Votre question

IMPOSSIBLE de sortir du mode sans echec au secours svp....

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
23 Avril 2009 13:00:03

Bonjour à tous,

Etant "l'homme de cro-magnon" :shock: en matière d'informatique ,je vous sollicite aujourd'hui votre aide car mon pc n'en fait qu'à sa tête! je soupçonne un virus mais n'en suis pas sûr.
Il m'est imossible de démarrer windows normalement. J'appuis sur la touche F5 ou F8 et demande le démarrage en mode normal mais c'est toujours en mode sans échec qu'il redémarre.

J'ai fait le truc de MSCONFIG mais malgré cela toujours mode sans échec!

Je suis sous windows XP, de plus mon pc ne reconnait RIEN, c'est a dire que je n'ai plus deson, ne reconnait aucune clé usb etc...AU SECOUR SVP!!!

J'ai utilisé Ccleaner pour le nettoyer et le logiciel ZHPdag dont je vais vous livrer le rapport ci-dessous:


Rapport de ZHPDiag v1.19 par Nicolas Coolman
Enregistré le 22/04/2009 11:52:02
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
MSIE: Internet Explorer v7.0.5730.11

---\\ Processus lancés
C:\Program Files\Java\jre6\bin\jusched.exe
SOUNDMAN.EXE
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe
C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe
C:\WINDOWS\system32\NeroCheck.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
rundll32.exe
C:\ATI-CPanel\atiptaxx.exe
C:\WINDOWS\system32\olhrwef.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\spupdsvc.exe

---\\ Pages de démarrage d'Internet Explorer (R0)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.neuf.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com

---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost

---\\ Browser Helper Objects de navigateur(O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: DgnWebIE - {2843DAC1-05EF-11D2-95BA-0060083493D6} - C:\WINDOWS\Speech\Dragon\web_ie.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [ATIPTA] C:\ATI-CPanel\atiptaxx.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [cdoosoft] C:\WINDOWS\system32\olhrwef.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Nero\Lib\NMBgMonitor.exe"
O4 - HKLM\..\policies\Explorer: [HonorAutoRunSetting] Data="1"

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.05\AMVConverter\grab.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.05\MediaManager\grab.html

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe,302
O9 - Extra 'Tools' menuitem: Windows Messenger - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Messenger\msmsgs.exe,302
O9 - Extra 'Tools' menuitem: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFBARH.ICO
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll,211
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFBARH.ICO
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe,302

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/get/shockwave/cabs/dir...
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.systemrequirementslab.com/srl_bin/sysreqlab_...
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_P...
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://express.foto.com/ImageUploader5.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} () - http://fichiers.touslesdrivers.com/fichiers/hardwaredet...
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSig...
O16 - DPF: {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} (RealPlayer G2 Control) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...

---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: WlDimsStartup - C:\WINDOWS\System32\%SystemRoot%\System32\dimsntfy.dll
O20 - Winlogon Notify: WLEventStartup - C:\WINDOWS\System32\WgaLogon.dll

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Symantec Event Manager (ccEvtMgr) - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: DM1Service (DM1Service) - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
O23 - Service: Fax (Fax) - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
O23 - Service: Windows Service Pack Installer update service (spupdsvc) - C:\WINDOWS\system32\spupdsvc.exe

