laurencetarbes

mouais je crois que j'ai fait une overdose de manip de PC ces deux derniers jours lol

J'ai fait la mise à jour MBAM hier soir, tout était ok. Tant pis pour le dysfonctionnement McAfee, je flippe trop de le désinstaller, pas envie de re galérer 2 jours sur un p*!-*/! de virus. Merci encore pour tout, tu es médaille d'or de l'efficacité et de la patience !!!! Tchô !

ouiiiii c'est ça, bon plus d'inquiètude de ce côté merci merci merci beaucoup.... juste un dernier point (enfin j'espère sinon je vais devenir complètement folle lol) depuis que j'ai fait toutes ces manip, j'ai un message de windows qui apparait au demarrage : "mcafee service host a cessé de fonctionner" c'est grave docteur?

lol ouais j'ai vu ça je dois être un garçon manqué en fait j'ai lancé le truc là, enfin le scan nettoyeur (on va l'appeler Victor lol) mais soit c'est super long, soit c'est bloqué. Au lieu de la souris j'ai un rond qui tourne et la barre d'avancement du scan ne bouge pas je file sous la couette, je retenterai demain j'aurai p'être plus de chance merci encore pour ta patience bonne nuit super héros

désolée pour mon non suivi de tes consignes à la lettre, mais je ne comprends pas toujours tout : heberger un rapport je ne savais pas que c'etait un truc particulier... un peu d'indulgence pour les utilisatrices blondes pas douées avec un PC !!!! je sais les informaticiens me détestent en général lol donc encore sorry

