Aller au contenu

StephaneW

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    9

  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    Français, Anglais, Néerlandais

StephaneW's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. StephaneW
    Ca m'a l'air bien stable, plus de problemes depuis les dernières manips. Je vais tout de même redémarrer mon ordinateur, puis effectuer un Malwarebyte complet cette nuit (quelquechose me dit que ça prendra bien quelques heures). En tous les cas, tous les programmes que j'ai essayé dans la dernière heure refonctionnent parfaitement. Merci beaucoup de ton aide, tu as été très efficace et clair!
  2. StephaneW
    ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 20:26:57 le 23/06/2011, Mode normal Microsoft® Windows Vista™ Édition Intégrale Service Pack 2 (X86) Neo@MATRIX (Acer Aspire 8920) ============== RECHERCHE ============== Clé trouvée: HKLM\Software\Classes\Interface\{144940B1-F191-11D0-A8E2-00A0C90F29FC} Clé trouvée: HKCU\Software\PartyGaming Clé trouvée: HKCU\Software\Titan Poker Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Titan Poker ============== SCAN ADDITIONNEL ============== -- C:\Users\Neo\AppData\Roaming\Mozilla\FireFox\Profiles\h4hc0zre.default -- Extensions\{03B08592-E5B4-45ff-A0BE-C1D975458688} (Toolbar Buttons) Extensions\{64161300-e22b-11db-8314-0800200c9a66} (Speed Dial) Extensions\{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e} (Noia 2.0 (eXtreme)) Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} (Memory Fox) Searchplugins\google-ssl.xml (?) Prefs.js - browser.download.dir, C:\\Users\\Neo\\Downloads Prefs.js - browser.startup.homepage, about:home Prefs.js - browser.startup.homepage_override.buildID, 20110615151330 Prefs.js - browser.startup.homepage_override.mstone, rv:5.0 ======================================== **** Google Chrome Version [12.0.742.100] **** -- C:\Users\Neo\AppData\Local\Google\Chrome\User Data\Default -- Preferences - default_search_provider: "Google" (Activé: true) (?) Preferences - homepage: hxxp://www.google.com Preferences - homepage_is_newtabpage: false Plugin - "Chrome IE Tab" (Activé: true) Plugin - "DivX Player" (Activé: true) Plugin - "Facebook Plugin" (Activé: true) ======================================== **** Internet Explorer Version [9.0.8112.16421] **** HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKCU_Main|Start Page - hxxp://www.facebook.com/ HKLM_Main|Default_Page_URL - hxxp://fr.fr.acer.yahoo.com HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Start Page - hxxp://fr.fr.acer.yahoo.com HKCU_SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4} - "PDFCreator Toolbar" (hxxp://search.pdfcreator-toolbar.org/search?p=Q&ts=ne&w={searchTerms}&csrc=searc...) HKCU_Toolbar\ShellBrowser|{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll) HKCU_Toolbar\WebBrowser|{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} (C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll) HKLM_Toolbar|{0BF43445-2F28-4351-9252-17FE6E806AA0} (x) HKLM_Toolbar|{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll) HKLM_Toolbar|{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} (C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll) HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x) HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x) HKLM_ElevationPolicy\{A553FC79-0F5A-4DDE-A7AE-920F6EE4E264} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\vista_broker.exe (x) HKLM_ElevationPolicy\{aa851425-0109-43f3-9ed2-7b7090125861} - C:\Program Files\Microsoft\BingBar\BingBar.exe (Microsoft Corporation.) HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (DivX, LLC.) HKLM_ElevationPolicy\{DCAAA846-F9B9-4E1C-B2FE-CD0045097E76} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\resources\pdfutil.exe (?) HKLM_ElevationPolicy\{F365CC6C-656A-4108-8CF0-16DF98696395} - C:\Program Files\Canon\ZoomBrowser EX\Program\ZoomBrowser.exe (?) BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?) BHO\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - "ShowBarObj Class" (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll) BHO\{C451C08A-EC37-45DF-AAAD-18B51AB5E837} - "PDFCreator Toolbar Helper" (C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll) BHO\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "Bing Bar Helper" ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x) BHO\{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} (?) ======================================== C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files\Ad-Remover\Backup: 1 Fichier(s) C:\Ad-Report-SCAN[1].txt - 23/06/2011 20:27:02 (4629 Octet(s)) Fin à: 20:27:58, 23/06/2011 ============== E.O.F ============== ======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par TeamXscript le 12/04/11 Contact: AdRemover[DOT]contact[AT]gmail[DOT]com Site web: http://www.teamxscript.org C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 20:28:18 le 23/06/2011, Mode normal Microsoft® Windows Vista™ Édition Intégrale Service Pack 2 (X86) Neo@MATRIX (Acer Aspire 8920) ============== ACTION(S) ============== (!) -- Fichiers temporaires supprimés. Clé supprimée: HKLM\Software\Classes\Interface\{144940B1-F191-11D0-A8E2-00A0C90F29FC} Clé supprimée: HKCU\Software\PartyGaming Clé supprimée: HKCU\Software\Titan Poker Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Titan Poker ============== SCAN ADDITIONNEL ============== -- C:\Users\Neo\AppData\Roaming\Mozilla\FireFox\Profiles\h4hc0zre.default -- Extensions\{03B08592-E5B4-45ff-A0BE-C1D975458688} (Toolbar Buttons) Extensions\{64161300-e22b-11db-8314-0800200c9a66} (Speed