml [427421]
O44 - LFC:[MD5.A3EF1DA5857EE3D82B91BC45391AF946] - 16/04/2011 - 21:05:54 --HA- . (...) -- C:\WINDOWS\System32\zllictbl.dat [4212]
O44 - LFC:[MD5.5BAD0B37217AFEA95B1024AF3BE4E9B4] - 16/04/2011 - 21:05:44 ---A- . (.Zone Labs Inc. - TrueVector Service.) -- C:\WINDOWS\System32\vsutil_loc040c.dll [46592]
O44 - LFC:[MD5.2DFEAC2C914CACE4BA5836139BF09EC3] - 16/04/2011 - 21:05:43 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsregexp.dll [58368]
O44 - LFC:[MD5.85C09B9B43AA7CE7C672A39C80176090] - 16/04/2011 - 21:05:40 ---A- . (.Check Point Software Technologies LTD - ZLComm.) -- C:\WINDOWS\System32\zlcomm.dll [69120]
O44 - LFC:[MD5.01054D95D578FFEDEC6FC124ED595A5E] - 16/04/2011 - 21:05:40 ---A- . (.Check Point Software Technologies LTD - ZLCommDB.) -- C:\WINDOWS\System32\zlcommdb.dll [104448]
O44 - LFC:[MD5.196773E724A1C283BEF7E21BDF2D2F8D] - 16/04/2011 - 21:05:34 ---A- . (.Check Point Software Technologies LTD - vsmon component.) -- C:\WINDOWS\System32\vswmi.dll [43008]
O44 - LFC:[MD5.41995A9476529835851B61369596E5D2] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - Check Point Endpoint Security.) -- C:\WINDOWS\System32\zpeng25.dll [1238528]
O44 - LFC:[MD5.9B8AF90986E11DCA788B1F8E55C82A78] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Client Interface.) -- C:\WINDOWS\System32\vsmonapi.dll [108032]
O44 - LFC:[MD5.4636FABD1DBF097F39D0F2679E185BC7] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vspubapi.dll [302592]
O44 - LFC:[MD5.18F9AB94694843A35178711A1B96BB1A] - 16/04/2011 - 21:05:32 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsxml.dll [110080]
O44 - LFC:[MD5.050C38EBB22512122E54B47DC278BCCD] - 16/04/2011 - 21:05:30 ---A- . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) -- C:\WINDOWS\System32\vsdatant.sys [532224]
O44 - LFC:[MD5.9A5E521DDF4F1B025F6F6C99BFB46F67] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service DLL.) -- C:\WINDOWS\System32\vsdata.dll [112128]
O44 - LFC:[MD5.320653DC5250B36C57FDC7C60CD3C23A] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsinit.dll [228864]
O44 - LFC:[MD5.D47B2CB64DA21201252A6623C7EE1AF3] - 16/04/2011 - 21:03:49 ---A- . (.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\System32\vsutil.dll [715264]
O44 - LFC:[MD5.2B137B8428D6052CF7CF75933FD21852] - 16/04/2011 - 21:01:33 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.EE03C17149BA2D8CC7405E39085CBA1D] - 16/04/2011 - 21:01:32 ---A- . (...) -- C:\WINDOWS\wiadebug.log [216]
O44 - LFC:[MD5.8715347D6B7B2E3A7CFE5ADF2D510CE3] - 16/04/2011 - 20:56:19 ---A- . (...) -- C:\WINDOWS\win.ini [477]
O44 - LFC:[MD5.81051BCC2CF1BEDF378224B0A93E2877] - 16/04/2011 - 20:55:56 ---A- . (...) -- C:\WINDOWS\msoffice.ini [2]
O44 - LFC:[MD5.1AC62414BB7F245209FBEC512F72EFB1] - 16/04/2011 - 20:53:09 ---A- . (...) -- C:\WINDOWS\System32\Status.MPF [46784]
O44 - LFC:[MD5.828E91D83E1275F34B2F30628573F87C] - 16/04/2011 - 20:30:25 ---A- . (...) -- C:\WINDOWS\KB943232.log [7820]
