ghostfear

up

bah voila c'etais les probleme que j'avais que j'ai detailé et suivi les procedures si ses bon je vous remercie beaucoup mais c'est vrai qu'il y a certain anomalie que j'ai eu et je sais pas si c'est reglez les piratage subit de mon facebook vous avez rien trouvez d'anormale? dans mes fichiers. j'ai egalement d'autre ordi branchez sur mon reseau peu etre que ca vien aussi de la? je vs est postez le probleme de mon ordi portable aussi merci beaucoup de votre aide

je crois avoir reussit se que vous m'avez demandez voila le rapport merci Rapport de ZHPFix v1.12.3111 par Nicolas Coolman, Update du 29/06/2010 Run by Fousseine at 01/07/2010 12:56:38 Web site : ZHPFix Fix de rapport Contact : nicolascoolman@yahoo.fr Fichier Registre : Clé du Registre : O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe => Clé supprimée avec succès Valeur du Registre : O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe => Valeur supprimée avec succès O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java™ Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe => Valeur supprimée avec succès O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe => Valeur absente O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java™ Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe => Valeur absente Fichier : c:\program files (x86)\google\googletoolbarnotifier\googletoolbarnotifier.exe => Fichier supprimé au reboot c:\program files (x86)\common files\java\java update\jusched.exe => Fichier supprimé au reboot c:\program files (x86)\google\update\googleupdate.exe => Fichier supprimé au reboot c:\windows\tasks\googleupdatetaskmachinecore.job => Supprimé et mis en quarantaine c:\windows\tasks\googleupdatetaskmachineua.job => Supprimé et mis en quarantaine Récapitulatif : Clé du Registre : 1 Valeur du Registre : 4 Fichier : 5 End of the scan

bonjour quand j'appuie sur le grand H bleu rien ne se passe il supprime pas le rapport que faire ? merci

j'ai finalement trouvez le bon programme dans programme files et voici les resultat merci de votre aide Rapport de ZHPDiag v1.26.07 par Nicolas Coolman, Update du 29/06/2010 Run by Fousseine at 30/06/2010 18:31:11 Web site : ZHPDiag Outil de diagnostic Contact : nicolascoolman@yahoo.fr ---\\ Web Browser MSIE: Internet Explorer v8.0.7600.16385 ---\\ System Information Platform : Windows 7 Ultimate (6.1.7600) Processor: Intel64 Family 6 Model 15 Stepping 13, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 2047 MB (55% free) System drive C: has 151 GB (64%) free of 233 GB ---\\ Logged in mode Computer Name: FOUSSEINE-PC User Name: Fousseine All Users Names: HomeGroupUser$, Fousseine, Administrateur, Unselected Option: None Logged in as Administrator ---\\ DOS/Devices A:\ Floppy drive, Flash card reader, USB Key (Not Inserted) C:\ Hard drive, Flash drive, Thumb drive (Free 151 Go of 233 Go) D:\ CD-ROM drive (Not Inserted) E:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK ---\\ Processus lancés [MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [209153] [MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040] [MD5.17F7F4354DE6CAA5B45F99A5CAFBE3E5] - (.PC Tools - PC Tools Tray Application.) -- C:\Program Files (x86)\Spyware Doctor\pctsTray.exe [1243088] [MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408] [MD5.70B6D0C45256B688B7DBC10E922FB402] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [26192168] [MD5.EA6EADF6314E43783BA8EEE79F93F73C] - (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe [1173504] [MD5.0FA760BF380B08D0B67B5507CD8B32AA] - (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe [97280] [MD5.3D4C717B5901ABEED6A6EEA5DBA6F4E1] - (.Avira GmbH - Firewall NT service process.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [388865] [MD5.03CB8AEDDAE50558ABC53C297E758BB8] - (.Avira GmbH - Antivirus MailScanner Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe [194817] [MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [108289] [MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [185089] [MD5.E8A3FA8AB699F5A4E4F75F60502D17AC] - (.Avira GmbH - AntiVir WebGuard Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.exe [434945] [MD5.C78655BC80301D76ED4FEF1C1EA40A7D] - (.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe [27136] [MD5.21FA3E51618FF8E2F4B29964ABC5884F] - (.Threat Expert Ltd. - Browser Defender Update Service.) -- C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe [112592] [MD5.C5A75EB48E2344ABDC162BDA79E16841] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [130384] [MD5.C6F9AF94DCD58122A4D7E89DB6BED29D] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [138576] [MD5.F02A533F517EB38333CB12A9E8963773] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176] [MD5.0793F40B9B8A1BDD266296409DBD91EA] - (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe [31232] [MD5.E8854048DFBF245F4F0B7009E49C7EF9] - (.PC Tools - PC Tools Auxiliary Service.) -- C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe [358600] [MD5.4E28D7B4285A1B3D0EC212D9BD0FF4BF] - (.PC Tools - PC Tools Security Service.) -- C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe [1141200] [MD5.89E8550C5862999FCF482EA562B0E98E] - (.