---\\ Enumération des composants Active Desktop (O24)
O24 - Desktop Component 0: (no name) - file:file:///C:/DOCUME~1/MIHOUB~1/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: IE7 Uninstall Stub - <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
O40 - ASIC: Lecteur Windows Media - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
O40 - ASIC: Internet Explorer - {26923b43-4d38-484f-9b9e-de460746276c} - C:\WINDOWS\system32\shmgrate.exe OCInstallUserConfigIE
O40 - ASIC: Browser Customizations - {60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
O40 - ASIC: Personnalisation du navigateur - {60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
O40 - ASIC: Outlook Express - {881dd1c5-3dcf-431b-b061-f3f88e8be88a} - C:\WINDOWS\system32\shmgrate.exe OCInstallUserConfigOE
O40 - ASIC: KB867282 - {02f78298-8af6-495c-9ecb-b6ae68678186} - (not file)
O40 - ASIC: Viewpoint Media Player - {03F998B2-0E00-11D3-A498-00104B6EB52E} - C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream_0306003B.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - (not file)
O40 - ASIC: Rendu VML (Vector Graphics Rendering) - {10072CEC-8CC1-11D1-986E-00A0C955B42F} - (not file)
O40 - ASIC: Macromedia Shockwave Director 10.1 - {166B1BCA-3F9C-11CF-8075-444553540000} - C:\WINDOWS\system32\Macromed\Director\SwDir.dll
O40 - ASIC: Viewpoint Media Player - {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream_0306003B.dll
O40 - ASIC: Microsoft NetShow Player - {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - C:\WINDOWS\system32\msdxm.ocx
O40 - ASIC: Q867801 - {2298d453-bcae-4519-bf33-1cbf3faf1524} - (not file)
O40 - ASIC: Microsoft Windows Media Player 6.4 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\system32\msdxm.ocx
O40 - ASIC: DirectAnimation - {283807B5-2C60-11D0-A31D-00AA00B92C03} - (not file)
O40 - ASIC: Macromedia Shockwave Director 10.1 - {2A202491-F00D-11cf-87CC-0020AFEECF20} - (not file)
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\WINDOWS\system32\regsvr32.exe /s /n /i:/UserInstall C:\WINDOWS\system32\themeui.dll
O40 - ASIC: Q837009 - {2cc9d512-6db6-4f1c-8979-9a41fae88de0} - (not file)
O40 - ASIC: Liaison de données Dynamic HTML pour Java - {36f8ec70-c29a-11d1-b5c7-0000f8051515} - (not file)
O40 - ASIC: Q822925 - {377483c2-e4b4-4ee8-b577-9aed264c8735} - (not file)
O40 - ASIC: Offline Browsing Pack - {3af36230-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Uniscribe - {3bf42070-b3b1-11d1-b5c5-0000f8051515} - (not file)
O40 - ASIC: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) - {411EDCF7-755D-414E-A74B-3DCD6583F589} - (not file)
O40 - ASIC: Création avancée - {4278c270-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Microsoft Outlook Express 6 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:o E /CALLER:WINNT /user /install
O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
O40 - ASIC: DirectShow - {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - (not file)
O40 - ASIC: Microsoft DirectX - {44BBA855-CC51-11CF-AAFA-00AA00B6015C} - (not file)
O40 - ASIC: DirectDrawEx - {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - (not file)
O40 - ASIC: Internet Explorer Help - {45ea75a0-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Classes Java DirectAnimation - {4f216970-c90c-11d1-b5c7-0000f8051515} - (not file)
O40 - ASIC: Microsoft Windows Script 5.7 - {4f645220-306d-11d2-995d-00c04f98bbc9} - (not file)
O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
O40 - ASIC: (no name) - {5A8D6EE0-3E18-11D0-821E-444553540000} - (not file)
O40 - ASIC: Microsoft Data Access Components KB870669 - {5f3c70b3-ac2f-432c-8f9c-1624df61f54f} - (not file)
O40 - ASIC: Internet Explorer Setup Tools - {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub
O40 - ASIC: MSN Site Access - {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - (not file)
O40 - ASIC: .NET Framework - {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - (not file)
O40 - ASIC: Dossiers Web - {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - (not file)
O40 - ASIC: Carnet d'adresses 6 - {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
O40 - ASIC: Q831167 - {795d0712-722c-43ec-906a-fc5e678eada9} - (not file)
O40 - ASIC: Mise à jour du Bureau Windows - {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
O40 - ASIC: Internet Explorer - {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
O40 - ASIC: Fax - {8b15971b-5355-4c82-8c07-7e181ea07608} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser
O40 - ASIC: Microsoft .NET Framework 1.1 Hotfix (KB928366) - {8D1D0E9A-C799-4D28-9E29-0061D1E66E43} - (not file)
O40 - ASIC: Dynamic HTML Data Binding - {9381D8F2-0288-11D0-9501-00AA00B911A5} - (not file)
O40 - ASIC: Fax Provider - {94de52c8-2d59-4f1b-883e-79663d2d9a8c} - (not file)
O40 - ASIC: .NET Framework - {9A394342-4A68-4EBA-85A6-55B559F4E700} - (not file)
O40 - ASIC: .NET Framework - {B508B3F1-A24A-32C0-B310-85786919EF28} - (not file)
O40 - ASIC: Internet Explorer Core Fonts - {C9E9A340-D1F1-11D0-821E-444553540600} - (not file)
O40 - ASIC: .NET Framework - {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - (not file)
O40 - ASIC: Planificateur de tâches - {CC2A9BA0-3BDD-11D0-821E-444553540000} - (not file)
O40 - ASIC: (no name) - {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - (not file)
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} - C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx
O40 - ASIC: HTML Help - {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Active Directory Service Interface - {E92B03AB-B707-11d2-9CBD-0000F87A369E} - (not file)
O40 - ASIC: Q832894 - {eddbec60-89cb-44ef-8291-0850fd28ff6a} - (not file)
O40 - ASIC: Q330994 - {F5776D81-AE53-4935-8E84-B0B283D8BCEF} - (not file)

