Sujet Précédent Sujet Suivant

Probleme internet lent

Résolu/Fermé
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011 - 17 janv. 2011 à 21:24
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011 - 9 févr. 2011 à 13:00
Bonjour,

salut, j'ai un problème avec ma connexion internet qui est plus lent que d'habitude parfois pour ouvrir google sa me prend 2 ou 3mn. J'ai installé plusieurs logiciel comme registry booster et glary utilities mais c'est la même chose. Et j'ai remarquer en ouvrant le gestionnaire de taches que le processus "kwtbaim.exe" fonctionnait anormalement, en arretant ce processus, internet se mis a fonctionner un peu plus rapidement. Est-ce qu'il aurait un moyen pour que ce probleme soit definitivement régler svp.
merci d'avance

A voir également:

85 réponses

Précédent
Réponse 61 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
3 févr. 2011 à 19:32
http://www.cijoint.fr/cjlink.php?file=cj201102/cij7VElrlM.zip
0
Réponse 62 / 85
Utilisateur anonyme
3 févr. 2011 à 19:57
ok quand tu demarres ton ordi tu fais comme si tu voulais demarrer en mode sans echec ,

apparait-il le mode "reparer l'ordinateur" ?

0
Réponse 63 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
3 févr. 2011 à 20:00
je vais essayer pour voir en mode sans echec
0
Réponse 64 / 85
Utilisateur anonyme
3 févr. 2011 à 20:10
non justement c'est dans le menu avec le choix demarrer en mode sans echec , etc...etc....
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 65 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
3 févr. 2011 à 20:23
oui sa afiche reparer l'ordinateur et plein dote truk
qu'est-ce ki fo faire?di moi la manip kom sa je lire sur mon tel pdt ke je le fai sur lordi stp
0
Réponse 66 / 85
Utilisateur anonyme
3 févr. 2011 à 21:01
tu choisis réparer l'ordinateur

il va chercher à reparer les erreurs

ensuite , tu fais suivant , puis tu selectionnes le dernier choix et tu vas tomber sur une fenetre noire avec ca :

C:>

tu ecris :

Bootrec.exe /fixboot

puis entrée

et puis ensuite , :

Bootrec.exe /fixmbr

puis tu redemarres l'ordi normalement
0
Réponse 67 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
4 févr. 2011 à 07:08
salut..voila c fait.. s kil ya otre chose a faire?
0
Réponse 68 / 85
Utilisateur anonyme
4 févr. 2011 à 10:51
ok salut

▶ Relance List&Kill'em(soit en clic droit pour vista / 7),avec le raccourci sur ton bureau.

mais cette fois-ci :

▶ choisis l'option Tools puis Command Lines

un document texte va s'ouvrir à l'apparition de : Text Please

▶copie/colle le texte en gras ci-dessous :

del /f /q mbr.log
mbr -t >> mbr.txt
del /f /q mbr.log
notepad mbr.txt
del /f /q mbr.txt

ensuite onglet "Fichier" clic sur enregistrer , puis ferme ce bloc notes

Laisse travailler l'outil

un rapport va s'ouvrir , poste le resultat
0
Réponse 69 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
4 févr. 2011 à 12:41
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.0.6002 Disk: SAMSUNG_HD501LJ rev.CR100-10 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll >>UNKNOWN [0x862201F8]<<
1 ntkrnlpa!IofCallDriver[0x8364A962] -> \Device\Harddisk0\DR0[0x86B906F0]
3 CLASSPNP[0x897A48B3] -> ntkrnlpa!IofCallDriver[0x8364A962] -> [0x862E1898]
5 acpi[0x807B96BC] -> ntkrnlpa!IofCallDriver[0x8364A962] -> \Device\Ide\IdeDeviceP2T0L0-2[0x862DFB98]
\Driver\atapi[0x8626A510] -> IRP_MJ_CREATE -> 0x862201F8
kernel: MBR read successfully
detected disk devices:
detected hooks:
\Driver\atapi -> 0x862201f8
user & kernel MBR OK
Warning: possible MBR rootkit infection !
0
Réponse 70 / 85
Utilisateur anonyme
4 févr. 2011 à 13:25
tu as fait defogger comme indiqué plus haut ?
0
Réponse 71 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
7 févr. 2011 à 08:23
slt désolé de ce rpd tres en retard. oui j'ai fai defogger
0
Réponse 72 / 85
Utilisateur anonyme
7 févr. 2011 à 13:26
salut

▶ Télécharge TDSSKiller

▶ Lance le ( Utilisateurs de vista/Seven -> Clic droit puis " Exécuter en tant que........... " )

L'outil va télécharger automatiquement la dernière version de TDSSKiller puis lancera une analyse.

Patiente pendant le scan. A la fin de l'analyse, appuies sur une touche. Un rapport va s'ouvrir.

▶ Copie/Colle son contenu dans ta prochaine réponse.

Note : Le rapport se trouve également sous C:\tdsskiller.txt.
0
Réponse 73 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
7 févr. 2011 à 23:00
slt

