redirection des page googleRésolu/Fermé

Question

Bonjour,
je m'adresse à vous pour un soucis de redirection avec google.
J'utilise internet explorer et lorsque je clic sur le lien ( lors de recherche ) je me retrouve très souvent avec des redirection vers des pages de pubs.
J'ai essayé de trouver dans les nombreuses résolutions du site, il y avait bien un post parlant exactement de ça, mais le lien vers un logiciel pour éradiquer ce soucis, ne fonctionne plus.

Mon niveau en informatique me semblait correct mais il semble à vous lire qu'il soit des plus modestes, je vous remercie d'avance de répondre en mode " pour les nuls".

Actuellement, j'ai installé firefox. Pas de soucis avec lui.

J'ai un portable avec windows 7 et antivir.

Cordialement Phil

dédétraqué · Answer

Salut papyphilippe, bienvenu sur CCM


On va vérifier cela, télécharge RSIT (de random/random) sur le bureau ici :
http://images.malwareremoval.com/random/RSIT.exe

- Double clique sur RSIT.exe qui est sur le bureau
- Clique sur Continue dans la fenêtre
- RSIT téléchargera HijackThis si il n’est pas présent où détecté, alors il faudra accepter la licence
- Poste le contenue des deux rapports, log.txt et info.txt(réduit dans la barre des tâches) à la fin de l’analyse

Les rapports sont dans le dossier ici C:\rsit


@++ :)

papyphilippe · Answer

Bonjour dédétraqué

merci mais il y a un soucis,
lorsque j'essaie de télécharger, il y a un message qui arrive.

nom de la fenêtre : AutoIt Error
Line -1
Error : Variable used without being declared

J'espére que cela ne signifie pas que c'est plus grave que prévu.

Papy phil

crapoulou · Answer

Bonsoir à vous !
Windows 7
(UAC et admin).

https://www.commentcamarche.net/faq/25150-rsit-autoit-error

Je sors ;-).

dédétraqué · Answer

Salut papyphilippe


Pas plutôt lors de l'exécution?

On va voir avec un autre outil de diagnostique :

Télécharge OTL (de OldTimer) et enregistre-le sur ton Bureau.
http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/

- Quitte les applications en cours afin de ne pas interrompre le scan.
- Faire un clique droit sur OTL.exe pour lancer le programme et choisi "Exécuter en tant qu'administrateur".
- Une fenêtre apparaît. Sous Custom Scans (en bas), copie/colle ceci :

netsvcs
%SYSTEMDRIVE%\*.* 
%SYSTEMDRIVE%\*.exe 
%PROGRAMFILES%\*.* 
%PROGRAMFILES%\*.
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
explorer.exe
svchost.exe
userinit.exe
qmgr.dll
ws2_32.dll
proquota.exe
imm32.dll
kernel32.dll
ndis.sys
autochk.exe
spoolsv.exe
xmlprov.dll
ntmssvc.dll
mswsock.dll
Beep.SYS
ntfs.sys
termsrv.dll
sfcfiles.dll
st3shark.sys
/md5stop
%systemroot%\*. /mp /s
c:\$recycle.bin\*.* /s

- Clique sur le bouton Run Scan.
- Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTListIT2 (donc par défaut sur le Bureau).

- Copie/colle ici le contenu des deux fichiers. Utilise un message par rapport.


@++   :)

papyphilippe · Answer

Merci Crapoulou,
je vais faire ça dés que possible.

dédétraqué, je mets le résultat aussi vite que possible.

Papy Phil

papyphilippe · Answer

Alors, j'ai suivi les indications.

Crapoulou, j'ai fait un copier coller comme précisé dans le lien que tu as mis.
Hélas, j'ai la réponse suivante " l'installation a echoué "

j'ai quand même essayé de faire tourner ce que tu m'as donné dédétraqué.
j'ai la chose suivante 
C:\Users\LG\Downloads\OTL.exe n'est pas une application Win32 valide.

J'ai l'impression qu'il ne doit pas avoir que ce soucis de redirection.

Papy Phil

dédétraqué · Answer

Salut papyphilippe


Télécharge FindyKill (de El Desaparecido) sur le bureau :
http://pagesperso-orange.fr/NosTools/Chiquitine29/Setup.exe
http://findykill.changelog.fr/Setup.exe

Fais un clic droit sur ce lien ci haut, pour Internet Explorer
- Choisi Enregistrer la cible sous ...
Pour Firefox
- Choisi Enregistrer la cible du lien sous...

- Et choisi le bureau comme lieu d'enregistrement, double clique sur FindyKill.exe sur le bureau pour lancer l’installation

Branche tous tes supports amovibles (clefs USB, disque dur externe, carte flash etc..).


Clique droit sur le raccourci de FindyKill sur le bureau et choisi "Exécuter en tant qu'administrateur". 
Au menu principal, choisis l'option 1 (Recherche).

Poste le rapport a la fin de la recherche, le rapport ce trouve ici C:\FindyKill.txt


@++   :)

papyphilippe · Answer

Bonjour dédétraqué,

j'ai donc essayé de faire ce que tu me disais,
cela semble fonctionner mais le programme ne progresse plus.

Il est a 50% et n'évolue plus. Il est sur le fichier suivant

C:\program Files <x86> \Hewlett-Packard \Media \iTV \Koan \python24.zip

Encore merci pour l'aide.

Papy Phil

papyphilippe · Answer

Je viens de redémarrer l'ordi et j'ai un nouveau truc qui apparait.

TR /Dursq.C.6

Je commence à me demander s'il ne serait pas préférable de tout réinstaller à partir des disques de sauvegarde.
Et de ne plus permettre l'utilisation de msn, téléchargement etc ...

Papy Phil

papyphilippe · Answer

Antivir semble l'avoir supprimé après redémarrage.

dédétraqué · Answer

Salut papyphilippe


Supprime le fichier OTL que tu as télécharger et essai de nouveau.
C:\Users\LG\Downloads\OTL.exe


@++    :)