Rapport de ZHPDiag v1.27.218 par Nicolas Coolman, Update du 31/05/2011 Run by Laurence at 01/06/2011 23:43:10 Web site : ZHPDiag Outil de diagnostic ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.19048 (Defaut) ---\\ System Information Windows Vista Home Premium Edition, 64-bit Service Pack 2 (Build 6002) Processor: Intel64 Family 6 Model 23 Stepping 7, GenuineIntel Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 8190 MB (64% free) System Restore: Activé (Enable) System drive C: has 204 GB (60%) free of 339 GB ---\\ Logged in mode Computer Name: PC-DE-LAURENCE User Name: Laurence All Users Names: Laurence, Administrateur, Unselected Option: O45,O61,O62,O65,O66,O82 Logged in as Administrator ---\\ Environnement Variables %AppData%=C:\Users\Laurence\AppData\Roaming %LocalAppData%=C:\Users\Laurence\AppData\Local %StartMenu%=C:\Users\Laurence\AppData\Roaming\Microsoft\Windows\Start Menu ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 204 Go of 339 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 244 Go of 339 Go) E:\ CD-ROM drive (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK ---\\ Recherche particulière de fichiers génériques [MD5.6B08E54A451B3F95E4109DBA7E594270] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 08:10:17.) -- C:\Windows\Explorer.exe [3079168] [MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 03:48:04.) -- C:\Windows\system32\Wininit.exe [96768] [MD5.047CDEFF94B63F0A4791372B47427B60] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/02/2011 07:21:28.) -- C:\Windows\system32\wininet.dll [916480] [MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 07:28:13.) -- C:\Windows\system32\Winlogon.exe [314368] ---\\ Processus lancés [MD5.25173C73A8E66BDCE0991643B3810BC8] - (.EgisTec Inc. - mwlDaemon Application.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [346672] [MD5.2A2551A08CF94DBE93B5A50C68648246] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [182808] [MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408] [MD5.79FE6A371BC0ACB0F59E31EE9E31EF4A] - (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files (x86)\Winamp\winampa.exe [74752] [MD5.BC442A23880FE6131B032CC2E33F4351] - (.Creative Technology Ltd. - Event Monitoring Applet.) -- C:\Windows\V0530Mon.exe [28672] [MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [275768] [MD5.89F7C30A91E5581BDF14C62AB46A2B2D] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe [255536] [MD5.E3965334E5DAC17751475D8AB8630610] - (.SPAMfighter ApS - SPAMfighter Agent.) -- C:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe [843400] [MD5.8DCED3E27B271E76743C268DBD51EEEC] - (.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Progr.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [173288] [MD5.638C728F21CCC7EC4F8517A212C34353] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840] [MD5.2B2D8EF4BE4648FC0BB91DE59D395574] - (.EgisTec Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464] [MD5.D3D3B1CFA81DD68D38362D533F443FD1] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [202024] [MD5.B62D8C47FFF285F910A4896836BCD744] - (.CyberLink Corp. - Acer Arcade Deluxe Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [156968] [MD5.16190230DB16E8E6155E21ABD1E6AEC9] - (.Mozilla Messaging - Thunderbird.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [12594352] [MD5.ABC2C67DFD48930F846934B907C3D606] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [7424000] [MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe [168960] [MD5.15D982E21248E9BE337D9B40247AF30E] - (.OpenOffice.org - OpenOffice.org 3.2.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [7418368] [MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [MD5.0DB4461BA040B442E5C801FC940761DD] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10q_ActiveX.exe [240288] [MD5.3621F2F6A733BFABDC58C97613B0166D] - (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe [116280] [MD5.C337B8A121F62B330A01D1308AF3394F] - (.Microsoft Corporation - Windows Live Messenger Companion User Eleva.) -- C:\Program Files (x86)\Windows Live\Companion\companionuser.exe [54656] [MD5.C1D36A2CBE0CEC4DF593DB1288CF586E] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe [638232] [MD5.CD94B1501F66744AE1A00668DE36BBF9] - (.Google Inc. - Google Toolbar Broker.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe [307376] [MD5.FE30E4A6C01FF9B821725DE37DAF3B98] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [657920] ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M3 - MFPP: Plugins - [Laurence] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Laurence] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Laurence] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Laurence] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Laurence] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Laurence] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.4".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll M2 - MFEP: prefs.js [Laurence - l0zoo3t9.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.1 (.Microsoft.) M2 - MFEP: prefs.js [Laurence - l0zoo3t9.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Community Toolbar v3.3.3.200 (.Conduit Ltd..) ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com R0 - HKUS\S-1-5-21-1475598093-3824319225-2932992576-1000\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Microsoft Corporation R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Microsoft Corporation R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Search Microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Bing R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll R3 - URLSearchHook: (no name) [64Bits] - {7b13ec3e-999a-4b70-b9cb-2617b8323822} Clé orpheline R3 - URLSearchHook: (no name) [64Bits] - {ba14329e-9550-4989-b3f2-9732e92d17cc} Clé orpheline R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: McAfee Phishing Filter [64Bits] - {27B4851A-3207-45A2-B947-BE8AFE6163AB} . (.Pas de propriétaire - Pas de description.) -- c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL O2 - BHO: scriptproxy [64Bits] - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} . (.McAfee, Inc. - VSCore Script Scanner.) -- C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110515045515.dll O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg64.dll O2 - BHO: McAfee SiteAdvisor BHO [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, Inc. - SiteAdvisor.) -- c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: McAfee SiteAdvisor Toolbar [64Bits] - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} . (.McAfee, Inc. - SiteAdvisor.) -- c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll ---\\ ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Program Files\Realtek\Audio\HDA\Skytel.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe O4 - HKLM\..\Run: [mwlDaemon] . (.EgisTec Inc. - mwlDaemon Application.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe O4 - HKLM\..\Run: [iAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe (.not file.) O4 - HKLM\..\Wow6432Node\Run: [skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Program Files\Realtek\Audio\HDA\Skytel.exe O4 - HKLM\..\Wow6432Node\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe O4 - HKLM\..\Wow6432Node\Run: [mwlDaemon] . (.EgisTec Inc. - mwlDaemon Application.) -- C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe O4 - HKLM\..\Wow6432Node\Run: [iAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKUS\S-1-5-21-1475598093-3824319225-2932992576-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-21-1475598093-3824319225-2932992576-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-21-1475598093-3824319225-2932992576-1000\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe (.not file.) O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk . (.Hewlett-Packard Co..) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk . (.McAfee, Inc..) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ---\\ ---\\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Calculator.lnk . (.Microsoft Corporation.) -- C:\Windows\System32\calc.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Messaging.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files (x86)\Vuze\Azureus.exe O4 - Global Startup: C:\Users\Laurence\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~2\MICROS~1\Office12\EXCEL.exe O8 - Extra context menu item: Google Sidewiki... . (.Google Inc. - Google Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains\www] http.attractiveworld.net O15 - Trusted Zone: [HKCU\...\Domains\www] http.windowslive.fr ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{96EA266D-011F-401F-ADA5-CAADC0B9FCBB}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CS1\Services\Tcpip\..\{96EA266D-011F-401F-ADA5-CAADC0B9FCBB}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CS2\Services\Tcpip\..\{96EA266D-011F-401F-ADA5-CAADC0B9FCBB}: DhcpNameServer = 212.27.40.240 212.27.40.241 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241 ---\\ Protocole additionnel et piratage de protocole (O18) O18 - Handler: dssrequest [64Bits] - {5513F07E-936B-4E52-9B00-067394E91CC5} . (.McAfee, Inc. - SiteAdvisor.) -- c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll O18 - Handler: sacore [64Bits] - {5513F07E-936B-4E52-9B00-067394E91CC5} . (.McAfee, Inc. - SiteAdvisor.) -- c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) [64Bits] - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\system32\Ati2evxx.exe O23 - Service: (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: (CLHNService) . (.Pas de propriétaire - CLHNService Module.) - C:\Program Files (x86)\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe O23 - Service: (CyberLink Media Server Monitor Service) . (...) - C:\Program Files (x86)\Acer Arcade Deluxe\Acer HomeMedia Connect\Kernel\DMS\CLMSMonitorService.exe O23 - Service: (CyberLink Media Server Service) . (.CyberLink - CLMSServer.) - C:\Program Files (x86)\Acer Arcade Deluxe\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O23 - Service: (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: (gupdatem) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: (iPod Service) . (.Apple Inc. - iPodService Module (64-bit).) - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: (McAfee SiteAdvisor Service) . (.McAfee, Inc. - SiteAdvisor.) - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe O23 - Service: (McComponentHostService) . (.McAfee, Inc. - Component Host Service.) - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe O23 - Service: (McMPFSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O23 - Service: (mcmscsvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O23 - Service: (McNaiAnn) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O23 - Service: (McNASvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O23 - Service: (McODS) . (.McAfee, Inc. - McAfee VirusScan On-Demand Scan.) - C:\Program Files\McAfee\VirusScan\mcods.exe O23 - Service: (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O23 - Service: (McShield) . (.McAfee, Inc. - McAfee On-Access Scanner service.) - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe O23 - Service: (mfefire) . (.McAfee, Inc. - McAfee Core Firewall Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe O23 - Service: (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe O23 - Service: (MSK80Service) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O23 - Service: (MWLService) . (.EgisTec Inc. - MyWinLocker Service.) - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe O23 - Service: (NTIBackupSvc) . (.