Plus de connection internet - trojan

kiwimath -
Utilisateur anonyme - 29 mai 2011 à 20:39

Bonjour, (je suis désolée je n'arrive pas à passer des lignes...)

Le 17 mai dernier j'ai été infectée par plusieurs trojans... j'ai utilisé malwarebytes, Antivir, Windows defender & cie... Ca a permis d'en détecter pas mal et de les supprimer... Mais depuis hier soir: je n'arrive plus à me connecter à internet!!!
J'ai fais une analyse complète du système ce matin avec malwarebytes qui m'a retrouvé deux fichiers infectés...

Je colle les rapports:

Rapport initial du 17 mai:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6597

Windows 6.0.6001 Service Pack 1
Internet Explorer 7.0.6001.18000

17/05/2011 21:53:56
mbam-log-2011-05-17 (21-53-56).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 174703
Temps écoulé: 10 minute(s), 34 seconde(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 34

Processus mémoire infecté(s):
c:\Windows\Temp\jgci\setup.exe (Spyware.Passwords.XGen) -> 3464 -> Unloaded process successfully.

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AMService (Spyware.Passwords.XGen) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Metropolis (Trojan.FakeAlert) -> Value: Metropolis -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\Windows\Temp\jgci\setup.exe (Spyware.Passwords.XGen) -> Delete on reboot.
c:\Users\multimédis\AppData\Local\Temp\ED1.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup2032077184.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup2151281960.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup2212848360.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup2294209920.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup2826211712.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup2876697984.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup2901878056.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup3098701184.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup3123731840.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup3343561088.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup3453559168.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup4078849448.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup4185785512.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup4266333568.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup448761128.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup464119168.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup62156648.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup707250408.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup1013770624.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup1042027904.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup1312405352.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup1400735104.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup1592488320.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Users\multimédis\AppData\Local\Temp\setup1954254952.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Windows\Temp\aosnrwxemc.exe (Rootkit.TDSS) -> Quarantined and deleted successfully.
c:\Windows\Temp\Djm.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Temp\Djn.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Temp\Djo.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\System32\sshnas21.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
c:\Windows\Tasks\{22116563-108c-42c0-a7ce-60161b75e508}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Tasks\{bbaeaeaf-1275-40e2-bd6c-bc8f88bd114a}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Tasks\{810401e2-dde0-454e-b0e2-aa89c9e5967c}.job (Trojan.FraudPack) -> Quarantined and deleted successfully.

Le rapport du 18 mai ne donne rien (je l'avais réalisé car j'avais des pages internet de recherche gomeo qui s'ouvraient seules)...

Rapport du 19 mai:

warebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6597

Windows 6.0.6001 Service Pack 1
Internet Explorer 7.0.6001.18000

19/05/2011 14:55:22
mbam-log-2011-05-19 (14-55-22).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 173175
Temps écoulé: 11 minute(s), 22 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\5Z3U4G4I5X6G3F7JXBZOJQSGFEOCE (Trojan.SpyEyes) -> Value: 5Z3U4G4I5X6G3F7JXBZOJQSGFEOCE -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\newdnswatch (Trojan.SpyEyes) -> Delete on reboot.

Fichier(s) infecté(s):
c:\newdnswatch\newdnswatch.exe (Trojan.SpyEyes) -> Quarantined and deleted successfully.
c:\newdnswatch\config.bin (Trojan.SpyEyes) -> Quarantined and deleted successfully.

Rapport du 20 normal (mais fenêtres pub intempestives)

Rapport du 21:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6597

Windows 6.0.6001 Service Pack 1
Internet Explorer 7.0.6001.18000

21/05/2011 23:05:57
mbam-log-2011-05-21 (23-05-57).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 172977
Temps écoulé: 10 minute(s), 11 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 4

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
c:\Windows\System32\tafwyfiw.dll (IPH.GenericBHO) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{E4A3864A-361F-13EF-0BF3-A87E680F55F4} (IPH.GenericBHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Srbzbssl (IPH.GenericBHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E4A3864A-361F-13EF-0BF3-A87E680F55F4} (IPH.GenericBHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{E4A3864A-361F-13EF-0BF3-A87E680F55F4} (IPH.GenericBHO) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\Windows\System32\tafwyfiw.dll (IPH.GenericBHO) -> Delete on reboot.
c:\Windows\Tasks\{22116563-108c-42c0-a7ce-60161b75e508}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Tasks\{bbaeaeaf-1275-40e2-bd6c-bc8f88bd114a}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\Windows\Tasks\{810401e2-dde0-454e-b0e2-aa89c9e5967c}.job (Trojan.FraudPack) -> Quarantined and deleted successfully.

et rapport de ce matin (analyse qui a durée plus de 5h)...

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Version de la base de données: 6597

Windows 6.0.6001 Service Pack 1
Internet Explorer 7.0.6001.18000

22/05/2011 13:27:17
mbam-log-2011-05-22 (13-27-17).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 371686
Temps écoulé: 5 heure(s), 9 minute(s), 9 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
c:\Users\multimédis\AppData\Roaming\thinstall\microsoft office professional plus 2007\300000005700002i\WINWORD.EXE (Trojan.IRCBot) -> Quarantined and deleted successfully.

Afficher la suite

A voir également:

Plus de connection internet - trojan
Gmail connection - Guide
Gps sans internet - Guide
Complete internet repair - Télécharger - Web & Internet
Mon pc rame sur internet - Guide
Internet explorer 11 - Télécharger - Navigateurs

27 réponses

Réponse 21 / 27

kiwimath Messages postés 12 Statut Membre

O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060}
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2464583) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{151E2FEA-C3A6-4CB6-BE6B-16651FDF04BE}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062}
O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF}
O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}
O42 - Logiciel: System Requirements Lab - (.Pas de propriétaire.) [HKLM] -- SystemRequirementsLab
O42 - Logiciel: Theme Hospital - (.Pas de propriétaire.) [HKLM] -- Hospital
O42 - Logiciel: TomTom HOME - (.TomTom.) [HKLM] -- {CE325D55-FCAF-4273-BB79-069BB8747270}
O42 - Logiciel: Tomb Raider II - (.Pas de propriétaire.) [HKLM] -- Tomb Raider II
O42 - Logiciel: Ulead PhotoImpact 12 - (.Ulead System.) [HKLM] -- {11AFE21E-B193-430D-B57A-DFF7815BB962}
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC}
O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2536413) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{95DF5260-331D-4FFD-A2D5-C64164751945}
O42 - Logiciel: VC80CRTRedist - 8.0.50727.4053 - (.DivX, Inc.) [HKLM] -- {5EE7D259-D137-4438-9A5F-42F432EC0421}
O42 - Logiciel: VoiceOver Kit - (.Apple Inc..) [HKLM] -- {FB26A501-6BA6-459B-89AA-9736730752FB}
O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {B3B487E7-6171-4376-9074-B28082CEB504}
O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3175E049-F9A9-4A3D-8F19-AC9FB04514D1}
O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {9FF9FDF7-F84A-4F99-B4BB-066B6F95F33D}
O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {76810709-A7D3-468D-9167-A1780C1E766C}
O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818}
O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {445B183D-F4F1-45C8-B9DB-F11355CA657B}
O42 - Logiciel: Windows Live Movie Maker - (.Microsoft Corporation.) [HKLM] -- {230B83A5-7D88-4B95-B71E-F44C0C78B002}
O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {9D6524E6-15CF-4852-BF70-04FE973A3DE1}
O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA}
O42 - Logiciel: Yahoo! Toolbar - (.Pas de propriétaire.) [HKLM] -- Yahoo! Companion
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {881F5DE8-9367-4B81-A325-E91BBC6472F9}
O42 - Logiciel: muvee Reveal Seagate Edition - (.muvee Technologies Pte Ltd.) [HKLM] -- {78E9A751-5616-233F-1249-16AC5758C646}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ABBYY]
[HKCU\Software\ACE Compression Software]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\Amerigomedia]
[HKCU\Software\AppDataLow\Aurigma]
[HKCU\Software\AppDataLow\Google]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\DivX]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Musicnotes]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Audacity]
[HKCU\Software\Avira]
[HKCU\Software\CDDB]
[HKCU\Software\Carbonite]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Core Design]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\EPSON]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JavaSoft]
[HKCU\Software\LG Electronics Inc]
[HKCU\Software\LG Media Player]
[HKCU\Software\Leadertech]
[HKCU\Software\LexmarkInkjet]
[HKCU\Software\LexmarkPhoto]
[HKCU\Software\Lexmark]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MAP-DN]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept (Muvee)]
[HKCU\Software\MainConcept]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Musicnotes]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\PTP]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\Realtek]
[HKCU\Software\S3R521]
[HKCU\Software\SEIKO EPSON]
[HKCU\Software\SampleView]
[HKCU\Software\Seagate]
[HKCU\Software\SecuROM]
[HKCU\Software\Simply Super Software]
[HKCU\Software\Softonic]
[HKCU\Software\Sysinternals]
[HKCU\Software\TomTom]
[HKCU\Software\Trolltech]
[HKCU\Software\Ubisoft]
[HKCU\Software\Ulead Systems]
[HKCU\Software\Unity]
[HKCU\Software\Usbfix]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Wget]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKLM\Software\ABBYY]
[HKLM\Software\ACE Compression Software]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Ahead]
[HKLM\Software\AmbientDesign]
[HKLM\Software\AppDataLow]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Art Dept]
[HKLM\Software\Atari]
[HKLM\Software\Audible]
[HKLM\Software\Avira]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Bullfrog Productions Ltd]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Contrôle Parental]
[HKLM\Software\Core Design]
[HKLM\Software\DivXNetworks]
[HKLM\Software\DivX]
[HKLM\Software\EPSON]
[HKLM\Software\Electronic Arts]
[HKLM\Software\FRANCE TELECOM]
[HKLM\Software\GEAR Software]
[HKLM\Software\Google]
[HKLM\Software\Igvwswdx]
[HKLM\Software\InstallPedia]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\LG Electronics]
[HKLM\Software\LG PC Suite]
[HKLM\Software\LexmarkInkjet]
[HKLM\Software\Lexmark]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Musicnotes]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\OPTENET]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\PocketSoft]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RichFX]
[HKLM\Software\SECURITOO]
[HKLM\Software\SRS Labs]
[HKLM\Software\Seagate]
[HKLM\Software\Sibelius Software]
[HKLM\Software\Sims]
[HKLM\Software\SoftThinks]
[HKLM\Software\Sonic]
[HKLM\Software\Sun Microsystems]
[HKLM\Software\Swearware]
[HKLM\Software\The Silicon Realms Toolworks]
[HKLM\Software\Thomson]
[HKLM\Software\TomTom]
[HKLM\Software\Trolltech]
[HKLM\Software\Ubisoft]
[HKLM\Software\Ulead Systems]
[HKLM\Software\Virtools]
[HKLM\Software\Volatile]
[HKLM\Software\WOW6432Node]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\Yahoo]
[HKLM\Software\mcafeeupdater]
[HKLM\Software\mozilla.org]
[HKLM\Software\muvee Technologies]
[HKLM\Software\woohook]