O44 - LFC:[MD5.41E821B7F4628D2E3000EBECE4DB2294] - 16/04/2011 - 19:04:25 ---A- . (...) -- C:\WINDOWS\KB898461.log [6921]
O44 - LFC:[MD5.E74DC2F3F9675A6025A4AA020EDD4341] - 16/04/2011 - 19:02:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [38224]
O44 - LFC:[MD5.9B5CC6C481BDD00A963829B892623247] - 16/04/2011 - 19:02:35 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [20952]
O44 - LFC:[MD5.8E46199F26F306D147BF36307F6D5888] - 16/04/2011 - 18:49:42 ---A- . (...) -- C:\WINDOWS\OEWABLog.txt [1178]
O44 - LFC:[MD5.49FD2619B5356280831A083455DD139A] - 16/04/2011 - 18:49:23 ---A- . (...) -- C:\WINDOWS\System32\$winnt$.inf [403]
O44 - LFC:[MD5.BDCFDD5684DD8BBB7A76EE0F88C5ED06] - 16/04/2011 - 18:49:21 ---A- . (...) -- C:\WINDOWS\setupact.log [993]
O44 - LFC:[MD5.574C94EED8119C6860546294753EC938] - 16/04/2011 - 18:49:19 RSHA- . (...) -- C:\boot.ini [216]
O44 - LFC:[MD5.B1DD7ED7E0C91ADFC0C6EB65049482E0] - 16/04/2011 - 18:46:59 ---A- . (...) -- C:\WINDOWS\sessmgr.setup.log [2739]
O44 - LFC:[MD5.9D092EBA53FF2563E086B00CFCEDAE4B] - 16/04/2011 - 18:46:52 ---A- . (...) -- C:\WINDOWS\DtcInstall.log [641]
O44 - LFC:[MD5.63D32AE123241C49802DCF71A70E5C33] - 16/04/2011 - 18:45:24 ---A- . (...) -- C:\WINDOWS\regopt.log [3002]
O44 - LFC:[MD5.61E2844FF36A1569015D0634D2EF0620] - 16/04/2011 - 18:44:36 ---A- . (...) -- C:\WINDOWS\REGLOCS.OLD [8192]
O44 - LFC:[MD5.1C2E6BB4FE8621B1B863855B02BC33EB] - 16/04/2011 - 18:06:24 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [19544]
O44 - LFC:[MD5.4B1A54BA2BC5873A774DF6B70AB8B0B3] - 16/04/2011 - 18:06:24 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswSP.sys [301528]
O44 - LFC:[MD5.C7F1CEA32766184911293F4E1EE653F5] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\System32\drivers\aswTdi.sys [49240]
O44 - LFC:[MD5.B6A9373619D851BE80FB5F1B5EED0D4E] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\WINDOWS\System32\drivers\aswRdr.sys [25432]
O44 - LFC:[MD5.9BE41C1AE8BC481EB662D85C98D979C2] - 16/04/2011 - 18:06:22 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [371544]
O44 - LFC:[MD5.9681A655BE1D8AFF0D1A352504E4AF0C] - 16/04/2011 - 18:06:21 ---A- . (...) -- C:\WINDOWS\System32\CONFIG.NT [3120]
O44 - LFC:[MD5.83631291ADF2887CFFC786D034D3FA15] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for W.) -- C:\WINDOWS\System32\drivers\aavmker4.sys [30680]
O44 - LFC:[MD5.687BB5CCB764C2E3DA9F1D4892E50327] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! File System Filter Driver for Window.) -- C:\WINDOWS\System32\drivers\aswmon.sys [96344]
O44 - LFC:[MD5.452D0ECD14FA02F9B061F42C8A30DD49] - 16/04/2011 - 18:06:20 ---A- . (.AVAST Software - avast! File System Filter Driver for Window.) -- C:\WINDOWS\System32\drivers\aswmon2.sys [102232]
O44 - LFC:[MD5.0439C6170F7F6355BB5275C9CAA6050F] - 16/04/2011 - 18:06:00 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\WINDOWS\avastSS.scr [40648]
O44 - LFC:[MD5.C6E1D434F1F3A5226B0DDFDF84B12677] - 16/04/2011 - 18:05:59 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\WINDOWS\System32\aswBoot.exe [190016]