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: Suppresseur d'écho acoustique (Noyau Microsoft) (aec) - C:\WINDOWS\system32\drivers\aec.sys
O41 - Driver: Environnement de prise en charge de réseau AFD (AFD) - C:\WINDOWS\System32\drivers\afd.sys
O41 - Driver: Service for WDM 3D Audio Driver (ALCXSENS) - C:\WINDOWS\system32\drivers\ALCXSENS.SYS
O41 - Driver: Service for Realtek AC97 Audio (WDM) (ALCXWDM) - C:\WINDOWS\system32\drivers\ALCXWDM.SYS
O41 - Driver: Pilote de processeur AMD K7 (AmdK7) - C:\WINDOWS\System32\DRIVERS\amdk7.sys
O41 - Driver: Protocole client ARP 1394 (Arp1394) - C:\WINDOWS\System32\DRIVERS\arp1394.sys
O41 - Driver: Pilote de média asynchrone RAS (AsyncMac) - C:\WINDOWS\System32\DRIVERS\asyncmac.sys
O41 - Driver: athsgt (athsgt) - C:\WINDOWS\system32\DRIVERS\athsgt.sys
O41 - Driver: (no object) (ati2mtag) - C:\WINDOWS\System32\DRIVERS\ati2mtag.sys
O41 - Driver: Protocole client ATM ARP (Atmarpc) - C:\WINDOWS\System32\DRIVERS\atmarpc.sys
O41 - Driver: Pilote audio Stub (audstub) - C:\WINDOWS\System32\DRIVERS\audstub.sys
O41 - Driver: Bluetooth Audio Service (BlueletAudio) - C:\WINDOWS\system32\DRIVERS\blueletaudio.sys
O41 - Driver: Bluetooth SCO Audio Service (BlueletSCOAudio) - C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys
O41 - Driver: Bluetooth PAN Network Adapter (BT) - C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
O41 - Driver: Bluetooth USB For Bluetooth Service (Btcsrusb) - C:\WINDOWS\System32\Drivers\btcusb.sys
O41 - Driver: Service d'énumérateur Bluetooth (BthEnum) - C:\WINDOWS\System32\DRIVERS\BthEnum.sys
O41 - Driver: Bluetooth HID Enumerator (BTHidEnum) - C:\WINDOWS\System32\Drivers\vbtenum.sys
O41 - Driver: Bluetooth HID Manager Service (BTHidMgr) - C:\WINDOWS\System32\Drivers\BTHidMgr.sys
O41 - Driver: Périphérique Bluetooth (réseau personnel) (BthPan) - C:\WINDOWS\system32\DRIVERS\bthpan.sys
O41 - Driver: Pilote de port Bluetooth (BTHPORT) - C:\WINDOWS\System32\Drivers\BTHport.sys
O41 - Driver: Pilote USB radio Bluetooth (BTHUSB) - C:\WINDOWS\System32\Drivers\BTHUSB.sys
O41 - Driver: Closed Caption Decoder (CCDECODE) - C:\WINDOWS\System32\DRIVERS\CCDECODE.sys
O41 - Driver: (no object) (dmboot) - C:\WINDOWS\System32\drivers\dmboot.sys
O41 - Driver: (no object) (dmio) - C:\WINDOWS\System32\drivers\dmio.sys
O41 - Driver: (no object) (dmload) - C:\WINDOWS\System32\drivers\dmload.sys
O41 - Driver: Synthétiseur DLS du noyau Microsoft (DMusic) - C:\WINDOWS\system32\drivers\DMusic.sys
O41 - Driver: Filtre de décodeur DRM (Noyau Microsoft) (drmkaud) - C:\WINDOWS\system32\drivers\drmkaud.sys
O41 - Driver: Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet (FETNDIS) - C:\WINDOWS\System32\DRIVERS\fetnd5.sys
O41 - Driver: Classificateur de paquets générique (Gpc) - C:\WINDOWS\System32\DRIVERS\msgpc.sys
O41 - Driver: Pilote de classe HID Microsoft (HidUsb) - C:\WINDOWS\System32\DRIVERS\hidusb.sys
O41 - Driver: IEEE-1284.4 Driver HPZid412 (HPZid412) - C:\WINDOWS\system32\DRIVERS\HPZid412.sys
O41 - Driver: Print Class Driver for IEEE-1284.4 HPZipr12 (HPZipr12) - C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
O41 - Driver: USB to IEEE-1284.4 Translation Driver HPZius12 (HPZius12) - C:\WINDOWS\system32\DRIVERS\HPZius12.sys
O41 - Driver: (no object) (HSFHWBS2) - C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
O41 - Driver: (no object) (HSF_DP) - C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
O41 - Driver: (no object) (HSF_DPV) - C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\System32\DRIVERS\i8042prt.sys
O41 - Driver: Pilote de filtre de trafic IP (IpFilterDriver) - C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys
O41 - Driver: Pilote de tunnelage IP dans IP (IpInIp) - C:\WINDOWS\System32\DRIVERS\ipinip.sys
O41 - Driver: Traducteur d'adresses réseau IP (IpNat) - C:\WINDOWS\System32\DRIVERS\ipnat.sys
O41 - Driver: Pilote IPSEC (IPSec) - C:\WINDOWS\System32\DRIVERS\ipsec.sys
O41 - Driver: Service énumérateur IR (IRENUM) - C:\WINDOWS\System32\DRIVERS\irenum.sys
O41 - Driver: Mélangeur audio Wave de noyau Microsoft (kmixer) - C:\WINDOWS\system32\drivers\kmixer.sys
O41 - Driver: limsgt (limsgt) - C:\WINDOWS\system32\DRIVERS\limsgt.sys
O41 - Driver: MBAMSwissArmy (MBAMSwissArmy) - C:\WINDOWS\system32\drivers\mbamswissarmy.sys
O41 - Driver: (no object) (mdmxsdk) - C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
O41 - Driver: Pilote HID de souris (mouhid) - C:\WINDOWS\System32\DRIVERS\mouhid.sys
O41 - Driver: Redirecteur client WebDav (MRxDAV) - C:\WINDOWS\System32\DRIVERS\mrxdav.sys
O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys
O41 - Driver: Proxy de service de répartition Microsoft (MSKSSRV) - C:\WINDOWS\system32\drivers\MSKSSRV.sys
O41 - Driver: Proxy d'horloge de répartition Microsoft (MSPCLOCK) - C:\WINDOWS\system32\drivers\MSPCLOCK.sys
O41 - Driver: Proxy de gestion de qualité de répartition Microsoft (MSPQM) - C:\WINDOWS\system32\drivers\MSPQM.sys
O41 - Driver: Pilote BIOS de gestion de systèmes Microsoft (mssmbios) - C:\WINDOWS\System32\DRIVERS\mssmbios.sys
O41 - Driver: Microsoft Streaming Tee/Sink-to-Sink Converter (MSTEE) - C:\WINDOWS\system32\drivers\MSTEE.sys
O41 - Driver: NABTS/FEC VBI Codec (NABTSFEC) - C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys
O41 - Driver: Microsoft TV/Video Connection (NdisIP) - C:\WINDOWS\System32\DRIVERS\NdisIP.sys
O41 - Driver: Pilote TAPI NDIS d'accès distant (NdisTapi) - C:\WINDOWS\System32\DRIVERS\ndistapi.sys
O41 - Driver: NDIS mode utilisateur E/S Protocole (Ndisuio) - C:\WINDOWS\System32\DRIVERS\ndisuio.sys
O41 - Driver: Pilote réseau étendu NDIS d'accès distant (NdisWan) - C:\WINDOWS\System32\DRIVERS\ndiswan.sys
O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\System32\DRIVERS\netbios.sys
O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\System32\DRIVERS\netbt.sys
O41 - Driver: Pilote réseau 1394 (NIC1394) - C:\WINDOWS\System32\DRIVERS\nic1394.sys
O41 - Driver: Pilote du Moniteur réseau (nm) - C:\WINDOWS\System32\DRIVERS\NMnt.sys
O41 - Driver: Nokia USB Phone Parent (nmwcd) - C:\WINDOWS\system32\drivers\ccdcmb.sys
O41 - Driver: Nokia USB Generic (nmwcdc) - C:\WINDOWS\system32\drivers\ccdcmbo.sys
O41 - Driver: Pilote de filtre de trafic IPX (NwlnkFlt) - C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys
O41 - Driver: Pilote de transfert de trafic IPX (NwlnkFwd) - C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys
O41 - Driver: Contrôleur hôte compatible IEE 1394 VIA OHCI (ohci1394) - C:\WINDOWS\System32\DRIVERS\ohci1394.sys
O41 - Driver: Logitech QuickCam Express(PID_0920) (PID_0920) - C:\WINDOWS\system32\DRIVERS\LV532AV.SYS
O41 - Driver: pohci13F (pohci13F) - C:\DOCUME~1\MIHOUB~1\LOCALS~1\Temp\pohci13F.sys
O41 - Driver: Miniport réseau étendu (PPTP) (PptpMiniport) - C:\WINDOWS\System32\DRIVERS\raspptp.sys
O41 - Driver: Pilote processeur (Processor) - C:\WINDOWS\System32\DRIVERS\processr.sys
O41 - Driver: Profos (Profos) - C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\profos.sys