papyphilippe · Answer

OTL Extras logfile created on: 07/02/2010 21:02:26 - Run 1 OTL by OldTimer - Version 3.1.28.0 Folder = C:\Users\LG\Downloads 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy 4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 67,00% Memory free 8,00 Gb Paging File | 6,00 Gb Available in Paging File | 81,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 450,18 Gb Total Space | 156,22 Gb Free Space | 34,70% Space Free | Partition Type: NTFS Drive D: | 15,29 Gb Total Space | 2,51 Gb Free Space | 16,45% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: LG-PC Current User Name: LG Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Include 64bit Scans Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Extra Registry (SafeList) ==========/color [color=#E56717]========== File Associations ==========/color [b]64bit:/b [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========/color [b]64bit:/b [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* File not found cmdfile [open] -- "%1" %* File not found comfile [open] -- "%1" %* File not found exefile [open] -- "%1" %* File not found helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* File not found regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" File not found scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S File not found txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [Browse with Corel Paint Shop Pro Photo X2] -- "C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\Corel Paint Shop Pro Photo.exe" "%L" (Corel, Inc.) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~4\Office12\ONENOTE.EXE "%L" (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [Browse with Corel Paint Shop Pro Photo X2] -- "C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\Corel Paint Shop Pro Photo.exe" "%L" (Corel, Inc.) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~4\Office12\ONENOTE.EXE "%L" (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========/color [b]64bit:/b [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:/b [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:/b [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:/b [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========/color [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========/color 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64) "{26A24AE4-039D-4CA4-87B4-2F86416014FF}" = Java(TM) 6 Update 14 (64-bit) "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{88E60521-1E4E-4785-B9F1-1798A4BD0C30}" = HP MediaSmart SmartMenu "{8FCDACA0-E090-4A9A-AC71-A96E7371DC6E}" = HP 3D DriveGuard "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-040C-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (French) 2007 "{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = HP Integrated Module with Bluetooth wireless technology "{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 "{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 "FFE7D41DF3C645075BB149E21988B63996C34187" = ENE CIR Receiver Driver "NVIDIA Drivers" = NVIDIA Drivers "SynTPDeinstKey" = Synaptics Pointing Device Driver [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam "{059C042E-796A-4ACC-A81A-ECC2010BB78C}" = Windows Live Messenger "{0DFB3DE8-65B9-44FF-AA0A-3BECC5A2BFD1}" = Adobe Flash Player 10 Plugin "{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}" = OpenOffice.org 3.1 "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{2231CE39-B963-4B9D-823A-F412ECA637B1}" = Windows Live Writer "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library "{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron Flash Media Controller Driver "{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 17 "{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com "{2EBA8202-FBD5-4004-81EA-BDC38C054CE2}" = HP User Guides 0153 "{3023EBDA-BF1B-4831-B347-E5018555F26E}" = HP MediaSmart Movie Themes "{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons "{3B160861-7250-451E-B5EE-8B92BF30A710}" = Microsoft Works "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go "{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = PowerRecover "{4908C75E-E5E2-43F7-B1DF-023CBA831036}" = Nero 7 Ultra Edition "{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update "{4F46FDB9-B906-47BF-B3D5-C62E01B3C5EE}" = HP Support Assistant "{54CC7901-804D-4155-B353-21F0CC9112AB}" = HP Wireless Assistant "{5B295588-59C1-4386-9F85-BB4BEDCB0D22}" = HP Customer Experience Enhancements "{63DC2DA0-2A6C-4C38-9249-B75395458657}" = Windows Live Mail "{64E72FB1-2343-4977-B4A8-262CD53D0BD3}" = Corel Paint Shop Pro Photo X2 "{669D4A35-146B-4314-89F1-1AC3D7B88367}" = HPAsset component for HP Active Support Library "{67626E09-5366-4480-8F1E-93FADF50CA15}" = HP MediaSmart Live TV "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{7370DF47-B4F9-4279-BFC3-3F09919F720D}" = Installation Windows Live "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}" = Windows Live Call "{82EF29B1-9B60-4142-A155-0599216DD053}" = LightScribe System Software "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard "{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007 "{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007 "{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007 "{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007 "{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007 "{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002A-040C-1000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007 "{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00A1-040C-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2007 "{90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007 "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French) "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.2 MUI "{B0900CB5-8EC0-43B4-9DAC-A32FE52DC864}" = e-Carte Bleue Banque Populaire "{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy "{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}" = HP Advisor "{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Activer Norton Online Backup "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint "{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector "{D46D081B-F60E-467E-A7C4-117B70D76731}" = HP Update "{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD "{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}" = Assistant de connexion Windows Live "{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series "{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio "{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant "{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}" = HP MediaSmart Internet TV "{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8}" = QuickTime "{F0FDF9C9-1DDC-401F-B638-36F1CAE8A875}" = VideoStudio "{F1D7AC58-554A-4A58-B784-B61558B1449A}" = QLBCASL "{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}" = HP Setup "40 polices pour l'école" = 40 polices pour l'école "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "AOL Toolbar" = AOL Toolbar 5.0 "Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus "DVD Shrink_is1" = DVD Shrink 3.2 "EasyBits Magic Desktop" = Magic Desktop "HijackThis" = HijackThis 2.0.2 "HOMESTUDENTR" = Microsoft Office Home and Student 2007 "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam "InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite "InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}" = HP MediaSmart Movie Themes "InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go "InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}" = HP MediaSmart Live TV "InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video "InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint "InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector "InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD "InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}" = HP MediaSmart Internet TV "InstallShield_{F0FDF9C9-1DDC-401F-B638-36F1CAE8A875}" = Corel VideoStudio 12 "LimeWire" = LimeWire 5.4.6 "Mozilla Firefox (3.6)" = Mozilla Firefox (3.6) "Ryzom" = Ryzom "VLC media player" = VLC media player 1.0.3 "WildTangent hp Master Uninstall" = HP Games "Windows Media Encoder 9" = Windows Media Encoder 9 Series "WinLiveSuite_Wave3" = Installation Windows Live [color=#E56717]========== Last 10 Event Log Errors ==========/color [ Application Events ] Error - 21/01/2010 11:47:12 | Computer Name = LG-PC | Source = Google Update | ID = 20 Description = Error - 21/01/2010 12:33:05 | Computer Name = LG-PC | Source = Google Update | ID = 20 Description = Error - 21/01/2010 13:33:05 | Computer Name = LG-PC | Source = Google Update | ID = 20 Description = Error - 21/01/2010 19:16:41 | Computer Name = LG-PC | Source = SideBySide | ID = 16842815 Description = La création du contexte d’activation a échoué pour « c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll ». Erreur dans le fichier de manifeste ou de stratégie « c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll » à la ligne 3. La valeur « MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR » de l’attribut « version » de l’élément « assemblyIdentity » n’est pas valide. Error - 24/01/2010 09:10:21 | Computer Name = LG-PC | Source = SideBySide | ID = 16842815 Description = La création du contexte d’activation a échoué pour « c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll ». Erreur dans le fichier de manifeste ou de stratégie « c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll » à la ligne 3. La valeur « MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR » de l’attribut « version » de l’élément « assemblyIdentity » n’est pas valide. Error - 24/01/2010 10:28:33 | Computer Name = LG-PC | Source = Application Hang | ID = 1002 Description = Le programme LimeWire.exe version 1.0.0.3 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 125c Heure de début : 01ca9d0153761f69 Heure de fin : 85 Chemin d’accès de l’application : C:\Program Files (x86)\LimeWire\LimeWire.exe ID de rapport : Error - 27/01/2010 05:33:05 | Computer Name = LG-PC | Source = Google Update | ID = 20 Description = Error - 27/01/2010 06:33:05 | Computer Name = LG-PC | Source = Google Update | ID = 20 Description = Error - 27/01/2010 20:02:15 | Computer Name = LG-PC | Source = Application Hang | ID = 1002 Description = Le programme client_ryzom_rd.exe version 0.0.0.0 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 12f8 Heure de début : 01ca9f889736f5a3 Heure de fin : 660 Chemin d’accès de l’application : C:\Program Files (x86)\Ryzom\client_ryzom_rd.exe ID de rapport : 27400204-0ba0-11df-9011-00269e35ee58 Error - 28/01/2010 12:20:58 | Computer Name = LG-PC | Source = Application Error | ID = 1000 Description = Nom de l’application défaillante QuickTime_Update_KB673901[1].exe, version : 0.0.0.0, horodatage : 0x4b6084f1 Nom du module défaillant : QuickTime_Update_KB673901[1].exe, version : 0.0.0.0, horodatage : 0x4b6084f1 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00001d44 ID du processus défaillant : 0x1304 Heure de début de l’application défaillante : 0x01caa0352789417a Chemin d’accès de l’application défaillante : C:\Users\LG\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7Y2OO9DC\QuickTime_Update_KB673901[1].exe Chemin d’accès du module défaillant: C:\Users\LG\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7Y2OO9DC\QuickTime_Update_KB673901[1].exe ID de rapport : 1d75795e-0c29-11df-9ff9-00269e35ee58 [ Media Center Events ] Error - 13/12/2009 18:58:33 | Computer Name = LG-PC | Source = MCUpdate | ID = 0 Description = 23:58:33 - Erreur de connexion à Internet. 23:58:33 - Impossible de contacter le service.. Error - 14/12/2009 13:48:53 | Computer Name = LG-PC | Source = MCUpdate | ID = 0 Description = 18:48:53 - Erreur de connexion à Internet. 18:48:53 - Impossible de contacter le service.. Error - 20/01/2010 09:03:29 | Computer Name = LG-PC | Source = MCUpdate | ID = 0 Description = 14:03:29 - Erreur de connexion à Internet. 14:03:29 - Impossible de contacter le service.. Error - 20/01/2010 09:03:41 | Computer Name = LG-PC | Source = MCUpdate | ID = 0 Description = 14:03:35 - Erreur de connexion à Internet. 14:03:35 - Impossible de contacter le service.. Error - 20/01/2010 10:03:46 | Computer Name = LG-PC | Source = MCUpdate | ID = 0 Description = 15:03:46 - Erreur de connexion à Internet. 15:03:46 - Impossible de contacter le service.. Error - 20/01/2010 10:03:52 | Computer Name = LG-PC | Source = MCUpdate | ID = 0 Description = 15:03:51 - Erreur de connexion à Internet. 15:03:51 - Impossible de contacter le service.. Error - 20/01/2010 11:03:57 | Computer Name = LG-PC | Source = MCUpdate | ID = 0 Description = 16:03:57 - Erreur de connexion à Internet. 16:03:57 - Impossible de contacter le service.. Error - 20/01/2010 11:04:03 | Computer Name = LG-PC | Source = MCUpdate | ID = 0 Description = 16:04:02 - Erreur de connexion à Internet. 16:04:02 - Impossible de contacter le service.. [ System Events ] Error - 24/01/2010 08:41:56 | Computer Name = LG-PC | Source = cdrom | ID = 262151 Description = Le périphérique \Device\CdRom0 comporte un bloc défectueux. Error - 24/01/2010 08:44:04 | Computer Name = LG-PC | Source = cdrom | ID = 262151 Description = Le périphérique \Device\CdRom0 comporte un bloc défectueux. Error - 24/01/2010 08:44:25 | Computer Name = LG-PC | Source = cdrom | ID = 262151 Description = Le périphérique \Device\CdRom0 comporte un bloc défectueux. Error - 24/01/2010 08:44:46 | Computer Name = LG-PC | Source = cdrom | ID = 262151 Description = Le périphérique \Device\CdRom0 comporte un bloc défectueux. Error - 24/01/2010 08:45:07 | Computer Name = LG-PC | Source = cdrom | ID = 262151 Description = Le périphérique \Device\CdRom0 comporte un bloc défectueux. Error - 25/01/2010 15:46:25 | Computer Name = LG-PC | Source = Disk | ID = 262155 Description = Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1. Error - 25/01/2010 16:21:50 | Computer Name = LG-PC | Source = Microsoft-Windows-HAL | ID = 12 Description = Le microprogramme de la plateforme a endommagé la mémoire lors de la précédente transition d’alimentation du système. Recherchez un microprogramme plus récent à utiliser pour votre système. Error - 27/01/2010 07:14:46 | Computer Name = LG-PC | Source = Microsoft-Windows-HAL | ID = 12 Description = Le microprogramme de la plateforme a endommagé la mémoire lors de la précédente transition d’alimentation du système. Recherchez un microprogramme plus récent à utiliser pour votre système. Error - 30/01/2010 14:05:19 | Computer Name = LG-PC | Source = Microsoft-Windows-HAL | ID = 12 Description = Le microprogramme de la plateforme a endommagé la mémoire lors de la précédente transition d’alimentation du système. Recherchez un microprogramme plus récent à utiliser pour votre système. Error - 31/01/2010 09:12:12 | Computer Name = LG-PC | Source = Microsoft-Windows-HAL | ID = 12 Description = Le microprogramme de la plateforme a endommagé la mémoire lors de la précédente transition d’alimentation du système. Recherchez un microprogramme plus récent à utiliser pour votre système. < End of report >

papyphilippe · Answer

Je dois mettre le second rapport par morceau, je n'y arrive pas en une fois.