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll

---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe
O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\ZoneLabs\vsmon.exe" [Enabled] .(.Check Point Software Technologies LTD - TrueVector Service.) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe

---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech(TM) DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll
O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax
O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm
O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax
O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.)
O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll

---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.83631291ADF2887CFFC786D034D3FA15] - 23/02/2011 - 14:54:57 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys [30680]
O58

leiki · 17 Avril 2011

Voilà la suite :bounce:

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.83631291ADF2887CFFC786D034D3FA15] - 23/02/2011 - 14:54:57 ---A- . (.AVAST Software - avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP.) -- C:\WINDOWS\system32\drivers\aavmker4.sys [30680]
O58 - SDL:[MD5.1140AB9938809700B46BB88E46D72A96] - 17/08/2001 - 21:51:56 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\WINDOWS\system32\drivers\aliide.sys [5248]
O58 - SDL:[MD5.675C16A3C1F8482F85EE4A97FC0DDE3D] - 04/08/2004 - 23:07:44 ---A- . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\system32\drivers\AMDAGP.SYS [43008]
O58 - SDL:[MD5.EC94E05B76D033B74394E7B2175103CF] - 12/08/2005 - 17:50:46 ---A- . (.Dell Inc - App Support Driver.) -- C:\WINDOWS\system32\drivers\APPDRV.SYS [16128]
O58 - SDL:[MD5.62D318E9A0C8FC9B780008E724283707] - 17/08/2001 - 21:52:00 ---A- . (.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) -- C:\WINDOWS\system32\drivers\asc.sys [26496]
O58 - SDL:[MD5.5D8DE112AA0254B907861E9E9C31D597] - 17/08/2001 - 21:51:58 ---A- . (.Advanced System Products, Inc. - AdvanSys Ultra-Wide PCI SCSI Driver.) -- C:\WINDOWS\system32\drivers\asc3550.sys [14848]
O58 - SDL:[MD5.D880831279ED91F9A4190A2DB9539EA9] - 14/06/2006 - 21:05:55 ---A- . (.Windows (R) 2000 DDK provider - TR Manager.) -- C:\WINDOWS\system32\drivers\asctrm.sys [8552]
O58 - SDL:[MD5.1C2E6BB4FE8621B1B863855B02BC33EB] - 23/02/2011 - 14:54:55 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys [19544]
O58 - SDL:[MD5.687BB5CCB764C2E3DA9F1D4892E50327] - 23/02/2011 - 14:55:44 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows NT/2000.) -- C:\WINDOWS\system32\drivers\aswmon.sys [96344]
O58 - SDL:[MD5.452D0ECD14FA02F9B061F42C8A30DD49] - 23/02/2011 - 14:55:47 ---A- . (.AVAST Software - avast! File System Filter Driver for Windows XP.) -- C:\WINDOWS\system32\drivers\aswmon2.sys [102232]
O58 - SDL:[MD5.B6A9373619D851BE80FB5F1B5EED0D4E] - 23/02/2011 - 14:55:10 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\WINDOWS\system32\drivers\aswRdr.sys [25432]
O58 - SDL:[MD5.9BE41C1AE8BC481EB662D85C98D979C2] - 23/02/2011 - 14:56:55 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\system32\drivers\aswSnx.sys [371544]
O58 - SDL:[MD5.4B1A54BA2BC5873A774DF6B70AB8B0B3] - 23/02/2011 - 14:56:45 ---A- . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\system32\drivers\aswSP.sys [301528]
O58 - SDL:[MD5.C7F1CEA32766184911293F4E1EE653F5] - 23/02/2011 - 14:55:49 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\system32\drivers\aswTdi.sys [49240]
