Sujet Précédent Sujet Suivant

Pc qui rame HELP!

maverick406 Messages postés 84 Statut Membre -  
maverick406 Messages postés 84 Statut Membre -
Bonjour,

Voila depuis peut mon ordinateur ces mit a ramer a un point fou !
Je vous explique:
- je lance l'ordinateur, le démarrage de Windows s'affiche, jusqu'à la rien de bien méchant...Ensuite je clic sur ma session,un bienvenue s'affiche (win7) mais le problème ces que le bienvenue dure 10 min ensuite j'arrive au bureau enfin bureau.. écran noir --' ! 15 min plus tard le bureau s'affiche ! Puis des que je clic sur démarrer sa rame a un point mais genre comme sa >> U___u !
Je pense que cela vient d'un virus ! Car je télécharge plein de truc ^^..Je pense allez voir l'informaticien mais j'attend de recevoir des réponse.Je précise que j'ai defragementer mon C:/ j'ai carement suprimer ma session ^^ mais bon rien ni fait! ='( ..Si quelqu'un pouvait m'aider je lui en serai extrmement reconaissant ! ;D

Merci.

A voir également:

13 réponses

Réponse 1 / 13
joystik Messages postés 25 Statut Membre 1
 
Je ne suis pas expert en la matière mais voila ce que je te conceil

-Analyse antivirus
-Analyse ccleaner
-Defragmentation avec defraggler

Si ton problème persiste reinstalle windows ^^ et si tu vois que tu a un virus va en mode sans échec pour les supprimer , ca les rendra inactif et tu pourra les enlever plus facilement.

Cordialement, Joystik
1
maverick406 Messages postés 84 Statut Membre 4
 
l'antivirus est desactivé au demarrage est il est impossible de le reactivé !
0
Réponse 2 / 13
Utilisateur anonyme
 
lol

▶ Télécharge Reload_TDSSKiller

▶ Lance le

choisis : télécharger la derniere version

▶ relance-le

choisis : lancer le nettoyage

TDSSKiller va s'ouvrir , clique sur "Start Scan"

une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau

▶ Copie/Colle son contenu dans ta prochaine réponse.
0
maverick406 Messages postés 84 Statut Membre 4
 
il faut deja que l'ordinateur reponde --' !
0
Réponse 3 / 13
Utilisateur anonyme
 
essaie en mode sans echec
0
maverick406 Messages postés 84 Statut Membre 4
 
seb seb sa beug enormement mais j'essaye de faire avec !
0
Utilisateur anonyme
 
??
0
maverick406 Messages postés 84 Statut Membre 4
 
ba l'ordinateur des que j'ouvre internet sa met 3 plombe --' ensuite chrome.exe a cesser de fonctionner mais apres sa marche tout en beugant ^^ mais bon voila faut etre patient..
0
maverick406 Messages postés 84 Statut Membre 4
 
Je te re-merci dans un 2 eme cas de m'aider ces vraiment simpa !
0
Utilisateur anonyme
 
tu me parles avec un autre pc là non ?
0
Réponse 4 / 13
Utilisateur anonyme
 
explique moi ce que tu as fait pas-à-pas
0
maverick406 Messages postés 84 Statut Membre 4
 
J'ai télécharger ton logiciel.
je lai ouvert
j'ai cliker sur exécuter
une fenêtre ces afficher j'ai cliker sur télécharger la derniere version
j'ai cliker sur le logo en bas a droite
une fenêtre cmd ou invite de commande ces ouvert
puis j'ai re-cliker sur le logiciel est j'ai cliker sur start scan je suis a 3:38 sc
0
maverick406 Messages postés 84 Statut Membre 4
 
encore 10 min ;D !
0
maverick406 Messages postés 84 Statut Membre 4
 
8
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 13
maverick406 Messages postés 84 Statut Membre 4
 
Je peut preciser aussi que j'ai anti-bite malware mais il beuge vers 12 min de recherche --' !
0
Utilisateur anonyme
 
il beugue comment ?
0
maverick406 Messages postés 84 Statut Membre 4
 
alors l'entré : malware antibite en cour de scan
plat : malware anti-bite a cesser de fonctionner
dessert : le bureau ne repond plus,la barre de tache ne repond plus..--'
0
Réponse 6 / 13
Utilisateur anonyme
 
ouais ca sent le rootkit ou virut/variante cette histoire..à lire ce que tdsskiller va nous dire :)
0
Réponse 7 / 13
maverick406 Messages postés 84 Statut Membre 4
 
2011/06/08 19:50:27.0420 2820 TDSS rootkit removing tool 2.5.4.0 Jun 7 2011 17:31:48
2011/06/08 19:50:28.0534 2820 ================================================================================
2011/06/08 19:50:28.0534 2820 SystemInfo:
2011/06/08 19:50:28.0534 2820
2011/06/08 19:50:28.0534 2820 OS Version: 6.1.7601 ServicePack: 1.0
2011/06/08 19:50:28.0534 2820 Product type: Workstation
2011/06/08 19:50:28.0534 2820 ComputerName: LAFONT-PC
2011/06/08 19:50:28.0534 2820 UserName: mel
2011/06/08 19:50:28.0534 2820 Windows directory: C:\windows
2011/06/08 19:50:28.0534 2820 System windows directory: C:\windows
2011/06/08 19:50:28.0535 2820 Processor architecture: Intel x86
2011/06/08 19:50:28.0535 2820 Number of processors: 2
2011/06/08 19:50:28.0535 2820 Page size: 0x1000
2011/06/08 19:50:28.0535 2820 Boot type: Normal boot
2011/06/08 19:50:28.0535 2820 ================================================================================
2011/06/08 19:50:41.0016 2820 Initialize success
2011/06/08 19:50:43.0599 1088 ================================================================================
2011/06/08 19:50:43.0599 1088 Scan started
2011/06/08 19:50:43.0599 1088 Mode: Manual;
2011/06/08 19:50:43.0599 1088 ================================================================================
2011/06/08 19:51:04.0462 1088 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys
2011/06/08 19:51:04.0620 1088 5U876UVC (080a40550fb95a328917512f3f5a0409) C:\windows\system32\DRIVERS\5U876.sys
2011/06/08 19:51:04.0682 1088 Accelerometer (4df5e6215a102a192b2b6dbb61f2fba5) C:\windows\system32\DRIVERS\Accelerometer.sys
2011/06/08 19:51:04.0757 1088 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys
2011/06/08 19:51:04.0855 1088 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys
2011/06/08 19:51:04.0935 1088 ADIHdAudAddService (6c61bceb60c2c187e6f96001fd69493e) C:\windows\system32\drivers\ADIHdAud.sys
2011/06/08 19:51:04.0988 1088 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys
2011/06/08 19:51:05.0026 1088 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys
2011/06/08 19:51:05.0061 1088 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys
2011/06/08 19:51:05.0157 1088 AFD (1151fd4fb0216cfed887bfde29ebd516) C:\windows\system32\drivers\afd.sys
2011/06/08 19:51:05.0233 1088 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\windows\system32\DRIVERS\AGRSM.sys
2011/06/08 19:51:05.0309 1088 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys
2011/06/08 19:51:05.0365 1088 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys
2011/06/08 19:51:17.0465 1088 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys
2011/06/08 19:52:12.0476 1088 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys
2011/06/08 19:52:12.0863 1088 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys
2011/06/08 19:52:12.0962 1088 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys
2011/06/08 19:52:13.0046 1088 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys
2011/06/08 19:52:13.0157 1088 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys
2011/06/08 19:52:13.0242 1088 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys
2011/06/08 19:52:13.0346 1088 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys
2011/06/08 19:52:13.0471 1088 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys
2011/06/08 19:52:13.0575 1088 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys
2011/06/08 19:52:13.0611 1088 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys
2011/06/08 19:52:13.0729 1088 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys
2011/06/08 19:52:21.0498 1088 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys
2011/06/08 19:53:22.0686 1088 AtiHDAudioService (95b1e9804ca10d096c0383f7c6684950) C:\windows\system32\drivers\AtihdW73.sys
2011/06/08 19:53:22.0788 1088 AtiHdmiService (e2398389648b5d44dc63ca43fdd5b3f8) C:\windows\system32\drivers\AtiHdmi.sys
2011/06/08 19:53:22.0994 1088 atikmdag (a4252328d2b1520571102992ef0b0e5c) C:\windows\system32\DRIVERS\atikmdag.sys
2011/06/08 19:53:23.0205 1088 avgntflt (47b879406246ffdced59e18d331a0e7d) C:\windows\system32\DRIVERS\avgntflt.sys
2011/06/08 19:53:23.0303 1088 avipbb (5fedef54757b34fb611b9ec8fb399364) C:\windows\system32\DRIVERS\avipbb.sys
2011/06/08 19:53:23.0409 1088 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys
2011/06/08 19:53:23.0504 1088 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys
2011/06/08 19:53:23.0697 1088 BCM43XX (b9e94d37fc08525d893b632a0ca2e18c) C:\windows\system32\DRIVERS\bcmwl6.sys
2011/06/08 19:53:23.0799 1088 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys
2011/06/08 19:53:23.0853 1088 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys
2011/06/08 19:53:26.0380 1088 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys
2011/06/08 19:53:59.0339 1088 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys
2011/06/08 19:54:21.0574 1088 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys
2011/06/08 19:54:31.0413 1088 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys
2011/06/08 19:54:31.0485 1088 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys
2011/06/08 19:54:31.0557 1088 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys
2011/06/08 19:54:31.0621 1088 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys
2011/06/08 19:54:31.0736 1088 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\windows\system32\drivers\BthEnum.sys
2011/06/08 19:54:31.0811 1088 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys
2011/06/08 19:54:31.0885 1088 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\windows\system32\DRIVERS\bthpan.sys
2011/06/08 19:54:31.0990 1088 BTHPORT (195c41cc67e9e1cedd960ccb74925920) C:\windows\System32\Drivers\BTHport.sys
2011/06/08 19:54:32.0098 1088 BTHUSB (43b3206dd654e783aa7e4ead340a43b8) C:\windows\System32\Drivers\BTHUSB.sys
2011/06/08 19:54:32.0183 1088 btwaudio (d57d29132efe13a83133d9bd449e0cf1) C:\windows\system32\drivers\btwaudio.sys
2011/06/08 19:54:32.0271 1088 btwavdt (d282c14a69357d0e1bafaecc2ca98c3a) C:\windows\system32\DRIVERS\btwavdt.sys
2011/06/08 19:54:32.0359 1088 btwl2cap (aafd7cb76ba61fbb08e302da208c974a) C:\windows\system32\DRIVERS\btwl2cap.sys
2011/06/08 19:54:32.0450 1088 btwrchid (02eb4d2b05967df2d32f29c84ab1fb17) C:\windows\system32\DRIVERS\btwrchid.sys
2011/06/08 19:54:32.0526 1088 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys
2011/06/08 19:54:32.0658 1088 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys
2011/06/08 19:54:55.0145 1088 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys
2011/06/08 19:54:55.0212 1088 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys
2011/06/08 19:54:55.0304 1088 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys
2011/06/08 19:54:55.0391 1088 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys
2011/06/08 19:54:55.0466 1088 CNG (1b675691ed940766149c93e8f4488d68) C:\windows\system32\Drivers\cng.sys
2011/06/08 19:54:55.0567 1088 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys
2011/06/08 19:54:55.0666 1088 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys
2011/06/08 19:54:55.0744 1088 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys
2011/06/08 19:54:55.0864 1088 dfmirage (699ef0fd9ae72b7f5ad756e382c73e0e) C:\windows\system32\DRIVERS\dfmirage.sys
2011/06/08 19:54:55.0956 1088 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys
2011/06/08 19:54:56.0029 1088 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys
2011/06/08 19:54:56.0103 1088 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys
2011/06/08 19:54:56.0209 1088 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys
2011/06/08 19:54:56.0314 1088 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\windows\system32\DRIVERS\dtsoftbus01.sys
2011/06/08 19:54:56.0418 1088 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys
2011/06/08 19:56:03.0404 1088 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys
2011/06/08 19:56:03.0641 1088 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys
2011/06/08 19:56:03.0758 1088 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys
2011/06/08 19:56:03.0835 1088 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys
2011/06/08 19:56:03.0859 1088 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys
2011/06/08 19:56:03.0912 1088 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys
2011/06/08 19:56:03.0957 1088 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys
2011/06/08 19:56:03.0981 1088 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys
2011/06/08 19:56:04.0024 1088 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys
2011/06/08 19:56:04.0069 1088 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys
2011/06/08 19:56:04.0097 1088 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys
2011/06/08 19:56:04.0173 1088 fssfltr (8e307583e6b45f1accf762fe22a61c0d) C:\windows\system32\DRIVERS\fssfltr.sys
2011/06/08 19:56:04.0213 1088 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\windows\system32\drivers\Fs_Rec.sys
2011/06/08 19:56:04.0281 1088 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys
2011/06/08 19:56:04.0319 1088 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys
2011/06/08 19:56:04.0458 1088 hamachi (833051c6c6c42117191935f734cfbd97) C:\windows\system32\DRIVERS\hamachi.sys
2011/06/08 19:56:04.0490 1088 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys
2011/06/08 19:56:04.0555 1088 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys
2011/06/08 19:56:04.0609 1088 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys
2011/06/08 19:56:04.0646 1088 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys
2011/06/08 19:56:04.0680 1088 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys
2011/06/08 19:56:04.0708 1088 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys
2011/06/08 19:56:27.0319 1088 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\DRIVERS\hidusb.sys
2011/06/08 19:56:27.0452 1088 hpdskflt (e1d82f0c8456abb03b7df5d623ca47d1) C:\windows\system32\DRIVERS\hpdskflt.sys
2011/06/08 19:56:27.0575 1088 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\windows\system32\DRIVERS\HpqKbFiltr.sys
2011/06/08 19:56:27.0700 1088 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys
2011/06/08 19:56:27.0796 1088 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys
2011/06/08 19:56:27.0854 1088 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys
2011/06/08 19:56:27.0920 1088 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys
2011/06/08 19:56:27.0968 1088 iaStor (01446278d4563b3013c92830ae6cbb26) C:\windows\system32\DRIVERS\iaStor.sys
2011/06/08 19:56:28.0048 1088 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys
2011/06/08 19:56:28.0214 1088 igfx (ad626f6964f4d364d226c39e06872dd3) C:\windows\system32\DRIVERS\igdkmd32.sys
2011/06/08 19:56:28.0394 1088 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys
2011/06/08 19:56:28.0460 1088 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys
2011/06/08 19:56:28.0495 1088 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys
2011/06/08 19:56:28.0528 1088 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys
2011/06/08 19:56:28.0597 1088 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys
2011/06/08 19:56:28.0637 1088 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys
2011/06/08 19:56:33.0573 1088 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys
2011/06/08 19:57:23.0674 1088 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys
2011/06/08 19:57:36.0072 1088 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys
2011/06/08 19:57:36.0257 1088 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys
2011/06/08 19:57:36.0348 1088 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys
2011/06/08 19:57:36.0445 1088 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\windows\system32\Drivers\ksecdd.sys
2011/06/08 19:57:36.0519 1088 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\windows\system32\Drivers\ksecpkg.sys
2011/06/08 19:57:36.0620 1088 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys
2011/06/08 19:57:36.0709 1088 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys
2011/06/08 19:57:36.0796 1088 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys
2011/06/08 19:57:36.0884 1088 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys
2011/06/08 19:57:36.0961 1088 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys
2011/06/08 19:57:37.0050 1088 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys
2011/06/08 19:57:37.0177 1088 MBAMProtector (3d2c13377763eeac0ca6fb46f57217ed) C:\windows\system32\drivers\mbam.sys
2011/06/08 19:57:39.0657 1088 MBAMSwissArmy (b309912717c29fc67e1ba4730a82b6dd) C:\windows\system32\drivers\mbamswissarmy.sys
2011/06/08 19:58:12.0514 1088 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys
2011/06/08 19:58:24.0937 1088 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys
2011/06/08 19:58:45.0674 1088 MfeAVFK (64b96de8c492bd435372d9130a535f1d) C:\windows\system32\drivers\MfeAVFK.sys
2011/06/08 19:58:45.0864 1088 MfeBOPK (078e87a89d36cc3516f19d5fb518bddc) C:\windows\system32\drivers\MfeBOPK.sys
2011/06/08 19:58:46.0008 1088 mfehidk (168c565101fd5b9db694efdec91fafa9) C:\windows\system32\drivers\mfehidk.sys
2011/06/08 19:58:46.0134 1088 MfeRKDK (e0842f67dc9bc4d21d1e319610ebe9e5) C:\windows\system32\drivers\MfeRKDK.sys
2011/06/08 19:58:46.0211 1088 mfetdik (43a7acbbd70ecd62f0b63486c72089a3) C:\windows\system32\drivers\mfetdik.sys
2011/06/08 19:58:46.0287 1088 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys
2011/06/08 19:58:46.0508 1088 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys
2011/06/08 19:58:46.0591 1088 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\DRIVERS\mouclass.sys
2011/06/08 19:58:46.0863 1088 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys
2011/06/08 19:58:46.0920 1088 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys
2011/06/08 19:58:46.0969 1088 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys
2011/06/08 19:58:47.0021 1088 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys
2011/06/08 19:58:47.0084 1088 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys
2011/06/08 19:59:09.0701 1088 mrxsmb (ed3d3419b064f28d812995ed8cadc541) C:\windows\system32\DRIVERS\mrxsmb.sys
2011/06/08 19:59:09.0842 1088 mrxsmb10 (dc914446049169a964e27fd8888ffaee) C:\windows\system32\DRIVERS\mrxsmb10.sys
2011/06/08 19:59:10.0008 1088 mrxsmb20 (e7d90388d14fae057c166c1801e0bf94) C:\windows\system32\DRIVERS\mrxsmb20.sys
2011/06/08 19:59:10.0116 1088 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys
2011/06/08 19:59:10.0217 1088 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys
2011/06/08 19:59:10.0444 1088 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys
2011/06/08 19:59:10.0485 1088 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys
2011/06/08 19:59:10.0520 1088 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys
2011/06/08 19:59:10.0630 1088 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys
2011/06/08 19:59:10.0716 1088 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys
2011/06/08 19:59:10.0811 1088 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys
2011/06/08 19:59:10.0845 1088 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys
2011/06/08 19:59:10.0908 1088 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys
2011/06/08 19:59:33.0117 1088 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys
2011/06/08 19:59:33.0193 1088 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys
2011/06/08 19:59:33.0296 1088 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys
2011/06/08 19:59:33.0429 1088 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys
2011/06/08 19:59:33.0532 1088 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys
2011/06/08 19:59:33.0631 1088 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys
2011/06/08 19:59:33.0665 1088 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys
2011/06/08 19:59:33.0741 1088 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys
2011/06/08 19:59:33.0799 1088 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys
2011/06/08 19:59:33.0854 1088 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys
2011/06/08 19:59:33.0899 1088 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys
2011/06/08 19:59:33.0956 1088 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys
2011/06/08 19:59:34.0111 1088 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\windows\system32\DRIVERS\netw5v32.sys
2011/06/08 19:59:34.0291 1088 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys
2011/06/08 19:59:34.0338 1088 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys
2011/06/08 19:59:34.0373 1088 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys
2011/06/08 19:59:34.0452 1088 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys
2011/06/08 19:59:56.0921 1088 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys
2011/06/08 20:00:41.0399 1088 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys
2011/06/08 20:00:41.0546 1088 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys
2011/06/08 20:00:41.0875 1088 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys
2011/06/08 20:00:42.0060 1088 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys
2011/06/08 20:00:42.0168 1088 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys
2011/06/08 20:00:42.0226 1088 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\windows\system32\drivers\partmgr.sys
2011/06/08 20:00:42.0254 1088 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys
2011/06/08 20:00:42.0321 1088 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys
2011/06/08 20:00:42.0379 1088 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys
2011/06/08 20:00:42.0414 1088 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys
2011/06/08 20:00:42.0456 1088 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys
2011/06/08 20:00:42.0525 1088 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys
2011/06/08 20:00:42.0855 1088 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys
2011/06/08 20:00:42.0897 1088 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys
2011/06/08 20:00:42.0971 1088 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys
2011/06/08 20:00:43.0007 1088 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\windows\system32\Drivers\PxHelp20.sys
2011/06/08 20:00:43.0056 1088 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys
2011/06/08 20:00:43.0165 1088 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys
2011/06/08 20:01:26.0205 1088 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys
2011/06/08 20:01:51.0245 1088 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys
2011/06/08 20:01:51.0379 1088 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys
2011/06/08 20:02:15.0322 1088 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys
2011/06/08 20:02:15.0816 1088 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys
2011/06/08 20:02:16.0078 1088 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys
2011/06/08 20:02:16.0386 1088 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys
2011/06/08 20:02:16.0486 1088 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys
2011/06/08 20:02:51.0898 1088 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys
2011/06/08 20:03:24.0563 1088 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys
2011/06/08 20:03:25.0045 1088 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys
2011/06/08 20:03:25.0498 1088 RDPWD (288b06960d78428ff89e811632684e20) C:\windows\system32\drivers\RDPWD.sys
2011/06/08 20:03:48.0474 1088 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys
2011/06/08 20:03:48.0982 1088 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\windows\system32\DRIVERS\rfcomm.sys
2011/06/08 20:03:49.0164 1088 RsFx0102 (fedd2710b75be3ecf078adace790c423) C:\windows\system32\DRIVERS\RsFx0102.sys
2011/06/08 20:03:49.0274 1088 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys
2011/06/08 20:04:40.0810 1088 RsvLock (13335d083935ab88e09c9acc077355b5) C:\windows\system32\drivers\RsvLock.sys
2011/06/08 20:04:56.0012 1088 SafeBoot (062b82fa74c895382ab0784d493c8c9c) C:\windows\system32\drivers\SafeBoot.sys
2011/06/08 20:04:56.0012 1088 Suspicious file (NoAccess): C:\windows\system32\drivers\SafeBoot.sys. md5: 062b82fa74c895382ab0784d493c8c9c
2011/06/08 20:04:56.0013 1088 SafeBoot - detected LockedFile.Multi.Generic (1)
2011/06/08 20:04:57.0030 1088 SbAlg (c9cb2c392c35cbee2733c836d23dc642) C:\windows\system32\drivers\SbAlg.sys
2011/06/08 20:05:42.0199 1088 SbFsLock (b5a8ecdee930b52fd3ba35700a15ea53) C:\windows\system32\drivers\SbFsLock.sys
2011/06/08 20:06:04.0935 1088 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys
2011/06/08 20:06:05.0261 1088 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys
2011/06/08 20:06:05.0425 1088 SCREAMINGBDRIVER (d3fa9fb502ad62001101f495bbbac42e) C:\windows\system32\drivers\ScreamingBAudio.sys
2011/06/08 20:06:05.0633 1088 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys
2011/06/08 20:06:05.0755 1088 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys
2011/06/08 20:06:05.0869 1088 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys
2011/06/08 20:07:07.0281 1088 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys
2011/06/08 20:07:26.0562 1088 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys
2011/06/08 20:08:09.0732 1088 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys
2011/06/08 20:08:25.0006 1088 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys
2011/06/08 20:08:25.0444 1088 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys
2011/06/08 20:08:25.0626 1088 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys
2011/06/08 20:08:25.0716 1088 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys
2011/06/08 20:09:01.0200 1088 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys
2011/06/08 20:09:28.0408 1088 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys
2011/06/08 20:09:33.0978 1088 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys
2011/06/08 20:09:34.0369 1088 sptd (614deea4bdcec3fd5a07bdc705723ad7) C:\windows\System32\Drivers\sptd.sys
2011/06/08 20:09:34.0369 1088 Suspicious file (NoAccess): C:\windows\System32\Drivers\sptd.sys. md5: 614deea4bdcec3fd5a07bdc705723ad7
2011/06/08 20:09:34.0434 1088 sptd - detected LockedFile.Multi.Generic (1)
2011/06/08 20:09:34.0722 1088 srv (4e636465a8653ba3bf29f929aa578e6f) C:\windows\system32\DRIVERS\srv.sys
2011/06/08 20:10:23.0617 1088 srv2 (4e4e17a3865f650ee8c67726872d9431) C:\windows\system32\DRIVERS\srv2.sys
2011/06/08 20:10:45.0308 1088 srvnet (1346dff5be932939997d373d61a35626) C:\windows\system32\DRIVERS\srvnet.sys
2011/06/08 20:10:45.0481 1088 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\windows\system32\DRIVERS\ssmdrv.sys
2011/06/08 20:10:45.0583 1088 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys
2011/06/08 20:10:45.0844 1088 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys
2011/06/08 20:10:46.0111 1088 SynTP (0e8676fb3bb95aa40fdf7a4a31018c8b) C:\windows\system32\DRIVERS\SynTP.sys
2011/06/08 20:11:54.0192 1088 Tcpip (37e8fa3779668837ca9e2c36d2415949) C:\windows\system32\drivers\tcpip.sys
2011/06/08 20:11:54.0791 1088 TCPIP6 (37e8fa3779668837ca9e2c36d2415949) C:\windows\system32\DRIVERS\tcpip.sys
2011/06/08 20:11:54.0967 1088 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys
2011/06/08 20:11:55.0101 1088 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys
2011/06/08 20:11:55.0280 1088 TDTCP (2c10395baa4847f83042813c515cc289) C:\windows\system32\drivers\tdtcp.sys
2011/06/08 20:12:25.0609 1088 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys
2011/06/08 20:13:01.0182 1088 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys
2011/06/08 20:13:04.0380 1088 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\windows\system32\drivers\tpm.sys
2011/06/08 20:13:04.0578 1088 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys
2011/06/08 20:13:04.0731 1088 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys
2011/06/08 20:13:04.0929 1088 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys
2011/06/08 20:13:05.0010 1088 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys
2011/06/08 20:13:32.0957 1088 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys
2011/06/08 20:14:07.0675 1088 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys
2011/06/08 20:14:13.0060 1088 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys
2011/06/08 20:14:13.0239 1088 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys
2011/06/08 20:14:13.0464 1088 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\windows\system32\drivers\usbaudio.sys
2011/06/08 20:14:13.0592 1088 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys
2011/06/08 20:14:13.0717 1088 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys
2011/06/08 20:14:14.0083 1088 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys
2011/06/08 20:14:31.0447 1088 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys
2011/06/08 20:15:14.0369 1088 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\windows\system32\DRIVERS\usbohci.sys
2011/06/08 20:15:22.0550 1088 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys
2011/06/08 20:15:23.0160 1088 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys
2011/06/08 20:15:38.0398 1088 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\DRIVERS\USBSTOR.SYS
2011/06/08 20:16:29.0036 1088 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\DRIVERS\usbuhci.sys
2011/06/08 20:16:31.0814 1088 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\system32\Drivers\usbvideo.sys
2011/06/08 20:16:32.0189 1088 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys
2011/06/08 20:16:32.0450 1088 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys
2011/06/08 20:16:32.0724 1088 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys
2011/06/08 20:17:10.0549 1088 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys
2011/06/08 20:17:40.0374 1088 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys
2011/06/08 20:17:40.0617 1088 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys
2011/06/08 20:17:40.0758 1088 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys
2011/06/08 20:17:40.0925 1088 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys
2011/06/08 20:17:41.0013 1088 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys
2011/06/08 20:17:41.0128 1088 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys
2011/06/08 20:17:41.0221 1088 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys
2011/06/08 20:17:41.0325 1088 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys
2011/06/08 20:17:41.0419 1088 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys
2011/06/08 20:17:41.0522 1088 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys
2011/06/08 20:17:41.0597 1088 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys
2011/06/08 20:18:20.0036 1088 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys
2011/06/08 20:18:27.0491 1088 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys
2011/06/08 20:18:51.0011 1088 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys
2011/06/08 20:18:51.0121 1088 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys
2011/06/08 20:18:51.0278 1088 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys
2011/06/08 20:18:51.0359 1088 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys
2011/06/08 20:18:51.0567 1088 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys
2011/06/08 20:18:51.0640 1088 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys
2011/06/08 20:18:51.0716 1088 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys
2011/06/08 20:18:51.0779 1088 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys
2011/06/08 20:18:51.0897 1088 yukonw7 (30b73eb97218a16cbc6de535782a1b35) C:\windows\system32\DRIVERS\yk62x86.sys
2011/06/08 20:18:51.0986 1088 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
2011/06/08 20:18:51.0998 1088 ================================================================================
2011/06/08 20:18:51.0998 1088 Scan finished
2011/06/08 20:18:51.0998 1088 ================================================================================
2011/06/08 20:18:52.0017 4912 Detected object count: 2
2011/06/08 20:18:52.0017 4912 Actual detected object count: 2
2011/06/08 20:19:16.0933 4912 LockedFile.Multi.Generic(SafeBoot) - User select action: Skip
2011/06/08 20:19:16.0937 4912 LockedFile.Multi.Generic(sptd) - User select action: Skip
0
Réponse 8 / 13
Utilisateur anonyme
 