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 19/09/2010 - 17:06:02 - [3094515] ----D- C:\Program Files\7-Zip
O43 - CFD: 18/12/2010 - 21:58:24 - [121148014] ----D- C:\Program Files\Abbyy FineReader 6.0 Sprint
O43 - CFD: 11/08/2009 - 18:47:58 - [4712960] ----D- C:\Program Files\adma
O43 - CFD: 19/09/2008 - 09:15:34 - [126318381] ----D- C:\Program Files\Adobe
O43 - CFD: 25/12/2009 - 18:03:10 - [9806807] ----D- C:\Program Files\Ambient Design
O43 - CFD: 19/04/2009 - 19:07:32 - [2221118] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 13/06/2010 - 18:24:12 - [14376402] ----D- C:\Program Files\Aqua3D
O43 - CFD: 21/05/2011 - 22:42:18 - [741874011] ----D- C:\Program Files\Atari
O43 - CFD: 22/07/2010 - 15:32:48 - [34376306] ----D- C:\Program Files\Audacity 1.3 Beta (Unicode)
O43 - CFD: 30/06/2009 - 09:30:14 - [167806606] ----D- C:\Program Files\Avira
O43 - CFD: 03/01/2011 - 19:30:20 - [599992] ----D- C:\Program Files\Bonjour
O43 - CFD: 09/06/2010 - 08:49:46 - [40508546] ----D- C:\Program Files\Bullfrog
O43 - CFD: 11/04/2010 - 12:32:50 - [318096] ----D- C:\Program Files\Carbonite
O43 - CFD: 04/08/2010 - 17:27:10 - [2961016] ----D- C:\Program Files\CCleaner
O43 - CFD: 28/05/2011 - 22:52:22 - [1555229419] ----D- C:\Program Files\Common Files
O43 - CFD: 11/04/2009 - 12:54:10 - [1622945196] ----D- C:\Program Files\Controle Parental
O43 - CFD: 08/07/2010 - 21:10:26 - [949048] ----D- C:\Program Files\Core Design
O43 - CFD: 24/05/2010 - 10:15:20 - [115089325] ----D- C:\Program Files\DivX
O43 - CFD: 14/05/2011 - 19:03:46 - [4507970] ----D- C:\Program Files\DOSBox-0.74
O43 - CFD: 04/06/2009 - 16:03:04 - [6054439780] ----D- C:\Program Files\Electronic Arts
O43 - CFD: 26/08/2009 - 15:17:20 - [24161653] ----D- C:\Program Files\epson
O43 - CFD: 10/04/2009 - 11:39:38 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 09/10/2009 - 12:47:50 - [3738567] ----D- C:\Program Files\FotoSketcher
O43 - CFD: 23/12/2009 - 16:07:54 - [82981191] ----D- C:\Program Files\Gimp-2.0
O43 - CFD: 07/05/2011 - 22:11:10 - [77207335] ----D- C:\Program Files\Google
O43 - CFD: 21/05/2011 - 22:42:12 - [138805795] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 23/05/2011 - 22:48:20 - [6822020] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 11/04/2009 - 12:56:22 - [12744618] ----D- C:\Program Files\Inventel
O43 - CFD: 03/01/2011 - 19:38:46 - [1856115] ----D- C:\Program Files\iPod
O43 - CFD: 03/01/2011 - 19:39:32 - [166023184] ----D- C:\Program Files\iTunes
O43 - CFD: 19/04/2010 - 16:56:14 - [162789703] ----D- C:\Program Files\Java
O43 - CFD: 22/04/2009 - 16:04:46 - [15984024] ----D- C:\Program Files\JRE
O43 - CFD: 18/12/2010 - 21:59:12 - [4159149] ----D- C:\Program Files\Lexmark
O43 - CFD: 18/12/2010 - 21:57:02 - [638976] ----D- C:\Program Files\Lexmark Printable Web
O43 - CFD: 18/12/2010 - 22:03:22 - [100327650] ----D- C:\Program Files\Lexmark Pro200-S500 Series
O43 - CFD: 18/12/2010 - 22:24:22 - [4822680] ----D- C:\Program Files\Lexmark Toolbar
O43 - CFD: 18/12/2010 - 21:57:50 - [302237] ----D- C:\Program Files\Lexmark Tools for Office
O43 - CFD: 24/10/2009 - 13:57:54 - [989463] ----D- C:\Program Files\LG Electronics
O43 - CFD: 01/05/2011 - 20:40:28 - [171864412] ----D- C:\Program Files\LG PC Suite II
O43 - CFD: 09/01/2011 - 11:50:08 - [4931223] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 16/12/2010 - 13:48:12 - [9454922] ----D- C:\Program Files\McAfee Security Scan
O43 - CFD: 11/04/2009 - 13:37:40 - [1721508] ----D- C:\Program Files\Microsoft
O43 - CFD: 02/11/2006 - 14:37:36 - [93446071] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 10/04/2010 - 12:12:10 - [592236767] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 22/04/2011 - 18:16:28 - [38388859] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 11/04/2009 - 13:38:58 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 11/04/2009 - 13:40:12 - [2188837] ----D- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 10/04/2010 - 12:12:06 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 10/04/2010 - 12:07:44 - [1387249] ----D- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 11/04/2010 - 11:58:32 - [3726168] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 04/06/2009 - 16:02:50 - [979309] ----D- C:\Program Files\Microsoft WSE
O43 - CFD: 26/06/2010 - 11:35:40 - [8167779] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 31/05/2009 - 14:45:34 - [50512871] ----D- C:\Program Files\monAlbumPhoto
O43 - CFD: 23/05/2011 - 22:48:22 - [99342446] ----D- C:\Program Files\Movie Maker
O43 - CFD: 02/03/2010 - 20:00:20 - [30262540] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 16/01/2011 - 11:19:12 - [30057104] ----D- C:\Program Files\Mozilla Firefox 4.0 Beta 9
O43 - CFD: 10/04/2010 - 12:12:26 - [26521] ----D- C:\Program Files\MSBuild
O43 - CFD: 09/10/2009 - 14:43:40 - [56698624] ----D- C:\Program Files\MSECache
O43 - CFD: 13/04/2009 - 12:06:22 - [0] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 25/06/2010 - 18:30:06 - [42455382] ----D- C:\Program Files\Musicnotes
O43 - CFD: 19/09/2008 - 10:13:08 - [322546497] ----D- C:\Program Files\Nero
O43 - CFD: 01/05/2011 - 16:38:12 - [352364719] ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 22/04/2009 - 16:04:36 - [354600811] ----D- C:\Program Files\OpenOffice.org 3
O43 - CFD: 11/04/2009 - 14:07:44 - [3174167] ----D- C:\Program Files\OrangeHSS
O43 - CFD: 28/12/2009 - 19:06:12 - [1319877] ----D- C:\Program Files\Pointofix
O43 - CFD: 03/01/2011 - 19:36:48 - [76322555] ----D- C:\Program Files\QuickTime
O43 - CFD: 07/08/2009 - 11:55:30 - [44635490] ----D- C:\Program Files\Real
O43 - CFD: 19/09/2008 - 10:15:24 - [23908182] ----D- C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 14:37:36 - [38694657] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 11/04/2010 - 12:34:04 - [614576505] ----D- C:\Program Files\Seagate
O43 - CFD: 28/02/2008 - 09:56:30 - [0] ----D- C:\Program Files\SoftThinks
O43 - CFD: 01/05/2011 - 16:04:18 - [768113] ----D- C:\Program Files\SystemRequirementsLab
O43 - CFD: 19/10/2009 - 19:39:24 - [32911711] ----D- C:\Program Files\TomTom HOME
O43 - CFD: 08/07/2009 - 10:36:00 - [4725553480] ----D- C:\Program Files\Ubisoft
O43 - CFD: 25/12/2009 - 11:44:26 - [390235965] ----D- C:\Program Files\Ulead Systems
O43 - CFD: 02/11/2006 - 15:01:56 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 18/03/2011 - 12:33:24 - [15328639] ----D- C:\Program Files\Virtools
O43 - CFD: 23/05/2011 - 22:48:24 - [1016832] ----D- C:\Program Files\Windows Calendar
O43 - CFD: 23/05/2011 - 22:48:20 - [2737152] ----D- C:\Program Files\Windows Collaboration
O43 - CFD: 23/05/2011 - 22:48:12 - [4490624] ----D- C:\Program Files\Windows Defender
O43 - CFD: 23/05/2011 - 22:48:20 - [7084664] ----D- C:\Program Files\Windows Journal
O43 - CFD: 27/01/2011 - 12:21:48 - [156211900] ----D- C:\Program Files\Windows Live
O43 - CFD: 11/04/2009 - 13:37:20 - [245112] ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD: 23/05/2011 - 22:48:22 - [9116344] ----D- C:\Program Files\Windows Mail
O43 - CFD: 23/05/2011 - 22:48:20 - [4498121] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 10/04/2009 - 11:39:38 - [7957544] ----D- C:\Program Files\Windows NT
O43 - CFD: 23/05/2011 - 22:48:18 - [13528738] ----D- C:\Program Files\Windows Photo Gallery
O43 - CFD: 25/05/2011 - 21:14:00 - [134144] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 23/05/2011 - 22:48:20 - [6527558] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 13/09/2009 - 14:04:46 - [3921490] ----D- C:\Program Files\WinRAR
O43 - CFD: 04/08/2010 - 17:27:00 - [3273418] ----D- C:\Program Files\Yahoo!
O43 - CFD: 28/05/2011 - 23:35:56 - [3881147] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 19/09/2008 - 09:15:42 - [8319675] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 26/05/2010 - 08:38:50 - [32158176] ----D- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 19/09/2008 - 10:13:40 - [112227528] ----D- C:\Program Files\Common Files\Ahead
O43 - CFD: 03/01/2011 - 19:38:46 - [94760384] ----D- C:\Program Files\Common Files\Apple
O43 - CFD: 13/06/2010 - 18:09:04 - [738608] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 24/05/2010 - 10:14:18 - [30445276] ----D- C:\Program Files\Common Files\DivX Shared
O43 - CFD: 11/04/2009 - 12:59:10 - [3253079] ----D- C:\Program Files\Common Files\France Telecom
O43 - CFD: 25/08/2009 - 11:50:52 - [13787835] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 19/04/2010 - 16:57:20 - [32325352] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 11/04/2010 - 11:59:04 - [418929502] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 11/04/2010 - 12:31:24 - [97607523] ----D- C:\Program Files\Common Files\muvee Technologies
O43 - CFD: 01/05/2011 - 14:50:50 - [662081] ----D- C:\Program Files\Common Files\PocketSoft
O43 - CFD: 24/05/2010 - 10:14:46 - [4673856] ----D- C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 07/08/2009 - 11:55:40 - [20445081] ----D- C:\Program Files\Common Files\Real