O58 - SDL:[MD5.C768C8A463D32C219CE291645A0621A4] - 05/08/2005 - 03:32:16 R--A- . (.Broadcom Corporation - Broadcom Corporation NDIS 5.1 ethernet driver.) -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys [45312]
O58 - SDL:[MD5.30D20FC98BCFD52E1DA778CF19B223D4] - 02/11/2005 - 19:24:42 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS [424320]
O58 - SDL:[MD5.8C31C9DB77ED6143AD09DC5FD2C9D9CC] - 19/12/2005 - 15:08:26 ---A- . (.CACE Technologies - npf.) -- C:\WINDOWS\system32\drivers\BCMWLNPF.SYS [33664]
O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 05/08/2004 - 12:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528]
O58 - SDL:[MD5.E3726AD522D0BDAE090671048C991AB3] - 23/08/2001 - 17:04:44 ---A- . (.CMD Technology, Inc. - Pilote de bus PCI IDE CMD.) -- C:\WINDOWS\system32\drivers\cmdide.sys [6656]
O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 05/08/2004 - 12:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776]
O58 - SDL:[MD5.E550E7418984B65A78299D248F0A7F36] - 17/08/2001 - 21:52:16 ---A- . (.Mylex Corporation - Mylex Disk Array Controller Driver.) -- C:\WINDOWS\system32\drivers\dac2w2k.sys [179584]
O58 - SDL:[MD5.D979BEBCF7EDCC9C9EE1857D1A68C67B] - 25/08/2005 - 12:16:52 ---A- . (.Sonic Solutions - Shared Driver Component.) -- C:\WINDOWS\system32\drivers\DLACDBHM.SYS [5628]
O58 - SDL:[MD5.7EE0852AE8907689DF25049DCD2342E8] - 25/08/2005 - 12:16:16 ---A- . (.Sonic Solutions - Shared Driver Component.) -- C:\WINDOWS\system32\drivers\DLARTL_N.SYS [22684]
O58 - SDL:[MD5.FD0F95981FEF9073659D8EC58E40AA3C] - 12/09/2005 - 03:30:00 ---A- . (.Sonic Solutions - Device Driver.) -- C:\WINDOWS\system32\drivers\DRVMCDB.SYS [89264]
O58 - SDL:[MD5.B4869D320428CDC5EC4D7F5E808E99B5] - 12/08/2005 - 05:20:00 ---A- . (.Sonic Solutions - Device Driver Manager.) -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS [40544]
O58 - SDL:[MD5.1961F8B618E3C20DF54C146B294EFD2A] - 23/08/2001 - 17:12:50 ---A- . (.Intel Corporation - Pilote NDIS 5.) -- C:\WINDOWS\system32\drivers\e100b325.sys [117760]
O58 - SDL:[MD5.1C8CAA80E91FB71864E9426F9EED048D] - 22/07/2005 - 03:01:08 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys [201600]
O58 - SDL:[MD5.74CF3F2E4E40C4A2E18D39D6300A5C24] - 22/07/2005 - 03:01:00 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys [717952]
O58 - SDL:[MD5.698204D9C2832E53633E53A30A53FC3D] - 22/07/2005 - 03:02:12 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DPV.sys [1035008]
O58 - SDL:[MD5.5A8E05F1D5C36ABD58CFFA111EB325EA] - 14/10/2005 - 21:15:18 ---A- . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\system32\drivers\ialmnt5.sys [1302812]
O58 - SDL:[MD5.9B5CC6C481BDD00A963829B892623247] - 29/11/2010 - 16:42:06 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [20952]
O58 - SDL:[MD5.E74DC2F3F9675A6025A4AA020EDD4341] - 29/11/2010 - 16:42:18 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys [38224]
O58 - SDL:[MD5.3C318B9CD391371BED62126581EE9961] - 17/03/2004 - 03:04:14 ---A- . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [13059]
O58 - SDL:[MD5.3F4BB95E5A44F3BE34824E8E7CAF0737] - 17/08/2001 - 21:52:12 ---A- . (.American Megatrends Inc. - MegaRAID RAID Controller Driver for Windows Whistler 32.) -- C:\WINDOWS\system32\drivers\mraid35x.sys [17280]
O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032]
O58 - SDL:[MD5.2B298519EDBFCF451D43E0F1E8F1006D] - 03/08/2004 - 22:29:56 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [1897408]
O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 05/08/2004 - 12:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792]