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: (NTISchedulerSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: (SPAMfighter Update Service) . (.SPAMfighter ApS - SPAMfighter Update Service.) - C:\Program Files (x86)\Fighters\SPAMfighter\sfus.exe O23 - Service: (Suite Service) . (.SPAMfighter ApS - Fighter Suite Service.) - C:\Program Files (x86)\Fighters\FighterSuiteService.exe O23 - Service: (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\DMEPeriodicTask.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [MD5.F091A30638AB77C23B27671E6D6DEE55] [APT] [DMEPeriodicTask] (.Hewlett-Packard.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\warrantyextension\HPPromo.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [MD5.00000000000000000000000000000000] [APT] [{40A1646A-2B8E-498F-96F7-02A54333A569}] (.Pas de propriétaire.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{BC6994DD-8110-42FD-9736-2BD900F898B2}] (.Pas de propriétaire.) -- C:\Users\Laurence\AppData\Roaming\12E4B10ED4C5766071346CA7BB1EB805\bootmdlink700sys.exe (.not file.) [MD5.187E0D2AB859AD03393DDD731076BE81] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys O41 - Driver: (mfenlfk) . (.McAfee, Inc. - McAfee NDIS Light Filter Driver.) - C:\Windows\System32\DRIVERS\mfenlfk.sys O41 - Driver: McAfee Inc. mfewfpk (mfewfpk) . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) - C:\Windows\System32\drivers\mfewfpk.sys O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {55D55008-E5F6-47D6-B16F-B2A40D4D145F} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {8F473675-D702-45F9-8EBC-342B40C17BF5} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {0E543634-7E25-4B8F-8D5B-97880E5E5088} O42 - Logiciel: Creative Live! Cam Chat IM (VF0530) (1.02.02.00) - (.Creative Technology Ltd..) [HKLM] -- Creative VF0530 O42 - Logiciel: Détection de l'application Winamp - (.Nullsoft, Inc.) [HKCU] -- Winamp Detect O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions O42 - Logiciel: HP Photosmart B109a-m All-In-One Driver Software 13.0 Rel .6 - (.HP.) [HKLM] -- {61CF2C86-8E46-4210-A115-E4D6C65AF369} O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM] -- HP Print Projects O42 - Logiciel: HP Smart Web Printing 4.5 - (.HP.) [HKLM] -- HP Smart Web Printing O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E} O42 - Logiciel: Microsoft .NET Framework 3.5 Language Pack SP1 - fra - (.Microsoft Corporation.) [HKLM] -- {3E31821C-7917-367E-938E-E65FC413EA31} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643} O42 - Logiciel: Microsoft Office Office 64-bit Components 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-0409-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0116-0409-1000-0000000FF1CE} O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {B6E3757B-5E77-3915-866A-CCFC4B8D194C} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - (.Microsoft Corporation.) [HKLM] -- {6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 - (.Microsoft Corporation.) [HKLM] -- {aac9fcc4-dd9e-4add-901c-b5496a07ab2e} O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {EE936C7A-EA40-31D5-9B65-8E3E089C3828} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 - (.Microsoft Corporation.) [HKLM] -- {8338783A-0968-3B85-AFC7-BAAE0A63DC50} O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 - (.Microsoft Corporation.) [HKLM] -- {350AA351-21FA-3270-8B7A-835434E766AD} O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack O42 - Logiciel: PlayReady PC runtime - (.Microsoft Corporation.) [HKLM] -- {704ABF63-B0B1-446B-9D92-C5D06AFCE7B6} O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A} O42 - Logiciel: Windows Live Family Safety - (.Microsoft Corporation.) [HKLM] -- {FE4BE0BD-1EDB-4D24-9614-847B3C472887} O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {1B8ABA62-74F0-47ED-B18C-A43128E591B8} O42 - Logiciel: Windows Live Language Selector - (.Microsoft Corporation.) [HKLM] -- {5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0} O42 - Logiciel: Windows Live MIME IFilter - (.Microsoft Corporation.) [HKLM] -- {DA54F80E-261C-41A2-A855-549A144F2F59} O42 - Logiciel: Windows Live Remote Client - (.Microsoft Corporation.) [HKLM] -- {DF6D988A-EEA0-4277-AAB8-158E086E439B} O42 - Logiciel: Windows Live Remote Client Resources - (.Microsoft Corporation.) [HKLM] -- {B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F} O42 - Logiciel: Windows Live Remote Service - (.Microsoft Corporation.) [HKLM] -- {E02A6548-6FDE-40E2-8ED9-119D7D7E641F} O42 - Logiciel: Windows Live Remote Service Resources - (.Microsoft Corporation.) [HKLM] -- {5E2CD4FB-4538-4831-8176-05D653C3E6D4} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {16DDB3D1-5C27-4599-9C63-E583287191CC} ---\\ HKCU & HKLM Software Keys [HKCU\Software\ALWIL Software] [HKCU\Software\ATI Technologies Inc.] [HKCU\Software\ATI] [HKCU\Software\Acer] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Aurigma] [HKCU\Software\AppDataLow\Software\Google] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Monitored] [HKCU\Software\AppDataLow\Software\Vuze_Remote] [HKCU\Software\AppDataLow\Software\Yahoo] [HKCU\Software\AppDataLow\Software\Zynga] [HKCU\Software\AppDataLow\Software\settings] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Azureus] [HKCU\Software\CDDB] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DivXNetworks] [HKCU\Software\Electronic Arts] [HKCU\Software\Fighters] [HKCU\Software\Google] [HKCU\Software\HP] [HKCU\Software\Hewlett-Packard] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\McAfee] [HKCU\Software\Mozilla] [HKCU\Software\Nero] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\OpenOffice.org] [HKCU\Software\PCTuto] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\Skype] [HKCU\Software\Softonic] [HKCU\Software\Sysinternals] [HKCU\Software\Trolltech] [HKCU\Software\Wget] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Winamp] [HKCU\Software\Wow6432Node] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Yahoo] [HKCU\Software\ej-technologies] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\Acer] [HKLM\Software\Adobe] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Audible] [HKLM\Software\BrowserChoice] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Creative Tech] [HKLM\Software\Cyberlink] [HKLM\Software\EgisTec] [HKLM\Software\GEAR Software] [HKLM\Software\Hewlett-Packard] [HKLM\Software\Intel] [HKLM\Software\McAfee.com] [HKLM\Software\McAfee] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\OEM] [HKLM\Software\OemSetup] [HKLM\Software\Policies] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\SiteAdvisor] [HKLM\Software\Sonic] [HKLM\Software\Waves Audio] [HKLM\Software\Wow6432Node] [HKLM\Software\swearware] ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 02/10/2009 - 20:24:36 - [18126472] ----D- C:\Program Files\Acer O43 - CFD: 04/11/2009 - 00:01:32 - [0] ----D- C:\Program Files\Alwil Software O43 - CFD: 11/10/2006 - 13:13:28 - [18872087] ----D- C:\Program Files\ATI O43 - CFD: 26/04/2011 - 09:46:16 - [195787] ----D- C:\Program Files\Bonjour O43 - CFD: 28/05/2011 - 15:15:52 - [267930287] ----D- C:\Program Files\Common Files O43 - CFD: 02/10/2009 - 20:23:04 - [0] -SH-D- C:\Program Files\Fichiers communs O43 - CFD: 03/10/2009 - 13:30:04 - [2591976] ----D- C:\Program Files\Google O43 - CFD: 16/04/2011 - 03:41:48 - [5586629] ----D- C:\Program Files\Internet Explorer O43 - CFD: 26/04/2011 - 09:48:46 - [1939563] ----D- C:\Program Files\iPod O43 - CFD: 26/04/2011 - 09:49:12 - [2345448] ----D- C:\Program Files\iTunes O43 - CFD: 19/08/2010 - 17:00:16 - [250808270] ----D- C:\Program Files\McAfee O43 - CFD: 19/08/2010 - 16:59:12 - [2507341] ----D- C:\Program Files\McAfee.com O43 - CFD: 02/11/2006 - 17:07:28 - [94671287] ----D- C:\Program Files\Microsoft Games O43 - CFD: 14/04/2009 - 01:36:50 - [1141694] ----D- C:\Program Files\Microsoft Office O43 - CFD: 22/01/2011 - 17:43:16 - [116334702] ----D- C:\Program Files\Movie Maker O43 - CFD: 02/11/2006 - 17:07:28 - [25757] ----D- C:\Program Files\MSBuild O43 - CFD: 14/04/2009 - 01:42:04 - [1350378] ----D- C:\Program Files\PlayReady O43 - CFD: 14/04/2009 - 01:22:24 - [12455104] ----D- C:\Program Files\Realtek O43 - CFD: 02/11/2006 - 17:07:28 - [36351145] ----D- C:\Program Files\Reference Assemblies O43 - CFD: 02/11/2006 - 17:44:56 - [0] --H-D- C:\Program Files\Uninstall Information O43 - CFD: 21/01/2008 - 05:09:42 - [1302528] ----D- C:\Program Files\Windows Calendar O43 - CFD: 22/01/2011 - 17:43:16 - [2963968] ----D- C:\Program Files\Windows Collaboration O43 - CFD: 22/01/2011 - 17:43:16 - [6394224] ----D- C:\Program Files\Windows Defender O43 - CFD: 22/01/2011 - 17:43:16 - [9655416] ----D- C:\Program Files\Windows Journal O43 - CFD: 23/01/2011 - 19:07:42 - [7987385] ----D- C:\Program Files\Windows Live O43 - CFD: 12/05/2011 - 20:25:22 - [9619128] ----D- C:\Program Files\Windows Mail O43 - CFD: 22/01/2011 - 17:43:16 - [5140215] ----D- C:\Program Files\Windows Media Player O43 - CFD: 02/10/2009 - 20:23:04 - [8057896] ----D- C:\Program Files\Windows NT O43 - CFD: 22/01/2011 - 17:43:16 - [16439458] ----D- C:\Program Files\Windows Photo Gallery O43 - CFD: 23/01/2011 - 14:12:50 - [167424] ----D- C:\Program Files\Windows Portable Devices O43 - CFD: 22/01/2011 - 17:43:16 - [8156853] ----D- C:\Program Files\Windows Sidebar O43 - CFD: 21/01/2011 - 04:44:10 - [6246981] ----D- C:\Program Files\Common Files\Apple O43 - CFD: 19/08/2010 - 16:58:28 - [36735649] ----D- C:\Program Files\Common Files\McAfee O43 - CFD: 06/05/2011 - 13:17:08 - [214732073] ----D- C:\Program Files\Common Files\Microsoft Shared O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [608256] ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD: 21/01/2008 - 05:09:30 - [9604626] ----D- C:\Program Files\Common Files\System O43 - CFD: 11/10/2006 - 13:20:40 - [19484] ----D- C:\ProgramData\Acer GameZone Console O43 - CFD: 29/11/2010 - 23:48:26 - [769] ----D- C:\ProgramData\Adobe O43 - CFD: 07/01/2011 - 01:41:34 - [80135680] ----D- C:\ProgramData\Apple O43 - CFD: 26/04/2011 - 09:48:46 - [67110696] ----D- C:\ProgramData\Apple Computer O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Application Data O43 - CFD: 11/10/2006 - 13:25:54 - [187] ----D- C:\ProgramData\ATI O43 - CFD: 02/10/2009 - 20:23:04 - [0] -SH-D- C:\ProgramData\Bureau O43 - CFD: 26/05/2011 - 00:13:00 - [2833] ----D- C:\ProgramData\clp O43 - CFD: 28/10/2010 - 22:07:54 - [140227] ----D- C:\ProgramData\CyberLink O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Desktop