2011/02/08 01:57:12.0741 1384 TDSS rootkit removing tool 2.4.16.0 Feb 1 2011 10:34:03
2011/02/08 01:57:14.0744 1384 ================================================================================
2011/02/08 01:57:14.0745 1384 SystemInfo:
2011/02/08 01:57:14.0745 1384
2011/02/08 01:57:14.0745 1384 OS Version: 6.0.6002 ServicePack: 2.0
2011/02/08 01:57:14.0745 1384 Product type: Workstation
2011/02/08 01:57:14.0745 1384 ComputerName: PC-DE-LUDOVIC
2011/02/08 01:57:14.0745 1384 UserName: Ludovic
2011/02/08 01:57:14.0745 1384 Windows directory: C:\Windows
2011/02/08 01:57:14.0745 1384 System windows directory: C:\Windows
2011/02/08 01:57:14.0745 1384 Processor architecture: Intel x86
2011/02/08 01:57:14.0745 1384 Number of processors: 2
2011/02/08 01:57:14.0745 1384 Page size: 0x1000
2011/02/08 01:57:14.0745 1384 Boot type: Normal boot
2011/02/08 01:57:14.0746 1384 ================================================================================
2011/02/08 01:57:24.0142 1384 Initialize success
2011/02/08 01:57:31.0625 5960 ================================================================================
2011/02/08 01:57:31.0625 5960 Scan started
2011/02/08 01:57:31.0625 5960 Mode: Manual;
2011/02/08 01:57:31.0625 5960 ================================================================================
2011/02/08 01:57:33.0708 5960 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
2011/02/08 01:57:33.0783 5960 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
2011/02/08 01:57:33.0846 5960 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
2011/02/08 01:57:33.0908 5960 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
2011/02/08 01:57:33.0952 5960 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
2011/02/08 01:57:34.0060 5960 AFD (a201207363aa900abf1a388468688570) C:\Windows\system32\drivers\afd.sys
2011/02/08 01:57:34.0144 5960 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
2011/02/08 01:57:34.0189 5960 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/02/08 01:57:34.0246 5960 aliide (9df16e31daa1591c538222eae00e07eb) C:\Windows\system32\drivers\aliide.sys
2011/02/08 01:57:34.0300 5960 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
2011/02/08 01:57:34.0337 5960 amdide (260c91345de01c3dfd364ee970a92b02) C:\Windows\system32\drivers\amdide.sys
2011/02/08 01:57:34.0386 5960 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
2011/02/08 01:57:34.0421 5960 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
2011/02/08 01:57:34.0493 5960 Andbus (3e59df4984fbd6800d6621480b38a34e) C:\Windows\system32\DRIVERS\lgandbus.sys
2011/02/08 01:57:34.0520 5960 AndDiag (8e0bf6f3b2c9c292bc7ce0de727cdd56) C:\Windows\system32\DRIVERS\lganddiag.sys
2011/02/08 01:57:34.0547 5960 AndGps (1d2c90e25483363d54b652898bbc8f2a) C:\Windows\system32\DRIVERS\lgandgps.sys
2011/02/08 01:57:34.0575 5960 ANDModem (b1b06a95da2cac7fa19832c60c348c85) C:\Windows\system32\DRIVERS\lgandmodem.sys
2011/02/08 01:57:34.0659 5960 androidusb (54a40a58ff71936026f2e49ecfd487b8) C:\Windows\system32\Drivers\lgandadb.sys
2011/02/08 01:57:34.0740 5960 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
2011/02/08 01:57:34.0784 5960 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
2011/02/08 01:57:34.0852 5960 aswFsBlk (1b6ed99291ddf5d2501554cc5757aab6) C:\Windows\system32\drivers\aswFsBlk.sys
2011/02/08 01:57:34.0893 5960 aswMonFlt (58254e06b36b984e33ae314c0ea8f1a5) C:\Windows\system32\drivers\aswMonFlt.sys
2011/02/08 01:57:34.0923 5960 aswRdr (3e2b6112d2766f87eda8466fde86a986) C:\Windows\system32\drivers\aswRdr.sys
2011/02/08 01:57:34.0991 5960 aswSnx (9da5b209d9843ebfbb3fd6bb197b276f) C:\Windows\system32\drivers\aswSnx.sys
2011/02/08 01:57:35.0024 5960 aswSP (d78b644816db540e103d0b0766fd9967) C:\Windows\system32\drivers\aswSP.sys
2011/02/08 01:57:35.0068 5960 aswTdi (606d731008d98b6ef946730c597c1642) C:\Windows\system32\drivers\aswTdi.sys
2011/02/08 01:57:35.0147 5960 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/02/08 01:57:35.0191 5960 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
2011/02/08 01:57:35.0367 5960 atikmdag (63fc6a312bb0fbbbf355cb5d4a1c7764) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/02/08 01:57:35.0704 5960 AVWEBCAM (08270114009e3e8891120c9ff651123b) C:\Windows\system32\DRIVERS\avwebcam.sys
2011/02/08 01:57:35.0825 5960 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
2011/02/08 01:57:36.0034 5960 bowser (74b442b2be1260b7588c136177ceac66) C:\Windows\system32\DRIVERS\bowser.sys
2011/02/08 01:57:36.0117 5960 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/02/08 01:57:36.0174 5960 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/02/08 01:57:36.0250 5960 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/02/08 01:57:36.0300 5960 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/02/08 01:57:36.0340 5960 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/02/08 01:57:36.0380 5960 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/02/08 01:57:36.0425 5960 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
2011/02/08 01:57:36.0627 5960 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/02/08 01:57:36.0697 5960 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
2011/02/08 01:57:36.0736 5960 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
2011/02/08 01:57:36.0795 5960 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
2011/02/08 01:57:36.0886 5960 cmdide (55a247b547fb9da28bc492dee643ecdf) C:\Windows\system32\drivers\cmdide.sys
2011/02/08 01:57:36.0977 5960 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
2011/02/08 01:57:37.0022 5960 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
2011/02/08 01:57:37.0071 5960 CO_Mon (73f5d6835bfa66019c03e316d99649da) C:\Windows\system32\drivers\CO_Mon.sys
2011/02/08 01:57:37.0121 5960 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
2011/02/08 01:57:37.0153 5960 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
2011/02/08 01:57:37.0257 5960 DfsC (218d8ae46c88e82014f5d73d0236d9b2) C:\Windows\system32\Drivers\dfsc.sys
2011/02/08 01:57:37.0341 5960 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
2011/02/08 01:57:37.0432 5960 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
2011/02/08 01:57:37.0490 5960 DXGKrnl (5c7e2097b91d689ded7a6ff90f0f3a25) C:\Windows\System32\drivers\dxgkrnl.sys
2011/02/08 01:57:37.0558 5960 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/02/08 01:57:37.0639 5960 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
2011/02/08 01:57:37.0782 5960 eeCtrl (47ce4e650d91dc095a2fddb15631a78a) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
2011/02/08 01:57:37.0846 5960 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
2011/02/08 01:57:37.0998 5960 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
2011/02/08 01:57:38.0042 5960 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
2011/02/08 01:57:38.0099 5960 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
2011/02/08 01:57:38.0154 5960 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
2011/02/08 01:57:38.0196 5960 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
2011/02/08 01:57:38.0240 5960 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/02/08 01:57:38.0279 5960 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
2011/02/08 01:57:38.0389 5960 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
2011/02/08 01:57:38.0453 5960 FsUsbExDisk (790a4ca68f44be35967b3df61f3e4675) C:\Windows\system32\FsUsbExDisk.SYS
2011/02/08 01:57:38.0505 5960 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
2011/02/08 01:57:38.0552 5960 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
2011/02/08 01:57:38.0608 5960 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/02/08 01:57:38.0730 5960 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
2011/02/08 01:57:38.0791 5960 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/02/08 01:57:38.0840 5960 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
2011/02/08 01:57:38.0882 5960 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/02/08 01:57:38.0931 5960 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
2011/02/08 01:57:38.0998 5960 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
2011/02/08 01:57:39.0072 5960 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
2011/02/08 01:57:39.0209 5960 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
2011/02/08 01:57:39.0296 5960 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/02/08 01:57:39.0404 5960 ialm (496db78e6a0c4c44023d9a92b4a7ac31) C:\Windows\system32\DRIVERS\igdkmd32.sys
2011/02/08 01:57:39.0473 5960 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
2011/02/08 01:57:39.0649 5960 IDSvix86 (ce5d5aaba62949b9bfa44d0eaf2d93e5) C:\PROGRA~2\Symantec\DEFINI~1\SymcData\ipsdefs\20081220.001\IDSvix86.sys
2011/02/08 01:57:39.0691 5960 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/02/08 01:57:39.0916 5960 IntcAzAudAddService (edc37b918e583a5a813c53d4f5588255) C:\Windows\system32\drivers\RTKVHDA.sys
2011/02/08 01:57:39.0976 5960 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
2011/02/08 01:57:40.0002 5960 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
2011/02/08 01:57:40.0090 5960 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/02/08 01:57:40.0184 5960 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
2011/02/08 01:57:40.0250 5960 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
2011/02/08 01:57:40.0321 5960 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
2011/02/08 01:57:40.0360 5960 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
2011/02/08 01:57:40.0416 5960 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/02/08 01:57:40.0479 5960 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/02/08 01:57:40.0524 5960 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/02/08 01:57:40.0565 5960 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/02/08 01:57:40.0640 5960 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/02/08 01:57:40.0729 5960 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
2011/02/08 01:57:40.0822 5960 LgBttPort (4dd47b5af0b24871ebb9efc012a7474e) C:\Windows\system32\DRIVERS\lgbtport.sys
2011/02/08 01:57:40.0857 5960 lgbusenum (1d038ca6c529203087a990e5e97887b4) C:\Windows\system32\DRIVERS\lgbtbus.sys
2011/02/08 01:57:40.0882 5960 LGVMODEM (26f1976a330195d62a6224c76968cf0d) C:\Windows\system32\DRIVERS\lgvmodem.sys
2011/02/08 01:57:40.0947 5960 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/02/08 01:57:40.0999 5960 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
2011/02/08 01:57:41.0030 5960 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
2011/02/08 01:57:41.0062 5960 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
2011/02/08 01:57:41.0108 5960 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
2011/02/08 01:57:41.0146 5960 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
2011/02/08 01:57:41.0202 5960 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
2011/02/08 01:57:41.0250 5960 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
2011/02/08 01:57:41.0289 5960 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
2011/02/08 01:57:41.0346 5960 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
2011/02/08 01:57:41.0378 5960 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
2011/02/08 01:57:41.0423 5960 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
2011/02/08 01:57:41.0462 5960 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
2011/02/08 01:57:41.0517 5960 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/02/08 01:57:41.0570 5960 MRV6X32P (cd0a89c61e8f4be0b1dfbb4b972fc1dd) C:\Windows\system32\DRIVERS\MRVW13B.sys
2011/02/08 01:57:41.0625 5960 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
2011/02/08 01:57:41.0663 5960 mrxsmb (454341e652bdf5e01b0f2140232b073e) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/02/08 01:57:41.0707 5960 mrxsmb10 (2a4901aff069944fa945ed5bbf4dcde3) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/02/08 01:57:41.0742 5960 mrxsmb20 (28b3f1ab44bdd4432c041581412f17d9) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/02/08 01:57:41.0770 5960 msahci (60ec6885a269e13d5daaa0efe060127a) C:\Windows\system32\drivers\msahci.sys
2011/02/08 01:57:41.0796 5960 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
2011/02/08 01:57:41.0849 5960 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
2011/02/08 01:57:41.0925 5960 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
2011/02/08 01:57:41.0997 5960 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
2011/02/08 01:57:42.0040 5960 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/02/08 01:57:42.0069 5960 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
2011/02/08 01:57:42.0102 5960 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
2011/02/08 01:57:42.0137 5960 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/02/08 01:57:42.0165 5960 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
2011/02/08 01:57:42.0187 5960 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
2011/02/08 01:57:42.0305 5960 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
2011/02/08 01:57:42.0468 5960 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
2011/02/08 01:57:42.0561 5960 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/02/08 01:57:42.0608 5960 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/02/08 01:57:42.0636 5960 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/02/08 01:57:42.0692 5960 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
2011/02/08 01:57:42.0722 5960 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
2011/02/08 01:57:42.0760 5960 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
2011/02/08 01:57:42.0836 5960 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