O58 - SDL:[MD5.86724469CD077901706854974CD13C3E] - 25/04/2005 - 02:03:00 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\system32\drivers\pxhelp20.sys [20640]
O58 - SDL:[MD5.0A63FB54039EB5662433CABA3B26DBA7] - 17/08/2001 - 21:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql1080.sys [40320]
O58 - SDL:[MD5.156ED0EF20C15114CA097A34A30D8A01] - 17/08/2001 - 21:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql12160.sys [45312]
O58 - SDL:[MD5.907F0AEEA6BC451011611E732BD31FCF] - 17/08/2001 - 21:52:18 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql1280.sys [49024]
O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032]
O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 05/08/2004 - 12:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032]
O58 - SDL:[MD5.D26E26EA516450AF9D072635C60387F4] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\drivers\secdrv.sys [27440]
O58 - SDL:[MD5.732D859B286DA692119F286B21A2A114] - 04/08/2004 - 23:07:44 ---A- . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\system32\drivers\SISAGP.SYS [41088]
O58 - SDL:[MD5.83C0F71F86D3BDAF915685F3D568B20E] - 17/08/2001 - 22:07:44 ---A- . (.Adaptec, Inc. - Adaptec AIC-6x60 series SCSI miniport.) -- C:\WINDOWS\system32\drivers\sparrow.sys [19072]
O58 - SDL:[MD5.0467A93B1E7FDA167E01FDEC79783154] - 10/09/2005 - 23:15:32 ---A- . (.SigmaTel, Inc. - NDRC.) -- C:\WINDOWS\system32\drivers\sthda.sys [1032472]
O58 - SDL:[MD5.1FF3217614018630D0A6758630FC698C] - 17/08/2001 - 22:07:34 ---A- . (.Symbios Logic Inc. - Symbios Logic Inc. SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\symc810.sys [16256]
O58 - SDL:[MD5.070E001D95CF725186EF8B20335F933C] - 17/08/2001 - 22:07:36 ---A- . (.LSI Logic - Symbios 8XX SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\symc8xx.sys [32640]
O58 - SDL:[MD5.80AC1C4ABBE2DF3B738BF15517A51F2C] - 17/08/2001 - 22:07:40 ---A- . (.LSI Logic - Symbios Hi-Perf SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\sym_hi.sys [28384]
O58 - SDL:[MD5.BF4FAB949A382A8E105F46EBB4937058] - 17/08/2001 - 22:07:42 ---A- . (.LSI Logic - Symbios Ultra3 SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\sym_u3.sys [30688]
O58 - SDL:[MD5.35D5B3632E0BCEBE27B391157DE05996] - 29/11/2005 - 04:36:56 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [191936]
O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 05/08/2004 - 12:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376]
O58 - SDL:[MD5.1B698A51CD528D8DA4FFAED66DFC51B9] - 17/08/2001 - 21:52:22 ---A- . (.Promise Technology, Inc. - Gestionnaire de miniport ULTRA66 de Promise.) -- C:\WINDOWS\system32\drivers\ultra.sys [36736]
O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 05/08/2004 - 12:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097]
O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912]
O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537]
O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146]
O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000]
O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560]
O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648]
O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424]
O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 05/08/2004 - 12:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560]
O58 - SDL:[MD5.050C38EBB22512122E54B47DC278BCCD] - 13/05/2010 - 09:02:32 ---A- . (.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) -- C:\WINDOWS\system32\vsdatant.sys [532224]