Dial) Extensions\{9f08cb5a-76b1-4bcf-aff9-90e1a5d60b1e} (Noia 2.0 (eXtreme)) Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} (Memory Fox) Searchplugins\google-ssl.xml (?) Prefs.js - browser.download.dir, C:\\Users\\Neo\\Downloads Prefs.js - browser.startup.homepage, about:home Prefs.js - browser.startup.homepage_override.buildID, 20110615151330 Prefs.js - browser.startup.homepage_override.mstone, rv:5.0 ======================================== **** Google Chrome Version [12.0.742.100] **** -- C:\Users\Neo\AppData\Local\Google\Chrome\User Data\Default -- Preferences - default_search_provider: "Google" (Activé: true) (?) Preferences - homepage: hxxp://www.google.com Preferences - homepage_is_newtabpage: false Plugin - "Chrome IE Tab" (Activé: true) Plugin - "DivX Player" (Activé: true) Plugin - "Facebook Plugin" (Activé: true) ======================================== **** Internet Explorer Version [9.0.8112.16421] **** HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896 HKCU_Main|Start Page - hxxp://fr.msn.com/ HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM_Main|Start Page - hxxp://fr.msn.com/ HKCU_SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4} - "PDFCreator Toolbar" (hxxp://search.pdfcreator-toolbar.org/search?p=Q&ts=ne&w={searchTerms}&csrc=searc...) HKCU_Toolbar\ShellBrowser|{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll) HKCU_Toolbar\WebBrowser|{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} (C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll) HKLM_Toolbar|{0BF43445-2F28-4351-9252-17FE6E806AA0} (x) HKLM_Toolbar|{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll) HKLM_Toolbar|{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} (C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll) HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x) HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x) HKLM_ElevationPolicy\{A553FC79-0F5A-4DDE-A7AE-920F6EE4E264} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\vista_broker.exe (x) HKLM_ElevationPolicy\{aa851425-0109-43f3-9ed2-7b7090125861} - C:\Program Files\Microsoft\BingBar\BingBar.exe (Microsoft Corporation.) HKLM_ElevationPolicy\{D802E3EF-2513-4661-972E-BAD737EFBA88} - C:\Program Files\DivX\DivX OVS Helper\OVSHelperBroker.exe (DivX, LLC.) HKLM_ElevationPolicy\{DCAAA846-F9B9-4E1C-B2FE-CD0045097E76} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\resources\pdfutil.exe (?) HKLM_ElevationPolicy\{F365CC6C-656A-4108-8CF0-16DF98696395} - C:\Program Files\Canon\ZoomBrowser EX\Program\ZoomBrowser.exe (?) BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?) BHO\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - "ShowBarObj Class" (C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll) BHO\{C451C08A-EC37-45DF-AAAD-18B51AB5E837} - "PDFCreator Toolbar Helper" (C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll) BHO\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "Bing Bar Helper" ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x) BHO\{E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} (?) ======================================== C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s) C:\Program Files\Ad-Remover\Backup: 16 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 23/06/2011 20:28:52 (4960 Octet(s)) C:\Ad-Report-SCAN[1].txt - 23/06/2011 20:27:02 (4767 Octet(s)) Fin à: 20:29:55, 23/06/2011 ============== E.O.F ==============
  3. StephaneW
    Le rapport ZHPFix: Rapport de ZHPFix 1.12.3324 par Nicolas Coolman, Update du 23/06/2011 Fichier d'export Registre : C:\ZHPExportRegistry-23-06-2011-20-24-03.txt Run by Neo at 23/06/2011 20:24:03 Windows Vista Ultimate Edition, 32-bit Service Pack 2 (Build 6002) Web site : ZHPFix Fix de rapport ========== Logiciel(s) ========== ABSENT Uninstall Process: c:\poker\titan poker\_setuppoker_681e8.exe ========== Clé(s) du Registre ========== SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Titan Poker] SUPPRIME Key: HKCU\Software\Titan Poker SUPPRIME Key: HKCU\Software\pdfforge.org ABSENT Key: HKLM\Software\pdfforge.org ERREUR Key: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\titan poker SUPPRIME Key: HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E} ERREUR Key: HKCU\Software\titan poker ABSENT Key: HKLM\Software\titan poker ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Titan Poker ========== Dossier(s) ========== SUPPRIME C:\ProgramData\Trymedia SUPPRIME Temporaires Windows: : 105 SUPPRIME Flash Cookies: 2 ========== Fichier(s) ========== ABSENT Folder/File: c:\programdata\trymedia SUPPRIME Temporaires Windows: : 1629 SUPPRIME Flash Cookies: 1 ========== Récapitulatif ========== 9 : Clé(s) du Registre 3 : Dossier(s) 3 : Fichier(s) 1 : Logiciel(s) ========== Chemin du fichier rapport ========== C:\Program Files\ZHPDiag\ZHPFixReport.txt End of the scan
  4. StephaneW
    Le rapport se trouve à l'adresse suivante: ZHPDIag.txt
  5. StephaneW
