Infection détectée

[ROUROU]

OTL logfile created on: 29/05/2011 21:43:40 - Run 2

OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Juju\Desktop

Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation

Internet Explorer (Version = 9.0.8112.16421)

Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

 

3,50 Gb Total Physical Memory | 2,49 Gb Available Physical Memory | 71,12% Memory free

7,18 Gb Paging File | 6,21 Gb Available in Paging File | 86,44% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files

Drive C: | 145,80 Gb Total Space | 41,11 Gb Free Space | 28,20% Space Free | Partition Type: NTFS

Drive D: | 145,46 Gb Total Space | 141,96 Gb Free Space | 97,59% Space Free | Partition Type: NTFS

 

Computer Name: PC-DE-JUJU | User Name: Juju | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

 

========== Processes (SafeList) ==========

 

PRC - [2011/05/26 19:43:18 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Juju\Desktop\OTL.exe

PRC - [2011/05/17 18:21:25 | 000,240,288 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10q_ActiveX.exe

PRC - [2011/05/10 14:10:58 | 003,459,712 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe

PRC - [2011/05/10 14:10:57 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

PRC - [2010/08/30 11:17:50 | 000,090,112 | ---- | M] (Clarus, Inc.) -- C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe

PRC - [2009/11/25 05:17:34 | 000,368,640 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe

PRC - [2009/11/25 05:17:04 | 000,172,032 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe

PRC - [2009/11/24 21:24:54 | 000,569,344 | ---- | M] (AMD) -- C:\Program Files\ATI Technologies\HydraVision\HydraMD.exe

PRC - [2009/11/24 21:24:24 | 000,385,024 | ---- | M] (AMD) -- C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe

PRC - [2009/09/02 14:29:22 | 000,643,592 | ---- | M] (Avid Technology, Inc.) -- C:\Windows\System32\M-AudioTaskBarIcon.exe

PRC - [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe

PRC - [2007/02/07 00:04:26 | 000,457,512 | ---- | M] (HiTRSUT) -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe

PRC - [2007/02/07 00:04:16 | 000,464,168 | ---- | M] (HiTRUST) -- C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe

PRC - [2007/01/05 00:13:54 | 000,240,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe

PRC - [2006/12/08 15:45:32 | 000,045,056 | ---- | M] (Acer Inc.) -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe

PRC - [2006/11/23 16:24:54 | 000,319,488 | ---- | M] () -- C:\Windows\System32\SysMonitor.exe

PRC - [2006/11/12 21:35:08 | 000,024,576 | ---- | M] () -- C:\Acer\Empowering Technology\ePerformance\MemCheck.exe

PRC - [2006/11/09 04:57:52 | 003,784,704 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe

 

 

========== Modules (SafeList) ==========

 

MOD - [2011/05/26 19:43:18 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Juju\Desktop\OTL.exe

MOD - [2011/05/10 14:10:55 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll

MOD - [2010/08/31 17:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll

 

 

========== Win32 Services (SafeList) ==========

 

SRV - [2011/05/10 14:10:57 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)

SRV - [2010/08/30 11:17:50 | 000,090,112 | ---- | M] (Clarus, Inc.) [Auto | Running] -- C:\Program Files\Clarus\Samsung SecretZone\SZAssistSVC.exe -- (SZASSIST)

SRV - [2009/11/25 05:17:04 | 000,172,032 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)

SRV - [2008/05/02 02:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe -- (LBTServ)

SRV - [2008/01/19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)

SRV - [2007/02/07 00:04:26 | 000,457,512 | ---- | M] (HiTRSUT) [Auto | Running] -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe -- (eDataSecurity Service)

SRV - [2007/01/25 19:31:34 | 000,093,048 | ---- | M] (CACE Technologies) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)

SRV - [2007/01/05 00:13:54 | 000,240,408 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe -- (MSCamSvc)

SRV - [2006/12/08 15:45:32 | 000,045,056 | ---- | M] (Acer Inc.) [Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)

SRV - [2006/11/12 21:35:08 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Acer\Empowering Technology\ePerformance\MemCheck.exe -- (AcerMemUsageCheckService)

 

 