2011/02/08 01:57:42.0889 5960 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
2011/02/08 01:57:42.0925 5960 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
2011/02/08 01:57:42.0991 5960 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
2011/02/08 01:57:43.0033 5960 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
2011/02/08 01:57:43.0072 5960 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
2011/02/08 01:57:43.0101 5960 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
2011/02/08 01:57:43.0136 5960 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
2011/02/08 01:57:43.0178 5960 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
2011/02/08 01:57:43.0283 5960 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
2011/02/08 01:57:43.0346 5960 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/02/08 01:57:43.0389 5960 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
2011/02/08 01:57:43.0424 5960 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/02/08 01:57:43.0469 5960 pccsmcfd (175cc28dcf819f78caa3fbd44ad9e52a) C:\Windows\system32\DRIVERS\pccsmcfd.sys
2011/02/08 01:57:43.0517 5960 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
2011/02/08 01:57:43.0556 5960 pciide (64b8e559d285c7ef599edf6428e1366f) C:\Windows\system32\drivers\pciide.sys
2011/02/08 01:57:43.0598 5960 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
2011/02/08 01:57:43.0757 5960 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/02/08 01:57:43.0920 5960 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
2011/02/08 01:57:43.0969 5960 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
2011/02/08 01:57:44.0059 5960 Ps2 (390c204ced3785609ab24e9c52054a84) C:\Windows\system32\DRIVERS\PS2.sys
2011/02/08 01:57:44.0151 5960 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
2011/02/08 01:57:44.0260 5960 qcusbser (9ccf89372c5a04e97cd89b58ae697796) C:\Windows\system32\DRIVERS\qcusbser.sys
2011/02/08 01:57:44.0338 5960 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
2011/02/08 01:57:44.0378 5960 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/02/08 01:57:44.0435 5960 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
2011/02/08 01:57:44.0467 5960 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
2011/02/08 01:57:44.0503 5960 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/02/08 01:57:44.0560 5960 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/02/08 01:57:44.0585 5960 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
2011/02/08 01:57:44.0626 5960 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
2011/02/08 01:57:44.0659 5960 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/02/08 01:57:44.0705 5960 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
2011/02/08 01:57:44.0727 5960 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
2011/02/08 01:57:44.0773 5960 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
2011/02/08 01:57:44.0842 5960 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
2011/02/08 01:57:44.0885 5960 RTL8169 (3d2b6520699d1dcd5a13f9e7cad62199) C:\Windows\system32\DRIVERS\Rtlh86.sys
2011/02/08 01:57:44.0955 5960 s117bus (1f561844318914e7eb6e54673a4cc54c) C:\Windows\system32\DRIVERS\s117bus.sys
2011/02/08 01:57:45.0027 5960 s117mdfl (ba93eec3cdf6a63b77ae66221aa4f902) C:\Windows\system32\DRIVERS\s117mdfl.sys
2011/02/08 01:57:45.0063 5960 s117mdm (cba12fd8a8ee5b5cdfbbae2381cd6703) C:\Windows\system32\DRIVERS\s117mdm.sys
2011/02/08 01:57:45.0121 5960 s117mgmt (bd6483e64b1da17e812b34bcdefd9459) C:\Windows\system32\DRIVERS\s117mgmt.sys
2011/02/08 01:57:45.0167 5960 s117nd5 (c7ca36c3054b4cd47a1f6611b046e2f9) C:\Windows\system32\DRIVERS\s117nd5.sys
2011/02/08 01:57:45.0201 5960 s117obex (e290b3a6b58fb72ca97dd48d64e4fc1c) C:\Windows\system32\DRIVERS\s117obex.sys
2011/02/08 01:57:45.0232 5960 s117unic (5c4d1ba23c7511ac880e8ba7baa80dba) C:\Windows\system32\DRIVERS\s117unic.sys
2011/02/08 01:57:45.0318 5960 s3017bus (aa786ad3a2684d39630744787b00e6f4) C:\Windows\system32\DRIVERS\s3017bus.sys
2011/02/08 01:57:45.0361 5960 s3017mdfl (cba4ca5bce44084e98ce420fd6692d3a) C:\Windows\system32\DRIVERS\s3017mdfl.sys
2011/02/08 01:57:45.0392 5960 s3017mdm (68036eff647970d6c0399789c8707cad) C:\Windows\system32\DRIVERS\s3017mdm.sys
2011/02/08 01:57:45.0427 5960 s3017mgmt (3672e7f9349bd98fd3f5ac33e7b2b1a6) C:\Windows\system32\DRIVERS\s3017mgmt.sys
2011/02/08 01:57:45.0460 5960 s3017nd5 (b1133b37eb184aef81d56b4302dbae9c) C:\Windows\system32\DRIVERS\s3017nd5.sys
2011/02/08 01:57:45.0500 5960 s3017obex (d81b1d504aa1426622e7ec09f25130a9) C:\Windows\system32\DRIVERS\s3017obex.sys
2011/02/08 01:57:45.0525 5960 s3017unic (7b95c53ea8bb585013767eef2875c0a0) C:\Windows\system32\DRIVERS\s3017unic.sys
2011/02/08 01:57:45.0590 5960 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/02/08 01:57:45.0727 5960 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/02/08 01:57:45.0765 5960 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
2011/02/08 01:57:45.0831 5960 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/02/08 01:57:45.0875 5960 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
2011/02/08 01:57:46.0000 5960 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\drivers\sffdisk.sys
2011/02/08 01:57:46.0046 5960 sffp_mmc (96ded8b20c734ac41641ce275250e55d) C:\Windows\system32\drivers\sffp_mmc.sys
2011/02/08 01:57:46.0076 5960 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\drivers\sffp_sd.sys
2011/02/08 01:57:46.0098 5960 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/02/08 01:57:46.0149 5960 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
2011/02/08 01:57:46.0188 5960 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
2011/02/08 01:57:46.0238 5960 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
2011/02/08 01:57:46.0316 5960 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
2011/02/08 01:57:46.0540 5960 SPBBCDrv (dc4dc886d3779c446f9b0e9d6b006e72) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
2011/02/08 01:57:46.0588 5960 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
2011/02/08 01:57:46.0728 5960 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
2011/02/08 01:57:46.0728 5960 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
2011/02/08 01:57:46.0739 5960 sptd - detected Locked file (1)
2011/02/08 01:57:46.0833 5960 SRTSP (655773f2f1a3730c6cf20280a49f4ee1) C:\Windows\system32\Drivers\SRTSP.SYS
2011/02/08 01:57:46.0948 5960 SRTSPL (2a0aaf370d4c6574a34ae2f4a0709cae) C:\Windows\system32\Drivers\SRTSPL.SYS
2011/02/08 01:57:46.0995 5960 SRTSPX (3104bdceace2d5710776dd05e6a286c1) C:\Windows\system32\Drivers\SRTSPX.SYS
2011/02/08 01:57:47.0024 5960 srv (ff3cbc13db84d81f56931bc922cc37c4) C:\Windows\system32\DRIVERS\srv.sys
2011/02/08 01:57:47.0064 5960 srv2 (d15959d9f69f0d39a0153e9c244f20dd) C:\Windows\system32\DRIVERS\srv2.sys
2011/02/08 01:57:47.0091 5960 srvnet (faa0d553a49e85008c6bb3781987c574) C:\Windows\system32\DRIVERS\srvnet.sys
2011/02/08 01:57:47.0141 5960 sscdbus (92b69020fc480219683d429dca068d71) C:\Windows\system32\DRIVERS\sscdbus.sys
2011/02/08 01:57:47.0225 5960 sscdmdfl (77a2869d40cc84af711c321f9b0c7a78) C:\Windows\system32\DRIVERS\sscdmdfl.sys
2011/02/08 01:57:47.0322 5960 sscdmdm (b4255635195a8413fcde7af5b7c4e382) C:\Windows\system32\DRIVERS\sscdmdm.sys
2011/02/08 01:57:47.0423 5960 ss_bbus (eaa66218cd39f5bb1b4853a78c67c787) C:\Windows\system32\DRIVERS\ss_bbus.sys
2011/02/08 01:57:47.0460 5960 ss_bmdfl (91765f99914ed8693d8bc76524f21581) C:\Windows\system32\DRIVERS\ss_bmdfl.sys
2011/02/08 01:57:47.0484 5960 ss_bmdm (840e7b738b03c10ee91d9b7d3d6eff15) C:\Windows\system32\DRIVERS\ss_bmdm.sys
2011/02/08 01:57:47.0571 5960 ss_bus (5a1d0ca8a5f1e7b4ec50b9d76c001f0e) C:\Windows\system32\DRIVERS\ss_bus.sys
2011/02/08 01:57:47.0617 5960 ss_mdfl (f0a85580e36a3a85059037d39a9cf079) C:\Windows\system32\DRIVERS\ss_mdfl.sys
2011/02/08 01:57:47.0655 5960 ss_mdm (84c3dbfd1bfa4adc0a950b3d5506cb00) C:\Windows\system32\DRIVERS\ss_mdm.sys
2011/02/08 01:57:47.0747 5960 StarOpen (306521935042fc0a6988d528643619b3) C:\Windows\system32\drivers\StarOpen.sys
2011/02/08 01:57:47.0818 5960 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
2011/02/08 01:57:47.0892 5960 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
2011/02/08 01:57:47.0962 5960 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/02/08 01:57:48.0011 5960 SYMDNS (fe9f8b3a8bc22d85332b42e92308ddf9) C:\Windows\System32\Drivers\SYMDNS.SYS
2011/02/08 01:57:48.0046 5960 SymEvent (06b95820df51502099a8a15c93e87986) C:\Windows\system32\Drivers\SYMEVENT.SYS
2011/02/08 01:57:48.0078 5960 SYMFW (a0ea9d273889e53cfaabf2444692ccbf) C:\Windows\System32\Drivers\SYMFW.SYS
2011/02/08 01:57:48.0148 5960 SymIM (8eab28dd6cd25355b951ae460fa86b48) C:\Windows\system32\DRIVERS\SymIMv.sys
2011/02/08 01:57:48.0237 5960 SYMNDISV (c94eaca4b522012ee0691f1e79c42a7d) C:\Windows\System32\Drivers\SYMNDISV.SYS
2011/02/08 01:57:48.0290 5960 SYMREDRV (7c6505ea598e58099d3b7e1f70426864) C:\Windows\System32\Drivers\SYMREDRV.SYS
2011/02/08 01:57:48.0362 5960 SYMTDI (e6ff7ace71d07ca90119f2c6ab592ba4) C:\Windows\System32\Drivers\SYMTDI.SYS
2011/02/08 01:57:48.0394 5960 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/02/08 01:57:48.0429 5960 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/02/08 01:57:48.0514 5960 Tcpip (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\drivers\tcpip.sys
2011/02/08 01:57:48.0558 5960 Tcpip6 (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\DRIVERS\tcpip.sys
2011/02/08 01:57:48.0584 5960 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
2011/02/08 01:57:48.0627 5960 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
2011/02/08 01:57:48.0670 5960 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
2011/02/08 01:57:48.0717 5960 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
2011/02/08 01:57:48.0755 5960 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
2011/02/08 01:57:48.0822 5960 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/02/08 01:57:48.0848 5960 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
2011/02/08 01:57:48.0914 5960 tunnel (119b8184e106baedc83fce5ddf3950da) C:\Windows\system32\DRIVERS\tunnel.sys
2011/02/08 01:57:48.0956 5960 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
2011/02/08 01:57:49.0055 5960 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
2011/02/08 01:57:49.0124 5960 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
2011/02/08 01:57:49.0182 5960 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
2011/02/08 01:57:49.0253 5960 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/02/08 01:57:49.0313 5960 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/02/08 01:57:49.0366 5960 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
2011/02/08 01:57:49.0466 5960 USBAAPL (c1ca131f4e3ed63d6bc89a35ffad4cda) C:\Windows\system32\Drivers\usbaapl.sys
2011/02/08 01:57:49.0513 5960 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/02/08 01:57:49.0555 5960 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/02/08 01:57:49.0647 5960 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
2011/02/08 01:57:49.0674 5960 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
2011/02/08 01:57:49.0708 5960 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
2011/02/08 01:57:49.0740 5960 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
2011/02/08 01:57:49.0771 5960 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/02/08 01:57:49.0824 5960 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/02/08 01:57:49.0866 5960 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/02/08 01:57:49.0905 5960 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
2011/02/08 01:57:49.0945 5960 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
2011/02/08 01:57:49.0983 5960 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
2011/02/08 01:57:50.0026 5960 viaide (61acdd65bc5d6e4936297610506281d7) C:\Windows\system32\drivers\viaide.sys
2011/02/08 01:57:50.0077 5960 VirtualCam (b6ef92c628d993c5f777807ed76a7568) C:\Windows\system32\DRIVERS\VirtualCam.sys
2011/02/08 01:57:50.0128 5960 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
2011/02/08 01:57:50.0177 5960 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
2011/02/08 01:57:50.0231 5960 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
2011/02/08 01:57:50.0298 5960 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
2011/02/08 01:57:50.0352 5960 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/02/08 01:57:50.0394 5960 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/02/08 01:57:50.0436 5960 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/02/08 01:57:50.0487 5960 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
2011/02/08 01:57:50.0537 5960 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
2011/02/08 01:57:50.0758 5960 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
2011/02/08 01:57:50.0902 5960 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
2011/02/08 01:57:51.0015 5960 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/02/08 01:57:51.0145 5960 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/02/08 01:57:51.0244 5960 ZSMC301b (1e41295eac56589efd9dc3ca14bf3fec) C:\Windows\system32\Drivers\usbVM31b.sys
2011/02/08 01:57:51.0329 5960 ================================================================================
2011/02/08 01:57:51.0329 5960 Scan finished
2011/02/08 01:57:51.0329 5960 ================================================================================
2011/02/08 01:57:51.0359 5932 Detected object count: 1
2011/02/08 01:58:17.0583 5932 Locked file(sptd) - User select action: Skip
2011/02/08 01:58:25.0538 4860 Deinitialize success
0
Réponse 74 / 85
Utilisateur anonyme
8 févr. 2011 à 02:53
tu as encore des restes de norton