    Voici le rapport de TDSSKiller. Aucun malicious tool trouvé apparemment. 2011/06/23 19:36:22.0434 3616 TDSS rootkit removing tool 2.5.5.0 Jun 16 2011 15:25:15 2011/06/23 19:36:22.0656 3616 ================================================================================ 2011/06/23 19:36:22.0656 3616 SystemInfo: 2011/06/23 19:36:22.0656 3616 2011/06/23 19:36:22.0656 3616 OS Version: 6.0.6002 ServicePack: 2.0 2011/06/23 19:36:22.0656 3616 Product type: Workstation 2011/06/23 19:36:22.0656 3616 ComputerName: MATRIX 2011/06/23 19:36:22.0656 3616 UserName: Neo 2011/06/23 19:36:22.0656 3616 Windows directory: C:\Windows 2011/06/23 19:36:22.0656 3616 System windows directory: C:\Windows 2011/06/23 19:36:22.0656 3616 Processor architecture: Intel x86 2011/06/23 19:36:22.0656 3616 Number of processors: 2 2011/06/23 19:36:22.0656 3616 Page size: 0x1000 2011/06/23 19:36:22.0656 3616 Boot type: Normal boot 2011/06/23 19:36:22.0656 3616 ================================================================================ 2011/06/23 19:36:23.0813 3616 Initialize success 2011/06/23 19:36:26.0056 0440 ================================================================================ 2011/06/23 19:36:26.0056 0440 Scan started 2011/06/23 19:36:26.0056 0440 Mode: Manual; 2011/06/23 19:36:26.0056 0440 ================================================================================ 2011/06/23 19:36:26.0480 0440 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys 2011/06/23 19:36:26.0570 0440 ACSSCR (a9c8d7750f18a4d598308b096b34545b) C:\Windows\system32\DRIVERS\a38usb.sys 2011/06/23 19:36:26.0710 0440 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys 2011/06/23 19:36:26.0877 0440 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys 2011/06/23 19:36:27.0121 0440 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys 2011/06/23 19:36:27.0275 0440 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys 2011/06/23 19:36:27.0487 0440 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys 2011/06/23 19:36:27.0652 0440 AgereSoftModem (38325c6aa8eae011897d61ce48ec6435) C:\Windows\system32\DRIVERS\AGRSM.sys 2011/06/23 19:36:27.0934 0440 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys 2011/06/23 19:36:28.0072 0440 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys 2011/06/23 19:36:28.0147 0440 AlfaFF (8d59617a9c3dbf4650aa44f4e9215744) C:\Windows\system32\Drivers\AlfaFF.sys 2011/06/23 19:36:28.0223 0440 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys 2011/06/23 19:36:28.0254 0440 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys 2011/06/23 19:36:28.0279 0440 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys 2011/06/23 19:36:28.0322 0440 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys 2011/06/23 19:36:28.0364 0440 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys 2011/06/23 19:36:28.0523 0440 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys 2011/06/23 19:36:28.0587 0440 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys 2011/06/23 19:36:28.0654 0440 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys 2011/06/23 19:36:28.0701 0440 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys 2011/06/23 19:36:28.0788 0440 AvgLdx86 (bc12f2404bb6f2b6b2ff3c4c246cb752) C:\Windows\System32\Drivers\avgldx86.sys 2011/06/23 19:36:28.0840 0440 AvgMfx86 (5903d729d4f0c5bca74123c96a1b29e0) C:\Windows\System32\Drivers\avgmfx86.sys 2011/06/23 19:36:28.0902 0440 AvgRkx86 (94a16f829b1456237b7f929198ce2807) C:\Windows\system32\Drivers\avgrkx86.sys 2011/06/23 19:36:28.0960 0440 AvgTdiX (92d8e1e8502e649b60e70074eb29c380) C:\Windows\System32\Drivers\avgtdix.sys 2011/06/23 19:36:29.0064 0440 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys 2011/06/23 19:36:29.0166 0440 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys 2011/06/23 19:36:29.0222 0440 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys 2011/06/23 19:36:29.0255 0440 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys 2011/06/23 19:36:29.0294 0440 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys 2011/06/23 19:36:29.0334 0440 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys 2011/06/23 19:36:29.0374 0440 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys 2011/06/23 19:36:29.0420 0440 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys 2011/06/23 19:36:29.0501 0440 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys 2011/06/23 19:36:29.0566 0440 BTHMODEM (9a966a8e86d1771911ae34a20d11bff3) C:\Windows\system32\DRIVERS\bthmodem.sys 2011/06/23 19:36:29.0636 0440 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys 2011/06/23 19:36:29.0685 0440 BthPort (5a3abaa2f8eece7aefb942773766e3db) C:\Windows\system32\Drivers\BTHport.sys 2011/06/23 19:36:29.0800 0440 BTHUSB (94e2941280e3756a5e0bcb467865c43a) C:\Windows\system32\Drivers\BTHUSB.sys 2011/06/23 19:36:29.0845 0440 btwaudio (636f45a8500c1438cfa7dee15fc5c184) C:\Windows\system32\drivers\btwaudio.sys 2011/06/23 19:36:29.0892 0440 btwavdt (bf9256ff01b093a5d90bb7a35ec90410) C:\Windows\system32\drivers\btwavdt.sys 2011/06/23 19:36:29.0934 0440 btwrchid (0ab8c1ac177afb27309e1072faf34a37) C:\Windows\system32\DRIVERS\btwrchid.sys 2011/06/23 19:36:30.0007 0440 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys 2011/06/23 19:36:30.0046 0440 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys 2011/06/23 19:36:30.0112 0440 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys 2011/06/23 19:36:30.0176 0440 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys 2011/06/23 19:36:30.0243 0440 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys 2011/06/23 19:36:30.0303 0440 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys 2011/06/23 19:36:30.0341 0440 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys 2011/06/23 19:36:30.0365 0440 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys 2011/06/23 19:36:30.0402 0440 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys 2011/06/23 19:36:30.0488 0440 CSC (9bdb2e89be8d0ef37b1f25c3d3fc192c) C:\Windows\system32\drivers\csc.sys 2011/06/23 19:36:30.0588 0440 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys 2011/06/23 19:36:30.0668 0440 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys 2011/06/23 19:36:30.0728 0440 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys 2011/06/23 19:36:30.0801 0440 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys 2011/06/23 19:36:30.0853 0440 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys 2011/06/23 19:36:30.0899 0440 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys 2011/06/23 19:36:30.0997 0440 DritekPortIO (5c918d413f5837e67a85775c9873775e) C:\PROGRA~1\LAUNCH~1\DPortIO.sys 2011/06/23 19:36:31.0052 0440 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys 2011/06/23 19:36:31.0116 0440 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys 2011/06/23 19:36:31.0176 0440 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys 2011/06/23 19:36:31.0247 0440 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys 2011/06/23 19:36:31.0322 0440 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys 2011/06/23 19:36:31.0412 0440 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys 2011/06/23 19:36:31.0491 0440 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys 2011/06/23 19:36:31.0547 0440 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys 2011/06/23 19:36:31.0611 0440 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys 2011/06/23 19:36:31.0659 0440 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys 2011/06/23 19:36:31.0709 0440 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys 2011/06/23 19:36:31.0790 0440 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys 2011/06/23 19:36:31.0851 0440 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys 2011/06/23 19:36:31.0890 0440 fvevol (fecf4c2e42440a8d132bf94eee3c3fc9) C:\Windows\system32\DRIVERS\fvevol.sys 2011/06/23 19:36:31.0965 0440 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys 2011/06/23 19:36:32.0010 0440 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys 2011/06/23 19:36:32.0087 0440 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys 2011/06/23 19:36:32.0148 0440 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys 2011/06/23 19:36:32.0190 0440 HidBth (fcb3f4be408f72c1bd81bcaba87fc22f) C:\Windows\system32\DRIVERS\hidbth.sys 2011/06/23 19:36:32.0255 0440 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys 2011/06/23 19:36:32.0325 0440 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys 2011/06/23 19:36:32.0396 0440 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys 2011/06/23 19:36:32.0467 0440 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys 2011/06/23 19:36:32.0527 0440 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys 2011/06/23 19:36:32.0600 0440 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys 2011/06/23 19:36:32.0655 0440 iaStor (e5a0034847537eaee3c00349d5c34c5f) C:\Windows\system32\DRIVERS\iaStor.sys 2011/06/23 19:36:32.0704 0440 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys 2011/06/23 19:36:32.0779 0440 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys 2011/06/23 19:36:32.0846 0440 int15 (c6e5276c00ebdeb096bb5ef4b797d1b6) C:\Windows\system32\drivers\int15.sys 2011/06/23 19:36:32.0928 0440 IntcAzAudAddService (92bcc487f16892cda495dbd8160272d9) C:\Windows\system32\drivers\RTKVHDA.sys 2011/06/23 19:36:33.0107 0440 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys 2011/06/23 19:36:33.0163 0440 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys 2011/06/23 19:36:33.0235 0440 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys 2011/06/23 19:36:33.0330 0440 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys 2011/06/23 19:36:33.0396 0440 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys 2011/06/23 19:36:33.0478 0440 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys 2011/06/23 19:36:33.0514 0440 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys 2011/06/23 19:36:33.0581 0440 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys 2011/06/23 19:36:33.0606 0440 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys 2011/06/23 19:36:33.0638 0440 itecir (8bcd857c7932ad005d5f9c89329da2e1) C:\Windows\system32\DRIVERS\itecir.sys 2011/06/23 19:36:33.0676 0440 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys 2011/06/23 19:36:33.0736 0440 JMCR (8123f605779db22ffc67fa84b8381803) C:\Windows\system32\DRIVERS\jmcr.sys 2011/06/23 19:36:33.0818 0440 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys 2011/06/23 19:36:33.0871 0440 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys 2011/06/23 19:36:33.0949 0440 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys 2011/06/23 19:36:34.0060 0440 L1E (03afb2705e68703e165cd817779b472f) C:\Windows\system32\DRIVERS\L1E60x86.sys 2011/06/23 19:36:34.0133 0440 LHidFilt (e5a06eb4d1ecadce0bdefb574645ed2c) C:\Windows\system32\DRIVERS\LHidFilt.Sys 2011/06/23 19:36:34.0218 0440 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys 2011/06/23 19:36:34.0265 0440 LMouFilt (beb7a08b23b08890bd02dfc355127f58) C:\Windows\system32\DRIVERS\LMouFilt.Sys 2011/06/23 19:36:34.0331 0440 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys 2011/06/23 19:36:34.0374 0440 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys 2011/06/23 19:36:34.0405 0440 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys 2011/06/23 19:36:34.0464 0440 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys 2011/06/23 19:36:34.0523 0440 MBAMProtector (3d2c13377763eeac0ca6fb46f57217ed) C:\Windows\system32\drivers\mbam.sys 2011/06/23 19:36:34.0604 0440 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys 2011/06/23 19:36:34.0696 0440 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys 2011/06/23 19:36:34.0755 0440 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys 2011/06/23 19:36:34.0802 0440 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys 2011/06/23 19:36:34.0852 0440 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys 2011/06/23 