========== Driver Services (SafeList) ==========

 

DRV - [2011/05/10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)

DRV - [2011/05/10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)

DRV - [2011/05/10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2011/05/10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)

DRV - [2011/05/10 13:59:44 | 000,053,592 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)

DRV - [2011/05/10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2010/08/11 17:18:08 | 000,070,512 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Clarus\Samsung SecretZone\mvd22.sys -- (mvd22)

DRV - [2010/08/11 17:15:48 | 000,018,288 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\Clarus\Samsung SecretZone\mdf16.sys -- (mdf16)

DRV - [2010/01/20 20:39:18 | 000,025,400 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\UnHooker.sys -- (UnHooker)

DRV - [2009/11/25 05:51:32 | 005,143,552 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)

DRV - [2009/11/25 05:18:16 | 000,096,768 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)

DRV - [2007/08/09 18:12:30 | 000,110,624 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\nvstor32.sys -- (nvstor32)

DRV - [2007/01/25 19:31:34 | 000,042,000 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\npf.sys -- (NPF)

DRV - [2007/01/23 15:45:00 | 000,034,576 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)

DRV - [2007/01/23 15:45:00 | 000,033,296 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)

DRV - [2007/01/23 15:44:00 | 000,020,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\L8042Kbd.sys -- (L8042Kbd)

DRV - [2006/12/07 18:12:02 | 000,076,584 | ---- | M] () [Kernel | Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15)

DRV - [2006/12/06 01:39:13 | 001,964,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VX3000.sys -- (VX3000)

DRV - [2006/07/24 16:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)

DRV - [2004/08/09 13:33:26 | 000,114,016 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\prohlp02.sys -- (prohlp02)

DRV - [2004/08/09 13:29:28 | 000,053,920 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\Windows\System32\drivers\prodrv06.sys -- (prodrv06)

DRV - [2004/07/19 16:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\prosync1.sys -- (prosync1)

DRV - [2004/04/14 11:08:00 | 000,044,064 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WmXlCore.sys -- (WmXlCore)

DRV - [2004/04/14 11:08:00 | 000,021,280 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WmFilter.sys -- (WmFilter)

DRV - [2004/04/14 11:08:00 | 000,010,144 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WmBEnum.sys -- (WmBEnum)

DRV - [2004/04/14 11:08:00 | 000,005,600 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WmVirHid.sys -- (WmVirHid)

DRV - [2003/12/01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfhlp01.sys -- (sfhlp01)

 

 

========== Standard Registry (SafeList) ==========

 

 

========== Internet Explorer ==========

 

 

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = {searchTerms} - Yahoo! Search Results

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Yahoo! France

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

 

 

 

O1 HOSTS File: ([2011/05/28 18:09:20 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts

O1 - Hosts: 127.0.0.1 localhost

O1 - Hosts: ::1 localhost

O2 - BHO: (FlashGetBHO) - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Users\Juju\AppData\Roaming\FlashGetBHO\FlashGetBHO3.dll (Trend Media Group)

O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)

O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)

O4 - HKLM..\Run: [Acer Empowering Technology Monitor] C:\Windows\System32\SysMonitor.exe ()

O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)

O4 - HKLM..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe (HiTRUST)

O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech Inc.)

O4 - HKLM..\Run: [M-Audio Taskbar Icon] C:\Windows\System32\M-AudioTaskBarIcon.exe (Avid Technology, Inc.)

O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)

O4 - HKLM..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)

O4 - HKCU..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe (AMD)

O4 - HKCU..\Run: [HydraVisionMDEngine] C:\Program Files\ATI Technologies\HydraVision\HydraMD.exe (AMD)

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\Juju\AppData\Roaming\FlashGetBHO\GetAllUrl.htm ()

O8 - Extra context menu item: Download by FlashGet3 - C:\Users\Juju\AppData\Roaming\FlashGetBHO\GetUrl.htm ()

O9 - Extra Button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - Reg Error: Key error. File not found

O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O13 - gopher Prefix: missing

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)

O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)

O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~1\COMMON~1\System\OLEDB~1\MSDAIPP.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)

O24 - Desktop WallPaper: C:\Users\Juju\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg

O24 - Desktop BackupWallPaper: C:\Users\Juju\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

 

========== Files/Folders - Created Within 30 Days ==========

 

[2011/05/29 09:48:14 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{704EDC69-8AA1-4049-A96B-FF84786F2218}

[2011/05/28 20:00:15 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{22A2D317-F6E6-4F50-8218-6B6CFD2366CA}

[2011/05/28 17:39:02 | 000,000,000 | ---D | C] -- C:\_OTL

[2011/05/27 19:03:56 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{F1469F51-D9D0-45CE-BE5C-B667440B0128}

[2011/05/26 19:43:17 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Users\Juju\Desktop\OTL.exe

[2011/05/26 19:08:32 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{C6CDFC80-760E-4D5E-BFA3-F26E8F76EAAE}

[2011/05/25 21:19:33 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{B4EFD8E4-967C-478F-B61D-FCA5CD4AD11B}

[2011/05/25 18:45:30 | 000,000,000 | -HSD | C] -- C:\Config.Msi

[2011/05/25 18:43:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java

[2011/05/25 18:42:34 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe

[2011/05/25 18:42:34 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe

[2011/05/25 18:42:34 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe

[2011/05/24 18:42:20 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{7289ACE9-6E5D-42E8-A85A-FD1D4B3B2DFF}

[2011/05/23 20:48:48 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Roaming\Malwarebytes

[2011/05/23 20:48:44 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys

[2011/05/23 20:48:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware

[2011/05/23 20:48:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes

[2011/05/23 20:48:41 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys

[2011/05/23 20:48:40 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2011/05/23 20:28:07 | 007,734,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Juju\Desktop\mbam-setup-1.50.1.1100.exe

[2011/05/23 16:57:18 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{14482EDE-6BDB-416C-87B4-F921B01D21AD}

[2011/05/23 02:11:36 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{BF6D3ACE-F33E-4BE7-A0A1-5B3D9AE07ADB}

[2011/05/22 19:05:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP

[2011/05/22 19:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPDiag

[2011/05/22 19:04:25 | 002,486,272 | ---- | C] (Nicolas Coolman ) -- C:\Users\Juju\Desktop\ZHPDiag2.exe

[2011/05/22 19:01:35 | 000,000,000 | ---D | C] -- C:\Program Files\backups

[2011/05/22 13:05:07 | 000,000,000 | ---D | C] -- C:\Users\Juju\Documents\Films à acheter

[2011/05/22 12:08:32 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{DF6ACB61-3497-4399-8943-AEBAF0C73C36}

[2011/05/22 10:42:22 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner

[2011/05/21 18:44:24 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Program Files\HiJackThis.exe

[2011/05/21 18:30:59 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{9279F2EA-2F2B-4386-80ED-EFBFDD87E92B}

[2011/05/21 18:21:52 | 000,441,176 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys

[2011/05/20 18:35:50 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{75991771-1FFD-46F7-B53A-4AA7174F2DEC}

[2011/05/19 23:36:04 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{7C44A680-5A47-4C33-909B-09B454651195}

[2011/05/18 19:03:02 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{A38258C2-6D3D-4BB7-A979-30C117F9A28D}

[2011/05/17 23:36:03 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{EA618ADF-F0A8-41C3-99B8-9806F4893147}

[2011/05/17 22:45:07 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{FB92A6EC-3624-408A-9E3F-286CF6D187F1}

[2011/05/17 18:21:25 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl

[2011/05/16 18:24:15 | 000,000,000 | ---D | C] -- C:\Windows\Application Data

[2011/05/16 18:22:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung

[2011/05/16 18:22:39 | 000,000,000 | ---D | C] -- C:\Program Files\Clarus

[2011/05/16 18:08:52 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{15413796-C272-494A-83D9-2C6DC36E47F7}

[2011/05/15 17:19:53 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{D36FCAE4-6220-4BC8-A651-C22FA3BB4782}

[2011/05/14 16:57:03 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{E923B3FE-CED8-4C49-9ACB-999334546A51}

[2011/05/13 20:26:06 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{E006730F-0E4D-4A21-AAC2-70A428AF3CA6}