O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Documents O43 - CFD: 14/04/2009 - 01:55:38 - [0] ----D- C:\ProgramData\EgisTec O43 - CFD: 22/01/2010 - 13:23:28 - [19773609] ----D- C:\ProgramData\Electronic Arts O43 - CFD: 20/11/2010 - 02:08:50 - [0] ----D- C:\ProgramData\eMule O43 - CFD: 14/04/2009 - 02:19:32 - [420] ----D- C:\ProgramData\eSobi O43 - CFD: 02/10/2009 - 20:23:04 - [0] -SH-D- C:\ProgramData\Favoris O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Favorites O43 - CFD: 28/05/2011 - 22:03:10 - [222445] ----D- C:\ProgramData\Fighters O43 - CFD: 02/10/2009 - 20:24:16 - [539380] ----D- C:\ProgramData\Google O43 - CFD: 27/05/2011 - 05:19:44 - [15440127] ----D- C:\ProgramData\HP O43 - CFD: 06/05/2011 - 22:32:08 - [8988] ----D- C:\ProgramData\HP Product Assistant O43 - CFD: 19/01/2011 - 14:23:16 - [16220982] ----D- C:\ProgramData\Malwarebytes O43 - CFD: 04/10/2009 - 18:28:26 - [150548444] ----D- C:\ProgramData\McAfee O43 - CFD: 15/02/2011 - 01:39:02 - [845] ----D- C:\ProgramData\McAfee Security Scan O43 - CFD: 02/10/2009 - 20:23:04 - [0] -SH-D- C:\ProgramData\Menu Démarrer O43 - CFD: 28/05/2011 - 15:44:06 - [128196125] -S--D- C:\ProgramData\Microsoft O43 - CFD: 12/05/2011 - 20:25:50 - [69848] ----D- C:\ProgramData\Microsoft Help O43 - CFD: 02/10/2009 - 20:23:04 - [0] -SH-D- C:\ProgramData\Modèles O43 - CFD: 21/04/2010 - 01:04:28 - [27092] ----D- C:\ProgramData\Nero O43 - CFD: 14/04/2009 - 01:50:42 - [36] ----D- C:\ProgramData\SiteAdvisor O43 - CFD: 19/01/2011 - 01:20:08 - [26982812] ----D- C:\ProgramData\Skype O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Start Menu O43 - CFD: 11/05/2010 - 17:36:58 - [189] ----D- C:\ProgramData\Sun O43 - CFD: 11/10/2006 - 13:17:24 - [163911] ----D- C:\ProgramData\Temp O43 - CFD: 02/11/2006 - 17:42:18 - [0] -SH-D- C:\ProgramData\Templates O43 - CFD: 23/05/2011 - 11:08:42 - [105565] ----D- C:\ProgramData\TuneUpMedia O43 - CFD: 06/05/2011 - 22:50:54 - [204] ----D- C:\ProgramData\WEBREG O43 - CFD: 19/01/2011 - 15:44:08 - [55444] ----D- C:\Users\Laurence\AppData\Roaming\12E4B10ED4C5766071346CA7BB1EB805 O43 - CFD: 11/10/2006 - 13:20:40 - [19484] ----D- C:\Users\Laurence\AppData\Roaming\Acer GameZone Console O43 - CFD: 22/01/2010 - 13:23:20 - [14591659] ----D- C:\Users\Laurence\AppData\Roaming\Adobe O43 - CFD: 22/01/2011 - 03:04:18 - [180625] ----D- C:\Users\Laurence\AppData\Roaming\Apple Computer O43 - CFD: 02/10/2009 - 20:27:14 - [0] ----D- C:\Users\Laurence\AppData\Roaming\ATI O43 - CFD: 23/05/2011 - 11:45:36 - [5301257] ----D- C:\Users\Laurence\AppData\Roaming\Azureus O43 - CFD: 04/10/2009 - 18:49:12 - [0] ----D- C:\Users\Laurence\AppData\Roaming\CyberLink O43 - CFD: 28/02/2011 - 00:32:30 - [2679] ----D- C:\Users\Laurence\AppData\Roaming\dvdcss O43 - CFD: 04/06/2010 - 15:05:36 - [31406] ----D- C:\Users\Laurence\AppData\Roaming\eMule O43 - CFD: 28/05/2011 - 22:03:10 - [855721] ----D- C:\Users\Laurence\AppData\Roaming\Fighters O43 - CFD: 04/02/2010 - 20:20:04 - [0] ----D- C:\Users\Laurence\AppData\Roaming\GetRightToGo O43 - CFD: 03/10/2009 - 11:34:16 - [61662] ----D- C:\Users\Laurence\AppData\Roaming\Google O43 - CFD: 07/02/2011 - 20:47:32 - [165] ----D- C:\Users\Laurence\AppData\Roaming\gtk-2.0 O43 - CFD: 04/10/2009 - 18:49:34 - [6610] ----D- C:\Users\Laurence\AppData\Roaming\HomeMedia Connect O43 - CFD: 30/05/2011 - 14:40:58 - [170865] ----D- C:\Users\Laurence\AppData\Roaming\HP O43 - CFD: 02/10/2009 - 20:26:18 - [0] ----D- C:\Users\Laurence\AppData\Roaming\Identities O43 - CFD: 02/10/2009 - 20:27:22 - [981] ----D- C:\Users\Laurence\AppData\Roaming\Macromedia O43 - CFD: 19/01/2011 - 14:23:26 - [2388369] ----D- C:\Users\Laurence\AppData\Roaming\Malwarebytes O43 - CFD: 02/11/2006 - 17:07:26 - [0] ----D- C:\Users\Laurence\AppData\Roaming\Media Center Programs O43 - CFD: 03/08/2010 - 11:29:24 - [21592056] -S--D- C:\Users\Laurence\AppData\Roaming\Microsoft O43 - CFD: 23/05/2011 - 19:29:42 - [3273986] ----D- C:\Users\Laurence\AppData\Roaming\Mozilla O43 - CFD: 03/04/2010 - 17:52:08 - [134326] ----D- C:\Users\Laurence\AppData\Roaming\Nero O43 - CFD: 11/05/2010 - 17:49:26 - [4668145] ----D- C:\Users\Laurence\AppData\Roaming\OpenOffice.org O43 - CFD: 28/10/2010 - 22:07:46 - [56778042] ----D- C:\Users\Laurence\AppData\Roaming\PowerCinema O43 - CFD: 10/09/2010 - 01:23:24 - [2909317] ----D- C:\Users\Laurence\AppData\Roaming\Skype O43 - CFD: 10/09/2010 - 00:01:48 - [43928] ----D- C:\Users\Laurence\AppData\Roaming\skypePM O43 - CFD: 04/10/2009 - 18:49:20 - [6888] ----D- C:\Users\Laurence\AppData\Roaming\SoftDMA O43 - CFD: 06/10/2009 - 19:27:16 - [13824] ----D- C:\Users\Laurence\AppData\Roaming\Template O43 - CFD: 19/10/2010 - 14:58:52 - [7850339460] ----D- C:\Users\Laurence\AppData\Roaming\Thunderbird O43 - CFD: 23/05/2011 - 19:29:46 - [666] ----D- C:\Users\Laurence\AppData\Roaming\TuneUpMedia O43 - CFD: 19/01/2011 - 14:17:44 - [727860] ----D- C:\Users\Laurence\AppData\Roaming\Uniblue O43 - CFD: 07/05/2011 - 17:38:48 - [1511059] ----D- C:\Users\Laurence\AppData\Roaming\vlc O43 - CFD: 23/05/2011 - 10:08:02 - [2833687] ----D- C:\Users\Laurence\AppData\Roaming\Winamp O43 - CFD: 05/02/2011 - 07:25:48 - [295] ----D- C:\Users\Laurence\AppData\Roaming\Windows Live Writer O43 - CFD: 29/01/2011 - 02:50:54 - [12] ----D- C:\Users\Laurence\AppData\Roaming\WinRAR O43 - CFD: 06/05/2011 - 22:33:20 - [0] ----D- C:\Users\Laurence\AppData\Roaming\Yahoo! O43 - CFD: 04/10/2009 - 18:49:06 - [0] ----D- C:\Users\Laurence\Appdata\Local\Acer Arcade Deluxe O43 - CFD: 29/11/2010 - 23:49:04 - [287401] ----D- C:\Users\Laurence\Appdata\Local\Adobe O43 - CFD: 07/01/2011 - 01:43:22 - [0] ----D- C:\Users\Laurence\Appdata\Local\Apple O43 - CFD: 24/01/2011 - 00:24:58 - [17045786] ----D- C:\Users\Laurence\Appdata\Local\Apple Computer O43 - CFD: 02/10/2009 - 20:23:38 - [0] -SH-D- C:\Users\Laurence\Appdata\Local\Application Data O43 - CFD: 04/02/2011 - 07:57:26 - [0] ----D- C:\Users\Laurence\Appdata\Local\Apps O43 - CFD: 02/10/2009 - 20:27:14 - [42011] ----D- C:\Users\Laurence\Appdata\Local\ATI O43 - CFD: 04/10/2009 - 18:49:20 - [104448] ----D- C:\Users\Laurence\Appdata\Local\CyberLink O43 - CFD: 02/10/2009 - 20:27:08 - [183] ----D- C:\Users\Laurence\Appdata\Local\EgisTec O43 - CFD: 20/11/2010 - 02:08:50 - [0] ----D- C:\Users\Laurence\Appdata\Local\eMule O43 - CFD: 20/05/2011 - 23:35:42 - [2520944] ----D- C:\Users\Laurence\Appdata\Local\Google O43 - CFD: 02/10/2009 - 20:23:38 - [0] -SH-D- C:\Users\Laurence\Appdata\Local\Historique O43 - CFD: 30/05/2011 - 14:40:56 - [49890] ----D- C:\Users\Laurence\Appdata\Local\HP O43 - CFD: 27/02/2011 - 03:40:18 - [2339737252] ----D- C:\Users\Laurence\Appdata\Local\Microsoft O43 - CFD: 04/02/2010 - 20:08:04 - [0] ----D- C:\Users\Laurence\Appdata\Local\Microsoft Help O43 - CFD: 21/01/2011 - 04:36:12 - [1801266] ----D- C:\Users\Laurence\Appdata\Local\Mozilla O43 - CFD: 19/01/2011 - 14:17:28 - [0] ----D- C:\Users\Laurence\Appdata\Local\PackageAware O43 - CFD: 04/10/2009 - 18:49:18 - [10018] ----D- C:\Users\Laurence\Appdata\Local\PlayMovie O43 - CFD: 01/06/2011 - 23:41:44 - [2224283] ----D- C:\Users\Laurence\Appdata\Local\temp O43 - CFD: 02/10/2009 - 20:23:38 - [0] -SH-D- C:\Users\Laurence\Appdata\Local\Temporary Internet Files O43 - CFD: 06/10/2009 - 13:05:50 - [24496781] ----D- C:\Users\Laurence\Appdata\Local\Thunderbird O43 - CFD: 04/10/2010 - 17:39:08 - [240310] ----D- C:\Users\Laurence\Appdata\Local\VirtualStore O43 - CFD: 01/06/2011 - 13:57:10 - [102400] ----D- C:\Users\Laurence\Appdata\Local\Windows Live O43 - CFD: 23/01/2011 - 19:27:06 - [372494] ----D- C:\Users\Laurence\Appdata\Local\Windows Live Writer O43 - CFD: 11/10/2006 - 13:20:08 - [223662572] ----D- C:\Program Files (x86)\Acer Arcade Deluxe O43 - CFD: 14/04/2009 - 02:26:32 - [552085911] ----D- C:\Program Files (x86)\Acer GameZone O43 - CFD: 11/10/2006 - 13:21:24 - [0] ----D- C:\Program Files (x86)\Acer Incorporated O43 - CFD: 06/11/2010 - 11:32:24 - [213016429] ----D- C:\Program Files (x86)\Adobe O43 - CFD: 07/01/2011 - 01:43:20 - [2306366] ----D- C:\Program Files (x86)\Apple Software Update O43 - CFD: 11/10/2006 - 13:14:18 - [65900295] ----D- C:\Program Files (x86)\ATI Technologies O43 - CFD: 26/04/2011 - 09:46:16 - [621107] ----D- C:\Program Files (x86)\Bonjour O43 - CFD: 01/06/2011 - 21:04:48 - [908711006] ----D- C:\Program Files (x86)\Common Files O43 - CFD: 14/04/2009 - 01:57:58 - [795721418] ----D- C:\Program Files (x86)\CyberLink O43 - CFD: 20/04/2010 - 22:54:50 - [696329] ----D- C:\Program Files (x86)\DivX O43 - CFD: 14/04/2009 - 01:42:22 - [33692525] ----D- C:\Program Files (x86)\EgisTec O43 - CFD: 14/04/2009 - 01:42:24 - [1636481] ----D- C:\Program Files (x86)\EgisTec Egis Software Update O43 - CFD: 14/11/2009 - 12:13:00 - [6102077467] ----D- C:\Program Files (x86)\Electronic Arts O43 - CFD: 30/03/2011 - 16:31:24 - [40265691] ----D- C:\Program Files (x86)\Energy Sistem O43 - CFD: 14/04/2009 - 02:19:24 - [23923792] ----D- C:\Program Files (x86)\eSobi O43 - CFD: 28/05/2011 - 22:02:32 - [27549123] ----D- C:\Program Files (x86)\Fighters O43 - CFD: 07/02/2011 - 20:39:50 - [113141005] ----D- C:\Program Files (x86)\GIMP-2.0 O43 - CFD: 04/08/2010 - 09:48:32 - [23102246] ----D- C:\Program Files (x86)\Google O43 - CFD: 06/05/2011 - 22:32:48 - [209133128] ----D- C:\Program Files (x86)\HP O43 - CFD: 14/11/2009 - 11:59:04 - [326320700] --H-D- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 14/04/2009 - 01:15:12 - [10065822] ----D- C:\Program Files (x86)\Intel O43 - CFD: 16/04/2011 - 03:41:48 - [5771784] ----D- C:\Program Files (x86)\Internet Explorer O43 - CFD: 23/05/2011 - 11:08:42 - [127885408] ----D- C:\Program Files (x86)\iTunes O43 - CFD: 01/06/2011 - 21:04:34 - [91542745] ----D- C:\Program Files (x86)\Java O43 - CFD: 11/05/2010 - 17:44:34 - [16254752] ----D- C:\Program Files (x86)\JRE O43 - CFD: 04/10/2009 - 20:00:40 - [29859648] ----D- C:\Program Files (x86)\Logitech O43 - CFD: 01/06/2011 - 13:50:24 - [7585312] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 20/08/2010 - 16:22:28 - [84384248] ----D- C:\Program Files (x86)\McAfee O43 - CFD: 24/04/2010 - 20:14:44 - [9453898] ----D- C:\Program Files (x86)\McAfee Security Scan O43 - CFD: 21/08/2010 - 15:51:56 - [428064] ----D- C:\Program Files (x86)\McAfee.com O43 - CFD: 23/03/2011 - 04:00:58 - [502195] ----D- C:\Program Files (x86)\Microsoft O43 - CFD: 06/10/2009 - 13:55:48 - [800662] ----D- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 04/02/2010 - 20:09:44 - [707214620] ----D- C:\Program Files (x86)\Microsoft Office O43 - CFD: 14/04/2009 - 01:47:28 - [7791803] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 25/04/2011 - 11:39:46 - [38388859] ----D- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 14/04/2009 - 01:46:26 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 04/02/2010 - 20:09:56 - [14904] ----D- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 16/12/2010 - 13:55:26 - [145421942] ----D- C:\Program Files (x86)\Microsoft Works O43 - CFD: 14/11/2009 - 12:11:44 - [979309] ----D- C:\Program Files (x86)\Microsoft WSE O43 - CFD: 26/06/2010 - 11:33:36 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 23/01/2011 - 16:51:50 - [30423250] ----D- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 29/04/2011 - 11:53:50 - [38202854] ----D- C:\Program Files (x86)\Mozilla Thunderbird O43 - CFD: 02/11/2006 - 17:07:28 - [25757] ----D- C:\Program Files (x86)\MSBuild O43 - CFD: 02/10/2009 - 20:46:24 - [0] ----D- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 14/04/2009 - 02:04:56 - [228422111] ----D- C:\Program Files (x86)\NewTech Infosystems O43 - CFD: 11/05/2010 - 17:44:28 - [376243202] ----D- C:\Program Files (x86)\OpenOffice.org 3 O43 - CFD: 11/05/2010 - 17:35:12 - [166777862] ----D- C:\Program Files (x86)\OpenOffice.org 3.2 (en-US) Installation Files O43 - CFD: 14/04/2009 - 01:42:04 - [1041368] ----D- C:\Program Files (x86)\PlayReady O43 - CFD: 07/01/2011 - 01:43:52 - [76322555] ----D- C:\Program Files (x86)\QuickTime O43 - CFD: 14/04/2009 - 01:22:00 - [4186249] ----D- C:\Program Files (x86)\Realtek O43 - CFD: 02/11/2006 - 17:07:28 - [38690561] ----D- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 11/10/2006 - 13:06:16 - [0] --H-D- C:\Program Files (x86)\Temp O43 - CFD: 23/05/2011 - 11:08:44 - [42398427] ----D- C:\Program Files (x86)\TuneUpMedia O43 - CFD: 02/11/2006 - 17:36:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information O43 - CFD: 04/10/2009 - 21:34:28 - [80535040] ----D- C:\Program Files (x86)\VideoLAN O43 - CFD: 23/05/2011 - 11:09:22 - [21545034] ----D- C:\Program Files (x86)\Vuze O43 - CFD: 23/05/2011 - 11:07:22 - [4549434] ----D- C:\Program Files (x86)\Vuze_Remote O43 - CFD: 07/01/2011 - 01:46:14 - [38338961] ----D- C:\Program Files (x86)\Winamp O43 - CFD: 07/01/2011 - 01:45:40 - [155366] ----D- C:\Program Files (x86)\Winamp Detect O43 - CFD: 22/01/2011 - 17:43:16 - [1016832] ----D- C:\Program Files (x86)\Windows Calendar O43 - CFD: 21/01/2008 - 05:09:48 - [53248] ----D- C:\Program Files (x86)\Windows Collaboration O43 - CFD: 21/01/2008 - 05:09:42 - [504128] ----D- C:\Program Files (x86)\Windows Defender O43 - CFD: 31/03/2011 - 14:08:26 - [187895455] ----D- C:\Program Files (x86)\Windows Live O43 - CFD: 12/05/2011 - 20:25:22 - [8935608] ----D- C:\Program Files (x86)\Windows Mail O43 - CFD: 22/01/2011 - 17:43:16 - [3013093] ----D- C:\Program Files (x86)\Windows Media Player O43 - CFD: 02/11/2006 - 17:07:28 - [7957544] ----D- C:\Program Files (x86)\Windows NT O43 - CFD: 22/01/2011 - 17:43:16 - [13528738] ----D- C:\Program Files (x86)\Windows Photo Gallery O43 - CFD: 23/01/2011 - 14:12:52 - [134144] ----D- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 22/01/2011 - 17:43:16 - [6527558] ----D- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 29/01/2011 - 02:50:42 - [3727772] ----D- C:\Program Files (x86)\WinRAR O43 - CFD: 28/05/2011 - 22:01:32 - [0] ----D- C:\Program Files (x86)\Yahoo! O43 - CFD: 11/10/2006 - 13:16:14 - [1975295] ----D- C:\Program Files (x86)\YUAN O43 - CFD: 01/06/2011 - 23:43:18 - [4003926] ----D- C:\Program Files (x86)\ZHPDiag O43 - CFD: 06/05/2010 - 01:55:46 - [2553080] ----D- C:\Program Files (x86)\Zynga O43 - CFD: 29/11/2010 - 23:48:26 - [6281214] ----D- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 04/10/2010 - 17:58:44 - [29774735] ----D- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 26/04/2011 - 09:48:46 - [86140268] ----D- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 25/05/2011 - 23:42:44 - [0] ----D- C:\Program Files (x86)\Common Files\Common Toolkit Suite O43 - CFD: 14/04/2009 - 01:38:02 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 14/04/2009 - 01:42:24 - [101672] ----D- C:\Program Files (x86)\Common Files\EgisTec O43 - CFD: 06/05/2011 - 22:13:04 - [531477] ----D- C:\Program Files (x86)\Common Files\Hewlett-Packard O43 - CFD: 06/05/2011 - 22:14:02 - [1804764] ----D- C:\Program Files (x86)\Common Files\HP O43 - CFD: 11/10/2006 - 13:16:42 - [5002745] ----D- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 01/06/2011 - 21:04:48 - [1252295] ----D- C:\Program Files (x86)\Common Files\Java O43 - CFD: 21/08/2010 - 15:51:56 - [4297909] ----D- C:\Program Files (x86)\Common Files\McAfee O43 - CFD: 23/01/2011 - 19:07:16 - [453052889] ----D- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 21/04/2010 - 01:04:40 - [0] ----D- C:\Program Files (x86)\Common Files\Nero O43 - CFD: 14/04/2009 - 02:07:02 - [354896] ----D- C:\Program Files (x86)\Common Files\Oberon Media O43 - CFD: 07/01/2011 - 01:45:16 - [4167008] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 02/11/2006 - 15:33:54 - [2702] ----D- C:\Program Files (x86)\Common Files\Services O43 - CFD: 02/11/2006 - 15:33:54 - [41101735] ----D- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 22/01/2011 - 18:12:26 - [46944652] ----D- C:\Program Files (x86)\Common Files\System O43 - CFD: 14/04/2009 - 01:44:28 - [227807069] ----D- C:\Program Files (x86)\Common Files\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.CFC182FF2D9361EB099B5EDBC2416964] - 01/06/2011 - 21:28:44 ---A- . (...) -- C:\TDSSKiller.2.5.3.0_01.06.2011_22.28.17_log.txt [59748] O44 - LFC:[MD5.7CEE1700D64D127700DCFD7E50EF1700] - 01/06/2011 - 21:09:02 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1564588] O44 - LFC:[MD5.8A8B6BDFD8E6113E431E5E579FB83213] - 01/06/2011 - 19:55:29 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1495948] O44 - LFC:[MD5.87EFAA7FCCB4B4688D01AD302A59BF8C] - 01/06/2011 - 19:55:29 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [103872] O44 - LFC:[MD5.66698686357017F286A3312D9D2FDD3D] - 01/06/2011 - 19:55:29 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [126420] O44 - LFC:[MD5.8B35253C2DA2AFD46B4FFC688F0D6A10] - 01/06/2011 - 19:55:29 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [595798] O44 - LFC:[MD5.78DFFE778B612FE9ADA993825B9E0959] - 01/06/2011 - 19:55:29 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [678804] O44 - LFC:[MD5.3348E72273809AC8B18C3DE3D574557C] - 01/06/2011 - 19:49:36 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.70B8652B51DDFED143A17B835A511D1E] - 31/05/2011 - 16:31:01 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.1E4FC28B86BFB957D846453BBA2213AC] - 01/06/2011 - 09:40:10 ---A- . (...) -- C:\Windows\ntbtlog.txt [682448] O44 - LFC:[MD5.8C2A9FB0A0DA129E189A8DCD3DA44507] - 01/06/2011 - 09:40:04 ---A- . (...) -- C:\Windows\PFRO.log [821846] O44 - LFC:[MD5.DB7A2A1EC102A3ED7DD8F9B36BB401ED] - 28/05/2011 - 14:39:26 ---A- . (...) -- C:\ComboFix.txt [35309] O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 28/05/2011 - 14:32:24 ---A- . (...) -- C:\Windows\system.ini [215] O44 - LFC:[MD5.AE72E8619CB31D84DA25E2435E55003C] - 28/05/2011 - 13:47:18 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [31232] O44 - LFC:[MD5.01D95A1F8CF13D07CC564AABB36BCC0B] - 28/05/2011 - 13:47:18 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [161792] O44 - LFC:[MD5.B7517DB073B28F5696A1E5528ABEB5D0] - 28/05/2011 - 13:47:18 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [136704] O44 - LFC:[MD5.97381496D1B5C42DDBA5DEC9BC27DB2D] - 25/05/2011 - 16:31:38 ---A- . (...) -- C:\Windows\setupact.log [133468] O44 - LFC:[MD5.5E7B1E41951F51F8DE7FB5147F0DE454] - 25/05/2011 - 13:34:05 ---A- . (...) -- C:\Windows\srun.log [12] O44 - LFC:[MD5.A1700240B1A7CC741749303E4BAF11D6] - 23/05/2011 - 09:59:12 ---A- . (...) -- C:\Windows\Instaler Setup Log.txt [5047] O44 - LFC:[MD5.CC1767EC0A1BFFEF3066EDB48954B497] - 07/05/2011 - 10:37:01 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [424024] O44 - LFC:[MD5.3B70FD5EE3FD47380D722E2586B6857B] - 06/05/2011 - 21:50:47 ---A- . (...) -- C:\Windows\hpoins38.dat [180177] O44 - LFC:[MD5.5DCABDAC60DA90A663CD9A5D0A05179C] - 06/05/2011 - 21:36:57 ---A- . (...) -- C:\Windows\win.ini [254] O44 - LFC:[MD5.4A4BF1FE2C418E7D5F9F4F6A675DC3AF] - 06/05/2011 - 21:12:39 ---A- . (.Hewlett-Packard - Hewlett-Packard WIA minidriver..) -- C:\Windows\SysNative\hposwia_p02e.dll [880640] O44 - LFC:[MD5.3F6F3FB9DD36C4E61D4E409026DE1F76] - 06/05/2011 - 21:12:39 ---A- . (.Hewlett-Packard - Preload Driver CoInstaller.) -- C:\Windows\SysNative\hppldcoi.dll [551424] O44 - LFC:[MD5.ECE7E2AC0C6A322B4741A38F9B06E32A] - 06/05/2011 - 21:12:39 ---A- . (.Hewlett-Packard Co. - HP AiO Scan Driver - iop.) -- C:\Windows\SysNative\hpost_p02e.dll [1403904] O44 - LFC:[MD5.EB5E55CE275F30AE948C02CBF9383930] - 06/05/2011 - 21:12:39 ---A- . (.Hewlett-Packard Co. - HP Scan VendorSetup/Co-Installer.) -- C:\Windows\SysNative\hposc_p02a.dll [515072] O44 - LFC:[MD5.A59F9CE5EA6537C78374A9F6FDAA5123] - 06/05/2011 - 21:12:30 ---A- . (.Hewlett-Packard - HP Installer Coinstaller.) -- C:\Windows\SysNative\hpzids40.dll [642360] O44 - LFC:[MD5.AFE013F29FD99796958EC8EE0738306F] - 06/05/2011 - 21:12:27 ---A- . (.Hewlett-Packard Company - LanguageMonitor.) -- C:\Windows\SysNative\hpf3l70w.dll [136704] O44 - LFC:[MD5.98EB580D0EB7DA75069634BBF33FCC29] - 06/05/2011 - 12:17:40 ---A- . (...) -- C:\Windows\dd_vcredistMSI2673.txt [455420] O44 - LFC:[MD5.BB79FEEFD4E45EA32B02D8D7666CF586] - 06/05/2011 - 12:17:40 ---A- . (...) -- C:\Windows\dd_vcredistUI2673.txt [11598] O44 - LFC:[MD5.9DAA7218961710008D7385B01BD3F386] - 07/11/2010 - 18:20:24 ---A- . (...) -- C:\Windows\MBR.exe [89088] O44 - LFC:[MD5.F1FBA6185A6A2BC6456970914875078E] - 26/04/2010 - 08:58:12 ---A- . (...) -- C:\Windows\PEV.exe [256512] O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\grep.exe [80412] O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\sed.exe [98816] O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\zip.exe [68096] ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0 ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0 ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.F14215E37CF124104575073F782111D2] - 21/01/2008 - 03:46:53 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [486456] O58 - SDL:[MD5.7D05A75E3066861A6610F7EE04FF085C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [342584] O58 - SDL:[MD5.820A201FE08A0C345B3BEDBC30E1A77C] - 21/01/2008 - 03:46:54 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (X64).) -- C:\Windows\system32\drivers\adpu160m.sys [126520] O58 - SDL:[MD5.9B4AB6854559DC168FBB4C24FC52E794] - 21/01/2008 - 03:47:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [185912] O58 - SDL:[MD5.157D0898D4B73F075CE9FA26B482DF98] - 21/01/2008 - 03:46:50 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15976] O58 - SDL:[MD5.BA8417D4765F3988FF921F30F630E303] - 21/01/2008 - 03:46:52 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [90680] O58 - SDL:[MD5.9D41C435619733B34CC16A511E644B11] - 21/01/2008 - 03:47:00 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [91192] O58 - SDL:[MD5.8EA545F0F90E6388DCACA8F4F9404DC5] - 12/11/2008 - 16:42:22 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys [4999680] O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432] O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 18/09/2006 - 22:30:15 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704] O58 - SDL:[MD5.F0F0BA4D815BE446AA6A4583CA3BCA9B] - 02/11/2006 - 09:43:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [86528] O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104] O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 18/09/2006 - 22:30:18 