Tous le temps redirigé

Question

Bonjour, 


Depuis quelques temps je remarque que je n'arrive pas à visiter les sites que je veux, quand je clique sur un lien de google je suis redirigé sur un autre site.
Par exemple : 

Je suis sur Google, je tape "jeuxvideo.com", je clique sur le lien du site et là je suis redirigé sur Ebay par exemple.

Là ça commence légèrement à m'embêter, quel est le problème?

Merci de votre attention!

Configuration: Windows Vista / Safari 533.19.4

JADIDKHA · Answer

vois ton fichier hosts
https://www.commentcamarche.net/faq/5993-modifier-son-fichier-hosts

sysyl19 · Answer

Merci de ta réponce rapide mais je suis sur windows (et je me demande si ca n'a pas de rapport avec gomeo)

PS: C'est quoi Gomeo? O_o

moment de grace · Answer

bonjour

tu es infectée

fais ceci stp

1)

* Télécharge de AD-Remover sur ton Bureau. (Merci à C_XX) 
http://www.teamxscript.org/adremoverTelechargement.html

/!\ Déconnecte-toi d'internet et ferme toutes applications en cours /!\ 

 Désactive provisoirement et seulement le temps de l'utilisation de ADremover, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil. 

- Double-clique sur l'icône Ad-remover située sur ton Bureau. 
- Sur la page, clique sur le bouton « NETTOYER » 
- Confirme lancement du scan 
- Laisse travailler l'outil. 
- Poste le rapport qui apparaît à la fin. 

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt) 

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller) 

___________

2)

Télécharge ZHPDiag ( de Nicolas coolman ). 
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html


(outil de diagnostic)

 Double clique sur le fichier d'installation, puis installe le avec les paramètres par défaut ( N'oublie pas de cocher " Créer une icône sur le bureau " )
 
Lance ZHPDiag en double cliquant sur l'icône présente sur ton bureau (Clique droit -> Executer en tant qu'admin ( vista ) 

Clique sur la loupe en haut à gauche, puis laisse l'outil scanner. 

Une fois le scan terminé, clique sur l'icône en forme de disquette et enregistre le fichier sur ton bureau. 

Rend toi sur http://pjjoint.malekal.com/

Clique sur "Parcourir "

Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau

Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message

sysyl19 · Answer

Merci de ta réponce, voila le rapport de AD-R:


======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 01/03/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 16:23:59 le 03/03/2011, Mode normal

Microsoft® Windows Vista(TM) Édition Familiale Premium   (X86) 
acer@PC-DE-ACER (Acer Aspire 3100) 
 
============== ACTION(S) ==============



(!) -- Fichiers temporaires supprimés.




============== SCAN ADDITIONNEL ==============

**** Internet Explorer Version [7.0.6000.16386] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/

========================================

C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 15 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 03/03/2011 16:27:09 (1411 Octet(s)) 

Fin à: 16:28:13, 03/03/2011 
 
============== E.O.F ============== 


En ce qui concerne l'autre logiciel, il st en train de scanner, je t'envoies le rapport un peu plus tard.

sysyl19 · Answer

PS: Effectivement, je suis infecté par un virus : à chaque démarrage, j'ai une chance sur deux que mon ordi plante, j'ai l'écran de boot (dsl je croi que ca ne s'appel pas comme ca) puis j'ai ma souris sur un noir total et si mon pc fonctionne, avast m'envoie pas mal de fichiers "infectés".  

PPS: Avast dit que le 2nd logiciel que tu m'a fait installer est une menace pour mon pc O_o

PPPS: Je ne peut pas uploader le fichier du 2nd logiciel, ca me dit "safari ne parvient pas à ouvrir la page" ou pareille avec internet explorer.

moment de grace · Answer

Attention, avant de commencer, lit attentivement la procédure, et imprime la Aide à l'utilisation https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix Télécharge ComboFix de sUBs sur ton Bureau : http://download.bleepingcomputer.com/sUBs/ComboFix.exe (clic droit sur le lien ...enregistrer la cible du lien sous ) /!\ Déconnecte-toi du net et DESACTIVES TOUTES LES DEFENSES, antivirus et antispyware y compris /!\ ---> Double-clique sur ComboFix.exe Un "pop-up" va apparaître qui dit que ComboFix est utilisé à vos risques et avec aucune garantie... Clique sur oui pour accepter SURTOUT INSTALLES LA CONSOLE DE RECUPERATION (si il te propose de l'installer remets internet) ---> Mets-le en langue française F Tape sur la touche 1 (Yes) pour démarrer le scan. Ne touche à rien(souris, clavier) tant que le scan n'est pas terminé, car tu risques de planter ton PC En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection, laisse-le faire. Une fois le scan achevé, un rapport va s'afficher : Poste son contenu /!\ Réactive la protection en temps réel de ton antivirus et de ton antispyware avant de te reconnecter à Internet. /!\ Note : Le rapport se trouve également là : C:\ComboFix.txt

sysyl19 · Answer

Ben je voudrai bien mais je n'arrive plus à allumer mon pc, il y a écrit "Veuillez pacienter..." puis "Bienvenue" pendant 2 plombes et là écran tout noir avec seulement la souris!

Chui un peu sur les nerfs la O~O

moment de grace · Answer

le mode sans echec fonctionne t il ?

sysyl19 · Answer

une fois sur 2

moment de grace · Answer

essai sur la bonne chance...mais il semble qu'il y ait des soucis autres que des virus

sysyl19 · Answer

qu'est-ce que je fait si ca marche?

sysyl19 · Answer

Oula, ca devient très flippant, je n'arrive plus du tout à l'allumer en mode  normal!

moment de grace · Answer

si tu arrives au mode sans echec avec prise en charge reseau

fais combofix

https://forums.commentcamarche.net/forum/affich-21057372-tous-le-temps-redirige#7

sysyl19 · Answer

Ok, je vais essayer.
Je vien de remarquer quelque chose, quand je l'allume normalement, il y a la souris avec le fond noir et au bout d'un moment apparaît la barre des tâches (style Windows XP) avec, toujours sur fond noir, ce message d'erreur:

C:\Windows\system32\config\systemprofile\Desktop fait référence à un emplacement non disponible. Il  peut s'agir d'un emplacement situé sur un disque dur de cet ordinateur ou sur  un réseau. Vérifiez que le disque est inséré correctement, ou que vous êtes connecté(e) à internet ou au réseau domestique, puis essayez à nouveau. Si vous ne trouvez toujours pas l'information, elle a peut-être été déplacée vers un emplacement différent.

1: J'ai vérifié et débranché/rebranché plusieurs fois le DD du pc.
2: Ma livebox avait planté hier soir (peut être que c'est ca...)
3: Je me demande si ce n'est pas AD-R qui à déplacé l'information.
4: Comment je peut faire pour retrouver l'info et la replacer?

C'est plutôt une  bonne chose ce message ou pas?

moment de grace · Answer

non ad remover n'a rien supprimé

en revanche, il n'y a pas qu'un problème de virus

un dysfonctionnement d'un matériel ou de Windows

si tu arrives à ouvrir ta session je t'encourage à sauvegarder tes données en premier lieu

sysyl19 · Answer

sauvegarder la base de registre?

moment de grace · Answer

non

tes doc perso (photo film etc) car vu ce que tu décris , le pc est tres instable

ensuite combofix

sysyl19 · Answer

Là c'est plus qu'instable, je n'arrive plus du tout à entrer dedans, il met toujours le message que j'ai mis.

moment de grace · Answer

t'as le  cd de windows ?

sysyl19 · Answer

oui pourquoi? 
Il y a écrit "Découvrez vista en images" c'est celui là?
Je le met dedans?

sysyl19 · Answer

Sinon, avant que tout ce mer**** arrive j'ai fait une sauvegarde de ma base de registre que j'ai sauvegardé ds Documents, j'ai écrit regedit ds executer, fichier, exporter et sauvegardé tout.
Si je reprend cette sauv, ca remarchera?

sysyl19 · Answer

CA Y EST UNE SESION QUI MARCHE!!!!!!!!

moment de grace · Answer

combofix alors

sysyl19 · Answer

ComboFix 11-03-03.02 - acer 04/03/2011 10:28:11.1.1 - x86
Microsoft® Windows Vista(TM) Édition Familiale Premium 6.0.6000.0.1252.33.1036.18.766.329 [GMT 1:00]
Lancé depuis: c:\users\acer\Desktop\ComboFix.exe
* Un nouveau point de restauration a été créé
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\acer\Documents\sauvereg.reg

.
\\.\PhysicalDrive0 - Bootkit TDL4 was found and disinfected
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-02-04 au 2011-03-04 ))))))))))))))))))))))))))))))))))))
.

2011-03-04 10:06 . 2011-03-04 10:07 -------- d-----w- c:\users\acer\AppData\Local\temp
2011-03-04 10:06 . 2011-03-04 10:06 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-03-03 15:59 . 2011-03-03 16:15 -------- d-----w- c:\program files\ZHPDiag
2011-03-03 15:26 . 2011-02-23 14:56 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-03-01 08:03 . 2011-03-01 08:03 -------- d-----w- C:\SAVE
2011-02-21 12:02 . 2011-02-21 12:15 -------- d-----w- c:\users\acer\AppData\Roaming\Auslogics
2011-02-21 12:01 . 2011-02-21 12:15 -------- d-----w- c:\program files\Auslogics
2011-02-17 17:52 . 2011-02-17 17:52 -------- d-----w- c:\program files\Common Files\Java
2011-02-16 17:32 . 2011-02-24 13:39 -------- d-----w- c:\users\acer\AppData\Roaming\.minecraft
2011-02-13 13:13 . 2006-11-02 09:46 89600 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\HPZPPLHN.DLL
2011-02-12 16:18 . 2011-02-12 16:42 -------- d-----w- c:\users\acer\AppData\Roaming\Tunngle
2011-02-12 16:18 . 2011-02-12 16:30 -------- d-----w- c:\programdata\Tunngle
2011-02-12 16:18 . 2009-09-16 06:02 27136 ----a-w- c:\windows\system32\drivers\tap0901t.sys
2011-02-11 16:19 . 2011-01-13 09:41 5890896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{114F5472-B609-4214-8E17-4FCF426E253E}\mpengine.dll
2011-02-05 09:16 . 2011-02-05 09:16 -------- d-----w- c:\users\acer\AppData\Roaming\ATI
2011-02-05 09:16 . 2011-02-05 09:16 -------- d-----w- c:\users\acer\AppData\Local\ATI
2011-02-05 09:16 . 2011-02-05 09:16 -------- d-----w- c:\programdata\ATI
2011-02-05 09:13 . 2011-02-05 09:13 0 ----a-w- c:\windows\ativpsrm.bin
2011-02-05 09:10 . 2011-02-05 09:10 -------- d-----w- c:\program files\ATI
2011-02-05 09:10 . 2011-02-05 09:15 -------- d-----w- c:\program files\ATI Technologies
2011-02-05 09:08 . 2011-02-05 09:08 -------- d-----w- C:\ATI
2011-02-05 08:46 . 2011-02-05 08:46 -------- d-----w- c:\program files\ma-config.com
2011-02-05 08:46 . 2011-02-05 08:46 -------- d-----w- c:\programdata\ma-config.com
2011-02-04 06:52 . 2011-02-04 06:52 -------- d-----w- c:\programdata\PC Drivers HeadQuarters Inc

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-23 15:04 . 2011-01-14 16:06 40648 ----a-w- c:\windows\avastSS.scr
2011-02-23 15:04 . 2011-01-08 15:42 190016 ----a-w- c:\windows\system32\aswBoot.exe
2011-02-23 14:56 . 2011-01-08 15:42 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-02-23 14:55 . 2011-01-08 15:42 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-02-23 14:55 . 2011-01-08 15:42 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-02-23 14:55 . 2011-01-08 15:42 53592 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-02-23 14:54 . 2011-01-08 15:42 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-02-02 20:40 . 2011-01-12 15:15 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-02-02 16:11 . 2011-01-16 01:07 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-01-22 17:28 . 2011-01-22 17:28 21840 ----a-w- c:\windows\system32\SIntfNT.dll
2011-01-22 17:28 . 2011-01-22 17:28 17212 ----a-w- c:\windows\system32\SIntf32.dll
2011-01-22 17:28 . 2011-01-22 17:28 12067 ----a-w- c:\windows\system32\SIntf16.dll
2011-01-19 12:11 . 2011-01-19 12:11 0 ----a-w- c:\windows\VDM9BE2.tmp
2011-01-08 12:40 . 2011-01-08 12:40 76928 ----a-w- c:\windows\system32\drivers\ESM7SK.sys
2011-01-08 12:40 . 2011-01-08 12:40 62208 ----a-w- c:\windows\system32\drivers\EMS7SK.sys
2011-01-08 12:40 . 2011-01-08 12:40 42240 ----a-w- c:\windows\system32\drivers\ESD7SK.sys
2011-01-08 12:40 . 2011-01-08 12:43 356352 ----a-w- c:\windows\EMCRI.dll
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 1828136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 2221352]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-05 54832]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2011-02-23 3451496]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-10 61440]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-12-13 421160]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-51657724-1545939369-333480461-1000]
"EnableNotificationsRef"=dword:00000001

R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-01-24 310640]
R3 USB-100;Realtek RTL8150 USB 10/100 Fast Ethernet Adapter;c:\windows\system32\DRIVERS\RTL8150.SYS [2002-02-22 26505]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-02-23 53592]

.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
uInternet Settings,ProxyOverride = *.local
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-04 11:06
Windows 6.0.6000 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.0.6000 Disk: Hitachi_HTS545025B9A300 rev.PB2OC64G -> Harddisk0\DR0 -> \Device\Ide\IdePort0 P0T0L0-0

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll >>UNKNOWN [0x851AB439]<<
_asm { PUSH EBP; MOV EBP, ESP; PUSH ECX; MOV EAX, [EBP+0x8]; CMP EAX, [0x851b17b8]; MOV EAX, [0x851b1834]; PUSH EBX; PUSH ESI; MOV ESI, [EBP+0xc]; MOV EBX, [ESI+0x60]; PUSH EDI; JNZ 0x20; MOV [EBP+0x8], EAX; }
1 ntkrnlpa!IofCallDriver[0x81827E6B] -> \Device\Harddisk0\DR0[0x84F2A5B8]
3 nt[0x818B06E2] -> ntkrnlpa!IofCallDriver[0x81827E6B] -> [0x83D9C2A8]
5 acpi[0x804D732A] -> ntkrnlpa!IofCallDriver[0x81827E6B] -> [0x83DAF8B8]
\Driver\atapi[0x85130940] -> IRP_MJ_CREATE -> 0x851AB439
kernel: MBR read successfully
_asm { XOR AX, AX; MOV SS, AX; MOV SP, 0x7c00; MOV ES, AX; MOV DS, AX; MOV SI, 0x7c00; MOV DI, 0x600; MOV CX, 0x200; CLD ; REP MOVSB ; PUSH AX; PUSH 0x61c; RETF ; STI ; PUSHA ; MOV CX, 0x132; MOV BP, 0x62a; ROR BYTE [BP+0x0], CL; INC BP; }
detected disk devices:
\Device\Ide\IdeDeviceP0T0L0-0 -> \??\IDE#DiskHitachi_HTS545025B9A300_________________PB2OC64G#5&b30959e&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found
detected hooks:
user != kernel MBR !!!
sectors 488397166 (+255): user != kernel
Warning: possible TDL4 rootkit infection !
TDL4 rootkit infection detected ! Use: "mbr.exe -f" to fix.