Je dois admettre que ça ne me parle vraiment pas.
Merci encore

OTL logfile created on: 07/02/2010 21:02:26 - Run 1
OTL by OldTimer - Version 3.1.28.0     Folder = C:\Users\LG\Downloads
64bit- Home Premium Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 67,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450,18 Gb Total Space | 156,22 Gb Free Space | 34,70% Space Free | Partition Type: NTFS
Drive D: | 15,29 Gb Total Space | 2,51 Gb Free Space | 16,45% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: LG-PC
Current User Name: LG
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2010/02/07 21:01:28 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Users\LG\Downloads\OTL.exe
PRC - [2010/01/16 04:14:02 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2009/12/18 17:02:15 | 000,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2009/12/18 17:02:15 | 000,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2009/12/14 20:14:06 | 000,039,408 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
PRC - [2009/10/11 04:17:36 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe
PRC - [2009/08/19 10:31:42 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2009/08/19 10:31:40 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2009/07/23 19:45:52 | 000,128,296 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2009/07/23 10:37:16 | 000,206,120 | ---- | M] (CyberLink) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2009/07/15 16:51:42 | 001,668,664 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
PRC - [2009/07/01 14:44:34 | 000,632,888 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
PRC - [2009/06/24 13:57:28 | 000,320,056 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
PRC - [2009/06/22 11:37:26 | 000,016,712 | R--- | M] () -- C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
PRC - [2009/06/17 11:21:20 | 000,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
PRC - [2009/06/17 11:13:36 | 002,363,392 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2009/05/05 09:11:50 | 000,228,408 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
PRC - [2009/04/30 14:58:44 | 000,229,944 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
PRC - [2009/03/02 13:08:11 | 000,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2009/01/21 19:47:38 | 000,247,152 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
PRC - [2008/12/08 13:50:04 | 000,054,576 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
PRC - [2008/02/27 14:53:42 | 000,278,528 | ---- | M] (Orbiscom Ltd. All rights reserved.) -- C:\Program Files (x86)\e-Carte Bleue Banque Populaire\ecbl-nxbp.exe
PRC - [2007/07/24 10:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2006/09/01 14:57:48 | 000,282,624 | ---- | M] (Apple Computer, Inc.) -- C:\Program Files (x86)\QuickTime\qttask.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2010/02/07 21:01:28 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Users\LG\Downloads\OTL.exe
MOD - [2009/07/14 02:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\powrprof.dll
MOD - [2009/07/14 02:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dsound.dll
MOD - [2009/07/14 02:15:07 | 000,486,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2009/07/14 02:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2009/07/22 02:33:32 | 000,240,128 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe -- (STacSV)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:59 | 000,229,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:56 | 000,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:56 | 000,163,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpo.dll -- (Power)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative	hemeservice.dll -- (Themes)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:54 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sppuinotify.dll -- (sppuinotify)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:54 | 000,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:53 | 000,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:53 | 000,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:53 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:53 | 000,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:53 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009/07/14 02:41:18 | 000,231,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:54 | 001,127,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\FntCache.dll -- (FontCache)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:28 | 000,314,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:28 | 000,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:13 | 000,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\bthserv.dll -- (bthserv)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:10 | 000,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:05 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV)
SRV:[b]64bit:[/b] - [2009/07/14 02:40:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:39:51 | 001,503,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbengine.exe -- (wbengine)
SRV:[b]64bit:[/b] - [2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\svchost.exe -- (ezSharedSvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:39:28 | 003,524,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc)
SRV:[b]64bit:[/b] - [2009/07/14 02:39:11 | 000,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FXSSVC.exe -- (Fax)
SRV:[b]64bit:[/b] - [2009/07/08 12:49:02 | 000,030,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:[b]64bit:[/b] - [2009/07/01 17:54:02 | 000,864,032 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:[b]64bit:[/b] - [2009/03/02 22:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe -- (AESTFilters)
SRV - [2009/12/18 17:02:15 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009/12/18 17:02:15 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2009/12/14 20:14:05 | 000,182,768 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2009/12/13 23:23:50 | 000,133,104 | ---- | M] (Google Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe -- (gupdate) Service Google Update (gupdate)
SRV - [2009/07/14 04:20:14 | 000,000,000 | ---D | M] [On_Demand | Stopped] -- C:\Windows\Vss -- (VSS)
SRV - [2009/07/14 04:20:14 | 000,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2009/07/14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 21:30:11 | 000,061,056 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2009/07/09 14:00:30 | 000,124,928 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service)
SRV - [2009/06/17 11:21:20 | 000,073,728 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2009/06/10 21:39:58 | 000,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2009/05/22 19:02:20 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/05/05 09:11:50 | 000,228,408 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe -- (Com4QLBEx)
SRV - [2009/04/30 14:58:44 | 000,229,944 | ---- | M] (Hewlett-Packard Development Company, L.P.) [On_Demand | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex)
SRV - [2009/02/22 11:00:00 | 000,129,584 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\SysWOW64\ezsvc7.dll -- (ezSharedSvc)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2009/01/21 19:47:38 | 000,247,152 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe -- (RichVideo) Cyberlink RichVideo Service(CRVS)
SRV - [2007/07/24 10:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2006/11/10 19:18:02 | 000,774,144 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService)

papyphilippe · Answer

[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2009/12/18 17:02:15 | 000,074,880 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:[b]64bit:[/b] - [2009/07/23 18:02:38 | 005,435,904 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETw5v64.sys -- (netw5v64) Intel(R)
DRV:[b]64bit:[/b] - [2009/07/22 02:33:32 | 000,487,936 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:[b]64bit:[/b] - [2009/07/21 04:39:22 | 000,140,712 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\jmcr.sys -- (JMCR)
DRV:[b]64bit:[/b] - [2009/07/17 21:58:30 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:[b]64bit:[/b] - [2009/07/17 21:58:24 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:[b]64bit:[/b] - [2009/07/17 21:58:22 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:[b]64bit:[/b] - [2009/07/17 21:58:18 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:[b]64bit:[/b] - [2009/07/15 00:16:34 | 000,273,456 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 02:48:04 | 000,153,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)
DRV:[b]64bit:[/b] - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 02:48:04 | 000,014,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)
DRV:[b]64bit:[/b] - [2009/07/14 02:47:49 | 000,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)
DRV:[b]64bit:[/b] - [2009/07/14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:56 | 000,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:55 | 000,217,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:55 | 000,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:46 | 000,214,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\driversdyboost.sys -- (rdyboost)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:45 | 000,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw)
DRV:[b]64bit:[/b] - [2009/07/14 02:43:14 | 000,460,504 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cng.sys -- (CNG)
DRV:[b]64bit:[/b] - [2009/07/14 02:43:13 | 000,223,448 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol)
DRV:[b]64bit:[/b] - [2009/07/14 01:17:46 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\driversdpbus.sys -- (rdpbus)
DRV:[b]64bit:[/b] - [2009/07/14 01:16:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV:[b]64bit:[/b] - [2009/07/14 01:10:24 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV:[b]64bit:[/b] - [2009/07/14 01:09:26 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf)
DRV:[b]64bit:[/b] - [2009/07/14 01:08:13 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers
discap.sys -- (NdisCap)
DRV:[b]64bit:[/b] - [2009/07/14 01:07:21 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)
DRV:[b]64bit:[/b] - [2009/07/14 01:07:13 | 000,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)
DRV:[b]64bit:[/b] - [2009/07/14 01:07:00 | 000,350,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)
DRV:[b]64bit:[/b] - [2009/07/14 01:07:00 | 000,184,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbvideo.sys -- (usbvideo) Périphérique vidéo USB (WDM)
DRV:[b]64bit:[/b] - [2009/07/14 01:07:00 | 000,118,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthpan.sys -- (BthPan) Périphérique Bluetooth (réseau personnel)
DRV:[b]64bit:[/b] - [2009/07/14 01:06:57 | 000,551,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthport.sys -- (BTHPORT)
DRV:[b]64bit:[/b] - [2009/07/14 01:06:56 | 000,158,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\driversfcomm.sys -- (RFCOMM) Périphérique Bluetooth (TDI protocole RFCOMM)
DRV:[b]64bit:[/b] - [2009/07/14 01:06:53 | 000,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthenum.sys -- (BthEnum)
DRV:[b]64bit:[/b] - [2009/07/14 01:06:52 | 000,079,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BTHUSB.SYS -- (BTHUSB)
DRV:[b]64bit:[/b] - [2009/07/14 01:06:52 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass)
DRV:[b]64bit:[/b] - [2009/07/14 01:06:24 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV:[b]64bit:[/b] - [2009/07/14 01:05:37 | 000,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)
DRV:[b]64bit:[/b] - [2009/07/14 01:02:08 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)
DRV:[b]64bit:[/b] - [2009/07/14 01:00:34 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus)
DRV:[b]64bit:[/b] - [2009/07/14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\beep.sys -- (Beep)
DRV:[b]64bit:[/b] - [2009/07/14 00:52:39 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\appid.sys -- (AppID)
DRV:[b]64bit:[/b] - [2009/07/14 00:50:17 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter)
DRV:[b]64bit:[/b] - [2009/07/14 00:37:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\discache.sys -- (discache)
DRV:[b]64bit:[/b] - [2009/07/14 00:31:10 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2009/07/14 00:31:06 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)
DRV:[b]64bit:[/b] - [2009/07/14 00:31:03 | 000,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)
DRV:[b]64bit:[/b] - [2009/07/14 00:27:17 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)
DRV:[b]64bit:[/b] - [2009/07/14 00:19:25 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)
DRV:[b]64bit:[/b] - [2009/07/13 23:31:42 | 000,233,472 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2009/07/08 12:49:08 | 000,030,008 | ---- | M] (Hewlett-Packard) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt)
DRV:[b]64bit:[/b] - [2009/07/08 12:48:50 | 000,041,272 | ---- | M] (Hewlett-Packard) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer)
DRV:[b]64bit:[/b] - [2009/06/29 19:17:00 | 000,070,656 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\enecir.sys -- (enecir)
DRV:[b]64bit:[/b] - [2009/06/27 00:55:10 | 000,083,488 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers
vhda64v.sys -- (NVHDA)
DRV:[b]64bit:[/b] - [2009/06/10 22:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:[b]64bit:[/b] - [2009/06/10 22:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:[b]64bit:[/b] - [2009/06/10 22:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:[b]64bit:[/b] - [2009/06/10 22:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:[b]64bit:[/b] - [2009/06/10 21:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2009/06/10 21:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009/06/04 17:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2009/04/29 07:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/14 02:16:02 | 000,014,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysWOW64
etbios.dll -- (NetBIOS)
DRV - [2009/06/10 22:28:14 | 000,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2009/06/10 22:15:18 | 000,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem	cpip.mof -- (Tcpip)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = A4 45 BE 0C 8D 45 8E 49 A1 5A 56 13 11 07 BE 55  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

papyphilippe · Answer

[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "https://www.google.fr/?gws_rd=ssl"
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/02/03 08:03:05 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/02/03 08:03:03 | 000,000,000 | ---D | M]
 
[2010/02/03 08:03:32 | 000,000,000 | ---D | M] -- C:\Users\LG\AppData\Roaming\mozilla\Extensions
[2010/01/01 14:55:26 | 000,000,000 | ---D | M] -- C:\Users\LG\AppData\Roaming\mozilla\Extensions\mozswing@mozswing.org
[2010/02/03 08:03:32 | 000,000,000 | ---D | M] -- C:\Users\LG\AppData\Roaming\mozilla\Firefox\Profiles\y41zz3wo.default\extensions
[2010/02/03 08:03:03 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/01/28 17:20:56 | 000,000,000 | ---D | M] (Internal security) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}
[2010/01/16 02:10:07 | 000,001,516 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazon-france.xml
[2010/01/16 02:10:07 | 000,001,822 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\cnrtl-tlfi-fr.xml
[2010/01/16 02:10:07 | 000,000,757 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay-france.xml
[2010/01/16 02:10:07 | 000,001,426 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-fr.xml
[2010/01/16 02:10:07 | 000,000,652 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo-france.xml
 