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976] O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 19/09/2006 - 12:42:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720] O58 - SDL:[MD5.676535B3156FECF7133CF80B4D2F6CF7] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\Windows\system32\drivers\cfwids.sys [63056] O58 - SDL:[MD5.E5D5499A1C50A54B5161296B6AFE6192] - 21/01/2008 - 03:46:50 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [18024] O58 - SDL:[MD5.222CB641B4B8A1D1126F8033F9FD6A00] - 02/11/2006 - 12:50:06 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [88168] O58 - SDL:[MD5.264CEE7B031A9D6C827F3D0CB031F2FE] - 21/01/2008 - 03:46:56 ---A- . (.Intel Corporation - Intel® PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G6032E.sys [146176] O58 - SDL:[MD5.BDDC6F6C49633AA85A30A989418E30F4] - 21/11/2008 - 02:53:32 ---A- . (.Intel Corporation - Intel® Gigabit Network Connection NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\e1y60x64.sys [306304] O58 - SDL:[MD5.C4636D6E10469404AB5308D9FD45ED07] - 21/01/2008 - 03:46:59 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [397368] O58 - SDL:[MD5.E403AACF8C7BB11375122D2464560311] - 18/05/2009 - 13:17:08 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [34152] O58 - SDL:[MD5.D7109A1E6BD2DFDBCBA72A6BC626A13B] - 21/01/2008 - 03:46:59 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [47672] O58 - SDL:[MD5.756879FA65978DF948437CE3FD1EACCD] - 12/09/2008 - 12:48:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [406040] O58 - SDL:[MD5.3E3BF3627D886736D0B4E90054F929F6] - 21/01/2008 - 03:46:59 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [290872] O58 - SDL:[MD5.8C3951AD2FE886EF76C7B5027C3125D3] - 02/11/2006 - 13:02:39 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44648] O58 - SDL:[MD5.63C766CDC609FF8206CB447A65ABBA4A] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [37480] O58 - SDL:[MD5.1281FE73B17664631D12F643CBEA3F59] - 02/11/2006 - 13:02:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [37480] O58 - SDL:[MD5.ACBE1AF32D3123E330A07BFBC5EC4A9B] - 21/01/2008 - 03:46:51 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [113720] O58 - SDL:[MD5.799FFB2FC4729FA46D2157C0065B3525] - 21/01/2008 - 03:46:56 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [105016] O58 - SDL:[MD5.F445FF1DAAD8A226366BFAF42551226B] - 21/01/2008 - 03:47:01 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [113720] O58 - SDL:[MD5.ED49FD1373DE93617A1F6D128D98FE4D] - 29/05/2011 - 08:11:20 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912] O58 - SDL:[MD5.5C5CD6AACED32FB26C3FB34B3DCF972F] - 21/01/2008 - 03:46:59 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [35896] O58 - SDL:[MD5.859BC2436B076C77C159ED694ACFE8F8] - 21/01/2008 - 03:46:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [438328] O58 - SDL:[MD5.31338E489314AE2A29534FBAA7AD2F1B] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - Access Protection Filter Driver.) -- C:\Windows\system32\drivers\mfeapfk.sys [121376] O58 - SDL:[MD5.5822E70233218BCF22A65FCEA74D012D] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\system32\drivers\mfeavfk.sys [190520] O58 - SDL:[MD5.7072F8DD8DD346EACDD688EB695D1D2A] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - McAfee Driver Cleaning Driver.) -- C:\Windows\system32\drivers\mfeclnk.sys [9984] O58 - SDL:[MD5.5A24E7C834576313D8C5EAF0825DA844] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\system32\drivers\mfefirek.sys [441840] O58 - SDL:[MD5.A2607740BB18D631DA01E01DCB81843B] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\system32\drivers\mfehidk.sys [530304] O58 - SDL:[MD5.50C3A9D7465D385061C0601DEEFB5A8E] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - McAfee NDIS Light Filter Driver.) -- C:\Windows\system32\drivers\mfenlfk.sys [75160] O58 - SDL:[MD5.EDF5EE799A0B3ED6DCE8BB16A51F3D1F] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - McAfee Code Analysis Driver.) -- C:\Windows\system32\drivers\mferkdet.sys [94992] O58 - SDL:[MD5.9182FAF9ADDD5EA6308D155CEB502C6F] - 14/04/2011 - 13:01:38 ---A- . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\Windows\system32\drivers\mfewfpk.sys [283744] O58 - SDL:[MD5.3C200630A89EF2C0864D515B7A75802E] - 02/11/2006 - 13:02:24 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [39016] O58 - SDL:[MD5.FB3D139AD1AC117B99A16042C1DD02D1] - 27/10/2008 - 11:06:00 ---A- . (.Egis Incorporated. - PSD Filter Driver.) -- C:\Windows\system32\drivers\mwlPSDFilter.sys [22064] O58 - SDL:[MD5.BF3F82A3EA6FBB6657DFE081A6BA4E2E] - 27/10/2008 - 11:06:00 ---A- . (.Egis Incorporated. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\system32\drivers\mwlPSDNserv.sys [20528] O58 - SDL:[MD5.DA24873DCB2891805692A03BAD1E34B4] - 27/10/2008 - 11:06:00 ---A- . (.Egis Incorporated. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\system32\drivers\mwlPSDVDisk.sys [59952] O58 - SDL:[MD5.4AC08BD6AF2DF42E0C3196D826C8AEA7] - 02/11/2006 - 13:03:03 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51816] O58 - SDL:[MD5.7D397449AAF52B0E7C79B64F6AD4473E] - 30/01/2008 - 10:48:32 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\system32\drivers\NTIDrvr.sys [16384] O58 - SDL:[MD5.2C040B7ADA5B06F6FACADAC8514AA034] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [128056] O58 - SDL:[MD5.F7EA0FE82842D05EDA3EFDD376DBFDBA] - 21/01/2008 - 03:46:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [54328] O58 - SDL:[MD5.0B83F4E681062F3839BE2EC1D98FD94A] - 21/01/2008 - 03:46:52 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1221176] O58 - SDL:[MD5.E1C80F8D4D1E39EF9595809C1369BF2A] - 02/11/2006 - 12:50:27 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [124008] O58 - SDL:[MD5.C3CF92F7983477FF305BD1AFAE411152] - 20/02/2009 - 11:10:00 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RtHDMIVX.sys [191392] O58 - SDL:[MD5.FDFC40441FAC0F3114A974168125279F] - 10/03/2009 - 09:24:14 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [1733024] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 30/09/2006 - 00:51:44 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040] O58 - SDL:[MD5.3A2F769FAB9582BC720E11EA1DFB184D] - 21/01/2008 - 03:47:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [78392] O58 - SDL:[MD5.2F26A2C6FC96B29BEFF5D8ED74E6625B] - 02/11/2006 - 13:02:52 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [49256] O58 - SDL:[MD5.A909667976D3BCCD1DF813FED517D837] - 02/11/2006 - 13:02:37 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [44648] O58 - SDL:[MD5.36887B56EC2D98B9C362F6AE4DE5B7B0] - 02/11/2006 - 13:02:47 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [48232] O58 - SDL:[MD5.00C8CE31657624A125FDB90EFD554371] - 30/01/2008 - 10:48:16 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\system32\drivers\UBHelper.sys [16384] O58 - SDL:[MD5.697F0446134CDC8F99E69306184FBBB4] - 21/01/2008 - 03:46:56 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [284728] O58 - SDL:[MD5.31707F09846056651EA2C37858F5DDB0] - 02/11/2006 - 12:50:54 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [148072] O58 - SDL:[MD5.85E5E43ED5B48C8376281BAB519271B7] - 21/01/2008 - 03:46:52 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series x64 Windows Driver.) -- C:\Windows\system32\drivers\ulsata2.sys [174696] O58 - SDL:[MD5.81838071C71E93EB38194514C6580F82] - 14/12/2009 - 17:02:00 ---A- . (.Creative Technology Ltd. - Video Capture Device Driver (64-bit).) -- C:\Windows\system32\drivers\V0530Vid.sys [319488] O58 - SDL:[MD5.8294B6C3FDB6C33F24E150DE647ECDAA] - 21/01/2008 - 03:46:50 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [18024] O58 - SDL:[MD5.A68F455ED2673835209318DD61BFBB0E] - 21/01/2008 - 03:47:25 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [149048] O58 - SDL:[MD5.B309912717C29FC67E1BA4730A82B6DD] - 29/05/2011 - 08:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [39984] ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - (.not file.) - 89278864 (89278864) .(...) - LEGACY_89278864 O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(...) - LEGACY_ASWFSBLK O64 - Services: CurCS - (.not file.) - aswMonFlt (aswMonFlt) .(...) - LEGACY_ASWMONFLT O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(...) - LEGACY_ASWRDR O64 - Services: CurCS - (.not file.) - avast! Self Protection (aswSP) .(...) - LEGACY_ASWSP O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(...) - LEGACY_ASWTDI O64 - Services: CurCS - C:\Windows\System32\DRIVERS\avfsfilter.sys (.not file.) - AVFSFilter (AVFSFilter) .(...) - LEGACY_AVFSFILTER O64 - Services: CurCS - C:\Windows\System32\drivers\cfwids.sys - McAfee Inc. cfwids (cfwids) .(...) - LEGACY_CFWIDS O64 - Services: CurCS - C:\Windows\system32\Drivers\EXFAT.sys - (.not file.) - exFAT File System Driver (exfat) .(...) - LEGACY_EXFAT O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC O64 - Services: CurCS - C:\Windows\System32\drivers\mfeapfk.sys - McAfee Inc. mfeapfk (mfeapfk) .(...) - LEGACY_MFEAPFK O64 - Services: CurCS - C:\Windows\System32\drivers\mfeavfk.sys - McAfee Inc. mfeavfk (mfeavfk) .(...) - LEGACY_MFEAVFK O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfeavfk01) .(...) - LEGACY_MFEAVFK01 O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfeavfk02) .(...) - LEGACY_MFEAVFK02 O64 - Services: CurCS - C:\Windows\System32\drivers\mfefirek.sys - McAfee Inc. mfefirek (mfefirek) .(...) - LEGACY_MFEFIREK O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfefirek01) .(...) - LEGACY_MFEFIREK01 O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\drivers\mfehidk.sys - McAfee Inc. mfehidk(mfehidk) .(.McAfee, Inc. - McAfee Link Driver.) - LEGACY_MFEHIDK O64 - Services: CurCS - (.not file.) - McAfee Inc. (mfehidk01) .(...) - LEGACY_MFEHIDK01 O64 - Services: CurCS - C:\Windows\System32\DRIVERS\mfenlfk.sys - McAfee NDIS Light Filter (mfenlfk) .(...) - LEGACY_MFENLFK O64 - Services: CurCS - C:\Windows\System32\drivers\mferkdet.sys - McAfee Inc. mferkdet (mferkdet) .(...) - LEGACY_MFERKDET O64 - Services: CurCS - (.not file.) - McAfee Inc. mfesmfk (mfesmfk) .(...) - LEGACY_MFESMFK O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\drivers\mfewfpk.sys - McAfee Inc. mfewfpk(mfewfpk) .(.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) - LEGACY_MFEWFPK O64 - Services: CurCS - (.not file.) - MPFP (MPFP) .(...) - LEGACY_MPFP O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys - mwlPSDFilter(mwlPSDFilter) .(.Egis Incorporated. - PSD Filter Driver.) - LEGACY_MWLPSDFILTER O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys - mwlPSDNServ(mwlPSDNServ) .(.Egis Incorporated. - MyWinLocker PSD Named Pipe Driver.) - LEGACY_MWLPSDNSERV O64 - Services: CurCS - 30/12/1899 - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys - mwlPSDVDisk(mwlPSDVDisk) .(.Egis Incorporated. - MyWinLocker PSD Virtual Disk Driver.) - LEGACY_MWLPSDVDISK O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL O64 - Services: CurCS - (.not file.) - PROCEXP113 (PROCEXP113) .(...) - LEGACY_PROCEXP113 O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR O64 - Services: CurCS - C:\Windows\system32\Drivers\UBHELPER.sys - UBHelper (UBHelper) .