---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1

---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\AAVMKER4.sys - (.not file.) - avast! Asynchronous Virus Monitor (Aavmker4) .(...) - LEGACY_AAVMKER4
O64 - Services: CurCS - C:\WINDOWS\sysTEM32\DRIVERS\APPDRV.sys - APPDRV (APPDRV) .(.Dell Inc - App Support Driver.) - LEGACY_APPDRV
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWFSBLK.sys - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWMON2.sys - (.not file.) - aswMon2 (aswMon2) .(...) - LEGACY_ASWMON2
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWRDR.sys - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWSNX.sys - (.not file.) - aswSnx (aswSnx) .(...) - LEGACY_ASWSNX
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWSP.sys - (.not file.) - aswSP (aswSP) .(...) - LEGACY_ASWSP
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\ASWTDI.sys - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI
O64 - Services: CurCS - C:\Program Files\AVAST Software\Avast\AvastSvc.exe - avast! Antivirus (avast! Antivirus) .(.AVAST Software - avast! Service.) - LEGACY_AVAST!_ANTIVIRUS
O64 - Services: CurCS - (.not file.) - (.not file.) - BCMLogon (BCMLogon) .(...) - LEGACY_BCMLOGON
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(...) - LEGACY_BEEP
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(...) - LEGACY_CDFS
O64 - Services: CurCS - (.not file.) - (.not file.) - Application système COM+ (COMSysApp) .(...) - LEGACY_COMSYSAPP
O64 - Services: CurCS - (.not file.) - (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(...) - LEGACY_DCOMLAUNCH
O64 - Services: CurCS - C:\Windows\System32\DLA\DLABOIOM.sys - DLABOIOM (DLABOIOM) .(.Sonic Solutions - Drive Letter Access Component.) - LEGACY_DLABOIOM
O64 - Services: CurCS - C:\Windows\System32\DLA\DLADResN.sys - DLADResN (DLADResN) .(.Sonic Solutions - Drive Letter Access Component.) - LEGACY_DLADRESN
O64 - Services: CurCS - C:\Windows\System32\DLA\DLAIFS_M.sys - DLAIFS_M (DLAIFS_M) .(.Sonic Solutions - Drive Letter Access Component.) - LEGACY_DLAIFS_M
O64 - Services: CurCS - C:\Windows\System32\DLA\DLAOPIOM.sys - DLAOPIOM (DLAOPIOM) .(.Sonic Solutions - Drive Letter Access Component.) - LEGACY_DLAOPIOM
O64 - Services: CurCS - C:\Windows\System32\DLA\DLAPoolM.sys - DLAPoolM (DLAPoolM) .(.Sonic Solutions - Drive Letter Access Component.) - LEGACY_DLAPOOLM
O64 - Services: CurCS - C:\Windows\System32\Drivers\DLARTL_N.sys - DLARTL_N (DLARTL_N) .(.Sonic Solutions - Shared Driver Component.) - LEGACY_DLARTL_N
O64 - Services: CurCS - C:\Windows\System32\DLA\DLAUDFAM.sys - DLAUDFAM (DLAUDFAM) .(.Sonic Solutions - Drive Letter Access Component.) - LEGACY_DLAUDFAM
O64 - Services: CurCS - C:\Windows\System32\DLA\DLAUDF_M.sys - DLAUDF_M (DLAUDF_M) .(.Sonic Solutions - Drive Letter Access Component.) - LEGACY_DLAUDF_M
O64 - Services: CurCS - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique (dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN
O64 - Services: CurCS - C:\Windows\System32\drivers\dmboot.sys - dmboot (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT
O64 - Services: CurCS - C:\Windows\System32\drivers\dmload.sys - dmload (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD
O64 - Services: CurCS - C:\Windows\System32\Drivers\DRVNDDM.sys - DRVNDDM (DRVNDDM) .(.Sonic Solutions - Device Driver Manager.) - LEGACY_DRVNDDM
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(...) - LEGACY_FASTFAT
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(...) - LEGACY_FIPS
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\I2OMGMT.sys - i2omgmt (i2omgmt) .(...) - LEGACY_I2OMGMT
O64 - Services: CurCS - C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys - ZoneAlarm Toolbar ISWKL (ISWKL) .(.Check Point Software Technologies - ZoneAlarm Browser Security.) - LEGACY_ISWKL
O64 - Services: CurCS - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe - ZoneAlarm Toolbar IswSvc (IswSvc) .(.Check Point Software Technologies - ZoneAlarm Browser Security.) - LEGACY_ISWSVC
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(...) - LEGACY_KSECDD
O64 - Services: CurCS - (.not file.) - McAfee WSC Integration (McDetect.exe) .(...) - LEGACY_MCDETECT.EXE
O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mdmxsdk.sys - mdmxsdk (mdmxsdk) .(.Conexant - Diagnostic Interface DRIVER.) - LEGACY_MDMXSDK
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(...) - LEGACY_MNMDD
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MOUNTMGR.sys - mountmgr (mountmgr) .(...) - LEGACY_MOUNTMGR
O64 - Services: CurCS - (.not file.) - MPFIREWL (MPFIREWL) .(...) - LEGACY_MPFIREWL
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MUP.sys - (.not file.) - Mup (Mup) .(...) - LEGACY_MUP
O64 - Services: CurCS - (.not file.) - NaiAvFilter1 (NaiAvFilter1) .(...) - LEGACY_NAIAVFILTER1
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDIS.sys - (.not file.) - Pilote système NDIS (NDIS) .(...) - LEGACY_NDIS
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY
O64 - Services: CurCS - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe - NICCONFIGSVC (NICCONFIGSVC) .(.Dell Inc. - Internal Network Card Power Management Ser.) - LEGACY_NICCONFIGSVC
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(...) - LEGACY_NTFS
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARTMGR.sys - PartMgr (PartMgr) .(...) - LEGACY_PARTMGR
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(...) - LEGACY_PARVDM
O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(...) - LEGACY_RDPNP
O64 - Services: CurCS - (.not file.) - (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(...) - LEGACY_RPCSS
O64 - Services: CurCS - (.not file.) - (.not file.) - Services Terminal Server (TermService) .(...) - LEGACY_TERMSERVICE
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(...) - LEGACY_VGA
O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(...) - LEGACY_VOLSNAP
O64 - Services: CurCS - C:\Windows\System32\vsdatant.sys - vsdatant (vsdatant) .(.Check Point Software Technologies LTD - ZoneAlarm Firewalling Driver.) - LEGACY_VSDATANT
O64 - Services: CurCS - C:\WINDOWS\system32\ZoneLabs\vsmon.exe - TrueVector Internet Monitor (vsmon) .(.Check Point Software Technologies LTD - TrueVector Service.) - LEGACY_VSMON
O64 - Services: CurCS - C:\WINDOWS\System32\WLTRYSVC.exe - Dell Wireless WLAN Tray Service (wltrysvc) .(...) - LEGACY_WLTRYSVC