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\System32\spoolsv.exe [558080] [MD5.913D843498553A1BC8F8DBAD6358E49F] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\Windows\system32\sppsvc.exe [3524608] [MD5.AD31942BDF3D594C404874613BC2FE4D] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) -- C:\Windows\system32\SearchIndexer.exe [593408] ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=userinit.exe F2 - REG:system.ini: Shell=explorer.exe ---\\ Pages de recherche d'Internet Explorer (R1) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing ---\\ Internet Explorer URLSearchHook (R3) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\SysWOW64\ieframe.dll ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} . (.Threat Expert Ltd. - Browser Defender Toolbar.) -- C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll ---\\ Applications démarrées automatiquement par le registre (O4) O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [iSTray] . (.PC Tools - PC Tools Tray Application.) -- C:\Program Files (x86)\Spyware Doctor\pctsTray.exe O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKLM\..\Wow6432Node\Run: [iSTray] . (.PC Tools - PC Tools Tray Application.) -- C:\Program Files (x86)\Spyware Doctor\pctsTray.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - Global Startup: IMVU.lnk . (.Pas de propriétaire - Pas de description.) -- C:\Users\Fousseine\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - (.not file.) - https:\\fpdownload.macromedia.com\get\shockwave\cabs\flash\swflash.cab ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Avira Pare-feu (AntiVirFirewallService) . (.Avira GmbH - Firewall NT service process.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) . (.Avira GmbH - Antivirus MailScanner Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) . (.Avira GmbH - AntiVir WebGuard Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.exe O23 - Service: Browser Defender Update Service (Browser Defender Update Service) . (.Threat Expert Ltd. - Browser Defender Update Service.) - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: C:\Windows\system32\samsrv.dll (SamSs) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\lsass.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) . (.PC Tools - PC Tools Auxiliary Service.) - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) . (.PC Tools - PC Tools Security Service.) - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe O23 - Service: C:\Windows\system32\spoolsv.exe (Spooler) . (.Pas de propriétaire - Pas de description.) - C:\Windows\System32\spoolsv.exe O23 - Service: C:\Windows\system32\sppsvc.exe (sppsvc) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\sppsvc.exe O23 - Service: C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (WMPNetworkSvc) . (.Pas de propriétaire - Pas de description.) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\regutils.dll O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Pas de propriétaire - Pas de description.) -- "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.1 r53.) -- C:\Windows\SysWOW64\Macromed\Flash\Flash10h.ocx ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: avfwot (avfwot) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\avfwot.sys O41 - Driver: (blbdrive) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\blbdrive.sys O41 - Driver: Pilote de CD-ROM (cdrom) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\csc.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\Drivers\dfsc.sys O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\discache.sys O41 - Driver: Pilote BIOS de gestion de systèmes Microsoft (mssmbios) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\mssmbios.sys O41 - Driver: NetBIOS Interface (NetBIOS) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\rdprefmp.sys O41 - Driver: Pilote de port série (Serial) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\serial.sys O41 - Driver: Pilote de périphérique terminal (TermDD) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: WFP Lightweight Filter (WfpLwf) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\DRIVERS\wfplwf.sys O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Pas de propriétaire - Pas de description.) - C:\Windows\system32\drivers\ws2ifsl.sys ---\\ Logiciels installés (O42) O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] O42 - Logiciel: Avira Premium Security Suite - (.Avira GmbH.) [HKLM] O42 - Logiciel: Browser Defender 2.0.6.15 - (.Threat Expert Ltd..) [HKLM] O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] O42 - Logiciel: IMVU Avatar Chat Software - (.Pas de propriétaire.) [HKCU] O42 - Logiciel: Java 6 Update 20 - (.Sun Microsystems, Inc..) [HKLM] O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] O42 - Logiciel: OpenOffice.org 3.2 - (.OpenOffice.org.) [HKLM] O42 - Logiciel: Security Task Manager 1.7h - (.Neuber GmbH.) [HKLM] O42 - Logiciel: Skype™ 4.2 - (.Skype Technologies S.A..) [HKLM] O42 - Logiciel: Spyware Doctor 7.0 - (.PC Tools.) [HKLM] O42 - Logiciel: TeamSpeak 2 RC2 - (.Dominating Bytes Design.) [HKLM] O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM] ---\\ HKCU & HKLM Software Keys [HKCU\Software\AppDataLow] [HKCU\Software\Avira] [HKCU\Software\Blizzard Entertainment] [HKCU\Software\Classes] [HKCU\Software\Google] [HKCU\Software\IMVU] [HKCU\Software\JavaSoft] [HKCU\Software\Macromedia] [HKCU\Software\Netscape] [HKCU\Software\Neuber GbR] [HKCU\Software\OpenOffice.org] [HKCU\Software\PCTools] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Skype] [HKCU\Software\Threat Expert] [HKCU\Software\Trolltech] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\YahooPartnerToolbar] [HKLM\Software\Avira] [HKLM\Software\Blizzard Entertainment] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Google] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Licenses] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\ODBC] [HKLM\Software\OpenOffice.org] [HKLM\Software\PCTools] [HKLM\Software\PKR] [HKLM\Software\Policies] [HKLM\Software\RegisteredApplications] [HKLM\Software\Skype] [HKLM\Software\Sun