/!\ ATTENTION SUIVRE A LA LETTRE CES INDICATIONS/!\

__________________________________________________________
>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
>>>>>>>Ne pas utiliser en dehors de ce cas de figure : dangereux!<<<<<<<<
=====================================================

▶ Surtout , pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur

Telecharge ici : Combofix

Avant d'utiliser ComboFix :

Si tu utilises AVG, IL FAUT IMPERATIVEMENT LE DESINSTALLER avant d'utiliser Combofix car il peut causer des dégâts en interaction avec l'outil pouvant mener à la réinstallation totale du système.
La simple désactivation du résident n'est pas suffisante.
Télécharge le désinstalleur d'AVG sur ce lien : https://www.avg.com/fr-fr/avg-remover
Choisis la version adéquate (32 ou 64 bits)/!\

Les logiciels d'émulation de CD comme Daemon Tools peuvent gêner les outils de désinfection. Utilise Defogger pour les désactiver temporairement :

▶ Télécharge Defogger (de jpshortstuff) sur ton Bureau

▶ Lance le

Une fenêtre apparait : clique sur "Disable"

▶ Fais redémarrer l'ordinateur si l'outil te le demande

Note : Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable"

_________________________________________________________
>> referme les fenêtres de tous les programmes en cours.
>> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
>>la protection en temps réel de ton Antivirus et de tes Antispywares,
>>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur combofix renommé

¤¤¤¤¤¤¤¤¤¤ LAISSE-LE INSTALLER LA CONSOLE DE RECUPERATION S'IL TE LE DEMANDE ¤¤¤¤¤¤¤¤¤¤

▶ !!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!

▶ n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

▶▶ Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.

0
Réponse 9 / 13
maverick406 Messages postés 84 Statut Membre 4
 
ces assez long ^^
0
Réponse 10 / 13
Utilisateur anonyme
 
faut laisser faire
0
Réponse 11 / 13
maverick406 Messages postés 84 Statut Membre 4
 
ComboFix 11-06-07.02 - mel 08/06/2011 21:13:09.1.2 - x86
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.3066.2161 [GMT 2:00]
Lancé depuis: c:\users\mel\Desktop\maverick.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\dir
C:\install.exe
c:\users\mel\AppData\Roaming\cacaoweb
c:\users\mel\AppData\Roaming\cacaoweb\adstorage.db
c:\users\mel\AppData\Roaming\cacaoweb\megavideoI69WV9CF45837160.cacao
c:\users\mel\AppData\Roaming\cacaoweb\megavideoMDP3MG1P1034707011.cacao
c:\users\mel\AppData\Roaming\cacaoweb\storage.db
c:\users\mel\Desktop\cacaoweb.exe
c:\windows\system32\f3PSSavr.scr
c:\windows\system32\install
c:\windows\Ysorob.exe
C:\Windupdt
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-05-08 au 2011-06-08 ))))))))))))))))))))))))))))))))))))
.
.
2011-06-08 21:00 . 2011-06-08 21:44 -------- d-----w- c:\users\mel\AppData\Local\temp
2011-06-08 21:00 . 2011-06-08 21:00 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-08 15:28 . 2011-06-08 15:28 -------- d-----w- c:\windows\Sun
2011-06-08 13:18 . 2011-06-08 13:18 -------- d-----w- c:\users\mel\AppData\Roaming\Avira
2011-06-08 11:21 . 2011-06-08 11:22 -------- d-----w- c:\users\mel\AppData\Local\{B253D284-5C70-4A51-8ECC-FBB6780A3DEF}
2011-06-08 04:19 . 2011-06-08 04:18 162304 ----a-w- c:\windows\Ysoroa.exe
2011-06-08 04:14 . 2011-06-08 04:14 -------- d-----w- c:\program files\FDRLab
2011-06-07 19:36 . 2011-06-07 19:36 -------- d-----w- c:\users\mel\AppData\Local\{46F2EA98-ED5C-4FE9-8909-61CCDBA52735}
2011-06-06 19:23 . 2011-06-06 19:23 -------- d-----w- c:\users\mel\AppData\Local\{5D028E25-E870-426F-A707-2492AE577897}
2011-06-06 19:11 . 2011-06-06 19:11 -------- d-----w- c:\program files\DownloadToolz
2011-06-06 19:02 . 2011-06-06 19:07 -------- d-----w- c:\program files\Freemake
2011-06-06 15:48 . 2011-06-06 15:48 -------- d-----w- c:\users\mel\AppData\Local\{40AEF3CA-8214-4F5C-A57E-BB5B383FC989}
2011-06-03 15:29 . 2011-06-03 15:29 -------- d-----w- c:\users\mel\AppData\Local\{65A7C9CD-D222-49E9-AA0F-FAF8CE1A7742}
2011-06-03 15:04 . 2011-06-03 15:04 -------- d-----w- c:\users\mel\AppData\Local\Adobe
2011-06-03 15:03 . 2011-06-03 15:03 -------- d-----w- c:\users\mel\Library
2011-06-03 15:03 . 2011-06-03 15:03 -------- d-----w- c:\users\mel\AppData\Roaming\com.adobe.ExMan
2011-06-02 10:29 . 2011-06-02 10:30 -------- d-----w- c:\users\mel\AppData\Local\{C569E2A8-E3F7-419F-A137-F8E2029D11BF}
2011-05-31 13:53 . 2011-05-31 13:53 -------- d-----w- c:\users\mel\AppData\Local\{B4450F73-4512-4A32-9A01-D216BE201738}
2011-05-30 17:07 . 2011-05-30 17:08 -------- d-----w- c:\programdata\IObit
2011-05-30 17:07 . 2011-05-31 13:53 -------- d-----w- c:\program files\IObit
2011-05-30 10:20 . 2011-05-30 10:20 -------- d-----w- c:\users\mel\AppData\Local\{06AE4B2F-C553-4366-8804-492FA4A761F2}
2011-05-29 11:40 . 2011-05-29 11:41 -------- d-----w- c:\users\mel\AppData\Roaming\Uniblue
2011-05-29 11:39 . 2011-05-29 11:39 -------- d-----w- c:\users\mel\AppData\Local\{02FAD1DD-FB7A-475E-8FCC-8F8015C2C158}
2011-05-29 02:57 . 2011-05-29 02:57 -------- d-----w- c:\users\mel\AppData\Local\{0A2B6FF2-3451-4DA4-96E4-FC6545AA4CF9}
2011-05-27 15:07 . 2011-05-27 15:09 -------- d-----w- c:\program files\Garena
2011-05-27 15:04 . 2011-05-27 15:04 -------- dc-h--w- c:\programdata\{DE8EABB5-1C85-4410-A68D-79BD8A4518F4}
2011-05-27 15:04 . 2011-05-27 16:43 -------- d-----w- c:\program files\Uniblue
2011-05-26 12:40 . 2010-12-02 08:11 10833920 ----a-w- c:\windows\system32\libmfxsw32.dll
2011-05-26 12:40 . 2010-12-02 08:11 10915840 ----a-w- c:\windows\system32\libmfxhw32.dll
2011-05-25 21:13 . 2011-05-25 21:13 -------- d-----w- c:\users\mel\AppData\Local\{88D74DF3-C874-4AA6-84FE-19DF2F809226}
2011-05-25 16:05 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-25 06:35 . 2011-05-25 06:35 -------- d-----w- c:\users\mel\AppData\Local\{F78DC153-90C6-41F7-8D50-D5E429262AB9}
2011-05-24 13:51 . 2011-05-24 13:51 -------- d-----w- c:\users\mel\AppData\Roaming\Malwarebytes
2011-05-24 13:50 . 2011-05-24 13:51 -------- d-----w- c:\users\mel\AppData\Local\{24B6D677-FB89-4B67-9D1F-667C11DF6ACA}
2011-05-24 13:21 . 2011-05-24 13:25 -------- d-----w- c:\programdata\Screaming Bee
2011-05-24 13:21 . 2011-05-24 13:21 -------- d-----w- c:\program files\Screaming Bee
2011-05-24 13:00 . 2011-05-24 13:08 -------- d-----w- c:\program files\AV Vcs 4.0 DIAMOND
2011-05-24 12:33 . 2009-03-18 15:35 26176 ---ha-w- c:\windows\system32\hamachi.sys
2011-05-24 10:58 . 2011-05-24 10:58 -------- d-----w- c:\users\mel\AppData\Local\{EBA54B58-02C8-484A-A454-F74C94630238}
2011-05-24 10:57 . 2011-06-07 19:05 -------- d-----w- c:\users\mel\AppData\Local\LogMeIn Hamachi
2011-05-23 16:30 . 2011-05-24 20:24 -------- d-----w- c:\users\mel\AppData\Roaming\.minecraft
2011-05-23 15:05 . 2011-05-23 15:05 -------- d-----w- c:\users\mel\AppData\Local\{7A0A424C-2999-4545-B311-9CBAB9EC6E74}
2011-05-23 11:41 . 2011-05-23 11:41 -------- d-----w- c:\program files\Magic Bullet Editors 2.0 Vegas
2011-05-22 13:55 . 2011-05-22 13:55 -------- d-----w- c:\users\mel\AppData\Local\{12CFF583-FD26-412F-AAB1-DB5EDCD6D65E}
2011-05-21 21:36 . 2011-05-21 21:36 -------- d-----w- c:\users\mel\AppData\Local\{8DA435FE-AA48-482D-BC73-6FDB750ADD5E}
2011-05-21 09:43 . 2011-05-21 09:43 -------- d-----w- c:\users\mel\AppData\Local\{2281F5CB-78C3-425F-B900-AA30A6A86FB6}
2011-05-20 19:24 . 2011-05-20 19:24 -------- d-----w- c:\users\mel\AppData\Local\{EF8F86C3-3E63-4F32-8DCF-7EE90AD2ECDA}
2011-05-19 20:22 . 2011-05-19 20:23 -------- d-----w- c:\users\mel\AppData\Local\{F1649A52-55D8-455D-B721-9F49BB04DE87}
2011-05-19 16:21 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2011-05-18 13:29 . 2011-05-18 13:29 -------- d-----w- c:\programdata\boost_interprocess
2011-05-18 10:41 . 2011-05-18 10:41 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-05-17 19:32 . 2011-05-17 19:32 -------- d-----w- c:\users\mel\AppData\Local\{4DE4DEE4-87E1-452B-92E5-B3803C7F2752}
2011-05-16 15:53 . 2011-05-16 15:53 -------- d-----w- c:\users\mel\AppData\Local\{CBB0513C-5AAF-4ACA-BB53-CF912642BC48}
2011-05-13 11:42 . 2011-05-13 11:43 -------- d-----w- c:\users\mel\AppData\Local\{D4C3BC28-DA9C-4F39-AF43-C42EA5FDF454}
2011-05-12 16:04 . 2011-05-12 16:04 -------- d-----w- c:\users\mel\AppData\Local\{2C4EC46D-EF7B-4F39-BF99-0449FD6BAC6F}
2011-05-12 13:32 . 2011-05-12 13:32 -------- d--h--w- c:\programdata\CanonBJ
2011-05-12 13:32 . 2009-07-14 01:15 71168 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNBPP4.DLL
2011-05-12 04:03 . 2011-05-12 04:03 -------- d-----w- c:\users\mel\AppData\Local\{1791E7F3-9DF6-43BB-A409-751328E48588}
2011-05-11 11:18 . 2011-03-25 02:58 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-05-11 11:18 . 2011-03-25 02:58 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-05-11 11:18 . 2011-03-25 02:58 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-05-11 11:18 . 2011-03-25 02:57 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-05-11 11:18 . 2011-03-25 02:57 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-05-11 11:18 . 2011-03-25 02:57 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-05-11 11:18 . 2011-04-09 06:02 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-05-11 11:18 . 2011-04-09 06:02 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 10:56 . 2011-05-11 10:57 -------- d-----w- c:\users\mel\AppData\Local\{039FDE68-471D-4DEE-B8D7-2C3F96260B6C}
2011-05-10 14:15 . 2011-05-10 14:16 -------- d-----w- c:\users\mel\AppData\Local\{96A48E4C-8702-4199-B253-30F44FD3DD8F}
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-06 18:09 . 2011-04-02 02:37 138160 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-06-06 18:09 . 2011-04-02 02:43 271200 ----a-w- c:\windows\system32\PnkBstrB.xtr
2011-06-06 18:09 . 2011-04-02 02:36 271200 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-06-06 17:01 . 2011-04-02 02:36 271200 ----a-w- c:\windows\system32\PnkBstrB.ex0
2011-05-29 07:11 . 2011-01-25 10:00 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-05-29 07:11 . 2011-01-25 10:00 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-01 09:22 . 2011-04-25 04:33 200960 ----a-w- c:\programdata\Microsoft\VBExpress\10.0\1036\ResourceCache.dll
2011-04-27 11:41 . 2011-04-27 11:41 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2011-04-22 20:23 . 2010-06-24 09:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-04-17 14:35 . 2011-04-17 14:35 86528 ----a-w- c:\windows\system32\iesysprep.dll
2011-04-17 14:35 . 2011-04-17 14:35 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-04-17 14:35 . 2011-04-17 14:35 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-04-17 14:35 . 2011-04-17 14:35 74752 ----a-w- c:\windows\system32\iesetup.dll
2011-04-17 14:35 . 2011-04-17 14:35 63488 ----a-w- c:\windows\system32\tdc.ocx
2011-04-17 14:35 . 2011-04-17 14:35 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-04-17 14:35 . 2011-04-17 14:35 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-04-17 14:35 . 2011-04-17 14:35 367104 ----a-w- c:\windows\system32\html.iec
2011-04-17 14:35 . 2011-04-17 14:35 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-04-17 14:35 . 2011-04-17 14:35 23552 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-17 14:35 . 2011-04-17 14:35 161792 ----a-w- c:\windows\system32\msls31.dll
2011-04-17 14:35 . 2011-04-17 14:35 152064 ----a-w- c:\windows\system32\wextract.exe
2011-04-17 14:35 . 2011-04-17 14:35 150528 ----a-w- c:\windows\system32\iexpress.exe
2011-04-17 14:35 . 2011-04-17 14:35 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2011-04-17 14:35 . 2011-04-17 14:35 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-04-17 14:35 . 2011-04-17 14:35 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-04-17 14:35 . 2011-04-17 14:35 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-04-17 14:35 . 2011-04-17 14:35 35840 ----a-w- c:\windows\system32\imgutil.dll
2011-04-17 14:35 . 2011-04-17 14:35 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-04-17 14:35 . 2011-04-17 14:35 11776 ----a-w- c:\windows\system32\mshta.exe
2011-04-17 14:35 . 2011-04-17 14:35 101888 ----a-w- c:\windows\system32\admparse.dll
2011-04-17 14:33 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-04-09 16:55 . 2011-04-09 16:55 15453336 ----a-w- c:\windows\system32\xlive.dll
2011-04-09 16:55 . 2011-04-09 16:55 13642904 ----a-w- c:\windows\system32\xlivefnt.dll
2011-04-06 06:05 . 2010-12-31 17:27 137656 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-04-02 04:55 . 2011-04-02 02:36 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2011-04-02 02:32 . 2011-04-02 02:32 431672 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-03-25 18:10 . 2011-03-25 18:10 413696 ----a-w- c:\windows\system32\wrap_oal.dll
2011-03-25 18:10 . 2011-03-25 18:10 110592 ----a-w- c:\windows\system32\OpenAL32.dll
2011-03-12 11:23 . 2011-04-27 14:44 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-11 05:39 . 2011-04-27 14:44 148864 ----a-w- c:\windows\system32\drivers\storport.sys
2011-03-11 05:39 . 2011-04-27 14:44 1211264 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-03-11 05:39 . 2011-04-27 14:44 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-03-11 05:39 . 2011-04-27 14:44 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-03-11 05:38 . 2011-04-27 14:44 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-03-11 05:38 . 2011-04-27 14:44 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-03-11 05:38 . 2011-04-27 14:44 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-03-11 05:33 . 2011-04-14 21:22 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2011-03-11 05:33 . 2011-04-14 21:22 1137664 ----a-w- c:\windows\system32\mfc42.dll
2011-03-11 05:33 . 2011-04-27 14:44 1699328 ----a-w- c:\windows\system32\esent.dll
2011-03-11 05:31 . 2011-04-27 14:44 74240 ----a-w- c:\windows\system32\fsutil.exe
2011-02-08 02:36 . 2011-02-07 20:15 36868 ----a-w- c:\program files\uninst-Particular.exe
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPADVISOR"="c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2009-07-16 1668664]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-06-17 2363392]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760]
"Steam"="c:\program files\Steam\steam.exe" [2011-02-03 1242448]
"SpeedUpMyPC"="c:\program files\Uniblue\SpeedUpMyPC\launcher.exe" [2011-05-23 67960]
"RegistryBooster"="c:\program files\Uniblue\RegistryBooster\launcher.exe" [2011-01-21 67456]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-08-25 186904]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-06-04 1791272]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2009-05-18 1314816]
"acevents"="c:\program files\ActivIdentity\ActivClient\acevents.exe" [2009-06-03 153640]
"accrdsub"="c:\program files\ActivIdentity\ActivClient\accrdsub.exe" [2009-06-03 400936]
"CognizanceTS"="c:\progra~1\HEWLET~1\IAM\Bin\ASTSVCC.dll" [2009-07-23 24848]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-05-04 311296]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-08-17 281768]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-12-09 1226608]
"Anti Trojan Elite"="c:\program files\Anti Trojan Elite\TJEnder.exe" [2009-06-14 4076544]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-30 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\HEWLET~1\IAM\Bin\APSHook.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Phone Remote Control.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Phone Remote Control.lnk
backup=c:\windows\pss\Phone Remote Control.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
backup=c:\windows\pss\WinZip Quick Pick.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
2009-07-16 00:51 1668664 ----a-w- c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2009-06-17 19:13 2363392 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
2011-05-29 07:11 449584 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware (reboot)]
2011-05-29 07:11 1047656 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2010-11-10 00:54 4240760 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
2009-06-18 16:07 563736 ----a-w- c:\program files\PDF Complete\pdfsty.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PTHOSTTR]
2009-07-30 12:28 354360 ----a-w- c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
2009-07-27 22:49 288312 ----a-w- c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryBooster]
2011-01-21 14:19 67456 ----a-w- c:\program files\Uniblue\RegistryBooster\Launcher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedUpMyPC]
2011-05-23 15:27 67960 ----a-w- c:\program files\Uniblue\SpeedUpMyPC\Launcher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-05-14 10:44 248552 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2010-12-27 13:34 202256 ----a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WirelessAssistant]
2009-07-23 18:04 498744 ----a-w- c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
.
R2 ATE_PROCMON;ATE_PROCMON; [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 RDMPLocalService;RDM+ Local Service; [x]
R3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
R3 GGSAFERDriver;GGSAFER Driver; [x]
R3 HP ProtectTools Service;HP ProtectTools Service;c:\program files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2009-07-30 45056]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-05-29 39984]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-06-13 1120752]
R3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [2009-04-06 23064]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-25 1343400]
R4 MSSQLServerADHelper100;Service SQL Active Directory Helper;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-11 47128]
R4 RsFx0102;RsFx0102 Driver;c:\windows\system32\DRIVERS\RsFx0102.sys [2008-07-10 242712]
R4 SQLAgent$SQLEXPRESS;Agent SQL Server (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2008-07-11 369688]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 SafeBoot;SafeBoot; [x]