(...) - LEGACY_UBHELPER ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - Bing O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} [DefaultScope] - (Google) - Google O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - Google O69 - SBI: SearchScopes [HKCU] {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} - (Winamp Search) - http://slirsredirect.search.aol.com ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.BEE3BE7186EADDF6EAE7BA37BB9692AE] [sPRF] (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Users\Laurence\AppData\Local\Temp\jre-1.6.0_20-windows-i586-iftw.exe_90744722.exe [921376] [MD5.8E4A7D2735469C7F6780E75F5B6D1DA2] [sPRF] (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Users\Laurence\AppData\Local\Temp\jre-6u20-windows-i586-jinstall_uac.exe [1017632] ---\\ Recherche d'infection Rogue (O86) C:\Users\Laurence\AppData\Roaming\12E4B10ED4C5766071346CA7BB1EB805 ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "FPS-SpoolSvc-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\spoolsv.exe (.not file.) O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" |Out - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\lsass.exe (.not file.) O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe O87 - FAEL: "WinCollab-DFSR-Out-TCP" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "WinCollab-DFSR-In-TCP" |In - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\dfsr.exe (.not file.) O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - Domain - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "{C5159984-553C-4823-BF32-B2DFF233CC6D}" |In - Domain - P17 - TRUE | .(...) -- C:\Program Files (x86)\Common Files\Mcafee\MNA\McNaSvc.exe (.not file.) O87 - FAEL: "{BB6635D5-3886-4845-B466-E925B3887D79}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR.exe O87 - FAEL: "{C91DF075-46FD-497B-A89A-CCBA8C466255}" | In - Public - P6 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{DC50D5E6-0294-472B-896F-CFA7F7DB1EFE}" | In - Public - P17 - TRUE | .(.NewTech InfoSystems, Inc. - NTI Backup Now 5 BackupSvc Application.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O87 - FAEL: "{86EBC3BD-6066-43A5-9F22-714963395E99}" | In - Public - P6 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{9880492A-BB17-499F-9186-89E48FA1B2A7}" | In - Public - P17 - TRUE | .(.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O87 - FAEL: "{E8963510-9D3E-4DD1-8452-07FBF83B1758}" | In - None - P17 - TRUE | .(.CyberLink Corp. - Acer HomeMedia Connect.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer HomeMedia Connect\HomeMedia Connect.exe O87 - FAEL: "{94B9C54D-5C19-4502-8738-098AD902EC5D}" | In - None - P17 - TRUE | .(.CyberLink - CLMSService.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer HomeMedia Connect\Kernel\DMS\CLMSService.exe O87 - FAEL: "{23BA550D-33F7-452C-BB67-0542BC0BB53E}" | In - None - P17 - TRUE | .(.CyberLink - CLMSServer.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe O87 - FAEL: "{80677B29-F3BF-4AB9-AE8E-1A1535EED938}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer Arcade Deluxe.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\Acer Arcade Deluxe.exe O87 - FAEL: "{C3AA241F-ABA8-46B6-B9CC-A8136B615536}" | In - None - P17 - TRUE | .(.Acer Corp. - Acer Arcade Deluxe PlayMovie.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PlayMovie.exe O87 - FAEL: "{C68F254B-99CF-42BB-B23B-FF3696CDDB80}" | In - None - P17 - TRUE | .(.Acer Corp. - Acer Arcade Deluxe PlayMovie Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe O87 - FAEL: "{8C67C18C-CF29-4C03-B10D-5FCA5655DFAC}" | In - None - P17 - TRUE | .(.Acer Incorporated - Acer HomeMedia.) -- C:\Program Files (x86)\Acer Arcade Deluxe\HomeMedia\HomeMedia.exe O87 - FAEL: "TCP Query User{2189FFB5-0C80-4CB1-8A9B-96DBAB2B8A1B}C:\program files (x86)\emule\emule.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\emule\emule.exe (.not file.) O87 - FAEL: "UDP Query User{FA9AE9D9-ECFB-46B9-9A55-314245D1400F}C:\program files (x86)\emule\emule.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\emule\emule.exe (.not file.) O87 - FAEL: "TCP Query User{B4746A15-5D5E-48B4-ABC9-E9B205A873B2}C:\program files (x86)\electronic arts\eadm\core.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\electronic arts\eadm\core.exe (.not file.) O87 - FAEL: "UDP Query User{70F3CD60-DD54-4FE8-8E0C-4C24824260EC}C:\program files (x86)\electronic arts\eadm\core.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\electronic arts\eadm\core.exe (.not file.) O87 - FAEL: "TCP Query User{633D0942-3F4E-4337-BCD7-F9F2B0976BB3}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "UDP Query User{CBCA9E5F-E7CC-4056-8E5E-DAA397B75CC3}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "{8E82D7BD-64CD-49ED-960D-157C9C897FC2}" | In - Domain - P17 - TRUE | .(.McAfee, Inc. - McAfee Service Host.) -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe O87 - FAEL: "{BA9A7D4B-1263-4766-917F-5A69378AE1E5}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{0866DC1C-6B5E-40CC-AE10-8C2C8635CCF0}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Mesh Operating Environment.) -- C:\Program Files (x86)\Windows Live\Mesh\MOE.exe O87 - FAEL: "{921C0B3D-61A4-413F-8B25-3F978D65D41D}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{E1C2391A-F437-4FA3-9921-8F283EB0B52C}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{5195E7B6-D9F5-441B-9461-3A90DC3EE0C7}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe O87 - FAEL: "{7E56CE54-3DEC-4334-A8E0-9784ED04D5BF}" | In - None - P17 - TRUE | .(.Hewlett-Packard - HP Software Update Client.) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe O87 - FAEL: "{40C6AC3D-C89B-45E3-A31E-F22910DA448C}" | In - Private - P6 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\Program Files (x86)\Vuze\Azureus.exe O87 - FAEL: "{D6FEC1BB-4B4F-4AB1-8BBB-A85FD860D257}" | In - Private - P17 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\Program Files (x86)\Vuze\Azureus.exe ---\\ Scan Additionnel (O88) Database Version : 8435 - (31/05/2011) Clés trouvées (Keys found) : 26 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 2 Fichiers trouvés (Files found) : 0 [HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive] =>PUP.OfferBox [HKLM\Software\Classes\AppID\SoftwareUpdate.exe] =>PUP.Eorezo [HKLM\Software\Wow6432Node\Classes\AppID\SoftwareUpdate.exe] =>PUP.Eorezo [HKCR\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar [HKLM\Software\Classes\Wow6432Node\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar [HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKCR\CLSID\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKLM\Software\Classes\CLSID\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKCR\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}] =>Adware.ClickPotato [HKLM\Software\Classes\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}] =>Adware.ClickPotato [HKLM\Software\Wow6432Node\Classes\AppID\{d2083641-e57f-4eab-bb85-0582424f4a29}] =>Adware.ClickPotato [HKCR\Interface\{E2ED56B6-35FC-4484-9530-EC87FB458E78}] =>PUP.Eorezo [HKLM\Software\Classes\Interface\{E2ED56B6-35FC-4484-9530-EC87FB458E78}] =>PUP.Eorezo [HKCR\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Adware.AskSBar [HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Adware.AskSBar [HKCU\Software\PCTuto] =>Spyware.AgenceExclusive [HKLM\Software\PCTuto] =>Spyware.AgenceExclusive [HKLM\Software\Wow6432Node\PCTuto] =>Spyware.AgenceExclusive [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PCTuto Avast_is1] =>Spyware.AgenceExclusive [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PcTuto_is1] =>Spyware.AgenceExclusive [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\UpdatePCTuto_is1] =>Spyware.AgenceExclusive C:\Users\Laurence\Appdata\LocalLow\Zynga =>Toolbar.Conduit C:\Program Files (x86)\Zynga =>Toolbar.Conduit ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 18/02/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 18/02/2011 0 | (Ati External Event Utility) . (.ATI Technologies Inc..) - C:\Windows\system32\Ati2evxx.exe SR - | Auto 06/04/2011 349472 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SR - | Auto 18/12/2008 75048 | (CLHNService) . (...) - C:\Program Files (x86)\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe SR - | Auto 24/12/2008 58664 | (CyberLink Media Server Monitor Service) . (...) - C:\Program Files (x86)\Acer Arcade Deluxe\Acer HomeMedia Connect\Kernel\DMS\CLMSMonitorService.exe SR - | Auto 24/12/2008 288120 | (CyberLink Media Server Service) . (.CyberLink.) - C:\Program Files (x86)\Acer Arcade Deluxe\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe SS - | Auto 29/01/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 29/01/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 04/12/2009 182768 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Auto 12/09/2008 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe SR - | Demand 14/04/2011 934176 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 16/02/2011 101048 | (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe SS - | Demand 15/01/2010 227232 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe SS - | Auto 10/03/2010 355440 | (McMPFSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe SR - | Auto 10/03/2010 355440 | (mcmscsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe SR - | Auto 10/03/2010 355440 | (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe SR - | Auto 10/03/2010 355440 | (McNASvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe SS - | Demand 07/10/2010 509416 | (McODS) . (.McAfee, Inc..) - C:\Program Files\McAfee\VirusScan\mcods.exe SS - | Auto 10/03/2010 355440 | (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe SS - | Auto 14/04/2011 200056 | (McShield) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe SR - | Auto 14/04/2011 245352 | (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe SS - | Auto 14/04/2011 149032 | (mfevtp) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe SS - | Auto 10/03/2010 355440 | (MSK80Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe SR - | Auto 27/10/2008 306736 | (MWLService) . (.EgisTec Inc..) - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe SS - | Demand 23/09/2008 50424 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe SR - | Auto 23/09/2008 144632 | (NTISchedulerSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe SR - | Auto 09/01/2009 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe SR - | Auto 04/03/2011 214664 | (SPAMfighter Update Service) . (.SPAMfighter ApS.) - C:\Program Files (x86)\Fighters\SPAMfighter\sfus.exe SR - | Auto 28/04/2011 1206408 | (Suite Service) . (.SPAMfighter ApS.) - C:\Program Files (x86)\Fighters\FighterSuiteService.exe SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover Run by Laurence at 01/06/2011 23:45:20 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Laurence at 01/06/2011 23:45:22 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin End of the scan (1082 lines in 02mn 12s)(0)