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (r) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (r) Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe

---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (O69)
O69 - SBI: C:\Documents and Settings\Isabelle\Application Data\Mozilla\Firefox\Profiles\q358ipnf.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [Isabelle - q358ipnf.default] user_pref("CT2613520.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2613520
O69 - SBI: prefs.js [Isabelle - q358ipnf.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2613520&SearchSource=
O69 - SBI: prefs.js [Isabelle - q358ipnf.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT2613520&SearchSource=13");
O69 - SBI: prefs.js [Isabelle - q358ipnf.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2613520&SearchSource=2&q=");
O69 - SBI: SearchScopes [HKCU] {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} [DefaultScope] - (Protection ZoneAlarm Customized Web Search) -

Vous devez être connecté pour voir les liens.

leiki · 17 Avril 2011

Et voilà le rapport de Malwarebytes

Malwarebytes' Anti-Malware 1.50
www.malwarebytes.org

Version de la base de données: 6375

Windows 5.1.2600 Service Pack 2 (Safe Mode)
Internet Explorer 8.0.6001.18702

17/04/2011 19:09:37
mbam-log-2011-04-17 (19-09-37).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 137179
Temps écoulé: 2 minute(s), 8 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

leiki · 28 Avril 2011

Désolée, j'ai résolu mes problèmes mais je ne sais pas comment faire pour fermer le sujet !

thor37230 · 28 Avril 2011

clic dur Elire meilleure réponse

KeyserSoze · 28 Avril 2011

leiki :

[:keysersoze:22]

Vous devez être connecté pour voir les liens.

leiki · 5 Mai 2011

Meilleure réponse sélectionnée par leiki.

Résolu UBCD v 5.0.3 à l'aide !!!

leiki

leiki

leiki

leiki

thor37230

KeyserSoze

leiki