O43 - CFD: 02/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 02/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 23/05/2011 - 22:48:16 - [42800134] ----D- C:\Program Files\Common Files\System
O43 - CFD: 25/12/2009 - 11:44:26 - [3070792] ----D- C:\Program Files\Common Files\Ulead Systems
O43 - CFD: 11/04/2009 - 13:34:38 - [508937572] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 21/05/2011 - 22:42:12 - [88630272] ----D- C:\Program Files\Common Files\Wise Installation Wizard
O43 - CFD: 07/08/2009 - 11:55:46 - [352256] ----D- C:\Program Files\Common Files\xing shared
O43 - CFD: 18/03/2011 - 12:33:34 - [373] ----D- C:\ProgramData\3DVIA
O43 - CFD: 26/05/2010 - 08:19:50 - [789] ----D- C:\ProgramData\Adobe
O43 - CFD: 19/09/2008 - 10:13:48 - [320] ----D- C:\ProgramData\Ahead
O43 - CFD: 31/05/2009 - 14:44:20 - [19945457] ----D- C:\ProgramData\albumphoto
O43 - CFD: 25/12/2009 - 11:34:12 - [0] ----D- C:\ProgramData\AppData
O43 - CFD: 19/04/2009 - 19:06:28 - [107474432] ----D- C:\ProgramData\Apple
O43 - CFD: 19/04/2009 - 19:10:52 - [66876747] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 10/04/2009 - 11:39:38 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 30/06/2009 - 09:30:14 - [56339144] ----D- C:\ProgramData\Avira
O43 - CFD: 10/04/2009 - 11:39:38 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 24/05/2010 - 10:15:20 - [4181874] ----D- C:\ProgramData\DivX
O43 - CFD: 10/04/2009 - 11:39:38 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 26/05/2010 - 08:19:58 - [178905] ----D- C:\ProgramData\Electronic Arts
O43 - CFD: 18/12/2010 - 23:31:20 - [266] ----D- C:\ProgramData\Ezprint
O43 - CFD: 10/04/2009 - 11:39:38 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 21/04/2009 - 17:41:50 - [539380] ----D- C:\ProgramData\Google
O43 - CFD: 25/12/2009 - 11:47:38 - [148] ----D- C:\ProgramData\InstallShield
O43 - CFD: 25/01/2011 - 13:47:26 - [459232] ----D- C:\ProgramData\Lexmark Pro200-S500 Series
O43 - CFD: 21/05/2011 - 22:42:12 - [49075] ----D- C:\ProgramData\Lx_cats
O43 - CFD: 05/08/2010 - 15:47:58 - [14441930] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 12/12/2010 - 15:40:04 - [285021] ----D- C:\ProgramData\McAfee
O43 - CFD: 21/05/2011 - 22:42:12 - [853] ----D- C:\ProgramData\McAfee Security Scan
O43 - CFD: 10/04/2009 - 11:39:38 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 18/12/2010 - 22:20:08 - [1608882396] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 12/05/2011 - 12:35:00 - [64194] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 10/04/2009 - 11:39:38 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 25/06/2010 - 18:30:34 - [43960] ----D- C:\ProgramData\Musicnotes
O43 - CFD: 11/04/2010 - 14:47:14 - [0] ----D- C:\ProgramData\muvee Technologies
O43 - CFD: 19/09/2008 - 10:13:08 - [4943975] ----D- C:\ProgramData\Nero
O43 - CFD: 13/05/2009 - 11:41:18 - [15851] ----D- C:\ProgramData\Norton
O43 - CFD: 11/04/2009 - 14:30:24 - [3208742] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 28/05/2011 - 23:26:42 - [2490439] ----D- C:\ProgramData\NVIDIA
O43 - CFD: 01/05/2011 - 16:31:50 - [578505] ----D- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 03/12/2009 - 12:46:32 - [51] ----D- C:\ProgramData\Real
O43 - CFD: 11/04/2010 - 12:34:04 - [853440] ----D- C:\ProgramData\Seagate
O43 - CFD: 19/04/2010 - 16:57:24 - [119] ----D- C:\ProgramData\Sun
O43 - CFD: 12/05/2009 - 17:15:58 - [64] ----D- C:\ProgramData\Symantec
O43 - CFD: 21/05/2011 - 22:42:12 - [34146] ----D- C:\ProgramData\Tablet
O43 - CFD: 21/05/2011 - 22:33:26 - [0] ---AD- C:\ProgramData\TEMP
O43 - CFD: 19/10/2009 - 19:39:44 - [9398] ----D- C:\ProgramData\TomTom
O43 - CFD: 25/08/2009 - 11:47:20 - [4085087] ----D- C:\ProgramData\UDL
O43 - CFD: 25/12/2009 - 11:44:36 - [93242] ----D- C:\ProgramData\Ulead Systems
O43 - CFD: 17/05/2011 - 21:21:28 - [0] ----D- C:\ProgramData\WindowsSearch
O43 - CFD: 19/09/2010 - 16:55:38 - [0] ----D- C:\ProgramData\WinZip
O43 - CFD: 17/04/2009 - 17:17:24 - [0] ----D- C:\ProgramData\WinZipSE
O43 - CFD: 17/05/2011 - 12:05:20 - [109856] ----D- C:\ProgramData\Yahoo! Companion
O43 - CFD: 26/05/2010 - 08:19:50 - [5280914] ----D- C:\Users\Multimédis\AppData\Roaming\Adobe
O43 - CFD: 19/04/2009 - 16:17:48 - [48182] ----D- C:\Users\Multimédis\AppData\Roaming\Ahead
O43 - CFD: 25/12/2009 - 18:04:34 - [1176] ----D- C:\Users\Multimédis\AppData\Roaming\Ambient Design
O43 - CFD: 29/07/2010 - 14:26:40 - [197590] ----D- C:\Users\Multimédis\AppData\Roaming\Apple Computer
O43 - CFD: 17/06/2010 - 10:46:28 - [677] ----D- C:\Users\Multimédis\AppData\Roaming\Atari
O43 - CFD: 06/02/2011 - 13:35:42 - [2695] ----D- C:\Users\Multimédis\AppData\Roaming\Audacity
O43 - CFD: 01/06/2010 - 12:44:02 - [165346] ----D- C:\Users\Multimédis\AppData\Roaming\DivX
O43 - CFD: 23/06/2009 - 11:00:50 - [0] ----D- C:\Users\Multimédis\AppData\Roaming\EPSON
O43 - CFD: 11/04/2009 - 13:34:06 - [118756] ----D- C:\Users\Multimédis\AppData\Roaming\Google
O43 - CFD: 27/07/2010 - 15:40:02 - [83] ----D- C:\Users\Multimédis\AppData\Roaming\gtk-2.0
O43 - CFD: 10/04/2009 - 11:43:32 - [0] ----D- C:\Users\Multimédis\AppData\Roaming\Identities
O43 - CFD: 28/05/2009 - 15:14:28 - [0] ----D- C:\Users\Multimédis\AppData\Roaming\InstallShield
O43 - CFD: 11/04/2010 - 12:28:08 - [40611] ----D- C:\Users\Multimédis\AppData\Roaming\Leadertech
O43 - CFD: 24/10/2009 - 13:55:36 - [1531447] ----D- C:\Users\Multimédis\AppData\Roaming\LG Electronics
O43 - CFD: 11/04/2009 - 14:16:32 - [0] ----D- C:\Users\Multimédis\AppData\Roaming\Macromedia
O43 - CFD: 05/08/2010 - 15:48:10 - [20344] ----D- C:\Users\Multimédis\AppData\Roaming\Malwarebytes
O43 - CFD: 02/11/2006 - 14:37:36 - [0] ----D- C:\Users\Multimédis\AppData\Roaming\Media Center Programs
O43 - CFD: 25/05/2011 - 21:33:32 - [14736895] -S--D- C:\Users\Multimédis\AppData\Roaming\Microsoft
O43 - CFD: 02/03/2010 - 20:01:44 - [44058719] ----D- C:\Users\Multimédis\AppData\Roaming\Mozilla
O43 - CFD: 29/07/2010 - 17:33:34 - [284] ----D- C:\Users\Multimédis\AppData\Roaming\muvee Technologies
O43 - CFD: 22/04/2009 - 16:07:02 - [5471298] ----D- C:\Users\Multimédis\AppData\Roaming\OpenOffice.org
O43 - CFD: 03/12/2009 - 12:46:28 - [3792936] ----D- C:\Users\Multimédis\AppData\Roaming\Real
O43 - CFD: 10/04/2009 - 12:00:28 - [0] ----D- C:\Users\Multimédis\AppData\Roaming\SampleView
O43 - CFD: 23/04/2009 - 20:01:02 - [393654] ----D- C:\Users\Multimédis\AppData\Roaming\Thinstall
O43 - CFD: 25/12/2009 - 11:49:12 - [17685184] ----D- C:\Users\Multimédis\AppData\Roaming\Ulead Systems
O43 - CFD: 08/04/2011 - 19:54:54 - [0] ----D- C:\Users\Multimédis\AppData\Roaming\Windows Live Writer
O43 - CFD: 13/09/2009 - 14:05:00 - [12] ----D- C:\Users\Multimédis\AppData\Roaming\WinRAR
O43 - CFD: 04/08/2010 - 17:26:58 - [0] ----D- C:\Users\Multimédis\AppData\Roaming\Yahoo!
O43 - CFD: 11/04/2009 - 14:13:42 - [22721869] ----D- C:\Users\Multimédis\Appdata\Local\Adobe
O43 - CFD: 28/08/2009 - 13:17:36 - [2416748] ----D- C:\Users\Multimédis\Appdata\Local\Ahead
O43 - CFD: 19/04/2009 - 19:07:42 - [0] ----D- C:\Users\Multimédis\Appdata\Local\Apple
O43 - CFD: 01/07/2009 - 21:35:46 - [38182717] ----D- C:\Users\Multimédis\Appdata\Local\Apple Computer
O43 - CFD: 10/04/2009 - 11:43:26 - [0] -SH-D- C:\Users\Multimédis\Appdata\Local\Application Data
O43 - CFD: 26/04/2009 - 12:37:40 - [3558618324] ----D- C:\Users\Multimédis\Appdata\Local\Ares
O43 - CFD: 19/09/2010 - 17:05:44 - [272] ----D- C:\Users\Multimédis\Appdata\Local\assembly
O43 - CFD: 14/05/2011 - 19:04:46 - [10973] ----D- C:\Users\Multimédis\Appdata\Local\DOSBox
O43 - CFD: 11/04/2010 - 12:33:00 - [15197062] ----D- C:\Users\Multimédis\Appdata\Local\Downloaded Installations
O43 - CFD: 21/05/2011 - 14:00:34 - [14012879] ----D- C:\Users\Multimédis\Appdata\Local\Google
O43 - CFD: 10/04/2009 - 11:43:26 - [0] -SH-D- C:\Users\Multimédis\Appdata\Local\Historique
O43 - CFD: 05/03/2011 - 21:45:52 - [1637356787] ----D- C:\Users\Multimédis\Appdata\Local\Microsoft
O43 - CFD: 31/07/2010 - 21:07:40 - [1874248] ----D- C:\Users\Multimédis\Appdata\Local\Microsoft Games
O43 - CFD: 29/05/2010 - 21:01:42 - [203180] ----D- C:\Users\Multimédis\Appdata\Local\Microsoft Help
O43 - CFD: 02/03/2010 - 20:01:36 - [301393] ----D- C:\Users\Multimédis\Appdata\Local\Mozilla
O43 - CFD: 19/09/2010 - 17:05:48 - [830] ----D- C:\Users\Multimédis\Appdata\Local\networker
O43 - CFD: 28/05/2011 - 23:35:14 - [48897] ----D- C:\Users\Multimédis\Appdata\Local\Temp
O43 - CFD: 10/04/2009 - 11:43:26 - [0] -SH-D- C:\Users\Multimédis\Appdata\Local\Temporary Internet Files
O43 - CFD: 24/03/2010 - 21:33:02 - [78759] ----D- C:\Users\Multimédis\Appdata\Local\Unity
O43 - CFD: 11/04/2009 - 19:59:06 - [173737602] ----D- C:\Users\Multimédis\Appdata\Local\VirtualStore
O43 - CFD: 08/04/2011 - 19:55:00 - [373684] ----D- C:\Users\Multimédis\Appdata\Local\Windows Live Writer