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Heure de fin: 2011-03-04 11:13:35
ComboFix-quarantined-files.txt 2011-03-04 10:13

Avant-CF: 165 978 488 832 octets libres
Après-CF: 165 959 589 888 octets libres

- - End Of File - - 973D813C19A855CC4F53D199F97CF34F

sysyl19 · Answer

A noter que PhysicalDrive0 est le fichier qu'Avast disait dangereux^^
Sinon, maintenant que je vais dans C:\, il y a plein de nouveau dossiers:

Boot,
ComboFix,
ProgramData,
Qoobox

Qu'est-ce que c'est?

moment de grace · Answer

oui un rootkit

/!\ Il faut impérativement désactiver tous tes logiciels de protection pour utiliser ce programme/!\ 
* Télécharge mbr.exe de Gmer ici : http://www2.gmer.net/mbr/mbr.exe et enregistre le fichier sur le Bureau. 
* Merci à Malekal pour le tutoriel 
* Désactive tes protections et coupe la connexion. (Antivirus et antispywares, HIPS et autre résident) 
* Double clique sur mbr.exe 
* Un rapport sera généré : mbr.log 
* En cas d'infection, ce message "MBR rootkit code detected" va apparaitre. 
* Pour supprimer le rootkit aller dans le menu Démarrer=> Exécuter et tapez la commande en gras: 

=>  Sous XP : "%userprofile%\Bureau\mbr" -f 

=> Sous Vista/Seven : "%userprofile%\Desktop\mbr" -f


* (veuillez à bien respecter les guillemets) 
* Dans le mbr.log cette ligne apparaitra "original MBR restored successfully !" 
* Réactive tes protections .Poste ce rapport et supprime le ensuite. 

o Pour vérifier désactive tes protections et coupe la connexion. (Antivirus et antispywares, HIPS et autre résident) 
o Relance mbr.exe 
o Réactive tes protections. 
o Le nouveau mbr.log devrait être celui-ci : 
o Stealth MBR rootkit detector 0.2.4 by Gmer, http://www.gmer.net 
o device: opened successfully 
user: MBR read successfully 
kernel: MBR read successfully 
user & kernel MBR OK

sysyl19 · Answer

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.0.6000 Disk: Hitachi_HTS545025B9A300 rev.PB2OC64G -> Harddisk0\DR0 -> \Device\Ide\IdePort0 P0T0L0-0

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
detected disk devices:
\Device\Ide\IdeDeviceP0T0L0-0 -> \??\IDE#DiskHitachi_HTS545025B9A300_________________PB2OC64G#5&b30959e&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found
detected hooks:
user != kernel MBR !!! 
sectors 488397166 (+255): user != kernel

sysyl19 · Answer

Il n'y a plus le logo ATI sur la barre des tâches entre FR et le logo Avast (c'est gênant?)

moment de grace · Answer

* Télécharge load_tdsskiller (de Loup Blanc) sur ton Bureau

http://fradesch.perso.cegetel.net/transf/Load_tdsskiller.exe
 
* Lance load_tdsskiller en faisant un double-clic dessus / Lance par un clic-droit dessus ? Exécuter en temps qu'administrateur 
* L'outil va se connecter pour télécharger une copie à jour de TDSSKiller, puis va lancer une analyse 
*  Lorsque l'outil a terminé son travail d'inspection, si des nuisibles ("Malicious objects") ont été trouvés, vérifier que l'option (Cure) est sélectionnée, 
*  Si des objects suspects ("Suspicious objects") ont été détectés, sur l'écran de demande de confirmation, modifier l'action à entreprendre et indiquer Quarantine (au lieu de Skip),
* A la fin, il te sera demandé d'appuyer sur une touche, puis le rapport s'affichera automatiquement : copie-colle son contenu dans ta prochaine réponse (C:	dsskillereport.txt)

sysyl19 · Answer

il me demande un reboot
\HardDisk0 - will be cured after reboot

sysyl19 · Answer

2011/03/04 11:58:32.0327 0692	TDSS rootkit removing tool 2.4.20.0 Mar  2 2011 10:44:30
2011/03/04 11:58:32.0742 0692	================================================================================
2011/03/04 11:58:32.0742 0692	SystemInfo:
2011/03/04 11:58:32.0742 0692	
2011/03/04 11:58:32.0742 0692	OS Version: 6.0.6000 ServicePack: 0.0
2011/03/04 11:58:32.0742 0692	Product type: Workstation
2011/03/04 11:58:32.0742 0692	ComputerName: PC-DE-ACER
2011/03/04 11:58:32.0742 0692	UserName: acer
2011/03/04 11:58:32.0743 0692	Windows directory: C:\Windows
2011/03/04 11:58:32.0743 0692	System windows directory: C:\Windows
2011/03/04 11:58:32.0743 0692	Processor architecture: Intel x86
2011/03/04 11:58:32.0743 0692	Number of processors: 1
2011/03/04 11:58:32.0743 0692	Page size: 0x1000
2011/03/04 11:58:32.0743 0692	Boot type: Normal boot
2011/03/04 11:58:32.0743 0692	================================================================================
2011/03/04 11:58:33.0744 0692	Initialize success
2011/03/04 11:58:40.0000 2284	================================================================================
2011/03/04 11:58:40.0000 2284	Scan started
2011/03/04 11:58:40.0000 2284	Mode: Manual; 
2011/03/04 11:58:40.0000 2284	================================================================================
2011/03/04 11:58:42.0924 2284	ACPI            (192bdbd1540645c4a2aa69f24cce197f) C:\Windows\system32\drivers\acpi.sys
2011/03/04 11:58:43.0190 2284	adp94xx         (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
2011/03/04 11:58:43.0713 2284	adpahci         (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
2011/03/04 11:58:43.0800 2284	adpu160m        (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
2011/03/04 11:58:43.0866 2284	adpu320         (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
2011/03/04 11:58:44.0062 2284	AFD             (5d24caf8efd924a875698ff28384db8b) C:\Windows\system32\drivers\afd.sys
2011/03/04 11:58:44.0295 2284	agp440          (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
2011/03/04 11:58:44.0535 2284	aic78xx         (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/03/04 11:58:44.0846 2284	aliide          (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
2011/03/04 11:58:44.0999 2284	amdagp          (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
2011/03/04 11:58:45.0033 2284	amdide          (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
2011/03/04 11:58:45.0057 2284	AmdK7           (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
2011/03/04 11:58:45.0380 2284	AmdK8           (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\DRIVERS\amdk8.sys
2011/03/04 11:58:45.0571 2284	arc             (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
2011/03/04 11:58:45.0701 2284	arcsas          (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
2011/03/04 11:58:45.0745 2284	aswFsBlk        (1c2e6bb4fe8621b1b863855b02bc33eb) C:\Windows\system32\drivers\aswFsBlk.sys
2011/03/04 11:58:45.0843 2284	aswMonFlt       (b0f137f664f10829cd2380b0e20e7c29) C:\Windows\system32\drivers\aswMonFlt.sys
2011/03/04 11:58:45.0911 2284	aswRdr          (b6a9373619d851be80fb5f1b5eed0d4e) C:\Windows\system32\drivers\aswRdr.sys
2011/03/04 11:58:46.0418 2284	aswSnx          (9be41c1ae8bc481eb662d85c98d979c2) C:\Windows\system32\drivers\aswSnx.sys
2011/03/04 11:58:46.0737 2284	aswSP           (4b1a54ba2bc5873a774df6b70ab8b0b3) C:\Windows\system32\drivers\aswSP.sys
2011/03/04 11:58:46.0996 2284	aswTdi          (c7f1cea32766184911293f4e1ee653f5) C:\Windows\system32\drivers\aswTdi.sys
2011/03/04 11:58:47.0334 2284	AsyncMac        (e86cf7ce67d5de898f27ef884dc357d8) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/03/04 11:58:47.0370 2284	atapi           (4f4fcb8b6ea06784fb6d475b7ec7300f) C:\Windows\system32\drivers\atapi.sys
2011/03/04 11:58:47.0499 2284	athr            (889e7f06279fd16549b77628918ff666) C:\Windows\system32\DRIVERS\athr.sys
2011/03/04 11:58:47.0735 2284	atikmdag        (7db96c2801a78513bdc133c25d07929e) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/03/04 11:58:48.0000 2284	Beep            (ac3dd1708b22761ebd7cbe14dcc3b5d7) C:\Windows\system32\drivers\Beep.sys
2011/03/04 11:58:48.0083 2284	bowser          (913cd06fbe9105ce6077e90fd4418561) C:\Windows\system32\DRIVERS\bowser.sys
2011/03/04 11:58:48.0193 2284	BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/03/04 11:58:48.0221 2284	BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/03/04 11:58:48.0253 2284	Brserid         (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/03/04 11:58:48.0286 2284	BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/03/04 11:58:48.0395 2284	BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/03/04 11:58:48.0434 2284	BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/03/04 11:58:48.0482 2284	BTHMODEM        (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
2011/03/04 11:58:48.0775 2284	cdfs            (6c3a437fc873c6f6a4fc620b6888cb86) C:\Windows\system32\DRIVERS\cdfs.sys
2011/03/04 11:58:48.0820 2284	cdrom           (8d1866e61af096ae8b582454f5e4d303) C:\Windows\system32\DRIVERS\cdrom.sys
2011/03/04 11:58:48.0854 2284	circlass        (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
2011/03/04 11:58:48.0930 2284	CLFS            (51b4b82560e49c415ae5b1337d635c3f) C:\Windows\system32\CLFS.sys
2011/03/04 11:58:49.0291 2284	CmBatt          (0fed59edb4a83ff17f1778827b88ab1a) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/03/04 11:58:49.0340 2284	cmdide          (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
2011/03/04 11:58:49.0548 2284	Compbatt        (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\DRIVERS\compbatt.sys
2011/03/04 11:58:49.0586 2284	crcdisk         (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
2011/03/04 11:58:49.0625 2284	Crusoe          (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
2011/03/04 11:58:49.0699 2284	DfsC            (a7179de59ae269ab70345527894ccd7c) C:\Windows\system32\Drivers\dfsc.sys
2011/03/04 11:58:49.0911 2284	disk            (841af4c4d41d3e3b2f244e976b0f7963) C:\Windows\system32\drivers\disk.sys
2011/03/04 11:58:50.0078 2284	driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
2011/03/04 11:58:50.0161 2284	drmkaud         (ee472cd2c01f6f8e8aa1fa06ffef61b6) C:\Windows\system32\drivers\drmkaud.sys
2011/03/04 11:58:50.0258 2284	DXGKrnl         (f032a2f91287a0b800891c7bef9ca7a8) C:\Windows\System32\drivers\dxgkrnl.sys
2011/03/04 11:58:50.0362 2284	E1G60           (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/03/04 11:58:50.0459 2284	Ecache          (0efc7531b936ee57fdb4e837664c509f) C:\Windows\system32\drivers\ecache.sys
2011/03/04 11:58:50.0562 2284	elxstor         (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
2011/03/04 11:58:50.0672 2284	EMSCR           (1fa3f9df8983873746fa6b72dd7e3c2c) C:\Windows\system32\DRIVERS\EMS7SK.sys
2011/03/04 11:58:50.0704 2284	ESDCR           (9c7487253aad6bf61f9bc83d50e32ccc) C:\Windows\system32\DRIVERS\ESD7SK.sys
2011/03/04 11:58:50.0749 2284	ESMCR           (99589d975da04f8bd31f124428fcc797) C:\Windows\system32\DRIVERS\ESM7SK.sys
2011/03/04 11:58:50.0869 2284	fastfat         (84a317cb0b3954d3768cdcd018dbf670) C:\Windows\system32\drivers\fastfat.sys
2011/03/04 11:58:50.0916 2284	fdc             (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
2011/03/04 11:58:51.0037 2284	FileInfo        (65773d6115c037ffd7ef8280ae85eb9d) C:\Windows\system32\drivers\fileinfo.sys
2011/03/04 11:58:51.0058 2284	Filetrace       (c226dd0de060745f3e042f58dcf78402) C:\Windows\system32\drivers\filetrace.sys
2011/03/04 11:58:51.0098 2284	flpydisk        (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/03/04 11:58:51.0126 2284	FltMgr          (a6a8da7ae4d53394ab22ac3ab6d3f5d3) C:\Windows\system32\drivers\fltmgr.sys
2011/03/04 11:58:51.0162 2284	Fs_Rec          (1ed8599e1e08ba40f2b7301f0b83583a) C:\Windows\system32\drivers\Fs_Rec.sys
2011/03/04 11:58:51.0257 2284	gagp30kx        (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
2011/03/04 11:58:51.0305 2284	GEARAspiWDM     (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/03/04 11:58:51.0378 2284	HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
2011/03/04 11:58:51.0487 2284	HDAudBus        (5fd053f305b77ebe97f284b20d89dc1c) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/03/04 11:58:51.0521 2284	HidBth          (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
2011/03/04 11:58:51.0580 2284	HidIr           (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/03/04 11:58:51.0664 2284	HidUsb          (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\DRIVERS\hidusb.sys
2011/03/04 11:58:51.0769 2284	HpCISSs         (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
2011/03/04 11:58:51.0850 2284	HSFHWAZL        (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
2011/03/04 11:58:51.0941 2284	HSF_DPV         (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
2011/03/04 11:58:52.0071 2284	HTTP            (f31d27ccf514549a17e79bebe01b40b6) C:\Windows\system32\drivers\HTTP.sys
2011/03/04 11:58:52.0113 2284	i2omp           (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
2011/03/04 11:58:52.0161 2284	i8042prt        (1060f1377f395a242e27719440ece602) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/03/04 11:58:52.0257 2284	iaStorV         (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
2011/03/04 11:58:52.0310 2284	iirsp           (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/03/04 11:58:52.0443 2284	intelide        (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
2011/03/04 11:58:52.0499 2284	intelppm        (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
2011/03/04 11:58:52.0610 2284	IpFilterDriver  (880c6f86cc3f551b8fea2c11141268c0) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/03/04 11:58:52.0687 2284	IPMIDRV         (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
2011/03/04 11:58:52.0719 2284	IPNAT           (10077c35845101548037df04fd1a420b) C:\Windows\system32\DRIVERS\ipnat.sys
2011/03/04 11:58:52.0754 2284	IRENUM          (a82f328f4792304184642d6d397bb1e3) C:\Windows\system32\drivers\irenum.sys
2011/03/04 11:58:52.0859 2284	isapnp          (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
2011/03/04 11:58:52.0904 2284	iScsiPrt        (4dca456d4d5723f8fa9c6760d240b0df) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/03/04 11:58:52.0938 2284	iteatapi        (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/03/04 11:58:52.0962 2284	iteraid         (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/03/04 11:58:53.0066 2284	kbdclass        (1a48765f92ba1a88445fc25c9c9d94fc) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/03/04 11:58:53.0122 2284	kbdhid          (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
2011/03/04 11:58:53.0168 2284	KSecDD          (11d0bc1f2afd8abbb5a3dc47a042de54) C:\Windows\system32\Drivers\ksecdd.sys
2011/03/04 11:58:53.0297 2284	lltdio          (fd015b4f95daa2b712f0e372a116fbad) C:\Windows\system32\DRIVERS\lltdio.sys
2011/03/04 11:58:53.0367 2284	LSI_FC          (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
2011/03/04 11:58:53.0392 2284	LSI_SAS         (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
2011/03/04 11:58:53.0490 2284	LSI_SCSI        (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
2011/03/04 11:58:53.0567 2284	luafv           (42885bb44b6e065b8575a8dd6c430c52) C:\Windows\system32\drivers\luafv.sys
2011/03/04 11:58:53.0692 2284	megasas         (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
2011/03/04 11:58:53.0801 2284	Modem           (21755967298a46fb6adfec9db6012211) C:\Windows\system32\drivers\modem.sys
2011/03/04 11:58:53.0909 2284	monitor         (ec839ba91e45cce6eadafc418fff8206) C:\Windows\system32\DRIVERS\monitor.sys
2011/03/04 11:58:53.0966 2284	mouclass        (3c9469dfb3440555dab070716d768b1e) C:\Windows\system32\DRIVERS\mouclass.sys
2011/03/04 11:58:53.0989 2284	mouhid          (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\DRIVERS\mouhid.sys