19:36:34.0917 0440 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys 2011/06/23 19:36:34.0974 0440 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys 2011/06/23 19:36:35.0034 0440 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys 2011/06/23 19:36:35.0081 0440 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys 2011/06/23 19:36:35.0140 0440 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys 2011/06/23 19:36:35.0202 0440 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys 2011/06/23 19:36:35.0247 0440 mrxsmb10 (d4a3c7c580c4ccb5c06f2ada933ad507) C:\Windows\system32\DRIVERS\mrxsmb10.sys 2011/06/23 19:36:35.0287 0440 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 2011/06/23 19:36:35.0334 0440 msahci (a7df0c3adb40919f91b2917fbe07a370) C:\Windows\system32\drivers\msahci.sys 2011/06/23 19:36:35.0393 0440 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys 2011/06/23 19:36:35.0474 0440 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys 2011/06/23 19:36:35.0529 0440 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys 2011/06/23 19:36:35.0588 0440 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys 2011/06/23 19:36:35.0645 0440 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys 2011/06/23 19:36:35.0702 0440 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys 2011/06/23 19:36:35.0781 0440 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys 2011/06/23 19:36:35.0824 0440 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys 2011/06/23 19:36:35.0872 0440 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys 2011/06/23 19:36:35.0913 0440 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys 2011/06/23 19:36:35.0962 0440 mv2 (d186d031b0832a5438ec1ac2c5d74e9d) C:\Windows\system32\DRIVERS\mv2.sys 2011/06/23 19:36:36.0028 0440 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys 2011/06/23 19:36:36.0105 0440 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys 2011/06/23 19:36:36.0155 0440 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys 2011/06/23 19:36:36.0214 0440 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys 2011/06/23 19:36:36.0289 0440 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys 2011/06/23 19:36:36.0351 0440 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys 2011/06/23 19:36:36.0418 0440 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys 2011/06/23 19:36:36.0492 0440 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys 2011/06/23 19:36:36.0607 0440 NETw4v32 (6522dd40a5f67ced020bd81b856613fb) C:\Windows\system32\DRIVERS\NETw4v32.sys 2011/06/23 19:36:36.0843 0440 NETw5v32 (054ba4a208c7aaf4f787e4f5466755e6) C:\Windows\system32\DRIVERS\NETw5v32.sys 2011/06/23 19:36:37.0097 0440 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys 2011/06/23 19:36:37.0202 0440 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys 2011/06/23 19:36:37.0288 0440 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys 2011/06/23 19:36:37.0395 0440 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys 2011/06/23 19:36:37.0505 0440 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys 2011/06/23 19:36:37.0698 0440 NTIPPKernel (547bfa3591c70674b0bfc99354ab78b3) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys 2011/06/23 19:36:37.0752 0440 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys 2011/06/23 19:36:37.0824 0440 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys 2011/06/23 19:36:38.0067 0440 nvlddmkm (87a335a444551a432226720d18337ad9) C:\Windows\system32\DRIVERS\nvlddmkm.sys 2011/06/23 19:36:38.0396 0440 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys 2011/06/23 19:36:38.0461 0440 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys 2011/06/23 19:36:38.0515 0440 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys 2011/06/23 19:36:38.0611 0440 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys 2011/06/23 19:36:38.0709 0440 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys 2011/06/23 19:36:38.0796 0440 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys 2011/06/23 19:36:38.0836 0440 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys 2011/06/23 19:36:38.0900 0440 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys 2011/06/23 19:36:38.0949 0440 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys 2011/06/23 19:36:39.0001 0440 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys 2011/06/23 19:36:39.0078 0440 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys 2011/06/23 19:36:39.0193 0440 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys 2011/06/23 19:36:39.0236 0440 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys 2011/06/23 19:36:39.0332 0440 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys 2011/06/23 19:36:39.0388 0440 PSDFilter (628321c8dd76ad369b362b202e655a68) C:\Windows\system32\DRIVERS\psdfilter.sys 2011/06/23 19:36:39.0426 0440 PSDNServ (79d7117e62709c7690cf3dd55acead37) C:\Windows\system32\drivers\PSDNServ.sys 2011/06/23 19:36:39.0469 0440 psdvdisk (cae5e82827990cf4bd4a49576bde3a43) C:\Windows\system32\drivers\psdvdisk.sys 2011/06/23 19:36:39.0535 0440 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys 2011/06/23 19:36:39.0600 0440 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys 2011/06/23 19:36:39.0662 0440 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys 2011/06/23 19:36:39.0719 0440 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys 2011/06/23 19:36:39.0820 0440 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys 2011/06/23 19:36:39.0888 0440 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys 2011/06/23 19:36:39.0952 0440 