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.19877BBF6CBFB6E1266D2E49E934651F] - 28/05/2011 - 22:32:35 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1495948]
O44 - LFC:[MD5.D049284AF192900AFAEE0AEBD6C06E65] - 28/05/2011 - 22:32:35 ---A- . (...) -- C:\Windows\System32\perfc009.dat [103872]
O44 - LFC:[MD5.0B3E71BFCDA68B82F0F945C7F525382E] - 28/05/2011 - 22:32:35 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [126420]
O44 - LFC:[MD5.8B1E968AB5A9FE2121F69A4A7C863844] - 28/05/2011 - 22:32:35 ---A- . (...) -- C:\Windows\System32\perfh009.dat [595798]
O44 - LFC:[MD5.B00B927C40C391EF215D7B51022DEC22] - 28/05/2011 - 22:32:35 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [678804]
O44 - LFC:[MD5.8CEE12005489D17500ECFD7F60EF1200] - 28/05/2011 - 22:31:23 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1534297]
O44 - LFC:[MD5.20CF194D34C2E15D6D0098FBDD012890] - 28/05/2011 - 22:26:45 ---A- . (...) -- C:\Windows\win.ini [334]
O44 - LFC:[MD5.0FFE0D016B36E904FE977EAD392A195F] - 28/05/2011 - 22:26:40 ---A- . (...) -- C:\error.log [1390739]
O44 - LFC:[MD5.250C85F3BDDDD8A970AF9728DEBB06CF] - 28/05/2011 - 22:26:18 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.418C342626C60B6A36EF7FB401CED44F] - 28/05/2011 - 22:26:12 ---A- . (...) -- C:\Windows\PFRO.log [42652]
O44 - LFC:[MD5.0AE278F491B5347F4D431255ED15F321] - 28/05/2011 - 21:57:12 ---A- . (...) -- C:\ComboFix.txt [14973]
O44 - LFC:[MD5.3CF3D4A45CC2AF973DBC30EC8D33252B] - 28/05/2011 - 21:54:57 ---A- . (...) -- C:\Windows\system.ini [215]
O44 - LFC:[MD5.952194BB8A39310D4F26598C4A8FFA0F] - 28/05/2011 - 17:54:00 ---A- . (...) -- C:\TCleaner.txt [1827]
O44 - LFC:[MD5.07F441BB1FCCB9BCC19FDDC5E9D1EA66] - 26/05/2011 - 20:44:15 ---A- . (...) -- C:\Windows\setupact.log [54779]
O44 - LFC:[MD5.CFF0FE734991BF54654558B95098687B] - 26/05/2011 - 20:21:05 ---A- . (...) -- C:\Windows\ntbtlog.txt [493948]
O44 - LFC:[MD5.AE72E8619CB31D84DA25E2435E55003C] - 25/05/2011 - 20:37:34 ---A- . (.NirSoft - NirCmd.) -- C:\Windows\NIRCMD.exe [31232]
O44 - LFC:[MD5.01D95A1F8CF13D07CC564AABB36BCC0B] - 25/05/2011 - 20:37:34 ---A- . (.SteelWerX - Freeware implementation of REG.EXE.) -- C:\Windows\SWREG.exe [161792]
O44 - LFC:[MD5.B7517DB073B28F5696A1E5528ABEB5D0] - 25/05/2011 - 20:37:34 ---A- . (.SteelWerX - Freeware implementation of SC.EXE.) -- C:\Windows\SWSC.exe [136704]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 25/05/2011 - 20:13:40 --HA- . (...) -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 25/05/2011 - 20:12:29 --HA- . (...) -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf [0]
O44 - LFC:[MD5.13EB47B4CA7280EFA144700499086F90] - 24/05/2011 - 20:14:22 ---A- . (...) -- C:\testcnx.txt [3305]
O44 - LFC:[MD5.78A96AC50EE91708DD6DCAD3C23DED7E] - 23/05/2011 - 22:10:58 ---A- . (...) -- C:\UsbFix_Upload_Me_PC-DE-MULTIMÉDI.zip [11383]
O44 - LFC:[MD5.43799C6A708B4F4E3F1D9105794E6527] - 23/05/2011 - 21:51:20 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [462024]
O44 - LFC:[MD5.358A03A7A47F0AD71E84306AC635A626] - 23/05/2011 - 21:26:39 ---A- . (.Pas de propriétaire - Programme d'authentification du périphériqu.) -- C:\Windows\System32\EhStorAuthn.dll [117248]
O44 - LFC:[MD5.9A7E344C3D52EE1A2EF003B33B1C1BF1] - 23/05/2011 - 21:26:34 ---A- . (.Microsoft - NPS Migration Plugin.) -- C:\Windows\System32\IasMigPlugin.dll [454144]
O44 - LFC:[MD5.81638E6E467193699B5A800732ECBDE4] - 23/05/2011 - 21:25:09 ---A- . (.Microsoft - Classe d'assistance SMB (partage de fichier.) -- C:\Windows\System32\SMBHelperClass.dll [83456]
O44 - LFC:[MD5.908511675091C06163178DCE998B27C5] - 21/05/2011 - 20:38:32 ---A- . (...) -- C:\Windows\System32\E4A3864A-361F-13EF-0BF3-A87E680F55F4.txt [4030]
O44 - LFC:[MD5.AE125C00206E33F75720DA6452788514] - 21/05/2011 - 17:30:32 ---A- . (...) -- C:\Windows\MEMORY.DMP [275580806]
O44 - LFC:[MD5.2ECEF5FF9F572EAF9A0925F54AAE5296] - 17/05/2011 - 19:37:38 ---A- . (...) -- C:\Windows\srun.log [12]
O44 - LFC:[MD5.58CE5703F481BF3EE288A5F064E8A51B] - 01/05/2011 - 15:27:11 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll [57960]
O44 - LFC:[MD5.8BA6BE80BA5FAA297DD716AF08B0DE2F] - 01/05/2011 - 15:27:11 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco3220140.dll [944232]
O44 - LFC:[MD5.3FF7E319D12D827554A470E127E7FEB6] - 01/05/2011 - 15:27:11 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvgenco322060.dll [855656]
O44 - LFC:[MD5.E743CF97A615B8E81A29E94619892CDE] - 01/05/2011 - 15:27:10 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 270.6.) -- C:\Windows\System32\nvcuvid.dll [2765928]
O44 - LFC:[MD5.2A46BF6D1F317B8648B37DB4C659F407] - 01/05/2011 - 15:27:10 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 270.61.) -- C:\Windows\System32\nvcuvenc.dll [2074216]
O44 - LFC:[MD5.A7E208039CBBD32AD7F487F5D787DB41] - 01/05/2011 - 15:27:08 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows Vista Kernel Mode.) -- C:\Windows\System32\drivers\nvBridge.kmd [10920]
O44 - LFC:[MD5.4BBF9429189BC4D246EC86828937500A] - 01/05/2011 - 15:27:08 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 270.61.) -- C:\Windows\System32\nvcompiler.dll [13007464]
O44 - LFC:[MD5.AEE5DD2A29BBF02398B2DB70CE1EB989] - 08/04/2011 - 06:14:00 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [4755]
O44 - LFC:[MD5.9DAA7218961710008D7385B01BD3F386] - 07/11/2010 - 18:20:24 ---A- . (...) -- C:\Windows\MBR.exe [89088]
O44 - LFC:[MD5.F1FBA6185A6A2BC6456970914875078E] - 26/04/2010 - 08:58:12 ---A- . (...) -- C:\Windows\PEV.exe [256512]
O44 - LFC:[MD5.52CB0185C73E1BA86CC7F726F22523C3] - 10/04/2009 - 22:28:22 ---A- . (...) -- C:\Windows\System32\msjetoledb40.dll [368640]
O44 - LFC:[MD5.AD4C3968CE1DB3A3A4632E1CDECA9555] - 10/04/2009 - 20:48:20 ---A- . (...) -- C:\Windows\System32\eaphost.tmf [344698]
O44 - LFC:[MD5.A3EB38D309C5682BBA0E23732C5D4AF2] - 10/04/2009 - 20:46:16 ---A- . (...) -- C:\Windows\System32\WFP.TMF [208966]
O44 - LFC:[MD5.4DF0D81B2B19B87DBFF241619DCDDC31] - 10/04/2009 - 20:43:52 ---A- . (...) -- C:\Windows\System32\dot3.tmf [442788]
O44 - LFC:[MD5.16D06DC26B8BD160AD81EE271D9577D8] - 10/04/2009 - 20:43:38 ---A- . (...) -- C:\Windows\System32\onex.tmf [392170]
O44 - LFC:[MD5.E9E66706083BFE4B0070EE0A5E8D42DB] - 10/04/2009 - 17:59:52 ---A- . (...) -- C:\Windows\System32\StructuredQuerySchema.bin [107612]
O44 - LFC:[MD5.B51BF7934D2B657454F66035AA5BFA03] - 10/04/2009 - 17:54:26 ---A- . (...) -- C:\Windows\System32\locale.nls [3662128]
O44 - LFC:[MD5.75DFEB04C0C978810720283C1B5CD7B1] - 06/03/2009 - 17:11:18 ---A- . (...) -- C:\Windows\System32\systemsf.ebd [130008]
O44 - LFC:[MD5.07400BC21119204892795F015052CDF4] - 19/02/2009 - 16:20:52 ---A- . (...) -- C:\Windows\System32\RacUR.xml [9212]
O44 - LFC:[MD5.6F7C27002EA0F9496070A1150C977DEC] - 19/02/2009 - 16:20:52 ---A- . (...) -- C:\Windows\System32\spcinstrumentation.man [9239]
O44 - LFC:[MD5.4C58B5E71FEEFD18BB7F537343C7219A] - 18/02/2009 - 10:43:20 ---A- . (...) -- C:\Windows\System32\RacUREx.xml [153]
O44 - LFC:[MD5.BCDBB5CEA1E8AEA0FA353691EB003728] - 18/02/2009 - 10:39:58 ---A- . (...) -- C:\Windows\System32\slmgr.vbs [92918]
O44 - LFC:[MD5.9E05A9C264C8A908A8E79450FCBFF047] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\grep.exe [80412]
O44 - LFC:[MD5.2B657A67AEBB84AEA5632C53E61E23BF] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\sed.exe [98816]
O44 - LFC:[MD5.5E832F4FAF5F481F2EAF3B3A48F603B8] - 31/08/2000 - 01:00:00 ---A- . (...) -- C:\Windows\zip.exe [68096]
O44 - LFC:[MD5.3F30E7D132D62476DB9BA5EBB0F7B902] - 27/02/2002 - 16:50:00 ---A- . (...) -- C:\Windows\patchw32.dll [197120]