2011/03/04 11:58:54.0083 2284	MountMgr        (01f1e5a3e4877c931cbb31613fec16a6) C:\Windows\system32\drivers\mountmgr.sys
2011/03/04 11:58:54.0420 2284	mpio            (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
2011/03/04 11:58:54.0573 2284	mpsdrv          (8d326e8b321685d4784afa1c55169d73) C:\Windows\system32\drivers\mpsdrv.sys
2011/03/04 11:58:54.0649 2284	Mraid35x        (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/03/04 11:58:54.0727 2284	MRxDAV          (93224014a418b72356462b8f7de6e8c9) C:\Windows\system32\drivers\mrxdav.sys
2011/03/04 11:58:54.0785 2284	mrxsmb          (fca7563d87f71c6db0182ca67cc19aa7) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/03/04 11:58:54.0823 2284	mrxsmb10        (58a9ab5754fa4cabede7401283b5a771) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/03/04 11:58:54.0934 2284	mrxsmb20        (79b09504e4a790104683722cd04f76b4) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/03/04 11:58:55.0261 2284	msahci          (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
2011/03/04 11:58:55.0392 2284	msdsm           (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
2011/03/04 11:58:55.0498 2284	Msfs            (729eafefd4e7417165f353a18dbe947d) C:\Windows\system32\drivers\Msfs.sys
2011/03/04 11:58:55.0590 2284	msisadrv        (5f454a16a5146cd91a176d70f0cfa3ec) C:\Windows\system32\drivers\msisadrv.sys
2011/03/04 11:58:55.0735 2284	MSKSSRV         (892cedefa7e0ffe7be8da651b651d047) C:\Windows\system32\drivers\MSKSSRV.sys
2011/03/04 11:58:55.0806 2284	MSPCLOCK        (ae2cb1da69b2676b4cee2a501af5871c) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/03/04 11:58:55.0832 2284	MSPQM           (f910da84fa90c44a3addb7cd874463fd) C:\Windows\system32\drivers\MSPQM.sys
2011/03/04 11:58:55.0874 2284	MsRPC           (84571c0ae07647ba38d493f5f0015df7) C:\Windows\system32\drivers\MsRPC.sys
2011/03/04 11:58:55.0924 2284	mssmbios        (4385c80ede885e25492d408cad91bd6f) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/03/04 11:58:56.0007 2284	MSTEE           (c826dd1373f38afd9ca46ec3c436a14e) C:\Windows\system32\drivers\MSTEE.sys
2011/03/04 11:58:56.0064 2284	Mup             (fa7aa70050cf5e2d15de00941e5665e5) C:\Windows\system32\Drivers\mup.sys
2011/03/04 11:58:56.0175 2284	NativeWifiP     (497de786240303ee67ab01f5690c24c2) C:\Windows\system32\DRIVERS
wifi.sys
2011/03/04 11:58:56.0260 2284	NDIS            (227c11e1e7cf6ef8afb2a238d209760c) C:\Windows\system32\drivers
dis.sys
2011/03/04 11:58:56.0374 2284	NdisTapi        (7584f1794b23b83d63cc124a8c56d103) C:\Windows\system32\DRIVERS
distapi.sys
2011/03/04 11:58:56.0404 2284	Ndisuio         (5de5ee546bf40838ebe0e01cb629df64) C:\Windows\system32\DRIVERS
disuio.sys
2011/03/04 11:58:56.0432 2284	NdisWan         (397402adcbb8946223a1950101f6cd94) C:\Windows\system32\DRIVERS
diswan.sys
2011/03/04 11:58:56.0460 2284	NDProxy         (874c12e3ad1431cabc854697d302c563) C:\Windows\system32\drivers\NDProxy.sys
2011/03/04 11:58:56.0590 2284	NetBIOS         (356dbb9f98e8dc1028dd3092fceeb877) C:\Windows\system32\DRIVERS
etbios.sys
2011/03/04 11:58:56.0625 2284	netbt           (e3a168912e7eefc3bd3b814720d68b41) C:\Windows\system32\DRIVERS
etbt.sys
2011/03/04 11:58:56.0697 2284	nfrd960         (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers
frd960.sys
2011/03/04 11:58:56.0779 2284	Npfs            (4f9832beb9fafd8ceb0e541f1323b26e) C:\Windows\system32\drivers\Npfs.sys
2011/03/04 11:58:56.0820 2284	nsiproxy        (b488dfec274de1fc9d653870ef2587be) C:\Windows\system32\drivers
siproxy.sys
2011/03/04 11:58:56.0898 2284	Ntfs            (3f379380a4a2637f559444e338cf1b51) C:\Windows\system32\drivers\Ntfs.sys
2011/03/04 11:58:57.0028 2284	ntrigdigi       (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers
trigdigi.sys
2011/03/04 11:58:57.0066 2284	Null            (ec5efb3c60f1b624648344a328bce596) C:\Windows\system32\drivers\Null.sys
2011/03/04 11:58:57.0116 2284	nvraid          (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers
vraid.sys
2011/03/04 11:58:57.0147 2284	nvstor          (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers
vstor.sys
2011/03/04 11:58:57.0184 2284	nv_agp          (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers
v_agp.sys
2011/03/04 11:58:57.0335 2284	ohci1394        (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
2011/03/04 11:58:57.0379 2284	Parport         (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/03/04 11:58:57.0415 2284	partmgr         (555a5b2c8022983bc7467bc925b222ee) C:\Windows\system32\drivers\partmgr.sys
2011/03/04 11:58:57.0446 2284	Parvdm          (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/03/04 11:58:57.0539 2284	pci             (1085d75657807e0e8b32f9e19a1647c3) C:\Windows\system32\drivers\pci.sys
2011/03/04 11:58:57.0595 2284	pciide          (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
2011/03/04 11:58:57.0643 2284	pcmcia          (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/03/04 11:58:57.0762 2284	PEAUTH          (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/03/04 11:58:57.0950 2284	PptpMiniport    (6c359ac71d7b550a0d41f9db4563ce05) C:\Windows\system32\DRIVERSaspptp.sys
2011/03/04 11:58:57.0985 2284	Processor       (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
2011/03/04 11:58:58.0072 2284	PSched          (b74edf14453c9987e99e66535047ebee) C:\Windows\system32\DRIVERS\pacer.sys
2011/03/04 11:58:58.0119 2284	ql2300          (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
2011/03/04 11:58:58.0221 2284	ql40xx          (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/03/04 11:58:58.0265 2284	QWAVEdrv        (d2b3e2b7426dc23e185fbc73c8936c12) C:\Windows\system32\drivers\qwavedrv.sys
2011/03/04 11:58:58.0425 2284	R300            (7db96c2801a78513bdc133c25d07929e) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/03/04 11:58:58.0563 2284	RasAcd          (bd7b30f55b3649506dd8b3d38f571d2a) C:\Windows\system32\DRIVERSasacd.sys
2011/03/04 11:58:58.0626 2284	Rasl2tp         (88587dd843e2059848995b407b67f6cf) C:\Windows\system32\DRIVERSasl2tp.sys
2011/03/04 11:58:58.0679 2284	RasPppoe        (ccf4e9c6cbbac81437f88cb2ae0b6c96) C:\Windows\system32\DRIVERSaspppoe.sys
2011/03/04 11:58:58.0818 2284	rdbss           (54129c5d9581bbec8bd1ebd3ba813f47) C:\Windows\system32\DRIVERSdbss.sys
2011/03/04 11:58:58.0913 2284	RDPCDD          (794585276b5d7fca9f3fc15543f9f0b9) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/03/04 11:58:58.0969 2284	rdpdr           (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\driversdpdr.sys
2011/03/04 11:58:59.0103 2284	RDPENCDD        (980b56e2e273e19d3a9d72d5c420f008) C:\Windows\system32\driversdpencdd.sys
2011/03/04 11:58:59.0158 2284	RDPWD           (8830e790a74a96605faba74f9665bb3c) C:\Windows\system32\drivers\RDPWD.sys
2011/03/04 11:58:59.0264 2284	rspndr          (97e939d2128fec5d5a3e6e79b290a2f4) C:\Windows\system32\DRIVERSspndr.sys
2011/03/04 11:58:59.0322 2284	RTL8023xp       (959ef612d2ccfdb6d9e443f8e3655013) C:\Windows\system32\DRIVERS\Rtnicxp.sys
2011/03/04 11:58:59.0430 2284	sbp2port        (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/03/04 11:58:59.0510 2284	sdbus           (4339a2585708c7d9b0c0ce5aad3dd6ff) C:\Windows\system32\DRIVERS\sdbus.sys
2011/03/04 11:58:59.0562 2284	secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/03/04 11:58:59.0688 2284	Serenum         (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
2011/03/04 11:58:59.0716 2284	Serial          (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/03/04 11:58:59.0759 2284	sermouse        (fd06895f55c0bec3cbd84bda14e1c6b7) C:\Windows\system32\drivers\sermouse.sys
2011/03/04 11:58:59.0815 2284	sffdisk         (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
2011/03/04 11:58:59.0925 2284	sffp_mmc        (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
2011/03/04 11:58:59.0962 2284	sffp_sd         (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
2011/03/04 11:58:59.0994 2284	sfloppy         (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/03/04 11:59:00.0131 2284	sisagp          (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
2011/03/04 11:59:00.0173 2284	SiSRaid2        (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
2011/03/04 11:59:00.0196 2284	SiSRaid4        (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
2011/03/04 11:59:00.0248 2284	Smb             (ac0d90738adb51a6fd12ff00874a2162) C:\Windows\system32\DRIVERS\smb.sys
2011/03/04 11:59:00.0380 2284	spldr           (426f9b029aa9162ceccf65369457d046) C:\Windows\system32\drivers\spldr.sys
2011/03/04 11:59:00.0437 2284	srv             (2c677528b24d64d22886ecbe5cd97f20) C:\Windows\system32\DRIVERS\srv.sys
2011/03/04 11:59:00.0526 2284	srv2            (382baf4dcbd7648ced6c64a8a1e335b2) C:\Windows\system32\DRIVERS\srv2.sys
2011/03/04 11:59:00.0582 2284	srvnet          (f8e47a77e1690d8574962b69cb22beb3) C:\Windows\system32\DRIVERS\srvnet.sys
2011/03/04 11:59:00.0670 2284	swenum          (1379bdb336f8158c176a465e30759f57) C:\Windows\system32\DRIVERS\swenum.sys
2011/03/04 11:59:00.0747 2284	Symc8xx         (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/03/04 11:59:01.0153 2284	Sym_hi          (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/03/04 11:59:01.0346 2284	Sym_u3          (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/03/04 11:59:01.0474 2284	Tcpip           (d944522b048a5feb7700b5170d3d9423) C:\Windows\system32\drivers	cpip.sys
2011/03/04 11:59:01.0652 2284	Tcpip6          (d944522b048a5feb7700b5170d3d9423) C:\Windows\system32\DRIVERS	cpip.sys
2011/03/04 11:59:01.0786 2284	tcpipreg        (5ce0c4a7b12d0067dad527d72b68c726) C:\Windows\system32\drivers	cpipreg.sys
2011/03/04 11:59:01.0836 2284	TDPIPE          (964248aef49c31fa6a93201a73ffaf50) C:\Windows\system32\drivers	dpipe.sys
2011/03/04 11:59:01.0875 2284	TDTCP           (7d2c1ae1648a60fce4aa0f7982e419d3) C:\Windows\system32\drivers	dtcp.sys
2011/03/04 11:59:01.0920 2284	tdx             (ab4fde8af4a0270a46a001c08cbce1c2) C:\Windows\system32\DRIVERS	dx.sys
2011/03/04 11:59:02.0038 2284	TermDD          (2c549bd9dd091fbfaa0a2a48e82ec2fb) C:\Windows\system32\DRIVERS	ermdd.sys
2011/03/04 11:59:02.0142 2284	tssecsrv        (29f0eca726f0d51f7e048bdb0b372f29) C:\Windows\system32\DRIVERS	ssecsrv.sys
2011/03/04 11:59:02.0181 2284	tunmp           (80fc4ac81602c88e7d23618e6efba2c6) C:\Windows\system32\DRIVERS	unmp.sys
2011/03/04 11:59:02.0230 2284	tunnel          (52daa1fa3b5a40d6a6627b44c60a9b78) C:\Windows\system32\DRIVERS	unnel.sys
2011/03/04 11:59:02.0333 2284	uagp35          (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
2011/03/04 11:59:02.0378 2284	udfs            (6348da98707ceda8a0dfb05820e17732) C:\Windows\system32\DRIVERS\udfs.sys
2011/03/04 11:59:02.0454 2284	uliagpkx        (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
2011/03/04 11:59:02.0501 2284	uliahci         (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
2011/03/04 11:59:02.0613 2284	UlSata          (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/03/04 11:59:02.0680 2284	ulsata2         (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/03/04 11:59:02.0727 2284	umbus           (3fb78f1d1dd86d87bececd9dffa24dd9) C:\Windows\system32\DRIVERS\umbus.sys
2011/03/04 11:59:02.0857 2284	USB-100         (2a3fa9ff6ec8485c98c179131e8a41a7) C:\Windows\system32\DRIVERS\RTL8150.SYS
2011/03/04 11:59:02.0930 2284	USBAAPL         (5c2bdc152bbab34f36473deaf7713f22) C:\Windows\system32\Drivers\usbaapl.sys
2011/03/04 11:59:02.0987 2284	usbccgp         (8bd3ae150d97ba4e633c6c5c51b41ae1) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/03/04 11:59:03.0118 2284	usbcir          (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/03/04 11:59:03.0197 2284	usbehci         (63fe924d8a1113c3ba6750693fbec7d3) C:\Windows\system32\DRIVERS\usbehci.sys
2011/03/04 11:59:03.0301 2284	usbhub          (5edec5510592c905e91817707dce62a2) C:\Windows\system32\DRIVERS\usbhub.sys
2011/03/04 11:59:03.0360 2284	usbohci         (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\DRIVERS\usbohci.sys
2011/03/04 11:59:03.0420 2284	usbprint        (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\DRIVERS\usbprint.sys
2011/03/04 11:59:03.0568 2284	usbscan         (b1f95285c08ddfe00c0b955462637ec7) C:\Windows\system32\DRIVERS\usbscan.sys
2011/03/04 11:59:03.0622 2284	USBSTOR         (fdbaabf07244c60b0f4e0a6e71a107c6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/03/04 11:59:03.0680 2284	usbuhci         (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/03/04 11:59:04.0202 2284	usbvideo        (0a6b81f01bc86399482e27e6fda7b33b) C:\Windows\system32\Drivers\usbvideo.sys
2011/03/04 11:59:04.0395 2284	vga             (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/03/04 11:59:04.0446 2284	VgaSave         (17a8f877314e4067f8c8172cc6d9101c) C:\Windows\System32\drivers\vga.sys
2011/03/04 11:59:04.0492 2284	viaagp          (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
2011/03/04 11:59:04.0574 2284	ViaC7           (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
2011/03/04 11:59:04.0666 2284	viaide          (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
2011/03/04 11:59:04.0716 2284	volmgr          (103e84c95832d0ed93507997cc7b54e8) C:\Windows\system32\drivers\volmgr.sys
2011/03/04 11:59:04.0786 2284	volmgrx         (294da8d3f965f6a8db934a83c7b461ff) C:\Windows\system32\drivers\volmgrx.sys
2011/03/04 11:59:04.0847 2284	volsnap         (11ef6c1caef76b685233450a126125d6) C:\Windows\system32\drivers\volsnap.sys
2011/03/04 11:59:04.0943 2284	vsmraid         (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
2011/03/04 11:59:05.0057 2284	WacomPen        (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/03/04 11:59:05.0120 2284	Wanarp          (6e1a5be9a0605f3d932ff35fba2b22b3) C:\Windows\system32\DRIVERS\wanarp.sys
2011/03/04 11:59:05.0159 2284	Wanarpv6        (6e1a5be9a0605f3d932ff35fba2b22b3) C:\Windows\system32\DRIVERS\wanarp.sys
2011/03/04 11:59:05.0279 2284	Wd              (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
2011/03/04 11:59:05.0365 2284	Wdf01000        (5dfdbd5ef13e4d95be6fc108e2ed4a67) C:\Windows\system32\drivers\Wdf01000.sys
2011/03/04 11:59:05.0509 2284	winachsf        (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
2011/03/04 11:59:05.0722 2284	WmiAcpi         (701a9f884a294327e9141d73746ee279) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/03/04 11:59:05.0863 2284	WpdUsb          (2d27171b16a577ef14c1273668753485) C:\Windows\system32\DRIVERS\wpdusb.sys
2011/03/04 11:59:05.0979 2284	ws2ifsl         (84620aecdcfd2a7a14e6263927d8c0ed) C:\Windows\system32\drivers\ws2ifsl.sys
2011/03/04 11:59:06.0072 2284	WUDFRd          (a2aafcc8a204736296d937c7c545b53f) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/03/04 11:59:06.0199 2284	\HardDisk0 - detected Rootkit.Win32.TDSS.tdl4 (0)
2011/03/04 11:59:06.0204 2284	================================================================================
2011/03/04 11:59:06.0204 2284	Scan finished
2011/03/04 11:59:06.0204 2284	================================================================================
2011/03/04 11:59:06.0235 4032	Detected object count: 1
2011/03/04 11:59:31.0450 4032	\HardDisk0 - will be cured after reboot
2011/03/04 11:59:31.0502 4032	Rootkit.Win32.TDSS.tdl4(\HardDisk0) - User select action: Cure 
2011/03/04 12:03:59.0291 3332	Deinitialize success