O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg64.dll (Google Inc.)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {0CBE45A4-458D-498E-A15A-56131107BE55} - C:\Windows\SysWOW64\dhcpsapi32.dll ()
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O2 - BHO: (Programme d'aide de l'Assistant de connexion Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O3:[b]64bit:[/b] - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O4:[b]64bit:[/b] - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated)
O4:[b]64bit:[/b] - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Corel File Shell Monitor] C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe ()
O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPCam_Menu] c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe File not found
O4 - HKLM..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe ( Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files (x86)\QuickTime\qttask.exe (Apple Computer, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard)
O4 - HKCU..\Run: [HPADVISOR] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe (Hewlett-Packard)
O4 - HKCU..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - HKCU..\Run: [RTHDBPL] C:\Users\LG\AppData\Roaming\SystemProc\lsass.exe File not found
O4 - HKCU..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Users\LG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: WallpaperStyle = 2
O8:[b]64bit:[/b] - Extra context menu item: &Recherche AOL Toolbar - C:\ProgramData\AOL\ieToolbaresources\fr-FR\local\search.html ()
O8:[b]64bit:[/b] - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O8 - Extra context menu item: &Recherche AOL Toolbar - C:\ProgramData\AOL\ieToolbaresources\fr-FR\local\search.html ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll (Google Inc.)
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Envoyer au périphérique &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
O18:[b]64bit:[/b] - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8064.0206.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Filter	ext/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\Windows\System32\DeviceDisplayStatusManager32.dll) - C:\Windows\SysWOW64\DeviceDisplayStatusManager32.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\cnvfat32.dll) - C:\Windows\SysWOW64\cnvfat32.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\DeviceMetadataParsers32.dll) - C:\Windows\SysWOW64\DeviceMetadataParsers32.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\comdlg3232.dll) - C:\Windows\SysWOW64\comdlg3232.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\DeviceUxRes32.dll) - C:\Windows\SysWOW64\DeviceUxRes32.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\comsnap32.dll) - C:\Windows\SysWOW64\comsnap32.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\h7z54kechc2522e32.dll) - C:\Windows\SysWOW64\h7z54kechc2522e32.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\p3q0v2y32.dll) - C:\Windows\SysWOW64\p3q0v2y32.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\dxpq0axwub3h4132.dll) - C:\Windows\SysWOW64\dxpq0axwub3h4132.dll ()
O20 - AppInit_DLLs: (C:\Windows\System32\7hxrqbakc5ug32.dll) - C:\Windows\SysWOW64\7hxrqbakc5ug32.dll ()
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O30:[b]64bit:[/b] - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
[b]64bit:[/b] O35 - comfile [open] -- "%1" %* File not found
[b]64bit:[/b] O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
 
NetSvcs:[b]64bit:[/b] Ias - C:\Windows\SysNative\ias [2009/07/14 04:20:14 | 000,000,000 | ---D | M]
NetSvcs:[b]64bit:[/b] Irmon - C:\Windows\SysNative\irmon.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] Wmi - C:\Windows\SysNative\wmi.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] Themes - C:\Windows\SysNative	hemeservice.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] BDESVC - C:\Windows\SysNative\bdesvc.dll (Microsoft Corporation)
NetSvcs: Ias - C:\Windows\SysWOW64\ias.dll (Microsoft Corporation)
NetSvcs: Wmi - C:\Windows\SysWOW64\wmi.dll (Microsoft Corporation)
NetSvcs: ezSharedSvc - C:\Windows\SysWOW64\ezsvc7.dll (EasyBits Sofware AS)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010/02/06 19:41:17 | 000,000,000 | ---D | C] -- C:\FyK
[2010/02/06 18:27:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)	rend micro
[2010/02/06 18:27:48 | 000,000,000 | ---D | C] -- C:sit
[2010/02/03 08:21:02 | 000,000,000 | ---D | C] -- C:\logecole
[2010/02/03 08:03:12 | 000,000,000 | ---D | C] -- C:\Users\LG\AppData\Local\Mozilla
[2010/02/03 00:13:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Navilog1
[2010/01/29 20:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010/01/29 20:26:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2010/01/29 20:08:02 | 000,000,000 | ---D | C] -- C:\Users\LG\AppData\Local\Threat Expert
[2010/01/28 17:20:57 | 000,000,000 | -HSD | C] -- C:\Users\LG\AppData\Roaming\SystemProc
[2010/01/28 17:20:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2010/01/28 17:16:00 | 000,000,000 | ---D | C] -- C:\Users\LG\AppData\Roaming\Apple Computer
[2010/01/27 15:40:27 | 002,870,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010/01/27 15:40:27 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2010/01/27 15:40:27 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2010/01/23 21:18:33 | 000,000,000 | ---D | C] -- C:\Users\LG\AppData\Local\ElevatedDiagnostics
[2010/01/23 16:18:38 | 000,000,000 | R-SD | C] -- C:\Users\LG\Documents\My Stationery
[2010/01/22 17:03:37 | 001,192,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wininet.dll
[2010/01/22 17:03:37 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iedkcs32.dll
[2010/01/22 17:03:37 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iedkcs32.dll
[2010/01/22 17:03:36 | 000,977,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wininet.dll
[2010/01/22 17:03:36 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedsbs.dll
[2010/01/22 17:03:36 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedsbs.dll
[2010/01/17 11:14:15 | 000,000,000 | ---D | C] -- C:\Users\LG\Documents\LimeWire
[2010/01/13 19:54:03 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative	2embed.dll
[2010/01/13 19:54:03 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64	2embed.dll
[2010/01/13 19:54:03 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2010/01/13 19:54:03 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2010/01/10 19:57:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\e-Carte Bleue Banque Populaire
[2010/01/10 17:31:43 | 000,000,000 | ---D | C] -- C:\Users\LG\AppData\Local\Microsoft Games
[2 C:\*.tmp files -> C:\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

papyphilippe · Answer

[2010/02/07 21:04:13 | 002,359,296 | -HS- | M] () -- C:\Users\LG\NTUSER.DAT [2010/02/07 21:01:10 | 000,023,024 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2010/02/07 21:01:10 | 000,023,024 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2010/02/07 20:53:48 | 000,001,054 | ---- | M] () -- C:\Windows asks\GoogleUpdateTaskMachineCore.job [2010/02/07 20:53:35 | 000,000,006 | -H-- | M] () -- C:\Windows asks\SA.DAT [2010/02/07 20:53:32 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2010/02/07 20:53:28 | 3214,053,376 | -HS- | M] () -- C:\hiberfil.sys [2010/02/07 16:33:02 | 000,001,058 | ---- | M] () -- C:\Windows asks\GoogleUpdateTaskMachineUA.job [2010/02/07 13:19:46 | 005,663,952 | -H-- | M] () -- C:\Users\LG\AppData\Local\IconCache.db [2010/02/06 19:54:42 | 000,883,538 | ---- | M] () -- C:\Users\LG\Documents\CUB.pdf [2010/02/06 19:54:30 | 000,360,301 | ---- | M] () -- C:\Users\LG\Documents\TCH44.pdf [2010/02/06 19:43:31 | 001,524,562 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2010/02/06 19:43:31 | 000,695,004 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat [2010/02/06 19:43:31 | 000,607,190 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2010/02/06 19:43:31 | 000,127,684 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat [2010/02/06 19:43:31 | 000,103,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2010/02/06 19:39:17 | 001,374,006 | ---- | M] () -- C:\Users\LG\Desktop\Setup.exe [2010/02/03 09:22:06 | 000,115,784 | ---- | M] () -- C:\Users\LG\AppData\Local\GDIPFONTCACHEV1.DAT [2010/02/03 09:21:19 | 000,416,304 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2010/02/03 08:21:09 | 000,000,833 | ---- | M] () -- C:\Users\LG\Desktop\40 polices pour l'école.lnk [2010/02/03 08:03:06 | 000,001,943 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010/02/02 17:15:19 | 000,000,322 | ---- | M] () -- C:\Windows asks\HPCeeScheduleForLG.job [2010/01/29 20:26:33 | 000,001,262 | ---- | M] () -- C:\Users\LG\Desktop\Spybot - Search & Destroy.lnk [2010/01/28 17:20:52 | 000,198,656 | ---- | M] () -- C:\Windows\SysWow64\dhcpsapi32.dll [2010/01/28 17:20:22 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\7hxrqbakc5ug32.dll [2010/01/28 17:19:51 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\dxpq0axwub3h4132.dll [2010/01/28 17:19:21 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\p3q0v2y32.dll [2010/01/28 17:18:51 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\h7z54kechc2522e32.dll [2010/01/28 17:18:21 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\comsnap32.dll [2010/01/28 17:17:50 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\DeviceUxRes32.dll [2010/01/28 17:17:20 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\comdlg3232.dll [2010/01/28 17:16:50 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\DeviceMetadataParsers32.dll [2010/01/28 17:16:19 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\cnvfat32.dll [2010/01/28 17:15:49 | 000,128,512 | ---- | M] () -- C:\Windows\SysWow64\DeviceDisplayStatusManager32.dll [2010/01/28 17:15:49 | 000,001,372 | ---- | M] () -- C:\Users\LG\AppData\Roaming\HIfjw.vbs [2010/01/19 23:44:05 | 007,112,612 | ---- | M] () -- C:\Users\LG\Desktop\09 Bob_Sinclar_-_Sound_Of_Freedom__Club_Mix__-_Shay_Soko_UPLOAD.mp3 [2010/01/17 11:15:33 | 003,642,337 | ---- | M] () -- C:\Users\LG\Desktop\lafranchi.boys and girls_LANFRANCHI & MARCHESINI - Boys and girls (clip officiel).mp3 [2010/01/17 11:15:31 | 005,889,398 | ---- | M] () -- C:\Users\LG\Desktop\Lanfranchi & Marchesini - Boys & Girls (Original Mix).mp3 [2010/01/17 11:15:16 | 005,722,816 | ---- | M] () -- C:\Users\LG\Desktop\Lanfranchi & Marchesini - Boys & Girls (Marchesini & Farina Radio Edit).mp3 [2010/01/16 14:45:33 | 000,014,434 | ---- | M] () -- C:\Users\LG\Desktop\cahier.odt [2010/01/11 08:44:17 | 000,445,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iedkcs32.dll [2010/01/11 08:12:38 | 000,381,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iedkcs32.dll [2010/01/10 19:57:19 | 000,002,076 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\e-Carte Bleue Banque Populaire.lnk [2010/01/10 19:57:19 | 000,002,018 | ---- | M] () -- C:\Users\Public\Desktop\e-Carte Bleue Banque Populaire.lnk [2 C:\*.tmp files -> C:\*.tmp -> ] [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========/color [2010/02/06 19:54:42 | 000,883,538 | ---- | C] () -- C:\Users\LG\Documents\CUB.pdf [2010/02/06 19:54:30 | 000,360,301 | ---- | C] () -- C:\Users\LG\Documents\TCH44.pdf [2010/02/06 19:39:14 | 001,374,006 | ---- | C] () -- C:\Users\LG\Desktop\Setup.exe [2010/02/03 08:21:09 | 000,000,833 | ---- | C] () -- C:\Users\LG\Desktop\40 polices pour l'école.lnk [2010/02/03 08:03:06 | 000,001,943 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2010/01/29 20:26:33 | 000,001,262 | ---- | C] () -- C:\Users\LG\Desktop\Spybot - Search & Destroy.lnk [2010/01/28 17:20:52 | 000,198,656 | ---- | C] () -- C:\Windows\SysWow64\dhcpsapi32.dll [2010/01/28 17:20:22 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\7hxrqbakc5ug32.dll [2010/01/28 17:19:51 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\dxpq0axwub3h4132.dll [2010/01/28 17:19:21 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\p3q0v2y32.dll [2010/01/28 17:18:51 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\h7z54kechc2522e32.dll [2010/01/28 17:18:21 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\comsnap32.dll [2010/01/28 17:17:50 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\DeviceUxRes32.dll [2010/01/28 17:17:20 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\comdlg3232.dll [2010/01/28 17:16:49 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\DeviceMetadataParsers32.dll [2010/01/28 17:16:19 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\cnvfat32.dll [2010/01/28 17:15:49 | 000,128,512 | ---- | C] () -- C:\Windows\SysWow64\DeviceDisplayStatusManager32.dll [2010/01/28 17:15:49 | 000,001,372 | ---- | C] () -- C:\Users\LG\AppData\Roaming\HIfjw.vbs [2010/01/20 15:26:03 | 007,112,612 | ---- | C] () -- C:\Users\LG\Desktop\09 Bob_Sinclar_-_Sound_Of_Freedom__Club_Mix__-_Shay_Soko_UPLOAD.mp3 [2010/01/20 15:26:03 | 005,889,398 | ---- | C] () -- C:\Users\LG\Desktop\Lanfranchi & Marchesini - Boys & Girls (Original Mix).mp3 [2010/01/20 15:26:03 | 005,722,816 | ---- | C] () -- C:\Users\LG\Desktop\Lanfranchi & Marchesini - Boys & Girls (Marchesini & Farina Radio Edit).mp3 [2010/01/20 15:26:03 | 003,642,337 | ---- | C] () -- C:\Users\LG\Desktop\lafranchi.boys and girls_LANFRANCHI & MARCHESINI - Boys and girls (clip officiel).mp3 [2010/01/16 14:32:15 | 000,014,434 | ---- | C] () -- C:\Users\LG\Desktop\cahier.odt [2010/01/10 19:57:19 | 000,002,076 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\e-Carte Bleue Banque Populaire.lnk [2010/01/10 19:57:19 | 000,002,018 | ---- | C] () -- C:\Users\Public\Desktop\e-Carte Bleue Banque Populaire.lnk [2009/12/16 15:39:44 | 000,019,968 | ---- | C] () -- C:\Users\LG\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009/12/13 20:04:15 | 000,000,186 | ---- | C] () -- C:\ProgramData\HPWALog.txt [2009/12/13 20:04:15 | 000,000,000 | ---- | C] () -- C:\Users\LG\AppData\Local\QSwitch.txt [2009/12/13 20:04:15 | 000,000,000 | ---- | C] () -- C:\Users\LG\AppData\Local\DSwitch.txt [2009/12/13 20:04:15 | 000,000,000 | ---- | C] () -- C:\Users\LG\AppData\Local\AtStart.txt [2009/09/19 01:26:03 | 000,000,105 | ---- | C] () -- C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log [2009/09/19 01:25:53 | 000,000,032 | ---- | C] () -- C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log [2009/09/19 01:25:34 | 000,000,032 | ---- | C] () -- C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log [2009/09/19 01:25:08 | 000,000,032 | ---- | C] () -- C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log [2009/09/19 01:24:25 | 000,000,032 | ---- | C] () -- C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log [2009/09/19 01:23:11 | 000,209,040 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeW7.dll [2009/09/19 01:23:11 | 000,204,944 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeA6.dll [2009/09/19 01:23:11 | 000,196,752 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeP6.dll [2009/09/19 01:23:11 | 000,196,752 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeM6.dll [2009/09/19 01:23:11 | 000,192,656 | ---- | C] () -- C:\Windows\SysWow64\IVIresizePX.dll [2009/09/19 01:23:11 | 000,024,720 | ---- | C] () -- C:\Windows\SysWow64\IVIresize.dll [2009/08/25 19:21:09 | 000,000,109 | ---- | C] () -- C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log [2009/08/25 19:16:22 | 000,000,110 | ---- | C] () -- C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log [2009/08/25 19:14:23 | 000,000,105 | ---- | C] () -- C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log [2009/08/25 19:13:32 | 000,000,107 | ---- | C] () -- C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log [2009/07/15 16:50:42 | 000,013,312 | ---- | C] () -- C:\Windows\LPRES.DLL [2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [color=#E56717]========== Custom Scans ==========/color [color=#A23BEC]< %SYSTEMDRIVE%\*.* >/color [2009/07/14 02:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr [2010/02/07 11:03:56 | 000,002,592 | ---- | M] () -- C:\FyK.txt [2010/02/07 20:53:28 | 3214,053,376 | -HS- | M] () -- C:\hiberfil.sys [2010/02/07 20:53:30 | 4285,407,232 | -HS- | M] () -- C:\pagefile.sys [2 C:\*.tmp files -> C:\*.tmp -> ] [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >/color [color=#A23BEC]< %PROGRAMFILES%\*.* >/color [2009/07/14 05:54:24 | 000,000,174 | -HS- | M] () -- C:\Program Files (x86)\desktop.ini