O41 - Driver: Planificateur de paquets QoS (PSched) - C:\WINDOWS\System32\DRIVERS\psched.sys
O41 - Driver: Pilote de liaison parallèle directe (Ptilink) - C:\WINDOWS\System32\DRIVERS\ptilink.sys
O41 - Driver: PxHelp20 (PxHelp20) - C:\WINDOWS\System32\Drivers\PxHelp20.sys
O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\System32\DRIVERS\rasacd.sys
O41 - Driver: Miniport réseau étendu (L2TP) (Rasl2tp) - C:\WINDOWS\System32\DRIVERS\rasl2tp.sys
O41 - Driver: Pilote PPPOE d'accès à distance (RasPppoe) - C:\WINDOWS\System32\DRIVERS\raspppoe.sys
O41 - Driver: Parallèle direct (Raspti) - C:\WINDOWS\System32\DRIVERS\raspti.sys
O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\System32\DRIVERS\rdbss.sys
O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\System32\DRIVERS\redbook.sys
O41 - Driver: Périphérique Bluetooth (TDI protocole RFCOMM) (RFCOMM) - C:\WINDOWS\system32\DRIVERS\rfcomm.sys
O41 - Driver: Microsoft Legacy Modem Driver (ROOTMODEM) - C:\WINDOWS\System32\Drivers\RootMdm.sys
O41 - Driver: Secdrv (Secdrv) - C:\WINDOWS\System32\DRIVERS\secdrv.sys
O41 - Driver: Serenum Filter Driver (serenum) - C:\WINDOWS\System32\DRIVERS\serenum.sys
O41 - Driver: StarForce Protection Environment Driver (version 1.x) (sfdrv01) - C:\WINDOWS\System32\drivers\sfdrv01.sys
O41 - Driver: StarForce Protection Environment Driver (version 1.x.a) (sfdrv01a) - C:\WINDOWS\System32\drivers\sfdrv01a.sys
O41 - Driver: StarForce Protection Helper Driver (version 2.x) (sfhlp02) - C:\WINDOWS\System32\drivers\sfhlp02.sys
O41 - Driver: StarForce Protection Synchronization Driver (version 2.x) (sfsync02) - C:\WINDOWS\System32\drivers\sfsync02.sys
O41 - Driver: StarForce Protection Synchronization Driver (version 4.x) (sfsync04) - C:\WINDOWS\System32\drivers\sfsync04.sys
O41 - Driver: StarForce Protection VFS Driver (version 2.x) (sfvfs02) - C:\WINDOWS\System32\drivers\sfvfs02.sys
O41 - Driver: BDA Slip De-Framer (SLIP) - C:\WINDOWS\System32\DRIVERS\SLIP.sys
O41 - Driver: SPBBCDrv (SPBBCDrv) - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys
O41 - Driver: Splitter audio du noyau Microsoft (splitter) - C:\WINDOWS\system32\drivers\splitter.sys
O41 - Driver: (no object) (sptd) - C:\WINDOWS\System32\Drivers\sptd.sys
O41 - Driver: Pilote de filtre de restauration système (sr) - C:\WINDOWS\System32\DRIVERS\sr.sys
O41 - Driver: Srv (Srv) - C:\WINDOWS\System32\DRIVERS\srv.sys
O41 - Driver: BDA IPSink (streamip) - C:\WINDOWS\System32\DRIVERS\StreamIP.sys
O41 - Driver: Pilote de bus logiciel (swenum) - C:\WINDOWS\System32\DRIVERS\swenum.sys
O41 - Driver: Synthétiseur de table de sons GC noyau Microsoft (swmidi) - C:\WINDOWS\system32\drivers\swmidi.sys
O41 - Driver: (no object) (SYMDNS) - C:\WINDOWS\System32\Drivers\SYMDNS.SYS
O41 - Driver: (no object) (SymEvent) - C:\Program Files\Symantec\SYMEVENT.SYS
O41 - Driver: (no object) (SYMFW) - C:\WINDOWS\System32\Drivers\SYMFW.SYS
O41 - Driver: (no object) (SYMIDS) - C:\WINDOWS\System32\Drivers\SYMIDS.SYS
O41 - Driver: (no object) (SYMIDSCO) - C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20041209.018\symidsco.sys
O41 - Driver: (no object) (SYMNDIS) - C:\WINDOWS\System32\Drivers\SYMNDIS.SYS
O41 - Driver: (no object) (SYMREDRV) - C:\WINDOWS\System32\Drivers\SYMREDRV.SYS
O41 - Driver: SYMTDI (SYMTDI) - C:\WINDOWS\System32\Drivers\SYMTDI.SYS
O41 - Driver: Périphérique audio système du noyau Microsoft (sysaudio) - C:\WINDOWS\system32\drivers\sysaudio.sys
O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\System32\DRIVERS\tcpip.sys
O41 - Driver: Trufos (Trufos) - C:\Program Files\Fichiers communs\BitDefender\BitDefender Threat Scanner\trufos.sys
O41 - Driver: Pilote de mise à jour microcode (Update) - C:\WINDOWS\System32\DRIVERS\update.sys
O41 - Driver: (no object) (upperdev) - C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
O41 - Driver: Apple Mobile USB Driver (USBAAPL) - C:\WINDOWS\System32\Drivers\usbaapl.sys
O41 - Driver: Pilote USB audio (WDM) (usbaudio) - C:\WINDOWS\system32\drivers\usbaudio.sys
O41 - Driver: LGE Mobile Composite USB Device (usbbus) - C:\WINDOWS\system32\DRIVERS\lgusbbus.sys
O41 - Driver: Pilote parent générique USB Microsoft (usbccgp) - C:\WINDOWS\System32\DRIVERS\usbccgp.sys
O41 - Driver: Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0 (usbehci) - C:\WINDOWS\System32\DRIVERS\usbehci.sys
O41 - Driver: Pilote de concentrateur standard USB Microsoft (usbhub) - C:\WINDOWS\System32\DRIVERS\usbhub.sys
O41 - Driver: LGE Mobile USB Modem (USBModem) - C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys
O41 - Driver: Classe d'imprimantes USB Microsoft (usbprint) - C:\WINDOWS\System32\DRIVERS\usbprint.sys
O41 - Driver: Pilote de scanneur USB (usbscan) - C:\WINDOWS\System32\DRIVERS\usbscan.sys
O41 - Driver: USB Modem Driver (usbser) - C:\WINDOWS\system32\drivers\usbser.sys
O41 - Driver: (no object) (UsbserFilt) - C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
O41 - Driver: Pilote de stockage de masse USB (USBSTOR) - C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS
O41 - Driver: Pilote miniport de contrôleur hôte universel USB Microsoft (usbuhci) - C:\WINDOWS\System32\DRIVERS\usbuhci.sys
O41 - Driver: Virtual Serial port driver (VComm) - C:\WINDOWS\system32\DRIVERS\VComm.sys
O41 - Driver: Bluetooth VComm Manager Service (VcommMgr) - C:\WINDOWS\System32\Drivers\VcommMgr.sys
O41 - Driver: VIA AGP Filter (viaagp1) - C:\WINDOWS\System32\DRIVERS\viaagp1.sys
O41 - Driver: Pilote ARP IP d'accès distant (Wanarp) - C:\WINDOWS\System32\DRIVERS\wanarp.sys
O41 - Driver: WAN Miniport (ATW) (wanatw) - C:\WINDOWS\System32\DRIVERS\wanatw4.sys
O41 - Driver: Windows CE USB Serial Host Driver (wceusbsh) - C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
O41 - Driver: Kernel Mode Driver Frameworks service (Wdf01000) - C:\WINDOWS\System32\Drivers\wdf01000.sys
O41 - Driver: Pilote WINMM de compatibilité audio WDM Microsoft (wdmaud) - C:\WINDOWS\system32\drivers\wdmaud.sys
O41 - Driver: (no object) (winachsf) - C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
O41 - Driver: WpdUsb (WpdUsb) - C:\WINDOWS\system32\DRIVERS\wpdusb.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (WS2IFSL) - C:\WINDOWS\System32\drivers\ws2ifsl.sys
O41 - Driver: World Standard Teletext Codec (WSTCODEC) - C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS
O41 - Driver: Windows Driver Foundation - User-mode Driver Framework Platform Driver (WudfPf) - C:\WINDOWS\system32\DRIVERS\WudfPf.sys
O41 - Driver: Windows Driver Foundation - User-mode Driver Framework Reflector (WudfRd) - C:\WINDOWS\system32\DRIVERS\wudfrd.sys
O41 - Driver: SAMSUNG Mobile USB Device II 1.0 driver (WDM) (ssm_bus) - C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
O41 - Driver: SAMSUNG Mobile USB Modem II 1.0 Filter (ssm_mdfl) - C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
O41 - Driver: SAMSUNG Mobile USB Modem II 1.0 Drivers (ssm_mdm) - C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys

---\\ Logiciels installés (O42)
O42 - Logiciel: ATI Control Panel
O42 - Logiciel: ATI Display Driver
O42 - Logiciel: AVI Info
O42 - Logiciel: Adobe Acrobat 4.0
O42 - Logiciel: Adobe Flash Player 9 ActiveX
O42 - Logiciel: Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader 9 - Français
O42 - Logiciel: Archiveur WinRAR
O42 - Logiciel: AviSynth 2.5
O42 - Logiciel: Canon MP Navigator EX 1.0
O42 - Logiciel: Canon MX310 series
O42 - Logiciel: Canon My Printer
O42 - Logiciel: Canon Utilities Easy-PhotoPrint EX
O42 - Logiciel: Canon Utilities Solution Menu
O42 - Logiciel: Compatibility Pack for the 2007 Office system
O42 - Logiciel: Dragon NaturallySpeaking 5.0
O42 - Logiciel: Error Repair Professional 3.9.3
O42 - Logiciel: High Definition Audio Driver Package - KB835221
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399)
O42 - Logiciel: Java 2 Runtime Environment Standard Edition v1.3.1_03
O42 - Logiciel: Java(TM) 6 Update 13
O42 - Logiciel: Java(TM) 6 Update 4
O42 - Logiciel: Java(TM) 6 Update 7
O42 - Logiciel: K-Lite Mega Codec Pack 3.8.5
O42 - Logiciel: Lecteur Windows Media 11
O42 - Logiciel: MSXML 4.0 SP2 (KB925672)
O42 - Logiciel: MSXML 4.0 SP2 (KB927978)
O42 - Logiciel: MSXML 4.0 SP2 (KB936181)
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: Macromedia Shockwave Player
O42 - Logiciel: MappySynchro v2.5
O42 - Logiciel: MaxTV Online
O42 - Logiciel: Microsoft .NET Framework 1.1
O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack
O42 - Logiciel: Microsoft .NET Framework 1.1 Hotfix (KB928366)
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 1
O42 - Logiciel: Microsoft ActiveSync 4.0
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP
O42 - Logiciel: Microsoft Data Access Components KB870669
O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
O42 - Logiciel: Microsoft National Language Support Downlevel APIs
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2003
O42 - Logiciel: Microsoft Office Professional Edition 2003
O42 - Logiciel: Microsoft Silverlight
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.5
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable
O42 - Logiciel: Nero 8
O42 - Logiciel: Nero Suite
O42 - Logiciel: Neuf - Media Center
O42 - Logiciel: Nokia Connectivity Cable Driver
O42 - Logiciel: Nokia Flashing Cable Driver
O42 - Logiciel: Nokia Lifeblog 2.5
O42 - Logiciel: Nokia NSeries Application Installer
O42 - Logiciel: Nokia NSeries Content Copier
O42 - Logiciel: Nokia NSeries Multimedia Player
O42 - Logiciel: Nokia NSeries Music Manager
O42 - Logiciel: Nokia NSeries One Touch Access
O42 - Logiciel: Nokia NSeries System Utilities
O42 - Logiciel: Nokia Nseries Video Manager
O42 - Logiciel: Nokia Software Launcher
O42 - Logiciel: Nokia Software Updater
O42 - Logiciel: Norton AntiVirus 2005 (Symantec Corporation)
O42 - Logiciel: Norton AntiVirus Parent MSI
O42 - Logiciel: OpenOffice.org 3.0
O42 - Logiciel: PC Connectivity Solution
O42 - Logiciel: PIXMA Extended Survey Program
O42 - Logiciel: Pense-bête
O42 - Logiciel: Presto! PageManager 7.15.16
O42 - Logiciel: RealPlayer
O42 - Logiciel: SFR - Kit de connexion
O42 - Logiciel: SPBBC
O42 - Logiciel: SUPER © Version 2008.bld.25 (Feb 5, 2008)
O42 - Logiciel: ScanSoft OmniPage SE 4
O42 - Logiciel: Security Update for CAPICOM (KB931906)
O42 - Logiciel: SoftV92 Data Fax Modem with SmartCP
O42 - Logiciel: Steam
O42 - Logiciel: SymNet
O42 - Logiciel: Symantec
O42 - Logiciel: Symbian Developer Certificate Request
O42 - Logiciel: System Requirements Lab
O42 - Logiciel: VideoLAN VLC media player 0.8.6f
O42 - Logiciel: Viewpoint Media Player
O42 - Logiciel: Windows Driver Package - Nokia (WUDFRd) WPD (03/19/2007 6.83.31.1)
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130)
O42 - Logiciel: Windows Genuine Advantage v1.3.0254.0
O42 - Logiciel: Windows Internet Explorer 7
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: Windows Live Sign-in Assistant
O42 - Logiciel: Windows Media Format 11 runtime
O42 - Logiciel: Windows Media Player 11
O42 - Logiciel: Windows XP Service Pack 3
O42 - Logiciel: ccCommon
O42 - Logiciel: eMule
O42 - Logiciel: neroxml