[2011/05/11 18:27:33 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{DD455598-4AB6-482E-AA1F-304766906E94}

[2011/05/09 18:44:50 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{10B1EBAE-1656-41A3-B645-C8ED1924983B}

[2011/05/08 23:41:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace

[2011/05/08 22:01:52 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{8A6E0543-984F-48BF-8EB7-12A6BA4F55F3}

[2011/05/05 10:53:57 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{D17B0764-E4FC-4902-BEA1-C287A0FD284F}

[2011/05/04 11:27:50 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{40A453CE-2121-4645-83A5-2EA080A3D5B2}

[2011/05/03 08:56:25 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{8EC052D5-6C20-411D-B7E0-42B5612F4DA1}

[2011/05/02 14:35:29 | 000,000,000 | ---D | C] -- C:\Users\Juju\AppData\Local\{3B94A6D7-EC3D-4FAB-925B-DB8A499ADC62}

[2007/04/03 20:24:07 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe

[2006/12/14 15:18:54 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll

 

========== Files - Modified Within 30 Days ==========

 

[2011/05/29 21:40:27 | 000,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

[2011/05/29 21:40:27 | 000,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

[2011/05/29 21:38:32 | 3757,629,440 | -HS- | M] () -- C:\hiberfil.sys

[2011/05/28 18:09:20 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts

[2011/05/26 19:46:49 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin

[2011/05/26 19:43:18 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Juju\Desktop\OTL.exe

[2011/05/25 18:42:01 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe

[2011/05/25 18:42:01 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe

[2011/05/25 18:42:01 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe

[2011/05/25 18:42:00 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll

[2011/05/23 21:24:09 | 000,678,804 | ---- | M] () -- C:\Windows\System32\perfh00C.dat

[2011/05/23 21:24:09 | 000,595,798 | ---- | M] () -- C:\Windows\System32\perfh009.dat

[2011/05/23 21:24:09 | 000,126,420 | ---- | M] () -- C:\Windows\System32\perfc00C.dat

[2011/05/23 21:24:09 | 000,103,872 | ---- | M] () -- C:\Windows\System32\perfc009.dat

[2011/05/23 20:48:44 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk

[2011/05/23 20:37:25 | 000,879,035 | ---- | M] () -- C:\Users\Juju\Desktop\SecurityCheck.exe

[2011/05/23 20:28:11 | 007,734,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Juju\Desktop\mbam-setup-1.50.1.1100.exe

[2011/05/22 21:58:33 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin

[2011/05/22 19:05:18 | 000,000,799 | ---- | M] () -- C:\Users\Public\Desktop\MBRCheck.lnk

[2011/05/22 19:05:18 | 000,000,792 | ---- | M] () -- C:\Users\Public\Desktop\ZHPDiag.lnk

[2011/05/22 19:05:18 | 000,000,787 | ---- | M] () -- C:\Users\Public\Desktop\ZHPFix.lnk

[2011/05/22 19:04:26 | 002,486,272 | ---- | M] (Nicolas Coolman ) -- C:\Users\Juju\Desktop\ZHPDiag2.exe

[2011/05/22 11:07:09 | 000,000,290 | RHS- | M] () -- C:\ProgramData\ntuser.pol

[2011/05/22 11:05:55 | 002,714,416 | ---- | M] () -- C:\Users\Juju\Documents\Rapport perf Vista.html

[2011/05/22 10:48:43 | 000,463,540 | ---- | M] () -- C:\Users\Juju\Documents\cc_20110522_104814.reg

[2011/05/21 18:49:29 | 000,000,292 | ---- | M] () -- C:\Windows\System32\secustat.dat

[2011/05/21 18:44:24 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\HiJackThis.exe

[2011/05/21 18:21:52 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt

[2011/05/17 18:21:25 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl

[2011/05/10 14:10:59 | 000,040,112 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr

[2011/05/10 14:10:55 | 000,199,304 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe

[2011/05/10 14:03:54 | 000,441,176 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys

[2011/05/10 14:03:44 | 000,307,928 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys

[2011/05/10 14:02:37 | 000,049,240 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys

[2011/05/10 13:59:56 | 000,025,432 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys

[2011/05/10 13:59:44 | 000,053,592 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys

[2011/05/10 13:59:35 | 000,019,544 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys

[2011/05/02 15:32:37 | 000,001,686 | ---- | M] () -- C:\Users\Juju\Application Data\Microsoft\Internet Explorer\Quick Launch\iTunes.lnk

[2011/04/30 17:31:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

 

========== Files Created - No Company Name ==========

 

[2011/05/26 19:46:49 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin

[2011/05/25 18:55:21 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk

[2011/05/23 20:48:44 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk

[2011/05/23 20:37:25 | 000,879,035 | ---- | C] () -- C:\Users\Juju\Desktop\SecurityCheck.exe

[2011/05/22 21:58:32 | 000,000,512 | ---- | C] () -- C:\PhysicalDisk0_MBR.bin

[2011/05/22 19:05:18 | 000,000,799 | ---- | C] () -- C:\Users\Public\Desktop\MBRCheck.lnk

[2011/05/22 19:05:18 | 000,000,792 | ---- | C] () -- C:\Users\Public\Desktop\ZHPDiag.lnk

[2011/05/22 19:05:18 | 000,000,787 | ---- | C] () -- C:\Users\Public\Desktop\ZHPFix.lnk

[2011/05/22 11:06:19 | 002,714,416 | ---- | C] () -- C:\Users\Juju\Documents\Rapport perf Vista.html

[2011/05/22 10:48:19 | 000,463,540 | ---- | C] () -- C:\Users\Juju\Documents\cc_20110522_104814.reg

[2011/05/02 15:32:37 | 000,001,686 | ---- | C] () -- C:\Users\Juju\Application Data\Microsoft\Internet Explorer\Quick Launch\iTunes.lnk

[2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat

[2010/08/04 20:32:55 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin

[2010/07/04 16:58:34 | 000,076,328 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat

[2010/04/14 18:53:32 | 000,000,292 | ---- | C] () -- C:\Windows\System32\secustat.dat

[2010/04/14 18:46:56 | 000,000,891 | ---- | C] () -- C:\Windows\System32\secushr.dat

[2010/04/14 18:46:44 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI

[2010/02/07 20:22:52 | 000,027,587 | ---- | C] () -- C:\Users\Juju\AppData\Roaming\UserTile.png

[2010/01/20 20:39:18 | 000,025,400 | ---- | C] () -- C:\Windows\System32\drivers\UnHooker.sys

[2009/10/22 17:59:00 | 000,196,565 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat

[2009/09/25 20:46:16 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll

[2009/09/25 20:46:16 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin

[2009/09/05 20:06:12 | 000,066,872 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe

[2009/09/05 20:06:11 | 000,138,184 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys

[2009/09/05 20:06:07 | 000,183,112 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe

[2009/08/03 00:21:54 | 000,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll

[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll

[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll

[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll

[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll

[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll

[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll

[2009/08/03 00:21:54 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll

[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll

[2009/08/03 00:21:52 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll

[2009/02/18 20:55:20 | 000,294,912 | ---- | C] () -- C:\Windows\System32\ATIODE.exe

[2009/02/03 23:52:02 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe

[2008/07/29 23:24:02 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin

[2008/07/17 15:49:42 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

[2008/07/03 21:35:44 | 000,000,065 | ---- | C] () -- C:\Windows\FISHUI.INI

[2008/07/03 21:09:35 | 000,299,008 | ---- | C] () -- C:\Windows\System32\LAME_MP3.dll

[2008/07/03 21:09:25 | 000,065,024 | ---- | C] () -- C:\Windows\IFinst26.exe

[2008/06/22 11:59:41 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt

[2008/06/22 11:44:57 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys

[2008/06/14 20:11:26 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI

[2007/09/15 13:57:26 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol

[2007/08/28 20:24:27 | 000,000,680 | ---- | C] () -- C:\Users\Juju\AppData\Local\d3d9caps.dat