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.63E42DC67E83EE095C7DDF894E4D0EDE] - 17/05/2011 - 10:58:23 ---A- - C:\Windows\Prefetch\AgCx_SC3_5A0D9054.db
O45 - LFCP:[MD5.BFE9BB84C060AB7C4674BB7F18B86FDE] - 21/05/2011 - 17:29:19 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-4130971726-1642276937-2762003338-1000.snp.db
O45 - LFCP:[MD5.6FCE277F32876038F6FCA412A516C85C] - 28/05/2011 - 21:42:03 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.B627C5319AE8E6A014ADAFAA27EDB3AF] - 28/05/2011 - 21:46:34 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-812AD5F1.pf
O45 - LFCP:[MD5.3D9C587364645C6A9F0C577822D58D34] - 28/05/2011 - 21:46:34 ---A- - C:\Windows\Prefetch\NIRCMD.CFXXE-3243A886.pf
O45 - LFCP:[MD5.17E7C38C0B0167CE43E6EC629911FFA7] - 28/05/2011 - 21:55:07 ---A- - C:\Windows\Prefetch\PEV.EXE-1365ECE9.pf
O45 - LFCP:[MD5.6D59C46F0401AE72EBDCD28C02529BBC] - 28/05/2011 - 21:55:19 ---A- - C:\Windows\Prefetch\FINDSTR.EXE-2E9C6FE2.pf
O45 - LFCP:[MD5.36B144FE403C69ACF55569ABE8EF64BD] - 28/05/2011 - 21:56:44 ---A- - C:\Windows\Prefetch\SORT.EXE-99A4F778.pf
O45 - LFCP:[MD5.2E4900C2AAEB229871126446979EEA7F] - 28/05/2011 - 21:57:14 ---A- - C:\Windows\Prefetch\CHCP.COM-61043047.pf
O45 - LFCP:[MD5.2170B92B576F1C3A38927954B13D8239] - 28/05/2011 - 21:57:19 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf
O45 - LFCP:[MD5.FE7A15F3579457F943C9BCEF169B99B3] - 28/05/2011 - 22:19:19 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.C7211F27AA5F88A26EFE37FEC3520D4D] - 28/05/2011 - 22:24:56 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-4130971726-1642276937-2762003338-1000.db
O45 - LFCP:[MD5.890534F8E358FEECE98E32CB3A2893E4] - 28/05/2011 - 22:24:56 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-4130971726-1642276937-2762003338-1000.db
O45 - LFCP:[MD5.1455AB970C7031EC5BD2F13FF2913DE1] - 28/05/2011 - 22:24:58 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-BAD6BD53.pf
O45 - LFCP:[MD5.89BAF012956846E2AAFD4EB55ED60CF8] - 28/05/2011 - 22:25:06 ---A- - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf
O45 - LFCP:[MD5.1376B64361581EF6A8D009B2337EE331] - 28/05/2011 - 22:25:17 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.BA5EC5D4E875EA4FAF6E7E617CA5C5E5] - 28/05/2011 - 22:25:17 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.A5169D4658495CF509563D1523BA0698] - 28/05/2011 - 22:25:18 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.32796374918F09CC627817625DDB5147] - 28/05/2011 - 22:25:18 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.02E8233AE03077CE7903F62BC8886218] - 28/05/2011 - 22:25:19 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.959E324B8F4AA3030B62F302441E0A08] - 28/05/2011 - 22:27:21 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.731A9DB17195B32653E3E4236A4D3E9F] - 28/05/2011 - 22:27:21 ---A- - C:\Windows\Prefetch\WLCOMM.EXE-272FF9F7.pf
O45 - LFCP:[MD5.05AF4C66A958235E4BD58BD32BEC07E8] - 28/05/2011 - 22:27:51 ---A- - C:\Windows\Prefetch\NMINDEXINGSERVICE.EXE-B23CB7AE.pf
O45 - LFCP:[MD5.D26331E3B8ED8F3933A36D5773837C43] - 28/05/2011 - 22:28:04 ---A- - C:\Windows\Prefetch\NMINDEXSTORESVR.EXE-D1566F23.pf
O45 - LFCP:[MD5.51567A64F4D239C79D904706EFDC2F74] - 28/05/2011 - 22:28:07 ---A- - C:\Windows\Prefetch\REALPLAY.EXE-A09C7945.pf
O45 - LFCP:[MD5.464E3434DC108BC3B00A5BBC51519EAB] - 28/05/2011 - 22:28:11 ---A- - C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf
O45 - LFCP:[MD5.DF6CF3ED8E8035C700460A9D6400DC2B] - 28/05/2011 - 22:28:59 ---A- - C:\Windows\Prefetch\INPUTPERSONALIZATION.EXE-47D98ED7.pf
O45 - LFCP:[MD5.736E1EE0FB96005BDC675DA7A4D530CC] - 28/05/2011 - 22:29:12 ---A- - C:\Windows\Prefetch\IPODSERVICE.EXE-37C43D64.pf
O45 - LFCP:[MD5.A987920D22C9741396B2D87BD7558DFD] - 28/05/2011 - 22:29:40 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.7F956F1AEDC814501548BF0D47AF64B6] - 28/05/2011 - 22:29:41 ---A- - C:\Windows\Prefetch\GOOGLECRASHHANDLER.EXE-7D76415F.pf
O45 - LFCP:[MD5.686688ECCFACE044C55F9FFB2BB120DD] - 28/05/2011 - 22:29:50 ---A- - C:\Windows\Prefetch\AVWSC.EXE-4630B658.pf
O45 - LFCP:[MD5.3299436DBCD1EBD064093C632A23ED3A] - 28/05/2011 - 22:29:50 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf
O45 - LFCP:[MD5.BAE7DF51F2EE889F5D1322E4FB2237BA] - 28/05/2011 - 22:29:52 ---A- - C:\Windows\Prefetch\DAEMONU.EXE-4BD6E483.pf
O45 - LFCP:[MD5.8C7D78ED91916D4030DBB169840BE03B] - 28/05/2011 - 22:30:52 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.1A3D67C9F89DFE4E1A72805159E31B85] - 28/05/2011 - 22:30:52 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.8602D868E2FBCFA0DA518CBE7B5C57AB] - 28/05/2011 - 22:30:53 ---A- - C:\Windows\Prefetch\COMUPDATUS.EXE-D7F34848.pf
O45 - LFCP:[MD5.06AF96CEB2B5978FD81FA2059A7BDD18] - 28/05/2011 - 22:31:01 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:[MD5.AEFD6B7517116F7ECD97310ADD07DC88] - 28/05/2011 - 22:31:05 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.E54B099709D266F3E14A3D51CA18742D] - 28/05/2011 - 22:33:10 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-FE771DDA.pf
O45 - LFCP:[MD5.6C34F0B51E88AEEA77DF8A38CE93D6AB] - 28/05/2011 - 22:33:10 ---A- - C:\Windows\Prefetch\GOOGLEUPDATEONDEMAND.EXE-76835CC9.pf
O45 - LFCP:[MD5.8DCE744D71B677669FC3257B60412338] - 28/05/2011 - 22:33:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.F8020063895F9436AB55EC5CAAA69A88] - 28/05/2011 - 22:34:09 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:[MD5.F6B8F37B516112FB0769C21EBB4F2352] - 28/05/2011 - 22:34:14 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.3A88BC84327763F016BBB49F71A3DC8E] - 28/05/2011 - 22:34:15 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-5C4C4535.pf
O45 - LFCP:[MD5.F043C91BD526D80F6AF0A62953C2D4D5] - 28/05/2011 - 22:34:19 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-246B72CF.pf
O45 - LFCP:[MD5.2E71947910B0BD1814D73F2DC762C191] - 28/05/2011 - 22:34:33 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.B2837A2BD7558000932ACD44C2822B45] - 28/05/2011 - 22:34:33 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.28C00A1C5ABA8EAB2890B5777C55CA17] - 28/05/2011 - 22:34:38 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.5756D447A07A520E65F4FEF587E2CE0A] - 28/05/2011 - 22:34:53 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-8C92AE82.pf
O45 - LFCP:[MD5.83738DBBDDDF4CF4B4363C18858BF2D4] - 28/05/2011 - 22:34:54 ---A- - C:\Windows\Prefetch\ZHPDIAG2.EXE-34777501.pf
O45 - LFCP:[MD5.235597E821FA6D0D421A0941D0620346] - 28/05/2011 - 22:34:54 ---A- - C:\Windows\Prefetch\ZHPDIAG2.TMP-6DAEAB2A.pf
O45 - LFCP:[MD5.D324FF1CCA97A3149604F528BA6785DE] - 28/05/2011 - 22:34:58 ---A- - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-09540BCD.pf
O45 - LFCP:[MD5.843A633084E6D97CFEC46DC5870CF2D9] - 28/05/2011 - 22:35:10 ---A- - C:\Windows\Prefetch\MSFEEDSSYNC.EXE-6E6FBDF4.pf
O45 - LFCP:[MD5.27A0749F83CBDCAD3CCB67A2891CB244] - 28/05/2011 - 22:35:12 ---A- - C:\Windows\Prefetch\ZHPFIX.EXE-85222C4E.pf
O45 - LFCP:[MD5.49C040A68C27B1A5BF009519CFD9A2F8] - 28/05/2011 - 22:35:49 ---A- - C:\Windows\Prefetch\ZHPDIAG.EXE-5F50D22C.pf
O45 - LFCP:[MD5.A0B00A5232B20572406B96EF35DC0093] - 28/05/2011 - 22:35:55 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf
O45 - LFCP:[MD5.2834077AB95B0992DBB3A7C2867A3108] - 28/05/2011 - 22:35:55 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf
O45 - LFCP:[MD5.59363FDBDC0C6E0E5D065536AE5670DA] - 28/05/2011 - 22:36:03 ---A- - C:\Windows\Prefetch\CONIME.EXE-9781FD5F.pf

---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.VP60"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll
O52 - TDSD: \Drivers32\"vidc.VP61"="C:\Windows\system32\vp6vfw.dll" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\system32\vp6vfw.dll
O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll
O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\Windows\System32\DivX.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"vp6vfw.dll"="EA VP6 Codec" . (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Windows\System32\vp6vfw.dll
O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.9.2 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.)

---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll

---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
O55 - MWPS:[HKCU\...\Policies\System] - "LogonHoursAction"=2
O55 - MWPS:[HKCU\...\Policies\System] - "DontDisplayLogonHoursWarnings"=1

---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveAutoRun"=3
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveAutoRun"=3
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:23:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [422968]
O58 - SDL:[MD5.60505E0041F7751BDBB80F88BF45C2CE] - 21/01/2008 - 03:23:25 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [300600]
O58 - SDL:[MD5.8A42779B02AEC986EAB64ECFC98F8BD7] - 21/01/2008 - 03:23:26 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [101432]
O58 - SDL:[MD5.241C9E37F8CE45EF51C3DE27515CA4E5] - 21/01/2008 - 03:23:27 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [149560]
O58 - SDL:[MD5.9EAEF5FC9B8E351AFA7E78A6FAE91F91] - 21/01/2008 - 03:23:00 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [17464]
O58 - SDL:[MD5.5D2888182FB46632511ACEE92FDAD522] - 21/01/2008 - 03:23:23 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [79416]
O58 - SDL:[MD5.5E2A321BD7C8B3624E41FDEC3E244945] - 21/01/2008 - 03:23:24 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [79928]
O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 10/12/2009 - 19:53:07 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [56816]
O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\Windows\system32\drivers\avipbb.sys [96104]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.0CA25E686A4928484E9FDABD168AB629] - 21/01/2008 - 03:23:00 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [19000]
O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]
O58 - SDL:[MD5.5425F74AC0C1DBD96A1E04F17D63F94C] - 21/01/2008 - 03:23:24 ---A- . (.Intel Corporation - Pilote désérialisé NDIS 6 de la carte Intel(R) PRO/1000.) -- C:\Windows\system32\drivers\E1G60I32.sys [118784]
O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:23:22 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [342584]
O58 - SDL:[MD5.8182FF89C65E4D38B2DE4BB0FB18564E] - 18/05/2009 - 12:17:00 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\system32\drivers\GEARAspiWDM.sys [26600]
O58 - SDL:[MD5.16EE7B23A009E00D835CDB79574A91A6] - 21/01/2008 - 03:23:26 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [40504]
O58 - SDL:[MD5.54155EA1B0DF185878E0FC9EC3AC3A14] - 21/01/2008 - 03:23:23 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [235064]
O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]
O58 - SDL:[MD5.CCCECE399B1990D63BFC8DE8161DD838] - 04/09/2008 - 05:27:28 ---A- . (.LG Electronics Inc. - LG CDMA USB Multi function Driver.) -- C:\Windows\system32\drivers\lgusbbus.sys [13056]
O58 - SDL:[MD5.B2EF4693E17404A178DA88318C5236B8] - 04/09/2008 - 05:28:22 ---A- . (.LG Electronics Inc. - LG CDMA USB Diagnostics Driver.) -- C:\Windows\system32\drivers\lgusbdiag.sys [19968]
O58 - SDL:[MD5.EB16939525ED91FB649EC68AFC865DCE] - 04/09/2008 - 05:27:54 ---A- . (.LG Electronics Inc. - LG CDMA USB Modem Driver.) -- C:\Windows\system32\drivers\lgusbmodem.sys [24832]
O58 - SDL:[MD5.C7E15E82879BF3235B559563D4185365] - 21/01/2008 - 03:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [96312]
O58 - SDL:[MD5.EE01EBAE8C9BF0FA072E0FF68718920A] - 21/01/2008 - 03:23:25 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [89656]
O58 - SDL:[MD5.912A04696E9CA30146A62AFA1463DD5C] - 21/01/2008 - 03:23:23 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [96312]
O58 - SDL:[MD5.836E0E09CA9869BE7EB39EF2CF3602C7] - 20/12/2010 - 18:08:40 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [20952]
O58 - SDL:[MD5.D68E165C3123ABA3B1282EDDB4213BD8] - 20/12/2010 - 18:09:00 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbamswissarmy.sys [38224]
O58 - SDL:[MD5.0001CE609D66632FA17B84705F658879] - 21/01/2008 - 03:23:27 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [31288]
O58 - SDL:[MD5.C252F32CD9A49DBFC25ECF26EBD51A99] - 21/01/2008 - 03:23:27 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [386616]
O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]
O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]
O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]
O58 - SDL:[MD5.DACBF7B3ABF5BDE5C517648F4E206836] - 24/08/2008 - 11:11:00 ---A- . (.NVIDIA Corporation - NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 177.) -- C:\Windows\system32\drivers\nvlddmkm.sys [7373568]
O58 - SDL:[MD5.2EDF9E7751554B42CBB60116DE727101] - 21/01/2008 - 03:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [102968]
O58 - SDL:[MD5.ABED0C09758D1D97DB0042DBB2688177] - 21/01/2008 - 03:23:21 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [45112]
O58 - SDL:[MD5.0A6DB55AFB7820C99AA1F3A1D270F4F6] - 21/01/2008 - 03:23:24 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1122360]
O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]
O58 - SDL:[MD5.4A0F260DF9A5333C07F4AB40CA9D4F4B] - 27/06/2008 - 10:23:26 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHDA.sys [2149912]
O58 - SDL:[MD5.6EFAF4D359F471A8EE9738F43304D2F1] - 06/12/2007 - 05:50:50 ---A- . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS6 32-bit Driver.) -- C:\Windows\system32\drivers\Rtlh86.sys [103424]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.A99C6C8B0BAA970D8AA59DDC50B57F94] - 21/01/2008 - 03:23:26 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [74808]
O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 13/07/2009 - 10:03:45 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys [28520]
O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]
O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]
O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]
O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:23:20 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [238648]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:23:23 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.5C2BDC152BBAB34F36473DEAF7713F22] - 28/09/2010 - 15:44:52 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\system32\drivers\usbaapl.sys [41984]
O58 - SDL:[MD5.AADF5587A4063F52C2C3FED7887426FC] - 21/01/2008 - 03:23:00 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [20024]
O58 - SDL:[MD5.587253E09325E6BF226B299774B728A9] - 21/01/2008 - 03:23:23 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [130616]
O58 - SDL:[MD5.448BAEEA6B3A8284742BEFEA4F49C04F] - 17/11/2007 - 23:22:16 ---A- . (.Windows (R) Codename Longhorn DDK provider - Virtual Hid Device.) -- C:\Windows\system32\drivers\walvhid.sys [5504]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC:Last File Created 25/05/2011 - 20:08:44 ---A- C:\Users\All Users\McAfee\MCLOGS\McUICnt\McUICnt\McUICnt000.log [13100]
O61 - LFC:Last File Created 25/05/2011 - 20:08:44 ---A- C:\Users\All Users\McAfee\MCLOGS\PartnerCustom\

Réponse 22 / 27

kiwimath Messages postés 12 Statut Membre

O61 - LFC:Last File Created 25/05/2011 - 20:18:39 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt13.sqm [296]
O61 - LFC:Last File Created 25/05/2011 - 20:27:54 RSHA- C:\Users\Multimédis\ntuser.pol [664]
O61 - LFC:Last File Created 25/05/2011 - 20:33:55 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\Network\Connections\Pbk\rasphone.pbk [0]
O61 - LFC:Last File Created 25/05/2011 - 20:41:10 --HA- C:\Users\Default\ntuser.dat.LOG1 [262144]
O61 - LFC:Last File Created 25/05/2011 - 20:41:10 -SHA- C:\Users\Default\NTUSER.DAT [262144]
O61 - LFC:Last File Created 26/05/2011 - 20:18:28 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt01.sqm [284]
O61 - LFC:Last File Created 26/05/2011 - 20:22:57 ---A- C:\Users\Multimédis\AppData\Local\d3d9caps.dat [1356]
O61 - LFC:Last File Created 26/05/2011 - 21:27:50 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt14.sqm [284]
O61 - LFC:Last File Created 27/05/2011 - 16:05:18 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt15.sqm [296]
O61 - LFC:Last File Created 27/05/2011 - 16:41:35 ---A- C:\Users\Multimédis\AppData\Roaming\Adobe\Acrobat\8.0\JavaScripts\glob.js [0]
O61 - LFC:Last File Created 27/05/2011 - 16:41:35 ---A- C:\Users\Multimédis\AppData\Roaming\Adobe\Acrobat\8.0\JavaScripts\glob.settings.js [10]
O61 - LFC:Last File Created 27/05/2011 - 17:07:54 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt16.sqm [296]
O61 - LFC:Last File Created 27/05/2011 - 18:54:44 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt17.sqm [296]
O61 - LFC:Last File Created 27/05/2011 - 19:15:50 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt18.sqm [296]
O61 - LFC:Last File Created 27/05/2011 - 19:18:45 ---A- C:\Users\All Users\Seagate\SeagateManager\ULC\log\maxback_.log1.txt [564486]
O61 - LFC:Last File Created 27/05/2011 - 19:27:23 ---A- C:\Users\All Users\Seagate\SeagateManager\ULC\Extension_Filter__0.txt [752]
O61 - LFC:Last File Created 27/05/2011 - 19:27:24 ---A- C:\Users\All Users\Seagate\SeagateManager\ULC\MaxBackConfig.xml [1804]
O61 - LFC:Last File Created 27/05/2011 - 19:27:24 ---A- C:\Users\All Users\Seagate\SeagateManager\ULC\schedConfig.txt [38]
O61 - LFC:Last File Created 28/05/2011 - 16:53:59 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt19.sqm [296]
O61 - LFC:Last File Created 28/05/2011 - 17:58:22 ---A- C:\Users\Multimédis\AppData\Local\Ahead\Nero Home\idx\_dx.cfs [54629]
O61 - LFC:Last File Created 28/05/2011 - 17:58:22 ---A- C:\Users\Multimédis\AppData\Local\Ahead\Nero Home\idx\deletable [4]
O61 - LFC:Last File Created 28/05/2011 - 17:58:22 ---A- C:\Users\Multimédis\AppData\Local\Ahead\Nero Home\idx\segments [44]
O61 - LFC:Last File Created 28/05/2011 - 17:58:22 ---A- C:\Users\Multimédis\AppData\Local\Ahead\Nero Home\is2.db [188416]
O61 - LFC:Last File Created 28/05/2011 - 18:00:01 ---A- C:\Users\All Users\Seagate\SeagateManager\ULC\lastBackupStatus__0 [548]
O61 - LFC:Last File Created 28/05/2011 - 18:00:01 ---A- C:\Users\All Users\Seagate\SeagateManager\ULC\log\maxback_.log [285770]
O61 - LFC:Last File Created 28/05/2011 - 18:14:45 ---A- C:\Users\Multimédis\AppData\Local\Google\Quick Search Box\cache.backup [3243008]
O61 - LFC:Last File Created 28/05/2011 - 18:15:15 ---A- C:\Users\Multimédis\AppData\Roaming\Apple Computer\Logs\asl.191501_28May11.log [762]
O61 - LFC:Last File Created 28/05/2011 - 19:45:09 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt02.sqm [296]
O61 - LFC:Last File Created 28/05/2011 - 19:47:30 ---A- C:\Users\Multimédis\AppData\Roaming\Apple Computer\Logs\asl.204718_28May11.log [762]
O61 - LFC:Last File Created 28/05/2011 - 20:54:36 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt03.sqm [200]
O61 - LFC:Last File Created 28/05/2011 - 20:58:40 ---A- C:\Users\Multimédis\AppData\Roaming\Apple Computer\Logs\asl.215829_28May11.log [762]
O61 - LFC:Last File Created 28/05/2011 - 21:30:01 ---A- C:\Users\All Users\NVIDIA\Resource.old [1043573]
O61 - LFC:Last File Created 28/05/2011 - 21:31:07 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt04.sqm [296]
O61 - LFC:Last File Created 28/05/2011 - 21:31:41 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\IdentityCRL\production\MetaConfig.xml [163]
O61 - LFC:Last File Created 28/05/2011 - 21:31:50 ---A- C:\Users\Multimédis\AppData\Roaming\Apple Computer\Logs\asl.223141_28May11.log [762]
O61 - LFC:Last File Created 28/05/2011 - 22:25:11 --HA- C:\Users\Multimédis\AppData\Local\IconCache.db [3633363]
O61 - LFC:Last File Created 28/05/2011 - 22:25:19 ---A- C:\Users\All Users\NVIDIA\Updatus\updtclient.log.bak [4282]
O61 - LFC:Last File Created 28/05/2011 - 22:26:25 ---A- C:\Users\Multimédis\AppData\Local\Temp\GoogleQuickSearchBox.log [0]
O61 - LFC:Last File Created 28/05/2011 - 22:26:28 ---A- C:\Users\Multimédis\AppData\Local\Temp\Crb6805.tmp.mht [15258]
O61 - LFC:Last File Created 28/05/2011 - 22:26:31 ---A- C:\Users\All Users\Seagate\SeagateManager\ULC\nextBackup.txt [42]
O61 - LFC:Last File Created 28/05/2011 - 22:26:33 ---A- C:\Users\All Users\McAfee Security Scan\ftstate.ini [853]
O61 - LFC:Last File Created 28/05/2011 - 22:26:33 ---A- C:\Users\All Users\NVIDIA\NvApps.xml [199739]
O61 - LFC:Last File Created 28/05/2011 - 22:26:34 ---A- C:\Users\Multimédis\AppData\Local\Temp\div7D2A.tmp\div8085.tmp [0]
O61 - LFC:Last File Created 28/05/2011 - 22:26:34 ---A- C:\Users\Multimédis\AppData\Roaming\Adobe\Acrobat\8.0\Synchronizer\adobesynchronizersu80 [0]
O61 - LFC:Last File Created 28/05/2011 - 22:26:35 ---A- C:\Users\All Users\lxebscan.log [46815]
O61 - LFC:Last File Created 28/05/2011 - 22:26:37 ---A- C:\Users\Multimédis\AppData\Local\Temp\Multimédis.bmp [31832]
O61 - LFC:Last File Created 28/05/2011 - 22:26:40 ---A- C:\Users\All Users\NVIDIA\Resource.dat [1043573]
O61 - LFC:Last File Created 28/05/2011 - 22:26:41 ---A- C:\Users\Multimédis\AppData\Roaming\Microsoft\MSN Messenger\sqmnoopt00.sqm [296]
O61 - LFC:Last File Created 28/05/2011 - 22:26:45 ---A- C:\Users\All Users\Tablet\aiptbl.ini [7353]
O61 - LFC:Last File Created 28/05/2011 - 22:26:55 ---A- C:\Users\Multimédis\Tracing\WindowsLiveMessenger-uccapi-0.uccapilog [0]
O61 - LFC:Last File Created 28/05/2011 - 22:27:05 ---A- C:\Users\Multimédis\AppData\Roaming\OpenOffice.org\3\.lock [156]
O61 - LFC:Last File Created 28/05/2011 - 22:27:05 ---A- C:\Users\Multimédis\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Common.xcu [67429]
O61 - LFC:Last File Created 28/05/2011 - 22:28:37 ---A- C:\Users\Multimédis\AppData\Local\Temp\wmplog00.sqm [1406]
O61 - LFC:Last File Created 28/05/2011 - 22:28:46 ---A- C:\Users\Multimédis\AppData\Local\Google\Quick Search Box\cache.db [3251200]
O61 - LFC:Last File Created 28/05/2011 - 22:29:10 ---A- C:\Users\Multimédis\AppData\Roaming\Apple Computer\Logs\asl.232901_28May11.log [762]
O61 - LFC:Last File Created 28/05/2011 - 22:29:43 ---A- C:\Users\All Users\NVIDIA\Updatus\journalBS.jour.dat [0]
O61 - LFC:Last File Created 28/05/2011 - 22:29:43 ---A- C:\Users\All Users\NVIDIA\Updatus\updtConfig.xml [2730]
O61 - LFC:Last File Created 28/05/2011 - 22:31:24 ---A- C:\Users\Multimédis\AppData\Local\Temp\jusched.log [401]
O61 - LFC:Last File Created 28/05/2011 - 22:33:51 ---A- C:\Users\All Users\NVIDIA\Updatus\updtclient.log [249]
O61 - LFC:Last File Created 28/05/2011 - 22:36:02 ---A- C:\Users\Multimédis\AppData\Local\Google\Quick Search Box\app_launcher_apps.data [209920]
O61 - LFC:Last File Created 28/05/2011 - 22:36:02 ---A- C:\Users\Multimédis\AppData\Local\Google\Quick Search Box\app_launcher_links.data [329728]
O61 - LFC:Last File Created 28/05/2011 - 22:37:02 ---A- C:\Users\Multimédis\AppData\Local\Ahead\Nero Home\crawlercfg.dat [3075]