Microsystems] [HKLM\Software\Threat Expert] [HKLM\Software\TrendMicro] [HKLM\Software\VideoLAN] [HKLM\Software\WinRAR] [HKLM\Software\Windows] [HKLM\Software\X-AVCSD] ---\\ Contenu des dossiers Fichiers Communs (O43) O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Avira O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\CCleaner O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Java O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\JRE O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSBuild O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\OpenOffice.org 3 O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Security Task Manager O43 - CFD:Common File Directory R---D- C:\Program Files (x86)\Skype O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Spyware Doctor O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Teamspeak2_RC2 O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Trend Micro O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VideoLAN O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WinRAR O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\World of Warcraft O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Blizzard Entertainment O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\PC Tools O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Skype O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.00000000000000000000000000000000] - 30/06/2010 - 17:28:54 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log [1927769] O44 - LFC:[MD5.1F4D3307B19D4B3DA24E48CDEFBC993A] - 30/06/2010 - 17:01:08 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.4807266D09BA135E916B3D27851D58D5] - 30/06/2010 - 13:49:42 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [14816] O44 - LFC:[MD5.4807266D09BA135E916B3D27851D58D5] - 30/06/2010 - 13:49:42 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [14816] O44 - LFC:[MD5.9335326CA92C906D489ADB60CFD58079] - 30/06/2010 - 13:46:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700] O44 - LFC:[MD5.5CDCB5C88E5E5DC2E23EFD6875D9C289] - 30/06/2010 - 13:46:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc009.dat [106190] O44 - LFC:[MD5.7200F379AF0C10D38B3787F2AFED3ACB] - 30/06/2010 - 13:46:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfc00C.dat [130548] O44 - LFC:[MD5.82712FEA232C9C18EF47CFE9DBE6022C] - 30/06/2010 - 13:46:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh009.dat [615810] O44 - LFC:[MD5.D6A899180FEE3FA3971CB787CB8ECBAD] - 30/06/2010 - 13:46:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\perfh00C.dat [704242] O44 - LFC:[MD5.25EFD638FC68AD4ABEAF8B8D6D439214] - 30/06/2010 - 13:41:49 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setupact.log [3976] O44 - LFC:[MD5.571CC4710AFB12759D40396B7D0735A6] - 29/06/2010 - 15:12:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\MEMORY.DMP [448270927] O44 - LFC:[MD5.8DE1BF776D90D4C63C678E7DFDF853CD] - 25/06/2010 - 15:30:45 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\BDTSupport.dll [767952] O44 - LFC:[MD5.F1E27BBD9B6B2CCA4575F8DFD742E0F6] - 25/06/2010 - 15:30:44 ---A- . (.PC Tools - SG Detection Tool.) -- C:\Windows\SGDetectionTool.dll [149456] O44 - LFC:[MD5.52303DAC7EF59B3B167B0878A4924525] - 25/06/2010 - 15:30:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\IDB.zip [131] O44 - LFC:[MD5.87DCBB13F42F40F0D3BB2B33686F444A] - 25/06/2010 - 15:30:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\RegISSImport.xml [879] O44 - LFC:[MD5.41688C3529C21CA3832F7CA8B6370094] - 25/06/2010 - 15:30:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\RegSDImport.xml [882] O44 - LFC:[MD5.1741DAA8A4C86963638A0468C34DC71E] - 25/06/2010 - 15:30:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\UDB.zip [1152444] O44 - LFC:[MD5.F8025400E8F69D1C29ABACEBC5D233F9] - 25/06/2010 - 15:30:44 ---A- . (.Threat Expert Ltd. - Browser Defender Core.) -- C:\Windows\PCTBDCore.dll [1636304] O44 - LFC:[MD5.9A10ADF6CE5D50FD0C905835B8B4B2FF] - 25/06/2010 - 15:30:44 ---A- . (.Threat Expert Ltd. - Browser Defender Resources File.) -- C:\Windows\PCTBDRes.dll [165840] O44 - LFC:[MD5.316EF511E1FE9588C36F326CA5EEF3E6] - 25/06/2010 - 15:27:01 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\PFRO.log [1280] O44 - LFC:[MD5.767EE8126468D91C5119F25714D78DAF] - 24/06/2010 - 02:01:28 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\SysNative\dfshim.dll [1942856] O44 - LFC:[MD5.767EE8126468D91C5119F25714D78DAF] - 24/06/2010 - 02:01:28 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\System32\dfshim.dll [1130824] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 21/06/2010 - 00:00:05 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.E3732F9F6AAD4BFD519519E4697A0997] - 11/06/2010 - 02:22:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysNative\FNTCACHE.DAT [289296] O44 - LFC:[MD5.628D70483747CB6F70A2372937865A13] - 10/06/2010 - 16:22:25 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\SysNative\atmlib.dll [46080] O44 - LFC:[MD5.628D70483747CB6F70A2372937865A13] - 10/06/2010 - 16:22:25 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [34304] O44 - LFC:[MD5.3C9EBFF68D64090FCCB9971ACA6D9E18] - 10/06/2010 - 16:22:25 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\SysNative\atmfd.dll [366080] O44 - LFC:[MD5.3C9EBFF68D64090FCCB9971ACA6D9E18] - 10/06/2010 - 16:22:25 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [293888] ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:Last File Created Prefetch 24/06/2010 - 02:20:09 ---A- C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf O45 - LFCP:Last File Created Prefetch 26/06/2010 - 10:20:06 ---A- C:\Windows\Prefetch\SKYPENAMES2.EXE-007BB088.