---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Adobe
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Ahead
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\CANON
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\DESIGNER
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\FotoWire
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Hewlett-Packard
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\InstallShield
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Java
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Microsoft Shared
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\MSSoap
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Nero
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\NewSoft
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Nokia
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Nullsoft
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\ODBC
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Olympus Shared
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\PCSuite
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\PDFView
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Real
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\ScanSoft Shared
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Services
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\SpeechEngines
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Symantec Shared
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Symbian
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\Synacast
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\System
O43 - CFD:Common File Directory - C:\Program Files\Fichiers Communs\xing shared

---\\ Derniers fichiers modifiés ou crées sous System32 (O44)
O44 - LFC:Last File Created - C:\WINDOWS\System32\advapi32.dll -->09/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\advpack.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\amcompat.tlb -->13/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\CONFIG.NT -->08/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\deploytk.dll -->16/04/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\dxtmsft.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\dxtrans.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\extmgr.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\FNTCACHE.DAT -->11/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\html.iec -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\icardie.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ie4uinit.exe -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ieakeng.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ieaksie.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ieakui.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ieapfltr.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\iedkcs32.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ieencode.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ieframe.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\iernonce.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\iertutil.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ieudinit.exe -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\inetcpl.cpl -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\java.exe -->16/04/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\javacpl.cpl -->16/04/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\javaw.exe -->16/04/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\javaws.exe -->16/04/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\jsproxy.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\kernel32.dll -->21/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\lsasrv.dll -->09/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\MRT.exe -->06/04/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\MRT.INI -->13/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\msfeeds.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\msfeedsbs.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\mshtml.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\mshtmled.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\msrating.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\mstime.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\nmdfgds0.dll -->15/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\nmdfgds1.dll -->13/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\nscompat.tlb -->13/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ntdll.dll -->09/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ntkrnlpa.exe -->10/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\ntoskrnl.exe -->09/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\occache.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\olhrwef.exe -->15/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\pdh.dll -->06/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\perfc009.dat -->09/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\perfc00C.dat -->09/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\perfh009.dat -->09/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\perfh00C.dat -->09/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\PerfStringBackup.INI -->09/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\pngfilt.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\rpcss.dll -->09/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\sc.exe -->06/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\secur32.dll -->03/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\services.exe -->09/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\spupdsvc.inf -->17/04/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\url.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\urlmon.dll -->20/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\win32k.sys -->09/02/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\wininet.dll -->03/03/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\wpa.dbl -->22/04/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf -->22/01/2009
O44 - LFC:Last File Created - C:\WINDOWS\System32\drivers\Msft_Kernel_ccdcmb_01007.Wdf -->22/01/2009

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\ACRORD32.EXE-3A1F13AE.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\ACRORD32INFO.EXE-242CE4AA.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\ADOBE_UPDATER.EXE-32E1E9B7.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\CHKUPD.EXE-071331FD.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\CONNECTIONMANAGER.EXE-33597C57.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\CONTENTCOPIER.EXE-0D53F6B4.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\CTFMON.EXE-0E17969B.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\DAEMON.EXE-208767E0.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\DRWTSN32.EXE-2B4B52AC.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\DUMPREP.EXE-1B46F901.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\DWWIN.EXE-30875ADC.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\EMULE.EXE-2A971BEB.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\EXPLORER.EXE-082F38A9.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\GETCONNECTED.EXE-387BF7A2.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\GI2KY.EXE-288CC333.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\GI2KY.EXE-2F82C49C.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\GI2KY.EXE-37B70AAE.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\HELP.EXE-20CEB9BF.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\HELPSVC.EXE-2878DDA2.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\IEXPLORE.EXE-27122324.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\layout.ini -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\LOGONUI.EXE-0AF22957.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\MSCONFIG.EXE-35E4DAE9.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\MSNMSGR.EXE-366A1A81.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\NCLINSTALLER.EXE-35BFFB75.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\NOTEPAD.EXE-189578DA.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\NOTEPAD.EXE-336351A9.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\NSLAUNCHER.EXE-33A397C7.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\NTOSBOOT-B00DFAAD.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\NVIDEOMANAGER.EXE-25269075.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\OIS.EXE-0E0BCC15.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\POKAPOKA65.EXE-1A82DA56.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-14D8CC25.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-188DF14E.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-1E990586.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-235F41DA.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-2576181F.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-27D58397.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-33B961A1.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-3B58D92D.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-3DF1C0E7.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-3ED0771E.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\RUNDLL32.EXE-451FC2C0.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\SERVICELAYER.EXE-191F07A8.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\TASKMGR.EXE-20256C55.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\USNSVC.EXE-373E4DBC.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\VERCLSID.EXE-3667BD89.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\WIAACMGR.EXE-212ED878.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\WINRAR.EXE-39C6DAD9.pf -->28/02/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\WMIPRVSE.EXE-28F301A9.pf -->01/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\WSCNTFY.EXE-1B24F5EB.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\WUAUCLT.EXE-399A8E72.pf -->02/03/2009
O45 - LFCP:Last File Created Prefetch - C:\WINDOWS\Prefetch\WUDFHOST.EXE-215E7549.pf -->28/02/2009

