PC très lent

Question

Bonjour, 

Voila j'ai un problème, j'ai mon pc qui est très lent au démarrage, environ 15 minutes avant de m'ouvrir windows et me mettre sur mon bureau, sinon internet impeccable je n'ai aucun ralentissement, se n'est que le démarrage qui est très lents alors que mon pc est neuf environs 6 mois...

sil vous plait aider moi, j'ai viré AVG parce qu'il n'a pas trouver de virus et je suis certain d'être infecté vue se que j'ai viré avec spybot et malware antimalware, quel antivirus gratuit me conseiller vous aussi ?

Merci d'avance pour votre aide :)



Configuration: Windows 7 / Firefox 8.0.1

theritchierich · Answer

Comodo internet security gratuit est tres bon

cordialement

fanatikk97 · Answer

essai avast (la version gratuite)

mifay · Answer

Peut-être aussi penser à reformater. C'est une bonne pratique de mettre ses données en "backup" dans un disque dur externe et de reformater son ordinateur le plus souvent possible afin de regagner de la performance. Personnellement, je reformate à chaque année environ, ce qui est même trop longtemps pour certaines personnes.

Fish66 · Answer

Bonjour,

Nous allons effectuer un diagnostic de ton PC:
*Télécharge ZHPDiag sur ton bureau :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html

* Laisse toi guider lors de l'installation,coche "Ajouter une icône sur le bureau" et décoche la case "Exécuter ZHPDiag"

/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »

* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur un des sites ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum : http://www.cijoint.fr/
Si indisponible, tu peux essayer avec l'un de ces liens:
http://dl.free.fr
http://ww38.toofiles.com/fr/documents-upload.html
https://www.terafiles.net/
https://www.casimages.com/
http://pjjoint.malekal.com/

* Tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html

Hébergement de rapport sur cijoint.fr/

Rend toi sur ce site : http://www.cijoint.fr/
Clique sur Choisissez un fichier
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme : http://www.cijoint.fr/cjlink.php?file=cj44123/cijSKAP5fU.txt
est ajouté dans la page. Copie ce lien dans ta réponse.
============================================
Aide : >>> hébergement ICI <<<