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 03:32:13 ---A- C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 13:26:06 ---A- C:\Windows\Prefetch\CHECKT.EXE-B76954C9.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 13:40:26 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-3FC30337.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 13:40:50 ---A- C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 13:40:51 ---A- C:\Windows\Prefetch\PfSvPerfStats.bin O45 - LFCP:Last File Created Prefetch 30/06/2010 - 13:44:07 ---A- C:\Windows\Prefetch\FLASHUTIL10H_ACTIVEX.EXE-4016050A.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 13:44:37 ---A- C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 13:44:39 ---A- C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 14:06:07 ---A- C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 14:42:53 ---A- C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 15:57:33 ---A- C:\Windows\Prefetch\UPDATE.EXE-0D8A637E.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 16:28:06 ---A- C:\Windows\Prefetch\AgGlFaultHistory.db O45 - LFCP:Last File Created Prefetch 30/06/2010 - 16:28:06 ---A- C:\Windows\Prefetch\AgGlFgAppHistory.db O45 - LFCP:Last File Created Prefetch 30/06/2010 - 16:28:06 ---A- C:\Windows\Prefetch\AgGlGlobalHistory.db O45 - LFCP:Last File Created Prefetch 30/06/2010 - 16:28:06 ---A- C:\Windows\Prefetch\AgRobust.db O45 - LFCP:Last File Created Prefetch 30/06/2010 - 16:36:01 ---A- C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 16:36:10 ---A- C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 16:56:45 ---A- C:\Windows\Prefetch\Layout.ini O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:00:00 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:00:31 ---A- C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:00:31 ---A- C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:01:08 ---A- C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:01:11 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:01:16 ---A- C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:01:18 ---A- C:\Windows\Prefetch\AgCx_SC1.db.trx O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:01:25 ---A- C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:01:34 ---A- C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:02:19 ---A- C:\Windows\Prefetch\AgCx_SC1.db O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:04:39 ---A- C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:05:49 ---A- C:\Windows\Prefetch\LAUNCHER.EXE-1A5F310E.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:06:04 ---A- C:\Windows\Prefetch\WOW.EXE-69975A65.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:08:33 ---A- C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:09:54 ---A- C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2222608488-2893044523-1001999288-1000.db O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:10:02 ---A- C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2222608488-2893044523-1001999288-1000.db O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:15:33 ---A- C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:15:54 ---A- C:\Windows\Prefetch\ZHPDIAG_1.26.TMP-657398DB.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:15:57 ---A- C:\Windows\Prefetch\ZHPDIAG_1.26.EXE-6C0C2CB2.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:15:57 ---A- C:\Windows\Prefetch\ZHPDIAG_1.26.TMP-28BA89CF.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:18:35 ---A- C:\Windows\Prefetch\RAREXTLOADER.EXE-8405D981.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:18:51 ---A- C:\Windows\Prefetch\ZHPFIX.EXE-1A4C3389.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:19:30 ---A- C:\Windows\Prefetch\IEXPLORE.EXE-4B6C9213.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:22:04 ---A- C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:24:32 ---A- C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:24:42 ---A- C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:27:11 ---A- C:\Windows\Prefetch\RUNDLL32.EXE-C0131388.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:28:02 ---A- C:\Windows\Prefetch\AVWSC.EXE-9DE67EBB.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:28:56 ---A- C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:28:56 ---A- C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:30:09 ---A- C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:30:46 ---A- C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:30:51 ---A- C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf O45 - LFCP:Last File Created Prefetch 30/06/2010 - 17:30:56 ---A- C:\Windows\Prefetch\ZHPDIAG.EXE-0D117CAF.pf ---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll ---\\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ---\\ Microsoft Windows Policies Explorer (MWPE) (O56) O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0 ---\\ Liste des Drivers Système (SDL) (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys O58 - SDL:[MD5.7A4B413614C055935567CF88A9734D38] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys O58 - SDL:[MD5.B4AD0CACBAB298671DD6F6EF7E20679D] - 14/07/2009 - 02:52:21 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys O58 - SDL:[MD5.03B7145C889603537E9FFEABB1AD1089] - 29/03/2005 - 00:30:38 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\system32\drivers\ASACPI.sys O58 - SDL:[MD5.4A7BECD491F35B7133276F9EFAD08F29] - 