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - (no name) - {BB4C402F-882A-4526-8C08-51278EA437C1} - shell32.dll

---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export - "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
O47 - AAKE:Key Export - "C:\Program Files\eMule\eMule.exe"="C:\Program Files\eMule\eMule.exe:*:Enabled:eMule Plus"
O47 - AAKE:Key Export - "C:\WINDOWS\PCHealth\HelpCtr\Binaries\helpctr.exe"="C:\WINDOWS\PCHealth\HelpCtr\Binaries\helpctr.exe:*:Enabled:Assistance à distance - Windows Messenger et voix"
O47 - AAKE:Key Export - "C:\Program Files\MSN\MSNCoreFiles\msn6.exe"="C:\Program Files\MSN\MSNCoreFiles\msn6.exe:*:Enabled:MSN Explorer"
O47 - AAKE:Key Export - "C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
O47 - AAKE:Key Export - "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
O47 - AAKE:Key Export - "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
O47 - AAKE:Key Export - "C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
O47 - AAKE:Key Export - "C:\Documents and Settings\All Users\Documents\eMule\emule.exe"="C:\Documents and Settings\All Users\Documents\eMule\emule.exe:*:Enabled:eMule"
O47 - AAKE:Key Export - "C:\Program Files\NewsBin\nbpro.exe"="C:\Program Files\NewsBin\nbpro.exe:*:Enabled:Newsbin"
O47 - AAKE:Key Export - "C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
O47 - AAKE:Key Export - "C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
O47 - AAKE:Key Export - "C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer"
O47 - AAKE:Key Export - "C:\Program Files\Cyanide\GameCenter\GameCenter.exe"="C:\Program Files\Cyanide\GameCenter\GameCenter.exe:*:Enabled:GameCenter"
O47 - AAKE:Key Export - "C:\Program Files\K-Lite Codec Pack\Media Player Classic\mplayerc.exe"="C:\Program Files\K-Lite Codec Pack\Media Player Classic\mplayerc.exe:*:Enabled:Media Player Classic"
O47 - AAKE:Key Export - "C:\Program Files\Cyanide\Pro Cycling Manager\Cym2005.exe"="C:\Program Files\Cyanide\Pro Cycling Manager\Cym2005.exe:*:Enabled:p ro Cycling Manager"
O47 - AAKE:Key Export - "C:\Program Files\TvAnts\Tvants.exe"="C:\Program Files\TvAnts\Tvants.exe:*:Enabled:TVAnts"
O47 - AAKE:Key Export - "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
O47 - AAKE:Key Export - "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
O47 - AAKE:Key Export - "C:\Program Files\eMule\eMule\emule.exe"="C:\Program Files\eMule\eMule\emule.exe:*:Enabled:eMule"
O47 - AAKE:Key Export - "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
O47 - AAKE:Key Export - "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
O47 - AAKE:Key Export - "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
O47 - AAKE:Key Export - "C:\Documents and Settings\mm\Bureau\eMule\emule.exe"="C:\Documents and Settings\mm\Bureau\eMule\emule.exe:*:Enabled:eMule"
O47 - AAKE:Key Export - "C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
O47 - AAKE:Key Export - "C:\Program Files\Fichiers communs\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Fichiers communs\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
O47 - AAKE:Key Export - "C:\Program Files\Neuf\Media Center\httpd\httpd.exe"="C:\Program Files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)"
O47 - AAKE:Key Export - "C:\Program Files\Sports Interactive\Football Manager 2009\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2009\fm.exe:*:D isabled:Football Manager 2009"
O47 - AAKE:Key Export - "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
O47 - AAKE:Key Export - "C:\Program Files\AOL 9.0f\waol.exe"="C:\Program Files\AOL 9.0f\waol.exe:*:Enabled:AOL 9.0f"
O47 - AAKE:Key Export - "C:\Program Files\AOL 9.0\waol.exe"="C:\Program Files\AOL 9.0\waol.exe:*:Enabled:AOL 9.0"
O47 - AAKE:Key Export - "C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
O47 - AAKE:Key Export - "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
O47 - AAKE:Key Export - "C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
O47 - AAKE:Key Export - "C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
O47 - AAKE:Key Export - "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
O47 - AAKE:Key Export - "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
O47 - AAKE:Key Export - "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

---\\ Déni du service LSA (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages - C:\WINDOWS\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages - C:\WINDOWS\System32\scecli.dll

---\\ Contrôle du Safe Boot (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Wdf01000.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nm.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Wdf01000.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Minimal\Wdf01000.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmboot.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmio.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\dmload.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\ip6fw.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\nm.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\rdpcdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\rdpdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\rdpwd.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\sr.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\tdpipe.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\tdtcp.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\vgasave.sys
O49 - CSB:Control Safe Boot HKLM\...\CS2\Network\Wdf01000.sys

---\\ Image File Execution Options (IFEO) (O50)
O50 - IEFO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d