[2007/08/27 21:23:36 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini

[2007/08/27 18:13:01 | 000,069,632 | R--- | C] () -- C:\Windows\System32\xmltok.dll

[2007/08/27 18:13:00 | 000,036,864 | R--- | C] () -- C:\Windows\System32\xmlparse.dll

[2007/08/15 19:19:37 | 000,086,528 | ---- | C] () -- C:\Windows\bnetunin.exe

[2007/04/08 11:21:20 | 000,199,168 | ---- | C] () -- C:\Users\Juju\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2007/04/03 21:27:56 | 000,133,404 | ---- | C] () -- C:\Windows\War3Unin.dat

[2007/04/03 20:25:20 | 000,000,042 | ---- | C] () -- C:\Windows\Acer(Wide).ini

[2007/04/03 20:25:19 | 000,000,044 | ---- | C] () -- C:\Windows\Acer(Normal).ini

[2007/04/03 20:24:07 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe

[2007/02/06 23:58:10 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll

[2007/02/06 23:57:58 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll

[2007/02/06 23:57:20 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll

[2007/02/06 23:56:30 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll

[2007/02/06 23:56:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll

[2007/02/06 23:52:08 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll

[2007/01/25 19:31:36 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.dll

[2006/12/25 15:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll

[2006/12/14 23:41:56 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll

[2006/12/14 22:41:46 | 000,000,985 | ---- | C] () -- C:\Windows\generic.ini

[2006/12/14 22:41:46 | 000,000,095 | ---- | C] () -- C:\Windows\Alaunch.ini

[2006/12/14 15:18:58 | 000,319,488 | ---- | C] () -- C:\Windows\System32\SysMonitor.exe

[2006/12/14 15:18:57 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll

[2006/12/14 15:09:35 | 000,013,952 | ---- | C] () -- C:\Windows\System32\drivers\UBHelper.sys

[2006/12/14 14:55:19 | 000,049,152 | ---- | C] () -- C:\Windows\System32\ChCfg.exe

[2006/11/13 05:50:06 | 000,071,680 | ---- | C] () -- C:\Windows\System32\HTCA_SelfExtract.bin

[2006/11/02 17:48:33 | 000,678,804 | ---- | C] () -- C:\Windows\System32\perfh00C.dat

[2006/11/02 17:48:33 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat

[2006/11/02 17:48:33 | 000,126,420 | ---- | C] () -- C:\Windows\System32\perfc00C.dat

[2006/11/02 17:48:33 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat

[2006/11/02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat

[2006/11/02 14:47:37 | 000,249,376 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT

[2006/11/02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll

[2006/11/02 12:33:01 | 000,595,798 | ---- | C] () -- C:\Windows\System32\perfh009.dat

[2006/11/02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat

[2006/11/02 12:33:01 | 000,103,872 | ---- | C] () -- C:\Windows\System32\perfc009.dat

[2006/11/02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat

[2006/11/02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat

[2006/11/02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

[2006/11/02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT

[2006/11/02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

[2006/11/02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

[2005/12/22 21:05:46 | 000,015,498 | ---- | C] () -- C:\Windows\VX3000.ini

[2004/12/20 11:08:28 | 000,155,648 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll

[2004/12/20 11:03:26 | 000,679,936 | ---- | C] () -- C:\Windows\System32\xvidcore.dll

[2001/12/26 16:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll

[2001/09/03 23:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll

[2001/07/30 16:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll

[2001/07/23 22:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll

[1999/01/22 21:46:58 | 000,065,536 | ---- | C] () -- C:\Windows\System32\MSRTEDIT.DLL

 

< End of report >

 

 

Voilà le rapport !

donc en amélioration j'ai du gagner peut être 2-3 minutes sur la bonne grosse dizaine au démarrage...

[lance_yien]

Bonjour,

 

...

donc en amélioration j'ai du gagner peut être 2-3 minutes sur la bonne grosse dizaine au démarrage...

Vu qu'il n'y a pas/plus de problème(s) visible(s) côté infection, je n'ai plus rien d'autre à te proposer.

Je te laisse voir dans l'une de ces sections: Optimisation/ Hardware / Software.