sysyl19 · Answer

Tous ces dossiers et fichiers qui se sont installés seront supprimés?
(Le compter-rendu n'était pas ds le dossier du logiciel, il était ds C: directement)

moment de grace · Answer

refais un coup tdsskiller stp

et poste le nouveau rapport

sysyl19 · Answer

2011/03/04 12:15:55.0330 3916	TDSS rootkit removing tool 2.4.20.0 Mar  2 2011 10:44:30
2011/03/04 12:16:00.0189 3916	================================================================================
2011/03/04 12:16:00.0189 3916	SystemInfo:
2011/03/04 12:16:00.0189 3916	
2011/03/04 12:16:00.0189 3916	OS Version: 6.0.6000 ServicePack: 0.0
2011/03/04 12:16:00.0189 3916	Product type: Workstation
2011/03/04 12:16:00.0189 3916	ComputerName: PC-DE-ACER
2011/03/04 12:16:00.0330 3916	UserName: acer
2011/03/04 12:16:00.0330 3916	Windows directory: C:\Windows
2011/03/04 12:16:00.0330 3916	System windows directory: C:\Windows
2011/03/04 12:16:00.0596 3916	Processor architecture: Intel x86
2011/03/04 12:16:00.0596 3916	Number of processors: 1
2011/03/04 12:16:00.0596 3916	Page size: 0x1000
2011/03/04 12:16:00.0596 3916	Boot type: Normal boot
2011/03/04 12:16:00.0596 3916	================================================================================
2011/03/04 12:16:01.0580 3916	Initialize success
2011/03/04 12:16:04.0096 3728	================================================================================
2011/03/04 12:16:04.0096 3728	Scan started
2011/03/04 12:16:04.0096 3728	Mode: Manual; 
2011/03/04 12:16:04.0096 3728	================================================================================
2011/03/04 12:16:06.0814 3728	ACPI            (192bdbd1540645c4a2aa69f24cce197f) C:\Windows\system32\drivers\acpi.sys
2011/03/04 12:16:06.0924 3728	adp94xx         (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
2011/03/04 12:16:07.0049 3728	adpahci         (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
2011/03/04 12:16:07.0096 3728	adpu160m        (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
2011/03/04 12:16:07.0174 3728	adpu320         (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
2011/03/04 12:16:07.0314 3728	AFD             (5d24caf8efd924a875698ff28384db8b) C:\Windows\system32\drivers\afd.sys
2011/03/04 12:16:07.0377 3728	agp440          (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
2011/03/04 12:16:07.0549 3728	aic78xx         (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/03/04 12:16:07.0611 3728	aliide          (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
2011/03/04 12:16:07.0799 3728	amdagp          (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
2011/03/04 12:16:07.0846 3728	amdide          (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
2011/03/04 12:16:07.0908 3728	AmdK7           (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
2011/03/04 12:16:08.0002 3728	AmdK8           (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\DRIVERS\amdk8.sys
2011/03/04 12:16:08.0221 3728	arc             (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
2011/03/04 12:16:08.0268 3728	arcsas          (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
2011/03/04 12:16:08.0424 3728	aswFsBlk        (1c2e6bb4fe8621b1b863855b02bc33eb) C:\Windows\system32\drivers\aswFsBlk.sys
2011/03/04 12:16:08.0455 3728	aswMonFlt       (b0f137f664f10829cd2380b0e20e7c29) C:\Windows\system32\drivers\aswMonFlt.sys
2011/03/04 12:16:08.0502 3728	aswRdr          (b6a9373619d851be80fb5f1b5eed0d4e) C:\Windows\system32\drivers\aswRdr.sys
2011/03/04 12:16:08.0721 3728	aswSnx          (9be41c1ae8bc481eb662d85c98d979c2) C:\Windows\system32\drivers\aswSnx.sys
2011/03/04 12:16:08.0830 3728	aswSP           (4b1a54ba2bc5873a774df6b70ab8b0b3) C:\Windows\system32\drivers\aswSP.sys
2011/03/04 12:16:08.0986 3728	aswTdi          (c7f1cea32766184911293f4e1ee653f5) C:\Windows\system32\drivers\aswTdi.sys
2011/03/04 12:16:09.0049 3728	AsyncMac        (e86cf7ce67d5de898f27ef884dc357d8) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/03/04 12:16:09.0283 3728	atapi           (4f4fcb8b6ea06784fb6d475b7ec7300f) C:\Windows\system32\drivers\atapi.sys
2011/03/04 12:16:09.0424 3728	athr            (889e7f06279fd16549b77628918ff666) C:\Windows\system32\DRIVERS\athr.sys
2011/03/04 12:16:09.0783 3728	atikmdag        (7db96c2801a78513bdc133c25d07929e) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/03/04 12:16:10.0111 3728	Beep            (ac3dd1708b22761ebd7cbe14dcc3b5d7) C:\Windows\system32\drivers\Beep.sys
2011/03/04 12:16:10.0377 3728	bowser          (913cd06fbe9105ce6077e90fd4418561) C:\Windows\system32\DRIVERS\bowser.sys
2011/03/04 12:16:10.0408 3728	BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/03/04 12:16:10.0439 3728	BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/03/04 12:16:10.0596 3728	Brserid         (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/03/04 12:16:10.0658 3728	BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/03/04 12:16:10.0721 3728	BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/03/04 12:16:10.0814 3728	BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/03/04 12:16:10.0861 3728	BTHMODEM        (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
2011/03/04 12:16:11.0064 3728	cdfs            (6c3a437fc873c6f6a4fc620b6888cb86) C:\Windows\system32\DRIVERS\cdfs.sys
2011/03/04 12:16:11.0143 3728	cdrom           (8d1866e61af096ae8b582454f5e4d303) C:\Windows\system32\DRIVERS\cdrom.sys
2011/03/04 12:16:11.0252 3728	circlass        (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
2011/03/04 12:16:11.0393 3728	CLFS            (51b4b82560e49c415ae5b1337d635c3f) C:\Windows\system32\CLFS.sys
2011/03/04 12:16:11.0549 3728	CmBatt          (0fed59edb4a83ff17f1778827b88ab1a) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/03/04 12:16:11.0596 3728	cmdide          (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
2011/03/04 12:16:11.0627 3728	Compbatt        (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\DRIVERS\compbatt.sys
2011/03/04 12:16:11.0643 3728	crcdisk         (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
2011/03/04 12:16:11.0705 3728	Crusoe          (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
2011/03/04 12:16:11.0877 3728	DfsC            (a7179de59ae269ab70345527894ccd7c) C:\Windows\system32\Drivers\dfsc.sys
2011/03/04 12:16:12.0111 3728	disk            (841af4c4d41d3e3b2f244e976b0f7963) C:\Windows\system32\drivers\disk.sys
2011/03/04 12:16:12.0314 3728	driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
2011/03/04 12:16:12.0377 3728	drmkaud         (ee472cd2c01f6f8e8aa1fa06ffef61b6) C:\Windows\system32\drivers\drmkaud.sys
2011/03/04 12:16:12.0439 3728	DXGKrnl         (f032a2f91287a0b800891c7bef9ca7a8) C:\Windows\System32\drivers\dxgkrnl.sys
2011/03/04 12:16:12.0611 3728	E1G60           (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/03/04 12:16:12.0674 3728	Ecache          (0efc7531b936ee57fdb4e837664c509f) C:\Windows\system32\drivers\ecache.sys
2011/03/04 12:16:12.0830 3728	elxstor         (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
2011/03/04 12:16:13.0018 3728	EMSCR           (1fa3f9df8983873746fa6b72dd7e3c2c) C:\Windows\system32\DRIVERS\EMS7SK.sys
2011/03/04 12:16:13.0111 3728	ESDCR           (9c7487253aad6bf61f9bc83d50e32ccc) C:\Windows\system32\DRIVERS\ESD7SK.sys
2011/03/04 12:16:13.0158 3728	ESMCR           (99589d975da04f8bd31f124428fcc797) C:\Windows\system32\DRIVERS\ESM7SK.sys
2011/03/04 12:16:13.0393 3728	fastfat         (84a317cb0b3954d3768cdcd018dbf670) C:\Windows\system32\drivers\fastfat.sys
2011/03/04 12:16:13.0596 3728	fdc             (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
2011/03/04 12:16:13.0643 3728	FileInfo        (65773d6115c037ffd7ef8280ae85eb9d) C:\Windows\system32\drivers\fileinfo.sys
2011/03/04 12:16:13.0658 3728	Filetrace       (c226dd0de060745f3e042f58dcf78402) C:\Windows\system32\drivers\filetrace.sys
2011/03/04 12:16:13.0705 3728	flpydisk        (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/03/04 12:16:13.0736 3728	FltMgr          (a6a8da7ae4d53394ab22ac3ab6d3f5d3) C:\Windows\system32\drivers\fltmgr.sys
2011/03/04 12:16:13.0877 3728	Fs_Rec          (1ed8599e1e08ba40f2b7301f0b83583a) C:\Windows\system32\drivers\Fs_Rec.sys
2011/03/04 12:16:13.0908 3728	gagp30kx        (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
2011/03/04 12:16:13.0955 3728	GEARAspiWDM     (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/03/04 12:16:14.0080 3728	HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
2011/03/04 12:16:14.0158 3728	HDAudBus        (5fd053f305b77ebe97f284b20d89dc1c) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/03/04 12:16:14.0189 3728	HidBth          (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
2011/03/04 12:16:14.0314 3728	HidIr           (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/03/04 12:16:14.0439 3728	HidUsb          (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\DRIVERS\hidusb.sys
2011/03/04 12:16:14.0736 3728	HpCISSs         (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
2011/03/04 12:16:15.0018 3728	HSFHWAZL        (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
2011/03/04 12:16:15.0143 3728	HSF_DPV         (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
2011/03/04 12:16:15.0346 3728	HTTP            (f31d27ccf514549a17e79bebe01b40b6) C:\Windows\system32\drivers\HTTP.sys
2011/03/04 12:16:15.0393 3728	i2omp           (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
2011/03/04 12:16:15.0502 3728	i8042prt        (1060f1377f395a242e27719440ece602) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/03/04 12:16:15.0549 3728	iaStorV         (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
2011/03/04 12:16:15.0658 3728	iirsp           (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/03/04 12:16:15.0830 3728	intelide        (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
2011/03/04 12:16:15.0846 3728	intelppm        (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
2011/03/04 12:16:15.0924 3728	IpFilterDriver  (880c6f86cc3f551b8fea2c11141268c0) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/03/04 12:16:16.0080 3728	IPMIDRV         (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
2011/03/04 12:16:16.0127 3728	IPNAT           (10077c35845101548037df04fd1a420b) C:\Windows\system32\DRIVERS\ipnat.sys
2011/03/04 12:16:16.0189 3728	IRENUM          (a82f328f4792304184642d6d397bb1e3) C:\Windows\system32\drivers\irenum.sys
2011/03/04 12:16:16.0393 3728	isapnp          (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
2011/03/04 12:16:16.0439 3728	iScsiPrt        (4dca456d4d5723f8fa9c6760d240b0df) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/03/04 12:16:16.0627 3728	iteatapi        (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/03/04 12:16:16.0674 3728	iteraid         (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/03/04 12:16:16.0705 3728	kbdclass        (1a48765f92ba1a88445fc25c9c9d94fc) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/03/04 12:16:16.0814 3728	kbdhid          (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
2011/03/04 12:16:16.0893 3728	KSecDD          (11d0bc1f2afd8abbb5a3dc47a042de54) C:\Windows\system32\Drivers\ksecdd.sys
2011/03/04 12:16:17.0049 3728	lltdio          (fd015b4f95daa2b712f0e372a116fbad) C:\Windows\system32\DRIVERS\lltdio.sys
2011/03/04 12:16:17.0189 3728	LSI_FC          (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
2011/03/04 12:16:17.0299 3728	LSI_SAS         (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
2011/03/04 12:16:17.0424 3728	LSI_SCSI        (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
2011/03/04 12:16:17.0580 3728	luafv           (42885bb44b6e065b8575a8dd6c430c52) C:\Windows\system32\drivers\luafv.sys
2011/03/04 12:16:17.0768 3728	megasas         (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
2011/03/04 12:16:17.0814 3728	Modem           (21755967298a46fb6adfec9db6012211) C:\Windows\system32\drivers\modem.sys
2011/03/04 12:16:17.0877 3728	monitor         (ec839ba91e45cce6eadafc418fff8206) C:\Windows\system32\DRIVERS\monitor.sys
2011/03/04 12:16:18.0080 3728	mouclass        (3c9469dfb3440555dab070716d768b1e) C:\Windows\system32\DRIVERS\mouclass.sys
2011/03/04 12:16:18.0111 3728	mouhid          (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\DRIVERS\mouhid.sys
2011/03/04 12:16:18.0127 3728	MountMgr        (01f1e5a3e4877c931cbb31613fec16a6) C:\Windows\system32\drivers\mountmgr.sys
2011/03/04 12:16:18.0174 3728	mpio            (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
2011/03/04 12:16:18.0299 3728	mpsdrv          (8d326e8b321685d4784afa1c55169d73) C:\Windows\system32\drivers\mpsdrv.sys
2011/03/04 12:16:18.0330 3728	Mraid35x        (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/03/04 12:16:18.0361 3728	MRxDAV          (93224014a418b72356462b8f7de6e8c9) C:\Windows\system32\drivers\mrxdav.sys
2011/03/04 12:16:18.0377 3728	mrxsmb          (fca7563d87f71c6db0182ca67cc19aa7) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/03/04 12:16:18.0533 3728	mrxsmb10        (58a9ab5754fa4cabede7401283b5a771) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/03/04 12:16:18.0564 3728	mrxsmb20        (79b09504e4a790104683722cd04f76b4) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/03/04 12:16:18.0611 3728	msahci          (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
2011/03/04 12:16:18.0783 3728	msdsm           (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
2011/03/04 12:16:18.0939 3728	Msfs            (729eafefd4e7417165f353a18dbe947d) C:\Windows\system32\drivers\Msfs.sys
2011/03/04 12:16:19.0033 3728	msisadrv        (5f454a16a5146cd91a176d70f0cfa3ec) C:\Windows\system32\drivers\msisadrv.sys
2011/03/04 12:16:19.0143 3728	MSKSSRV         (892cedefa7e0ffe7be8da651b651d047) C:\Windows\system32\drivers\MSKSSRV.sys
2011/03/04 12:16:19.0221 3728	MSPCLOCK        (ae2cb1da69b2676b4cee2a501af5871c) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/03/04 12:16:19.0252 3728	MSPQM           (f910da84fa90c44a3addb7cd874463fd) C:\Windows\system32\drivers\MSPQM.sys
2011/03/04 12:16:19.0299 3728	MsRPC           (84571c0ae07647ba38d493f5f0015df7) C:\Windows\system32\drivers\MsRPC.sys
2011/03/04 12:16:19.0439 3728	mssmbios        (4385c80ede885e25492d408cad91bd6f) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/03/04 12:16:19.0564 3728	MSTEE           (c826dd1373f38afd9ca46ec3c436a14e) C:\Windows\system32\drivers\MSTEE.sys
2011/03/04 12:16:19.0705 3728	Mup             (fa7aa70050cf5e2d15de00941e5665e5) C:\Windows\system32\Drivers\mup.sys
2011/03/04 12:16:19.0799 3728	NativeWifiP     (497de786240303ee67ab01f5690c24c2) C:\Windows\system32\DRIVERS
wifi.sys
2011/03/04 12:16:19.0939 3728	NDIS            (227c11e1e7cf6ef8afb2a238d209760c) C:\Windows\system32\drivers
dis.sys
2011/03/04 12:16:20.0049 3728	NdisTapi        (7584f1794b23b83d63cc124a8c56d103) C:\Windows\system32\DRIVERS
distapi.sys
2011/03/04 12:16:20.0189 3728	Ndisuio         (5de5ee546bf40838ebe0e01cb629df64) C:\Windows\system32\DRIVERS
disuio.sys
2011/03/04 12:16:20.0299 3728	NdisWan         (397402adcbb8946223a1950101f6cd94) C:\Windows\system32\DRIVERS
diswan.sys
2011/03/04 12:16:20.0377 3728	NDProxy         (874c12e3ad1431cabc854697d302c563) C:\Windows\system32\drivers\NDProxy.sys
2011/03/04 12:16:20.0502 3728	NetBIOS         (356dbb9f98e8dc1028dd3092fceeb877) C:\Windows\system32\DRIVERS
etbios.sys
2011/03/04 12:16:20.0564 3728	netbt           (e3a168912e7eefc3bd3b814720d68b41) C:\Windows\system32\DRIVERS
etbt.sys
2011/03/04 12:16:20.0627 3728	nfrd960         (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers
frd960.sys
2011/03/04 12:16:20.0799 3728	Npfs            (4f9832beb9fafd8ceb0e541f1323b26e) C:\Windows\system32\drivers\Npfs.sys
2011/03/04 12:16:20.0924 3728	nsiproxy        (b488dfec274de1fc9d653870ef2587be) C:\Windows\system32\drivers
siproxy.sys
2011/03/04 12:16:21.0158 3728	Ntfs            (3f379380a4a2637f559444e338cf1b51) C:\Windows\system32\drivers\Ntfs.sys
2011/03/04 12:16:21.0643 3728	ntrigdigi       (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers
trigdigi.sys
2011/03/04 12:16:21.0674 3728	Null            (ec5efb3c60f1b624648344a328bce596) C:\Windows\system32\drivers\Null.sys
2011/03/04 12:16:21.0721 3728	nvraid          (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers
vraid.sys
2011/03/04 12:16:21.0971 3728	nvstor          (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers
vstor.sys
2011/03/04 12:16:22.0049 3728	nv_agp          (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers
v_agp.sys
2011/03/04 12:16:22.0346 3728	ohci1394        (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
2011/03/04 12:16:22.0658 3728	Parport         (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/03/04 12:16:22.0752 3728	partmgr         (555a5b2c8022983bc7467bc925b222ee) C:\Windows\system32\drivers\partmgr.sys
2011/03/04 12:16:22.0799 3728	Parvdm          (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/03/04 12:16:22.0830 3728	pci             (1085d75657807e0e8b32f9e19a1647c3) C:\Windows\system32\drivers\pci.sys
2011/03/04 12:16:22.0877 3728	pciide          (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
2011/03/04 12:16:23.0111 3728	pcmcia          (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/03/04 12:16:23.0236 3728	PEAUTH          (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/03/04 12:16:23.0533 3728	PptpMiniport    (6c359ac71d7b550a0d41f9db4563ce05) C:\Windows\system32\DRIVERSaspptp.sys
2011/03/04 12:16:23.0627 3728	Processor       (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
2011/03/04 12:16:23.0689 3728	PSched          (b74edf14453c9987e99e66535047ebee) C:\Windows\system32\DRIVERS\pacer.sys
2011/03/04 12:16:23.0939 3728	ql2300          (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
2011/03/04 12:16:24.0111 3728	ql40xx          (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/03/04 12:16:24.0189 3728	QWAVEdrv        (d2b3e2b7426dc23e185fbc73c8936c12) C:\Windows\system32\drivers\qwavedrv.sys
2011/03/04 12:16:24.0393 3728	R300            (7db96c2801a78513bdc133c25d07929e) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/03/04 12:16:24.0674 3728	RasAcd          (bd7b30f55b3649506dd8b3d38f571d2a) C:\Windows\system32\DRIVERSasacd.sys
2011/03/04 12:16:24.0721 3728	Rasl2tp         (88587dd843e2059848995b407b67f6cf) C:\Windows\system32\DRIVERSasl2tp.sys
2011/03/04 12:16:24.0893 3728	RasPppoe        (ccf4e9c6cbbac81437f88cb2ae0b6c96) C:\Windows\system32\DRIVERSaspppoe.sys
2011/03/04 12:16:24.0955 3728	rdbss           (54129c5d9581bbec8bd1ebd3ba813f47) C:\Windows\system32\DRIVERSdbss.sys
2011/03/04 12:16:25.0002 3728	RDPCDD          (794585276b5d7fca9f3fc15543f9f0b9) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/03/04 12:16:25.0143 3728	rdpdr           (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\driversdpdr.sys
2011/03/04 12:16:25.0252 3728	RDPENCDD        (980b56e2e273e19d3a9d72d5c420f008) C:\Windows\system32\driversdpencdd.sys
2011/03/04 12:16:25.0549 3728	RDPWD           (8830e790a74a96605faba74f9665bb3c) C:\Windows\system32\drivers\RDPWD.sys
2011/03/04 12:16:25.0877 3728	rspndr          (97e939d2128fec5d5a3e6e79b290a2f4) C:\Windows\system32\DRIVERSspndr.sys
2011/03/04 12:16:26.0174 3728	RTL8023xp       (959ef612d2ccfdb6d9e443f8e3655013) C:\Windows\system32\DRIVERS\Rtnicxp.sys
2011/03/04 12:16:26.0471 3728	sbp2port        (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/03/04 12:16:26.0814 3728	sdbus           (4339a2585708c7d9b0c0ce5aad3dd6ff) C:\Windows\system32\DRIVERS\sdbus.sys
2011/03/04 12:16:27.0127 3728	secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/03/04 12:16:27.0439 3728	Serenum         (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
2011/03/04 12:16:27.0830 3728	Serial          (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/03/04 12:16:28.0064 3728	sermouse        (fd06895f55c0bec3cbd84bda14e1c6b7) C:\Windows\system32\drivers\sermouse.sys
2011/03/04 12:16:28.0252 3728	sffdisk         (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
2011/03/04 12:16:28.0283 3728	sffp_mmc        (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
2011/03/04 12:16:28.0330 3728	sffp_sd         (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
2011/03/04 12:16:28.0361 3728	sfloppy         (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/03/04 12:16:28.0596 3728	sisagp          (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
2011/03/04 12:16:28.0908 3728	SiSRaid2        (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
2011/03/04 12:16:29.0158 3728	SiSRaid4        (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
2011/03/04 12:16:29.0236 3728	Smb             (ac0d90738adb51a6fd12ff00874a2162) C:\Windows\system32\DRIVERS\smb.sys
2011/03/04 12:16:29.0455 3728	spldr           (426f9b029aa9162ceccf65369457d046) C:\Windows\system32\drivers\spldr.sys
2011/03/04 12:16:29.0705 3728	srv             (2c677528b24d64d22886ecbe5cd97f20) C:\Windows\system32\DRIVERS\srv.sys
2011/03/04 12:16:29.0877 3728	srv2            (382baf4dcbd7648ced6c64a8a1e335b2) C:\Windows\system32\DRIVERS\srv2.sys
2011/03/04 12:16:30.0127 3728	srvnet          (f8e47a77e1690d8574962b69cb22beb3) C:\Windows\system32\DRIVERS\srvnet.sys
2011/03/04 12:16:30.0424 3728	swenum          (1379bdb336f8158c176a465e30759f57) C:\Windows\system32\DRIVERS\swenum.sys
2011/03/04 12:16:30.0674 3728	Symc8xx         (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/03/04 12:16:30.0705 3728	Sym_hi          (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/03/04 12:16:30.0971 3728	Sym_u3          (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/03/04 12:16:31.0346 3728	Tcpip           (d944522b048a5feb7700b5170d3d9423) C:\Windows\system32\drivers	cpip.sys
2011/03/04 12:16:32.0002 3728	Tcpip6          (d944522b048a5feb7700b5170d3d9423) C:\Windows\system32\DRIVERS	cpip.sys
2011/03/04 12:16:32.0268 3728	tcpipreg        (5ce0c4a7b12d0067dad527d72b68c726) C:\Windows\system32\drivers	cpipreg.sys
2011/03/04 12:16:32.0580 3728	TDPIPE          (964248aef49c31fa6a93201a73ffaf50) C:\Windows\system32\drivers	dpipe.sys
2011/03/04 12:16:32.0736 3728	TDTCP           (7d2c1ae1648a60fce4aa0f7982e419d3) C:\Windows\system32\drivers	dtcp.sys
2011/03/04 12:16:32.0877 3728	tdx             (ab4fde8af4a0270a46a001c08cbce1c2) C:\Windows\system32\DRIVERS	dx.sys
2011/03/04 12:16:32.0908 3728	TermDD          (2c549bd9dd091fbfaa0a2a48e82ec2fb) C:\Windows\system32\DRIVERS	ermdd.sys
2011/03/04 12:16:33.0205 3728	tssecsrv        (29f0eca726f0d51f7e048bdb0b372f29) C:\Windows\system32\DRIVERS	ssecsrv.sys
2011/03/04 12:16:33.0283 3728	tunmp           (80fc4ac81602c88e7d23618e6efba2c6) C:\Windows\system32\DRIVERS	unmp.sys
2011/03/04 12:16:33.0611 3728	tunnel          (52daa1fa3b5a40d6a6627b44c60a9b78) C:\Windows\system32\DRIVERS	unnel.sys
2011/03/04 12:16:33.0924 3728	uagp35          (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
2011/03/04 12:16:34.0189 3728	udfs            (6348da98707ceda8a0dfb05820e17732) C:\Windows\system32\DRIVERS\udfs.sys
2011/03/04 12:16:34.0549 3728	uliagpkx        (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
2011/03/04 12:16:34.0846 3728	uliahci         (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
2011/03/04 12:16:35.0205 3728	UlSata          (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/03/04 12:16:35.0518 3728	ulsata2         (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/03/04 12:16:35.0908 3728	umbus           (3fb78f1d1dd86d87bececd9dffa24dd9) C:\Windows\system32\DRIVERS\umbus.sys
2011/03/04 12:16:36.0314 3728	USB-100         (2a3fa9ff6ec8485c98c179131e8a41a7) C:\Windows\system32\DRIVERS\RTL8150.SYS
2011/03/04 12:16:36.0768 3728	USBAAPL         (5c2bdc152bbab34f36473deaf7713f22) C:\Windows\system32\Drivers\usbaapl.sys
2011/03/04 12:16:37.0658 3728	usbccgp         (8bd3ae150d97ba4e633c6c5c51b41ae1) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/03/04 12:16:38.0143 3728	usbcir          (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/03/04 12:16:38.0533 3728	usbehci         (63fe924d8a1113c3ba6750693fbec7d3) C:\Windows\system32\DRIVERS\usbehci.sys
2011/03/04 12:16:38.0799 3728	usbhub          (5edec5510592c905e91817707dce62a2) C:\Windows\system32\DRIVERS\usbhub.sys
2011/03/04 12:16:39.0096 3728	usbohci         (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\DRIVERS\usbohci.sys
2011/03/04 12:16:39.0314 3728	usbprint        (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\DRIVERS\usbprint.sys
2011/03/04 12:16:39.0596 3728	usbscan         (b1f95285c08ddfe00c0b955462637ec7) C:\Windows\system32\DRIVERS\usbscan.sys
2011/03/04 12:16:39.0736 3728	USBSTOR         (fdbaabf07244c60b0f4e0a6e71a107c6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/03/04 12:16:39.0986 3728	usbuhci         (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/03/04 12:16:40.0299 3728	usbvideo        (0a6b81f01bc86399482e27e6fda7b33b) C:\Windows\system32\Drivers\usbvideo.sys
2011/03/04 12:16:40.0486 3728	vga             (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/03/04 12:16:40.0533 3728	VgaSave         (17a8f877314e4067f8c8172cc6d9101c) C:\Windows\System32\drivers\vga.sys
2011/03/04 12:16:40.0689 3728	viaagp          (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
2011/03/04 12:16:40.0846 3728	ViaC7           (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
2011/03/04 12:16:40.0893 3728	viaide          (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
2011/03/04 12:16:40.0955 3728	volmgr          (103e84c95832d0ed93507997cc7b54e8) C:\Windows\system32\drivers\volmgr.sys
2011/03/04 12:16:41.0096 3728	volmgrx         (294da8d3f965f6a8db934a83c7b461ff) C:\Windows\system32\drivers\volmgrx.sys
2011/03/04 12:16:41.0252 3728	volsnap         (11ef6c1caef76b685233450a126125d6) C:\Windows\system32\drivers\volsnap.sys
2011/03/04 12:16:41.0377 3728	vsmraid         (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
2011/03/04 12:16:41.0564 3728	WacomPen        (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/03/04 12:16:41.0611 3728	Wanarp          (6e1a5be9a0605f3d932ff35fba2b22b3) C:\Windows\system32\DRIVERS\wanarp.sys
2011/03/04 12:16:41.0658 3728	Wanarpv6        (6e1a5be9a0605f3d932ff35fba2b22b3) C:\Windows\system32\DRIVERS\wanarp.sys
2011/03/04 12:16:41.0814 3728	Wd              (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
2011/03/04 12:16:41.0861 3728	Wdf01000        (5dfdbd5ef13e4d95be6fc108e2ed4a67) C:\Windows\system32\drivers\Wdf01000.sys
2011/03/04 12:16:42.0268 3728	winachsf        (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
2011/03/04 12:16:42.0596 3728	WmiAcpi         (701a9f884a294327e9141d73746ee279) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/03/04 12:16:42.0752 3728	WpdUsb          (2d27171b16a577ef14c1273668753485) C:\Windows\system32\DRIVERS\wpdusb.sys
2011/03/04 12:16:42.0908 3728	ws2ifsl         (84620aecdcfd2a7a14e6263927d8c0ed) C:\Windows\system32\drivers\ws2ifsl.sys
2011/03/04 12:16:43.0111 3728	WUDFRd          (a2aafcc8a204736296d937c7c545b53f) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/03/04 12:16:43.0252 3728	================================================================================
2011/03/04 12:16:43.0252 3728	Scan finished
2011/03/04 12:16:43.0252 3728	================================================================================
2011/03/04 12:16:49.0330 2092	Deinitialize success

moment de grace · Answer

ok

Télécharge ZHPDiag ( de Nicolas coolman ). 
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html

ou

https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/


(outil de diagnostic)

 Double clique sur le fichier d'installation, puis installe le avec les paramètres par défaut ( N'oublie pas de cocher " Créer une icône sur le bureau " )
 
Lance ZHPDiag en double cliquant sur l'icône présente sur ton bureau (Clique droit -> Executer en tant qu'admin ( vista ) 

Clique sur la loupe en haut à gauche, puis laisse l'outil scanner. 

Une fois le scan terminé, clique sur l'icône en forme de disquette et enregistre le fichier sur ton bureau. 

Rend toi sur http://pjjoint.malekal.com/

Clique sur "Parcourir " 

Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau 

Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message

sysyl19 · Answer

https://pjjoint.malekal.com/files.php?id=2dfd09b10b155

sysyl19 · Answer

En tout cas maintenant il s'allume mon pc ^^

moment de grace · Answer

il n'y a rien sur ton rapport il est vierge

sysyl19 · Answer

Rapport de ZHPDiag v1.27.1626 par Nicolas Coolman, Update du 01/03/2011
Run by acer at 04/03/2011 12:22:21
Web site :  http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Contact : nicolascoolman@yahoo.fr

---\ Web Browser
MSIE: Internet Explorer v7.0.6000.16386 (Defaut)

---\ System Information
Windows Vista Home Premium Edition, 32-bit  (Build 6000)
Processor: x86 Family 15 Model 76 Stepping 2, AuthenticAMD
Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 765 MB (18% free)
System Restore: Activé (Enable)
System drive C: has 155 GB (69%) free of 223 GB

---\ Logged in mode
Computer Name: PC-DE-ACER
User Name: acer
All Users Names: Administrateur, acer, 
Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\ Environnement Variables
%AppData%=C:\Users\acer\AppData\Roaming
%LocalAppData%=C:\Users\acer\AppData\Local
%StartMenu%=C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu

---\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 155 Go of 223 Go)
D:\ CD-ROM drive (Not Inserted)


---\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK


---\ Recherche particulière de fichiers génériques
[MD5.FD8C53FB002217F6F888BCF6F5D7084D] - (.Microsoft Corporation - Explorateur Windows.) (.02/11/2006 10:45:07.) -- C:\Windows\Explorer.exe [2923520]
[MD5.D4385B03E8CCCEE6F0EE249F827C1F3E] - (.Microsoft Corporation - Application de démarrage de Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Wininit.exe [95744]
[MD5.214A456AADCC7DD1B36E2287BA71A9CA] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.02/11/2006 10:46:14.) -- C:\Windows\System32\wininet.dll [822272]
[MD5.9F75392B9128A91ABAFB044EA350BAAD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.02/11/2006 10:45:57.) -- C:\Windows\System32\Winlogon.exe [308224]
[MD5.4F4FCB8B6EA06784FB6D475B7EC7300F] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.02/11/2006 10:49:36.) -- C:\Windows\System32\drivers\atapi.sys [19048]
[MD5.3F379380A4A2637F559444E338CF1B51] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.02/11/2006 10:51:47.) -- C:\Windows\System32\drivers
tfs.sys [1056360]


---\ Processus lancés
[MD5.56F676060D70BA066459478824510BEA] - (.Cyberlink Corp. - PowerDVD RC Service.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe   [56928]
[MD5.2E9A1A6555C20424FC6DCC3AF21F4D68] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe   [3451496]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe   [249064]
[MD5.E5B82EA4B98828D50C61137BFA8793F1] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe   [421160]
[MD5.E4EFC2CDC71E0698CB81A4D60C3FADFF] - (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe   [1828136]
[MD5.6B87742F27B087AF7FD4ADC2DB685DE0] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe   [49152]
[MD5.4C08FB7ACB28689B586D986D3F5826CF] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe   [49152]
[MD5.FF81090B6EF1A42A19DF226632711D25] - (.Microsoft Corporation - Windows Update Automatic Updates.) -- C:\Windows\system32\wuauclt.exe   [41472]
[MD5.05CB3DA78A4BBD9B799A5957F9D101CC] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe   [68608]
[MD5.3976E0E6EE67FB71DD1F85CD235BA557] - (.Apple Inc. - Safari.) -- C:\Program Files\Safari\Safari.exe   [2388264]
[MD5.D804D54E70E15078DFF46F9543A5E151] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [632320]


---\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Pas de propriétaire - Pas de description.) -- C:\Program Files\iTunes\Mozilla Plugins
pitunes.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_24 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin
ew_plugin
pjp2.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com
phardwaredetection.dll


---\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKUS\S-1-5-21-51657724-1545939369-333480461-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.bing.com/?toHttps=1&redig=17DBE7D168544FA98200E890A8051984
R1 - HKUS\S-1-5-21-51657724-1545939369-333480461-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (7.00.6000.16386 (vista_rtm.061101-2205)) -- C:\Windows\system32\ieframe.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2


---\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll


---\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"


---\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll


---\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Pas de propriétaire - avast! WebRep Plugin.) -- C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll


---\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [NBKeyScan] . (.Nero AG - Nero BackItUp.) -- C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe 
O4 - HKLM\..\Run: [RemoteControl] . (.Cyberlink Corp. - PowerDVD RC Service.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe 
O4 - HKLM\..\Run: [LanguageShortcut] . (.Pas de propriétaire - Language Application.) -- C:\Program Files\CyberLink\PowerDVD\Language\Language.exe 
O4 - HKLM\..\Run: [avast5] . (.AVAST Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe 
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe 
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe 
O4 - HKLM\..\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe 
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe 
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe 
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe 
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe 
O4 - HKUS\S-1-5-21-51657724-1545939369-333480461-1000\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe 


---\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\acer\Desktop\AnumanLive.lnk . (.Anuman Interactive.)  -- C:\Users\acer\AppData\Roaming\Anuman Interactive\AnumanLive\AnumanLive.exe
O4 - Global Startup: C:\Users\acer\Desktop\Armagetron Advanced.lnk . (...)  -- C:\Program Files\Armagetron Advanced\armagetronad.exe
O4 - Global Startup: C:\Users\acer\Desktop\Auslogics Disk Defrag.lnk . (.Auslogics.)  -- C:\Program Files\Auslogics\Auslogics Disk Defrag\DiskDefrag.exe
O4 - Global Startup: C:\Users\acer\Desktop\Auslogics Registry Defrag.lnk . (.Auslogics.)  -- C:\Program Files\Auslogics\Auslogics Registry Defrag\RegistryDefrag.exe
O4 - Global Startup: C:\Users\acer\Desktop\Call of Duty Multiplayer.lnk . (...)  -- C:\Program Files\Call of Duty\CoDMP.exe
O4 - Global Startup: C:\Users\acer\Desktop\Call of Duty Single Player.lnk . (...)  -- C:\Program Files\Call of Duty\CoDSP.exe
O4 - Global Startup: C:\Users\acer\Desktop\CCleaner.lnk . (.Piriform Ltd.)  -- C:\Program Files\CCleaner\CCleaner.exe
O4 - Global Startup: C:\Users\acer\Desktop\GTA - San Andreas.lnk . (...)  -- C:\Program Files\GTA San Andreas + Tuto\gta_sa.exe
O4 - Global Startup: C:\Users\acer\Desktop\Jurassic Park Operation Genesis.lnk . (...)  -- C:\Program Files\Universal Interactive\Blue Tongue Software\Jurassic Park Operation Genesis\JPOG\SimJP.exe
O4 - Global Startup: C:\Users\acer\Desktop\Ordinateur - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\acer\Desktop\Pharaoh.lnk . (.Sierra.)  -- C:\SIERRA\Pharaon\Pharaoh.exe
O4 - Global Startup: C:\Users\acer\Desktop\Portal.lnk . (...)  -- C:\Users\acer\Desktop\PoRTaL\PLAY_PoRTaL.bat
O4 - Global Startup: C:\Users\acer\Desktop\SAMP.lnk . (...)  -- C:\Program Files\GTA San Andreas + Tuto\samp.exe
O4 - Global Startup: C:\Users\acer\Desktop\Star Wars - Battlefront II.lnk . (...)  -- C:\Program Files\LucasArts\Star Wars Battlefront II\GameData\BattlefrontII.exe
O4 - Global Startup: C:\Users\acer\Desktop\Star Wars - Battlefront.lnk . (...)  -- C:\Program Files\Star Wars Battlefront\GameData\Battlefront.exe
O4 - Global Startup: C:\Users\acer\Desktop\Star Wars - Empire at War.lnk . (.Lucasfilm Entertainment Company, Ltd..)  -- C:\Program Files\Star Wars Empire at War\GameData\sweaw.exe
O4 - Global Startup: C:\Users\acer\Desktop\Trespasser.lnk . (.DreamWorks Interactive.)  -- C:\Program Files\DreamWorks Interactive\Trespasser	respass.exe
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...)  -- C:\Windows\Installer\{6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}\SafariIco.exe
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero Home Essentials SE.lnk . (.Nero AG.)  -- C:\Program Files\Nero\Nero8\Nero Home\NeroHome.exe
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Nero StartSmart Essentials.lnk . (.Nero AG.)  -- C:\Program Files\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk - Clé orpheline
O4 - Global Startup: C:\Users\acer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk - Clé orpheline


---\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32
apinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll


---\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab


---\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{4E95AD63-330D-4AE5-B2B2-AB0A93A36A43}: DhcpNameServer = 7.254.254.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{BA497584-ECD1-4CD5-B546-B9492F8498B4}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{EC28C817-65FC-407D-B8D0-B91CB52AC53A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{4E95AD63-330D-4AE5-B2B2-AB0A93A36A43}: DhcpNameServer = 7.254.254.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{BA497584-ECD1-4CD5-B546-B9492F8498B4}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{EC28C817-65FC-407D-B8D0-B91CB52AC53A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{4E95AD63-330D-4AE5-B2B2-AB0A93A36A43}: DhcpNameServer = 7.254.254.254
O17 - HKLM\System\CS3\Services\Tcpip\..\{BA497584-ECD1-4CD5-B546-B9492F8498B4}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{EC28C817-65FC-407D-B8D0-B91CB52AC53A}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1


---\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\system32\webcheck.dll


---\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll


---\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service:  (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service:  (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\system32\Ati2evxx.exe
O23 - Service:  (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service:  (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service:  (iPod Service) . (.Apple Inc. - iPodService Module (32-bit).) - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service:  (maconfservice) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service:  (Nero BackItUp Scheduler 3) . (.Nero AG - Nero BackItUp.) - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service:  (NMIndexingService) . (.Nero AG - Nero Home.) - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service:  (PLFlash DeviceIoControl Service) . (.Prolific Technology Inc. - PLFlash DeviceIoControl Service.) - C:\Windows\system32\IoctlSvc.exe
O23 - Service:  (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files\CyberLink\Shared Files\RichVideo.exe


---\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) -  (.not file.)