---\\ MountPoints2 Shell Key (MPKS) (O51)
O51 - MPSK:{16a2d598-e2c2-11dc-985c-000fea1e2265}\Shell\AutoRun\command - M:\1wod1.com
O51 - MPSK:{16a2d598-e2c2-11dc-985c-000fea1e2265}\Shell\explore\command - M:\1wod1.com
O51 - MPSK:{16a2d598-e2c2-11dc-985c-000fea1e2265}\Shell\open\command - M:\1wod1.com
O51 - MPSK:{16a2d599-e2c2-11dc-985c-000fea1e2265}\Shell\AutoRun\command - N:\1wod1.com
O51 - MPSK:{16a2d599-e2c2-11dc-985c-000fea1e2265}\Shell\explore\command - N:\1wod1.com
O51 - MPSK:{16a2d599-e2c2-11dc-985c-000fea1e2265}\Shell\open\command - N:\1wod1.com
O51 - MPSK:{28b5dc56-60fc-11db-95ad-000fea1e2265}\Shell\AutoRun\command - G:\pook.com
O51 - MPSK:{28b5dc56-60fc-11db-95ad-000fea1e2265}\Shell\open\command - G:\pook.com
O51 - MPSK:{3495ebf8-5590-11dd-9a14-000fea1e2265}\Shell\AutoRun\command - J:\g2pfnid.com
O51 - MPSK:{3495ebf8-5590-11dd-9a14-000fea1e2265}\Shell\explore\command - J:\g2pfnid.com
O51 - MPSK:{3495ebf8-5590-11dd-9a14-000fea1e2265}\Shell\open\command - J:\g2pfnid.com
O51 - MPSK:{428a8e10-e741-11dd-8312-000fea1e2265}\Shell\AutoRun\command - G:\gi2ky.exe
O51 - MPSK:{428a8e10-e741-11dd-8312-000fea1e2265}\Shell\open\command - G:\gi2ky.exe
O51 - MPSK:{4c1254f0-f843-11dd-8346-000fea1e2265}\Shell\AutoRun\command - K:\cv22.cmd
O51 - MPSK:{4c1254f0-f843-11dd-8346-000fea1e2265}\Shell\open\command - K:\cv22.cmd
O51 - MPSK:{6155bcc9-83fa-11dc-973d-000fea1e2265}\Shell\AutoRun\command - F:\cm0.com
O51 - MPSK:{6155bcc9-83fa-11dc-973d-000fea1e2265}\Shell\explore\command - F:\cm0.com
O51 - MPSK:{6155bcc9-83fa-11dc-973d-000fea1e2265}\Shell\open\command - F:\cm0.com
O51 - MPSK:{75de5bb3-e7b0-11dd-8314-000fea1e2265}\Shell\AutoRun\command - iqe68o.bat
O51 - MPSK:{75de5bb3-e7b0-11dd-8314-000fea1e2265}\Shell\explore\command - iqe68o.bat
O51 - MPSK:{75de5bb3-e7b0-11dd-8314-000fea1e2265}\Shell\open\command - iqe68o.bat
O51 - MPSK:{8effad53-8a02-11db-95f6-000fea1e2265}\Shell\AutoRun\command - G:\j60osk9.cmd
O51 - MPSK:{8effad53-8a02-11db-95f6-000fea1e2265}\Shell\open\command - G:\j60osk9.cmd
O51 - MPSK:{aee65cad-b534-11db-964d-000fea1e2265}\Shell\AutoRun\command - N:\xih9.cmd
O51 - MPSK:{aee65cad-b534-11db-964d-000fea1e2265}\Shell\explore\command - N:\xih9.cmd
O51 - MPSK:{aee65cad-b534-11db-964d-000fea1e2265}\Shell\open\command - N:\xih9.cmd
O51 - MPSK:{afc00b76-1764-11dd-990c-000fea1e2265}\Shell\AutoRun\command - 6fnlpetp.exe
O51 - MPSK:{afc00b76-1764-11dd-990c-000fea1e2265}\Shell\explore\command - 6fnlpetp.exe
O51 - MPSK:{afc00b76-1764-11dd-990c-000fea1e2265}\Shell\open\command - 6fnlpetp.exe

---\\ Trojan Driver Search Data (TDSD) (O52)
O52 - TDSD:HKLM\...\Drivers\"timer"="timer.drv"
O52 - TDSD:HKLM\...\Drivers32\"midimapper"="midimap.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.imaadpcm"="imaadp32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msadpcm"="msadp32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msg711"="msg711.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msgsm610"="msgsm32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.trspch"="tssoft32.acm"
O52 - TDSD:HKLM\...\Drivers32\"vidc.cvid"="iccvid.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.I420"="i420vfw.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.IYUV"="iyuv_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.mrle"="msrle32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.msvc"="msvidc32.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.UYVY"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YUY2"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVU9"="tsbyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YVYU"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"wavemapper"="msacm32.drv"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msg723"="msg723.acm"
O52 - TDSD:HKLM\...\Drivers32\"vidc.M263"="msh263.drv"
O52 - TDSD:HKLM\...\Drivers32\"vidc.M261"="msh261.drv"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msaudio1"="msaud32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.sl_anet"="sl_anet.acm"
O52 - TDSD:HKLM\...\Drivers32\"MSVideo8"="VfWWDM32.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.siren"="sirenacm.dll"
O52 - TDSD:HKLM\...\Drivers32\"wave1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"aux"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"vidc.iv50"="ir50_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.iv41"="ir41_32.ax"
O52 - TDSD:HKLM\...\Drivers32\"vidc.iv31"="ir32_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.iv32"="ir32_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"wave2"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi2"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer2"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"aux1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"wave3"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi3"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer3"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"aux2"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"wave"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.DIVX"="divx.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.XVID"="xvidvfw.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.YV12"="yv12vfw.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.ac3acm"="ac3acm.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.lameacm"="lameACM.acm"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.FFDS"="ff_vfw.dll"


End of the scan:


Avez-vous une idée de ce que c'est ?

Merci d'avance car c'est vraimment embettant de ne pas pouvoir bien utilisé son pc!

Configuration: windows XP version familiale
Internet Explorer 7.0

Autres pages sur : impossible sortir mode echec secours svp

a c 295 8 Sécurité
23 Avril 2009 15:24:31

Bonjour,

  • Télécharge UsbFix (de C_XX & Chiquitine29) sur ton Bureau.
  • Lance l'installation avec les paramètres par défaut.
  • Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.
  • Double-clique sur le raccourci UsbFix sur ton Bureau.
  • Choisis l'option 1 (Recherche).
  • Laisse travailler l'outil.
  • Poste le rapport UsbFix.txt.

    Note : le rapport UsbFix.txt est sauvegardé à la racine du disque (C:\UsbFix.txt).

    "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
    Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS