Aller au contenu

Brylama

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    147

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par Brylama

  1. Brylama
    Bonjour Apollo, Merci pour votre réponse Voici donc le rapport demandé: Lien CJoint.com 0GkiqTbXvz3 J'espère avoir bien collé aux instructions Bonne journée
  2. Brylama
    Merci Appolo, oulala, mais où ai-je la tête!! Le voici ce rapport; il était otut prêt à sortir de mon "click droit"! Merci de votre patience d' Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:55:01, on 06/07/2012 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\WINDOWS\system32\FsUsbExService.Exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe C:\Program Files\Microsoft LifeCam\MSCamS32.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\trend micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Portail Orange : Actu, Sport, Assistance Internet, Web Mail Orange R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Hotmail.fr, Messenger, Skype, Sydrive, Actualité, Sport, People, Femmes - MSN France R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN Hotmail.fr, Messenger, Skype, Sydrive, Actualité, Sport, People, Femmes - MSN France R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [orangeinside] C:\Documents and Settings\NetworkService\Application Data\Orange\OrangeInside\one\OrangeInside.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [orangeinside] C:\Documents and Settings\NetworkService\Application Data\Orange\OrangeInside\one\OrangeInside.exe (User 'Default user') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: envoyer par sms - C:\Documents and Settings\Sylvie Roussin\Application Data\Orange\OrangeInside\src\sendsms_html\sendsms.html O8 - Extra context menu item: envoyer un mail - C:\Documents and Settings\Sylvie Roussin\Application Data\Orange\OrangeInside\src\sendmail_html\sendmail.html O8 - Extra context menu item: rechercher le texte sélectionné - C:\Documents and Settings\Sylvie Roussin\Application Data\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html O8 - Extra context menu item: _traduire le texte sélectionné - C:\Documents and Settings\Sylvie Roussin\Application Data\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {5A779DC0-837B-4590-AC42-C7C0847478C5} - http://logicielsgratuits.orange.fr/download_service/Install/OrangeInstaller.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Orange update Core Service - Unknown owner - C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- End of file - 8585 bytes
  3. Brylama
    Bonjour à tous, beau temps, non? Quelqu'un peut-il me dire ce qu'il en est de mon rapport Hijack this? Simple contrôle de routine. Merci beaucoup et bonne journée à vous
  4. Brylama

    Flash Player

    Brylama a répondu à un(e) sujet de Brylama dans Software

    Bonjour, j'ai l'impression que mon sujet n'inspire pas beaucoup? ...ou pire, il n'y a pas de solution?? Quelqu'un peut -il m'éclairer sur cela? Merci d'avance pour vos réponses, Cordialement, Brylama
  5. Brylama

    Flash Player

    Brylama a répondu à un(e) sujet de Brylama dans Software

    Bonjour, Merci pour votre réponse, en faite j'ai dû mal me faire comprendre; j'ai déjà désinstallé FP puis tenté de le réinstaller mais alors que l'installation dot être terminée, il s'affiche ensuite: :" windows ne trouve pas'http://get.adobe.com/flashplayer/completion/aih/?exitcode=0' Vérifiez que vous avez entré le nom correctement et essayez à nouveau. Pour rechercher un fichier, cliquer sur le bouton Démarrer, puis Rechercher. OK On m'a dit ensuite d'aller voir sur le panneau de configuration / FP et là ,dans la fonction avancée de Flash Player voici ce qu'on me dit: Version du module d'extension non installée! C'est là où est le "couac". Quelqu'un a une idée? Cordialement, Brylama
  6. Brylama

    Flash Player

    Brylama a posté un sujet dans Software

    Bonjour, j'arrive du forum Sécurité pour un problème de virus. Nous avons fait également un peu le ménage dans ma machine et je rencontre un nouveau problème pour effectuer la mise à jour de Flas Player. Voici toutes les manoeuvres effectuées: Flash Player: - Désinstaller[/b][/color] les vieilles versions de Flash Player avec cet utilitaire (en le téléchargeant sur le Bureau. - Ensuite, installer la dernière version en cliquant ici. Décocher l'option "McAfee® Security Scan Plus gratuit (en option)" et cliquer sur "Télécharger dès maintenant" pour lancer le processus d'installation. Patienter jusqu'à la fin et supprimer le fichier "uninstall_flash_player.exe" Répéter la 2ème étape pour chacun de vos navigateurs utilisés (IE, FF... J 'ai effectué la désinstallation mais pour l'installation (d'abord je ne trouve pas la case à décocher concernant MacAfee, par contre il y avait une case pour la barre outil google que j'ai décoché),elle ne se termine pas correctement car il s'affiche :" windows ne trouve pas'http://get.adobe.com/flashplayer/completion/aih/?exitcode=0' Vérifiez que vous avez entré le nom correctement et essayez à nouveau. Pour rechercher un fichier, cliquer sur le bouton Démarrer, puis Rechercher. OK Dans la fonction avancée de Flash Player voici ce qu'on me dit: Version du module d'extension non installée! Visiblement, Il y a un "couac" quelque part...on peut y faire quelque chose? En tous cas, merci pour vos réponses Cordialement, Brylama
  7. Brylama
    Bonjour, et bien dans ce cas il ne me reste plus qu'à te souhaiter un grand merci pour toute ton aide qui je le répète reste très précieuse. Bravo pour cette passion! Sincèrement merci!! Excellentes journées à toi, Cordialement, Brylama
  8. Brylama
    Bonsoir, Dans la fonction avancéé de Flash player voici ce qu'on me dit: Version du module d'extension non installé! Il y a eu un "couac" quelque part...on peut y faire quelque chose? Cordialement, brylama
  9. Brylama
    Bonsoir, j'ai beau relire les instructions pour adobe flash player, je ne comprend pas ce qui cloche! j'ai bien effectué la désinstallation mais pour l'installation (d'abord je ne trouve pas la case à décocher concernant MacAfee, par contre il y avait une case pour la barre outil google que j'ai décoché), elle ne se termine pas correctement car il s'affiche :" windows ne trouve pas'http://get.adobe.com/flashplayer/completion/aih/?exitcode=0' Vérifiez que vous avez entré le nom correctement et essayez à nouveau. Pour rechercher un fichier, cliquer sur le bouton Démarrer, puis Rechercher. OK" J'avais d'ailleurs déjà mentionné ce problème il me semble la première fois que tu m'avais suggéré cette action. Que peut-on faire alors? Merci, cordialement, Brylama
  10. Brylama
    Bonjour, je me suis lancée dans la liste d'action pour sécuriser au mieux mon ordi...ouf! quelle histoire! Je ne sais pas déchiffrer l'anglais!!! Alors du coup, j'ai quelques difficultés à faire les choix pour l'installation de Outpost Firewall free; puis je demander ton aide? Par ailleurs, j'ai télécharger secunia (que j'avais déjà semble-t-il mais pas à jour si j'ai compris); il a fait un scann et trouve 6 erreurs: 3 "end-of-life" et 3 "insecure". Pour les "end-of-life", Il y a AAC/aac plus player plugin1.x que je ne retrouve pas pour le supprimer. Il y a aussi à Power point; on me propose en action Microsoft update, je click et on me dit: "unable to locate an appropriate browser for the requiest URL" puis quand je fais OK, on me dit: "an error occured while attempting to open the specified URL". Je n'y comprend rien; que dois-je faire? Puis il y a Adobe flash player 9.x(NPAI) J'ai la version 11.x, donc je voudrai désinstaller celle ci mais où est'elle? et sous quel nom? Pour les Insecure, il y a HP info center 1.x où on me propose Install solution ce que je demande mais la réponse est la même que pour power point. Il y a aussi apple safari que j'ai trouvé dans program file et que je souhaite supprimer. Et enfin Symantec Norton ; aucune solution proposée Peux-tu m'clairer pour tout ça aussi? Très cordialement, Brylama
  11. Brylama
    Bonsoir, Brrr quelle horreur!! Heureuse d'en être débarrassée! Mais j'ai encore besoin d'être rassurée; lorsque TDSKILLER à analysé et qu'il l'a trouvé, je n'ai rien touché comme demandé, je n'ai donc pas appuyé sur la touche cure! c'est bien ce qu'il fallait faire, hein? Je pense que oui, mais bon... besoin d'en être certaine. Pour le moment, l'ordi fonctionne plutôt bien...à voir dans le temps sans doute. Je suppose quand même que je vais devoir penser à investir dans un disque dur? En tous cas merci beaucoup pour votre aide! très précieuse dailleurs! comment je peux faire pour vous remerciez à la hauteur du travail que vous faites! C'est votre job? ou la passion a pris le dessus? En tous les cas, "chapeau"! Bonne soirée Cordialement, Brylama
  12. Brylama
    aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software Run date: 2011-10-17 17:10:21 ----------------------------- 17:10:21.937 OS Version: Windows 5.1.2600 Service Pack 3 17:10:21.937 Number of processors: 2 586 0xE08 17:10:21.937 ComputerName: SAMI UserName: 17:10:22.812 Initialize success 17:10:42.531 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0 17:10:42.531 Disk 0 Vendor: HTS54101 MBZO Size: 95396MB BusType: 3 17:10:42.546 Disk 0 MBR read successfully 17:10:42.546 Disk 0 MBR scan 17:10:42.546 Disk 0 unknown MBR code 17:10:42.562 Disk 0 scanning sectors +195366465 17:10:42.609 Disk 0 scanning C:\WINDOWS\system32\drivers 17:10:51.953 Service scanning 17:10:53.515 Modules scanning 17:11:00.125 Disk 0 trace - called modules: 17:11:00.140 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll iaStor.sys 17:11:00.156 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86f3f030] 17:11:00.156 3 CLASSPNP.SYS[f75f2fd7] -> nt!IofCallDriver -> \Device\0000007d[0x86f77a28] 17:11:00.156 5 ACPI.sys[f7468620] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x86f75030] 17:11:00.671 Scan finished successfully 17:11:27.359 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Sylvie Roussin\Bureau\MBR.dat" 17:11:27.375 The log file has been saved successfully to "C:\Documents and Settings\Sylvie Roussin\Bureau\aswMBR.txt"
  13. Brylama
    Bonsoir, voici les derniers rapports: 16:57:30.0406 2140 TDSS rootkit removing tool 2.6.10.0 Oct 17 2011 15:43:23 16:57:30.0687 2140 ============================================================ 16:57:30.0687 2140 Current date / time: 2011/10/17 16:57:30.0687 16:57:30.0687 2140 SystemInfo: 16:57:30.0687 2140 16:57:30.0687 2140 OS Version: 5.1.2600 ServicePack: 3.0 16:57:30.0687 2140 Product type: Workstation 16:57:30.0687 2140 ComputerName: SAMI 16:57:30.0687 2140 UserName: Sylvie Roussin 16:57:30.0687 2140 Windows directory: C:\WINDOWS 16:57:30.0687 2140 System windows directory: C:\WINDOWS 16:57:30.0687 2140 Processor architecture: Intel x86 16:57:30.0687 2140 Number of processors: 2 16:57:30.0687 2140 Page size: 0x1000 16:57:30.0687 2140 Boot type: Normal boot 16:57:30.0687 2140 ============================================================ 16:57:31.0640 2140 Initialize success 16:57:33.0781 2812 ============================================================ 16:57:33.0781 2812 Scan started 16:57:33.0781 2812 Mode: Manual; 16:57:33.0781 2812 ============================================================ 16:57:35.0593 2812 Abiosdsk - ok 16:57:35.0656 2812 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS 16:57:35.0656 2812 abp480n5 - ok 16:57:35.0718 2812 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 16:57:35.0734 2812 ACPI - ok 16:57:35.0750 2812 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys 16:57:35.0750 2812 ACPIEC - ok 16:57:35.0812 2812 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys 16:57:35.0812 2812 adpu160m - ok 16:57:35.0843 2812 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 16:57:35.0843 2812 aec - ok 16:57:35.0906 2812 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 16:57:35.0906 2812 AFD - ok 16:57:35.0953 2812 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys 16:57:35.0953 2812 agp440 - ok 16:57:36.0093 2812 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys 16:57:36.0093 2812 agpCPQ - ok 16:57:36.0187 2812 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys 16:57:36.0187 2812 Aha154x - ok 16:57:36.0328 2812 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys 16:57:36.0328 2812 aic78u2 - ok 16:57:36.0375 2812 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys 16:57:36.0375 2812 aic78xx - ok 16:57:36.0421 2812 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys 16:57:36.0421 2812 AliIde - ok 16:57:36.0546 2812 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys 16:57:36.0578 2812 alim1541 - ok 16:57:36.0609 2812 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys 16:57:36.0609 2812 amdagp - ok 16:57:36.0656 2812 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys 16:57:36.0656 2812 amsint - ok 16:57:36.0843 2812 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 16:57:36.0843 2812 Arp1394 - ok 16:57:36.0921 2812 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys 16:57:36.0921 2812 asc - ok 16:57:36.0953 2812 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys 16:57:36.0953 2812 asc3350p - ok 16:57:37.0046 2812 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys 16:57:37.0046 2812 asc3550 - ok 16:57:37.0093 2812 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 16:57:37.0093 2812 AsyncMac - ok 16:57:37.0109 2812 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 16:57:37.0109 2812 atapi - ok 16:57:37.0140 2812 Atdisk - ok 16:57:37.0171 2812 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 16:57:37.0171 2812 Atmarpc - ok 16:57:37.0203 2812 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 16:57:37.0203 2812 audstub - ok 16:57:37.0343 2812 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys 16:57:37.0343 2812 avgio - ok 16:57:37.0406 2812 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\WINDOWS\system32\DRIVERS\avgntflt.sys 16:57:37.0406 2812 avgntflt - ok 16:57:37.0562 2812 avipbb (ad9bd66a862116e79cb45bb6be46055f) C:\WINDOWS\system32\DRIVERS\avipbb.sys 16:57:37.0562 2812 avipbb - ok 16:57:37.0609 2812 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 16:57:37.0609 2812 Beep - ok 16:57:37.0671 2812 BTWUSB (7024e11dab9410b31a37547575249dd7) C:\WINDOWS\system32\Drivers\btwusb.sys 16:57:37.0671 2812 BTWUSB - ok 16:57:37.0734 2812 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys 16:57:37.0734 2812 cbidf - ok 16:57:37.0750 2812 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 16:57:37.0750 2812 cbidf2k - ok 16:57:37.0812 2812 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 16:57:37.0812 2812 CCDECODE - ok 16:57:37.0843 2812 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys 16:57:37.0843 2812 cd20xrnt - ok 16:57:37.0859 2812 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 16:57:37.0875 2812 Cdaudio - ok 16:57:37.0906 2812 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 16:57:37.0906 2812 Cdfs - ok 16:57:37.0937 2812 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 16:57:37.0937 2812 Cdrom - ok 16:57:37.0953 2812 Changer - ok 16:57:37.0984 2812 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys 16:57:37.0984 2812 CmBatt - ok 16:57:38.0031 2812 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys 16:57:38.0031 2812 CmdIde - ok 16:57:38.0109 2812 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys 16:57:38.0109 2812 Compbatt - ok 16:57:38.0140 2812 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys 16:57:38.0140 2812 Cpqarray - ok 16:57:38.0171 2812 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys 16:57:38.0187 2812 dac2w2k - ok 16:57:38.0203 2812 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys 16:57:38.0203 2812 dac960nt - ok 16:57:38.0218 2812 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 16:57:38.0218 2812 Disk - ok 16:57:38.0281 2812 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 16:57:38.0312 2812 dmboot - ok 16:57:38.0390 2812 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 16:57:38.0390 2812 dmio - ok 16:57:38.0437 2812 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 16:57:38.0437 2812 dmload - ok 16:57:38.0531 2812 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 16:57:38.0531 2812 DMusic - ok 16:57:38.0562 2812 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys 16:57:38.0578 2812 dpti2o - ok 16:57:38.0609 2812 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 16:57:38.0609 2812 drmkaud - ok 16:57:38.0671 2812 E100B (6ca101f9aa3d845ba31f6e13c01301a8) C:\WINDOWS\system32\DRIVERS\e100b325.sys 16:57:38.0687 2812 E100B - ok 16:57:38.0843 2812 eabfiltr (b5cb3084046146fd2587d8c9b219feb4) C:\WINDOWS\system32\DRIVERS\eabfiltr.sys 16:57:38.0843 2812 eabfiltr - ok 16:57:38.0859 2812 eabusb (231f4547ae1e4b3e60eca66c3a96d218) C:\WINDOWS\system32\DRIVERS\eabusb.sys 16:57:38.0859 2812 eabusb - ok 16:57:38.0921 2812 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 16:57:38.0921 2812 Fastfat - ok 16:57:38.0953 2812 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys 16:57:38.0953 2812 Fdc - ok 16:57:39.0031 2812 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 16:57:39.0031 2812 Fips - ok 16:57:39.0062 2812 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys 16:57:39.0062 2812 Flpydisk - ok 16:57:39.0125 2812 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 16:57:39.0140 2812 FltMgr - ok 16:57:39.0187 2812 FsUsbExDisk (cbe5f69a5e5b918225f420ba748f3742) C:\WINDOWS\system32\FsUsbExDisk.SYS 16:57:39.0281 2812 FsUsbExDisk - ok 16:57:39.0515 2812 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 16:57:39.0515 2812 Fs_Rec - ok 16:57:39.0562 2812 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 16:57:39.0578 2812 Ftdisk - ok 16:57:39.0640 2812 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 16:57:39.0640 2812 GEARAspiWDM - ok 16:57:39.0703 2812 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 16:57:39.0703 2812 Gpc - ok 16:57:39.0781 2812 HBtnKey (4d4d97671c63c3af869b3518e6054204) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys 16:57:39.0781 2812 HBtnKey - ok 16:57:39.0859 2812 HdAudAddService (bb42bb78bbbc1e83292ef26973598daf) C:\WINDOWS\system32\drivers\CHDAud.sys 16:57:39.0875 2812 HdAudAddService - ok 16:57:40.0093 2812 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 16:57:40.0093 2812 HDAudBus - ok 16:57:40.0156 2812 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 16:57:40.0156 2812 HidUsb - ok 16:57:40.0234 2812 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys 16:57:40.0234 2812 hpn - ok 16:57:40.0281 2812 HSFHWAZL (89e256c5f5346be265d9f86ac8625d4f) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys 16:57:40.0296 2812 HSFHWAZL - ok 16:57:40.0343 2812 HSF_DPV (0e44af3828111d4c3e73c33ac95226d8) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys 16:57:40.0406 2812 HSF_DPV - ok 16:57:40.0671 2812 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 16:57:40.0671 2812 HTTP - ok 16:57:40.0734 2812 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys 16:57:40.0734 2812 i2omgmt - ok 16:57:40.0765 2812 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys 16:57:40.0765 2812 i2omp - ok 16:57:40.0796 2812 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 16:57:40.0796 2812 i8042prt - ok 16:57:40.0906 2812 iaStor (309c4d86d989fb1fcf64bd30dc81c51b) C:\WINDOWS\system32\DRIVERS\iaStor.sys 16:57:40.0921 2812 iaStor - ok 16:57:40.0953 2812 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 16:57:40.0968 2812 Imapi - ok 16:57:41.0000 2812 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys 16:57:41.0000 2812 ini910u - ok 16:57:41.0015 2812 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys 16:57:41.0015 2812 IntelIde - ok 16:57:41.0078 2812 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 16:57:41.0078 2812 intelppm - ok 16:57:41.0218 2812 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 16:57:41.0218 2812 Ip6Fw - ok 16:57:41.0250 2812 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 16:57:41.0265 2812 IpFilterDriver - ok 16:57:41.0312 2812 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 16:57:41.0312 2812 IpInIp - ok 16:57:41.0343 2812 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 16:57:41.0343 2812 IpNat - ok 16:57:41.0390 2812 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 16:57:41.0390 2812 IPSec - ok 16:57:41.0421 2812 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 16:57:41.0421 2812 IRENUM - ok 16:57:41.0437 2812 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 16:57:41.0437 2812 isapnp - ok 16:57:41.0531 2812 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 16:57:41.0531 2812 Kbdclass - ok 16:57:41.0562 2812 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 16:57:41.0562 2812 kbdhid - ok 16:57:41.0609 2812 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 16:57:41.0625 2812 kmixer - ok 16:57:41.0671 2812 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 16:57:41.0671 2812 KSecDD - ok 16:57:41.0687 2812 lbrtfdc - ok 16:57:41.0734 2812 MBAMSwissArmy - ok 16:57:41.0781 2812 mdmxsdk (74f4372af97a587ecec527ec34955712) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys 16:57:41.0796 2812 mdmxsdk - ok 16:57:41.0968 2812 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 16:57:41.0968 2812 mnmdd - ok 16:57:42.0000 2812 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 16:57:42.0015 2812 Modem - ok 16:57:42.0031 2812 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 16:57:42.0031 2812 Mouclass - ok 16:57:42.0078 2812 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 16:57:42.0078 2812 mouhid - ok 16:57:42.0093 2812 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 16:57:42.0093 2812 MountMgr - ok 16:57:42.0109 2812 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys 16:57:42.0125 2812 mraid35x - ok 16:57:42.0156 2812 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 16:57:42.0156 2812 MRxDAV - ok 16:57:42.0218 2812 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 16:57:42.0234 2812 MRxSmb - ok 16:57:42.0281 2812 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 16:57:42.0296 2812 Msfs - ok 16:57:42.0328 2812 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 16:57:42.0328 2812 MSKSSRV - ok 16:57:42.0359 2812 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 16:57:42.0359 2812 MSPCLOCK - ok 16:57:42.0593 2812 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 16:57:42.0593 2812 MSPQM - ok 16:57:42.0640 2812 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 16:57:42.0640 2812 mssmbios - ok 16:57:42.0671 2812 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 16:57:42.0687 2812 MSTEE - ok 16:57:42.0718 2812 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 16:57:42.0718 2812 Mup - ok 16:57:42.0765 2812 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 16:57:42.0765 2812 NABTSFEC - ok 16:57:42.0796 2812 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 16:57:42.0796 2812 NDIS - ok 16:57:42.0828 2812 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 16:57:42.0828 2812 NdisIP - ok 16:57:42.0890 2812 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 16:57:42.0890 2812 NdisTapi - ok 16:57:42.0921 2812 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 16:57:42.0921 2812 Ndisuio - ok 16:57:42.0984 2812 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 16:57:42.0984 2812 NdisWan - ok 16:57:43.0171 2812 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 16:57:43.0171 2812 NDProxy - ok 16:57:43.0421 2812 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 16:57:43.0421 2812 NetBIOS - ok 16:57:43.0484 2812 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 16:57:43.0484 2812 NetBT - ok 16:57:43.0562 2812 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys 16:57:43.0562 2812 NIC1394 - ok 16:57:43.0578 2812 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 16:57:43.0593 2812 Npfs - ok 16:57:43.0640 2812 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 16:57:43.0656 2812 Ntfs - ok 16:57:43.0781 2812 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 16:57:43.0781 2812 Null - ok 16:57:43.0984 2812 nv (88d8f8d4c3243e0bb0ed57496868e52e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 16:57:44.0062 2812 nv - ok 16:57:44.0343 2812 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 16:57:44.0343 2812 NwlnkFlt - ok 16:57:44.0375 2812 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 16:57:44.0375 2812 NwlnkFwd - ok 16:57:44.0453 2812 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 16:57:44.0453 2812 ohci1394 - ok 16:57:44.0531 2812 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys 16:57:44.0531 2812 Parport - ok 16:57:44.0578 2812 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 16:57:44.0578 2812 PartMgr - ok 16:57:44.0609 2812 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 16:57:44.0609 2812 ParVdm - ok 16:57:44.0625 2812 PCAMPR5 - ok 16:57:44.0656 2812 PCANDIS5 (ceef86cb35abe95c40a88784f5b631ad) C:\WINDOWS\system32\PCANDIS5.SYS 16:57:44.0687 2812 PCANDIS5 - ok 16:57:44.0843 2812 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 16:57:44.0859 2812 pccsmcfd - ok 16:57:44.0875 2812 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 16:57:44.0875 2812 PCI - ok 16:57:44.0890 2812 PCIDump - ok 16:57:44.0921 2812 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 16:57:44.0921 2812 PCIIde - ok 16:57:44.0937 2812 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\DRIVERS\pcmcia.sys 16:57:44.0937 2812 Pcmcia - ok 16:57:44.0953 2812 PDCOMP - ok 16:57:44.0968 2812 PDFRAME - ok 16:57:44.0984 2812 PDRELI - ok 16:57:45.0000 2812 PDRFRAME - ok 16:57:45.0078 2812 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys 16:57:45.0078 2812 perc2 - ok 16:57:45.0125 2812 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys 16:57:45.0125 2812 perc2hib - ok 16:57:45.0234 2812 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 16:57:45.0234 2812 PptpMiniport - ok 16:57:45.0265 2812 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 16:57:45.0265 2812 PSched - ok 16:57:45.0312 2812 PSI (1df21f001f3a94eba4a2950c70cc358f) C:\WINDOWS\system32\DRIVERS\psi_mf.sys 16:57:45.0328 2812 PSI - ok 16:57:45.0390 2812 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 16:57:45.0390 2812 Ptilink - ok 16:57:45.0453 2812 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys 16:57:45.0484 2812 PxHelp20 - ok 16:57:45.0531 2812 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys 16:57:45.0531 2812 ql1080 - ok 16:57:45.0687 2812 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys 16:57:45.0687 2812 Ql10wnt - ok 16:57:45.0703 2812 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys 16:57:45.0703 2812 ql12160 - ok 16:57:45.0734 2812 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys 16:57:45.0734 2812 ql1240 - ok 16:57:45.0750 2812 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys 16:57:45.0750 2812 ql1280 - ok 16:57:45.0796 2812 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 16:57:45.0796 2812 RasAcd - ok 16:57:45.0828 2812 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 16:57:45.0828 2812 Rasl2tp - ok 16:57:45.0875 2812 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 16:57:45.0875 2812 RasPppoe - ok 16:57:45.0890 2812 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 16:57:45.0890 2812 Raspti - ok 16:57:45.0921 2812 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 16:57:45.0921 2812 Rdbss - ok 16:57:45.0937 2812 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 16:57:45.0937 2812 RDPCDD - ok 16:57:45.0984 2812 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 16:57:46.0000 2812 rdpdr - ok 16:57:46.0078 2812 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys 16:57:46.0078 2812 RDPWD - ok 16:57:46.0218 2812 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 16:57:46.0234 2812 redbook - ok 16:57:46.0281 2812 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS 16:57:46.0281 2812 rtl8139 - ok 16:57:46.0328 2812 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys 16:57:46.0328 2812 sdbus - ok 16:57:46.0375 2812 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 16:57:46.0375 2812 Secdrv - ok 16:57:46.0421 2812 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\drivers\Serial.sys 16:57:46.0421 2812 Serial - ok 16:57:46.0453 2812 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 16:57:46.0468 2812 Sfloppy - ok 16:57:46.0484 2812 Simbad - ok 16:57:46.0515 2812 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys 16:57:46.0515 2812 sisagp - ok 16:57:46.0546 2812 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 16:57:46.0546 2812 SLIP - ok 16:57:46.0593 2812 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys 16:57:46.0593 2812 Sparrow - ok 16:57:46.0625 2812 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 16:57:46.0625 2812 splitter - ok 16:57:46.0671 2812 SQTECH905C (c526f69809cf33ca214f29243ead47dc) C:\WINDOWS\system32\Drivers\Capt905c.sys 16:57:46.0671 2812 SQTECH905C - ok 16:57:46.0828 2812 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 16:57:46.0828 2812 sr - ok 16:57:46.0890 2812 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 16:57:46.0890 2812 Srv - ok 16:57:46.0953 2812 ssmdrv (3ad0362cf68de3ac500e981700242cca) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys 16:57:46.0953 2812 ssmdrv - ok 16:57:47.0000 2812 ss_bbus (3f0164fbc0bd1adbd02df9759181451a) C:\WINDOWS\system32\DRIVERS\ss_bbus.sys 16:57:47.0000 2812 ss_bbus - ok 16:57:47.0046 2812 ss_bmdfl (b89d62206034e5fe573c80a24dd55675) C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys 16:57:47.0046 2812 ss_bmdfl - ok 16:57:47.0078 2812 ss_bmdm (1ed0fcea586fe2a416ee15196e5631dd) C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys 16:57:47.0078 2812 ss_bmdm - ok 16:57:47.0140 2812 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 16:57:47.0140 2812 streamip - ok 16:57:47.0171 2812 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 16:57:47.0171 2812 swenum - ok 16:57:47.0203 2812 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 16:57:47.0203 2812 swmidi - ok 16:57:47.0250 2812 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys 16:57:47.0250 2812 symc810 - ok 16:57:47.0421 2812 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys 16:57:47.0421 2812 symc8xx - ok 16:57:47.0437 2812 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys 16:57:47.0437 2812 sym_hi - ok 16:57:47.0453 2812 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys 16:57:47.0453 2812 sym_u3 - ok 16:57:47.0531 2812 SynTP (c9a1785cc0d7a040dd0fdbfeaa8be135) C:\WINDOWS\system32\DRIVERS\SynTP.sys 16:57:47.0531 2812 SynTP - ok 16:57:47.0593 2812 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 16:57:47.0593 2812 sysaudio - ok 16:57:47.0656 2812 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 16:57:47.0656 2812 Tcpip - ok 16:57:47.0703 2812 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 16:57:47.0703 2812 TDPIPE - ok 16:57:47.0734 2812 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 16:57:47.0734 2812 TDTCP - ok 16:57:47.0781 2812 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 16:57:47.0781 2812 TermDD - ok 16:57:47.0843 2812 tifm21 (9179e07503630d6fb2e4162ff0196191) C:\WINDOWS\system32\drivers\tifm21.sys 16:57:47.0843 2812 tifm21 - ok 16:57:48.0109 2812 TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys 16:57:48.0109 2812 TosIde - ok 16:57:48.0140 2812 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 16:57:48.0140 2812 Udfs - ok 16:57:48.0156 2812 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys 16:57:48.0156 2812 ultra - ok 16:57:48.0234 2812 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 16:57:48.0234 2812 Update - ok 16:57:48.0281 2812 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys 16:57:48.0281 2812 USBAAPL - ok 16:57:48.0328 2812 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys 16:57:48.0328 2812 usbaudio - ok 16:57:48.0343 2812 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 16:57:48.0343 2812 usbccgp - ok 16:57:48.0390 2812 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 16:57:48.0390 2812 usbehci - ok 16:57:48.0406 2812 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 16:57:48.0406 2812 usbhub - ok 16:57:48.0656 2812 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 16:57:48.0656 2812 usbscan - ok 16:57:48.0703 2812 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 16:57:48.0703 2812 USBSTOR - ok 16:57:48.0734 2812 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 16:57:48.0734 2812 usbuhci - ok 16:57:48.0750 2812 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 16:57:48.0750 2812 VgaSave - ok 16:57:48.0796 2812 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys 16:57:48.0796 2812 viaagp - ok 16:57:48.0843 2812 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys 16:57:48.0843 2812 ViaIde - ok 16:57:48.0859 2812 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 16:57:48.0859 2812 VolSnap - ok 16:57:48.0984 2812 VX3000 (45798ec03c6aeb45aa2f2084f7842f6c) C:\WINDOWS\system32\DRIVERS\VX3000.sys 16:57:49.0031 2812 VX3000 - ok 16:57:49.0531 2812 w39n51 (4e7b07653f4f9937cf62ad2869fba520) C:\WINDOWS\system32\DRIVERS\w39n51.sys 16:57:49.0562 2812 w39n51 - ok 16:57:49.0765 2812 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 16:57:49.0765 2812 Wanarp - ok 16:57:49.0781 2812 WDICA - ok 16:57:49.0812 2812 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 16:57:49.0812 2812 wdmaud - ok 16:57:49.0890 2812 winachsf (214bc3ad84907ad6ad655ac5465f449a) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys 16:57:49.0906 2812 winachsf - ok 16:57:49.0968 2812 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys 16:57:49.0968 2812 WmiAcpi - ok 16:57:50.0046 2812 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 16:57:50.0046 2812 WSTCODEC - ok 16:57:50.0109 2812 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 16:57:50.0109 2812 WudfPf - ok 16:57:50.0156 2812 MBR (0x1B8) (c55974362fe92a949251a654e3d5df52) \Device\Harddisk0\DR0 16:57:50.0156 2812 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - infected 16:57:50.0156 2812 \Device\Harddisk0\DR0 - detected Rootkit.Win32.TDSS.tdl4 (0) 16:57:50.0203 2812 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR4 16:57:50.0218 2812 \Device\Harddisk1\DR4 - ok 16:57:50.0218 2812 Boot (0x1200) (fdd152a409f39976dd9389ff0ff7ba8f) \Device\Harddisk0\DR0\Partition0 16:57:50.0218 2812 \Device\Harddisk0\DR0\Partition0 - ok 16:57:50.0250 2812 Boot (0x1200) (29ac50c71d081d89f5ada766db790aab) \Device\Harddisk0\DR0\Partition1 16:57:50.0250 2812 \Device\Harddisk0\DR0\Partition1 - ok 16:57:50.0265 2812 Boot (0x1200) (1d57f9d4c69f15fc242ddc2c51d1659a) \Device\Harddisk1\DR4\Partition0 16:57:50.0265 2812 \Device\Harddisk1\DR4\Partition0 - ok 16:57:50.0265 2812 ============================================================ 16:57:50.0265 2812 Scan finished 16:57:50.0265 2812 ============================================================ 16:57:50.0281 3820 Detected object count: 1 16:57:50.0281 3820 Actual detected object count: 1 16:58:34.0796 3820 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - will be cured on reboot 16:58:34.0796 3820 \Device\Harddisk0\DR0 - ok 16:58:34.0796 3820 \Device\Harddisk0\DR0 ( Rootkit.Win32.TDSS.tdl4 ) - User select action: Cure 17:00:53.0656 3088 Deinitialize success
  14. Brylama
    Désolée, mais je ne peux pas désinstaller Combofix comme demandé. Une fenêtre s'ouvre stipulant "This operating is not supported! Combofix only runs on: Windows 2000, ..., ... C'était la même chose si l'on se souvient bien lorsque l'on a voulu utiliser Combofix. Que faire alors?? Cordialement; Brylama
  15. Brylama
    Bon appétit! pour ma part j'ai effectoué OTH // à IMesh: après repdémarrage et bien IMesh ne s'est pas imposé dans mes onglets! J'espère que l'on peut considérer cet épisode clos! J'attend les prochaines instructions et merci encore surtout! Cordialement, brylama
  16. Brylama
    la navigation est devenue franchement agréable pendant env.20 mn puis de nouveau ralentie avec mon ordi qui a recommencer à faire beaucoup de bruit ( vous voyez ce que je veux dire?) en continue et lorsque cela arrive, mon PC ne tarde pas à beuguer voire s'éteindre tout seul! Donc je l'ai devancé; je l'ai éteint et rallumé. Mais je ne vais pas faire ça toutes les demie-heure!!! C'est parce qu'il est saturé? ou c'est encore une vilaine bête?? Ah oui,j'oubliai, j'entend régulièrement un son comme celui qu'on entend lorsque une action est terminée ou prête à autre chose. Visuellement, il ne paraît rien. ça sent pas bon ça encore Cordialement, Brylama
  17. Brylama
    Bonjour, oui, la navigation semble plus rapide!! oui aussi il y a une nouvelle erreur! au démarrage d'IE, j'ai normalement 3 onglets qui s'ouvrent; là, j'en ai 2 dont 1 avec le logo d'Imesh!! Alors, c'est quoi la manoeuvre du jour?? Sinon, j'ai un travail à tapper sur word et je dois retransmettre ce travail sur un autre PC avec ma clé USB; c'est assez urgent, mais dans l'état actuel de mon PC puis-je le faire? Je ne voudrai évidemment pas transmettre en mm temps une infection! oups Bref! sinon, voici le rapport que tu attendsAll processes killed ========== OTL ========== HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Search bar| /E : value set successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Secondary Start Pages| /E : value set successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Secondary_Page_URL| /E : value set successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\SearchDefaultBranded| /E : value set successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\SearchMigratedDefaultName| /E : value set successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\SearchMigratedDefaultURL| /E : value set successfully! HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Secondary Start Pages| /E : value set successfully! Prefs.js: "http://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=" removed from browser.search.defaulturl Prefs.js: "Live Search" removed from browser.search.selectedEngine Prefs.js: "http://www.plusnetwork.com"'>http://www.plusnetwork.com" removed from browser.startup.homepage Prefs.js: "http://search.live.com/results.aspx?mkt=fr-fr&FORM=MIMWA2&q=" removed from keyword.URL Prefs.js: "http://www.plusnetwork.com" removed from browser.startup.homepage Prefs.js: "http://www.durable.com/recherche" removed from browser.startup.homepage Prefs.js: "Durable" removed from browser.search.defaultenginename Prefs.js: "Durable" removed from browser.search.selectedEngine Prefs.js: "http://www.durable.com/result?cx=partner-pub-7902900401080901%3Azbljezwsgul&cof=FORID%3A10&ie=UTF-8&q="'>http://www.durable.com/result?cx=partner-pub-7902900401080901%3Azbljezwsgul&cof=FORID%3A10&ie=UTF-8&q=" removed from browser.search.defaulturl Prefs.js: "http://www.durable.com/result?cx=partner-pub-7902900401080901%3Azbljezwsgul&cof=FORID%3A10&ie=UTF-8&q=" removed from keyword.URL Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0\ deleted successfully. C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0\ deleted successfully. C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX OVS Helper,version=1.0.0\ deleted successfully. C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0\ deleted successfully. C:\Program Files\Google\Picasa3\npPicasa3.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@java.com/JavaPlugin\ deleted successfully. C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6\ deleted successfully. C:\Program Files\Yahoo!\Shared\npYState.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0\ deleted successfully. c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3\ deleted successfully. C:\Program Files\Microsoft\Office Live\npOLW.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5\ deleted successfully. c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@pack.google.com/Google Updater;version=13\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=3\ deleted successfully. C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@tools.google.com/Google Update;version=9\ deleted successfully. File C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll not found. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@virtools.com/3DviaPlayer\ deleted successfully. C:\Program Files\Virtools\3D Life Player\npvirtools.dll moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\Adobe Reader\ deleted successfully. C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll moved successfully. Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully. Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@yahoo.com/BrowserPlus,version=2.9.8\ deleted successfully. C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll moved successfully. File HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video not found. File HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa not found. C:\Documents and Settings\Sylvie Roussin\Application Data\Mozilla\Firefox\Profiles\ug1bo9ca.default\searchplugins\durable.xml moved successfully. C:\Documents and Settings\Sylvie Roussin\Application Data\Mozilla\Firefox\Profiles\ug1bo9ca.default\searchplugins\LiveSearch.xml moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{C4069E3A-68F1-403E-B40E-20066696354B} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C4069E3A-68F1-403E-B40E-20066696354B}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully. C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\APSDaemon deleted successfully. C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DivX Download Manager deleted successfully. C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe moved successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\DivXUpdate deleted successfully. C:\Program Files\DivX\DivX Update\DivXUpdate.exe moved successfully. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Messenger (Yahoo!) deleted successfully. C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully. Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully. ADS C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 deleted successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== < ipconfig /flushdns /c > Configuration IP de Windows Cache de résolution DNS vidé. C:\Documents and Settings\Sylvie Roussin\Bureau\cmd.bat deleted successfully. C:\Documents and Settings\Sylvie Roussin\Bureau\cmd.txt deleted successfully. C:\WINDOWS\tasks\AppleSoftwareUpdate.job moved successfully. C:\WINDOWS\tasks\Google Software Updater.