---\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [d225e228] (.Pas de propriétaire.) -- C:\Users\acer\AppData\Local\Temp\setup2770665384.exe (.not file.)


---\ Pilotes lancés au démarrage (O41)
O41 - Driver:  (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver:  (DfsC) . (.Microsoft Corporation - DFS Client MUP Surrogate Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver:  (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver:  (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver:  (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS
etbios.sys
O41 - Driver:  (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS
etbt.sys
O41 - Driver:  (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers
siproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver:  (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERSasacd.sys
O41 - Driver:  (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERSdbss.sys
O41 - Driver:  (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver:  (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\driversdpencdd.sys
O41 - Driver: C:\Windows\system32	cpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: C:\Windows\system32	cpipcfg.dll (Tcpip) . (.Microsoft Corporation - TCP/IP Driver.) - C:\Windows\System32\drivers	cpip.sys
O41 - Driver: C:\Windows\system32	cpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS	dx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS	ermdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys


---\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9.4.2 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A94000000001}
O42 - Logiciel: Age of Mythology - (.Pas de propriétaire.) [HKLM] -- Age of Mythology 1.0
O42 - Logiciel: Age of Mythology - The Titans Expansion - (.Pas de propriétaire.) [HKLM] -- Age of Mythology Expansion Pack 1.0
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {EE6097DD-05F4-4178-9719-D3170BF098E8}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {308B6AEA-DE50-4666-996D-0FA461719D6B}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {C41300B9-185D-475E-BFEC-39EF732F19B1}
O42 - Logiciel: Armagetron Advanced 0.2.8.2.1.gcc - (.Armagetron Advanced Team.) [HKLM] -- Armagetron Advanced
O42 - Logiciel: Atheros for Acer MyAllm Driver v7.1.0.90 Installation Program - (.Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Auslogics Disk Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1
O42 - Logiciel: Auslogics Registry Defrag - (.Auslogics Software Pty Ltd.) [HKLM] -- {D627784F-B3EE-44E8-96B1-9509B991EA34}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {2A981294-F14C-4F0F-9627-D793270922F8}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Call of Duty - (.Pas de propriétaire.) [HKLM] -- Call of Duty
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM] -- {8D7133DE-27D2-47E5-B248-4180278D32AA}
O42 - Logiciel: DVD Suite - (.Pas de propriétaire.) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: GameSpy Arcade - (.Pas de propriétaire.) [HKLM] -- GameSpy Arcade
O42 - Logiciel: IZArc 4.1.2 - (.Ivan Zahariev.) [HKLM] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1
O42 - Logiciel: Java(TM) 6 Update 24 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216023FF}
O42 - Logiciel: Jurassic Park Operation Genesis - (.Universal Interactive.) [HKLM] -- InstallShield_{A347C572-F7B4-43A3-BD51-FFC99184F70D}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: MSXML4 Parser - (.Microsoft Game Studios.) [HKLM] -- {01501EBA-EC35-4F9F-8889-3BE346E5DA13}
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {81E95872-8357-4363-A764-8F98B28340C5}
O42 - Logiciel: Microsoft Halo - (.Microsoft.) [HKLM] -- Halo
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {7299052b-02a4-4627-81f2-1818da5d550d}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: NVIDIA PhysX v8.09.04 - (.NVIDIA Corporation.) [HKLM] -- {A7E07C2B-2220-4415-87E3-784D5814BC93}
O42 - Logiciel: Nero 8 Essentials - (.Nero AG.) [HKLM] -- {F0AAE3C5-D70C-4F3C-8B6A-EC3992921036}
O42 - Logiciel: OpenOffice.org 3.1 - (.OpenOffice.org.) [HKLM] -- {0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
O42 - Logiciel: Patch Jpogland v3.0 - (.Jpogland.) [HKLM] -- {20066218-72F3-4E21-8FB2-6E042F205FB0}_is1
O42 - Logiciel: Pharaon - (.Pas de propriétaire.) [HKLM] -- Pharaoh
O42 - Logiciel: Pharaon - (.Pas de propriétaire.) [HKLM] -- Pharaon
O42 - Logiciel: PowerDVD - (.CyberLink Corporation.) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM] -- {57752979-A1C9-4C02-856B-FBB27AC4E02C}
O42 - Logiciel: Safari - (.Apple Inc..) [HKLM] -- {6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}
O42 - Logiciel: Star Wars Battlefront II - (.LucasArts.) [HKLM] -- {3D374523-CFDE-461A-827E-2A102E2AB365}
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM] -- {B67DE614-BDB8-4CB1-B3C3-8BD5EED1FDE1}
O42 - Logiciel: Trespasser - (.Pas de propriétaire.) [HKLM] -- DreamWorks Interactive: Trespasser
O42 - Logiciel: VCRedistSetup - (.Nero AG.) [HKLM] -- {3921A67A-5AB1-4E48-9444-C71814CF3027}
O42 - Logiciel: VLC media player 1.1.5 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Xfire (remove only) - (.Pas de propriétaire.) [HKLM] -- Xfire
O42 - Logiciel: avast! Free Antivirus - (.AVAST Software.) [HKLM] -- avast
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {881F5DE8-9367-4B81-A325-E91BBC6472F9}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}

---\ HKCU & HKLM Software Keys
[HKCU\Software\AC3Filter]
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI Technologies Inc.]
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Auslogics]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Cucusoft, Inc.]
[HKCU\Software\Cyberlink]
[HKCU\Software\DT Soft]
[HKCU\Software\Digital River]
[HKCU\Software\GNU]
[HKCU\Software\GameSpy]
[HKCU\Software\Gearbox Software]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IZSoftware]
[HKCU\Software\Intel]
[HKCU\Software\Inzone Software]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\Macromedia]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Opendisc]
[HKCU\Software\Orange]
[HKCU\Software\Petroglyph]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\SAMP]
[HKCU\Software\Stdin2]
[HKCU\Software\Sysinternals]
[HKCU\Software\System Requirements Lab]
[HKCU\Software\Totem]
[HKCU\Software\Tunngle.net]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Wget]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Xfire]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\cybelsoft]
[HKLM\Software\8]
[HKLM\Software\y]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ALWIL Software]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVAST Software]
[HKLM\Software\Activision]
[HKLM\Software\Adobe]
[HKLM\Software\Ahead]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\Audible]
[HKLM\Software\Aureal]
[HKLM\Software\BTS]
[HKLM\Software\C07ft5Y]
[HKLM\Software\CXT]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Conexant]
[HKLM\Software\CyberLink]
[HKLM\Software\DT Soft]
[HKLM\Software\DreamWorks Interactive]
[HKLM\Software\ENE Technology Inc]
[HKLM\Software\GEAR Software]
[HKLM\Software\GNU]
[HKLM\Software\Google]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Lake]
[HKLM\Software\Licenses]
[HKLM\Software\LucasArts]
[HKLM\Software\Macromedia]
[HKLM\Software\Matrox]
[HKLM\Software\Monolith Productions]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\NeroDigital]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Sierra On-Line]
[HKLM\Software\Sierra OnLine]
[HKLM\Software\Sonic]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\Swearware]
[HKLM\Software\Tunngle.net]
[HKLM\Software\Valve]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\cybelsoft]


---\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 18/01/2011 - 10:29:12 - [162742134] ----D- C:\Program Files\Adobe
O43 - CFD: 19/01/2011 - 14:17:38 - [134543615] ----D- C:\Program Files\AGEIA Technologies
O43 - CFD: 08/01/2011 - 16:41:40 - [147937808] ----D- C:\Program Files\Alwil Software
O43 - CFD: 25/01/2011 - 18:24:52 - [2306366] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 29/01/2011 - 18:22:16 - [6782253] ----D- C:\Program Files\Armagetron Advanced
O43 - CFD: 08/01/2011 - 13:41:24 - [1078] ----D- C:\Program Files\Atheros
O43 - CFD: 05/02/2011 - 10:10:42 - [14368878] ----D- C:\Program Files\ATI
O43 - CFD: 05/02/2011 - 10:15:40 - [91210258] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 21/02/2011 - 13:15:16 - [21132502] ----D- C:\Program Files\Auslogics
O43 - CFD: 25/01/2011 - 18:21:30 - [617029] ----D- C:\Program Files\Bonjour
O43 - CFD: 02/02/2011 - 19:40:10 - [1249996506] ----D- C:\Program Files\Call of Duty
O43 - CFD: 08/01/2011 - 16:40:48 - [2848408] ----D- C:\Program Files\CCleaner
O43 - CFD: 04/03/2011 - 10:53:42 - [540742684] ----D- C:\Program Files\Common Files
O43 - CFD: 25/01/2011 - 18:48:44 - [14216193] ----D- C:\Program Files\Cucusoft
O43 - CFD: 08/01/2011 - 16:36:26 - [92658694] ----D- C:\Program Files\CyberLink
O43 - CFD: 29/01/2011 - 13:06:42 - [196436623] ----D- C:\Program Files\DreamWorks Interactive
O43 - CFD: 08/01/2011 - 06:20:10 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 12/01/2011 - 17:57:12 - [14219039] ----D- C:\Program Files\GameSpy Arcade
O43 - CFD: 15/01/2011 - 13:15:16 - [5052883046] ----D- C:\Program Files\GTA San Andreas + Tuto
O43 - CFD: 22/01/2011 - 18:12:12 - [25996021] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 25/01/2011 - 18:27:12 - [3625045] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 25/01/2011 - 18:28:40 - [1856115] ----D- C:\Program Files\iPod
O43 - CFD: 25/01/2011 - 18:29:34 - [128525040] ----D- C:\Program Files\iTunes
O43 - CFD: 12/01/2011 - 17:24:06 - [14314681] ----D- C:\Program Files\IZArc
O43 - CFD: 17/02/2011 - 18:51:56 - [89315918] ----D- C:\Program Files\Java
O43 - CFD: 08/01/2011 - 16:32:36 - [16664352] ----D- C:\Program Files\JRE
O43 - CFD: 12/01/2011 - 17:57:24 - [9160437447] ----D- C:\Program Files\LucasArts
O43 - CFD: 05/02/2011 - 09:46:44 - [5644596] ----D- C:\Program Files\ma-config.com
O43 - CFD: 19/01/2011 - 14:38:46 - [2985801128] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 02/11/2006 - 13:42:34 - [99153518] ----D- C:\Program Files\Movie Maker
O43 - CFD: 02/11/2006 - 13:37:36 - [12167] ----D- C:\Program Files\MSBuild
O43 - CFD: 02/11/2006 - 13:37:36 - [3272760] ----D- C:\Program Files\MSN
O43 - CFD: 12/01/2011 - 18:31:34 - [0] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 08/01/2011 - 16:15:22 - [388536013] ----D- C:\Program Files\Nero
O43 - CFD: 08/01/2011 - 16:21:08 - [0] ----D- C:\Program Files\NeroInstall.bak
O43 - CFD: 08/01/2011 - 16:32:36 - [385258936] ----D- C:\Program Files\OpenOffice.org 3
O43 - CFD: 25/01/2011 - 18:27:10 - [76322555] ----D- C:\Program Files\QuickTime
O43 - CFD: 02/11/2006 - 13:37:36 - [25745834] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 12/01/2011 - 16:18:00 - [42295319] ----D- C:\Program Files\Safari
O43 - CFD: 15/01/2011 - 12:57:52 - [2852040673] ----D- C:\Program Files\Star Wars Battlefront
O43 - CFD: 15/01/2011 - 13:06:02 - [2557349581] ----D- C:\Program Files\Star Wars Empire at War
O43 - CFD: 14/01/2011 - 20:26:42 - [482304] ----D- C:\Program Files\SystemRequirementsLab
O43 - CFD: 02/11/2006 - 14:01:56 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 16/01/2011 - 10:35:24 - [497050065] ----D- C:\Program Files\Universal Interactive
O43 - CFD: 12/01/2011 - 16:39:46 - [80529230] ----D- C:\Program Files\VideoLAN
O43 - CFD: 02/11/2006 - 13:42:34 - [1016832] ----D- C:\Program Files\Windows Calendar
O43 - CFD: 02/11/2006 - 13:42:34 - [2761216] ----D- C:\Program Files\Windows Collaboration
O43 - CFD: 02/11/2006 - 13:42:34 - [4453808] ----D- C:\Program Files\Windows Defender
O43 - CFD: 02/11/2006 - 13:42:34 - [7078008] ----D- C:\Program Files\Windows Journal
O43 - CFD: 02/11/2006 - 13:42:34 - [9073256] ----D- C:\Program Files\Windows Mail
O43 - CFD: 02/11/2006 - 13:42:34 - [4492391] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 08/01/2011 - 06:20:10 - [7940176] ----D- C:\Program Files\Windows NT
O43 - CFD: 02/11/2006 - 13:42:34 - [13463714] ----D- C:\Program Files\Windows Photo Gallery
O43 - CFD: 02/11/2006 - 13:42:34 - [6581092] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 12/01/2011 - 17:56:38 - [5447542] -S--D- C:\Program Files\Xfire
O43 - CFD: 04/03/2011 - 12:22:50 - [3543477] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 18/01/2011 - 10:29:54 - [6281214] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 25/01/2011 - 18:28:34 - [94762864] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 16/01/2011 - 09:37:12 - [4880333] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 17/02/2011 - 18:52:52 - [1247175] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 08/01/2011 - 16:42:12 - [196304329] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 08/01/2011 - 16:17:26 - [137579274] ----D- C:\Program Files\Common Files\Nero
O43 - CFD: 02/11/2006 - 12:18:34 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 02/11/2006 - 12:18:34 - [41100711] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 02/11/2006 - 13:42:34 - [8687634] ----D- C:\Program Files\Common Files\System
O43 - CFD: 19/01/2011 - 14:14:16 - [49896448] ----D- C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 18/01/2011 - 10:29:54 - [763] ----D- C:\ProgramData\Adobe
O43 - CFD: 08/01/2011 - 16:41:40 - [20921912] ----D- C:\ProgramData\Alwil Software
O43 - CFD: 25/01/2011 - 18:36:32 - [51412207] ----D- C:\ProgramData\Apple
O43 - CFD: 25/01/2011 - 18:28:32 - [85121890] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 29/01/2011 - 18:22:14 - [0] ----D- C:\ProgramData\Armagetron
O43 - CFD: 05/02/2011 - 10:16:54 - [188] ----D- C:\ProgramData\ATI
O43 - CFD: 08/01/2011 - 06:20:10 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 12/01/2011 - 16:46:18 - [15225] ----D- C:\ProgramData\CyberLink
O43 - CFD: 30/01/2011 - 16:16:10 - [1136] ----D- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 08/01/2011 - 06:20:10 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 05/02/2011 - 09:46:24 - [1220418] ----D- C:\ProgramData\ma-config.com
O43 - CFD: 08/01/2011 - 06:20:10 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 12/01/2011 - 16:07:44 - [369395778] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 08/01/2011 - 06:20:10 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 08/01/2011 - 16:15:22 - [5305660] ----D- C:\ProgramData\Nero
O43 - CFD: 04/02/2011 - 07:52:42 - [144] ----D- C:\ProgramData\PC Drivers HeadQuarters Inc
O43 - CFD: 02/11/2006 - 14:02:04 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 12/01/2011 - 16:18:22 - [189] ----D- C:\ProgramData\Sun
O43 - CFD: 02/03/2011 - 17:47:38 - [0] ---AD- C:\ProgramData\TEMP
O43 - CFD: 02/11/2006 - 14:02:06 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 25/01/2011 - 18:53:34 - [0] ----D- C:\ProgramData\Tipard Studio
O43 - CFD: 12/02/2011 - 17:30:26 - [0] ----D- C:\ProgramData\Tunngle
O43 - CFD: 24/02/2011 - 14:39:18 - [146620160] ----D- C:\Users\acer\AppData\Roaming\.minecraft
O43 - CFD: 18/01/2011 - 10:00:38 - [686101] ----D- C:\Users\acer\AppData\Roaming\Adobe
O43 - CFD: 19/01/2011 - 13:28:14 - [347794] ----D- C:\Users\acer\AppData\Roaming\Anuman Interactive
O43 - CFD: 25/01/2011 - 18:37:28 - [428160990] ----D- C:\Users\acer\AppData\Roaming\Apple Computer
O43 - CFD: 29/01/2011 - 18:27:32 - [63452] ----D- C:\Users\acer\AppData\Roaming\Armagetron
O43 - CFD: 05/02/2011 - 10:16:54 - [0] ----D- C:\Users\acer\AppData\Roaming\ATI
O43 - CFD: 21/02/2011 - 13:15:22 - [24766] ----D- C:\Users\acer\AppData\Roaming\Auslogics
O43 - CFD: 14/01/2011 - 20:07:12 - [21412] ----D- C:\Users\acer\AppData\Roaming\codeblocks
O43 - CFD: 12/01/2011 - 16:46:20 - [2571] ----D- C:\Users\acer\AppData\Roaming\CyberLink
O43 - CFD: 30/01/2011 - 16:21:44 - [880] ----D- C:\Users\acer\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 13/01/2011 - 20:08:12 - [0] ----D- C:\Users\acer\AppData\Roaming\GetRightToGo
O43 - CFD: 21/01/2011 - 19:10:38 - [169] ----D- C:\Users\acer\AppData\Roaming\gtk-2.0
O43 - CFD: 20/01/2011 - 14:18:20 - [4150] ----D- C:\Users\acer\AppData\Roaming\Icones
O43 - CFD: 08/01/2011 - 06:23:34 - [0] ----D- C:\Users\acer\AppData\Roaming\Identities
O43 - CFD: 08/01/2011 - 13:40:52 - [0] ----D- C:\Users\acer\AppData\Roaming\InstallShield
O43 - CFD: 25/01/2011 - 18:49:30 - [579514] ----D- C:\Users\acer\AppData\Roaming\iPhone Tool Kits
O43 - CFD: 08/01/2011 - 13:36:06 - [4778] ----D- C:\Users\acer\AppData\Roaming\Macromedia
O43 - CFD: 02/11/2006 - 13:37:36 - [0] ----D- C:\Users\acer\AppData\Roaming\Media Center Programs
O43 - CFD: 27/02/2011 - 22:15:40 - [443811] -S--D- C:\Users\acer\AppData\Roaming\Microsoft
O43 - CFD: 12/01/2011 - 16:40:20 - [60575] ----D- C:\Users\acer\AppData\Roaming\Nero
O43 - CFD: 14/01/2011 - 20:42:46 - [3219536] ----D- C:\Users\acer\AppData\Roaming\OpenOffice.org
O43 - CFD: 15/01/2011 - 13:10:02 - [9445236] ----D- C:\Users\acer\AppData\Roaming\Petroglyph
O43 - CFD: 14/01/2011 - 20:26:30 - [319800] ----D- C:\Users\acer\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 12/01/2011 - 17:27:26 - [2122] ----D- C:\Users\acer\AppData\Roaming\Teeworlds
O43 - CFD: 12/02/2011 - 17:42:02 - [2330] ----D- C:\Users\acer\AppData\Roaming\Tunngle
O43 - CFD: 26/02/2011 - 22:17:18 - [1249505] ----D- C:\Users\acer\AppData\Roaming\vlc
O43 - CFD: 28/02/2011 - 12:18:28 - [12] ----D- C:\Users\acer\AppData\Roaming\WinRAR
O43 - CFD: 12/01/2011 - 17:56:38 - [32] ----D- C:\Users\acer\AppData\Roaming\Xfire