---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.27 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: OTL - (.OldTimer.)
O63 - Logiciel: ToolsCleaner - (.A.Rothstein & dj QUIOU.)

---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - (.not file.) - 72948156 (72948156) .(...) - LEGACY_72948156
O64 - Services: CurCS - 13/02/2009 - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio(avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO
O64 - Services: CurCS - 10/12/2009 - C:\Windows\System32\DRIVERS\avgntflt.sys - avgntflt(avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 30/03/2009 - C:\Windows\System32\DRIVERS\avipbb.sys - avipbb(avipbb) .(.Avira GmbH - Avira Driver for RootKit Detection.) - LEGACY_AVIPBB
O64 - Services: CurCS - C:\Windows\system32\Drivers\BEEP.sys - (.not file.) - Beep (Beep) .(...) - LEGACY_BEEP
O64 - Services: CurCS - C:\Users\MULTIM~1\AppData\Local\Temp\catchme.sys (.not file.) - catchme (catchme) .(...) - LEGACY_CATCHME
O64 - Services: CurCS - (.not file.) - Symantec Eraser Control driver (eeCtrl) .(...) - LEGACY_EECTRL
O64 - Services: CurCS - (.not file.) - EraserUtilDrv10910 (EraserUtilDrv10910) .(...) - LEGACY_ERASERUTILDRV10910
O64 - Services: CurCS - (.not file.) - EraserUtilRebootDrv (EraserUtilRebootDrv) .(...) - LEGACY_ERASERUTILREBOOTDRV
O64 - Services: CurCS - C:\Windows\system32\Drivers\FASTFAT.sys - (.not file.) - FAT12/16/32 File System Driver (fastfat) .(...) - LEGACY_FASTFAT
O64 - Services: CurCS - (.not file.) - fb2bd838 (fb2bd838) .(...) - LEGACY_FB2BD838
O64 - Services: CurCS - C:\Windows\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(...) - LEGACY_FS_REC
O64 - Services: CurCS - (.not file.) - IDSVix86 (IDSVix86) .(...) - LEGACY_IDSVIX86
O64 - Services: CurCS - (.not file.) - klmd25 (klmd25) .(...) - LEGACY_KLMD25
O64 - Services: CurCS - (.not file.) - mbr (mbr) .(...) - LEGACY_MBR
O64 - Services: CurCS - C:\Windows\system32\Drivers\MSFS.sys - Msfs (Msfs) .(...) - LEGACY_MSFS
O64 - Services: CurCS - C:\Windows\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(...) - LEGACY_NDPROXY
O64 - Services: CurCS - C:\Windows\system32\Drivers\NPFS.sys - Npfs (Npfs) .(...) - LEGACY_NPFS
O64 - Services: CurCS - C:\Windows\system32\Drivers\NTFS.sys - Ntfs (Ntfs) .(...) - LEGACY_NTFS
O64 - Services: CurCS - C:\Windows\system32\Drivers\NULL.sys - Null (Null) .(...) - LEGACY_NULL
O64 - Services: CurCS - (.not file.) - PROCEXP113 (PROCEXP113) .(...) - LEGACY_PROCEXP113
O64 - Services: CurCS - (.not file.) - SCDEmu (SCDEmu) .(...) - LEGACY_SCDEMU
O64 - Services: CurCS - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(...) - LEGACY_SECDRV
O64 - Services: CurCS - C:\Windows\system32\Drivers\SPLDR.sys - (.not file.) - Security Processor Loader Driver (spldr) .(...) - LEGACY_SPLDR
O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\DRIVERS\ssmdrv.sys - ssmdrv(ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV
O64 - Services: CurCS - (.not file.) - Symantec Extended File Attributes (SymEFA) .(...) - LEGACY_SYMEFA
O64 - Services: CurCS - (.not file.) - Symantec Network Filter Driver (SYMFW) .(...) - LEGACY_SYMFW
O64 - Services: CurCS - (.not file.) - Symantec Network Filter Driver (SYMNDISV) .(...) - LEGACY_SYMNDISV
O64 - Services: CurCS - (.not file.) - Symantec Network Dispatch Driver (SYMTDI) .(...) - LEGACY_SYMTDI

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <ComFile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 9\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.com> <ComFile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 9\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox 4.0 Beta 9>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox 4.0 Beta 9\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl

---\\ Internet Feature Controls (O81)
O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe
O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe

---\\ Crack & Keygen Files (O82)
C:\Users\Multimédis\Desktop\sauvegarde session hp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\EP58KPXT\crackle.com\crackleSettings.sol
C:\Users\Multimédis\Desktop\sauvegarde session hp\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com\settings.sol
C:\Users\Multimédis\Desktop\sauvegarde session hp\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\EP58KPXT\crackle.com\crackleSettings.sol
C:\Users\Multimédis\Desktop\sauvegarde session hp\AppData\Roaming\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#crackle.com\settings.sol