sers toi de cette page pour les virer :

Désinstallation Antivirus , Parefeu , Antispyware

================================


/!\ ATTENTION SUIVRE A LA LETTRE CES INDICATIONS/!\

__________________________________________________________
>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
>>>>>>>Ne pas utiliser en dehors de ce cas de figure : dangereux!<<<<<<<<
=====================================================

▶ Surtout , pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur

Telecharge ici : Combofix

Avant d'utiliser ComboFix :

Si tu utilises AVG, IL FAUT IMPERATIVEMENT LE DESINSTALLER avant d'utiliser Combofix car il peut causer des dégâts en interaction avec l'outil pouvant mener à la réinstallation totale du système.
La simple désactivation du résident n'est pas suffisante.
Télécharge le désinstalleur d'AVG sur ce lien : https://www.avg.com/fr-fr/avg-remover
Choisis la version adéquate (32 ou 64 bits)/!\

Les logiciels d'émulation de CD comme Daemon Tools peuvent gêner les outils de désinfection. Utilise Defogger pour les désactiver temporairement :

▶ Télécharge Defogger (de jpshortstuff) sur ton Bureau

▶ Lance le

Une fenêtre apparait : clique sur "Disable"

▶ Fais redémarrer l'ordinateur si l'outil te le demande

Note : Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable"

_________________________________________________________
>> referme les fenêtres de tous les programmes en cours.
>> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
>>la protection en temps réel de ton Antivirus et de tes Antispywares,
>>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur combofix renommé

¤¤¤¤¤¤¤¤¤¤ LAISSE-LE INSTALLER LA CONSOLE DE RECUPERATION S'IL TE LE DEMANDE ¤¤¤¤¤¤¤¤¤¤

▶ !!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!

▶ n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

▶▶ Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.



0
Réponse 75 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
8 févr. 2011 à 07:56
ComboFix 11-02-07.01 - Ludovic 08/02/2011 10:06:02.1.2 - x86
Microsoft® Windows Vista(TM) Édition Familiale Premium 6.0.6002.2.1252.33.1036.18.2047.1181 [GMT 4:00]
Lancé depuis: c:\users\Ludovic\Downloads\Ludovic.exe
AV: avast! Antivirus *Disabled/Outdated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Outdated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\jusched.exe

.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_Boonty Games


((((((((((((((((((((((((((((( Fichiers créés du 2011-01-08 au 2011-02-08 ))))))))))))))))))))))))))))))))))))
.