le scan n'a rien trouvé mais pour le f8, j'arrive à l'ecran de selection que tu decris, je choisis mode sans echec et c'est ensuite que les lignes system 32 s'affichent... et j'ai l'impression d'arriver en mode normal... c comme si une appli se lançait au demarrage pour empecher le mode sans echec... c surement pas très clair... désolée

pour le mode sans echec c'est ça le souci : quand je fais f8 il y a des espèces de lignes qui s'inscrivent toute seules : genre system32\drivers\sys ou system32\ecache\sys ou system32\disk\sys, est ce que c'est normal? je suis en mode sans echec quand même????

je l'ai fait hier déjà ça... je dois le refaire???

J'ai toujours ma question sur le mode sans echec ... le problème persiste. et depuis mes manips, j'ai un message qui s'affiche : "Mcafee service host a cessé de fonctionner, un problème est à l'origine du dysfonctionnement". Je n'avais jamais eu ce type de message auparavant. pouvez-vous m'aider svp? (energie consommée positivement et pour la cause d'une blondinette eplorée qui ne comprend rien à l'informatique...)

euh ok je verrai ça, pas sûre de tout piger quand même mais bon je suis blonde ça doit être pour ça et concernant le souci de demarrage en mode sans echec?

euh désolée, je n'ai rien compris

Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 6734 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19048 31/05/2011 20:40:03 mbam-log-2011-05-31 (20-40-03).txt Type d'examen: Examen complet (C:\|D:\|) Elément(s) analysé(s): 427604 Temps écoulé: 1 heure(s), 20 minute(s), 9 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)

oulala, peace & love les amis, c'est le printemps et il fait beau... et moi en attendant quand je fais f8 il y a des espèces de lignes qui s'inscrivent toute seules : genre system32\drivers\sys ou system32\ecache\sys ou system32\disk\sys, est ce que c'est normal? je suis en mode sans echec quand même???? par contre côté malware, plus rien à signaler, ça c'est une super nouvelle !!! merci mes héros de zebulon.fr !!!

pfiouuuuu, champaaaagne pour fêter ça !!! le scan est en cours, j'ai demandé qu'on fasse brûler quelques cierges à Lourdes pour le salut de mon PC...