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys 2011/06/23 19:36:40.0026 0440 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys 2011/06/23 19:36:40.0104 0440 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys 2011/06/23 19:36:40.0173 0440 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\DRIVERS\rdpdr.sys 2011/06/23 19:36:40.0226 0440 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys 2011/06/23 19:36:40.0286 0440 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys 2011/06/23 19:36:40.0434 0440 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys 2011/06/23 19:36:40.0511 0440 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys 2011/06/23 19:36:40.0673 0440 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS 2011/06/23 19:36:40.0717 0440 SASENUM (7ce61c25c159f50f9eaf6d77fc83fa35) C:\Program Files\SUPERAntiSpyware\SASENUM.SYS 2011/06/23 19:36:40.0767 0440 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys 2011/06/23 19:36:40.0923 0440 SbFw (419883201ca9ad697ccfb8fc46dd6f78) C:\Windows\system32\drivers\SbFw.sys 2011/06/23 19:36:40.0975 0440 SBFWIMCL (f01b8409a11c319e3c5b9dd418676d2c) C:\Windows\system32\DRIVERS\sbfwim.sys 2011/06/23 19:36:41.0017 0440 sbhips (31ca701f26ea66468ad3c3c6498755ce) C:\Windows\system32\drivers\sbhips.sys 2011/06/23 19:36:41.0076 0440 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys 2011/06/23 19:36:41.0163 0440 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 2011/06/23 19:36:41.0203 0440 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys 2011/06/23 19:36:41.0247 0440 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys 2011/06/23 19:36:41.0300 0440 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys 2011/06/23 19:36:41.0394 0440 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys 2011/06/23 19:36:41.0433 0440 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys 2011/06/23 19:36:41.0463 0440 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys 2011/06/23 19:36:41.0510 0440 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys 2011/06/23 19:36:41.0592 0440 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys 2011/06/23 19:36:41.0637 0440 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys 2011/06/23 19:36:41.0679 0440 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys 2011/06/23 19:36:41.0766 0440 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys 2011/06/23 19:36:41.0843 0440 snapman (5052dbafc8f4e4507e6ad0d467dd3529) C:\Windows\system32\DRIVERS\snapman.sys 2011/06/23 19:36:41.0913 0440 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys 2011/06/23 19:36:42.0205 0440 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys 2011/06/23 19:36:42.0230 0440 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 2011/06/23 19:36:42.0237 0440 sptd - detected LockedFile.Multi.Generic (1) 2011/06/23 19:36:42.0432 0440 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys 2011/06/23 19:36:42.0537 0440 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys 2011/06/23 19:36:42.0622 0440 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys 2011/06/23 19:36:42.0715 0440 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys 2011/06/23 19:36:42.0787 0440 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys 2011/06/23 19:36:42.0847 0440 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys 2011/06/23 19:36:42.0896 0440 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys 2011/06/23 19:36:42.0945 0440 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys 2011/06/23 19:36:42.0995 0440 SynTP (bf7aa84d5af0faa0978c840e63b17dbf) C:\Windows\system32\DRIVERS\SynTP.sys 2011/06/23 19:36:43.0097 0440 Tcpip (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\drivers\tcpip.sys 2011/06/23 19:36:43.0169 0440 Tcpip6 (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\DRIVERS\tcpip.sys 2011/06/23 19:36:43.0246 0440 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys 2011/06/23 19:36:43.0291 0440 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys 2011/06/23 19:36:43.0329 0440 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys 2011/06/23 19:36:43.0389 0440 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys 2011/06/23 19:36:43.0469 0440 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys 2011/06/23 19:36:43.0562 0440 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys 2011/06/23 19:36:43.0617 0440 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys 2011/06/23 19:36:43.0698 0440 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys 2011/06/23 19:36:43.0767 0440 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys 2011/06/23 19:36:43.0813 0440 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys 2011/06/23 19:36:43.0884 0440 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys 2011/06/23 19:36:43.0953 0440 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys 2011/06/23 19:36:43.0999 0440 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys 2011/06/23 19:36:44.0060 0440 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys 2011/06/23 19:36:44.0107 0440 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys 2011/06/23 19:36:44.0169 0440 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys 2011/06/23 19:36:44.0246 0440 UMPass (88bd96a1baeed33ee8bdf9499c07a841) C:\Windows\system32\DRIVERS\umpass.sys 2011/06/23 19:36:44.0356 0440 UnlockerDriver5 (4847639d852763ee39415c929470f672) C:\Program Files\Unlocker\UnlockerDriver5.sys 2011/06/23 19:36:44.0437 0440 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys 2011/06/23 19:36:44.0500 0440 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys 2011/06/23 19:36:44.0572 