2069-11-22 12:48 . 2005-11-30 13:06 7254894 ----a-w- c:\program files\Mozilla Firefox\speed.exe
2069-11-22 12:48 . 2005-11-15 06:56 380928 ----a-r- c:\program files\Mozilla Firefox\server.dll
2011-02-08 05:43 . 2011-02-08 05:43 -------- d-----w- c:\users\Ludovic\AppData\Local\{55CC5443-919C-480D-BD9D-40751D549264}
2011-02-07 21:56 . 2011-02-07 21:56 -------- d-----w- C:\tdsskiller
2011-02-07 17:25 . 2011-02-07 17:25 -------- d-----w- c:\users\Ludovic\AppData\Local\{62D0FF88-A941-43F7-8097-5856807DE030}
2011-02-06 17:37 . 2011-02-06 17:37 -------- d-----w- c:\users\Ludovic\AppData\Local\{C4303463-FC82-4B23-AC4D-BB4D4828483B}
2011-02-06 05:36 . 2011-02-06 05:36 -------- d-----w- c:\users\Ludovic\AppData\Local\{2121ED04-DD20-4343-9805-AF615B9EBE49}
2011-02-05 09:14 . 2011-02-05 09:14 -------- d-----w- c:\users\Ludovic\AppData\Local\{A8D615CE-AF32-484E-81F7-DC9E2E2B5E47}
2011-02-04 22:11 . 2011-01-13 09:41 5890896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C10B2851-D5A5-4696-9805-AC6F446C8119}\mpengine.dll
2011-02-04 18:30 . 2011-02-04 18:30 -------- d-----w- c:\users\Ludovic\AppData\Local\{5D398E95-987F-4485-93B2-1D093CA2EF59}
2011-02-04 06:01 . 2011-02-04 06:02 -------- d-----w- c:\users\Ludovic\AppData\Local\{682027BF-1F91-4045-AE7E-A76ECC1992EF}
2011-02-03 16:56 . 2011-02-03 16:56 -------- d-----w- c:\users\Ludovic\AppData\Local\BearShare
2011-02-03 16:51 . 2011-02-03 16:56 -------- d-----w- c:\program files\BearShare Applications
2011-02-03 16:51 . 2011-02-03 16:51 -------- d-----w- c:\programdata\BearShare
2011-02-03 16:50 . 2011-02-03 16:56 -------- dc-h--w- c:\programdata\{4B337C2B-E6F0-4B28-98E9-248E1772D7EA}
2011-02-03 16:16 . 2011-02-03 17:03 -------- d-----w- C:\Kill'em
2011-02-03 14:04 . 2011-02-03 14:04 -------- d-----w- c:\users\Ludovic\AppData\Local\{93AA6B7A-1CD4-4059-BA8A-679981E16E6B}
2011-02-03 10:23 . 2011-02-04 11:42 -------- d-----w- c:\program files\List_Kill'em
2011-02-03 02:21 . 2011-02-03 02:21 -------- d-----w- c:\users\Ludovic\AppData\Local\{A41D2F25-F666-450F-9755-F8753EA6B913}
2011-02-02 19:30 . 2011-02-02 19:31 -------- d-----w- c:\users\Ludovic\AppData\Local\moovida Air
2011-02-02 19:29 . 2011-02-02 19:36 -------- d-----w- c:\users\Ludovic\AppData\Roaming\moovida-1
2011-02-02 19:27 . 2011-02-02 19:27 -------- d-----w- c:\program files\Fluendo
2011-02-02 14:21 . 2011-02-02 14:21 -------- d-----w- c:\users\Ludovic\AppData\Local\{04190E07-0027-4711-A87A-DECE3AB198BC}
2011-02-02 12:27 . 2011-02-02 12:27 -------- d-----w- c:\users\Ludovic\AppData\Local\{73FEEECE-8513-4AC6-9C81-BAF4C5BBAE9A}
2011-02-02 11:50 . 2011-02-02 11:50 -------- d-----w- c:\users\Ludovic\AppData\Local\{E8F9CD4E-AB68-4AE4-A8AC-4FA6DB3210A9}
2011-02-02 11:41 . 2011-02-02 11:41 -------- d-----w- c:\users\Ludovic\AppData\Local\{9E5C22F5-1AE7-47B6-9761-62BE471C461C}
2011-02-01 18:55 . 2011-02-01 18:55 -------- d-----w- c:\users\Ludovic\AppData\Local\{D0248313-85FB-440B-9581-BB0502710709}
2011-02-01 16:33 . 2011-02-01 16:33 -------- d-----w- c:\users\Ludovic\AppData\Local\{B825E68C-A4EA-4681-9B9A-A40A1C5EE0AE}
2011-02-01 14:53 . 2011-02-01 14:53 -------- d-----w- c:\users\Ludovic\AppData\Local\{79614ADE-7F67-4641-A293-D38FF34E46AE}
2011-02-01 12:17 . 2011-02-01 12:17 -------- d-----w- c:\users\Ludovic\AppData\Local\{875EA566-4FA6-440B-922D-A7DACF3CF2FE}
2011-02-01 11:39 . 2011-02-01 11:39 -------- d-----w- c:\users\Ludovic\AppData\Local\{04FAB7A9-AE77-44FD-88D4-524786FF3049}
2011-02-01 07:11 . 2011-02-01 07:11 -------- d-----w- c:\users\Ludovic\AppData\Local\{2565A334-B90D-46D4-9159-BD194C4E2F6D}
2011-02-01 05:04 . 2011-02-01 05:04 -------- d-----w- c:\users\Ludovic\AppData\Local\{4ACED3C8-3CFD-4438-A235-581B420426B4}
2011-02-01 04:48 . 2011-02-01 04:48 -------- d-----w- C:\_OTL
2011-01-31 17:04 . 2011-01-31 17:04 -------- d-----w- c:\users\Ludovic\AppData\Roaming\Thinstall
2011-01-31 17:04 . 2011-01-31 17:04 -------- d-----w- c:\users\Ludovic\AppData\Local\Thinstall
2011-01-31 16:21 . 2011-01-31 16:21 -------- d-----w- c:\users\Ludovic\AppData\Local\{7ACFB916-A337-4561-9F37-807AC36487A9}
2011-01-31 15:28 . 2011-01-31 15:28 -------- d-----w- c:\users\Ludovic\AppData\Local\Shalsoft
2011-01-30 10:28 . 2011-01-30 10:28 -------- d-----w- c:\users\Ludovic\AppData\Local\{14F97E07-A1E9-47A8-ACD6-F9BD3F0B724A}
2011-01-30 05:55 . 2011-01-30 05:55 -------- d-----w- c:\program files\iPod(69)
2011-01-30 05:55 . 2011-01-30 05:56 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2011-01-30 05:55 . 2011-01-30 05:56 -------- d-----w- c:\program files\iTunes(70)
2011-01-30 05:49 . 2011-02-01 16:30 -------- d-----w- c:\program files\Bonjour(9)
2011-01-30 05:45 . 2011-01-30 05:45 -------- d-----w- c:\program files\QuickTime(72)
2011-01-28 15:55 . 2011-01-28 15:55 -------- d-----w- c:\users\Ludovic\AppData\Local\{5B9B44AB-795C-4CDE-8239-88ECBD7F96AC}
2011-01-27 13:58 . 2011-01-27 13:58 -------- d-----w- c:\users\Ludovic\AppData\Local\{4D718907-3ECE-4D7B-BAC3-1E93BAC7BB2E}
2011-01-25 08:01 . 2011-01-25 08:01 -------- d-----w- c:\users\Ludovic\AppData\Local\{DF980290-F45A-48A1-8822-3DE5D5CCCE22}
2011-01-24 13:12 . 2011-01-24 13:12 -------- d-----w- c:\users\Ludovic\AppData\Local\{0C465DCF-E5CB-429B-AD25-006A08995537}
2011-01-23 14:46 . 2011-01-23 14:46 -------- d-----w- c:\users\Ludovic\AppData\Local\{C846ABFB-5A4A-49FE-9B31-2FF377E27C4C}
2011-01-21 08:07 . 2011-01-21 08:07 -------- d-----w- c:\users\Ludovic\AppData\Local\{AD12A13F-CB90-4716-A51C-532C2B8DF01F}
2011-01-20 19:53 . 2011-02-02 12:15 -------- d-----w- C:\UsbFix
2011-01-19 19:26 . 2011-01-19 19:26 -------- d-----w- c:\users\Ludovic\AppData\Roaming\Malwarebytes
2011-01-19 19:26 . 2011-01-19 19:26 -------- d-----w- c:\programdata\Malwarebytes
2011-01-19 19:26 . 2010-12-20 14:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-19 19:26 . 2010-12-20 14:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-19 19:26 . 2011-01-19 19:26 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-01-19 14:12 . 2011-01-19 14:13 -------- d-----w- c:\users\Ludovic\AppData\Local\{B7B35E74-071A-4E5C-8EC3-E5E59538F07D}
2011-01-19 13:59 . 2011-01-19 13:59 -------- d-----w- c:\program files\Ad-Remover
2011-01-18 14:49 . 2011-01-18 14:49 -------- d-----w- c:\users\Ludovic\AppData\Local\{92DF0140-8467-40B0-8C26-6C7EF020D023}
2011-01-17 18:26 . 2008-07-07 10:39 789504 ----a-w- c:\temp\SFDNWIN.exe
2011-01-17 13:46 . 2011-02-02 12:15 -------- d-----w- c:\users\Ludovic\AppData\Roaming\GetRightToGo
2011-01-17 13:40 . 2011-01-17 15:50 -------- d-----w- c:\program files\Uniblue
2011-01-17 07:30 . 2011-01-17 14:41 -------- d-----w- c:\users\Ludovic\AppData\Roaming\Uniblue
2011-01-17 07:29 . 2011-01-17 07:29 -------- d-----w- c:\users\Ludovic\AppData\Local\PackageAware
2011-01-17 06:48 . 2011-01-17 06:48 -------- d-----w- c:\users\Ludovic\AppData\Local\{999FEB92-455D-4E7F-AC7C-D24C73E937A0}
2011-01-16 14:34 . 2011-01-16 14:39 -------- d-----w- c:\program files\VirtualCamera
2011-01-16 13:47 . 2011-01-16 13:47 -------- d-----w- c:\users\Ludovic\AppData\Roaming\Avnex
2011-01-16 10:01 . 2011-01-16 10:01 -------- d-----w- c:\users\Ludovic\AppData\Local\{1654C664-57E6-41E1-9BFA-D27CCFEE6555}
2011-01-16 01:49 . 2011-01-16 01:49 -------- d-----w- C:\LGMobileUpgrade
2011-01-16 00:13 . 2004-04-18 19:40 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\ctor.dll
2011-01-16 00:13 . 2004-04-18 19:39 266240 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iscript.dll
2011-01-16 00:13 . 2004-04-18 19:39 172032 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iuser.dll
2011-01-16 00:13 . 2004-04-18 19:39 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\DotNetInstaller.exe
2011-01-16 00:13 . 2011-01-16 00:13 303236 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\setup.dll
2011-01-16 00:13 . 2011-01-16 00:13 180356 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\00\Intel32\iGdi.dll
2011-01-15 09:48 . 2011-02-02 12:14 -------- d-----w- c:\program files\Media_Star
2011-01-15 09:46 . 2011-01-15 11:16 -------- d-----w- c:\programdata\TorrentBitch
2011-01-15 08:42 . 2011-01-15 11:24 -------- d-----w- c:\programdata\POPWWPROFILES
2011-01-15 08:41 . 2011-01-15 08:41 -------- d-----w- c:\program files\Ubisoft
2011-01-15 08:40 . 2003-02-27 12:12 696320 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2011-01-15 08:40 . 2002-12-05 10:10 155648 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2011-01-15 08:40 . 2002-12-02 11:22 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2011-01-15 08:40 . 2002-12-02 09:33 57344 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2011-01-15 08:40 . 2002-12-02 09:33 237568 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2011-01-15 08:40 . 2011-01-15 08:40 163972 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2011-01-15 08:40 . 2011-01-15 08:40 282756 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2011-01-15 08:36 . 2011-01-15 08:36 -------- d-----w- c:\users\Ludovic\AppData\Local\{9F5A4253-BCD3-4C41-8E51-E87CED44FE7C}
2011-01-15 07:08 . 2011-01-20 02:04 -------- d-----w- c:\program files\Win Palace Euro Casino French
2011-01-14 19:25 . 2011-01-14 19:25 -------- d-----w- c:\users\Ludovic\AppData\Local\{A2D70C80-44F2-4797-B887-EB21D16FC0C8}
2011-01-14 18:40 . 2011-01-14 18:55 -------- d-----w- c:\users\Ludovic\AppData\Roaming\GlarySoft
2011-01-14 14:37 . 2011-01-14 14:38 -------- d-----w- C:\Ptp
2011-01-14 12:47 . 2011-01-14 12:47 -------- d-----w- c:\program files\Freemake
2011-01-14 08:18 . 2011-02-02 12:14 -------- d-----w- c:\program files\Glary Utilities
2011-01-14 08:06 . 2011-01-14 08:07 -------- d-----w- c:\program files\CCleaner
2011-01-14 08:03 . 2011-01-14 08:03 -------- d-----w- c:\users\Ludovic\AppData\Roaming\RegistryKeys
2011-01-14 08:03 . 2011-02-02 12:14 -------- d-----w- c:\program files\Avanquest_FR
2011-01-14 07:53 . 2011-01-17 14:01 -------- d-----w- c:\users\Ludovic\AppData\Roaming\BitTorrent
2011-01-14 07:45 . 2011-01-16 13:53 -------- d-----w- c:\program files\BitTorrent
2011-01-14 07:01 . 2010-12-28 15:55 413696 ----a-w- c:\windows\system32\odbc32.dll
2011-01-14 07:01 . 2010-12-28 15:53 253952 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2011-01-14 07:01 . 2010-12-28 15:53 241664 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2011-01-14 07:01 . 2010-12-28 15:53 708608 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2011-01-14 07:01 . 2010-12-28 15:53 180224 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2011-01-14 07:01 . 2010-12-28 15:53 57344 ----a-w- c:\program files\Common Files\System\msadc\msadcs.dll
2011-01-14 04:57 . 2011-01-14 04:57 -------- d-----w- c:\users\Ludovic\AppData\Local\{8CBE015E-5172-40C7-BA40-0AAFD0F594EB}
2011-01-13 13:42 . 2010-12-14 14:49 1169408 ----a-w- c:\windows\system32\sdclt.exe
2011-01-13 12:36 . 2011-01-13 12:36 -------- d-----w- c:\users\Ludovic\AppData\Local\{BE56B205-2485-47D8-BD83-A43EA2DB8445}
2011-01-13 07:27 . 2011-01-13 07:27 -------- d-----w- c:\users\Ludovic\AppData\Local\{CA569B25-BE00-4337-838F-F6329F5EDE20}
2011-01-13 06:36 . 2011-01-13 06:36 -------- d-----w- c:\users\Ludovic\AppData\Local\{5A4744EA-5ED4-419C-BB51-2E1A8B6F873B}
2011-01-09 16:15 . 2011-01-09 16:15 -------- d-----w- c:\users\Ludovic\AppData\Local\{724C953E-AE15-4D19-A310-0F48406F8039}
2011-01-09 07:37 . 2011-01-09 07:37 -------- d-----w- c:\users\Ludovic\AppData\Local\{ABA18AAF-FE28-4FB8-8232-6EA2B30672B7}