@+

floriantinus · Answer

bonjour, voici le lien pour voir le rapport: http://www.terafiles.net/v-124350.html sinon voici le rapport complet : Rapport de ZHPDiag v1.28.2510 par Nicolas Coolman, Update du 03/12/2011 Run by florian at 05/12/2011 12:20:34 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html State : Version à jour. ---\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 MFIE: Mozilla Firefox 8.0.1 v8.0.1 (Defaut) ---\ Windows Product Information ~ Langage: Français Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK ~ Windows(R) 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : BWX77 Windows License : OK ~ Windows Remaining Initializations Number : 4 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\ System Information ~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3893 MB (57% free) System Restore: Activé (Enable) System drive C: has 59 GB (25%) free of 233 GB ---\ Logged in mode ~ Computer Name: FLORIAN-TOSH ~ User Name: florian ~ All Users Names: HomeGroupUser$, florian, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O82,O89 Logged in as Administrator ---\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\florian\AppData\Roaming\ ~ %Desktop% : C:\Users\florian\Desktop\ ~ %Favorites% : C:\Users\florian\Favorites\ ~ %LocalAppData% : C:\Users\florian\AppData\Local\ ~ %StartMenu% : C:\Users\florian\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\system32\ ---\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 59 Go of 233 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 224 Go of 233 Go) E:\ CD-ROM drive (Not Inserted) F:\ CD-ROM drive (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go) ---\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date ~ Scan Security Center in 00mn 00s ---\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32 undll32.exe [45568] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024] [MD5.271E8FB1354AA205A214F280A6766E30] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/10/2011 - 06:17:57.) -- C:\Windows\system32\wininet.dll [1389056] [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.09/06/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.09/06/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448] [MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.09/06/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480] [MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.16/06/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.09/06/2011 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.09/06/2011 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.09/06/2011 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224] [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.16/06/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.09/06/2011 - 10:23:20.) -- C:\Windows\system32\drivers etBT.sys [261632] [MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers tfs.sys [1659776] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.09/06/2011 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\drivers\smb.sys [93184] [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.09/06/2011 - 10:21:56.) -- C:\Windows\system32\drivers dx.sys [119296] [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.09/06/2011 - 14:34:02.) -- C:\Windows\system32\drivers\volsnap.sys [295808] ~ Scan Generic Processes in 00mn 00s ---\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 14/590 ~ Mes musiques (My Musics) : 3/50 ~ Mes Videos (My Videos) : 24/240 ~ Mes Favoris (My Favorites) : 10/52 ~ Mes Documents (My Documents) : 6/41 ~ Mon Bureau (My Desktop) : 12/452 ~ Menu demarrer (Programs) : 7/46 ~ Scan Hidden Files in 00mn 01s ---\ Processus lancés [MD5.05973FB5F863CDB65852D88ADB383A33] - (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe [4581280] [PID.3716] [MD5.80A02F5ADDDF2D615B85A4F19424DCBB] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760] [PID.3416] [MD5.F7E0783DA9043BC131BB37C77EDB04DF] - (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840] [PID.3508] [MD5.7636713B4F0944045AB4AF7CED5245AB] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1230704] [PID.892] [MD5.1568FF282E268082C67CF0C3EBCC9179] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [976320] [PID.3748] [MD5.026423673B8563E9975BDA97ED6273C7] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [449608] [PID.3612] [MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.3596] [MD5.F4D0446BA874917354801F210E66F545] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736] [PID.4112] [MD5.A13D082D83C627A35BD005ABC65CF6E4] - (.M.A. - MAagent.) -- C:\Program Files (x86)\Spyome\exec\MAagent.exe [29696] [PID.4144] [MD5.A7E406711790197712D376B44A9FBB0B] - (.TOSHIBA CORPORATION - ConfigFree Task Tray Menu.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [304496] [PID.4336] [MD5.B332A841B6F0EDE3B85EB9BB1300E227] - (.M.A - MALogger.) -- C:\Program Files (x86)\Spyome\exec\MAlogger.exe [30208] [PID.4552] [MD5.8A07221789D46B2EA7DFCA2BC807572A] - (.TOSHIBA CORPORATION - ConfigFree Switch Manager Process.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe [62848] [PID.4756] [MD5.25532414A7A088553527A75B31DF0592] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632] [PID.8052] [MD5.1CD878FFA3B97D9008FA0E723ED996CB] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856] [PID.7620] [MD5.354DAC3C68AAA2BCCE94EE77F30095FC] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [707072] [PID.6972] [MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.] [MD5.8750B3454AF73568BE6203047A08F560] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files (x86)\Spyome\apache\bin\httpd.exe [24645] [PID.] [MD5.3DEBBECF665DCDDE3A95D9B902010817] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.] [MD5.23DE5B62B0445A6F874BE633C95B483E] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.] [MD5.7D2633295EB6FF2B938185874884059D] - (.Nero AG - Nero BackItUp.) -- c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [935208] [PID.] [MD5.0EC561D71A733814CFF37712CDEE2A74] - (.Microsoft Corporation - Microsoft Application Virtualization Virtua.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [219496] [PID.] [MD5.F0BBE1351ECDF1E1C599F1AA499F288D] - (...) -- C:\Windows\SysWOW64\MPK\mpk.exe [1447760] [PID.] [MD5.08D2B597CC4E26FDE43BE9F104476F65] - (.Microsoft Corporation - Microsoft Application Virtualization Client.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [508264] [PID.] [MD5.344546D11D7E6D9F481E9D3ABC6E76CB] - (.Microsoft Corporation - Microsoft Office Client Virtualization Serv.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [821664] [PID.] [MD5.CAB0EEAF5295FC96DDD3E19DCE27E131] - (.TOSHIBA CORPORATION - ConfigFree Service Process.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [46448] [PID.] [MD5.94E920BE59B9AB65D95E582DBAA136AC] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [366152] [PID.] [MD5.CC3775100ABA633984F73DFAE1F55CAE] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.] ~ Scan Processes Running in 00mn 00s ---\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\florian\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] None G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl G2 - GCE: Preference [User Data\Default] [dhkplhfnhceodhffomolpfigojocbpcb] Babylon Chrome OCR v.1.2 (Activé) G2 - GCE: Preference [User Data\Default] [fnjbmmemklcjgepojigaapkoodmkgbae] DivX HiQ v.2.1.1.94 (Activé) G2 - GCE: Preference [User Data\Default] [gaiilaahiahdejapggenmdmafpmbipje] DealPly v.3.0.7.2 (Activé) G2 - GCE: Preference [User Data\Default] [pbglijbamgmlcpnnpbfjkbdeheejjloj] Shockwave Flash v.11,1,102,55 (Activé) ~ Scan Google Browser in 00mn 00s ---\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\prefs.js M3 - MFPP: Plugins - [florian] -- C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\searchplugins\bing.xml M3 - MFPP: Plugins - [florian] -- C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\searchplugins\SearchResults.xml M0 - MFSP: prefs.js [florian - 0mrzmddn.default] https://www.google.fr/?gws_rd=ssl M2 - MFEP: prefs.js [florian - 0mrzmddn.default\bloodfire@example.com] [] BloodFire 3 v3.6 (.Cato62.) M2 - MFEP: prefs.js [florian - 0mrzmddn.default\{90b49673-5506-483e-b92b-ca0265bd9ca8}] [] IMVU Inc Community Toolbar v3.8.0.8 (.Conduit Ltd..) M2 - MFEP: prefs.js [florian - 0mrzmddn.default\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}] [] DealPly v2.0 (.dealply.com.) P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins p-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins ppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin7.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper povshelper.dll P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\florian\AppData\Local\Facebook\Video\Skype pFacebookVideoCalling.dll P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster pPandoWebPlugin.dll ~ Scan Firefox Browser in 00mn 00s ---\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=toshiba.msn.com&ocid=TSHDHP&pc=MATB R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R3 - URLSearchHook: ToolbarURLSearchHook Class [64Bits] - {CA3EB689-8F09-4026-AA10-B9534C691CE0} . (.Pas de propriétaire - IE Toolbar Helper Module.) (4, 2, 0, 39) -- C:\Program Files (x86)\Connectix Virtual Game Station 1.41\mybarnsgD138.tmp bhelper.dl R3 - URLSearchHook: IMVU Inc Toolbar [64Bits] - {90b49673-5506-483e-b92b-ca0265bd9ca8} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll R3 - URLSearchHook: IMVU Inc Toolbar [64Bits] - {90b49673-5506-483e-b92b-ca0265bd9ca8} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ Scan IE Browser in 00mn 00s ---\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,C:\Windows\SysWOW64\MPK\mpk.exe F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe ~ Scan Keys in 00mn 00s ---\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 08s ---\ Browser Helper Objects de navigateur (O2) O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print [64Bits] - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION / CyCom Technology - Epson Easy Photo Print (TBL x64).) -- C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5

Fish66 · Answer

Re,
L'adresse du lien du rapport ZHPDiag est largement suffisant :-)

Tu as trojan et plusieurs adwares!

1/
Télécharge AdwCleaner (merci à Xplode) 
Lance AdwCleaner
Clique sur le bouton [ Suppression ] 
Patiente... 
Poste le rapport qui apparait en fin de recherche. 
Il se trouve également à C:\AdwCleaner[SX] (où X est un chiffre)

2/ Ensuite

* Télécharge de AD-Remover sur ton Bureau. 
http://www.teamxscript.org/adremoverTelechargement.html 

/!\ Ferme toutes applications en cours /!\ 

- Double  sur l'icône Ad-remover située sur ton Bureau. 
-Pour vista/Seven : clique avec le bouton droit de la souris  et choisis « exécuter en tant qu'administrateur » 
- Sur la page, clique sur le bouton « chercher »
- Confirme lancement du scan 
- Laisse travailler l'outil. 
- Poste le rapport qui apparaît à la fin. 

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt) 

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour c

@+

floriantinus · Answer

Mon pc a redémarrer très vite :)

# AdwCleaner v1.400 - Rapport créé le 05/12/2011 à 16:18:57
# Mis à jour le 04/12/11 à 22h par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : florian - FLORIAN-TOSH (Administrateur)
# Exécuté depuis : C:\Users\florian\Downloads\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Users\florian\AppData\Roaming\FREEzeFrog
Dossier Supprimé : C:\Users\florian\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
Dossier Supprimé : C:\Users\florian\AppData\Local\Conduit
Dossier Supprimé : C:\Users\florian\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\florian\AppData\LocalLow\Toolbar4
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly
Dossier Supprimé : C:\Program Files (x86)\BrightBreeze
Dossier Supprimé : C:\Program Files (x86)\Conduit
Dossier Supprimé : C:\Program Files (x86)\DealPly
Dossier Supprimé : C:\Program Files (x86)\FREEzefrog
Dossier Supprimé : C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\ConduitCommon
Dossier Supprimé : C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
Fichier Supprimé : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Fichier Supprimé : C:\Program Files (x86)\Mozilla Firefox\searchplugins\SearchResults.xml
Fichier Supprimé : C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\searchplugins\SearchResults.xml

***** [Registre] *****

Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\DealPly
Clé Supprimée : HKCU\Software\ilivid
Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
Clé Supprimée : HKCU\Software\AppDataLow\Software\ShopperReports3
Clé Supprimée : HKCU\Software\AppDataLow\Software\Toolbar
Clé Supprimée : HKLM\SOFTWARE\bandoo
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\DealPly
Clé Supprimée : HKLM\SOFTWARE\FREEzeFrog
Clé Supprimée : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Clé Supprimée : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.DllInfo
Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.PDF.PDF
Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.PDF.PDFEncryptor
Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.PDF.PDFLine
Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.PDF.PDFText
Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.Tools
Clé Supprimée : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Clé Supprimée : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Clé Supprimée : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Clé Supprimée : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BandooCore.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{C86FF9FA-AEED-451B-A9CC-39A53173AE2E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4e1d-BDD0-1E9C9B7799CC}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4fde-B055-AE7B0F4CF080}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{CA3EB689-8F09-4026-AA10-B9534C691CE0}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079a25-328f-4bd4-be04-00955acaa0a7}]

***** [Registre (x64)] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A9005ED5-4A1D-4606-A4DF-1A25E7D7B417}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{33DDFC61-F531-4982-8C32-4212B7835D44}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{6087829B-114F-42A1-A72B-B4AEDCEA4E5B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4e1d-BDD0-1E9C9B7799CC}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4fde-B055-AE7B0F4CF080}

***** [Navigateurs] *****

-\ Internet Explorer v9.0.8112.16421

[OK] Le registre ne contient aucune entrée illégitime.

-\ Mozilla Firefox v8.0.1 (fr)

Profil : 0mrzmddn.default
Fichier : C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\prefs.js