24/02/2009 - 11:06:20 ---A- . (.Avira GmbH - Packet filtering kernel driver ( NDIS IM ).) -- C:\Windows\system32\drivers\avfwim.sys O58 - SDL:[MD5.D07D1B99DA80B73D803A559D472A8308] - 08/05/2009 - 12:13:50 ---A- . (.Avira GmbH - TDI filtering kernel driver.) -- C:\Windows\system32\drivers\avfwot.sys O58 - SDL:[MD5.C30B5FC0ADCDFBA7668E99BAF0CBF58E] - 14/05/2010 - 18:28:23 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys O58 - SDL:[MD5.D83EFB6FD45DF9D55E9A1AFC63640D50] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys O58 - SDL:[MD5.B63168E23AF172DD728C60F270F30D48] - 10/06/2009 - 21:34:21 ---A- . (.Atheros Communications, Inc. - Atheros L2 Fast Ethernet Controller ndis miniport driver.) -- C:\Windows\system32\drivers\l260x64.sys O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys O58 - SDL:[MD5.DD81FBC57AB9134CDDC5CE90880BFD80] - 10/06/2009 - 21:37:25 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 185.93.) -- C:\Windows\system32\drivers\nvlddmkm.sys O58 - SDL:[MD5.3E38712941E9BB4DDBEE00AFFE3FED3D] - 14/07/2009 - 02:48:27 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys O58 - SDL:[MD5.477DC4D6DEB99BE37084C9AC6D013DA1] - 14/07/2009 - 02:45:45 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys O58 - SDL:[MD5.3A68080572B81577791A7B19BB880DA9] - 23/09/2009 - 15:10:04 ---A- . (.PC Tools - PC Tools KDS Core Driver.) -- C:\Windows\system32\drivers\PCTCore64.sys O58 - SDL:[MD5.62A5F12EFA83487F774355E00BBB3208] - 24/09/2009 - 07:52:04 ---A- . (.PC Tools - PC Tools Generic TDI Driver.) -- C:\Windows\system32\drivers\pctgntdi64.sys O58 - SDL:[MD5.F464AB1AC9810A3264179C6E5694EB05] - 03/09/2009 - 08:44:46 ---A- . (.PC Tools - PC Tools SG Plugin Driver.) -- C:\Windows\system32\drivers\pctplsg64.sys O58 - SDL:[MD5.9D4AE8AAD5A1271662B1F82A7B3B772F] - 03/09/2009 - 07:44:48 ---A- . (.PC Tools - PC Tools WFP kernel DLL.) -- C:\Windows\system32\drivers\pctwfpfilter64.sys O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys O58 - SDL:[MD5.C2A6683C9FF46AA70E2C2092B008EDC7] - 10/10/2006 - 12:33:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\SysWOW64\drivers\ASUSHWIO.SYS O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 11/05/2009 - 08:11:52 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\SysWOW64\drivers\ssmdrv.sys ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC:Last File Created 28/06/2010 - 13:05:48 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\OOoImprovement\Settings.xcu [469] O61 - LFC:Last File Created 28/06/2010 - 13:05:50 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys [1] O61 - LFC:Last File Created 28/06/2010 - 13:05:53 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Linguistic.xcu [10020] O61 - LFC:Last File Created 28/06/2010 - 13:06:20 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Jobs.xcu [534] O61 - LFC:Last File Created 28/06/2010 - 14:05:38 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Histories.xcu [4060] O61 - LFC:Last File Created 28/06/2010 - 14:05:38 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Recovery.xcu [641] O61 - LFC:Last File Created 28/06/2010 - 14:05:38 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Views.xcu [2171] O61 - LFC:Last File Created 29/06/2010 - 04:14:35 ---A- C:\Users\Fousseine\AppData\Local\Temp\wmsetup.log [826] O61 - LFC:Last File Created 29/06/2010 - 04:27:33 ---A- C:\Users\Fousseine\AppData\Local\Temp\DD00.tmp [311760] O61 - LFC:Last File Created 29/06/2010 - 04:49:21 ---A- C:\Users\Fousseine\Downloads\taskmanager17.exe [1709408] O61 - LFC:Last File Created 29/06/2010 - 05:12:55 ---A- C:\Users\Fousseine\Downloads\registrybooster.exe [5037496] O61 - LFC:Last File Created 29/06/2010 - 14:15:11 ---A- C:\Users\Fousseine\AppData\Local\Temp\wmplog00.sqm [1436] O61 - LFC:Last File Created 29/06/2010 - 15:00:45 ---A- C:\Users\Fousseine\AppData\Local\Temp\wmplog01.sqm [1530] O61 - LFC:Last File Created 29/06/2010 - 15:03:16 ---A- C:\Users\Fousseine\AppData\Local\GDIPFONTCACHEV1.DAT [62952] O61 - LFC:Last File Created 29/06/2010 - 15:08:01 ---A- C:\Users\All Users\SecTaskMan\icn_12345db [859] O61 - LFC:Last File Created 29/06/2010 - 15:08:02 ---A- C:\Users\All Users\SecTaskMan\icn_12341rg [647] O61 - LFC:Last File Created 29/06/2010 - 15:09:03 ---A- C:\Users\All Users\SecTaskMan\_avgnt35673104 [15456] O61 - LFC:Last File Created 29/06/2010 - 15:09:11 ---A- C:\Users\All Users\SecTaskMan\_GoogleToolbar_323FF23EB4 [16741] O61 - LFC:Last File Created 29/06/2010 - 15:10:19 ---A- C:\Users\All Users\SecTaskMan\_swg424E6E44 [141074] O61 - LFC:Last File Created 29/06/2010 - 15:10:32 ---A- C:\Users\All Users\SecTaskMan\_jp2ssv216AA320 [6490] O61 - LFC:Last File Created 29/06/2010 - 15:10:53 ---A- C:\Users\All Users\SecTaskMan\_soffice34714871 [55841] O61 - LFC:Last File Created 29/06/2010 - 15:11:13 ---A- C:\Users\All Users\SecTaskMan\_soffice32733271 [56051] O61 - LFC:Last File Created 29/06/2010 - 15:22:46 ---A- C:\Users\All Users\SecTaskMan\_10 [51] O61 - LFC:Last File Created 29/06/2010 - 15:22:47 ---A- C:\Users\All Users\SecTaskMan\_ audiodg - Services 9F50 [76] O61 - LFC:Last File Created 29/06/2010 - 15:26:03 ---A- C:\Users\Fousseine\AppData\Local\Temp\6FC2.tmp [311760] O61 - LFC:Last File Created 29/06/2010 - 16:42:06 ---A- C:\Users\Fousseine\Downloads\HJTInstall.exe [812344] O61 - LFC:Last File Created 29/06/2010 - 19:37:34 ---A- C:\Users\Fousseine\AppData\Roaming\teamspeak2\imagecache.ini [0] O61 - LFC:Last File Created 29/06/2010 - 22:20:37 ---A- C:\Users\Fousseine\AppData\Local\Temp\AUCHECK_CORE.txt [898] O61 - LFC:Last File Created 29/06/2010 - 22:20:37 ---A- C:\Users\Fousseine\AppData\Local\Temp\AUCHECK_PARSER.txt [588] O61 - LFC:Last File Created 29/06/2010 - 22:21:05 ---A- C:\Users\Fousseine\AppData\Local\Temp\OutofProcReport25716588.txt [1664] O61 - LFC:Last File Created 30/06/2010 - 00:42:46 ---A- C:\Users\Fousseine\AppData\Local\Temp\StructuredQuery.log [2237] O61 - LFC:Last File Created 30/06/2010 - 02:38:52 ---A- C:\Users\All Users\SecTaskMan\_pctgmhk2A79421A [8560] O61 - LFC:Last File Created 30/06/2010 - 02:39:07 ---A- C:\Users\All Users\SecTaskMan\_pctsSvc2F8B69E1 [97967] O61 - LFC:Last File Created 30/06/2010 - 03:29:01 ---A- C:\Users\Fousseine\AppData\Local\Temp\wmplog02.sqm [1448] O61 - LFC:Last File Created 30/06/2010 - 03:29:38 ---A- C:\Users\Fousseine\AppData\Local\Temp\wmplog03.sqm [1304] O61 - LFC:Last File Created 30/06/2010 - 03:31:58 ---A- C:\Users\Fousseine\AppData\Local\Temp\wmplog04.sqm [1460] O61 - LFC:Last File Created 30/06/2010 - 03:40:16 ---A- C:\Users\Fousseine\AppData\Local\Temp\wmplog05.sqm [1448] O61 - LFC:Last File Created 30/06/2010 - 13:24:24 ---A- C:\Users\Fousseine\AppData\Local\Temp\Blizzard Installer Bootstrap - 04c36d3c\Installer.exe [3026296] O61 - LFC:Last File Created 30/06/2010 - 13:40:25 --HA- C:\Users\Fousseine\AppData\Local\IconCache.db [1937899] O61 - LFC:Last File Created 30/06/2010 - 13:42:09 ---A- C:\Users\Fousseine\AppData\Roaming\IMVUClient\ui\profile\compreg.dat [137888] O61 - LFC:Last File Created 30/06/2010 - 13:42:09 ---A- C:\Users\Fousseine\AppData\Roaming\IMVUClient\ui\profile\prefs.js [367] O61 - LFC:Last File Created 30/06/2010 - 13:42:09 ---A- C:\Users\Fousseine\AppData\Roaming\IMVUClient\ui\profile\xpti.dat [108059] O61 - LFC:Last File Created 30/06/2010 - 13:42:10 ---A- C:\Users\Fousseine\AppData\Roaming\IMVUClient\ui\profile\permissions.sqlite [2048] O61 - LFC:Last File Created 30/06/2010 - 13:42:10 ---A- C:\Users\Fousseine\AppData\Roaming\IMVUClient\ui\profile\places.sqlite [135168] O61 - LFC:Last File Created 30/06/2010 - 13:42:10 ---A- C:\Users\Fousseine\AppData\Roaming\IMVUClient\ui\profile\places.sqlite-journal [0] O61 - LFC:Last File Created 30/06/2010 - 13:42:13 ---A- C:\Users\Fousseine\AppData\Roaming\IMVUClient\ui\profile\XPC.mfl [1633380] O61 - LFC:Last File Created 30/06/2010 - 13:42:13 ---A- C:\Users\Fousseine\AppData\Roaming\IMVU\IMVULog.log [1514942] O61 - LFC:Last File Created 30/06/2010 - 13:42:13 ---A- C:\Users\Fousseine\AppData\Roaming\IMVU\cpp.log [4069] O61 - LFC:Last File Created 30/06/2010 - 13:42:13 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\.lock [149] O61 - LFC:Last File Created 30/06/2010 - 13:42:13 ---A- C:\Users\Fousseine\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Common.xcu [692] O61 - LFC:Last File Created 30/06/2010 - 13:42:14 ---A- C:\Users\Fousseine\AppData\Roaming\IMVU\IMVUQualityAgent.log [3640] O61 - LFC:Last File Created 30/06/2010 - 13:42:27 ---A- C:\Users\Fousseine\AppData\Roaming\Skype\shared_dynco\dc.db [1130496] O61 - LFC:Last File Created 30/06/2010 - 13:42:27 ---A- C:\Users\Fousseine\AppData\Roaming\Skype\shared_dynco\dc.db-journal [689984] O61 - LFC:Last File Created 30/06/2010 - 13:42:57 ---A- C:\Users\Fousseine\AppData\Roaming\Skype\shared.xml [42582] O61 - LFC:Last File Created 30/06/2010 - 13:43:57 ---A- C:\Users\Fousseine\AppData\Local\Temp\3024.tmp [311760] O61 - LFC:Last File Created 30/06/2010 - 13:46:57 ---A- C:\Users\Fousseine\AppData\Local\Temp\jusched.log [7403] O61 - LFC:Last File Created 30/06/2010 - 17:06:34 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\36\b2\36b27cd911b33c61730a8b82c8b2495fd16e8024fc3b2dde08861c77a852941c.auth [20228] O61 - LFC:Last File Created 30/06/2010 - 17:06:34 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\8f\52\8f52906a2c85b416a595702251570f96d3522f39237603115f2f1ab24962043c.auth [65796] O61 - LFC:Last File Created 30/06/2010 - 17:06:36 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\39\4b\394b4f6e87a7e311d0734cf699b01cac4f130b44b72cd8b07f05426c0a58efbe.pfty [5824] O61 - LFC:Last File Created 30/06/2010 - 17:06:36 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\5f\27\5f27434017c2518f2798517187639b317dd034006e3f5ee02202bf9fd32d751c.pfty [2907] O61 - LFC:Last File Created 30/06/2010 - 17:06:36 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\77\c2\77c2c466881e1d23e875831e46c0b428be9b05d78746a0799131837fee2b6bd2.pfty [23400] O61 - LFC:Last File Created 30/06/2010 - 17:06:37 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\20\33\2033b2596ac7755ec3453f1c52350db6c60bcad939016ef56abb337bf331ceaf.pfty [33056] O61 - LFC:Last File Created 30/06/2010 - 17:06:37 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\47\15\47158bbe378410f0fa62478de3557e88661906d69d16c8291fe16540660131d3.pfty [26843] O61 - LFC:Last File Created 30/06/2010 - 17:06:37 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\72\d9\72d9d6d08acda698df757e4e4785662b57be1ad479a76f21e110af7a48dfa155.pfty [42103] O61 - LFC:Last File Created 30/06/2010 - 17:06:37 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\c8\75\c8751a83d63b072759e6e9c9e60b9ed48d473e534b605b72864c7d2df194b034.pfty [53844] O61 - LFC:Last File Created 30/06/2010 - 17:06:37 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\e1\71\e171890bdbfe7a6b2f945acd9dc0f4b835a2e61d43877dda604a78736629dbbd.pfty [31394] O61 - LFC:Last File Created 30/06/2010 - 17:06:37 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\Cache\e7\e5\e7e5abaa4c2eeb373c15a36a2da4e924380539a8605901e4d14b85336e765bd0.pfty [57326] O61 - LFC:Last File Created 30/06/2010 - 17:08:44 ---A- C:\Users\All Users\Blizzard Entertainment\Battle.net\index [2138] O61 - LFC:Last File Created 30/06/2010 - 17:14:30 ---A- C:\Users\Fousseine\Downloads\ZHPDiag_1.26.exe [1709743] O61 - LFC:Last File Created 30/06/2010 - 23:03:54 ---A- C:\Users\Fousseine\AppData\Roaming\teamspeak2\TeamSpeak.Conf [6299] O61 - LFC:Last File Created 30/06/2010 - 23:13:55 ---A- C:\Users\Fousseine\Downloads\pc-decrapifier-2.2.5.exe [1346612] ---\\ Liste des outils de nettoyage (LATC) (O63) O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.) ---\\ Liste des services Legacy (LALS) (O64) O64 - Services: CurCS - C:\Windows\system32\drivers\afd.sys (AFD) .