Ils sauront te guider au mieux pour le reste.

--

 

Quelques recommandations pour en finir ici,

 

>>> Supprimer les utilitaires:

- Lancer OTL et cliquer sur Purge outils. Laisser faire et redémarrer le PC.

- Pour supprimer les autres utilitaires et leur rapports, cliquer-droit dessus => "Supprimer".

 

 

>>> Ré-initialiser les Points de Restauration parce qu'elles peuvent contenir des traces d'infection:

Cliquer-droit sur "Ordinateur" => "Propriétés" => "Système" => "Protection Système". Décocher la case devant le nom de la partition système (généralement C:) et laisser faire.

Quand c'est fini cocher cette même case => "OK" et redémarrer le PC.

Un nouveau point de restauration sera créé.

 

 

>>> Vérifier/ Activer l'UAC: Parce qu'il y a de plus en plus de malware qui exploitent la désactivation de l'UAC (contrôle de compte utilisateur) de Windows (Vista et W7) pour installer des rootkits, garder ce module activé même s'il paraît, des fois, énervant:

Cliquer sur "Démarrer" => "Panneau de configuration". Cliquer sur " Comptes d'utilisateurs..." => "Activer ou désactiver le contrôle des comptes d'utilisateurs". Cocher la case "Utiliser le Contrôle des Comptes d'utilisateurs pour vous aider..." => OK.

Redémarrer le PC quand c'est demandé.

 

 

 

>>> Protéger/ Sécuriser:

• Vérifier le Pare-feu: Un pare-feu est le 1er rempart contre les intrusions.
  - Ceux de Vista/ Windows 7 peuvent suffire, juste contrôler et activer si nécessaire depuis le "Centre de sécurité".
  - Celui inclus dans Windows XP ne contrôle pas le flux sortant d'Internet d'où l'importance d'en installer un autre.
  Vérifier et choisir, si nécessaire, un parmi ceux-ci (gratuits): Online Armor Firewall, Sunbelt Personal Firewall, Outpost Firewall FREE.
   
  
• Contrôler et configurer les mises à jour Windows:
  - Cliquer ICI et installer toutes les Mises à jour critiques après avoir accepté l'installation de l'activex (si proposé).
  - OU, cliquer sur "Démarrer" => "Tous les programmes" => "Windows update".
  - ET, optez (si ce n'est pas encore fait) pour une MAJ Automatique à une heure où vous êtes sûr que votre PC n'est pas éteint.
   
  
• Installer PSI de Secunia pour des MAJ logiciels
  
• Installer Mes drivers pour des MAJ pilotes (cliquer sur Lancer la détection
  
• Utiliser PC Pitstop pour Optimiser votre PC (en anglais)
  
• Sauvegarder le Registre avec Erunt
  Pour des raisons évidentes, garder les copies de sauvegarde sur un support autre que le disque système.
  
• Immunisez votre machine avec Spyware Blaster, compatible avec Toutes les versions de Windows 32bit et 64bit. Tuto.
  
• Vaccinez votre machine et vos médias amovibles (clés USB...) avec MKV contre les "vers" (Autorun worms). Juste brancher tous les médias amovibles, lancer le programme et cliquer sur le bouton Vaccination (l'action est réversible en cliquant sur "Supprimer la vaccination".
  
• Opter pour Firefox ou Opera pour la navigation de tous les jours et réserver Internet Explorer pour les Mises à jour et les cas bien spécifiques.
  
• Nettoyer et dé-fragmenter, régulièrement, les Partitions/ Disques.

 

>>> Ce qu'il faut ÉVITER ABSOLUMENT: Parce qu'il existe toujours un programme/logiciel gratuit et légal pour pratiquement tout ce qu'on veut, supprimer de votre machine et rester à l'écart de tout ce qui est,

• Warez , Crack , keygen etc. Arrêter de croire que ces programmes sont là juste pour faire plaisir ou rendre service. Il n'y a qu'à parcourir les Forums pour voir le nombre de PC victimes de ces programmes.
  
• P2P , *.Torrent etc: Lire attentivement Le danger des P2P.

 

Bonne chance!

[ROUROU]

Bon je te remercie