---\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.B6E5773ACBBF2BD463B661532F4C0ABB] - 04/03/2011 - 12:16:49 ---A- . (...) -- C:\TDSSKiller.2.4.20.0_04.03.2011_12.15.55_log.txt   [59150]
O44 - LFC:[MD5.90ED1200D8DC4E7700FCFD7F64EE1200] - 04/03/2011 - 12:11:38 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1196581]
O44 - LFC:[MD5.1247E4ED9BA08355F3DBEB5FE043CD06] - 04/03/2011 - 12:05:47 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.2E03BCA46D3D1387F66F0E8861B8B30A] - 04/03/2011 - 12:05:36 ---A- . (...) -- C:\Windows\PFRO.log   [4158]
O44 - LFC:[MD5.73DAA14EA4635FBD78AD7A89629850CA] - 04/03/2011 - 12:03:59 ---A- . (...) -- C:\TDSSKiller.2.4.20.0_04.03.2011_11.58.32_log.txt   [59756]
O44 - LFC:[MD5.CB720EEE7411CCE28FD06733652213A4] - 04/03/2011 - 11:38:27 --HA- . (...) -- C:\Windows\System32\mlfcache.dat   [82196]
O44 - LFC:[MD5.FEB14652DA5C6295A65D71A18C36ADD8] - 04/03/2011 - 11:13:38 ---A- . (...) -- C:\ComboFix.txt   [9403]
O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 04/03/2011 - 11:06:48 ---A- . (...) -- C:\Windows\system.ini   [215]
O44 - LFC:[MD5.AE72E8619CB31D84DA25E2435E55003C] - 04/03/2011 - 10:17:46 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe   [31232]
O44 - LFC:[MD5.01D95A1F8CF13D07CC564AABB36BCC0B] - 04/03/2011 - 10:17:46 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe   [161792]
O44 - LFC:[MD5.B7517DB073B28F5696A1E5528ABEB5D0] - 04/03/2011 - 10:17:46 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe   [136704]
O44 - LFC:[MD5.B1A9CF0B6F80611D31987C247EC630B4] - 04/03/2011 - 10:17:45 ---A- . (.SteelWerX - Freeware implementation of XCACLS.) -- C:\Windows\SWXCACLS.exe   [212480]
O44 - LFC:[MD5.0CE9168B2D269F8CBA346B1846AD8740] - 04/03/2011 - 09:49:25 ---A- . (...) -- C:\Windows
tbtlog.txt   [1231252]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 03/03/2011 - 16:26:33 ---A- . (...) -- C:\Windows\System32\config.nt   [2577]
O44 - LFC:[MD5.6CBACA685A4221B59F8D4B519FAF3FD8] - 03/03/2011 - 14:15:58 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1512256]
O44 - LFC:[MD5.804E1719ED5B679523D1FF2AC0F79BEA] - 03/03/2011 - 14:15:58 ---A- . (...) -- C:\Windows\System32\perfc009.dat   [103924]
O44 - LFC:[MD5.FB485590099151791690AB183505681E] - 03/03/2011 - 14:15:58 ---A- . (...) -- C:\Windows\System32\perfc00C.dat   [117572]
O44 - LFC:[MD5.13D5D823B4CEC9B854787886898B0F11] - 03/03/2011 - 14:15:58 ---A- . (...) -- C:\Windows\System32\perfh009.dat   [610142]
O44 - LFC:[MD5.3993D97449584894FC310269C22338A6] - 03/03/2011 - 14:15:58 ---A- . (...) -- C:\Windows\System32\perfh00C.dat   [690832]
O44 - LFC:[MD5.3A856BD325C0342E989CEC81E809041E] - 03/03/2011 - 14:13:19 ---A- . (...) -- C:\Windows\setupact.log   [2105]
O44 - LFC:[MD5.0439C6170F7F6355BB5275C9CAA6050F] - 23/02/2011 - 16:04:21 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr   [40648]
O44 - LFC:[MD5.C6E1D434F1F3A5226B0DDFDF84B12677] - 23/02/2011 - 16:04:17 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe   [190016]
O44 - LFC:[MD5.9BE41C1AE8BC481EB662D85C98D979C2] - 23/02/2011 - 15:56:55 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys   [371544]
O44 - LFC:[MD5.4B1A54BA2BC5873A774DF6B70AB8B0B3] - 23/02/2011 - 15:56:45 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys   [301528]
O44 - LFC:[MD5.C7F1CEA32766184911293F4E1EE653F5] - 23/02/2011 - 15:55:49 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\System32\drivers\aswTdi.sys   [49240]
O44 - LFC:[MD5.B6A9373619D851BE80FB5F1B5EED0D4E] - 23/02/2011 - 15:55:10 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\System32\drivers\aswRdr.sys   [25432]
O44 - LFC:[MD5.B0F137F664F10829CD2380B0E20E7C29] - 23/02/2011 - 15:55:03 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys   [53592]
O44 - LFC:[MD5.1C2E6BB4FE8621B1B863855B02BC33EB] - 23/02/2011 - 15:54:55 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\System32\drivers\aswFsBlk.sys   [19544]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 21/02/2011 - 17:27:36 ---A- . (...) -- C:\Windows\setuperr.log   [0]
O44 - LFC:[MD5.68288DA42BC798992A42CD59061B199D] - 17/02/2011 - 18:52:04 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe   [145184]
O44 - LFC:[MD5.5BF8BA1B854D7DFCE1F47E58852B3D8F] - 17/02/2011 - 18:52:04 ---A- . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe   [145184]
O44 - LFC:[MD5.58DC5CBDC930AF070B177843810F2C85] - 17/02/2011 - 18:52:04 ---A- . (.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe   [157472]
O44 - LFC:[MD5.79361C48047BB7276778E775FFC8AD6B] - 17/02/2011 - 18:51:55 ---A- . (...) -- C:\Windows\System32\jupdate-1.6.0_24-b07.log   [3199]
O44 - LFC:[MD5.6427648C87E162F5FCD1D79EACC4BBFF] - 13/02/2011 - 10:18:17 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [253608]
O44 - LFC:[MD5.B7AEE68D2E867CBF69B649B18FCEDBBB] - 12/02/2011 - 17:18:16 ---A- . (.Tunngle.net - TAP-Win32 Virtual Network Driver.) -- C:\Windows\System32\drivers	ap0901t.sys   [27136]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 05/02/2011 - 10:13:12 ---A- . (...) -- C:\Windows\ativpsrm.bin   [0]
O44 - LFC:[MD5.9DAA7218961710008D7385B01BD3F386] - 08/11/2010 - 01:20:24 ---A- . (...) -- C:\Windows\MBR.exe   [89088]
O44 - LFC:[MD5.F1FBA6185A6A2BC6456970914875078E] - 26/04/2010 - 15:58:12 ---A- . (...) -- C:\Windows\PEV.exe   [256512]
O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 08:00:00 ---A- . (...) -- C:\Windows\grep.exe   [80412]
O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 08:00:00 ---A- . (...) -- C:\Windows\sed.exe   [98816]
O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 08:00:00 ---A- . (...) -- C:\Windows\zip.exe   [68096]


---\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"wdmaud.drv"="Pilote de fonction UAA 1.1 Microsoft pour High Definition Audio" . (.Pas de propriétaire - Pas de description.) -- (.not file.)


---\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll


---\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0


---\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0


---\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys   [420968]
O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys   [297576]
O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys   [98408]
O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys   [147048]
O58 - SDL:[MD5.90395B64600EBB4552E26E178C94B2E4] - 02/11/2006 - 10:49:20 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys   [14952]
O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys   [67688]
O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys   [67688]
O58 - SDL:[MD5.1C2E6BB4FE8621B1B863855B02BC33EB] - 23/02/2011 - 15:54:55 ---A- . (.AVAST Software - avast! File System Access Blocking Driver.) -- C:\Windows\system32\drivers\aswFsBlk.sys   [19544]
O58 - SDL:[MD5.B0F137F664F10829CD2380B0E20E7C29] - 23/02/2011 - 15:55:03 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\system32\drivers\aswMonFlt.sys   [53592]
O58 - SDL:[MD5.B6A9373619D851BE80FB5F1B5EED0D4E] - 23/02/2011 - 15:55:10 ---A- . (.AVAST Software - avast! TDI RDR Driver.) -- C:\Windows\system32\drivers\aswRdr.sys   [25432]
O58 - SDL:[MD5.9BE41C1AE8BC481EB662D85C98D979C2] - 23/02/2011 - 15:56:55 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\system32\drivers\aswSnx.sys   [371544]
O58 - SDL:[MD5.4B1A54BA2BC5873A774DF6B70AB8B0B3] - 23/02/2011 - 15:56:45 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\system32\drivers\aswSP.sys   [301528]
O58 - SDL:[MD5.C7F1CEA32766184911293F4E1EE653F5] - 23/02/2011 - 15:55:49 ---A- . (.AVAST Software - avast! TDI Filter Driver.) -- C:\Windows\system32\drivers\aswTdi.sys   [49240]
O58 - SDL:[MD5.889E7F06279FD16549B77628918FF666] - 10/11/2006 - 14:38:22 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athr.sys   [506368]
O58 - SDL:[MD5.7DB96C2801A78513BDC133C25D07929E] - 11/02/2010 - 08:42:22 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\system32\drivers\atikmdag.sys   [4450816]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys   [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys   [5248]
O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys   [71808]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys   [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys   [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys   [11904]
O58 - SDL:[MD5.45201046C776FFDAF3FC8A0029C581C8] - 02/11/2006 - 10:49:28 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys   [16488]
O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys   [71272]
O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel(R) PRO/1000.) -- C:\Windows\system32\drivers\E1G60I32.sys   [117760]
O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys   [316520]
O58 - SDL:[MD5.1FA3F9DF8983873746FA6B72DD7E3C2C] - 08/01/2011 - 13:40:07 ---A- . (.ENE Technology Inc. - ENE PCI Memory Stick Card Reader Driver.) -- C:\Windows\system32\drivers\EMS7SK.sys   [62208]
O58 - SDL:[MD5.9C7487253AAD6BF61F9BC83D50E32CCC] - 08/01/2011 - 13:40:07 ---A- . (.ENE Technology Inc. - ENE PCI Secure Digital / MMC Card Reader Driver.) -- C:\Windows\system32\drivers\ESD7SK.sys   [42240]
O58 - SDL:[MD5.99589D975DA04F8BD31F124428FCC797] - 08/01/2011 - 13:40:07 ---A- . (.ENE Technology Inc. - ENE PCI SmartMedia / XD Card Reader Driver.) -- C:\Windows\system32\drivers\ESM7SK.sys   [76928]
O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 13:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys   [26600]
O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys   [37480]
O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys   [232040]
O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys   [41576]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys   [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys   [35944]
O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys   [65640]
O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys   [65640]
O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys   [65640]
O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys   [28776]
O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys   [33384]
O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers
frd960.sys   [45160]
O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers
trigdigi.sys   [20608]
O58 - SDL:[MD5.E69E946F80C1C31C53003BFBF50CBB7C] - 02/11/2006 - 10:50:24 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers
vraid.sys   [88680]
O58 - SDL:[MD5.9E0BA19A28C498A6D323D065DB76DFFC] - 02/11/2006 - 10:50:13 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers
vstor.sys   [40040]
O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys   [900712]
O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys   [106088]
O58 - SDL:[MD5.2A3FA9FF6EC8485C98C179131E8A41A7] - 22/02/2002 - 12:10:48 ---A- . (.Realtek - NDIS 5.0 driver.) -- C:\Windows\system32\drivers\RTL8150.SYS   [26505]
O58 - SDL:[MD5.959EF612D2CCFDB6D9E443F8E3655013] - 02/11/2006 - 08:30:56 ---A- . (.Realtek Semiconductor Corporation - Realtek 10/100 NDIS 5.1 Driver.) -- C:\Windows\system32\drivers\Rtnicxp.sys   [47104]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys   [20480]
O58 - SDL:[MD5.CEDD6F4E7D84E9F98B34B3FE988373AA] - 02/11/2006 - 10:50:10 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys   [38504]
O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys   [71784]
O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys   [35944]
O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys   [31848]
O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys   [34920]
O58 - SDL:[MD5.B7AEE68D2E867CBF69B649B18FCEDBBB] - 16/09/2009 - 07:02:40 ---A- . (.Tunngle.net - TAP-Win32 Virtual Network Driver.) -- C:\Windows\system32\drivers	ap0901t.sys   [27136]
O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronic

moment de grace · Answer

Rend toi sur http://pjjoint.malekal.com/

Clique sur "Parcourir " 

Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau 

Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message

sysyl19 · Answer

Cet hebergeur ne marche pas

moment de grace · Answer

il fonctionne chez moi

* Télécharge load_tdsskiller (de Loup Blanc) sur ton Bureau

http://fradesch.perso.cegetel.net/transf/Load_tdsskiller.exe
 
* Lance load_tdsskiller en faisant un double-clic dessus / Lance par un clic-droit dessus ? Exécuter en temps qu'administrateur 
* L'outil va se connecter pour télécharger une copie à jour de TDSSKiller, puis va lancer une analyse 
*  Lorsque l'outil a terminé son travail d'inspection, si des nuisibles ("Malicious objects") ont été trouvés, vérifier que l'option (Cure) est sélectionnée, 
*  Si des objects suspects ("Suspicious objects") ont été détectés, sur l'écran de demande de confirmation, modifier l'action à entreprendre et indiquer Quarantine (au lieu de Skip),
* A la fin, il te sera demandé d'appuyer sur une touche, puis le rapport s'affichera automatiquement : copie-colle son contenu dans ta prochaine réponse (C:	dsskillereport.txt)