(.Pas de propriétaire - Pas de description.) - LEGACY_AFD O64 - Services: CurCS - C:\Windows\system32\DRIVERS\avfwot.sys - avfwot (avfwot) .(.Pas de propriétaire - Pas de description.) - LEGACY_AVFWOT O64 - Services: CurCS - C:\Windows\system32\DRIVERS\avgntflt.sys - avgntflt (avgntflt) .(.Pas de propriétaire - Pas de description.) - LEGACY_AVGNTFLT O64 - Services: CurCS - Beep - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP O64 - Services: CurCS - C:\Windows\system32\browser.dll (bowser) .(.Pas de propriétaire - Pas de description.) - LEGACY_BOWSER O64 - Services: CurCS - C:\Windows\system32\DRIVERS\cdfs.sys - CD/DVD File System Reader (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS O64 - Services: CurCS - C:\Windows\system32\clfs.sys (CLFS) .(.Pas de propriétaire - Pas de description.) - LEGACY_CLFS O64 - Services: CurCS - C:\Windows\system32\Drivers\cng.sys - CNG (CNG) .(.Pas de propriétaire - Pas de description.) - LEGACY_CNG O64 - Services: CurCS - C:\Windows\system32\cscsvc.dll (CSC) .(.Pas de propriétaire - Pas de description.) - LEGACY_CSC O64 - Services: CurCS - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Pas de propriétaire - Pas de description.) - LEGACY_DFSC O64 - Services: CurCS - C:\Windows\system32\drivers\discache.sys (discache) .(.Pas de propriétaire - Pas de description.) - LEGACY_DISCACHE O64 - Services: CurCS - C:\Windows\system32\drivers\dxgkrnl.sys - LDDM Graphics Subsystem (DXGKrnl) .(.Pas de propriétaire - Pas de description.) - LEGACY_DXGKRNL O64 - Services: CurCS - FAT12/16/32 File System Driver - FAT12/16/32 File System Driver (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Pas de propriétaire - Pas de description.) - LEGACY_FILEINFO O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_FLTMGR O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC O64 - Services: CurCS - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Pas de propriétaire - Pas de description.) - LEGACY_FVEVOL O64 - Services: CurCS - C:\Windows\system32\drivers\http.sys (HTTP) .(.Pas de propriétaire - Pas de description.) - LEGACY_HTTP O64 - Services: CurCS - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Pas de propriétaire - Pas de description.) - LEGACY_HWPOLICY O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecdd.sys - KSecDD (KSecDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD O64 - Services: CurCS - C:\Windows\system32\Drivers\ksecpkg.sys - KSecPkg (KSecPkg) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECPKG O64 - Services: CurCS - C:\Windows\system32\DRIVERS\lltdio.sys - Link-Layer Topology Discovery Mapper I/O Driver (lltdio) .(.Pas de propriétaire - Pas de description.) - LEGACY_LLTDIO O64 - Services: CurCS - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Pas de propriétaire - Pas de description.) - LEGACY_LUAFV O64 - Services: CurCS - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB10 O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Pas de propriétaire - Pas de description.) - LEGACY_MRXSMB20 O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS O64 - Services: CurCS - C:\Windows\system32\DRIVERS\msisadrv.sys - msisadrv (msisadrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSISADRV O64 - Services: CurCS - C:\Windows\system32\drivers\mup.sys (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP O64 - Services: CurCS - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - NetBIOS Interface (NetBIOS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBIOS O64 - Services: CurCS - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Pas de propriétaire - Pas de description.) - LEGACY_NETBT O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NSIPROXY O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL O64 - Services: CurCS - C:\Windows\system32\Drivers\PCTSDINJDRIVER64.sys - PCTSDInjDriver64 (PCTSDInjDriver64) .(.Pas de propriétaire - Pas de description.) - LEGACY_PCTSDINJDRIVER64 O64 - Services: CurCS - C:\Windows\system32\drivers\pcw.sys - Performance Counters for Windows Driver (pcw) .(.Pas de propriétaire - Pas de description.) - LEGACY_PCW O64 - Services: CurCS - C:\Windows\system32\drivers\peauth.sys - PEAUTH (PEAUTH) .(.Pas de propriétaire - Pas de description.) - LEGACY_PEAUTH O64 - Services: CurCS - C:\Windows\system32\drivers\pacer.sys (Psched) .(.Pas de propriétaire - Pas de description.) - LEGACY_PSCHED O64 - Services: CurCS - C:\Windows\system32\wkssvc.dll (rdbss) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDBSS O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPCDD O64 - Services: CurCS - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPENCDD O64 - Services: CurCS - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPREFMP O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rspndr.sys - Link-Layer Topology Discovery Responder (rspndr) .(.Pas de propriétaire - Pas de description.) - LEGACY_RSPNDR O64 - Services: CurCS - Security Driver - Security Driver (secdrv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SECDRV O64 - Services: CurCS - Security Processor Loader Driver - Security Processor Loader Driver (spldr) .