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-30 08:23 . 2011-01-30 08:17 1869708187 ----a-w- C:\UsbFix_Upload_Me_PC-DE-LUDOVIC.zip
2010-12-14 01:52 . 2010-12-14 01:52 653576 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-12-16 18:37 . 2010-12-15 10:50 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}]
2009-12-20 09:51 87480 ----a-w- c:\progra~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}]
2010-11-13 17:58 3913000 ----a-w- c:\program files\Avanquest_FR\tbAvan.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
2011-01-06 14:06 721840 ----a-w- c:\progra~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{dfabc5b5-039b-4865-979a-de31cdf3e351}]
2010-12-09 08:51 3911776 ----a-w- c:\program files\Media_Star\tbMedi.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}"= "c:\program files\Avanquest_FR\tbAvan.dll" [2010-11-13 3913000]
"{dfabc5b5-039b-4865-979a-de31cdf3e351}"= "c:\program files\Media_Star\tbMedi.dll" [2010-12-09 3911776]
"{0974BA1E-64EC-11DE-B2A5-E43756D89593}"= "c:\progra~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll" [2009-12-20 87480]

[HKEY_CLASSES_ROOT\clsid\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}]

[HKEY_CLASSES_ROOT\clsid\{dfabc5b5-039b-4865-979a-de31cdf3e351}]

[HKEY_CLASSES_ROOT\clsid\{0974ba1e-64ec-11de-b2a5-e43756d89593}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{6EC85FCF-87AD-41D7-AE1F-F116F8AD4848}"= "c:\program files\Avanquest_FR\tbAvan.dll" [2010-11-13 3913000]
"{DFABC5B5-039B-4865-979A-DE31CDF3E351}"= "c:\program files\Media_Star\tbMedi.dll" [2010-12-09 3911776]

[HKEY_CLASSES_ROOT\clsid\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}]

[HKEY_CLASSES_ROOT\clsid\{dfabc5b5-039b-4865-979a-de31cdf3e351}]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\snxPluginsShell]
@="{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}"
[HKEY_CLASSES_ROOT\CLSID\{F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE}]
2010-05-06 21:02 151648 ----a-w- c:\program files\Alwil Software\Avast5\snxPlugins.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTEGPRS"="c:\users\Ludovic\Desktop\logiciel bureau\RTE\RTEGPRS.exe" [2005-10-07 2162688]
"WindowsWelcomeCenter"="oobefldr.dll" [2009-04-10 2153472]
"Uniblue RegistryBooster 2"="c:\program files\uniblue\registrybooster 2\StartRegistryBooster.exe" [2007-10-22 99608]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-10 1233920]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-11-09 4240760]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-09-19 455968]
"LG LinkAir"="c:\program files\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe" [2010-04-13 2362216]
"HPAdvisor"="c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2009-08-05 1644088]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"AutoStartNPSAgent"="c:\program files\Samsung\Samsung New PC Studio\NPSAgent.exe" [2009-04-02 102400]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-05-06 2815192]
"WPCUMI"="c:\windows\system32\WpcUmi.exe" [2006-11-02 176128]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-01-06 185872]
"SunJavaUpdateReg"="c:\windows\system32\jureg.exe" [2007-04-07 54936]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"RtHDVCpl"="RtHDVCpl.exe" [2008-01-15 4874240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"OsdMaestro"="c:\program files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [2007-02-15 118784]
"KBD"="c:\hp\KBD\KbdStub.EXE" [2006-12-08 65536]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-01-06 290088]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2007-04-18 65536]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-12-16 30192]
"B2C_AGENT"="c:\programdata\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe" [2010-09-27 391096]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2010-12-20 963976]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-11-09 4240760]

c:\users\Ludovic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 - Capture d''cran et lancement.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
Outil de notification Live Search.lnk - c:\users\Ludovic\AppData\Roaming\Microsoft\Live Search\Notification-LiveSearch.exe [2009-1-17 143360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll c:\progra~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-12-14 135664]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus.sys [2010-12-07 14336]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag.sys [2010-12-07 20736]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps.sys [2010-12-07 20096]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem.sys [2010-12-07 25088]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\lgandadb.sys [2010-08-02 25728]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-12-16 30192]
R3 qcusbser;Modem Interface USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\qcusbser.sys [2009-05-25 103552]
R3 s3017bus;Sony Ericsson Device 3017 driver (WDM);c:\windows\system32\DRIVERS\s3017bus.sys [2007-12-10 83880]
R3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s3017mdfl.sys [2007-12-10 15016]
R3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s3017mdm.sys [2007-12-10 110632]
R3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s3017mgmt.sys [2007-12-10 104616]
R3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS);c:\windows\system32\DRIVERS\s3017nd5.sys [2007-12-10 25512]
R3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s3017obex.sys [2007-12-10 100648]
R3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM);c:\windows\system32\DRIVERS\s3017unic.sys [2007-12-10 110120]
R3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [x]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R4 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-01-11 691696]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-05-06 51792]
S2 AVWEBCAM;AV WebCam, WDM Video Capture;c:\windows\system32\DRIVERS\avwebcam.sys [2008-01-11 13696]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-03-31 233472]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtport.sys [2009-09-29 12160]
S3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbus.sys [2009-09-29 10496]
S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmodem.sys [2009-09-29 12928]