Supprimée : user_pref("CT2612669..clientLogIsEnabled", true);
Supprimée : user_pref("CT2612669..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Supprimée : user_pref("CT2612669..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Supprimée : user_pref("CT2612669.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Supprimée : user_pref("CT2612669.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2612669.BrowserCompStateIsOpen_129482420034282070", true);
Supprimée : user_pref("CT2612669.BrowserCompStateIsOpen_129564502120544861", true);
Supprimée : user_pref("CT2612669.BrowserCompStateIsOpen_129564560723477699", true);
Supprimée : user_pref("CT2612669.CTID", "ct2612669");
Supprimée : user_pref("CT2612669.CurrentServerDate", "26-11-2011");
Supprimée : user_pref("CT2612669.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2612669.DialogsGetterLastCheckTime", "Fri Nov 25 2011 20:07:28 GMT+0100");
Supprimée : user_pref("CT2612669.DownloadReferralCookieData", "");
Supprimée : user_pref("CT2612669.EnableSearchSuggest", false);
Supprimée : user_pref("CT2612669.FeedLastCount129206864782289142", 0);
Supprimée : user_pref("CT2612669.FeedPollDate129206864782914144", "Sat Nov 26 2011 07:52:23 GMT+0100");
Supprimée : user_pref("CT2612669.FeedTTL129206864782914144", 40);
Supprimée : user_pref("CT2612669.FirstServerDate", "18-9-2011");
Supprimée : user_pref("CT2612669.FirstTime", true);
Supprimée : user_pref("CT2612669.FirstTimeFF3", true);
Supprimée : user_pref("CT2612669.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT2612669.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2612669.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2612669.HasUserGlobalKeys", true);
Supprimée : user_pref("CT2612669.Initialize", true);
Supprimée : user_pref("CT2612669.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2612669.InstallationAndCookieDataSentCount", 3);
Supprimée : user_pref("CT2612669.InstallationType", "UnknownIntegration");
Supprimée : user_pref("CT2612669.InstalledDate", "Sun Sep 18 2011 18:18:51 GMT+0200");
Supprimée : user_pref("CT2612669.IsAlertDBUpdated", true);
Supprimée : user_pref("CT2612669.IsGrouping", false);
Supprimée : user_pref("CT2612669.IsInitSetupIni", true);
Supprimée : user_pref("CT2612669.IsMulticommunity", false);
Supprimée : user_pref("CT2612669.IsOpenThankYouPage", true);
Supprimée : user_pref("CT2612669.IsOpenUninstallPage", true);
Supprimée : user_pref("CT2612669.LanguagePackLastCheckTime", "Sun Sep 18 2011 18:18:52 GMT+0200");
Supprimée : user_pref("CT2612669.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2612669.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT2612669.LastLogin_3.6.0.10", "Wed Sep 28 2011 10:31:09 GMT+0200");
Supprimée : user_pref("CT2612669.LastLogin_3.7.0.6", "Tue Nov 01 2011 17:40:46 GMT+0100");
Supprimée : user_pref("CT2612669.LastLogin_3.8.0.8", "Sat Nov 26 2011 07:12:23 GMT+0100");
Supprimée : user_pref("CT2612669.LatestVersion", "3.8.0.8");
Supprimée : user_pref("CT2612669.Locale", "en");
Supprimée : user_pref("CT2612669.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2612669.MCDetectTooltipShow", false);
Supprimée : user_pref("CT2612669.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2612669.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2612669.MyStuffEnabledAtInstallation", true);
Supprimée : user_pref("CT2612669.OriginalFirstVersion", "3.6.0.10");
Supprimée : user_pref("CT2612669.SHRINK_TOOLBAR", 1);
Supprimée : user_pref("CT2612669.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT2612669.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT261[...]
Supprimée : user_pref("CT2612669.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT2612669.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT2612669.SearchInNewTabLastCheckTime", "Sun Sep 18 2011 18:18:51 GMT+0200");
Supprimée : user_pref("CT2612669.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Supprimée : user_pref("CT2612669.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...]
Supprimée : user_pref("CT2612669.ServiceMapLastCheckTime", "Fri Nov 25 2011 20:07:28 GMT+0100");
Supprimée : user_pref("CT2612669.SettingsLastCheckTime", "Sun Sep 18 2011 18:18:50 GMT+0200");
Supprimée : user_pref("CT2612669.SettingsLastUpdate", "1314807579");
Supprimée : user_pref("CT2612669.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT2612669.ThirdPartyComponentsLastCheck", "Sun Sep 18 2011 18:18:50 GMT+0200");
Supprimée : user_pref("CT2612669.ThirdPartyComponentsLastUpdate", "1312887586");
Supprimée : user_pref("CT2612669.ToolbarShrinkedFromSetup", false);
Supprimée : user_pref("CT2612669.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2612669");
Supprimée : user_pref("CT2612669.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Supprimée : user_pref("CT2612669.UserID", "UN15962186564239444");
Supprimée : user_pref("CT2612669.ValidationData_Search", 0);
Supprimée : user_pref("CT2612669.ValidationData_Toolbar", 2);
Supprimée : user_pref("CT2612669.alertChannelId", "1005466");
Supprimée : user_pref("CT2612669.approveUntrustedApps", false);
Supprimée : user_pref("CT2612669.backendstorage.cb_firstuse0100", "31");
Supprimée : user_pref("CT2612669.backendstorage.cbfirsttime", "5765642053657020323820323031312031313A34393A30322[...]
Supprimée : user_pref("CT2612669.backendstorage.facebook_ctid_connect_send_new", "73656E646564");
Supprimée : user_pref("CT2612669.backendstorage.facebook_mode", "32");
Supprimée : user_pref("CT2612669.backendstorage.facebook_user_locale", "6672");
Supprimée : user_pref("CT2612669.backendstorage.url_history", "687474703A2F2F7777772E676F6F676C652E66722F7365617[...]
Supprimée : user_pref("CT2612669.backendstorage.url_history_time", "31333232323932313936373639");
Supprimée : user_pref("CT2612669.ct2612669.AppTrackingLastCheckTime", "Thu Nov 24 2011 10:08:57 GMT+0100");
Supprimée : user_pref("CT2612669.ct2612669.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2612669.ct2612669.FeedLastCount129206864782289142", 23);
Supprimée : user_pref("CT2612669.ct2612669.LanguagePackLastCheckTime", "Fri Nov 25 2011 20:07:28 GMT+0100");
Supprimée : user_pref("CT2612669.ct2612669.Locale", "en");
Supprimée : user_pref("CT2612669.ct2612669.SearchInNewTabLastCheckTime", "Fri Nov 25 2011 20:07:28 GMT+0100");
Supprimée : user_pref("CT2612669.ct2612669.SettingsLastCheckTime", "Sat Nov 26 2011 07:12:20 GMT+0100");
Supprimée : user_pref("CT2612669.ct2612669.SettingsLastUpdate", "1321973283");
Supprimée : user_pref("CT2612669.ct2612669.ThirdPartyComponentsLastCheck", "Mon Nov 21 2011 00:02:17 GMT+0100");
Supprimée : user_pref("CT2612669.ct2612669.ThirdPartyComponentsLastUpdate", "1312887586");
Supprimée : user_pref("CT2612669.ct2612669.globalFirstTimeInfoLastCheckTime", "Sat Nov 26 2011 07:18:29 GMT+0100[...]
Supprimée : user_pref("CT2612669.ct2612669.toolbarAppMetaDataLastCheckTime", "Fri Nov 25 2011 20:07:28 GMT+0100"[...]
Supprimée : user_pref("CT2612669.ct2612669.toolbarContextMenuLastCheckTime", "Sun Nov 13 2011 22:46:13 GMT+0100"[...]
Supprimée : user_pref("CT2612669.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Supprimée : user_pref("CT2612669.globalFirstTimeInfoLastCheckTime", "Sun Sep 18 2011 18:18:51 GMT+0200");
Supprimée : user_pref("CT2612669.homepageProtectorEnableByLogin", true);
Supprimée : user_pref("CT2612669.initDone", true);
Supprimée : user_pref("CT2612669.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT2612669.myStuffEnabled", true);
Supprimée : user_pref("CT2612669.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT2612669.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Supprimée : user_pref("CT2612669.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT2612669.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT2612669.oldAppsList", "129170380618247103,129170380618247104,111,129174085518698803,129[...]
Supprimée : user_pref("CT2612669.revertSettingsEnabled", true);
Supprimée : user_pref("CT2612669.searchProtectorDialogDelayInSec", 10);
Supprimée : user_pref("CT2612669.searchProtectorEnableByLogin", true);
Supprimée : user_pref("CT2612669.testingCtid", "");
Supprimée : user_pref("CT2612669.toolbarAppMetaDataLastCheckTime", "Sun Sep 18 2011 18:18:51 GMT+0200");
Supprimée : user_pref("CT2612669.toolbarContextMenuLastCheckTime", "Sun Sep 18 2011 18:18:52 GMT+0200");
Supprimée : user_pref("CT2612669.usagesFlag", 2);
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2612669", [...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=ct2612669", [...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.6.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2612669",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2612669&octid=[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=ct2612669&octid=[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"1d8[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://twitter.com/users/show/20566976.xml", "\"96e85df04bd004d2c96[...]
Supprimée : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\Users\florian\AppData\Roaming\Mozilla\[...]
Supprimée : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.8.0.8");
Supprimée : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://dts.search-results.com/sr?src=ffb[...]
Supprimée : user_pref("CommunityToolbar.ToolbarsList", "CT2612669");
Supprimée : user_pref("CommunityToolbar.ToolbarsList2", "CT2612669");
Supprimée : user_pref("CommunityToolbar.ToolbarsList4", "CT2612669");
Supprimée : user_pref("CommunityToolbar.globalUserId", "a787bb59-bddb-47e6-ab58-99d236db334d");
Supprimée : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Wed Nov 23 2011 16:20:2[...]
Supprimée : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Supprimée : user_pref("CommunityToolbar.notifications.locale", "en");
Supprimée : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
Supprimée : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Nov 25 2011 20:07:28 GMT+0100");
Supprimée : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
Supprimée : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Supprimée : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Supprimée : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Supprimée : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Supprimée : user_pref("CommunityToolbar.notifications.userId", "4348b4b3-9e22-4354-bd5c-92bdf05df671");
Supprimée : user_pref("CommunityToolbar.twitter.user_20566976.LastCheckTime", "Sat Nov 26 2011 07:13:23 GMT+0100[...]
Supprimée : user_pref("extensions.BabylonToolbar.aflt", "babclient");
Supprimée : user_pref("extensions.BabylonToolbar.bbDpng", 30);
Supprimée : user_pref("extensions.BabylonToolbar.dfltLng", "fr");
Supprimée : user_pref("extensions.BabylonToolbar.id", "d05f7c6d000000000000e839df3b6bd7");
Supprimée : user_pref("extensions.BabylonToolbar.instlDay", "15238");
Supprimée : user_pref("extensions.BabylonToolbar.instlRef", "std");
Supprimée : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?babsrc=SP_&q={searchTe[...]
Supprimée : user_pref("extensions.BabylonToolbar.lastDP", 30);
Supprimée : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.4.35.105:48:38");
Supprimée : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Supprimée : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Supprimée : user_pref("extensions.BabylonToolbar.smplGrp", "none");
Supprimée : user_pref("extensions.BabylonToolbar.srchPrvdr", "Search the web (Babylon)");
Supprimée : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Supprimée : user_pref("extensions.BabylonToolbar.vrsn", "1.4.35.10");
Supprimée : user_pref("extensions.BabylonToolbar.vrsnTs", "1.4.35.105:48:38");