0440 USBCCID (baf8295318980e8528825082dfed85d6) C:\Windows\system32\DRIVERS\Rts5161ccid.sys 2011/06/23 19:36:44.0635 0440 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys 2011/06/23 19:36:44.0705 0440 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys 2011/06/23 19:36:44.0775 0440 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys 2011/06/23 19:36:44.0825 0440 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys 2011/06/23 19:36:44.0874 0440 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys 2011/06/23 19:36:44.0952 0440 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys 2011/06/23 19:36:45.0005 0440 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS 2011/06/23 19:36:45.0069 0440 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys 2011/06/23 19:36:45.0130 0440 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys 2011/06/23 19:36:45.0188 0440 usb_rndisx (35c9095fa7076466afbfc5b9ec4b779e) C:\Windows\system32\DRIVERS\usb8023x.sys 2011/06/23 19:36:45.0269 0440 VBoxDrv (3e4b3de332634151d10bca5c0f3dd226) C:\Windows\system32\DRIVERS\VBoxDrv.sys 2011/06/23 19:36:45.0337 0440 VBoxNetAdp (02cf071ee8cad9667ec0736c57360b70) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys 2011/06/23 19:36:45.0404 0440 VBoxNetFlt (9200e34447dd628c0080f41b15378e83) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys 2011/06/23 19:36:45.0482 0440 VBoxUSBMon (be71306e451c5f9de9a64b32038314ee) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys 2011/06/23 19:36:45.0551 0440 VD_FileDisk (478e622b4031ac847b86c60bbf0784f8) C:\Windows\system32\drivers\VD_FileDisk.sys 2011/06/23 19:36:45.0618 0440 vfs101x (4d45a93a7dd638ca2db0a86fbfbf42d1) C:\Windows\system32\drivers\vfs101x.sys 2011/06/23 19:36:45.0686 0440 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys 2011/06/23 19:36:45.0754 0440 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys 2011/06/23 19:36:45.0796 0440 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys 2011/06/23 19:36:45.0845 0440 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys 2011/06/23 19:36:45.0897 0440 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys 2011/06/23 19:36:45.0957 0440 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys 2011/06/23 19:36:46.0026 0440 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys 2011/06/23 19:36:46.0114 0440 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys 2011/06/23 19:36:46.0188 0440 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys 2011/06/23 19:36:46.0271 0440 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys 2011/06/23 19:36:46.0326 0440 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys 2011/06/23 19:36:46.0348 0440 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys 2011/06/23 19:36:46.0441 0440 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys 2011/06/23 19:36:46.0498 0440 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys 2011/06/23 19:36:46.0654 0440 winusb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\winusb.sys 2011/06/23 19:36:46.0785 0440 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys 2011/06/23 19:36:46.0884 0440 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys 2011/06/23 19:36:46.0970 0440 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys 2011/06/23 19:36:47.0101 0440 WSVD (0d0367919d12143739cd7ec67a65b6eb) C:\Windows\system32\drivers\WSVD.sys 2011/06/23 19:36:47.0167 0440 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys 2011/06/23 19:36:47.0332 0440 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (4d840c6af3c020ed3a35efba9025cf4a) C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl 2011/06/23 19:36:47.0393 0440 MBR (0x1B8) (bb9d3a6a13c5010348da7c900bb6af50) \Device\Harddisk0\DR0 2011/06/23 19:36:47.0414 0440 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1 2011/06/23 19:36:47.0421 0440 ================================================================================ 2011/06/23 19:36:47.0421 0440 Scan finished 2011/06/23 19:36:47.0421 0440 ================================================================================ 2011/06/23 19:36:47.0429 5724 Detected object count: 1 2011/06/23 19:36:47.0429 5724 Actual detected object count: 1 2011/06/23 19:36:58.0138 5724 LockedFile.Multi.Generic(sptd) - User select action: Skip
  6. StephaneW
    Voici déjà le log de Malwarebytes. Pour info, le dernier fichier mentionné, eXplorer.exe, est en fait RKill.exe que j'avais renommé comme cela comme expliqué sur ce forum. Sans cela, je ne pouvais pas l'exécuter, mais grâce à ça oui. Au vu de ce log, je pense savoir comment j'ai chopé cette saloperie: l'avant-dernier fichier, install-flash-player, était sans doute un fake ... Malwarebytes' Anti-Malware 1.51.0.1200 www.malwarebytes.org Version de la base de données: 6927 Windows 6.0.6002 Service Pack 2 Internet Explorer 9.0.8112.16421 23/06/2011 18:12:00 mbam-log-2011-06-23 (18-12-00).txt Type d'examen: Examen rapide Elément(s) analysé(s): 183678 Temps écoulé: 4 minute(s), 8 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 1 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 4 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Hijack.Shell.Gen) -> Value: Shell -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): c:\Users\Neo\AppData\Roaming\microsoft\knxift.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Users\Neo\AppData\Roaming\microsoft\sksney.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Users\Neo\downloads\install_flash_player.exe (Trojan.Downloader) -> Quarantined and deleted successfully. c:\Users\Neo\Desktop\eXplorer.exe (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully.