--- Autres Services/Pilotes en mémoire ---

*NewlyCreated* - FSUSBEXDISK

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contenu du dossier 'Tâches planifiées'

2011-02-08 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2011-01-14 10:13]

2011-02-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-14 23:08]

2011-02-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-12-14 23:08]

2011-02-08 c:\windows\Tasks\User_Feed_Synchronization-{65BE7C87-0CCF-42CB-B7F9-D7CCBD2A17BE}.job
- c:\windows\system32\msfeedssync.exe [2010-12-16 04:25]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
IE: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
IE: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
IE: Compare Prices with &Dealio - c:\users\Ludovic\AppData\LocalLow\Dealio\kb127\res\DealioSearch.html
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
IE: LG Link Air Option - c:\program files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/209
IE: LG Link Air Save to Mobile Document Folder - c:\program files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/210
IE: LG Link Air Save to Mobile Memo - c:\program files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/208
IE: LG Link Air Save to Mobile Photo Album - c:\program files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/206
IE: LG Link Air Set as Mobile Wallpaper - c:\program files\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/205
IE: Tout télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: Télécharger la sélection avec Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Télécharger la vidéo avec Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
LSP: c:\windows\system32\wpclsp.dll
FF - ProfilePath - c:\users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.live.com/results.aspx?FORM=IEFM1&q=
FF - prefs.js: browser.search.selectedEngine - BearShare Web Search
FF - prefs.js: browser.startup.homepage - hxxp://search.bearshare.com/
FF - prefs.js: keyword.URL - hxxp://search.bearshare.com/web?src=ffb&systemid=2&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: DownThemAll!: {DDC359D1-844A-42a7-9AA1-88A850A938A8} - %profile%\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\program files\Real\RealPlayer\browserrecord
.
- - - - ORPHELINS SUPPRIMES - - - -

BHO-{6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - (no file)
Toolbar-10 - (no file)
HKLM-Run-ALUAlert - c:\program files\Symantec\LiveUpdate\ALuNotify.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-02-08 10:24
Windows 6.0.6002 Service Pack 2 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000_Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):d8,7d,9c,4e,b3,15,c3,9a,d5,8f,ae,0c,e0,0f,40,84,40,be,29,86,a8,
50,75,e0,6e,ac,1e,0b,cc,b0,65,42,83,37,40,e0,ba,5d,9a,19,00,00,00,00,00,00,\

[HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000_Classes\CLSID\{a64eec64-588e-4015-abd3-60c7d976dd91}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000165
"Therad"=dword:0000001e
"MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,
38,95,44,f8,0b,f2,c4,7d,43,2e,bd,5a,7e,1f,ef,27,a6,b1,46,ac,d6,e5,60,e4,e9,\

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0009\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0010\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0011\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0012\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\conime.exe
c:\program files\Alwil Software\Avast5\AvastUI.exe
c:\windows\RtHDVCpl.exe
c:\program files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe
c:\users\Ludovic\AppData\Roaming\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
c:\windows\ehome\ehmsas.exe
c:\program files\iPod\bin\iPodService.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
.
**************************************************************************
.
Heure de fin: 2011-02-08 10:29:31 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-02-08 06:29

Avant-CF: 10 185 043 968 octets libres
Après-CF: 9 790 861 312 octets libres

- - End Of File - - 204DDE230A30945DFED83373A2F1E022
0
Réponse 76 / 85
Utilisateur anonyme
8 févr. 2011 à 12:48
hello refais un scan OTL stp ?
0
Réponse 77 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
8 févr. 2011 à 14:03
http://www.cijoint.fr/cjlink.php?file=cj201102/cijd5U1oWA.txt

http://www.cijoint.fr/cjlink.php?file=cj201102/cijr6CYyfx.txt
0
Réponse 78 / 85
Utilisateur anonyme
8 févr. 2011 à 14:53
Fais analyser le(s) fichier(s) suivants sur Virustotal :

Virus Total

* * Colle directement le chemin des fichiers , un par un , dans l'espace "Parcourir" apres chaque analyse :

C:\Windows\System32\drivers\lgandadb.sys

* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée colle le lien de(s)( la) page(s) dans ta prochaine réponse.
===========================================================

ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !!

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur OTL.exe pour le lancer.


▶Copie la liste qui se trouve en gras ci-dessous,

▶ colle-la dans la zone sous "Personnalisation" :


:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe
datamngrUI.exe

:Services
Bandoo Coordinator
Bonjour Service

:OTL
IE - HKLM\..\URLSearchHook: {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} - C:\Program Files\Avanquest_FR\tbAvan.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {dfabc5b5-039b-4865-979a-de31cdf3e351} - C:\Program Files\Media_Star\tbMedi.dll (Conduit Ltd.)
IE - HKU\.DEFAULT\..\URLSearchHook: {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - Reg Error: Key error. File not found
IE - HKU\S-1-5-19\..\URLSearchHook: {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - Reg Error: Key error. File not found
IE - HKU\S-1-5-20\..\URLSearchHook: {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - Reg Error: Key error. File not found
FF - prefs.js..browser.search.defaultenginename: "BearShare Web Search"
FF - prefs.js..browser.search.order.1: "BearShare Web Search"
FF - prefs.js..browser.search.selectedEngine: "BearShare Web Search"
FF - prefs.js..browser.startup.homepage: "http://search.bearshare.net/"
FF - prefs.js..extensions.enabledItems: toolbar@kiwee.com:1.0
FF - prefs.js..extensions.enabledItems: fdm_ffext@freedownloadmanager.org:1.3.3
FF - prefs.js..keyword.URL: "http://www1.search-results.com/web?l=dis&q=&o=APN10641&apn_dtid=%5EIME002%5EYY%5EFR&shad=s_0043&gct=ds&apn_ptnrs=%5EAG2&d=2-0&lang=en&atb=sysid%3D2%3Auid%3Dfb5232ac549ef499%3Asrc%3Dffb%3Ao%3DAPN10641%3Ab%3DBearShare%3Atg%3D&p2=%5EAG2%5EIME002%5EYY%5EFR"
O2 - BHO: (MediaBar) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files\BearShare Applications\MediaBar\ToolBar\BearshareMediabarDx.dll ()
O2 - BHO: (Avanquest FR Toolbar) - {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} - C:\Program Files\Avanquest_FR\tbAvan.dll (Conduit Ltd.)
O2 - BHO: (UrlHelper Class) - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\MediaBar\Datamngr\IEBHO.dll (MusicLab, LLC)
O2 - BHO: (Media Star Toolbar) - {dfabc5b5-039b-4865-979a-de31cdf3e351} - C:\Program Files\Media_Star\tbMedi.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (MediaBar) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files\BearShare Applications\MediaBar\ToolBar\BearshareMediabarDx.dll ()
O3 - HKLM\..\Toolbar: (Avanquest FR Toolbar) - {6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} - C:\Program Files\Avanquest_FR\tbAvan.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Media Star Toolbar) - {dfabc5b5-039b-4865-979a-de31cdf3e351} - C:\Program Files\Media_Star\tbMedi.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar avec bloqueur de fenêtres pop-up) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\S-1-5-21-2868903117-4272120946-2963815822-1000\..\Toolbar\WebBrowser: (Avanquest FR Toolbar) - {6EC85FCF-87AD-41D7-AE1F-F116F8AD4848} - C:\Program Files\Avanquest_FR\tbAvan.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2868903117-4272120946-2963815822-1000\..\Toolbar\WebBrowser: (Media Star Toolbar) - {DFABC5B5-039B-4865-979A-DE31CDF3E351} - C:\Program Files\Media_Star\tbMedi.dll (Conduit Ltd.)
O4 - HKLM\..\Run: [DATAMNGR] C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe (MusicLab, LLC)
O4 - HKU\S-1-5-21-2868903117-4272120946-2963815822-1000\..\Run: [Uniblue RegistryBooster 2] c:\Program Files\Uniblue\RegistryBooster 2\StartRegistryBooster.exe (Uniblue Software)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O20 - AppInit_DLLs: (C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll) - C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngr.dll (MusicLab, LLC)
O20 - AppInit_DLLs: (C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll) - O20 - AppInit_DLLs: (C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll) - C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngr.dll (MusicLab, LLC)
O20 - AppInit_DLLs: (C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll) - C:\Program Files\BearShare Applications\MediaBar\Datamngr\IEBHO.dll (MusicLab, LLC)
O37 - HKU\S-1-5-21-2868903117-4272120946-2963815822-1000\...com [@ = ComFile] -- Reg Error: Key error. File not found
O37 - HKU\S-1-5-21-2868903117-4272120946-2963815822-1000\...exe [@ = exefile] -- Reg Error: Key error. File not found

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"iTunesHelper"=-
"QuickTime Task"=-
"TkBellExe"=-
"SunJavaUpdateReg"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LDM"=-
"swg"=-

:Files
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\searchplugins\BearShareWebSearch.xml
C:\Program Files\Mozilla Firefox\searchplugins\BearShareWebSearch.xml
C:\Program Files\BearShare Applications
C:\Program Files\Avanquest_FR

:commands
[emptytemp]
[start explorer]
[reboot]


▶ Clique sur "Correction" pour lancer la suppression.