papyphilippe · Answer

[color=#A23BEC]< %PROGRAMFILES%\*. >[/color] [2009/08/25 19:02:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Adobe [2009/08/25 19:12:53 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\AOL [2009/12/17 18:56:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Avira [2010/01/29 20:09:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Common Files [2009/09/19 01:27:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Corel [2009/08/25 19:21:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CyberLink [2009/12/28 13:23:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DVD Shrink [2010/01/10 19:57:19 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\e-Carte Bleue Banque Populaire [2009/08/25 19:32:33 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\EasyBits For Kids [2009/12/14 20:14:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Google [2009/09/19 01:03:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Hewlett-Packard [2009/08/25 20:23:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Hp [2009/08/25 18:12:07 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\HP Games [2010/01/10 19:57:19 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information [2009/09/19 00:38:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Intel [2010/01/27 19:51:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Explorer [2009/12/14 20:13:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Java [2009/09/19 00:32:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\JMicron [2009/12/14 18:50:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\JRE [2010/01/01 14:58:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\LimeWire [2009/08/25 17:19:24 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft [2009/08/25 18:38:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office [2009/08/25 18:39:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant [2010/01/20 13:55:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Silverlight [2009/12/27 11:45:14 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Works [2009/08/25 18:37:58 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft.NET [2010/02/03 08:03:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox [2009/07/14 06:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSBuild [2009/12/27 11:43:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSXML 4.0 [2010/02/03 07:59:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Navilog1 [2009/12/29 15:22:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Nero [2009/12/13 19:59:48 | 000,000,000 | R--D | M] -- C:\Program Files (x86)\Online Services [2009/12/14 18:50:43 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\OpenOffice.org 3 [2009/09/19 01:23:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\QuickTime [2009/09/19 00:34:31 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Realtek [2009/07/14 06:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reference Assemblies [2010/02/07 17:23:03 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Ryzom [2010/01/29 20:28:05 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Spybot - Search & Destroy [2010/02/07 02:12:54 | 000,000,000 | ---D | M] -- C:\Program Files (x86) rend micro [2009/07/14 05:57:06 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Uninstall Information [2009/12/13 23:17:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VideoLAN [2009/08/26 03:02:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Defender [2009/09/19 01:33:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Live [2009/08/25 17:19:08 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Live SkyDrive [2009/08/26 03:02:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Mail [2009/09/19 01:20:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Components [2009/12/27 18:49:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Player [2009/07/14 06:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows NT [2009/08/26 03:02:46 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Viewer [2009/07/14 06:32:40 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Portable Devices [2009/12/13 19:59:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Sidebar [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys [2009/07/14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys [2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys [color=#A23BEC]< MD5 for: AUTOCHK.EXE >[/color] [2009/07/14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe [2009/07/14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe [2009/07/14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe [2009/07/14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2009/07/14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=16A47CE2DECC9B099349A5F840654746 -- C:\Windows\winsxs\amd64_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_201592fa214e4f02\beep.sys [color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color] [2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll [2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll [2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll [2009/07/14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2007/05/17 20:34:04 | 000,007,216 | ---- | M] () MD5=C2A279A458A06DE2C83D842AA042B5A8 -- C:\Program Files (x86)\CyberLink\PowerDirector\EventLog.dll [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color] [2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe [2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe [2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe [2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe [2009/08/03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe [2009/10/31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\explorer.exe [2009/10/31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe [2009/08/03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe [2009/10/31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe [2009/08/03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe [2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe [2009/10/31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe [2009/08/03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe [color=#A23BEC]< MD5 for: IASTOR.SYS >[/color] [2009/06/04 17:54:36 | 000,408,600 | ---- | M] (Intel Corporation) MD5=1D004CB1DA6323B1F55CAEF7F94B61D9 -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\driver64\IaStor.sys [2009/06/04 17:54:36 | 000,408,600 | ---- | M] (Intel Corporation) MD5=1D004CB1DA6323B1F55CAEF7F94B61D9 -- C:\Windows\SysWow64\DriverStore\FileRepository\iaahci.inf_amd64_neutral_7fb62b08f6b7117a\iaStor.sys [2009/06/04 17:43:16 | 000,330,264 | ---- | M] (Intel Corporation) MD5=D483687EACE0C065EE772481A96E05F5 -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\driver\IaStor.sys [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color] [2009/07/14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys [2009/07/14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys [color=#A23BEC]< MD5 for: IMM32.DLL >[/color] [2009/07/14 02:11:21 | 000,119,808 | ---- | M] (Microsoft Corporation) MD5=0DE3069D6E09BA262856EF31C941BEFE -- C:\Windows\SysWOW64\imm32.dll [2009/07/14 02:11:21 | 000,119,808 | ---- | M] (Microsoft Corporation) MD5=0DE3069D6E09BA262856EF31C941BEFE -- C:\Windows\SysWOW64\imm32.dll [2009/07/14 02:11:21 | 000,119,808 | ---- | M] (Microsoft Corporation) MD5=0DE3069D6E09BA262856EF31C941BEFE -- C:\Windows\winsxs\wow64_microsoft-windows-imm32_31bf3856ad364e35_6.1.7600.16385_none_c29fba0fc87cc5a4\imm32.dll [2009/07/14 02:41:09 | 000,167,424 | ---- | M] (Microsoft Corporation) MD5=AA2C08CE85653B1A0D2E4AB407FA176C -- C:\Windows\winsxs\amd64_microsoft-windows-imm32_31bf3856ad364e35_6.1.7600.16385_none_b84b0fbd941c03a9\imm32.dll [color=#A23BEC]< MD5 for: KERNEL32.DLL >[/color] [2009/07/14 02:41:13 | 001,162,240 | ---- | M] (Microsoft Corporation) MD5=5B4B379AD10DEDA4EDA01B8C6961B193 -- C:\Windows\winsxs\amd64_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16385_none_efb2d6e86ffc8f55\kernel32.dll [2009/07/14 02:11:23 | 000,836,608 | ---- | M] (Microsoft Corporation) MD5=606ECB76A424CC535407E7A24E2A34BC -- C:\Windows\SysWOW64\kernel32.dll [2009/07/14 02:11:23 | 000,836,608 | ---- | M] (Microsoft Corporation) MD5=606ECB76A424CC535407E7A24E2A34BC -- C:\Windows\SysWOW64\kernel32.dll [2009/07/14 02:11:23 | 000,836,608 | ---- | M] (Microsoft Corporation) MD5=606ECB76A424CC535407E7A24E2A34BC -- C:\Windows\winsxs\wow64_microsoft-windows-kernel32_31bf3856ad364e35_6.1.7600.16385_none_fa07813aa45d5150\kernel32.dll