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully. C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully. C:\WINDOWS\tasks\User_Feed_Synchronization-{759560B5-645C-4717-9B34-5FB54AE4C439}.job moved successfully. C:\WINDOWS\tasks\User_Feed_Synchronization-{8DD1D78B-1050-4F62-8053-D8E3BC6CA08D}.job moved successfully. C:\sqmdata00.sqm moved successfully. C:\sqmdata01.sqm moved successfully. C:\sqmdata02.sqm moved successfully. C:\sqmdata03.sqm moved successfully. C:\sqmdata04.sqm moved successfully. C:\sqmdata05.sqm moved successfully. C:\sqmdata06.sqm moved successfully. C:\sqmnoopt00.sqm moved successfully. C:\sqmnoopt01.sqm moved successfully. C:\sqmnoopt02.sqm moved successfully. C:\sqmnoopt03.sqm moved successfully. C:\sqmnoopt04.sqm moved successfully. C:\sqmnoopt05.sqm moved successfully. C:\sqmnoopt06.sqm moved successfully. File\Folder C:\WINDOWS\System32\*.tmp not found. C:\WINDOWS\msdownld.tmp folder moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Administrateur ->Temp folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Denis Malabry ->Temp folder emptied: 18181270 bytes ->Temporary Internet Files folder emptied: 6911128 bytes ->Java cache emptied: 12119679 bytes ->FireFox cache emptied: 0 bytes ->Google Chrome cache emptied: 127142977 bytes ->Flash cache emptied: 15440 bytes User: Invité ->Temp folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 67 bytes ->Java cache emptied: 0 bytes ->Flash cache emptied: 1442 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 173930688 bytes ->Java cache emptied: 9719 bytes ->Flash cache emptied: 10554 bytes User: Sylvie Roussin ->Temp folder emptied: 92148 bytes ->Temporary Internet Files folder emptied: 139619003 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 0 bytes ->Google Chrome cache emptied: 16718356 bytes ->Apple Safari cache emptied: 21312512 bytes ->Flash cache emptied: 2487 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 16850410 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 154362120 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 655,00 mb OTL by OldTimer - Version 3.2.31.0 log created on 10172011_083923 Files\Folders moved on Reboot... Registry entries deleted on Reboot... Et bien bon courrage et merci mille fois!!! Cordialement,Brylama
  18. Brylama
    Re bonsoir, voici je pense le lien de "extra.tx: j'ai "gallèré" pour le copier; j'ai une fois de plus changer de navigateur: j'ai la nette impression que c'est de plus en plus compliqué avec IE. C'est possible ça? thttp://cjoint.com/?AJqtTnRyoHh Par ailleurs, je signale qu'une fois de plus mon ordi a "beugué" et j'ai donc dû une fois de plus l'éteindre en le forçant! Et aussi, j'ai une fois de plus une fenêtre qui s'ouvre alors que je veux fermer mon PC, qui s'intitule "Fin du programme-Explorer.exe et qui me dit "ce programme ne répond pas; terminer maintenant ou annuler". Moi je met toujours d'ailleurs "terminer maintenant", c'est ce qu'il faut mettre? Cordialement, brylama
  19. Brylama
    Bonsoir, je me suis emmêlée les pinceaux c'est le moins que je puisse dire; je suis désolée. Du coup j'ai voulurecommencer la manipulation à partir de "Cjoint" mais quand je fais le copier-coller dans le rapport, c'est toujours la même adresse qui ressort et en l'occurence, celle du premier essaie!! Je suppose que cela dépasse mes compétences!... alors voici l'adresse en question, mais je ne vous en propose qu'une puisque c'est la même qui s'inscrit pour le deuxième rapport! Lien CJoint.com AJqs37HbcIS Je garde les rapports sous le coude au cas ou... Cordialement, Brylama
  20. Brylama
    ZHPFixReport.txt: Rapport de ZHPFix 1.12.3363 par Nicolas Coolman, Update du 05/10/2011 Fichier d'export Registre : Run by Sylvie Roussin at 16/10/2011 15:54:54 Windows XP Home Edition Service Pack 3 (Build 2600) Web site : ZHPFix Fix de rapport ========== Logiciel(s) ========== ABSENT Software Key: iMesh ABSENT Software Key: {8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763} ========== Clé(s) du Registre ========== ABSENT Key: CLSID BHO: {28387537-e3f9-4ed7-860c-11e69af4a8a0} ABSENT Key: CLSID BHO: {474597C5-AB09-49d6-A4D5-2E8D7341384E} SUPPRIME Key: HKCU\Software\DataMngr SUPPRIME Key: HKCU\Software\iMesh ABSENT Key: HKLM\Software\DataMngr ABSENT Key: HKLM\Software\iMeshMediabarTb ABSENT Key: HKLM\Software\Classes\AppID\iMesh.exe ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Imesh ABSENT Key: HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery ABSENT Key: HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery.1 ABSENT Key: HKLM\Software\Classes\iMesh.AudioCD ABSENT Key: HKLM\Software\Classes\iMesh.Device ABSENT Key: HKLM\Software\Classes\iMesh.file ABSENT Key: HKLM\Software\Classes\iMeshIEHelper.DNSGuard ABSENT Key: HKLM\Software\Classes\iMeshIEHelper.DNSGuard.1 ABSENT Key: HKLM\Software\Classes\imweb.imwebcontrol ABSENT Key: HKLM\Software\iMesh ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Imesh SUPPRIME Key: HKCU\Software\BitTorrent SUPPRIME Key: HKCU\Software\Kazaa SUPPRIME Key: HKCU\Software\ESET SUPPRIME Key: HKLM\Software\Eset SUPPRIME Key: HKLM\Software\Panda Software ABSENT Key: HKLM\Software\Classes\AppID\DiscoveryHelper.DLL ABSENT Key: HKLM\Software\Classes\AppID\GIFAnimator.DLL ABSENT Key: HKLM\Software\Classes\AppID\IMTrProgress.DLL ABSENT Key: HKLM\Software\Classes\AppID\IMWeb.DLL ABSENT Key: HKLM\Software\Classes\AppID\WMHelper.DLL ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar ABSENT Key: Service: Bonjour Service SUPPRIME Key: StartupReg: Adobe Reader Speed Launcher ========== Valeur(s) du Registre ========== ABSENT Toolbar: {28387537-e3f9-4ed7-860c-11e69af4a8a0} ABSENT RunValue: DATAMNGR SUPPRIME AAKE KeyValue: C:\Program Files\iMesh Applications\iMesh\iMesh.exe ABSENT AAKE KeyValue: C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe SUPPRIME IFC: [FEATURE_BROWSER_EMULATION] svchost.exe ABSENT IFC: [FEATURE_BROWSER_EMULATION] svchost.exe SUPPRIME RunValue: NPSStartup SUPPRIME AAKE KeyValue: E:\fscommand\CKSocketServer.exe SUPPRIME MWPE Value: NoCDBurning SUPPRIME RunValue: Adobe Reader Speed Launcher SUPPRIME RunValue: QuickTime Task SUPPRIME RunValue: iTunesHelper SUPPRIME RunValue: ctfmon.exe ABSENT RunValue: ctfmon.exe ========== Elément(s) de donnée du Registre ========== SUPPRIME AppInit: ta Manager.) - C:\PROGRA~1\IMESHA~1\MediaBar\Datamngr\datamngr.dll SUPPRIME R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy ========== Dossier(s) ========== SUPPRIME Folder: C:\Program Files\iMesh Applications SUPPRIME Folder: C:\Documents and Settings\Sylvie Roussin\Application Data\imeshbandmltbpi ABSENT C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\iMesh SUPPRIME Folder: C:\Documents and Settings\Sylvie Roussin\Application Data\LimeWire SUPPRIME Folder: C:\Documents and Settings\Sylvie Roussin\Application Data\uTorrent SUPPRIME Temporaires Windows: : 182 SUPPRIME Flash Cookies: 9 ========== Fichier(s) ========== ABSENT Folder/File: c:\progra~1\imesha~1\mediabar\datamngr\datamn~1.exe 3500] ABSENT File: c:\progra~1\imesha~1\mediabar\datamngr\toolbar\imeshdtxmltbpi.dll ABSENT File: c:\progra~1\imesha~1\mediabar\datamngr\iebho.dll ABSENT File: c:\progra~1\imesha~1\mediabar\datamngr\datamn~1.exe ABSENT File: c:\progra~1\imesha~1\mediabar\datamngr\datamngr.dll ABSENT File: c:\program files\imesh applications\imesh\imesh.exe ABSENT Folder/File: c:\program files\imesh applications ABSENT Folder/File: c:\documents and settings\sylvie roussin\application data\imeshbandmltbpi ABSENT Folder/File: c:\documents and settings\sylvie roussin\local settings\application data\imesh ABSENT Folder/File: c:\documents and settings\sylvie roussin\application data\mozilla\firefox\profiles\ug1bo9ca.default\user.js (.not file.) ABSENT File: e:\fscommand\cksocketserver.exe SUPPRIME Temporaires Windows: : 682 SUPPRIME Flash Cookies: 7 ========== Récapitulatif ========== 31 : Clé(s) du Registre 14 : Valeur(s) du Registre 2 : Elément(s) de donnée du Registre 7 : Dossier(s) 13 : Fichier(s) 2 : Logiciel(s) End of clean in 00mn 26s ========== Chemin de fichier rapport ========== C:\ZHP\ZHPFix[R1].txt - 16/10/2011 15:54:54 [4761]
  21. Brylama
    Bonjour, encore un petit souci... je ne trouve pas le rapport en question dans "program file"!! il me propose seulement ZHP.chm, ZHPFix.exe, ZHPRootkit.txt et ZHPScan.txt. Bizarre, non? Que dois-je faire alors?? Pour ce qui est du fonctionnement, le spages sont encore un peu longues à afficher et au démarrage, les iconnes du bureau s'affichent au bout de bien 2mn! Pendant que je tappe ce texte, j'entend mon ordi qui fait beaucoup de bruit, comme s'il travaillait beaucoup et pourtant la seule page qui soit ouverte c'est celle-ci. Cependant, il me semble qu'il ne m'affiche plus des pages indésirées; les pages correspondent à celles demandées Cordialement, brylama
  22. Brylama
    Bonjour, merci encore pour votre soutien. Quel boulot vous faites! J'ai donc supprimé quelques programmes cependant je pourrai peut-être en enlever d'avantage si je savais à quoi servent: "Bonjour", "Connection facile à internet", "Mobile Me control panel", "Todae-Live média" et "Windows live folder share" Sont-ils indispensables? Sinon, je me suis attaquée au nettoyage du rapport mais les lignes copiées n'étaient pas disposées exactement comme dans le rapport; en faite, souvent il y a deux lignes initialement séparées qui sont copiées sur la mm ligne. Du coup, je n'ai pas osé envoyer le travail. Que dois-je faire alors? Bon dimanche, Cordialement, Brylama
  23. Brylama
    Youhou!! j'ai dû changer de navigateur!! du coup j'en ai épuisé trois!! Bref, j'attend les prochaines instructions. Ce que je peux vous dire c'est qu'il est de plus en plus long! Davantage sur IE il me semble. Et je dois le forcer fréquemment pour l'éteindre! ça ne me plait pas ça... Bonne journée Merci pour ce que vous faites Cordialement, Brylama
  24. Brylama
    ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 13/09/2008 - 17:16:24 - [0] ----D- C:\Program Files\ACD Systems O43 - CFD: 05/01/2011 - 19:00:22 - [57412112] ----D- C:\Program Files\Ad-Remover O43 - CFD: 10/11/2010 - 18:36:18 - [248248384] ----D- C:\Program Files\Adobe O43 - CFD: 06/05/2007 - 00:02:32 - [0] ----D- C:\Program Files\Alwil Software O43 - CFD: 07/08/2011 - 09:39:32 - [2428606] ----D- C:\Program Files\Apple Software Update O43 - CFD: 26/03/2007 - 14:00:16 - [267140948] ----D- C:\Program Files\ArcSoft O43 - CFD: 17/09/2009 - 10:04:36 - [187360070] ----D- C:\Program Files\Avira O43 - CFD: 22/03/2010 - 10:20:20 - [64196459] ----D- C:\Program Files\AVS4YOU O43 - CFD: 13/10/2011 - 09:41:24 - [613795] ----D- C:\Program Files\Bonjour O43 - CFD: 10/03/2010 - 15:16:26 - [2913496] ----D- C:\Program Files\CCleaner O43 - CFD: 11/05/2006 - 10:35:10 - [0] ----D- C:\Program Files\ComPlus Applications O43 - CFD: 11/05/2006 - 03:33:34 - [7718128] ----D- C:\Program Files\CONEXANT O43 - CFD: 29/10/2010 - 18:59:58 - [3711368] ----D- C:\Program Files\DIFX O43 - CFD: 31/12/2010 - 21:58:10 - [147467083] ----D- C:\Program Files\DivX O43 - CFD: 13/10/2011 - 09:51:58 - [692112653] ----D- C:\Program Files\Fichiers communs O43 - CFD: 31/12/2010 - 21:53:40 - [458259485] ----D- C:\Program Files\Google O43 - CFD: 21/08/2008 - 15:02:22 - [61306376] ----D- C:\Program Files\Hewlett-Packard O43 - CFD: 01/09/2009 - 13:54:02 - [174484009] ----D- C:\Program Files\Hp O43 - CFD: 26/01/2007 - 11:32:42 - [2790996] ----D- C:\Program Files\HPQ O43 - CFD: 14/09/2011 - 08:15:56 - [52947259] ----D- C:\Program Files\iMesh Applications O43 - CFD: 16/02/2008 - 08:56:56 - [9981339] ----D- C:\Program Files\IncrediMail O43 - CFD: 20/01/2011 - 19:00:26 - [80741439] --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD: 11/05/2006 - 02:45:54 - [41139] ----D- C:\Program Files\Intel O43 - CFD: 13/10/2011 - 10:03:50 - [5917259] ----D- C:\Program Files\Internet Explorer O43 - CFD: 13/10/2011 - 09:46:14 - [2018955] ----D- C:\Program Files\iPod O43 - CFD: 13/10/2011 - 09:47:20 - [186118171] ----D- C:\Program Files\iTunes O43 - CFD: 14/10/2010 - 16:05:00 - [98446164] ----D- C:\Program Files\Java O43 - CFD: 03/05/2009 - 11:36:42 - [1797427] ----D- C:\Program Files\K-Lite Codec Pack O43 - CFD: 21/09/2011 - 17:50:08 - [7041947] ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 20/01/2011 - 19:00:16 - [221184] ----D- C:\Program Files\MarkAny O43 - CFD: 20/01/2011 - 20:04:28 - [221184] ----D- C:\Program Files\MarkAnyContentSAFER O43 - CFD: 23/04/2009 - 23:38:36 - [2912746] ----D- C:\Program Files\Megaupload O43 - CFD: 13/08/2008 - 11:22:56 - [2152579] ----D- C:\Program Files\Messenger O43 - CFD: 24/05/2010 - 17:41:18 - [6451883] ----D- C:\Program Files\Messenger Plus! Live O43 - CFD: 17/12/2008 - 12:39:04 - [1544075] ----D- C:\Program Files\Microsoft O43 - CFD: 11/10/2007 - 06:59:24 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 13/03/2007 - 21:09:26 - [2829368] ----D- C:\Program Files\Microsoft Carioca O43 - CFD: 11/05/2006 - 10:35:12 - [0] ----D- C:\Program Files\microsoft frontpage O43 - CFD: 29/03/2007 - 13:15:06 - [161958263] ----D- C:\Program Files\Microsoft LifeCam O43 - CFD: 10/11/2010 - 18:08:22 - [137284122] ----D- C:\Program Files\Microsoft Office O43 - CFD: 13/10/2011 - 10:36:48 - [38412395] ----D- C:\Program Files\Microsoft Silverlight O43 - CFD: 07/11/2007 - 23:14:10 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 11/05/2006 - 02:55:30 - [149660739] ----D- C:\Program Files\Microsoft Works O43 - CFD: 11/08/2010 - 10:20:02 - [10387162] ----D- C:\Program Files\Movie Maker O43 - CFD: 19/10/2007 - 09:48:46 - [3764794] ----D- C:\Program Files\Mozilla Firefox O43 - CFD: 17/04/2009 - 20:56:02 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 10/11/2010 - 18:08:12 - [27892223] ----D- C:\Program Files\MSECache O43 - CFD: 24/05/2010 - 17:39:38 - [19278399] ----D- C:\Program Files\MSN O43 - CFD: 11/05/2006 - 10:35:12 - [8745735] ----D- C:\Program Files\MSN Gaming Zone O43 - CFD: 13/03/2007 - 21:05:42 - [0] ----D- C:\Program Files\MSXML 4.0 O43 - CFD: 06/06/2008 - 05:57:38 - [3285523] ----D- C:\Program Files\NetMeeting O43 - CFD: 11/05/2006 - 03:32:56 - [4809074] ----D- C:\Program Files\NetWaiting O43 - CFD: 11/05/2006 - 10:35:12 - [1708] ----D- C:\Program Files\Online Services O43 - CFD: 26/08/2011 - 20:25:48 - [55613560] ----D- C:\Program Files\Orange O43 - CFD: 02/12/2007 - 20:11:10 - [1705113] ----D- C:\Program Files\Orban O43 - CFD: 15/12/2010 - 14:42:44 - [4379321] ----D- C:\Program Files\Outlook Express O43 - CFD: 13/09/2008 - 17:20:10 - [0] ----D- C:\Program Files\Panasonic O43 - CFD: 20/01/2011 - 19:00:12 - [9771964] ----D- C:\Program Files\PC Connectivity Solution O43 - CFD: 16/08/2010 - 09:39:58 - [3688689] ----D- C:\Program Files\PhotoFiltre O43 - CFD: 15/09/2011 - 10:32:54 - [110202606] ----D- C:\Program Files\QuickTime O43 - CFD: 17/04/2009 - 20:55:50 - [36400897] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 25/11/2010 - 09:09:54 - [42295319] ----D- C:\Program Files\Safari O43 - CFD: 20/05/2011 - 15:28:32 - [319156791] ----D- C:\Program Files\Samsung O43 - CFD: 07/08/2010 - 11:23:52 - [1591088] ----D- C:\Program Files\Secunia O43 - CFD: 23/02/2007 - 17:37:52 - [21030881] ----D- C:\Program Files\Securitoo O43 - CFD: 11/05/2006 - 03:09:54 - [91357647] ----D- C:\Program Files\Services en ligne O43 - CFD: 08/02/2010 - 11:47:54 - [1470464] ----D- C:\Program Files\Skype O43 - CFD: 11/05/2006 - 10:35:12 - [310182754] ----D- C:\Program Files\Sonic O43 - CFD: 03/03/2009 - 11:06:30 - [0] ----D- C:\Program Files\SUPERAntiSpyware O43 - CFD: 11/05/2006 - 02:56:30 - [27010224] ----D- C:\Program Files\Synaptics O43 - CFD: 11/08/2010 - 23:07:36 - [791060] ----D- C:\Program Files\trend micro O43 - CFD: 11/05/2006 - 10:35:12 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 22/02/2010 - 11:01:02 - [15324543] ----D- C:\Program Files\Virtools O43 - CFD: 24/03/2010 - 10:24:20 - [8695808] ----D- C:\Program Files\WalterShop.com O43 - CFD: 28/08/2011 - 09:24:36 - [17272564] ----D- C:\Program Files\Wanadoo O43 - CFD: 30/10/2009 - 19:23:36 - [2092544] ----D- C:\Program Files\Windows Journal Viewer O43 - CFD: 11/07/2011 - 08:55:10 - [42340762] ----D- C:\Program Files\Windows Live O43 - CFD: 09/07/2010 - 10:21:36 - [245112] ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD: 20/12/2007 - 23:32:52 - [2650] ----D- C:\Program Files\Windows Live Toolbar O43 - CFD: 14/03/2007 - 21:14:52 - [3588750] ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD: 06/06/2008 - 05:57:34 - [9419393] ----D- C:\Program Files\Windows Media Player O43 - CFD: 06/06/2008 - 05:57:34 - [3942655] ----D- C:\Program Files\Windows NT O43 - CFD: 11/05/2006 - 10:35:12 - [0] --H-D- C:\Program Files\WindowsUpdate O43 - CFD: 11/05/2006 - 10:35:12 - [0] ----D- C:\Program Files\xerox O43 - CFD: 23/06/2011 - 08:52:56 - [54091914] ----D- C:\Program Files\Yahoo! O43 - CFD: 13/10/2011 - 13:42:16 - [5436354] ----D- C:\Program Files\ZHPDiag O43 - CFD: 27/06/2011 - 13:05:38 - [5514642] ----D- C:\Program Files\Fichiers Communs\Adobe O43 - CFD: 13/10/2011 - 09:46:12 - [122129455] ----D- C:\Program Files\Fichiers Communs\Apple O43 - CFD: 22/03/2010 - 10:20:12 - [70272357] ----D- C:\Program Files\Fichiers Communs\AVSMedia O43 - CFD: 22/02/2007 - 22:12:32 - [86016] ----D- C:\Program Files\Fichiers Communs\Designer O43 - CFD: 31/12/2010 - 21:58:10 - [29547609] ----D- C:\Program Files\Fichiers Communs\DivX Shared O43 - CFD: 11/05/2006 - 10:35:10 - [3830214] ----D- C:\Program Files\Fichiers Communs\HP O43 - CFD: 11/05/2006 - 02:52:56 - [18688675] ----D- C:\Program Files\Fichiers Communs\InstallShield O43 - CFD: 13/10/2011 - 09:51:58 - [1258951] ----D- C:\Program Files\Fichiers Communs\Java O43 - CFD: 11/05/2006 - 03:18:52 - [5644557] ----D- C:\Program Files\Fichiers Communs\LightScribe O43 - CFD: 10/11/2010 - 18:08:30 - [157925868] ----D- C:\Program Files\Fichiers Communs\Microsoft Shared O43 - CFD: 11/05/2006 - 10:35:10 - [284160] ----D- C:\Program Files\Fichiers Communs\MSSoap O43 - CFD: 14/12/2007 - 21:44:02 - [0] ----D- C:\Program Files\Fichiers Communs\NSV O43 - CFD: 11/05/2006 - 10:35:10 - [0] ----D- C:\Program Files\Fichiers Communs\ODBC O43 - CFD: 11/05/2006 - 10:35:10 - [8106] ----D- C:\Program Files\Fichiers Communs\Services O43 - CFD: 11/05/2006 - 10:35:10 - [16542515] ----D- C:\Program Files\Fichiers Communs\Sonic Shared O43 - CFD: 11/05/2006 - 10:35:10 - [3787229] ----D- C:\Program Files\Fichiers Communs\SpeechEngines O43 - CFD: 11/05/2006 - 10:35:10 - [475136] ----D- C:\Program Files\Fichiers Communs\SureThing Shared O43 - CFD: 30/07/2009 - 11:17:30 - [450406] ----D- C:\Program Files\Fichiers Communs\Symantec Shared O43 - CFD: 06/06/2008 - 05:57:32 - [14742725] ----D- C:\Program Files\Fichiers Communs\System O43 - CFD: 11/05/2006 - 10:35:10 - [355840] ----D- C:\Program Files\Fichiers Communs\TiVo Shared O43 - CFD: 17/12/2008 - 12:00:20 - [217516024] ----D- C:\Program Files\Fichiers Communs\Windows Live O43 - CFD: 07/11/2007 - 23:02:26 - [23052168] -SH-D- C:\Program Files\Fichiers Communs\WindowsLiveInstaller O43 - CFD: 19/09/2007 - 14:18:52 - [11293347] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\ACD Systems O43 - CFD: 13/09/2008 - 17:16:18 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\ACDInTouch O43 - CFD: 12/06/2008 - 08:03:00 - [2425882] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Adobe O43 - CFD: 04/02/2007 - 03:08:16 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\AdobeUM O43 - CFD: 15/06/2010 - 13:53:30 - [53248] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\AdSigner O43 - CFD: 23/11/2009 - 12:13:02 - [100734078] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Apple Computer O43 - CFD: 26/03/2007 - 14:13:56 - [2246] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\ArcSoft O43 - CFD: 22/03/2010 - 10:21:38 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\AVS4YOU O43 - CFD: 26/01/2007 - 12:44:16 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\CyberLink O43 - CFD: 31/12/2010 - 22:02:04 - [148536] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\DivX O43 - CFD: 25/04/2007 - 19:07:10 - [35687] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Google O43 - CFD: 24/02/2010 - 11:23:20 - [63] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Help O43 - CFD: 26/01/2007 - 12:44:14 - [7928] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\HP O43 - CFD: 29/09/2010 - 08:30:58 - [3878] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\HpUpdate O43 - CFD: 11/05/2006 - 10:35:10 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Identities O43 - CFD: 14/09/2011 - 10:49:38 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\imeshbandmltbpi O43 - CFD: 13/09/2008 - 17:19:48 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\InstallShield O43 - CFD: 13/10/2007 - 01:29:06 - [539] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Leadertech O43 - CFD: 22/05/2008 - 23:28:56 - [67672] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\LimeWire O43 - CFD: 10/03/2007 - 23:31:16 - [10292] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Macromedia O43 - CFD: 25/02/2009 - 06:49:54 - [441960] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Malwarebytes O43 - CFD: 11/09/2008 - 14:09:58 - [1102] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Media Player Classic O43 - CFD: 14/09/2011 - 10:50:06 - [736719] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\mediabarim O43 - CFD: 23/04/2009 - 23:39:26 - [418102] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Megaupload O43 - CFD: 23/04/2009 - 22:46:12 - [17937218] -S--D- C:\Documents and Settings\Sylvie Roussin\Application Data\Microsoft O43 - CFD: 15/07/2011 - 13:52:56 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\ML O43 - CFD: 25/04/2007 - 19:41:52 - [10274342] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Mozilla O43 - CFD: 24/05/2010 - 17:39:36 - [327] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\MSNInstaller O43 - CFD: 23/06/2010 - 17:01:00 - [1924484] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Orange O43 - CFD: 13/09/2008 - 17:20:04 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Panasonic O43 - CFD: 29/10/2010 - 20:19:08 - [354] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\PC Suite O43 - CFD: 25/04/2007 - 19:11:46 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\PC Tools O43 - CFD: 16/08/2010 - 09:57:36 - [1816] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\PhotoFiltre O43 - CFD: 15/11/2007 - 12:05:50 - [1288565] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Radios Media Player O43 - CFD: 20/01/2011 - 19:00:44 - [17375686] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Samsung O43 - CFD: 08/02/2010 - 09:54:40 - [107344] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\skypePM O43 - CFD: 13/10/2007 - 01:29:28 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Sonic O43 - CFD: 22/04/2007 - 19:05:18 - [54625852] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Sun O43 - CFD: 03/03/2009 - 11:06:50 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\SUPERAntiSpyware.com O43 - CFD: 25/04/2007 - 19:43:50 - [18465] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Talkback O43 - CFD: 27/05/2008 - 17:12:38 - [45056] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\TaoUSign O43 - CFD: 26/01/2007 - 19:45:34 - [8704] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Template O43 - CFD: 07/12/2007 - 11:28:42 - [1668953] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Todae O43 - CFD: 25/08/2010 - 22:07:34 - [616433] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Uniblue O43 - CFD: 14/06/2010 - 23:27:20 - [713204] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\uTorrent O43 - CFD: 07/06/2008 - 09:37:18 - [371392] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\vlc O43 - CFD: 23/06/2011 - 08:55:26 - [530132] ----D- C:\Documents and Settings\Sylvie Roussin\Application Data\Yahoo! O43 - CFD: 22/02/2010 - 11:03:02 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\3DVIA O43 - CFD: 06/10/2010 - 21:44:52 - [10791881] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Adobe O43 - CFD: 15/07/2007 - 20:48:38 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Apple O43 - CFD: 01/02/2010 - 19:02:28 - [67186072] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Apple Computer O43 - CFD: 27/11/2010 - 18:27:00 - [33155] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\ApplicationHistory O43 - CFD: 11/05/2006 - 03:32:52 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\BVRP Software O43 - CFD: 20/05/2011 - 15:17:38 - [447374916] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Downloaded Installations O43 - CFD: 31/12/2010 - 21:58:28 - [531725906] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Google O43 - CFD: 22/02/2007 - 22:14:56 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Help O43 - CFD: 11/05/2006 - 02:41:44 - [39725472] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\HP O43 - CFD: 15/02/2007 - 21:27:10 - [668472] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Identities O43 - CFD: 02/02/2008 - 22:25:12 - [7191035] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\IM O43 - CFD: 15/09/2011 - 08:21:30 - [113033174] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\iMesh O43 - CFD: 11/05/2006 - 02:41:50 - [1436] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\IsolatedStorage O43 - CFD: 28/11/2010 - 01:58:38 - [649908553] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Microsoft O43 - CFD: 25/04/2007 - 19:41:52 - [102457] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Mozilla O43 - CFD: 27/08/2011 - 08:10:32 - [49] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Orange O43 - CFD: 14/09/2011 - 08:13:44 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\PackageAware O43 - CFD: 26/01/2007 - 12:44:14 - [7585] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\QuickPlay O43 - CFD: 27/04/2011 - 13:57:36 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Temp O43 - CFD: 14/03/2007 - 21:13:18 - [0] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\WMTools Downloaded Files O43 - CFD: 23/06/2011 - 08:56:02 - [119858] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Yahoo O43 - CFD: 23/06/2011 - 08:53:14 - [13916746] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\Yahoo! O43 - CFD: 11/05/2006 - 10:35:10 - [12181504] ----D- C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060} ~ Scan Program Folder in 01mn 33s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.90BA4D75DE712A6F7B4C1D50CAA3679F] - 13/10/2011 - 12:41:11 ---A- . (...) -- C:\WINDOWS\system32\d3d9caps.dat [1324] O44 - LFC:[MD5.F6E9F0A023B3838378BE6E56E07086C1] - 13/10/2011 - 12:30:48 ---A- . (...) -- C:\WINDOWS\system32\nvapps.xml [50868] O44 - LFC:[MD5.15F881A9BBA635501A8CC8856BF009B1] - 13/10/2011 - 12:30:25 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.D26593F1EDE364D6024E1AC479FB4F8D] - 13/10/2011 - 12:29:36 ---A- . (...) -- C:\WINDOWS\WindowsUpdate.log [1639928] O44 - LFC:[MD5.EEA11CE21707AC64E4BA144680BEC742] - 13/10/2011 - 12:29:01 ---A- . (...) -- C:\WINDOWS\system32\wpa.dbl [1158] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/10/2011 - 12:28:48 ---A- . (...) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.74DA28701F8F94364EAD161D183B7A0B] - 13/10/2011 - 12:28:48 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 13/10/2011 - 12:28:41 -S-A- . (...) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.82068DD7A8F2BE5212CBCC45A2C30537] - 13/10/2011 - 11:53:59 ---A- . (...) -- C:\WINDOWS\SchedLgU.Txt [32328] O44 - LFC:[MD5.2C536D41DCE213E1D449F18B3D41EA55] - 13/10/2011 - 09:48:45 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\WINDOWS\system32\FlashPlayerCPLApp.cpl [414368] O44 - LFC:[MD5.9EEC132BBFD85D730A4D776939242C35] - 13/10/2011 - 09:36:50 ---A- . (...) -- C:\WINDOWS\system32\FNTCACHE.DAT [224024] O44 - LFC:[MD5.B6842ABA543C1C930BCD839213F98726] - 13/10/2011 - 09:29:20 ---A- . (...) -- C:\WINDOWS\KB2564958.log [10484] O44 - LFC:[MD5.E8BB5766026F0010C975E0F5F33AC811] - 13/10/2011 - 09:29:20 ---A- . (...) -- C:\WINDOWS\comsetup.log [8255] O44 - LFC:[MD5.FDAB3308211D04634935A5FE3AFB2317] - 13/10/2011 - 09:29:20 ---A- . (...) -- C:\WINDOWS\iis6.log [3965] O44 - LFC:[MD5.79162CEE4FD754D3A5D7542444FA1772] - 13/10/2011 - 09:29:20 ---A- . (...) -- C:\WINDOWS\imsins.log [1393] O44 - LFC:[MD5.FC810B7C779EB9209541FC206D44EF21] - 13/10/2011 - 09:29:20 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [5003] O44 - LFC:[MD5.E0AC8707D470B36A7D30C21C2CAF6B0F] - 13/10/2011 - 09:29:20 ---A- . (...) -- C:\WINDOWS\ocmsn.log [1368] O44 - LFC:[MD5.AC4032608639DA681F39463674FB7611] - 13/10/2011 - 09:29:20 ---A- . (...) -- C:\WINDOWS\tsoc.log [9437] O44 - LFC:[MD5.709E140151B4DC0F535492D8B42C9EFE] - 13/10/2011 - 09:29:19 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [24730] O44 - LFC:[MD5.4107E471D9CA9C782D1C6A6F2D4DB3CE] - 13/10/2011 - 09:29:19 ---A- . (...) -- C:\WINDOWS\msgsocm.log [1236] O44 - LFC:[MD5.0B1DAAC04D642A2FB1A5D05F955AB815] - 13/10/2011 - 09:29:19 ---A- . (...) -- C:\WINDOWS\ocgen.log [11824] O44 - LFC:[MD5.4725BD6327BD8C740F515D983F6A7FD0] - 13/10/2011 - 09:29:19 ---A- . (...) -- C:\WINDOWS\setupapi.log [21814] O44 - LFC:[MD5.429B063822D66B7795952409CE8A58AD] - 13/10/2011 - 09:29:15 ---A- . (...) -- C:\WINDOWS\updspapi.log [4425] O44 - LFC:[MD5.C7EA049307FB78B2CD25A739D6174725] - 13/10/2011 - 09:27:41 ---A- . (...) -- C:\WINDOWS\system32\perfc00C.dat [109664] O44 - LFC:[MD5.17B6CEFE713D79FDAB8DE91EC6DF96BF] - 13/10/2011 - 09:27:41 ---A- . (...) -- C:\WINDOWS\system32\perfh009.dat [508234] O44 - LFC:[MD5.9E9E728100B5CFE5B408254242152056] - 13/10/2011 - 09:27:41 ---A- . (...) -- C:\WINDOWS\system32\perfh00C.dat [583800] O44 - LFC:[MD5.D5E98C9BAE8438D8733402C2EC6B7B1A] - 13/10/2011 - 09:27:40 ---A- . (...) -- C:\WINDOWS\system32\PerfStringBackup.INI [1265834] O44 - LFC:[MD5.080D955FC5AE89B5B0E49726702333CE] - 13/10/2011 - 09:27:40 ---A- . (...) -- C:\WINDOWS\system32\perfc009.dat [92590] O44 - LFC:[MD5.8EF54293D42369529052B26DB75FBDBF] - 13/10/2011 - 09:13:07 ---A- . (...) -- C:\WINDOWS\system32\MRT.INI [129] O44 - LFC:[MD5.7850A43142A975C378F92F2ACFC523C2] - 13/10/2011 - 09:06:21 ---A- . (...) -- C:\WINDOWS\KB2567053.log [17212] O44 - LFC:[MD5.C5389F6764D31A0A62A9EBD5516F57CA] - 13/10/2011 - 09:06:21 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1393] O44 - LFC:[MD5.023A7C80EC6890A535E3BBEE274C7232] - 13/10/2011 - 09:05:22 ---A- . (...) -- C:\WINDOWS\KB2592799.log [11653] O44 - LFC:[MD5.FACFB1872C9A5131490771F79FE01BA2] - 13/10/2011 - 09:04:23 ---A- . (...) -- C:\WINDOWS\KB2586448-IE8.log [16183] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/10/2011 - 09:04:12 ---A- . (...) -- C:\WINDOWS\setupact.log [0] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/10/2011 - 09:04:12 ---A- . (...) -- C:\WINDOWS\setuperr.log [0] O44 - LFC:[MD5.B8A8EA8647B6A2B51A921C45420FE070] - 13/10/2011 - 08:30:28 ---A- . (.Sun Microsystems, Inc. - Java Control Panel.) -- C:\WINDOWS\system32\javacpl.cpl [73728] O44 - LFC:[MD5.D42FFC8FF809E4F1BADB1F7C05E5F0E3] - 13/10/2011 - 08:30:28 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\system32\deployJava1.dll [472808] O44 - LFC:[MD5.1A90B36F219FFE260FF6C012D38D1B08] - 13/10/2011 - 08:30:28 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\system32\java.exe [145184] O44 - LFC:[MD5.36F1BDE30FB27A78A27DC13ADB5BE9EC] - 13/10/2011 - 08:30:28 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\WINDOWS\system32\javaw.exe [145184] O44 - LFC:[MD5.872C7F9E8503EC348D3F179EAEE29768] - 13/10/2011 - 08:30:28 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\WINDOWS\system32\javaws.exe [157472] O44 - LFC:[MD5.CED647CE766386A19A4209C6EE474A1D] - 10/10/2011 - 19:53:55 ---A- . (...) -- C:\rkill.log [392] O44 - LFC:[MD5.7014AC405A162ECA2B5E50C3B52F5E0C] - 10/10/2011 - 17:54:58 ---A- . (...) -- C:\WINDOWS\ntbtlog.txt [203094] ~ Scan Files in 02mn 13s ---\\ Export de clé d'application autorisée (O47) O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\sessmgr.exe" [Disabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\Network Diagnostic\xpnetdiag.exe" [Disabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft LifeCam\LifeCam.exe" [Disabled] .(.Microsoft Corporation - LifeCam.exe.) -- C:\Program Files\Microsoft LifeCam\LifeCam.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Disabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Disabled] .(.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O47 - AAKE:Key Export SP - "C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe" [Enabled] .(.PeeringPortal - KTF MUSIC AoD Server.) -- C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe" [Enabled] .(.PeeringPortal - KTF MUSIC VoD Server.) -- C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [Enabled] .(.Yahoo! Inc. - Yahoo! Messenger.) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe O47 - AAKE:Key Export SP - "E:\fscommand\CKSocketServer.exe" [Enabled] .(...) -- E:\fscommand\CKSocketServer.exe (.not file.) O47 - AAKE:Key Export SP - "C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe" [Enabled] .(.France Telecom SA - Orange Upd@te.) -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe O47 - AAKE:Key Export SP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(.iMesh, Inc - iMesh.) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe O47 - AAKE:Key Export SP - "C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe" [Enabled] .(.Visicom Media Inc. - DTX broker.) -- C:\Program Files\iMesh Applications\MediaBar\Datamngr\ToolBar\dtUser.exe O47 - AAKE:Key Export SP - "C:\Program Files\Fichiers communs\Apple\Apple Application Support\WebKit2WebProcess.exe" [Enabled] .(.Apple Inc..) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\WebKit2WebProcess.exe O47 - AAKE:Key Export SP - "C:\Program Files\Bonjour\mDNSResponder.exe" [Enabled] .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O47 - AAKE:Key Export SP - "C:\Program Files\iTunes\iTunes.exe" [Enabled] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe O47 - AAKE:Key Export DP - "C:\Program Files\iMesh Applications\iMesh\iMesh.exe" [Enabled] .(.iMesh, Inc - iMesh.) -- C:\Program Files\iMesh Applications\iMesh\iMesh.exe ~ Scan Keys in 00mn 02s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmboot.sys . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disque NT.) -- C:\WINDOWS\system32\Drivers\dmboot.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmio.sys . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\system32\Drivers\dmio.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dmload.sys . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\system32\Drivers\dmload.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ip6fw.sys . (.Microsoft Corporation - IPv6 Windows Firewall Driver.) -- C:\WINDOWS\system32\Drivers\ip6fw.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\system32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpcdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\WINDOWS\system32\Drivers\rdpcdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpdd.sys . (...) -- C:\WINDOWS\system32\Drivers\rdpdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpwd.sys . (.Microsoft Corporation - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) -- C:\WINDOWS\system32\Drivers\rdpwd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (...) -- C:\WINDOWS\system32\Drivers\sermouse.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sr.sys . (.Microsoft Corporation - Pilote de filtre de système de fichiers pour la restauration du système.) -- C:\WINDOWS\system32\Drivers\sr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdpipe.sys . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdpipe.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\tdtcp.sys . (.Microsoft Corporation - TCP Transport Driver.) -- C:\WINDOWS\system32\Drivers\tdtcp.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\WINDOWS\system32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\WINDOWS\system32\Drivers\vgasave.sys (.not file.) ~ Scan CSB in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ~ Scan IFEO in 00mn 00s ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\system32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\system32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (...) -- C:\WINDOWS\system32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\system32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\system32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\WINDOWS\system32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.LEAD"="LCODCCMP.DLL" . (...) -- (.not file.) O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\system32\DivX.dll O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\system32\DivX.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\system32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"LCODCCMP.DLL"="LEAD MCMP/MJPEG Codec (VFW)" . (...) -- (.not file.) O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (...) -- (.not file.) ~ Scan Keys in 00mn 00s ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O53 - SMSR:HKLM\...\startupreg\AppleSyncNotifier [Key] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleSyncNotifier.exe O53 - SMSR:HKLM\...\startupreg\avgnt [Key] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O53 - SMSR:HKLM\...\startupreg\Cpqset [Key] . (...) -- C:\Program Files\HPQ\Default Settings\cpqset.exe O53 - SMSR:HKLM\...\startupreg\CTFMON.EXE [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O53 - SMSR:HKLM\...\startupreg\High Definition Audio Property Page Shortcut [Key] . (.Windows ® Server 2003 DDK provider - High Definition Audio Property Page Shortcu.) -- C:\WINDOWS\system32\CHDAudPropShortcut.exe O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O53 - SMSR:HKLM\...\startupreg\hpWirelessAssistant [Key] . (.Hewlett-Packard Development Company, L.P. - HP Wireless Assistant Module.) -- C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O53 - SMSR:HKLM\...\startupreg\LifeCam [Key] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files\Microsoft LifeCam\LifeExp.exe O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\NvCplDaemon [Key] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\WINDOWS\system32\NvCpl.dll O53 - SMSR:HKLM\...\startupreg\NvMediaCenter [Key] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\WINDOWS\system32\NvMcTray.dll O53 - SMSR:HKLM\...\startupreg\nwiz [Key] . (...) -- C:\WINDOWS\system32\nwiz.exe O53 - SMSR:HKLM\...\startupreg\orangeinside [Key] . (.Orange - Executable Orange Inside.) -- C:\Documents and Settings\Sylvie Roussin\Application Data\Orange\OrangeInside\one\OrangeInside.exe O53 - SMSR:HKLM\...\startupreg\QPService [Key] . (.CyberLink Corp. - HP QuickPlay Resident Program.) -- C:\Program Files\HP\QuickPlay\QPService.exe O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe O53 - SMSR:HKLM\...\startupreg\RecGuard [Key] . (.Pas de propriétaire - Recguard Application.) -- C:\Windows\SMINST\RecGuard.exe O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O53 - SMSR:HKLM\...\startupreg\SynTPEnh [Key] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O53 - SMSR:HKLM\...\startupreg\VX3000 [Key] . (.Microsoft Corporation - Microsoft LifeCam Device Application.) -- C:\WINDOWS\vVX3000.exe ~ Scan SMSR Keys in 00mn 02s ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0 ~ Scan Keys in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=323 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0 O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoCDBurning"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "BackupNoCDBurning"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=67108863 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=323 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0 ~ Scan Keys in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.1140AB9938809700B46BB88E46D72A96] - 13/10/2011 - 04:51:56 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\WINDOWS\system32\drivers\aliide.sys [5248] O58 - SDL:[MD5.95B4FB835E28AA1336CEEB07FD5B9398] - 13/10/2011 - 19:36:39 ---A- . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\system32\drivers\amdagp.sys [43008] O58 - SDL:[MD5.62D318E9A0C8FC9B780008E724283707] - 13/10/2011 - 04:52:00 ---A- . (.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) -- C:\WINDOWS\system32\drivers\asc.sys [26496] O58 - SDL:[MD5.5D8DE112AA0254B907861E9E9C31D597] - 13/10/2011 - 04:51:58 ---A- . (.Advanced System Products, Inc. - AdvanSys Ultra-Wide PCI SCSI Driver.) -- C:\WINDOWS\system32\drivers\asc3550.sys [14848] O58 - SDL:[MD5.5B44C214F9CD9F590BE9125347610380] - 13/10/2011 - 11:17:49 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver.) -- C:\WINDOWS\system32\drivers\avgntdd.sys [45416] O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 13/10/2011 - 18:17:43 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\WINDOWS\system32\drivers\avgntflt.sys [56816] O58 - SDL:[MD5.2DAA8CC2670720DEDDCC74A20EDE2EE9] - 13/10/2011 - 11:28:39 ---A- . (.Avira GmbH - Avira AntiVir File Filter Driver Manager.) -- C:\WINDOWS\system32\drivers\avgntmgr.sys [22360] O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 13/10/2011 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\WINDOWS\system32\drivers\avipbb.sys [96104] O58 - SDL:[MD5.7024E11DAB9410B31A37547575249DD7] - 13/10/2011 - 12:03:32 ---A- . (.Broadcom Corporation. - Driver for Bluetooth USB Devices.) -- C:\WINDOWS\system32\drivers\btwusb.sys [57096] O58 - SDL:[MD5.C3E14EABDBBD0E45F1F702DB3807397A] - 13/10/2011 - 09:24:08 ---A- . (.Service & Quality Technology. - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\drivers\Camd905c.sys [24363] O58 - SDL:[MD5.C526F69809CF33CA214F29243EAD47DC] - 13/10/2011 - 09:23:04 ---A- . (.Service & Quality Technology. - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\drivers\Capt905c.sys [25749] O58 - SDL:[MD5.BF79E659C506674C0497CC9C61F1A165] - 13/10/2011 - 02:00:00 ---A- . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdr4_xp.sys [2432] O58 - SDL:[MD5.2C41CD49D82D5FD85C72D57B6CA25471] - 13/10/2011 - 02:00:00 ---A- . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\system32\drivers\cdralw2k.sys [2560] O58 - SDL:[MD5.BB42BB78BBBC1E83292EF26973598DAF] - 13/10/2011 - 12:29:06 ---A- . (.Conexant Systems Inc. - High Definition Audio Function Driver.) -- C:\WINDOWS\system32\drivers\CHDAud.sys [569856] O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 13/10/2011 - 22:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys [262528] O58 - SDL:[MD5.E3726AD522D0BDAE090671048C991AB3] - 13/10/2011 - 00:04:44 ---A- . (.CMD Technology, Inc. - Pilote de bus PCI IDE CMD.) -- C:\WINDOWS\system32\drivers\cmdide.sys [6656] O58 - SDL:[MD5.4D4D97671C63C3AF869B3518E6054204] - 13/10/2011 - 12:24:10 ---A- . (.Hewlett-Packard Development Company, L.P. - HP Tablet PC Key Button HID Driver.) -- C:\WINDOWS\system32\drivers\CPQBttn.sys [9344] O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 13/10/2011 - 22:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys [11776] O58 - SDL:[MD5.E550E7418984B65A78299D248F0A7F36] - 13/10/2011 - 04:52:16 ---A- . (.Mylex Corporation - Mylex Disk Array Controller Driver.) -- C:\WINDOWS\system32\drivers\dac2w2k.sys [179584] O58 - SDL:[MD5.6CA101F9AA3D845BA31F6E13C01301A8] - 13/10/2011 - 09:31:38 ---A- . (.Intel Corporation - Intel® PRO/100 Adapter NDIS 5.1 driver.) -- C:\WINDOWS\system32\drivers\e100b325.sys [157696] O58 - SDL:[MD5.B5CB3084046146FD2587D8C9B219FEB4] - 13/10/2011 - 12:23:52 ---A- . (.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) -- C:\WINDOWS\system32\drivers\eabfiltr.sys [7808] O58 - SDL:[MD5.231F4547AE1E4B3E60ECA66C3A96D218] - 13/10/2011 - 12:24:20 ---A- . (.Hewlett-Packard Development Company, L.P. - QLB USB Keyboard filter driver.) -- C:\WINDOWS\system32\drivers\EabUsb.sys [5760] O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 13/10/2011 - 14:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys [26600] O58 - SDL:[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/10/2011 - 17:36:05 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\system32\drivers\hdaudbus.sys [144384] O58 - SDL:[MD5.2A013E7530BEAB6E569FAA83F517E836] - 13/10/2011 - 16:07:16 ---A- . (.Windows ® Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\system32\drivers\Hdaudio.sys [145920] O58 - SDL:[MD5.89E256C5F5346BE265D9F86AC8625D4F] - 13/10/2011 - 16:06:16 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys [201600] O58 - SDL:[MD5.214BC3AD84907AD6AD655AC5465F449A] - 13/10/2011 - 16:06:10 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys [718464] O58 - SDL:[MD5.0E44AF3828111D4C3E73C33AC95226D8] - 13/10/2011 - 16:07:00 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\system32\drivers\HSF_DPV.sys [1035008] O58 - SDL:[MD5.309C4D86D989FB1FCF64BD30DC81C51B] - 13/10/2011 - 10:07:12 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver.) -- C:\WINDOWS\system32\drivers\iaStor.sys [874240] O58 - SDL:[MD5.69A6268D7F81E53D568AB4E7E991CAF3] - 13/10/2011 - 16:00:50 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys [22216] O58 - SDL:[MD5.74F4372AF97A587ECEC527EC34955712] - 13/10/2011 - 11:57:46 ---A- . (.Conexant - Diagnostic Interface x86 Driver.) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys [12672] O58 - SDL:[MD5.3F4BB95E5A44F3BE34824E8E7CAF0737] - 13/10/2011 - 04:52:12 ---A- . (.American Megatrends Inc. - MegaRAID RAID Controller Driver for Windows Whistler 32.) -- C:\WINDOWS\system32\drivers\mraid35x.sys [17280] O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 13/10/2011 - 22:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys [12032] O58 - SDL:[MD5.88D8F8D4C3243E0BB0ED57496868E52E] - 13/10/2011 - 19:26:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Driver, Version 84.54.) -- C:\WINDOWS\system32\drivers\nv4_mini.sys [3658528] O58 - SDL:[MD5.175CC28DCF819F78CAA3FBD44AD9E52A] - 13/10/2011 - 14:53:26 ---A- . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\WINDOWS\system32\drivers\pccsmcfd.sys [21632] O58 - SDL:[MD5.1DF21F001F3A94EBA4A2950C70CC358F] - 13/10/2011 - 15:05:32 ---A- . (.Secunia - Secunia PSI Driver.) -- C:\WINDOWS\system32\drivers\psi_mf.sys [14904] O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 13/10/2011 - 22:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys [17792] O58 - SDL:[MD5.0A63FB54039EB5662433CABA3B26DBA7] - 13/10/2011 - 04:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql1080.sys [40320] O58 - SDL:[MD5.156ED0EF20C15114CA097A34A30D8A01] - 13/10/2011 - 04:52:20 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql12160.sys [45312] O58 - SDL:[MD5.907F0AEEA6BC451011611E732BD31FCF] - 13/10/2011 - 04:52:18 ---A- . (.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) -- C:\WINDOWS\system32\drivers\ql1280.sys [49024] O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 13/10/2011 - 22:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys [12032] O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 13/10/2011 - 22:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys [12032] O58 - SDL:[MD5.D507C1400284176573224903819FFDA3] - 13/10/2011 - 07:31:34 ---A- . (.Realtek Semiconductor Corporation - Realtek RTL8139 NDIS 5.0 Driver.) -- C:\WINDOWS\system32\drivers\RTL8139.sys [20992] O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/10/2011 - 11:25:54 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys [20480] O58 - SDL:[MD5.6B33D0EBD30DB32E27D1D78FE946A754] - 13/10/2011 - 19:36:39 ---A- . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\system32\drivers\sisagp.sys [40960] O58 - SDL:[MD5.83C0F71F86D3BDAF915685F3D568B20E] - 13/10/2011 - 05:07:44 ---A- . (.Adaptec, Inc. - Adaptec AIC-6x60 series SCSI miniport.) -- C:\WINDOWS\system32\drivers\sparrow.sys [19072] O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 13/10/2011 - 10:52:03 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\WINDOWS\system32\drivers\ssmdrv.sys [28520] O58 - SDL:[MD5.3F0164FBC0BD1ADBD02DF9759181451A] - 13/10/2011 - 03:25:16 ---A- . (.MCCI - SAMSUNG USB Mobile Device.) -- C:\WINDOWS\system32\drivers\ss_bbus.sys [98432] O58 - SDL:[MD5.2DD4E8844F8F094659DD695A80FED36E] - 13/10/2011 - 03:25:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_bcm.sys [12416] O58 - SDL:[MD5.2DD4E8844F8F094659DD695A80FED36E] - 13/10/2011 - 03:25:16 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\ss_bcmnt.sys [12416] O58 - SDL:[MD5.B89D62206034E5FE573C80A24DD55675] - 13/10/2011 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem Filter.) -- C:\WINDOWS\system32\drivers\ss_bmdfl.sys [14848] O58 - SDL:[MD5.1ED0FCEA586FE2A416EE15196E5631DD] - 13/10/2011 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Modem.) -- C:\WINDOWS\system32\drivers\ss_bmdm.sys [123648] O58 - SDL:[MD5.F9F4BC8A7EC80F39DE8323D0D1BC85FE] - 13/10/2011 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\WINDOWS\system32\drivers\ss_bwh.sys [12288] O58 - SDL:[MD5.F9F4BC8A7EC80F39DE8323D0D1BC85FE] - 13/10/2011 - 03:25:16 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\WINDOWS\system32\drivers\ss_bwhnt.sys [12288] O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 13/10/2011 - 19:01:12 ---A- . (...) -- C:\WINDOWS\system32\drivers\StarOpen.sys [5632] O58 - SDL:[MD5.1FF3217614018630D0A6758630FC698C] - 13/10/2011 - 05:07:34 ---A- . (.Symbios Logic Inc. - Symbios Logic Inc. SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\symc810.sys [16256] O58 - SDL:[MD5.070E001D95CF725186EF8B20335F933C] - 13/10/2011 - 05:07:36 ---A- . (.LSI Logic - Symbios 8XX SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\symc8xx.sys [32640] O58 - SDL:[MD5.80AC1C4ABBE2DF3B738BF15517A51F2C] - 13/10/2011 - 05:07:40 ---A- . (.LSI Logic - Symbios Hi-Perf SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\sym_hi.sys [28384] O58 - SDL:[MD5.BF4FAB949A382A8E105F46EBB4937058] - 13/10/2011 - 05:07:42 ---A- . (.LSI Logic - Symbios Ultra3 SCSI Miniport Driver.) -- C:\WINDOWS\system32\drivers\sym_u3.sys [30688] O58 - SDL:[MD5.C9A1785CC0D7A040DD0FDBFEAA8BE135] - 13/10/2011 - 06:31:48 ---A- . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\WINDOWS\system32\drivers\SynTP.sys [192736] O58 - SDL:[MD5.9179E07503630D6FB2E4162FF0196191] - 13/10/2011 - 11:30:56 ---A- . (.Texas Instruments - tifm21.sys.) -- C:\WINDOWS\system32\drivers\tifm21.sys [162432] O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 13/10/2011 - 22:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys [21376] O58 - SDL:[MD5.1B698A51CD528D8DA4FFAED66DFC51B9] - 13/10/2011 - 04:52:22 ---A- . (.Promise Technology, Inc. - Gestionnaire de miniport ULTRA66 de Promise.) -- C:\WINDOWS\system32\drivers\ultra.sys [36736] O58 - SDL:[MD5.D4FB6ECC60A428564BA8768B0E23C0FC] - 13/10/2011 - 16:36:58 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\system32\drivers\usbaapl.sys [41984] O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 13/10/2011 - 22:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys [58112] O58 - SDL:[MD5.4E7B07653F4F9937CF62AD2869FBA520] - 13/10/2011 - 19:02:54 ---A- . (.Intel® Corporation - Intel® Wireless LAN Driver.) -- C:\WINDOWS\system32\drivers\w39n51.sys [1428480] O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ansi.sys [9037] O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\country.sys [27097] O58 - SDL:[MD5.CBE5F69A5E5B918225F420BA748F3742] - 13/10/2011 - 01:32:54 ---A- . (...) -- C:\WINDOWS\system32\FsUsbExDisk.Sys [36608] O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\himem.sys [4912] O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809] O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\keyboard.sys [42537] O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos.sys [27916] O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos404.sys [29146] O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos411.sys [29370] O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos412.sys [29274] O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntdos804.sys [29146] O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio.sys [34000] O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio404.sys [34560] O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio411.sys [35648] O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio412.sys [35424] O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 13/10/2011 - 22:00:00 ---A- . (...) -- C:\WINDOWS\system32\ntio804.sys [34560] O58 - SDL:[MD5.354585D8E53F2FF9B8AD5E1E2EF68CEF] - 13/10/2011 - 19:44:16 ---A- . (.Matsushita Electric Industrial Co., Ltd. - Phoebe Photo Distribution Manager.) -- C:\WINDOWS\system32\PhDi2.sys [45056] O58 - SDL:[MD5.A3D1422C24CB7152C53019369FC76DA1] - 13/10/2011 - 09:13:34 ---A- . (.Phoenix Technologies K.K. - USB FDD CLASS DRIVER.) -- C:\WINDOWS\system32\pusbfd1.sys [32356] ~ Scan Drivers in 00mn 03s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: Ad-Remover By C_XX - (.C_XX.) [HKLM] -- Ad-Remover O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: RSIT - (.random/random.) O63 - Logiciel: Toolbar SD - (.IDN Team.) ~ Scan ADS in 00mn 00s ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\aliide.sys - AliIde(AliIde) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\DRIVERS\amdagp.sys - No object(No service) .(.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) - LEGACY_AMDAGP O64 - Services: CurCS - 18/09/2009 - C:\Program Files\Avira\AntiVir Desktop\sched.exe - Avira AntiVir Planificateur(AntiVirSchedulerService) .(.Avira GmbH - Antivirus Scheduler.) - LEGACY_ANTIVIRSCHEDULERSERVICE O64 - Services: CurCS - 18/09/2009 - C:\Program Files\Avira\AntiVir Desktop\avguard.exe - Avira AntiVir Guard(AntiVirService) .(.Avira GmbH - Antivirus On-Access Service.) - LEGACY_ANTIVIRSERVICE O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\asc.sys - No object(No service) .(.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) - LEGACY_ASC O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\asc3550.sys - No object(No service) .(.Advanced System Products, Inc. - AdvanSys Ultra-Wide PCI SCSI Driver.) - LEGACY_ASC3550 O64 - Services: CurCS - 13/02/2009 - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio(avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO O64 - Services: CurCS - 10/12/2009 - C:\WINDOWS\system32\DRIVERS\avgntflt.sys - avgntflt(avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 30/03/2009 - C:\WINDOWS\system32\DRIVERS\avipbb.sys - avipbb(avipbb) .(.Avira GmbH - Avira Driver for RootKit Detection.) - LEGACY_AVIPBB O64 - Services: CurCS - ??/??/???? - C:\DOCUME~1\SYLVIE~1\LOCALS~1\Temp\catchme.sys (.not file.) - catchme (catchme) .(...) - LEGACY_CATCHME O64 - Services: CurCS - 24/08/2001 - C:\WINDOWS\system32\DRIVERS\cmdide.sys - No object(No service) .(.CMD Technology, Inc. - Pilote de bus PCI IDE CMD.) - LEGACY_CMDIDE O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\dac2w2k.sys - No object(No service) .(.Mylex Corporation - Mylex Disk Array Controller Driver.) - LEGACY_DAC2W2K O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique(dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN O64 - Services: CurCS - 14/04/2008 - C:\WINDOWS\system32\drivers\dmboot.sys - dmboot(dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - 05/08/2004 - C:\WINDOWS\system32\drivers\dmload.sys - dmload(dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - 19/09/2005 - C:\WINDOWS\system32\DRIVERS\eabfiltr.sys - eabfiltr(eabfiltr) .(.Hewlett-Packard Development Company, L.P. - QLB PS/2 Keyboard filter driver.) - LEGACY_EABFILTR O64 - Services: CurCS - 14/06/2010 - C:\WINDOWS\system32\FsUsbExDisk.sys - FsUsbExDisk (FsUsbExDisk) .(...) - LEGACY_FSUSBEXDISK O64 - Services: CurCS - 29/07/2010 - C:\WINDOWS\system32\FsUsbExService.exe - FsUsbExService(FsUsbExService) .(.Teruten - FsUsbDevice.) - LEGACY_FSUSBEXSERVICE O64 - Services: CurCS - 09/01/2010 - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdate)(gupdate) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE O64 - Services: CurCS - 05/05/2009 - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Software Updater(gusvc) .(.Google - gusvc.) - LEGACY_GUSVC O64 - Services: CurCS - 15/03/2006 - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe - hpqwmiex(hpqwmiex) .(.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) - LEGACY_HPQWMIEX O64 - Services: CurCS - 22/10/2004 - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe - InstallDriver Table Manager(IDriverT) .(.Macrovision Corporation - IDriverT Module.) - LEGACY_IDRIVERT O64 - Services: CurCS - 13/10/2011 - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter(JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - 17/02/2006 - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe - LightScribeService Direct Disc Labeling Service(LightScribeService) .(.Hewlett-Packard Company - Pas de description.) - LEGACY_LIGHTSCRIBESERVICE O64 - Services: CurCS - ??