-\ Google Chrome v0.0.0.0

Fichier : C:\Users\florian\AppData\Local\Google\Chrome\User Data\Default\Preferences

Supprimée :                "description": "Babylon Chrome OCR",
Supprimée :                   "128": "babylon48.png",
Supprimée :                   "48": "babylon48.png"
Supprimée :                "name": "Babylon Chrome OCR",
Supprimée :                   "path": "BabylonChromePI.dll",
Supprimée :                "update_url": "hxxp://img.babylon.com/ext/chrome/update/update.xml",
Supprimée :          "name": "Babylon Chrome Plugin",
Supprimée :          "path": "C:\Users\florian\AppData\Local\Google\Chrome\User Data\Default\Extensions[...]
Supprimée :          "name": "Babylon Chrome Plugin"

*************************

AdwCleaner[S1].txt - [26684 octets] - [05/12/2011 16:18:57]

*************************

Dossier Temporaire : 5 dossier(s)et 14 fichier(s) supprimés

########## EOF - C:\AdwCleaner[S1].txt - [26905 octets] ##########

Fish66 · Answer

Re,

1/
Relance Ad-remover puis cliques sur "Nettoyer" et poste le rapport

2/
* Lance Malwarebytes' Anti-Malware  
* Fais la mise à jour  
* Clique dans l'onglet  "Recherche"  
* Coche l'option "Exécuter un examen complet" puis sur le bouton "Rechercher"  
* Choisis de scanner tous tes disques durs, puis clique sur 'Lancer l'examen"  

A la fin de l'analyse, si MBAM n'a rien trouvé :  

* Clique sur OK, le rapport s'ouvre spontanément  

Si des menaces ont été détectées :  

* Clique sur OK puis "Afficher les résultats"  
*Vérifie que toutes les lignes sont cochées 
* Choisis l'option "Supprimer la sélection"  
* Si MBAM demande le redémarrage de Windows : Clique sur "Oui"  
* Le rapport s'ouvre automatiquement après la suppression, il se trouve aussi dans l'onglet "Rapports/Logs"  

* Copie/colle le rapport dans le prochain message  


Remarque : 
- S'il y'a un problème de mise à jour de mbam, tu peux la faire manuellement en téléchargeant  ce fichier puis en l'exécutant.

@+

floriantinus · Answer

je sais c'est pas bien...

mais j'aime bien savoir ...

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Version de la base de données: 8307

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

05/12/2011 20:56:16
mbam-log-2011-12-05 (20-56-12).txt

Type d'examen: Examen complet (C:\|D:\|E:\|Q:\|)
Elément(s) analysé(s): 326045
Temps écoulé: 35 minute(s), 23 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 19
Fichier(s) infecté(s): 375

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
c:\Windows\SysWOW64\MPK\Mpk.dll (Refog.Keylogger) -> No action taken.

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\programdata\MPK (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\CPDA (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\CPDM (Refog.Keylogger) -> No action taken.
c:\programdata\MPKefog personal monitor (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang (Refog.Keylogger) -> No action taken.

Fichier(s) infecté(s):
c:\programdata\MPK\M0000 (Refog.Keylogger) -> No action taken.
c:\programdata\MPKefog personal monitor.lnk (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\S0000 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\D0000 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6328879861 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6504318056 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6539041088 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6573764005 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6608486458 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6643209606 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6677933218 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6712655093 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6747377778 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6782100926 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6851546991 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6886269907 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6920992361 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6955715162 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_6990438310 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7623434491 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7674487384 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7709210648 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7743933102 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7778655903 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7813379514 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7848102546 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7882825116 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7917548032 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7952270833 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_7986993171 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8021716088 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8056438889 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8091162037 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8125884954 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8160608449 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8195330671 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8230053704 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8264776389 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8299499537 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8334222569 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8530129398 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8564853125 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8599575231 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8634298032 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8669020833 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_8703745370 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_9717991088 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_9932248380 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40881_9966971528 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0001694329 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0036416782 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0105084259 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0139807523 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0174529977 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0313420833 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0348143866 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0591203819 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0625926968 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0660649537 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0695372801 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0730095370 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0764818634 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0903710185 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_0938432986 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4431740741 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4466464120 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4535909954 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4570632870 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4744247222 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4778969329 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4848415046 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4883138426 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4917861574 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4952584491 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_4987307407 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5022029861 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5056752778 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5091475579 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5126198958 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5160920833 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5195643750 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5230366551 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5265090509 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5299813079 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5334535648 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5369258681 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5403981597 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5438704398 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5473427431 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5508149884 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5542873380 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5577595718 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5612319097 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5647041435 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_5681764815 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_6687117477 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_6791282870 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_6841982870 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_6876706829 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_6911429514 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_6946152199 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7076182639 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7118528241 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7153251736 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7187974769 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7222697338 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7257420370 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7292142940 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7396311458 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7431034144 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7500489468 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7535203125 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7569925694 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_7604648380 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_8473514468 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_8508237269 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_8577683102 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_8612406597 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_8647129051 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\i40882_8681851620 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\1\S0000 (Refog.Keylogger) -> No action taken.
c:\programdata\MPK\CPDM\cpfm.bin (Refog.Keylogger) -> No action taken.
c:\programdata\MPKefog personal monitor\acheter maintenant!.lnk (Refog.Keylogger) -> No action taken.
c:\programdata\MPKefog personal monitor\page d'accueil de refog personal monitor.lnk (Refog.Keylogger) -> No action taken.
c:\programdata\MPKefog personal monitorefog personal monitor.lnk (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\cinfo.bin (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\icon_1.ico (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\key.bin (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\libeay32.dll (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\lnkmst.exe (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\logstart.vbs (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\loguninstall.vbs (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Mpk.dll (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\MPK.exe (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Mpk64.dll (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\MPK64.exe (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\mpknetinstall.exe (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\MPKView.exe (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\sqlite3.dll (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\ssleay32.dll (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK	rial_pro.ini (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\unins000.dat (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\unins000.exe (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\unins000.msg (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\zlib1.dll (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\alarms.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\clipboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\computer.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\delivery.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\file.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\filters.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\imhelp.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\internet.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\invisible.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\keyboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\logging.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\log_size.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English
eed_update_net.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\password.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\programs.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\screenshot.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\settings_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\update.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\English\users_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\alarms.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\clipboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\computer.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\delivery.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\file.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\filters.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\imhelp.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\internet.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\invisible.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\keyboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\logging.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\log_size.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German
eed_update_net.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\password.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\programs.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\screenshot.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\settings_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\German\users_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\alarms.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\clipboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\computer.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\delivery.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\filters.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\internet.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\invisible.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\keyboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\logging.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\log_size.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\password.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\programs.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\screenshot.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\settings_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Help\Spanish\users_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_em_english.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_em_english.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_em_german.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_em_german.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_em_spanish.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_em_spanish.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_english.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_english.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_german.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_german.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_pm_english.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_pm_english.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_pm_german.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_pm_german.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_pm_spanish.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_pm_spanish.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_russian.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_spanish.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\banner_spanish.swf (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\english.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\german.gif (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\upgrade_aeu.png (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\upgrade_aus.png (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\upgrade_eu.png (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\upgrade_faeu.png (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\upgrade_faus.png (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\upgrade_feu.png (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\upgrade_fus.png (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\upgrade_us.png (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\vista_hide.bmp (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Images\xp_hide.bmp (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\brazilian.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\brazilian.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\English.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\French.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\French.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\German.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\German.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Italian.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Italian.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Japanese.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Japanese.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Polish.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Polish.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\portuguese.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\portuguese.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Romanian.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Romanian.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Russian.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Spanish.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Spanish.lng (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Turkish.frc (Refog.Keylogger) -> No action taken.
c:\Windows\System32\MPK\Lang\Turkish.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\cinfo.bin (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\icon_1.ico (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\key.bin (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\libeay32.dll (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\lnkmst.exe (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\logstart.vbs (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\loguninstall.vbs (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Mpk.dll (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\MPK.exe (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Mpk64.dll (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\MPK64.exe (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\mpknetinstall.exe (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\MPKView.exe (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\sqlite3.dll (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\ssleay32.dll (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK	rial_pro.ini (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\unins000.dat (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\unins000.exe (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\unins000.msg (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\zlib1.dll (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\alarms.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\clipboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\computer.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\delivery.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\file.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\filters.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\imhelp.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\internet.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\invisible.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\keyboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\logging.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\log_size.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English
eed_update_net.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\password.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\programs.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\screenshot.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\settings_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\update.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\English\users_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\alarms.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\clipboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\computer.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\delivery.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\file.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\filters.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\imhelp.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\internet.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\invisible.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\keyboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\logging.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\log_size.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German
eed_update_net.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\password.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\programs.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\screenshot.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\settings_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\German\users_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\alarms.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\clipboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\computer.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\delivery.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\filters.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\internet.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\invisible.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\keyboard.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\logging.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\log_size.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\password.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\programs.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\screenshot.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\settings_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Help\Spanish\users_node.htm (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_em_english.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_em_english.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_em_german.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_em_german.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_em_spanish.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_em_spanish.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_english.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_english.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_german.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_german.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_pm_english.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_pm_english.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_pm_german.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_pm_german.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_pm_spanish.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_pm_spanish.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_russian.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_spanish.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\banner_spanish.swf (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\english.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\german.gif (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\upgrade_aeu.png (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\upgrade_aus.png (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\upgrade_eu.png (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\upgrade_faeu.png (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\upgrade_faus.png (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\upgrade_feu.png (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\upgrade_fus.png (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\upgrade_us.png (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\vista_hide.bmp (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Images\xp_hide.bmp (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\brazilian.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\brazilian.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\English.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\French.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\French.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\German.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\German.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Italian.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Italian.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Japanese.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Japanese.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Polish.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Polish.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\portuguese.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\portuguese.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Romanian.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Romanian.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Russian.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Spanish.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Spanish.lng (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Turkish.frc (Refog.Keylogger) -> No action taken.
c:\Windows\SysWOW64\MPK\Lang\Turkish.lng (Refog.Keylogger) -> No action taken.

floriantinus · Answer

et la j'ai tous viré ;)

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Version de la base de données: 8307

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

05/12/2011 21:00:15
mbam-log-2011-12-05 (21-00-15).txt

Type d'examen: Examen complet (C:\|D:\|E:\|Q:\|)
Elément(s) analysé(s): 326045
Temps écoulé: 35 minute(s), 23 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 19
Fichier(s) infecté(s): 375

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
c:\Windows\SysWOW64\MPK\Mpk.dll (Refog.Keylogger) -> Delete on reboot.

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\programdata\MPK (Refog.Keylogger) -> Delete on reboot.
c:\programdata\MPK\1 (Refog.Keylogger) -> Delete on reboot.
c:\programdata\MPK\CPDA (Refog.Keylogger) -> Delete on reboot.
c:\programdata\MPK\CPDM (Refog.Keylogger) -> Delete on reboot.
c:\programdata\MPKefog personal monitor (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK (Refog.Keylogger) -> Delete on reboot.
c:\Windows\System32\MPK\Help (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK (Refog.Keylogger) -> Delete on reboot.
c:\Windows\SysWOW64\MPK\Help (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang (Refog.Keylogger) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
c:\programdata\MPK\M0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPKefog personal monitor.lnk (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\S0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\D0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6328879861 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6504318056 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6539041088 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6573764005 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6608486458 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6643209606 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6677933218 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6712655093 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6747377778 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6782100926 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6851546991 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6886269907 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6920992361 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6955715162 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_6990438310 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7623434491 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7674487384 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7709210648 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7743933102 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7778655903 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7813379514 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7848102546 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7882825116 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7917548032 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7952270833 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_7986993171 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8021716088 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8056438889 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8091162037 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8125884954 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8160608449 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8195330671 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8230053704 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8264776389 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8299499537 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8334222569 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8530129398 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8564853125 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8599575231 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8634298032 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8669020833 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_8703745370 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_9717991088 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_9932248380 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40881_9966971528 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0001694329 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0036416782 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0105084259 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0139807523 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0174529977 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0313420833 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0348143866 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0591203819 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0625926968 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0660649537 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0695372801 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0730095370 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0764818634 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0903710185 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_0938432986 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4431740741 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4466464120 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4535909954 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4570632870 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4744247222 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4778969329 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4848415046 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4883138426 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4917861574 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4952584491 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_4987307407 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5022029861 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5056752778 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5091475579 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5126198958 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5160920833 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5195643750 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5230366551 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5265090509 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5299813079 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5334535648 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5369258681 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5403981597 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5438704398 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5473427431 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5508149884 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5542873380 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5577595718 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5612319097 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5647041435 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_5681764815 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_6687117477 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_6791282870 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_6841982870 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_6876706829 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_6911429514 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_6946152199 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7076182639 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7118528241 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7153251736 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7187974769 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7222697338 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7257420370 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7292142940 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7396311458 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7431034144 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7500489468 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7535203125 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7569925694 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_7604648380 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_8473514468 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_8508237269 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_8577683102 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_8612406597 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_8647129051 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\i40882_8681851620 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\1\S0000 (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPK\CPDM\cpfm.bin (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPKefog personal monitor\acheter maintenant!.lnk (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPKefog personal monitor\page d'accueil de refog personal monitor.lnk (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\programdata\MPKefog personal monitorefog personal monitor.lnk (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\cinfo.bin (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\icon_1.ico (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\key.bin (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\libeay32.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\lnkmst.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\logstart.vbs (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\loguninstall.vbs (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Mpk.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\MPK.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Mpk64.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\MPK64.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\mpknetinstall.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\MPKView.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\sqlite3.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\ssleay32.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK	rial_pro.ini (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\unins000.dat (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\unins000.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\unins000.msg (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\zlib1.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\file.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\imhelp.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English
eed_update_net.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\update.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\English\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\file.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\imhelp.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German
eed_update_net.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\German\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Help\Spanish\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_em_english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_em_english.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_em_german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_em_german.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_em_spanish.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_em_spanish.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_english.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_german.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_pm_english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_pm_english.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_pm_german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_pm_german.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_pm_spanish.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_pm_spanish.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_russian.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_spanish.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\banner_spanish.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\upgrade_aeu.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\upgrade_aus.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\upgrade_eu.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\upgrade_faeu.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\upgrade_faus.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\upgrade_feu.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\upgrade_fus.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\upgrade_us.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\vista_hide.bmp (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Images\xp_hide.bmp (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\brazilian.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\brazilian.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\English.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\French.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\French.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\German.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\German.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Italian.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Italian.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Japanese.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Japanese.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Polish.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Polish.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\portuguese.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\portuguese.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Romanian.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Romanian.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Russian.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Spanish.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Spanish.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Turkish.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\System32\MPK\Lang\Turkish.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\cinfo.bin (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\icon_1.ico (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\key.bin (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\libeay32.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\lnkmst.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\logstart.vbs (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\loguninstall.vbs (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Mpk.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\MPK.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Mpk64.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\MPK64.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\mpknetinstall.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\MPKView.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\sqlite3.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\ssleay32.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK	rial_pro.ini (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\unins000.dat (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\unins000.exe (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\unins000.msg (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\zlib1.dll (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\file.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\imhelp.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English
eed_update_net.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\update.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\English\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\file.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\imhelp.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German
eed_update_net.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\German\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\alarms.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\clipboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\computer.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\filters.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\internet.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\invisible.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\logging.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\password.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\programs.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\settings_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Help\Spanish\users_node.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_em_english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_em_english.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_em_german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_em_german.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_em_spanish.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_em_spanish.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_english.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_german.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_pm_english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_pm_english.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_pm_german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_pm_german.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_pm_spanish.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_pm_spanish.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_russian.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_spanish.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\banner_spanish.swf (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\english.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\german.gif (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\upgrade_aeu.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\upgrade_aus.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\upgrade_eu.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\upgrade_faeu.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\upgrade_faus.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\upgrade_feu.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\upgrade_fus.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\upgrade_us.png (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\vista_hide.bmp (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Images\xp_hide.bmp (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\brazilian.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\brazilian.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\English.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\French.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\French.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\German.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\German.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Italian.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Italian.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Japanese.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Japanese.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Polish.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Polish.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\portuguese.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\portuguese.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Romanian.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Romanian.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Russian.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Spanish.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Spanish.lng (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Turkish.frc (Refog.Keylogger) -> Quarantined and deleted successfully.
c:\Windows\SysWOW64\MPK\Lang\Turkish.lng (Refog.Keylogger) -> Quarantined and deleted successfully.