papyphilippe · Answer

[color=#A23BEC]< MD5 for: MSWSOCK.DLL >[/color] [2009/07/14 02:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- C:\Windows\SysWOW64\mswsock.dll [2009/07/14 02:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- C:\Windows\SysWOW64\mswsock.dll [2009/07/14 02:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=11A41F17527ED75D6B758FDD7F4FD00D -- C:\Windows\winsxs\x86_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7600.16385_none_b829ad298e9f53ff\mswsock.dll [2009/07/14 02:41:34 | 000,320,000 | ---- | M] (Microsoft Corporation) MD5=FC76FE3C1E1FDB761244D4F74EF560FD -- C:\Windows\winsxs\amd64_microsoft-windows-w..-infrastructure-bsp_31bf3856ad364e35_6.1.7600.16385_none_144848ad46fcc535\mswsock.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2009/07/14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf dis.sys [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color] [2009/07/14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe etlogon.dll [2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64 etlogon.dll [2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64 etlogon.dll [2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9 etlogon.dll [color=#A23BEC]< MD5 for: NTFS.SYS >[/color] [2009/07/14 02:48:27 | 001,659,984 | ---- | M] (Microsoft Corporation) MD5=356698A13C4630D5B31C37378D469196 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7600.16385_none_02661b64369ca03a tfs.sys [color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color] [2009/07/14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository vraid.inf_amd64_neutral_5bde3fe2945bce9e vstor.sys [2009/07/14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e vstor.sys [color=#A23BEC]< MD5 for: PROQUOTA.EXE >[/color] [2009/07/14 02:39:28 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=19117589BA265AAF89BEBE1E9040000C -- C:\Windows\winsxs\amd64_microsoft-windows-proquota_31bf3856ad364e35_6.1.7600.16385_none_83bbe97eac162e90\proquota.exe [2009/07/14 02:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- C:\Windows\SysWOW64\proquota.exe [2009/07/14 02:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- C:\Windows\SysWOW64\proquota.exe [2009/07/14 02:14:29 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=8CDF71E78469BE54C29C1AD2FC8DE611 -- C:\Windows\winsxs\x86_microsoft-windows-proquota_31bf3856ad364e35_6.1.7600.16385_none_279d4dfaf3b8bd5a\proquota.exe [color=#A23BEC]< MD5 for: QMGR.DLL >[/color] [2009/07/14 02:41:53 | 000,848,384 | ---- | M] (Microsoft Corporation) MD5=7F0C323FE3DA28AA4AA1BDA3F575707F -- C:\Windows\winsxs\amd64_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7600.16385_none_7f85b69413231233\qmgr.dll [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color] [2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll [2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll [2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll [2009/07/14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll [color=#A23BEC]< MD5 for: SPOOLSV.EXE >[/color] [2009/07/14 02:39:44 | 000,558,080 | ---- | M] (Microsoft Corporation) MD5=89E8550C5862999FCF482EA562B0E98E -- C:\Windows\winsxs\amd64_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.1.7600.16385_none_324094c8db39cbbd\spoolsv.exe [color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color] [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe [2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe [color=#A23BEC]< MD5 for: TERMSRV.DLL >[/color] [2009/07/14 02:41:55 | 000,706,560 | ---- | M] (Microsoft Corporation) MD5=0F05EC2887BFE197AD82A13287D2F404 -- C:\Windows\winsxs\amd64_microsoft-windows-t..teconnectionmanager_31bf3856ad364e35_6.1.7600.16385_none_ea94336f6df51e09 ermsrv.dll [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color] [2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe [2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe [2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe [2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe [color=#A23BEC]< MD5 for: WS2_32.DLL >[/color] [2009/07/14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll [2009/07/14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll [2009/07/14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll [2009/07/14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll [color=#A23BEC]< %systemroot%\*. /mp /s >[/color] [color=#A23BEC]< c:\$recycle.bin\*.* /s >[/color] [2010/01/27 11:04:27 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$I02SM32 [2010/02/07 21:01:11 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$I36KTYE.exe [2010/01/20 15:31:49 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$I84035T.mp3 [2010/01/16 14:30:41 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IA5KYIK [2010/01/25 17:00:45 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$ICAWGOP.MP3 [2010/02/03 07:59:39 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$ID4V4ZS.exe [2010/01/16 14:34:50 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$ID8K4ZA [2010/01/21 00:43:29 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IDI93GZ.avi [2010/01/21 00:43:11 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IFOHLX9.avi [2010/01/21 00:42:25 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IHKABX3.avi [2010/01/21 00:43:25 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IHOHVJN.avi [2010/01/16 14:30:21 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IOVT2Q5 [2010/02/07 21:01:15 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IPFBE9P.exe [2010/01/21 00:43:21 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IPL3LQH.avi [2010/01/27 11:04:32 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IQF55QO [2010/01/16 14:28:28 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$ISLMKAB.mp3 [2010/01/27 13:14:57 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$ISTA777.avi [2010/01/27 13:15:01 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IUTP716.avi [2010/01/16 14:28:19 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IW267GZ.wma [2010/01/16 14:30:50 | 000,000,544 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$IZEJES7 [2010/02/06 18:52:38 | 000,289,080 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$R36KTYE.exe [2010/01/19 23:43:18 | 004,455,792 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$R84035T.mp3 [2010/01/19 23:42:56 | 008,569,251 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RCAWGOP.MP3 [2010/02/03 00:16:17 | 000,228,116 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RD4V4ZS.exe [2010/01/20 13:05:29 | 734,892,032 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RDI93GZ.avi [2010/01/20 00:52:59 | 243,567,343 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RFOHLX9.avi [2010/01/20 00:53:51 | 013,664,255 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RHKABX3.avi [2010/01/20 00:39:00 | 732,526,314 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RHOHVJN.avi [2010/02/06 19:03:51 | 000,549,376 | ---- | M] (OldTimer Tools) -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RPFBE9P.exe [2010/01/20 00:52:04 | 257,122,303 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RPL3LQH.avi [2006/01/07 16:49:16 | 002,533,376 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RSLMKAB.mp3 [2010/01/21 09:04:09 | 698,792,960 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RSTA777.avi [2010/01/21 09:06:10 | 732,411,904 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RUTP716.avi [2009/01/07 23:08:54 | 003,495,570 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RW267GZ.wma [2009/12/13 20:03:43 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\desktop.ini [2009/08/03 20:00:16 | 000,006,144 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$R02SM32\VIDEO_TS.BUP [2009/08/03 20:00:16 | 000,006,144 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$R02SM32\VIDEO_TS.IFO [2009/08/03 20:00:16 | 000,065,536 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$R02SM32\VTS_01_0.BUP [2009/08/03 20:00:16 | 000,065,536 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$R02SM32\VTS_01_0.IFO [2005/09/16 10:44:18 | 000,000,332 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\ASS1.ASS [2005/09/16 10:44:16 | 000,000,567 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\CLOS1.TXA [2005/09/16 10:44:18 | 000,000,529 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\CLOS2.TXA [2005/09/16 10:44:16 | 000,000,129 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\EMMA1.PAC [2005/09/16 10:44:16 | 000,000,049 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\EXP1.TXT [2005/09/16 10:44:16 | 000,000,329 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\EXPLO1.ASS [2005/09/16 10:44:18 | 000,000,311 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\EXPLO2.ASS [2005/09/16 10:44:18 | 000,000,180 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\IDE1.TXT [2005/09/16 10:44:16 | 000,066,214 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\L1.WAV [2005/09/16 10:44:16 | 000,154,422 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\L11.WAV [2005/09/16 10:44:16 | 000,187,500 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\L12.WAV [2005/09/16 10:44:16 | 000,077,240 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\L2.WAV [2005/09/16 10:44:16 | 000,055,188 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\L3.WAV [2005/09/16 10:44:16 | 000,000,348 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\LECT1.PUZ [2005/09/16 10:44:18 | 000,000,349 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\LECT2.PUZ [2005/09/16 10:44:16 | 000,000,348 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\LECT3.PUZ [2005/09/16 10:44:16 | 000,000,055 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\LIEV.TXT [2005/09/16 10:44:18 | 000,000,055 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\LIEV2.TXT [2005/09/16 10:44:16 | 000,000,051 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\LIEV3.TXT [2005/09/16 10:44:16 | 000,077,240 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\LL4.WAV [2005/09/16 10:44:16 | 000,000,041 | ---- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-1000\$RZEJES7\Emma\S1.TXT [2009/09/19 01:50:47 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-3712976444-1968560542-3276758508-500\desktop.ini [2009/08/25 17:13:39 | 000,000,129 | -HS- | M] () -- c:\$recycle.bin\S-1-5-21-893560779-1323628484-2858467616-500\desktop.ini [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:63238B95 @Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:A8ADE5D8 @Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:DFC5A2B2 < End of report >

dédétraqué · Answer

Salut papyphilippe


-Télécharge et installe MalwareByte's Anti-Malware
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

- Mets le à jour

---

- Redémarre en mode sans échec :

Au redémarrage de ton PC tapote sur la touche F8 ou F5, sur l'écran suivant déplace toi avec les flèches de direction et choisis Mode sans échec. Choisis ta session habituelle et non la session Administrateur

---

- Double clique sur le raccourci de MalwareByte's Anti-Malware qui est sur le bureau.
- Sélectionne Exécuter un examen complet si ce n'est pas déjà fait
- clique sur Rechercher

- Une fois le scan terminé, une fenêtre s'ouvre, clique sur  sur OK

- Si MalwareByte's n'a rien détecté, clique sur OK  Un rapport va apparaître ferme-le.