▶ Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.
0
Réponse 79 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
8 févr. 2011 à 18:41
http://www.virustotal.com/file-scan/reanalysis.html?id=2a54f25320fb69c2c5e92cfc5c596ca2f0a71b3375f0493e7daba808836c8fe1-1297186770
0
Réponse 80 / 85
snap432 Messages postés 59 Date d'inscription jeudi 27 novembre 2008 Statut Membre Dernière intervention 23 mai 2011
8 févr. 2011 à 19:23
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
No active process named datamngrUI.exe was found!
========== SERVICES/DRIVERS ==========
Service Bandoo Coordinator stopped successfully!
Service Bandoo Coordinator deleted successfully!
Service Bonjour Service stopped successfully!
Service Bonjour Service deleted successfully!
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\ deleted successfully.
C:\Program Files\Avanquest_FR\tbAvan.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{dfabc5b5-039b-4865-979a-de31cdf3e351} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dfabc5b5-039b-4865-979a-de31cdf3e351}\ deleted successfully.
C:\Program Files\Media_Star\tbMedi.dll moved successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks\\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}\ not found.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\URLSearchHooks\\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}\ not found.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\URLSearchHooks\\{0BC6E3FA-78EF-4886-842C-5A1258C4455A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}\ not found.
Prefs.js: "BearShare Web Search" removed from browser.search.defaultenginename
Prefs.js: "BearShare Web Search" removed from browser.search.order.1
Prefs.js: "BearShare Web Search" removed from browser.search.selectedEngine
Prefs.js: "http://search.bearshare.net/" removed from browser.startup.homepage
Prefs.js: toolbar@kiwee.com:1.0 removed from extensions.enabledItems
Prefs.js: fdm_ffext@freedownloadmanager.org:1.3.3 removed from extensions.enabledItems
Prefs.js: "http://www1.search-results.com/web?l=dis&q=&o=APN10641&apn_dtid=%5EIME002%5EYY%5EFR&shad=s_0043&gct=ds&apn_ptnrs=%5EAG2&d=2-0&lang=en&atb=sysid%3D2%3Auid%3Dfb5232ac549ef499%3Asrc%3Dffb%3Ao%3DAPN10641%3Ab%3DBearShare%3Atg%3D&p2=%5EAG2%5EIME002%5EYY%5EFR" removed from keyword.URL
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0974BA1E-64EC-11DE-B2A5-E43756D89593}\ deleted successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\BearshareMediabarDx.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\ not found.
File C:\Program Files\Avanquest_FR\tbAvan.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}\ deleted successfully.
C:\Program Files\BearShare Applications\MediaBar\Datamngr\IEBHO.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dfabc5b5-039b-4865-979a-de31cdf3e351}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dfabc5b5-039b-4865-979a-de31cdf3e351}\ not found.
File C:\Program Files\Media_Star\tbMedi.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{0974BA1E-64EC-11DE-B2A5-E43756D89593} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0974BA1E-64EC-11DE-B2A5-E43756D89593}\ not found.
File C:\Program Files\BearShare Applications\MediaBar\ToolBar\BearshareMediabarDx.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\ not found.
File C:\Program Files\Avanquest_FR\tbAvan.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{dfabc5b5-039b-4865-979a-de31cdf3e351} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{dfabc5b5-039b-4865-979a-de31cdf3e351}\ not found.
File C:\Program Files\Media_Star\tbMedi.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ deleted successfully.
C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll moved successfully.
Registry value HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{6EC85FCF-87AD-41D7-AE1F-F116F8AD4848} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6EC85FCF-87AD-41D7-AE1F-F116F8AD4848}\ not found.
File C:\Program Files\Avanquest_FR\tbAvan.dll not found.
Registry value HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{DFABC5B5-039B-4865-979A-DE31CDF3E351} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DFABC5B5-039B-4865-979A-DE31CDF3E351}\ not found.
File C:\Program Files\Media_Star\tbMedi.dll not found.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngrUI.exe moved successfully.
Registry value HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000\\Software\Microsoft\Windows\CurrentVersion\Run\\Uniblue RegistryBooster 2 deleted successfully.
c:\Program Files\Uniblue\RegistryBooster 2\StartRegistryBooster.exe moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll deleted successfully.
C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngr.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll deleted successfully.
File O20 - AppInit_DLLs: (C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\datamngr.dll) - C:\Program Files\BearShare Applications\MediaBar\Datamngr\datamngr.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll deleted successfully.
File C:\Program Files\BearShare Applications\MediaBar\Datamngr\IEBHO.dll not found.
Registry key HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000_Classes\.com\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000_Classes\ComFile\ not found.
HKEY_LOCAL_MACHINE\Software\Classes\.com\\|comfile /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000_Classes\.exe\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2868903117-4272120946-2963815822-1000_Classes\exefile\ not found.
HKEY_LOCAL_MACHINE\Software\Classes\.exe\\|exefile /E : value set successfully!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\TkBellExe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateReg deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\LDM not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\swg not found.
========== FILES ==========
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\searchplugin folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\META-INF folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\lib folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\defaults folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\components folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848}\chrome folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{6ec85fcf-87ad-41d7-ae1f-f116f8ad4848} folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}\modules folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}\defaults\preferences folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}\defaults folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}\components folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}\chrome\icons\default folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}\chrome\icons folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}\chrome folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8} folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\components folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\searchbar folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\options folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\weatherbutton\panels\images folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\weatherbutton\panels folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\weatherbutton\icons folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\weatherbutton folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\uwa folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\radio\images folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\radio\css folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\radio folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\panels\images folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\panels\css folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib\panels folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin\lib folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\skin folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\content\widgets\net.vmn.www.3.YouTube.1217 folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\content\widgets\net.vmn.www.3.Twitter.1227 folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\content\widgets folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\content\modules folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\content\lib folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\content\data\search folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\content\data folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome\content folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593}\chrome folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\extensions\{E84D42CA-64EB-11DE-A65F-8C3656D89593} folder moved successfully.
C:\Users\Ludovic\AppData\Roaming\Mozilla\Firefox\Profiles\vitmxuqi.default\searchplugins\BearShareWebSearch.xml moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\BearShareWebSearch.xml moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\components folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\searchbar folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\options folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\weatherbutton\panels\images folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\weatherbutton\panels folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\weatherbutton\icons folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\weatherbutton folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\uwa folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\radio\images folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\radio\css folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\radio folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\panels\images folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\panels\css folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib\panels folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin\lib folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\skin folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\content\widgets\net.vmn.www.3.YouTube.1217 folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\content\widgets\net.vmn.www.3.Twitter.1227 folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\content\widgets folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\content\modules folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\content\lib folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\content\data\search folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\content\data folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome\content folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar\chrome folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\ToolBar folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\Datamngr\FirefoxExtension\content folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\Datamngr\FirefoxExtension\components folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\Datamngr\FirefoxExtension folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar\Datamngr folder moved successfully.
C:\Program Files\BearShare Applications\MediaBar folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\Images folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\videosview\images folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\videosview folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\images folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\colorschemebubble\images folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\colorschemebubble folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\cdripview folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\artistsview\images folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\artistsview folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\albumsview\images folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html\albumsview folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins\html folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\Skins folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\HTML\Images folder moved successfully.
C:\Program Files\BearShare Applications\BearShare\HTML folder moved successfully.
C:\Program Files\BearShare Applications\BearShare folder moved successfully.
C:\Program Files\BearShare Applications folder moved successfully.
C:\Program Files\Avanquest_FR folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Ludovic
->Temp folder emptied: 2068183 bytes
->Temporary Internet Files folder emptied: 11387939 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 98845062 bytes
->Google Chrome cache emptied: 0 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 17947 bytes

User: melanie
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 804 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 73725 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 107,00 mb


OTL by OldTimer - Version 3.2.20.2 log created on 02082011_214321

Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.
File\Folder C:\Windows\temp\_asw_aisI.tm~a03196\onefile.dld not found!
File\Folder C:\Windows\temp\_asw_aisI.tm~a03196\setup.lok not found!

Registry entries deleted on Reboot...
0

Discussions similaires

Formaté mais pas de connexion Internet ?
VissErale -
VissErale -

4 réponses
35 GO à l'étranger
Laurence -
Laurence -

2 réponses
Quel est l'équivalent 40 GO d'internet en heures ?
mha29 -
Sylvie -

5 réponses
30 Go combien de temp d’internet
0642628545 -
tafd -

1 réponse
Je tiens combien de temps avec 2Go d'internet ?
champi100 -
dadout -

7 réponses