S0 SbAlg;SbAlg; [x]
S0 SbFsLock;SbFsLock; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 RsvLock;RsvLock; [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 ac.sharedstore;ActivIdentity Shared Store Service;c:\program files\Common Files\ActivIdentity\ac.sharedstore.exe [2009-06-03 207400]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-04 176128]
S2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-04-29 136360]
S2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 ASChannel;Canal de communication local;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\AtService.exe [2009-07-29 1201400]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-10-14 92216]
S2 HpFkCryptService;Drive Encryption Service;c:\program files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-07-29 256544]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 26168]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2009-06-18 635416]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-07 2228008]
S2 yksvc;Marvell Yukon Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S3 5U876UVC;HP Webcam [2 MP series];c:\windows\system32\DRIVERS\5U876.sys [2009-06-30 13:01 118656]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-02-09 101392]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
S3 dfmirage;dfmirage;c:\windows\system32\DRIVERS\dfmirage.sys [2008-04-15 34128]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-23 218688]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-05-29 22712]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-09-28 315392]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc
Cognizance REG_MULTI_SZ ASBroker
Bioscrypt REG_MULTI_SZ ASChannel
GPSvcGroup REG_MULTI_SZ GPSvc
Akamai REG_MULTI_SZ Akamai
yksvcs REG_MULTI_SZ yksvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-06-17 19:11 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2011-06-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2938312146-1869975096-2595076293-1004Core.job
- c:\users\mel\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-24 04:50]
.
2011-06-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2938312146-1869975096-2595076293-1004UA.job
- c:\users\mel\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-24 04:50]
.
2011-05-11 c:\windows\Tasks\HPCeeScheduleFormel.job
- c:\program files\Hewlett-Packard\SDP\Ceement\HPCEE.exe [2009-09-20 21:38]
.
2011-06-08 c:\windows\Tasks\RegistryBooster.job
- c:\program files\Uniblue\RegistryBooster\rbmonitor.exe [2011-01-21 14:19]
.
2011-06-08 c:\windows\Tasks\SpeedUpMyPC.job
- c:\program files\Uniblue\SpeedUpMyPC\spmonitor.exe [2011-05-27 15:27]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
mStart Page = hxxp://downloads.phpnuke.org/fr/index.php?rvs=google
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Envoyer au périphérique &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Envoyer l'&image au périphérique Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\mel\AppData\Roaming\Mozilla\Firefox\Profiles\k7ary3h5.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - Ext: Add N Edit Cookies: {038dc421-b19e-4711-a218-1fd10de9163b} - %profile%\extensions\{038dc421-b19e-4711-a218-1fd10de9163b}
.
- - - - ORPHELINS SUPPRIMES - - - -
.
BHO-{0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file)
Toolbar-{0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file)
Toolbar-10 - (no file)
WebBrowser-{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} - (no file)
WebBrowser-{E8DE9422-3B2C-4243-BF6F-235DA84D8EF8} - (no file)
HKCU-Run-cacaoweb - c:\users\mel\AppData\Roaming\cacaoweb\cacaoweb.exe
HKLM-Run-DivX Download Manager - c:\program files\DivX\DivX Plus Web Player\DDmService.exe
SafeBoot-Wdf01000.sys
MSConfigStartUp-EA Core - c:\program files\Electronic Arts\EADM\Core.exe
MSConfigStartUp-FlashGet 3 - c:\program files\FlashGet Network\FlashGet 3\FlashGet3.exe
MSConfigStartUp-Google Update - c:\users\BETA\AppData\Local\Google\Update\GoogleUpdate.exe
MSConfigStartUp-GoogleUpdate - c:\users\lafont\AppData\Roaming\GoogleUpdate.exe
MSConfigStartUp-iTunesHelper - c:\program files\iTunes\iTunesHelper.exe
MSConfigStartUp-McAfee Managed Services Tray - c:\program files\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe
MSConfigStartUp-MVS Splash - c:\program files\McAfee\Managed VirusScan\Agent\Splash.exe
MSConfigStartUp-NBAgent - c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
MSConfigStartUp-QuickTime Task - c:\program files\QuickTime\QTTask.exe
MSConfigStartUp-Skype - c:\program files\Skype\Phone\Skype.exe
MSConfigStartUp-ToxicUpdate - c:\users\lafont\AppData\Roaming\service32.exe
MSConfigStartUp-Winrar - c:\users\lafont\AppData\Roaming\Temp\Windows.exe
MSConfigStartUp-{9B71D88C-C598-4935-C5D1-43AA4DB90836} - c:\users\lafont\AppData\Roaming\COD4hack.exe
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-reFX Nexus 1.4.0_is1 - c:\program files\VstPlugins\Nexus\unins000.exe
AddRemove-WampServer 2_is1 - c:\wamp\unins000.exe
AddRemove-{08DB3902-2CE0-474D-BCE3-0177766CE9F1} - c:\program files\InstallShield Installation Information\{08DB3902-2CE0-474D-BCE3-0177766CE9F1}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{0974BA1E-64EC-11DE-B2A5-E43756D89593}"=hex:51,66,7a,6c,4c,1d,38,12,70,b9,67,
0d,de,2a,b0,54,cd,b3,a7,77,53,86,d1,87
"{8DCB7100-DF86-4384-8842-8FA844297B3F}"=hex:51,66,7a,6c,4c,1d,38,12,6e,72,d8,
89,b4,91,ea,06,f7,54,cc,e8,41,77,3f,2b
"{3049C3E9-B461-4BC5-8870-4C09146192CA}"=hex:51,66,7a,6c,4c,1d,38,12,87,c0,5a,
34,53,fa,ab,0e,f7,66,0f,49,11,3f,d6,de
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{9FDDE16B-836F-4806-AB1F-1455CBEFF289}"=hex:51,66,7a,6c,4c,1d,38,12,05,e2,ce,
9b,5d,cd,68,0d,d4,09,57,15,ce,b1,b6,9d
"{D2CE3E00-F94A-4740-988E-03DC2F38C34F}"=hex:51,66,7a,6c,4c,1d,38,12,6e,3d,dd,
d6,78,b7,2e,02,e7,98,40,9c,2a,66,87,5b
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{DF21F1DB-80C6-11D3-9483-B03D0EC10000}"=hex:51,66,7a,6c,4c,1d,38,12,b5,f2,32,
db,f4,ce,bd,54,eb,95,f3,7d,0b,9f,44,14
"{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16,
fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17
"{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9,
b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:73,05,4e,26,17,1a,cc,01
.
[HKEY_USERS\S-1-5-21-2938312146-1869975096-2595076293-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:61,53,ef,58,24,8f,19,14,1a,51,3f,de,44,26,45,a6,86,e0,6b,95,f6,30,a1,
d3,b5,60,2e,bb,69,bd,2a,a8,47,a1,3b,3e,0b,9c,4c,0b,3e,72,ef,51,bd,b9,20,4c,\
"??"=hex:a2,4b,36,74,aa,6c,69,57,c7,f8,52,2e,cd,8a,f6,7b
.
[HKEY_USERS\S-1-5-21-2938312146-1869975096-2595076293-1004\Software\SecuROM\License information*]
"datasecu"=hex:e8,9d,72,6d,e3,e4,d2,d5,02,5d,da,8c,c6,98,a6,8f,dc,8f,04,3c,3a,
66,7f,c0,c9,07,30,cf,7e,8f,13,b2,8b,5f,0e,56,a9,23,71,1b,f9,c9,72,f5,3e,67,\
"rkeysecu"=hex:c7,6a,55,09,c2,8b,03,12,af,ec,a4,25,db,7b,00,36
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs chargées dans les processus actifs ---------------------
.
- - - - - - - > 'Explorer.exe'(4580)
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\atieclxx.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\conhost.exe
c:\windows\System32\lpksetup.exe
c:\windows\system32\AEADISRV.EXE
c:\program files\LSI SoftModem\agrsmsvc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\WIDCOMM\Bluetooth Software\BtStackServer.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
.
**************************************************************************
.
Heure de fin: 2011-06-09 00:35:23 - La machine a redémarré
ComboFix-quarantined-files.txt 2011-06-08 22:35
.
Avant-CF: 97 703 227 392 octets libres
Après-CF: 99 423 117 312 octets libres
.
- - End Of File - - 2F14F47ADA8236D8EFAF757441DA592B
0
Réponse 12 / 13
Utilisateur anonyme
 
pour tdsskiller tu n'avais pas la possibilité de faire "Cure" ?
0
Réponse 13 / 13
maverick406 Messages postés 84 Statut Membre 4
 
Je te remerci de mavoir aider mais sayé enfin lordinateur est enfin reparer !
0