- Si MalwareByte's a détecté des infections, clique sur Afficher les résultats  ensuite sur Supprimer la sélection

- Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste ensuite ce rapport.

Note : Si MalwareByte's  a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur OK

Tutoriel pour MalwareByte's ici : 
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/


@++   :)

papyphilippe · Answer

Bonjour,
je viens d'exécuter ce que tu as écrit, j'imprime le rapport.
Je suis abasourdi par le nombre de "trucs" qu'il a trouvé.
Encore merci pour l'aide

Papy Phil

Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3713
Windows 6.1.7600 (Safe Mode)
Internet Explorer 8.0.7600.16385

09/02/2010 18:21:17
mbam-log-2010-02-09 (18-21-17).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 342362
Temps écoulé: 36 minute(s), 54 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 21
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 26

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0cbe45a4-458d-498e-a15a-56131107be55} (Trojan.BHO.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0cbe45a4-458d-498e-a15a-56131107be55} (Trojan.BHO.H) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{0cbe45a4-458d-498e-a15a-56131107be55} (Trojan.Tracur) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Runthdbpl (Trojan.Agent) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\7hxrqbakc5ug32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\7hxrqbakc5ug32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\cnvfat32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\cnvfat32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\comdlg3232.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\comdlg3232.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\comsnap32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\comsnap32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\devicedisplaystatusmanager32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\devicedisplaystatusmanager32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\devicemetadataparsers32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\devicemetadataparsers32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\deviceuxres32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\deviceuxres32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\dxpq0axwub3h4132.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\dxpq0axwub3h4132.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\h7z54kechc2522e32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\h7z54kechc2522e32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\p3q0v2y32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\p3q0v2y32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\Program Files (x86)\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D} (Trojan.Swisyn) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}\chrome (Trojan.Swisyn) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}\chrome\content (Trojan.Swisyn) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Windows\SysWOW64\dhcpsapi32.dll (Trojan.BHO.H) -> Quarantined and deleted successfully.
C:\Users\LG\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7Y2OO9DC\QuickTime_Update_KB673901[1].exe (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Windows\System32\7hxrqbakc5ug32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\cnvfat32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\comdlg3232.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\comsnap32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\DeviceDisplayStatusManager32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\DeviceMetadataParsers32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\DeviceUxRes32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\dhcpsapi32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\dxpq0axwub3h4132.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\h7z54kechc2522e32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\p3q0v2y32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\7hxrqbakc5ug32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\cnvfat32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\comdlg3232.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\comsnap32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\DeviceDisplayStatusManager32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\DeviceMetadataParsers32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\DeviceUxRes32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\dxpq0axwub3h4132.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\h7z54kechc2522e32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\p3q0v2y32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}\chrome.manifest (Trojan.Swisyn) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}\install.rdf (Trojan.Swisyn) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}\chrome\content	imer.xul (Trojan.Swisyn) -> Quarantined and deleted successfully.

dédétraqué · Answer

Salut papyphilippe


Malwarebytes a fais du bon boulot, on continu

- Quitte les applications en cours afin de ne pas interrompre le scan.
- Faire un clique droit sur OTL.exe présent sur le bureau et choisir exécuter en tant qu'administrateur pour lancer le programme
- Une fenêtre apparaît. Dans la section Output en haut de cette fenêtre, coche "Minimal Output". Fais de même avec "Scan All Users".
- Coche également les cases à côté de "LOP Check" et "Purity Check".
- Dans la zone Extra List, coche "Use Safelist".

Ne modifie pas les autres paramètres!

- Clique sur le bouton Run Scan.
- Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTListIT2 (donc par défaut sur le Bureau).

Utilise cjoint.com pour poster en lien tes rapports :
https://www.cjoint.com/

- Clique sur Parcourir pour aller chercher le rapport
- Clique sur Ouvrir ensuite sur Créer le lien Cjoint

- Fais un copier/coller du lien qui est devant Le lien a été créé: dans ta prochaine réponse.


@++   :)

papyphilippe · Answer

Bonsoir,
afin de ne pas faire d'erreur, je préfére poser des questions qui peuvent paraitre "idiotes"
Je n'ai pas de case à côté de LOP Check et Purity Check. Veux tu dire de les cocher ? Où s'agit il de d'autres cases ?
De même je n'ai pas de Extra List, mais j'ai Extra Registry. Est ce la même chose ?

Merci
Papy Phil

dédétraqué · Answer

Salut papyphilippe


Oui dans le bas tu as "LOP Check" et "Purity Check" en bleu avec une petite case a coché.

De même je n'ai pas de Extra List, mais j'ai Extra Registry. Est ce la même chose ? 
Oui même chose


@++  :)

papyphilippe · Answer

Je viens de faire le run scan, voici les liens

	https://www.cjoint.com/?ckcn4OnxZl

	https://www.cjoint.com/?ckcpeDTF0h

Merci encore, j'espére que la fin du grand nettoyage est proche !

dédétraqué · Answer

Salut papyphilippe


Double-clique sur OTL.exe pour le lancer.
(Sous Vista/7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Sous l'onglet Custom Scans/Fixes en bas de la fenêtre, copie-colle le texte en gras suivant :


:OTL
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. 
O4 - HKU\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found     
O4 - HKU\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found     

:files 
C:\Users\LG\AppData\Roaming\HIfjw.vbs
C:\Users\LG\AppData\Roaming\SystemProc

:commands
[emptytemp]
[reboot]


Clique sur le bouton Run Fix en haut de la fenêtre.
Laisse le programme travailler, redémarre une fois le fix terminé.
Poste le rapport qui s'affichera après redémarrage.


@++   :)

papyphilippe · Answer

Bonjour,

j'ai fait le run fix, voici le rapport

https://www.cjoint.com/?ckiurWvwMf

Merci Papy Phil

dédétraqué · Answer

Salut papyphilippe 


Oui on arrive a la fin des procédures de désinfection et le plus important la suite --­­> comme faire pour que cela ne m'arrive plus.

On va vérifier si rien de caché :

Faire un scan avec Nod32 en ligne (il faut utiliser Internet Explorer) ici :

https://www.eset.com/int/home/online-scanner/

(coche toutes les cases à chaque fois) 
A la fin, colle le rapport : C:\Program Files\EsetOnlineScanner\log.txt


@++   :)

papyphilippe · Answer

Bonjour

je viens de finir, cela donne l'impression d'être bon.
Et effectivement, j'aimerai vraiment savoir comment faire pour que cela n'arrive plus.

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK

Merci Papy Phil

dédétraqué · Answer

Salut papyphilippe


Le rapport n'est pas complet, avait-il détecté quelque chose?


Mettre à jour Antivir, faire un scan complet en mode sans échec et poste le rapport après avoir démarré en mode normal.

Aide : https://www.malekal.com/avira-free-security-antivirus-gratuit/


@++   :)

papyphilippe · Answer

Bonjour

il n'avait rien détecté.
Je viens de faire le scan en mode sans echec

rapport :



Avira AntiVir Personal
Date de création du fichier de rapport : vendredi 12 février 2010  17:58

La recherche porte sur 1748777 souches de virus.

Détenteur de la licence : Avira AntiVir Personal - FREE Antivirus
Numéro de série         : 0000149996-ADJIE-0000001
Plateforme              : Windows Vista 64 Bit
Version de Windows      : (plain)  [6.1.7600]
Mode Boot               : Mode sans échec
Identifiant             : LG
Nom de l'ordinateur     : LG-PC