(.Pas de propriétaire - Pas de description.) - LEGACY_SPLDR O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV O64 - Services: CurCS - C:\Windows\system32\srvsvc.dll (srv2) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRV2 O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srvnet.sys - srvnet (srvnet) .(.Pas de propriétaire - Pas de description.) - LEGACY_SRVNET O64 - Services: CurCS - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Pas de propriétaire - Pas de description.) - LEGACY_STORFLT O64 - Services: CurCS - C:\Windows\system32\drivers\tcpipreg.sys - TCP/IP Registry Compatibility (tcpipreg) .(.Pas de propriétaire - Pas de description.) - LEGACY_TCPIPREG O64 - Services: CurCS - C:\Windows\system32\DRIVERS\udfs.sys - udfs (udfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_UDFS O64 - Services: CurCS - C:\Windows\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGASAVE O64 - Services: CurCS - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLMGRX O64 - Services: CurCS - C:\Windows\system32\DRIVERS\volsnap.sys - Volumes de stockage (volsnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP O64 - Services: CurCS - C:\Windows\system32\drivers\Wdf01000.sys - Kernel Mode Driver Frameworks service (Wdf01000) .(.Pas de propriétaire - Pas de description.) - LEGACY_WDF01000 O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wfplwf.sys - WFP Lightweight Filter (WfpLwf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WFPLWF O64 - Services: CurCS - C:\Windows\system32\drivers\ws2ifsl.sys - Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) .(.Pas de propriétaire - Pas de description.) - LEGACY_WS2IFSL O64 - Services: CurCS - C:\Windows\system32\drivers\WudfPf.sys - User Mode Driver Frameworks Platform Driver (WudfPf) .(.Pas de propriétaire - Pas de description.) - LEGACY_WUDFPF ---\\ Observateur d'évènement d'application (OEA) (O66) O66 - EventLog: ID=1000 (Application Error) - (.PC Tools - PC Tools Smart Update.) -- C:\Program Files (x86)\Spyware Doctor\Update.exe O66 - EventLog: ID=1000 (Application Error) - (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\javaw.exe ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\system32\eventvwr.exe O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (SMI) (O68) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ---\\ Recherche d'infection Master Boot Record (O80) Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover Run by Fousseine at 30/06/2010 18:52:48 device: opened successfully user: MBR read successfully kernel: error reading MBR End of the scan (647 lines in 23mn 01s)

salut merci pour votre reponse , j'ai telechargez l'outil que vous m'avez demandez puis installez par contre il ne me montre ni l'outil tournevis ni l'outil recherche et pourtant il me montre les autre outils.de rapport d'analyse de quarantaine appareil photos et autre ??

up !

Bonjour j'ai un gros soucis depuis plusieur jour mon pc agis anormalement execute des tache seul , etdevien tres long je suis obligez de le reboot pour le faire revenir a la normale,plusieur exploreur.exe*32 dans les processus,et d'autre que je ne comprend pas, j'entend des clic de souris comme si j'avais lancer des page internet etc alors que je ne touche a rien,temps de chargement tres long il me dit probleme memoire alors qu'il est tres puissant comme ordi et j'ai quasi rien d'installer dessus,mon antivirus est avira antivir, j'utilise aussi ccleaner spybot pc doctor mon antivirus ne trouve que des avertissement il m'en affiche trois. Merci de m'aidez . (nota bene j'ai deja eu mon msn et mon facebook qui ont ete hacké il ont carrement bloqué mon facebook et des amis on vu ma photos sur un autre facebook avec autre nom on essayons de me retrouvez dessus )d'autre par on cherchons a quoi correspondé les processus sur le net je suis tomber sur task manager securite que jai instalé et on voulons supprime un processus caché j'ai eu droit a un plantage une pages bleu et reboot de la machine s'avais pas l'air d'etre un processus systeme pourtant! donc la j'ose plus supprimer les processus voici le rapport hijackthis Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 03:20:27, on 30/06/2010 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe C:\Program Files (x86)\Spyware Doctor\pctsTray.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin C:\Program Files (x86)\Security Task Manager\taskman.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10h_ActiveX.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe C:\Windows\SysWOW64\DllHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files (x86)\Spyware Doctor\BDT\PCTBrowserDefender.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iSTray] "C:\Program Files (x86)\Spyware Doctor\pctsTray.exe" O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU') O4 - Startup: IMVU.lnk = Fousseine\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html O13 - Gopher Prefix: O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Avira Pare-feu (AntiVirFirewallService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe O23 - Service: Avira AntiVir MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: Avira AntiVir WebGuard (AntiVirWebService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE O23 - Service: Browser Defender Update Service - Threat Expert Ltd. - C:\Program Files (x86)\Spyware Doctor\BDT\BDTUpdateService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files (x86)\Spyware Doctor\pctsSvc.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8842 bytes