---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus de l'autorité de sécurité locale.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "NetPres-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Connect to a Network Projector.) -- C:\Windows\system32\netproj.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "WinCollab-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
O87 - FAEL: "WinCollab-In-UDP" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
O87 - FAEL: "WinCollab-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
O87 - FAEL: "WinCollab-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Windows Meeting Space.) -- C:\Program Files\Windows Collaboration\WinCollab.exe
O87 - FAEL: "WinCollab-DFSR-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
O87 - FAEL: "WinCollab-DFSR-In-TCP" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Réplication DFS.) -- C:\Windows\system32\dfsr.exe
O87 - FAEL: "TCP Query User{04B24B9F-96FD-4BCA-BA1F-13934EBB5D44}C:\program files\ares\ares.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\ares\ares.exe (.not file.)
O87 - FAEL: "UDP Query User{C8A8E187-9DE3-4CDE-BB65-A23A832D282B}C:\program files\ares\ares.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\ares\ares.exe (.not file.)
O87 - FAEL: "{21785803-2594-41E2-B3A2-749779FB443C}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files\Omemo\Omemo.exe (.not file.)
O87 - FAEL: "{351CE595-0F5D-46A8-B163-1EDC63830B09}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files\Omemo\Omemo.exe (.not file.)
O87 - FAEL: "TCP Query User{044EABE2-C16F-457C-B692-C03102CE91DC}C:\program files\electronic arts\eadm\core.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "UDP Query User{6CF168BA-0395-4CA4-832A-AD44BB493116}C:\program files\electronic arts\eadm\core.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files\electronic arts\eadm\core.exe (.not file.)
O87 - FAEL: "{BD8E3FCA-1F75-462E-B235-4D5E65E6CB90}" | In - Public - P6 - TRUE | .(.Ubisoft - Lost.) -- C:\Program Files\Ubisoft\Lost Via Domus\Yeti_Final_Win32.exe
O87 - FAEL: "{651A0070-70B4-4BA0-8B66-76DDF9AF0D40}" | In - Public - P17 - TRUE | .(.Ubisoft - Lost.) -- C:\Program Files\Ubisoft\Lost Via Domus\Yeti_Final_Win32.exe
O87 - FAEL: "{9D28BA40-91B2-427C-A55B-42FCDD809817}" | In - Public - P6 - TRUE | .(.Ubisoft - Autopatch system.) -- C:\Program Files\Ubisoft\Lost Via Domus\gu.exe
O87 - FAEL: "{CD6F5BF1-BC8E-4F7C-9D67-710C328C2996}" | In - Public - P17 - TRUE | .(.Ubisoft - Autopatch system.) -- C:\Program Files\Ubisoft\Lost Via Domus\gu.exe
O87 - FAEL: "{72BCFBCB-0CEE-4061-BF9D-0A64E4203D58}" | In - Public - P6 - TRUE | .(...) -- C:\Program Files\Ubisoft\Lost Via Domus\detection\Launcher.exe
O87 - FAEL: "{592ABB35-4803-4C39-9DCD-E37FF5215862}" | In - Public - P17 - TRUE | .(...) -- C:\Program Files\Ubisoft\Lost Via Domus\detection\Launcher.exe
O87 - FAEL: "TCP Query User{23F5296E-A4BB-44E5-9BF9-8703EADE9D91}C:\program files\internet explorer\iexplore.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe
O87 - FAEL: "UDP Query User{A253663A-4B5F-496D-9897-23B65E8A4402}C:\program files\internet explorer\iexplore.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files\internet explorer\iexplore.exe
O87 - FAEL: "TCP Query User{59F12892-A431-40F3-9337-44052BA8CDA9}C:\program files\real\realplayer\realplay.exe" | In - Public - P6 - TRUE | .(.RealNetworks, Inc. - RealPlayer.) -- C:\program files\real\realplayer\realplay.exe
O87 - FAEL: "UDP Query User{639A056D-118C-41CC-AB29-9FF6491CA952}C:\program files\real\realplayer\realplay.exe" | In - Public - P17 - TRUE | .(.RealNetworks, Inc. - RealPlayer.) -- C:\program files\real\realplayer\realplay.exe
O87 - FAEL: "{8496000A-58F4-4061-97D7-209EB5F37CB9}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{59F66173-88EB-47C0-94E1-4D0A6C643B74}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\lxebcoms.exe
O87 - FAEL: "{8F5908B3-CF0F-448A-80CE-4CF0C4F39259}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\LXEBcoms.exe
O87 - FAEL: "{65A9B468-FE3B-41C9-B7BE-C404939CE1FB}" | In - None - P17 - TRUE | .(.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\LXEBcoms.exe
O87 - FAEL: "{AFBBE77E-2FFB-410E-8A3D-32C384A0B5C9}" | In - Public - P6 - TRUE | .(.ABBYY (BIT Software) - FineScanManager.) -- C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe
O87 - FAEL: "{1DEEE846-78E7-472A-B9AB-6667DB69E55C}" | In - Public - P17 - TRUE | .(.ABBYY (BIT Software) - FineScanManager.) -- C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe
O87 - FAEL: "{57C25806-0963-48F5-913C-C1D6B5ACD387}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{2B33E298-F5CE-477C-B2B3-3AB8C2142AB2}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{5200D831-21CD-4202-B107-56F3F0D810FF}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe
O87 - FAEL: "{E3658B3B-D71B-490C-AEB2-B35663AB579F}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O87 - FAEL: "{9094C733-41C3-4C34-9553-32AE2A094365}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O87 - FAEL: "{EA11D25B-419E-4412-B435-62F4E71764DC}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O87 - FAEL: "TCP Query User{19EF155B-B3FD-4C74-B7EB-F0CA17CBC4BE}C:\program files\google\google earth\plugin\geplugin.exe" | In - Public - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\plugin\geplugin.exe
O87 - FAEL: "UDP Query User{89041374-83AE-4ECB-BAAE-7F559F333A09}C:\program files\google\google earth\plugin\geplugin.exe" | In - Public - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\plugin\geplugin.exe

---\\ Scan Additionnel (O88)
Database Version : 8171 - (27/05/2011)
Clés trouvées (Keys found) : 2
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\AppID\SoftwareUpdate.exe] =>PUP.Eorezo
[HKLM\Software\InstallPedia] =>Adware.InstallPedia

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 13/07/2009 108289 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
SR - | Auto 18/08/2009 185089 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 16/10/2010 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 07/10/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 25/04/2009 266240 | (CSHelper) . (...) - C:\Windows\system32\CSHelper.exe
SR - | Auto 25/09/2009 189736 | (FreeAgentGoNext Service) . (.Seagate Technology LLC.) - C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
SS - | Auto 29/01/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 29/01/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - | Demand 21/04/2009 182768 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Demand 13/12/2010 820008 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Auto 14/04/2010 193192 | (lxebCATSCustConnectService) . (.Lexmark International, Inc..) - C:\Windows\system32\spool\DRIVERS\W32X86\3\lxebserv.exe
SR - | Auto 14/04/2010 598696 | (lxeb_device) . (...) - C:\Windows\system32\lxebcoms.exe
SS - | Demand 15/01/2010 227232 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
SS - | Demand 28/11/2007 800040 | (NBService) . (.Nero AG.) - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
SR - | Demand 27/06/2007 279848 | (NMIndexingService) . (.Nero AG.) - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
SR - | Auto 24/08/2008 196608 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 08/04/2011 2218600 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
SS - | Auto 05/12/2006 624504 | (OPTENET_FILTER) . (.Orange.) - C:\Program Files\Controle Parental\bin\optproxy.exe
SR - | Auto 07/04/2011 378472 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 29/10/2008 372384 | (WTService) . (...) - C:\Windows\system32\atwtusb.exe
SR - | Auto 21/01/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe

---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by Multimédis at 28/05/2011 23:39:45

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS PCIIDE.SYS PCIIDEX.SYS atapi.sys
1 ntkrnlpa!IofCallDriver[0x8228D912] -> \Device\Harddisk0\DR0[0x85BB5578]
3 CLASSPNP[0x8A5A58B3] -> ntkrnlpa!IofCallDriver[0x8228D912] -> [0x852ED1D8]
5 acpi[0x806A06BC] -> ntkrnlpa!IofCallDriver[0x8228D912] -> \Device\Ide\IdeDeviceP0T0L0-0[0x85320528]
kernel: MBR read successfully
user & kernel MBR OK

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Multimédis at 28/05/2011 23:39:47

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

End of the scan (1495 lines in 03mn 57s)(4)

Réponse 23 / 27

Utilisateur anonyme

Re

Pour me transmettre ce rapport ZHPDiag clique sur ce lien :

http://www.cijoint.fr/index.php

http://pjjoint.malekal.com/

Clique sur Parcourir et cherche le fichier : Nom_complet_du_fichier (Fichier demandé )
Clique sur Ouvrir.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.

@+

Réponse 24 / 27

kiwimath Messages postés 12 Statut Membre

https://pjjoint.malekal.com/files.php?id=1fdb57355a15713

...

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 25 / 27

Utilisateur anonyme

Bonjour

Télécharge ceci Pre_Scan.exe
de Gen Hackman

Avertissement: Il y aura une extinction courte du bureau --> pas de panique.

une fois telechargé lance-le , laisse faire le scan puis colle le contenu de "Pre_scan.txt" qui apparaitra à son terme , sur le bureau.

si l'outil détecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"

si l'outil semble ne pas avoir fonctionné clique plusieurs fois très rapidement dessus ou renomme-le winlogon ou change son extension en .com ou .scr

@+

Réponse 26 / 27

kiwimath Messages postés 12 Statut Membre

Mon ordinateur se reconnecte à internet!!
Le fautif était le contrôle parental qui -après diverses manips'- a pu être supprimé.
C'est la joie ; ) Merci à ceux qui m'ont aidé!

Réponse 27 / 27

Utilisateur anonyme

Re

Super ;-)))

Supprimons tous ces programmes utilisés.

1) Télécharge DelFix de Xplode
Ou si problème sur ce site : http://sd-1.archive-host.com/membres/up/17959594961240255/DelFix.exe

Ou encore : https://www.commentcamarche.net/download/s/delfix

* Lance le.
* A l'invite, [Suppression]
* Un rapport va s'ouvrir à la fin, colle le dans la réponse

Ensuite pour le désinstaller ; tu relances et tu passes à l'option [Désinstallation]

2)C - Ccleaner :

https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/

.enregistres le sur le bureau
.double-cliques sur le fichier pour lancer l'installation
.sur la fenêtre de l'installation langage bien choisir français et OK
.cliques sur <gras>suivant
.lis la licence et j'accepte
.cliques sur suivant
.la tu ne gardes de coché que mettre un raccourci sur le bureau et puis contrôler automatiquement les mises à jour de Ccleaner
.cliques sur installer
.cliques sur fermer
.double-cliques sur l'icône de Ccleaner pour l'ouvrir
.une fois ouvert tu cliques sur option et puis avancé
.tu décoches effacer uniquement les fichiers, du dossier temp de windows plus vieux que 24 heures
.cliques sur nettoyeur
.cliques sur windows et dans la colonne avancé
. coches la première case vieilles données du perfetch ce qui te donnes la case vielles données du perfetch et la case avancé qui c'est coché automatiquement mais que celle-la
.cliques sur analyse une fois l'analyse terminé
.cliques sur lancer le nettoyage et sur la demande de confirmation OK il vas falloir que tu le refasses une autre fois une fois fini vérifies en appuyant de nouveau sur analyse pour être sur qu'il n'y est plus rien
.clique maintenant sur registre et puis sur rechercher les erreurs
.laisse tout coché et clique sur réparer les erreurs sélectionnées
.il te demande de sauvegarder OUI
.tu lui donnes un nom pour pouvoir la retrouver et enregistre
.clique sur corriger toutes les erreurs sélectionnées et sur la demande de confirmation OK
.il supprime et une fois fermé tu vérifies en relançant rechercher les erreurs
.tu retournes dans option et tu recoches la case effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures et sur nettoyeur, windows sous avancé tu décoches la première case vieilles données du perfetch
.tu peux fermer Ccleaner.

Tuto : https://jesses.pagesperso-orange.fr/Docs/Logiciels/CCleaner.htm

3)Purge la restauration sur Vista.
Comment faire :

https://www.commentcamarche.net/faq/13214-vista-desactiver-reactiver-la-restauration-systeme-de-vista

Cela supprime toutes traces des diverses infections ;et permettra une éventuelle restauration sans infections

@+
---------Contributeur Sécurité---------
On a tous été un jour débutant dans quelque chose.
Mais le savoir est la récompense de l'assiduité.

Utilisateur anonyme

salut possible de lire le rapport de pre_scan ?

Utilisateur anonyme

Bonsoir gen ;-)

@ kiwimath

Effectivement ;poste moi ce rapport.

@+

Discussions similaires

Code de connexion internet gratuit pour mobile

35 GO à l'étranger

FOTOSE (allemagne)

ATTENTION : escroquerie à la carte bleue !!

Code pour avoir internet gratuit sur Orange (Cameroum).

Plus de connection internet - trojan

27 réponses

Votre réponse

Discussions similaires

Newsletters