  7. StephaneW
    Voici les 5 rapports. Je précise qu'avant de les exécuter, j'avais utilisé RKill qui m'avait été recommandé sur ce forum. Après l'avoir renommé, j'ai pu l'exécuter et ai regagné le contrôle de mon PC. Ensuite, j'ai nettoyé (Quick) avec Malwarebyte's Malware. Puis j'ai fait ces rapports. RogueKiller V5.2.4 [23/06/2011] par Tigzy contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT) mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/29) Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: Neo [Droits d'admin] Mode: Suppression -- Date : 23/06/2011 19:09:41 Processus malicieux: 4 [sUSP PATH] PLFSetI.exe -- c:\windows\plfseti.exe -> KILLED [sUSP PATH] DropboxExt.14.dll -- C:\Users\Neo\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll -> UNLOADED [sUSP PATH] afom.exe -- c:\users\neo\appdata\roaming\mozilla\firefox\profiles\h4hc0zre.default\extensions\{e173b749-db5b-4fd2-ba0e-94ecea0ca55b}\components\afom.exe -> KILLED [sUSP PATH] DropboxExt.14.dll -- C:\Users\Neo\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll -> UNLOADED Entrees de registre: 5 [sUSP PATH] HKLM\[...]\Run : PLFSetI (C:\Windows\PLFSetI.exe) -> DELETED [HJ] HKCU\[...]\Internet Settings : WarnOnHTTPSToHTTPRedirect (0) -> REPLACED (1) [HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1) [HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0) [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) Fichier HOSTS: 127.0.0.1 localhost ::1 localhost Termine : << RKreport[1].txt >> RKreport[1].txt RogueKiller V5.2.4 [23/06/2011] par Tigzy contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT) mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/29) Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: Neo [Droits d'admin] Mode: HOSTS RAZ -- Date : 23/06/2011 19:10:17 Processus malicieux: 1 [sUSP PATH] DropboxExt.14.dll -- C:\Users\Neo\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll -> UNLOADED Fichier HOSTS: 127.0.0.1 localhost ::1 localhost Nouveau fichier HOSTS: 127.0.0.1 localhost Termine : << RKreport[2].txt >> RKreport[1].txt ; RKreport[2].txt RogueKiller V5.2.4 [23/06/2011] par Tigzy contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT) mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/29) Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: Neo [Droits d'admin] Mode: Proxy RAZ -- Date : 23/06/2011 19:10:36 Processus malicieux: 1 [sUSP PATH] DropboxExt.14.dll -- C:\Users\Neo\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll -> UNLOADED Entrees de registre: 0 Termine : << RKreport[3].txt >> RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt RogueKiller V5.2.4 [23/06/2011] par Tigzy contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT) mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/29) Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: Neo [Droits d'admin] Mode: DNS RAZ -- Date : 23/06/2011 19:10:51 Processus malicieux: 1 [sUSP PATH] DropboxExt.14.dll -- C:\Users\Neo\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll -> UNLOADED Entrees de registre: 0 Termine : << RKreport[4].txt >> RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt RogueKiller V5.2.4 [23/06/2011] par Tigzy contact sur Forum Sciences / Forum Informatique - Sur la Toile (SLT) mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/29) Systeme d'exploitation: Windows Vista (6.0.6002 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: Neo [Droits d'admin] Mode: Raccourcis RAZ -- Date : 23/06/2011 19:13:34 Processus malicieux: 0 Attributs de fichiers restaures: Bureau: Success 1 / Fail 0 Lancement rapide: Success 0 / Fail 0 Programmes: Success 25 / Fail 0 Menu demarrer: Success 0 / Fail 0 Dossier utilisateur: Success 1310 / Fail 0 Mes documents: Success 6 / Fail 0 Mes favoris: Success 1 / Fail 0 Mes images: Success 121 / Fail 0 Ma musique: Success 826 / Fail 0 Mes videos: Success 0 / Fail 0 Disques locaux: Success 179 / Fail 0 Sauvegarde: [NOT FOUND] Lecteurs: [C:] \Device\HarddiskVolume2 -- 0x3 --> Restored [D:] \Device\HarddiskVolume5 -- 0x3 --> Restored [E:] \Device\HarddiskVolume3 -- 0x3 --> Restored [G:] \Device\CdRom0 -- 0x5 --> Skipped [H:] \Device\HarddiskVolume1 -- 0x3 --> Restored Termine : << RKreport[5].txt >> RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt Merci
  8. StephaneW
    Ok, merci. Je suis au boulot et il s'agit de mon PC perso, donc je ne pourrai y regarder que ce soir, mais j'enverrai les rapports dès que ce sera fait !
  9. StephaneW
    Bonjour, Depuis hier soir, mon laptop est gangrené par des popups qui soi-disant viennent de Microsoft Security Essentials Alert. Ce qui n'est pas le cas, puisque je ne l'ai jamais installé. Personnellement, j'utilise AVG comme anti-virus et Sunbelt Personal Firewall comme pare-feu. Mon laptop est un Acer Aspire 8920G et il tourne avec Windows Vista SP2. J'ai parcouru de nombreux forums (en anglais) hier et ai essayé de trouver des solutions. Mais dès que j'essaie d'exécuter un des programmes demandés (Malwarebyte's malware, Internet Explorer, le task manager, ...), ceux-ci sont "interceptés" par le malware qui me montre un popup me disant que je suis infecté. En fait, j'arrive à lancer Malwarebyte's mais après 2-3 secondes il se ferme brutalement avec ce popup. Pas moyen non plus d'accéder au registre par Regedit pour essayer de trouver et d'enlever toute référence à Microsoft Security Essentials. Le mode sans échec ne veut plus démarrer, par contre aucun problème pour démarrer en mode "normal" - enfin normal à part ces popups qui rendent le PC inutilisable. Pouvez-vous m'aider ? D'avance merci !!! Stéphane
×
×
  • Créer...