sysyl19 · Answer

2011/03/19 15:15:15.0540 1860	TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/03/19 15:15:16.0008 1860	================================================================================
2011/03/19 15:15:16.0008 1860	SystemInfo:
2011/03/19 15:15:16.0008 1860	
2011/03/19 15:15:16.0008 1860	OS Version: 6.0.6001 ServicePack: 1.0
2011/03/19 15:15:16.0008 1860	Product type: Workstation
2011/03/19 15:15:16.0008 1860	ComputerName: PC-DE-ACER
2011/03/19 15:15:16.0008 1860	UserName: acer
2011/03/19 15:15:16.0008 1860	Windows directory: C:\Windows
2011/03/19 15:15:16.0008 1860	System windows directory: C:\Windows
2011/03/19 15:15:16.0008 1860	Processor architecture: Intel x86
2011/03/19 15:15:16.0008 1860	Number of processors: 1
2011/03/19 15:15:16.0008 1860	Page size: 0x1000
2011/03/19 15:15:16.0008 1860	Boot type: Normal boot
2011/03/19 15:15:16.0008 1860	================================================================================
2011/03/19 15:15:16.0868 1860	Initialize success
2011/03/19 15:15:21.0039 3412	================================================================================
2011/03/19 15:15:21.0039 3412	Scan started
2011/03/19 15:15:21.0039 3412	Mode: Manual; 
2011/03/19 15:15:21.0039 3412	================================================================================
2011/03/19 15:15:24.0179 3412	ACPI            (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
2011/03/19 15:15:24.0429 3412	adp94xx         (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
2011/03/19 15:15:24.0601 3412	adpahci         (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
2011/03/19 15:15:24.0648 3412	adpu160m        (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
2011/03/19 15:15:24.0695 3412	adpu320         (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
2011/03/19 15:15:25.0054 3412	AFD             (763e172a55177e478cb419f88fd0ba03) C:\Windows\system32\drivers\afd.sys
2011/03/19 15:15:25.0257 3412	agp440          (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
2011/03/19 15:15:25.0367 3412	aic78xx         (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/03/19 15:15:25.0539 3412	aliide          (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
2011/03/19 15:15:25.0617 3412	amdagp          (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
2011/03/19 15:15:25.0773 3412	amdide          (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
2011/03/19 15:15:25.0898 3412	AmdK7           (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
2011/03/19 15:15:26.0039 3412	AmdK8           (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
2011/03/19 15:15:26.0242 3412	arc             (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
2011/03/19 15:15:26.0320 3412	arcsas          (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
2011/03/19 15:15:26.0460 3412	aswFsBlk        (1c2e6bb4fe8621b1b863855b02bc33eb) C:\Windows\system32\drivers\aswFsBlk.sys
2011/03/19 15:15:26.0476 3412	aswMonFlt       (b0f137f664f10829cd2380b0e20e7c29) C:\Windows\system32\drivers\aswMonFlt.sys
2011/03/19 15:15:26.0539 3412	aswRdr          (b6a9373619d851be80fb5f1b5eed0d4e) C:\Windows\system32\drivers\aswRdr.sys
2011/03/19 15:15:26.0710 3412	aswSnx          (9be41c1ae8bc481eb662d85c98d979c2) C:\Windows\system32\drivers\aswSnx.sys
2011/03/19 15:15:26.0804 3412	aswSP           (4b1a54ba2bc5873a774df6b70ab8b0b3) C:\Windows\system32\drivers\aswSP.sys
2011/03/19 15:15:26.0882 3412	aswTdi          (c7f1cea32766184911293f4e1ee653f5) C:\Windows\system32\drivers\aswTdi.sys
2011/03/19 15:15:27.0054 3412	AsyncMac        (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/03/19 15:15:27.0195 3412	atapi           (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
2011/03/19 15:15:27.0429 3412	athr            (889e7f06279fd16549b77628918ff666) C:\Windows\system32\DRIVERS\athr.sys
2011/03/19 15:15:27.0726 3412	atikmdag        (7db96c2801a78513bdc133c25d07929e) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/03/19 15:15:28.0054 3412	Beep            (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
2011/03/19 15:15:28.0367 3412	bowser          (74b442b2be1260b7588c136177ceac66) C:\Windows\system32\DRIVERS\bowser.sys
2011/03/19 15:15:28.0507 3412	BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/03/19 15:15:28.0632 3412	BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/03/19 15:15:28.0726 3412	Brserid         (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/03/19 15:15:28.0898 3412	BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/03/19 15:15:29.0054 3412	BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/03/19 15:15:29.0085 3412	BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/03/19 15:15:29.0257 3412	BTHMODEM        (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
2011/03/19 15:15:29.0554 3412	cdfs            (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/03/19 15:15:29.0695 3412	cdrom           (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
2011/03/19 15:15:29.0835 3412	circlass        (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
2011/03/19 15:15:29.0960 3412	CLFS            (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
2011/03/19 15:15:30.0101 3412	CmBatt          (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/03/19 15:15:30.0210 3412	cmdide          (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
2011/03/19 15:15:30.0382 3412	Compbatt        (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
2011/03/19 15:15:30.0476 3412	crcdisk         (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
2011/03/19 15:15:30.0523 3412	Crusoe          (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
2011/03/19 15:15:30.0710 3412	DfsC            (9e635ae5e8ad93e2b5989e2e23679f97) C:\Windows\system32\Drivers\dfsc.sys
2011/03/19 15:15:30.0914 3412	disk            (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
2011/03/19 15:15:31.0054 3412	driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
2011/03/19 15:15:31.0226 3412	drmkaud         (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
2011/03/19 15:15:31.0335 3412	DXGKrnl         (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
2011/03/19 15:15:31.0570 3412	E1G60           (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/03/19 15:15:31.0742 3412	Ecache          (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
2011/03/19 15:15:31.0929 3412	elxstor         (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
2011/03/19 15:15:32.0039 3412	EMSCR           (1fa3f9df8983873746fa6b72dd7e3c2c) C:\Windows\system32\DRIVERS\EMS7SK.sys
2011/03/19 15:15:32.0101 3412	ESDCR           (9c7487253aad6bf61f9bc83d50e32ccc) C:\Windows\system32\DRIVERS\ESD7SK.sys
2011/03/19 15:15:32.0257 3412	ESMCR           (99589d975da04f8bd31f124428fcc797) C:\Windows\system32\DRIVERS\ESM7SK.sys
2011/03/19 15:15:32.0393 3412	exfat           (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
2011/03/19 15:15:32.0559 3412	fastfat         (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
2011/03/19 15:15:32.0710 3412	fdc             (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
2011/03/19 15:15:32.0882 3412	FileInfo        (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
2011/03/19 15:15:32.0945 3412	Filetrace       (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
2011/03/19 15:15:33.0092 3412	flpydisk        (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/03/19 15:15:33.0367 3412	FltMgr          (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
2011/03/19 15:15:33.0843 3412	Fs_Rec          (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
2011/03/19 15:15:33.0999 3412	gagp30kx        (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
2011/03/19 15:15:34.0124 3412	GEARAspiWDM     (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/03/19 15:15:34.0343 3412	HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
2011/03/19 15:15:34.0453 3412	HDAudBus        (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/03/19 15:15:34.0562 3412	HidBth          (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
2011/03/19 15:15:34.0656 3412	HidIr           (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/03/19 15:15:34.0781 3412	HidUsb          (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
2011/03/19 15:15:34.0937 3412	HpCISSs         (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
2011/03/19 15:15:35.0015 3412	HSFHWAZL        (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
2011/03/19 15:15:35.0171 3412	HSF_DPV         (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
2011/03/19 15:15:35.0421 3412	HTTP            (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
2011/03/19 15:15:35.0593 3412	i2omp           (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
2011/03/19 15:15:35.0718 3412	i8042prt        (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/03/19 15:15:35.0965 3412	iaStorV         (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
2011/03/19 15:15:36.0258 3412	iirsp           (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/03/19 15:15:36.0399 3412	intelide        (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
2011/03/19 15:15:36.0586 3412	intelppm        (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
2011/03/19 15:15:36.0868 3412	IpFilterDriver  (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/03/19 15:15:37.0008 3412	IPMIDRV         (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
2011/03/19 15:15:37.0243 3412	IPNAT           (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
2011/03/19 15:15:37.0446 3412	IRENUM          (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
2011/03/19 15:15:37.0539 3412	isapnp          (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
2011/03/19 15:15:37.0805 3412	iScsiPrt        (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/03/19 15:15:37.0961 3412	iteatapi        (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/03/19 15:15:38.0180 3412	iteraid         (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/03/19 15:15:38.0539 3412	kbdclass        (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/03/19 15:15:38.0696 3412	kbdhid          (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
2011/03/19 15:15:38.0805 3412	KSecDD          (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
2011/03/19 15:15:39.0008 3412	lltdio          (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/03/19 15:15:39.0133 3412	LSI_FC          (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
2011/03/19 15:15:39.0258 3412	LSI_SAS         (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
2011/03/19 15:15:39.0336 3412	LSI_SCSI        (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
2011/03/19 15:15:39.0414 3412	luafv           (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
2011/03/19 15:15:39.0586 3412	megasas         (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
2011/03/19 15:15:39.0711 3412	Modem           (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
2011/03/19 15:15:39.0883 3412	monitor         (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
2011/03/19 15:15:39.0961 3412	mouclass        (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
2011/03/19 15:15:40.0149 3412	mouhid          (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
2011/03/19 15:15:40.0243 3412	MountMgr        (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
2011/03/19 15:15:40.0430 3412	mpio            (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
2011/03/19 15:15:40.0508 3412	mpsdrv          (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
2011/03/19 15:15:40.0680 3412	Mraid35x        (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/03/19 15:15:40.0758 3412	MRxDAV          (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
2011/03/19 15:15:40.0868 3412	mrxsmb          (7afc42e60432fd1014f5342f2b1b1f74) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/03/19 15:15:40.0977 3412	mrxsmb10        (8a75752ae17924f65452746674b14b78) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/03/19 15:15:41.0086 3412	mrxsmb20        (f4d0f3252e651f02be64984ffa738394) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/03/19 15:15:41.0211 3412	msahci          (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
2011/03/19 15:15:41.0321 3412	msdsm           (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
2011/03/19 15:15:41.0430 3412	Msfs            (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
2011/03/19 15:15:41.0586 3412	msisadrv        (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
2011/03/19 15:15:41.0774 3412	MSKSSRV         (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
2011/03/19 15:15:41.0883 3412	MSPCLOCK        (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/03/19 15:15:41.0993 3412	MSPQM           (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
2011/03/19 15:15:42.0133 3412	MsRPC           (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
2011/03/19 15:15:42.0227 3412	mssmbios        (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/03/19 15:15:42.0383 3412	MSTEE           (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
2011/03/19 15:15:42.0446 3412	Mup             (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
2011/03/19 15:15:42.0696 3412	NativeWifiP     (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS
wifi.sys
2011/03/19 15:15:42.0899 3412	NDIS            (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers
dis.sys
2011/03/19 15:15:43.0118 3412	NdisTapi        (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS
distapi.sys
2011/03/19 15:15:43.0211 3412	Ndisuio         (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS
disuio.sys
2011/03/19 15:15:43.0305 3412	NdisWan         (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS
diswan.sys
2011/03/19 15:15:43.0461 3412	NDProxy         (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
2011/03/19 15:15:43.0602 3412	NetBIOS         (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS
etbios.sys
2011/03/19 15:15:44.0036 3412	netbt           (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS
etbt.sys
2011/03/19 15:15:44.0201 3412	nfrd960         (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers
frd960.sys
2011/03/19 15:15:44.0383 3412	Npfs            (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
2011/03/19 15:15:44.0508 3412	nsiproxy        (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers
siproxy.sys
2011/03/19 15:15:44.0618 3412	Ntfs            (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
2011/03/19 15:15:44.0821 3412	ntrigdigi       (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers
trigdigi.sys
2011/03/19 15:15:44.0883 3412	Null            (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
2011/03/19 15:15:44.0961 3412	nvraid          (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers
vraid.sys
2011/03/19 15:15:45.0118 3412	nvstor          (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers
vstor.sys
2011/03/19 15:15:45.0164 3412	nv_agp          (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers
v_agp.sys
2011/03/19 15:15:45.0446 3412	ohci1394        (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
2011/03/19 15:15:45.0502 3412	Parport         (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/03/19 15:15:45.0674 3412	partmgr         (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
2011/03/19 15:15:45.0757 3412	Parvdm          (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/03/19 15:15:45.0867 3412	pci             (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
2011/03/19 15:15:46.0054 3412	pciide          (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
2011/03/19 15:15:46.0226 3412	pcmcia          (b7c5a8769541900f6dfa6fe0c5e4d513) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/03/19 15:15:46.0486 3412	PEAUTH          (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/03/19 15:15:46.0785 3412	PptpMiniport    (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERSaspptp.sys
2011/03/19 15:15:46.0931 3412	Processor       (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
2011/03/19 15:15:47.0198 3412	PSched          (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
2011/03/19 15:15:47.0454 3412	ql2300          (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
2011/03/19 15:15:47.0627 3412	ql40xx          (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/03/19 15:15:47.0710 3412	QWAVEdrv        (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
2011/03/19 15:15:47.0958 3412	R300            (7db96c2801a78513bdc133c25d07929e) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/03/19 15:15:48.0179 3412	RasAcd          (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERSasacd.sys
2011/03/19 15:15:48.0277 3412	Rasl2tp         (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERSasl2tp.sys
2011/03/19 15:15:48.0445 3412	RasPppoe        (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERSaspppoe.sys
2011/03/19 15:15:48.0523 3412	RasSstp         (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERSassstp.sys
2011/03/19 15:15:48.0614 3412	rdbss           (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERSdbss.sys
2011/03/19 15:15:48.0781 3412	RDPCDD          (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/03/19 15:15:48.0868 3412	rdpdr           (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\driversdpdr.sys
2011/03/19 15:15:49.0032 3412	RDPENCDD        (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\driversdpencdd.sys
2011/03/19 15:15:49.0120 3412	RDPWD           (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
2011/03/19 15:15:49.0319 3412	rspndr          (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERSspndr.sys
2011/03/19 15:15:49.0441 3412	RTL8023xp       (959ef612d2ccfdb6d9e443f8e3655013) C:\Windows\system32\DRIVERS\Rtnicxp.sys
2011/03/19 15:15:49.0583 3412	sbp2port        (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/03/19 15:15:49.0777 3412	sdbus           (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
2011/03/19 15:15:49.0848 3412	secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/03/19 15:15:49.0923 3412	Serenum         (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
2011/03/19 15:15:50.0071 3412	Serial          (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/03/19 15:15:50.0163 3412	sermouse        (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
2011/03/19 15:15:50.0341 3412	sffdisk         (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
2011/03/19 15:15:50.0382 3412	sffp_mmc        (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
2011/03/19 15:15:50.0411 3412	sffp_sd         (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
2011/03/19 15:15:50.0459 3412	sfloppy         (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/03/19 15:15:50.0642 3412	sisagp          (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
2011/03/19 15:15:50.0679 3412	SiSRaid2        (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
2011/03/19 15:15:50.0721 3412	SiSRaid4        (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
2011/03/19 15:15:50.0920 3412	Smb             (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
2011/03/19 15:15:50.0973 3412	spldr           (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
2011/03/19 15:15:51.0067 3412	srv             (5754e8bae40943871d0ab9becbf335e8) C:\Windows\system32\DRIVERS\srv.sys
2011/03/19 15:15:51.0250 3412	srv2            (d47b09ff7d28ee44d728f57c2d1fab86) C:\Windows\system32\DRIVERS\srv2.sys
2011/03/19 15:15:51.0344 3412	srvnet          (32d52290341a740881521e118106acd6) C:\Windows\system32\DRIVERS\srvnet.sys
2011/03/19 15:15:51.0589 3412	swenum          (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
2011/03/19 15:15:51.0693 3412	Symc8xx         (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/03/19 15:15:51.0867 3412	Sym_hi          (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/03/19 15:15:51.0975 3412	Sym_u3          (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/03/19 15:15:52.0191 3412	Tcpip           (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers	cpip.sys
2011/03/19 15:15:52.0380 3412	Tcpip6          (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS	cpip.sys
2011/03/19 15:15:52.0613 3412	tcpipreg        (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers	cpipreg.sys
2011/03/19 15:15:52.0693 3412	TDPIPE          (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers	dpipe.sys
2011/03/19 15:15:52.0734 3412	TDTCP           (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers	dtcp.sys
2011/03/19 15:15:52.0989 3412	tdx             (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS	dx.sys
2011/03/19 15:15:53.0276 3412	TermDD          (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS	ermdd.sys
2011/03/19 15:15:53.0468 3412	tssecsrv        (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS	ssecsrv.sys
2011/03/19 15:15:53.0635 3412	tunmp           (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS	unmp.sys
2011/03/19 15:15:53.0675 3412	tunnel          (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS	unnel.sys
2011/03/19 15:15:53.0743 3412	uagp35          (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
2011/03/19 15:15:53.0919 3412	udfs            (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
2011/03/19 15:15:54.0188 3412	uliagpkx        (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
2011/03/19 15:15:54.0229 3412	uliahci         (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
2011/03/19 15:15:54.0380 3412	UlSata          (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/03/19 15:15:54.0419 3412	ulsata2         (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/03/19 15:15:54.0495 3412	umbus           (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
2011/03/19 15:15:54.0678 3412	USB-100         (2a3fa9ff6ec8485c98c179131e8a41a7) C:\Windows\system32\DRIVERS\RTL8150.SYS
2011/03/19 15:15:54.0843 3412	USBAAPL         (5c2bdc152bbab34f36473deaf7713f22) C:\Windows\system32\Drivers\usbaapl.sys
2011/03/19 15:15:54.0963 3412	usbccgp         (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/03/19 15:15:55.0087 3412	usbcir          (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/03/19 15:15:55.0254 3412	usbehci         (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
2011/03/19 15:15:55.0407 3412	usbhub          (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
2011/03/19 15:15:55.0525 3412	usbohci         (7bdb7b0e7d45ac0402d78b90789ef47c) C:\Windows\system32\DRIVERS\usbohci.sys
2011/03/19 15:15:55.0608 3412	usbprint        (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
2011/03/19 15:15:55.0829 3412	usbscan         (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
2011/03/19 15:15:55.0967 3412	USBSTOR         (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/03/19 15:15:56.0093 3412	usbuhci         (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/03/19 15:15:56.0248 3412	usbvideo        (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
2011/03/19 15:15:56.0452 3412	vga             (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/03/19 15:15:56.0602 3412	VgaSave         (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
2011/03/19 15:15:56.0737 3412	viaagp          (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
2011/03/19 15:15:56.0799 3412	ViaC7           (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
2011/03/19 15:15:56.0946 3412	viaide          (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
2011/03/19 15:15:57.0050 3412	volmgr          (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
2011/03/19 15:15:57.0204 3412	volmgrx         (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
2011/03/19 15:15:57.0293 3412	volsnap         (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
2011/03/19 15:15:57.0467 3412	vsmraid         (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
2011/03/19 15:15:57.0603 3412	WacomPen        (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/03/19 15:15:57.0759 3412	Wanarp          (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/03/19 15:15:57.0789 3412	Wanarpv6        (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/03/19 15:15:57.0858 3412	Wd              (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
2011/03/19 15:15:58.0019 3412	Wdf01000        (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
2011/03/19 15:15:58.0248 3412	winachsf        (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
2011/03/19 15:15:58.0479 3412	WmiAcpi         (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/03/19 15:15:58.0629 3412	WpdUsb          (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
2011/03/19 15:15:58.0794 3412	ws2ifsl         (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/03/19 15:15:58.0900 3412	WUDFRd          (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/03/19 15:15:59.0020 3412	================================================================================
2011/03/19 15:15:59.0020 3412	Scan finished
2011/03/19 15:15:59.0020 3412	================================================================================
2011/03/19 15:16:03.0701 0620	Deinitialize success

moment de grace · Answer

Rend toi sur Cjoint : http://www.cijoint.fr/ 

Clique sur "Parcourir " dans la partie " Joindre un fichier[...] " 

Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau 

Clique ensuite sur "Cliquez ici pour déposer le fichier " et copie/colle le lien dans ton prochain message

sysyl19 · Answer

Je ne trouve plus le rapport, il était sur mon bureau et j'ai voulu le déplacer dans C: mais maintenant il n'y est plus.
Il faut que je refasse un autre test?

moment de grace · Answer

refais un nouveau scan oui

Tous le temps redirigé

46 réponses

Votre réponse

Discussions similaires

Newsletters