/??/???? - C:\WINDOWS\system32\drivers\mbamswissarmy.sys (.not file.) - MBAMSwissArmy (MBAMSwissArmy) .(...) - LEGACY_MBAMSWISSARMY O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\mraid35x.sys - No object(No service) .(.American Megatrends Inc. - MegaRAID RAID Controller Driver for Windows.) - LEGACY_MRAID35X O64 - Services: CurCS - 15/04/2006 - C:\WINDOWS\system32\nvsvc32.exe - NVIDIA Display Driver Service(NVSvc) .(.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 84.54.) - LEGACY_NVSVC O64 - Services: CurCS - 04/08/2003 - C:\WINDOWS\system32\PCANDIS5.sys - PCANDIS5 NDIS Protocol Driver(PCANDIS5) .(.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) - LEGACY_PCANDIS5 O64 - Services: CurCS - 07/07/2010 - C:\WINDOWS\system32\DRIVERS\psi_mf.sys - PSI(PSI) .(.Secunia - Secunia PSI Driver.) - LEGACY_PSI O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\ql1080.sys - No object(No service) .(.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) - LEGACY_QL1080 O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\ql12160.sys - No object(No service) .(.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) - LEGACY_QL12160 O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\ql1280.sys - No object(No service) .(.QLogic Corporation - Miniport Driver for QLogic ISP PCI Adapters.) - LEGACY_QL1280 O64 - Services: CurCS - 07/04/2008 - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe - ServiceLayer(ServiceLayer) .(.Nokia. - ServiceLayer Module.) - LEGACY_SERVICELAYER O64 - Services: CurCS - 13/04/2008 - C:\WINDOWS\system32\DRIVERS\sisagp.sys - No object(No service) .(.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) - LEGACY_SISAGP O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\sparrow.sys - No object(No service) .(.Adaptec, Inc. - Adaptec AIC-6x60 series SCSI miniport.) - LEGACY_SPARROW O64 - Services: CurCS - 18/09/2009 - C:\WINDOWS\system32\DRIVERS\ssmdrv.sys - ssmdrv(ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\symc810.sys - No object(No service) .(.Symbios Logic Inc. - Symbios Logic Inc. SCSI Miniport Driver.) - LEGACY_SYMC810 O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\symc8xx.sys - No object(No service) .(.LSI Logic - Symbios 8XX SCSI Miniport Driver.) - LEGACY_SYMC8XX O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\sym_hi.sys - No object(No service) .(.LSI Logic - Symbios Hi-Perf SCSI Miniport Driver.) - LEGACY_SYM_HI O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\sym_u3.sys - No object(No service) .(.LSI Logic - Symbios Ultra3 SCSI Miniport Driver.) - LEGACY_SYM_U3 O64 - Services: CurCS - 18/08/2001 - C:\WINDOWS\system32\DRIVERS\ultra.sys - No object(No service) .(.Promise Technology, Inc. - Gestionnaire de miniport ULTRA66 de Promise.) - LEGACY_ULTRA O64 - Services: CurCS - 09/11/2008 - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe - Yahoo! Updater(YahooAUService) .(.Yahoo! Inc. - AutoUpater Service Module.) - LEGACY_YAHOOAUSERVICE ~ Scan Services in 00mn 06s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ~ Scan Keys in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (...) -- C:\PROGRA~1\Mozilla Firefox\firefox.exe (.not file.) O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: <Orange Web> <>[HKLM\..\Shell\open\Command] (...) -- C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe (.not file.) O68 - StartMenuInternet: <Safari.exe> <Safari>[HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files\Safari\Safari.exe O68 - StartMenuInternet: <WOOBrowser.exe> <>[HKLM\..\Shell\open\Command] (...) -- C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe (.not file.) ~ Scan Keys in 00mn 02s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0152036B-ED26-47F6-B47A-D92FD01866D9} - (01net) - 01net informatique high-tech : actu, produits, téléchargement logiciels et jeux O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {118FD3AD-5541-417A-8D45-CB5DBA377D39} - (Wikipedia) - Wikipédia, l'encyclopédie libre O69 - SBI: SearchScopes [HKCU] {1AE859F0-421C-48D3-9EB6-B90B629ABB9D} - (PriceMinister) - PriceMinister - Achat et vente d'occasion ou neuf - DVD, VHS, Jeux Vidéo, Consoles, PC, CD, Disques, Livres, BD, Vidéos O69 - SBI: SearchScopes [HKCU] {1DF0D047-7693-4734-8CCB-C4BBD2138B83} - ((www.orange.fr) Orange) - Orange : téléphones, forfaits, Internet, actualité, sport, video O69 - SBI: SearchScopes [HKCU] {271839F9-1AB6-4D96-A931-2CE5D41152E5} - ((www.google.com) Google) - Google O69 - SBI: SearchScopes [HKCU] {2B7B7EFC-C234-4532-822B-A8D74D7EF7EB} - (Durable.com) - Durable.com : développement durable, actualités, dossiers et reportages vidéos O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {7D9A5994-9999-4C36-A8EA-5CCE2FC220D3} - (Propositions de recherche Amazon.fr) - Amazon.fr : livres, DVD, jeux vidéo, CD, lecteurs MP3, ordinateurs, appareils photo, logiciels et plus encore ! O69 - SBI: SearchScopes [HKCU] {814C76CB-2623-43F4-AAD0-58A0E5190A20} - (Orange) - http://www.orange.fril%3Dorange O69 - SBI: SearchScopes [HKCU] {847F9CF7-83A7-44D3-9761-0D53113A53E0} - (Wikipedia (en)) - Wikipedia, the free encyclopedia O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} [DefaultScope] - (Web Search) - Search O69 - SBI: SearchScopes [HKCU] {C0BE3184-A99E-43CA-8F01-561103501DED} - (Live Search, le moteur de MSN) - Bing O69 - SBI: SearchScopes [HKCU] {C89627A4-AD15-4B6E-84F4-9812A8C12F17} - (CDiscount) - http://www.cdiscount.com O69 - SBI: SearchScopes [HKCU] {CD3F0C37-2E5C-4AD1-82D7-31BD3E206B51} - (Yahoo!) - Yahoo! Search - Recherche Web O69 - SBI: SearchScopes [HKCU] {D0BE6FBA-DF78-42AF-8438-28D634C87D7F} - (Fnac.com) - http://www3.fnac.com6&y=17 O69 - SBI: SearchScopes [HKCU] {D6E11273-A220-4812-876D-58CC0396BADC} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {D80D294C-8287-4F3E-912A-0ABD2D2713FC} - (Fnac) - http://recherche.fnac.com O69 - SBI: SearchScopes [HKCU] {E10EB723-6D91-40F1-AD03-A5562D28BA91} - (Wikipédia (fr)) - Wikipédia, l'encyclopédie libre O69 - SBI: SearchScopes [HKCU] {F6F05760-6E90-49C0-B8A1-39E514BA7478} - (Dailymotion) - Dailymotion – Vidéo, musique et film. Regardez une vidéo maintenant ! ~ Scan Keys in 00mn 00s ---\\ Internet Feature Controls (O81) O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe ~ Scan Keys in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.D9DE89F0FAF18019BC9595F0F47BCA61] [sPRF][05/03/2009] (.Atribune.org - ATF Cleaner.exe.) -- C:\Documents and Settings\Sylvie Roussin\Bureau\ATF-Cleaner.exe [50688] [MD5.A8BCAFEA12FC31F84B34932D3AFCCB83] [sPRF][10/10/2011] (.Swearware - ComboFix NSIS Installer.) -- C:\Documents and Settings\Sylvie Roussin\Bureau\ComboFix.exe [4247113] [MD5.645A8F39A10306D50382EB49A6C49AAB] [sPRF][10/10/2011] (...) -- C:\Documents and Settings\Sylvie Roussin\Bureau\rkill.com [1008092] [MD5.645A8F39A10306D50382EB49A6C49AAB] [sPRF][10/10/2011] (...) -- C:\Documents and Settings\Sylvie Roussin\Bureau\rkill.exe [1008092] [MD5.D2D7404AB5F8010CDF7C198886ACC183] [sPRF][11/10/2011] (...) -- C:\Documents and Settings\Sylvie Roussin\Bureau\SecurityCheck.exe [869194] [MD5.13B72ACE44541BF3A6D69619FFEB13D3] [sPRF][13/10/2011] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.3 r183.) -- C:\Documents and Settings\Sylvie Roussin\Bureau\uninstall_flash_player.exe [243872] [MD5.608AD4EA0BB5090C96BD5EFE18AC0004] [sPRF][13/10/2011] (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Sylvie Roussin\Bureau\ZHPDiag2.exe [2563773] [MD5.2E26C99DD0B0CFA1C33FC8548ECEDB14] [sPRF][31/03/2008] (.Dictao SA - Module de signature AdSignerADP.) -- C:\WINDOWS\Downloaded Program Files\AdSignerADP.dll [392528] [MD5.792E5CFA374A29BFA21863A82BA4654F] [sPRF][31/03/2008] (.Dictao SA - Module de vérification de signature AdSignerADP.) -- C:\WINDOWS\Downloaded Program Files\AdVerifierADP.dll [261456] [MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [sPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.dll [24576] [MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [sPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\WINDOWS\Downloaded Program Files\dwusplay.exe [196608] [MD5.A9F8AB66D9D05A13843623EE6B92D259] [sPRF][13/04/2007] (.Microsoft - Uno Messenger.) -- C:\WINDOWS\Downloaded Program Files\GAME_UNO1.dll [382344] [MD5.6F88F1DE97B7BA6E2BE4DC29AEEACF0D] [sPRF][27/07/2004] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\WINDOWS\Downloaded Program Files\isusweb.dll [323584] [MD5.8945CCA5FC4F25168E8B6F401EFAF51F] [sPRF][22/02/2007] (.Microsoft Corporation - Zone.com Stats Client for MSN Messenger.) -- C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll [304544] [MD5.D2FB109C3F0DAAAA4A73E5921656DB3E] [sPRF][20/06/2006] (.Microsoft® Corporation - MSN Photo Upload Tool.) -- C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll [379704] [MD5.F06A42348DAFD569A82DF4A61F57B8E4] [sPRF][20/06/2006] (.Microsoft® Corporation - MSN Photo Upload Tool.) -- C:\WINDOWS\Downloaded Program Files\PURen-us.dll [117560] [MD5.732CACA8E848F6E721B093E51FC50B1D] [sPRF][09/01/2007] (.Microsoft® Corporation - Outil MSN Téléchargement de photos.) -- C:\WINDOWS\Downloaded Program Files\PURfr-fr.dll [110592] ~ Scan Files in 00mn 06s ---\\ Scan Additionnel (O88) Database Version : 8707 - (05/10/2011) Clés trouvées (Keys found) : 23 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 4 Fichiers trouvés (Files found) : 0 [HKLM\Software\Classes\AppID\DiscoveryHelper.DLL] =>PUP.BearShare [HKLM\Software\Classes\AppID\GIFAnimator.DLL] =>PUP.BearShare [HKLM\Software\Classes\AppID\iMesh.exe] =>PUP.iMesh [HKLM\Software\Classes\AppID\IMTrProgress.DLL] =>PUP.BearShare [HKLM\Software\Classes\AppID\IMWeb.DLL] =>PUP.BearShare [HKLM\Software\Classes\AppID\WMHelper.DLL] =>PUP.BearShare [HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask.com Search Assistant] =>Toolbar.Ask [HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Imesh] =>PUP.iMesh [HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery] =>PUP.iMesh [HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery.1] =>PUP.iMesh [HKLM\Software\Classes\iMesh.AudioCD] =>PUP.iMesh [HKLM\Software\Classes\iMesh.Device] =>PUP.iMesh [HKLM\Software\Classes\iMesh.file] =>PUP.iMesh [HKLM\Software\Classes\iMeshIEHelper.DNSGuard] =>PUP.iMesh [HKLM\Software\Classes\iMeshIEHelper.DNSGuard.1] =>PUP.iMesh [HKLM\Software\Classes\imweb.imwebcontrol] =>PUP.iMesh [HKCU\Software\DataMngr] =>Adware.Bandoo [HKLM\Software\DataMngr] =>Adware.Bandoo [HKCU\Software\iMesh] =>PUP.iMesh [HKLM\Software\iMesh] =>PUP.iMesh [HKLM\Software\iMeshMediabarTB] =>PUP.iMesh [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar] =>Toolbar.Conduit [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Imesh] =>PUP.iMesh C:\Program Files\iMesh Applications =>PUP.iMesh C:\Documents and Settings\Sylvie Roussin\Application Data\imeshbandmltbpi =>PUP.iMesh C:\Documents and Settings\Sylvie Roussin\Local Settings\Application Data\iMesh =>PUP.iMesh ~ Scan Additionnel in 00mn 29s ---\\ Recherche détournement de DNS routeur (O89) Serveur : livebox.home Address: 192.168.1.1 Nom : www.l.google.com Addresses: 209.85.148.105, 209.85.148.147, 209.85.148.106, 209.85.148.99 209.85.148.103, 209.85.148.104 Aliases: www.google.fr, www.google.com ~ Scan DNS in 00mn 03s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 13/10/2011 108289 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 13/10/2011 185089 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 13/10/2011 55144 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 13/10/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SS - | Demand 13/10/2011 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\System32\dmadmin.exe SR - | Auto 13/10/2011 238952 | (FsUsbExService) . (.Teruten.) - C:\WINDOWS\system32\FsUsbExService.exe SS - | Auto 13/10/2011 135664 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 13/10/2011 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Auto 13/10/2011 183280 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Auto 13/10/2011 135168 | (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe SS - | Demand 13/10/2011 73728 | (IDriverT) . (.Macrovision Corporation.) - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe SR - | Demand 13/10/2011 821608 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 13/10/2011 153376 | (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SR - | Auto 13/10/2011 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe SR - | Auto 13/10/2011 143427 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe SS - | Auto 13/10/2011 1055872 | (Orange update Core Service) . (.France Telecom SA.) - C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe SS - | Demand 13/10/2011 430592 | (ServiceLayer) . (.Nokia..) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe SR - | Auto 13/10/2011 602392 | (YahooAUService) . (.Yahoo! Inc..) - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe ~ Scan Services in 00mn 04s ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Sylvie Roussin at 13/10/2011 13:50:21 device: opened successfully user: MBR read successfully Disk trace: called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x865EB4D0]<< 1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x86F6E030] 3 CLASSPNP[0xF75F2FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\0000007e[0x86F62908] 5 ACPI[0xF7468620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> [0x86FCB030] \Driver\iaStor[0x86616C10] -> IRP_MJ_CREATE -> 0x865EB4D0 error: Read Un périphérique attaché au système ne fonctionne pas correctement. kernel: MBR read successfully user & kernel MBR OK ~ Scan MBR in 00mn 06s ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Sylvie Roussin at 13/10/2011 13:50:23 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ Scan MBR in 00mn 08s End of the scan (1538 lines in 07mn 50s)(0)
  25. Brylama
    un autre problème s'impose!! Je ne peux plus envoyer mon rapport avec les navigateurs Safari et IE!! Ils ne peuvent pas me disent il! Que faire? Il reste 1/3 du rapport à vous faire parvenir Je réessaierai dans un autre moment!! C'est peut-être une sécurité vue le pavé que je dois copier-coller?!! Cordialement, Brylama En outre ce message a bien voulu partir! Etonnant, non?
×
×
  • Créer...