Informations de version :
BUILD.DAT               : 9.0.0.75      21698 Bytes  22/01/2010 23:14:00
AVSCAN.EXE              : 9.0.3.10     466689 Bytes  18/12/2009 16:02:15
AVSCAN.DLL              : 9.0.3.0       49409 Bytes  03/03/2009 10:21:02
LUKE.DLL                : 9.0.3.2      209665 Bytes  20/02/2009 11:35:11
LUKERES.DLL             : 9.0.2.0       13569 Bytes  03/03/2009 10:21:31
VBASE000.VDF            : 7.10.0.0   19875328 Bytes  06/11/2009 16:02:15
VBASE001.VDF            : 7.10.1.0    1372672 Bytes  19/11/2009 16:02:15
VBASE002.VDF            : 7.10.3.1    3143680 Bytes  20/01/2010 20:41:46
VBASE003.VDF            : 7.10.3.75    996864 Bytes  26/01/2010 16:35:10
VBASE004.VDF            : 7.10.3.76      2048 Bytes  26/01/2010 16:35:10
VBASE005.VDF            : 7.10.3.77      2048 Bytes  26/01/2010 16:35:10
VBASE006.VDF            : 7.10.3.78      2048 Bytes  26/01/2010 16:38:18
VBASE007.VDF            : 7.10.3.79      2048 Bytes  26/01/2010 16:38:18
VBASE008.VDF            : 7.10.3.80      2048 Bytes  26/01/2010 16:38:18
VBASE009.VDF            : 7.10.3.81      2048 Bytes  26/01/2010 16:40:14
VBASE010.VDF            : 7.10.3.82      2048 Bytes  26/01/2010 16:40:15
VBASE011.VDF            : 7.10.3.83      2048 Bytes  26/01/2010 16:40:15
VBASE012.VDF            : 7.10.3.84      2048 Bytes  26/01/2010 16:40:15
VBASE013.VDF            : 7.10.3.85      2048 Bytes  26/01/2010 16:40:16
VBASE014.VDF            : 7.10.3.122    172544 Bytes  29/01/2010 19:19:28
VBASE015.VDF            : 7.10.3.149     79872 Bytes  01/02/2010 18:37:31
VBASE016.VDF            : 7.10.3.174     68608 Bytes  03/02/2010 18:40:37
VBASE017.VDF            : 7.10.3.199     76800 Bytes  04/02/2010 18:50:58
VBASE018.VDF            : 7.10.3.222     64512 Bytes  05/02/2010 19:55:49
VBASE019.VDF            : 7.10.3.243     75776 Bytes  08/02/2010 19:55:46
VBASE020.VDF            : 7.10.4.6      81920 Bytes  09/02/2010 19:55:58
VBASE021.VDF            : 7.10.4.30     78848 Bytes  11/02/2010 19:55:58
VBASE022.VDF            : 7.10.4.31      2048 Bytes  11/02/2010 19:55:58
VBASE023.VDF            : 7.10.4.32      2048 Bytes  11/02/2010 19:55:59
VBASE024.VDF            : 7.10.4.33      2048 Bytes  11/02/2010 19:56:00
VBASE025.VDF            : 7.10.4.34      2048 Bytes  11/02/2010 19:56:00
VBASE026.VDF            : 7.10.4.35      2048 Bytes  11/02/2010 19:56:01
VBASE027.VDF            : 7.10.4.36      2048 Bytes  11/02/2010 19:56:01
VBASE028.VDF            : 7.10.4.37      2048 Bytes  11/02/2010 19:56:02
VBASE029.VDF            : 7.10.4.38      2048 Bytes  11/02/2010 19:56:03
VBASE030.VDF            : 7.10.4.39      2048 Bytes  11/02/2010 19:56:04
VBASE031.VDF            : 7.10.4.41     26624 Bytes  11/02/2010 19:56:05
Version du moteur       : 8.2.1.160
AEVDF.DLL               : 8.1.1.3      106868 Bytes  23/01/2010 00:35:15
AESCRIPT.DLL            : 8.1.3.13     823674 Bytes  01/02/2010 18:37:40
AESCN.DLL               : 8.1.4.0      127348 Bytes  27/01/2010 16:51:22
AESBX.DLL               : 8.1.1.1      246132 Bytes  18/12/2009 16:02:15
AERDL.DLL               : 8.1.3.4      479605 Bytes  18/12/2009 16:02:15
AEPACK.DLL              : 8.2.0.5      422262 Bytes  14/01/2010 20:13:27
AEOFFICE.DLL            : 8.1.0.38     196987 Bytes  18/12/2009 16:02:15
AEHEUR.DLL              : 8.1.1.5     2326901 Bytes  06/02/2010 19:36:49
AEHELP.DLL              : 8.1.10.0     237942 Bytes  14/01/2010 20:12:47
AEGEN.DLL               : 8.1.1.86     369012 Bytes  01/02/2010 18:37:35
AEEMU.DLL               : 8.1.1.0      393587 Bytes  18/12/2009 16:02:15
AECORE.DLL              : 8.1.11.1     184694 Bytes  01/02/2010 18:37:31
AEBB.DLL                : 8.1.0.3       53618 Bytes  09/10/2008 14:32:40
AVWINLL.DLL             : 9.0.0.3       18177 Bytes  12/12/2008 08:47:30
AVPREF.DLL              : 9.0.3.0       44289 Bytes  18/12/2009 16:02:15
AVREP.DLL               : 8.0.0.3      155905 Bytes  20/01/2009 14:34:28
AVREG.DLL               : 9.0.0.0       36609 Bytes  07/11/2008 15:24:42
AVARKT.DLL              : 9.0.0.3      292609 Bytes  24/03/2009 15:05:22
AVEVTLOG.DLL            : 9.0.0.7      167169 Bytes  30/01/2009 10:36:37
SQLITE3.DLL             : 3.6.1.0      326401 Bytes  28/01/2009 15:03:49
SMTPLIB.DLL             : 9.2.0.25      28417 Bytes  02/02/2009 08:20:57
NETNT.DLL               : 9.0.0.0       11521 Bytes  07/11/2008 15:40:59
RCIMAGE.DLL             : 9.0.0.25    2438913 Bytes  18/12/2009 16:02:14
RCTEXT.DLL              : 9.0.73.0      88321 Bytes  18/12/2009 16:02:14

Configuration pour la recherche actuelle :
Nom de la tâche...............................: Contrôle intégral du système
Fichier de configuration......................: c:\program files (x86)\avira\antivir desktop\sysscan.avp
Documentation.................................: bas
Action principale.............................: interactif
Action secondaire.............................: ignorer
Recherche sur les secteurs d'amorçage maître..: marche
Recherche sur les secteurs d'amorçage.........: marche
Secteurs d'amorçage...........................: C:, D:, 
Recherche dans les programmes actifs..........: marche
Recherche en cours sur l'enregistrement.......: marche
Recherche de Rootkits.........................: marche
Contrôle d'intégrité de fichiers système......: arrêt
Fichier mode de recherche.....................: Tous les fichiers
Recherche sur les archives....................: marche
Limiter la profondeur de récursivité..........: 20
Archive Smart Extensions......................: marche
Heuristique de macrovirus.....................: marche
Heuristique fichier...........................: moyen

Début de la recherche : vendredi 12 février 2010  17:58

La recherche d'objets cachés commence.
Impossible d'initialiser le pilote.

La recherche sur les processus démarrés commence :
Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés
Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '0' module(s) sont contrôlés
Processus de recherche 'ctfmon.exe' - '0' module(s) sont contrôlés
Processus de recherche 'explorer.exe' - '0' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '0' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '0' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '0' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '0' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '0' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '0' module(s) sont contrôlés
Processus de recherche 'lsm.exe' - '0' module(s) sont contrôlés
Processus de recherche 'lsass.exe' - '0' module(s) sont contrôlés
Processus de recherche 'services.exe' - '0' module(s) sont contrôlés
Processus de recherche 'winlogon.exe' - '0' module(s) sont contrôlés
Processus de recherche 'csrss.exe' - '0' module(s) sont contrôlés
Processus de recherche 'wininit.exe' - '0' module(s) sont contrôlés
Processus de recherche 'csrss.exe' - '0' module(s) sont contrôlés
Processus de recherche 'smss.exe' - '0' module(s) sont contrôlés
'2' processus ont été contrôlés avec '2' modules

La recherche sur les secteurs d'amorçage maître commence :
Secteur d'amorçage maître HD0
    [INFO]      Aucun virus trouvé !

La recherche sur les secteurs d'amorçage commence :
Secteur d'amorçage 'C:\'
    [INFO]      Aucun virus trouvé !
Secteur d'amorçage 'D:\'
    [INFO]      Aucun virus trouvé !

La recherche sur les renvois aux fichiers exécutables (registre) commence :
Le registre a été contrôlé ( '42' fichiers).


La recherche sur les fichiers sélectionnés commence :

Recherche débutant dans 'C:\'
C:\hiberfil.sys
    [AVERTISSEMENT] Impossible d'ouvrir le fichier !
    [REMARQUE]  Ce fichier est un fichier système Windows.
    [REMARQUE]  Il est correct que ce fichier ne puisse pas être ouvert pour la recherche.
C:\pagefile.sys
    [AVERTISSEMENT] Impossible d'ouvrir le fichier !
    [REMARQUE]  Ce fichier est un fichier système Windows.
    [REMARQUE]  Il est correct que ce fichier ne puisse pas être ouvert pour la recherche.
C:\archive philippe\ryzom\ryzom-installer_060928.exe
  [0] Type d'archive: ZIP SFX (self extracting)
    --> Data11.cab
      [1] Type d'archive: CAB (Microsoft)
      --> characters_maps_zo_hom_casqu
        [AVERTISSEMENT] Aucun autre fichier n'a pu être décompressé de cette archive. L'archive est refermée.
    [AVERTISSEMENT] Aucun autre fichier n'a pu être décompressé de cette archive. L'archive est refermée.
Recherche débutant dans 'D:\' <RECOVERY>


Fin de la recherche : vendredi 12 février 2010  18:47
Temps nécessaire: 48:37 Minute(s)

La recherche a été effectuée intégralement

  31667 Les répertoires ont été contrôlés
 650796 Des fichiers ont été contrôlés
      0 Des virus ou programmes indésirables ont été trouvés
      0 Des fichiers ont été classés comme suspects
      0 Des fichiers ont été supprimés
      0 Des virus ou programmes indésirables ont été réparés
      0 Les fichiers ont été déplacés dans la quarantaine
      0 Les fichiers ont été renommés
      2 Impossible de contrôler des fichiers
 650794 Fichiers non infectés
   5669 Les archives ont été contrôlées
      4 Avertissements
      2 Consignes


merci Papy phil

dédétraqué · Answer

Salut papyphilippe


Cela est bon, as-tu d'autre souci?


@++  :)

papyphilippe · Answer

Non, il semble en pleine forme.

Un grand merci pour ton aide. c'est vraiment sympa.

Papy Philippe

dédétraqué · Answer

Salut papyphilippe


On va faire un ménage des outils téléchargés pour la désinfection, télécharge Tools Cleaner sur le bureau :

http://pc-system.fr/


- Faire un clic droit sur ToolsCleaner2.exe sur le bureau et choisi "Exécuter en tant qu'administrateur".
- Clique sur Recherche et laisse le scan agir.
- Clique sur Suppression pour finaliser.
- Tu peux, si tu le souhaites, te servir des Options facultatives.
- Clique sur Quitter pour obtenir le rapport.
- Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).
- Si des outils restes après le passage de Tools Cleaner, tu pourras les supprimer manuellement ainsi que tous les rapports qui on été généré lors de la désinfection.


-----


Je te donne quelques consignes de sécurité :

-  Windows Update  parfaitement à jour http://www.windowsupdate.com/windowsupdate/v6/default.aspx (catégories critique, Services Pack et Services Release)
- pare-feu bien paramétré, je te conseil ZoneAlarm : 
https://www.malekal.com/tutoriel-zonealarm-firewall/
- antivirus bien paramétré et mis à jour régulièrement (quotidiennement s'il le faut) avec un scan complet régulier (journalier s'il le faut).
- une attitude prudente vis à vis de la navigation (pas de sites douteux : cracks, warez, sexe...) et vis à vis de la messagerie (fichiers joints aux messages doivent être scannés avant d'être ouverts)
- pas de téléchargement illégal, qui est le principal facteur d’infection (µTorrent, BitTorrent, eMule, Limewire, etc..)   http://forum.malekal.com/ftopic893.php
- une attitude vigilante (être à l'affût d'un fonctionnement inhabituel de son système)
- nettoyage hebdomadaire du système (suppression des fichiers inutiles, nettoyage de la base de registre, scandisk, defrag)
- scan hebdomadaire antispyware, je conseil MalwareByte's Anti-Malware :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
- un contrôle régulier de la console JAVA pour s'assurer qu'elle est à jour :
https://www.java.com/en/download/uninstalltool.jsp 
- faire régulièrement un scan de vulnérabilités afin de vérifier que tes logiciels soit à jour sans failles de sécurités :
https://www.malekal.com/tester-la-vulnerabilite-de-son-systeme-2/


De bonne lecture si tu veux en savoir plus sur la sécurité et le fonctionnement de Windows :
http://www.malekal.com/menu_windows_general.php
http://www.malekal.com/menu_windows_securite.php

Si tu considères ton problème comme résolu, tu pourras mettre en résolu :
https://www.commentcamarche.net/infos/25917-marquer-un-fil-de-discussion-comme-etant-resolu/

Bonne journée/soirée et bon surf   


@++  :)

Redirection des page google

33 réponses

Discussions similaires

Newsletters