Fish66 · Answer

Re,

Lance ZHPDiag depuis le bureau et prépare stp un nouveau rapport ZHPDiag

A demain 

Bonne nuit

floriantinus · Answer

merci ;) Rapport de ZHPDiag v1.28.2510 par Nicolas Coolman, Update du 03/12/2011 Run by florian at 06/12/2011 01:38:08 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html State : Version à jour. ---\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 MFIE: Mozilla Firefox 8.0.1 v8.0.1 (Defaut) ---\ Windows Product Information ~ Langage: Français Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK ~ Windows(R) 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : BWX77 Windows License : OK ~ Windows Remaining Initializations Number : 4 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\ System Information ~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3893 MB (61% free) System Restore: Activé (Enable) System drive C: has 59 GB (25%) free of 233 GB ---\ Logged in mode ~ Computer Name: FLORIAN-TOSH ~ User Name: florian ~ All Users Names: HomeGroupUser$, florian, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O82,O89 Logged in as Administrator ---\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\florian\AppData\Roaming\ ~ %Desktop% : C:\Users\florian\Desktop\ ~ %Favorites% : C:\Users\florian\Favorites\ ~ %LocalAppData% : C:\Users\florian\AppData\Local\ ~ %StartMenu% : C:\Users\florian\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\system32\ ---\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 59 Go of 233 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 224 Go of 233 Go) E:\ CD-ROM drive (Not Inserted) Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go) ---\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date ~ Scan Security Center in 00mn 00s ---\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32 undll32.exe [45568] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024] [MD5.271E8FB1354AA205A214F280A6766E30] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/10/2011 - 06:17:57.) -- C:\Windows\system32\wininet.dll [1389056] [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.09/06/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.09/06/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448] [MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.09/06/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480] [MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.16/06/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.09/06/2011 - 10:19:21.) -- C:\Windows\system32\drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.09/06/2011 - 10:26:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.09/06/2011 - 11:43:43.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224] [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.16/06/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.09/06/2011 - 10:23:20.) -- C:\Windows\system32\drivers etBT.sys [261632] [MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers tfs.sys [1659776] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.09/06/2011 - 11:52:35.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\drivers\smb.sys [93184] [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.09/06/2011 - 10:21:56.) -- C:\Windows\system32\drivers dx.sys [119296] [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.09/06/2011 - 14:34:02.) -- C:\Windows\system32\drivers\volsnap.sys [295808] ~ Scan Generic Processes in 00mn 00s ---\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 14/591 ~ Mes musiques (My Musics) : 3/50 ~ Mes Videos (My Videos) : 24/240 ~ Mes Favoris (My Favorites) : 10/52 ~ Mes Documents (My Documents) : 6/42 ~ Mon Bureau (My Desktop) : 12/453 ~ Menu demarrer (Programs) : 7/48 ~ Scan Hidden Files in 00mn 01s ---\ Processus lancés [MD5.F0BBE1351ECDF1E1C599F1AA499F288D] - (...) -- C:\Windows\SysWOW64\MPK\mpk.exe [1447760] [PID.2396] [MD5.05973FB5F863CDB65852D88ADB383A33] - (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe [4581280] [PID.3684] [MD5.80A02F5ADDDF2D615B85A4F19424DCBB] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [1086760] [PID.3820] [MD5.F7E0783DA9043BC131BB37C77EDB04DF] - (.TOSHIBA CORPORATION. - Pas de description.) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840] [PID.3828] [MD5.7636713B4F0944045AB4AF7CED5245AB] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1230704] [PID.3712] [MD5.1568FF282E268082C67CF0C3EBCC9179] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [976320] [PID.3720] [MD5.026423673B8563E9975BDA97ED6273C7] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [449608] [PID.3808] [MD5.6E3245DF783E58375B3465F03274743E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.4052] [MD5.F4D0446BA874917354801F210E66F545] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736] [PID.3532] [MD5.A13D082D83C627A35BD005ABC65CF6E4] - (.M.A. - MAagent.) -- C:\Program Files (x86)\Spyome\exec\MAagent.exe [29696] [PID.4104] [MD5.B332A841B6F0EDE3B85EB9BB1300E227] - (.M.A - MALogger.) -- C:\Program Files (x86)\Spyome\exec\MAlogger.exe [30208] [PID.4420] [MD5.A7E406711790197712D376B44A9FBB0B] - (.TOSHIBA CORPORATION - ConfigFree Task Tray Menu.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [304496] [PID.4788] [MD5.8A07221789D46B2EA7DFCA2BC807572A] - (.TOSHIBA CORPORATION - ConfigFree Switch Manager Process.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe [62848] [PID.5564] [MD5.7C843EB67AAEAAC58B519EE0B0D3D233] - (.http://emuleplus.info - eMule Plus.) -- C:\Program Files (x86)\eMule\eMule.exe [5746688] [PID.3940] [MD5.25532414A7A088553527A75B31DF0592] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632] [PID.5376] [MD5.354DAC3C68AAA2BCCE94EE77F30095FC] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [707072] [PID.3148] [MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.] [MD5.8750B3454AF73568BE6203047A08F560] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files (x86)\Spyome\apache\bin\httpd.exe [24645] [PID.] [MD5.3DEBBECF665DCDDE3A95D9B902010817] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.] [MD5.23DE5B62B0445A6F874BE633C95B483E] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.] [MD5.7D2633295EB6FF2B938185874884059D] - (.Nero AG - Nero BackItUp.) -- c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [935208] [PID.] [MD5.0EC561D71A733814CFF37712CDEE2A74] - (.Microsoft Corporation - Microsoft Application Virtualization Virtua.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [219496] [PID.] [MD5.08D2B597CC4E26FDE43BE9F104476F65] - (.Microsoft Corporation - Microsoft Application Virtualization Client.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [508264] [PID.] [MD5.344546D11D7E6D9F481E9D3ABC6E76CB] - (.Microsoft Corporation - Microsoft Office Client Virtualization Serv.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [821664] [PID.] [MD5.CAB0EEAF5295FC96DDD3E19DCE27E131] - (.TOSHIBA CORPORATION - ConfigFree Service Process.) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [46448] [PID.] [MD5.94E920BE59B9AB65D95E582DBAA136AC] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [366152] [PID.] [MD5.CC3775100ABA633984F73DFAE1F55CAE] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.] ~ Scan Processes Running in 00mn 00s ---\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\florian\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] None G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl G2 - GCE: Preference [User Data\Default] [gaiilaahiahdejapggenmdmafpmbipje] DealPly v.3.0.7.2 (Activé) G2 - GCE: Preference [User Data\Default] [pbglijbamgmlcpnnpbfjkbdeheejjloj] Shockwave Flash v.11,1,102,55 (Activé) ~ Scan Google Browser in 00mn 00s ---\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\prefs.js M3 - MFPP: Plugins - [florian] -- C:\Users\florian\AppData\Roaming\Mozilla\Firefox\Profiles\0mrzmddn.default\searchplugins\bing.xml M0 - MFSP: prefs.js [florian - 0mrzmddn.default] https://www.google.fr/?gws_rd=ssl M2 - MFEP: prefs.js [florian - 0mrzmddn.default\bloodfire@example.com] [] BloodFire 3 v3.6 (.Cato62.) M2 - MFEP: prefs.js [florian - 0mrzmddn.default\{90b49673-5506-483e-b92b-ca0265bd9ca8}] [] IMVU Inc Community Toolbar v3.8.1.0 (.Conduit Ltd..) P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins p-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pdeployJava1.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins ppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins pqtplugin7.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper povshelper.dll P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\florian\AppData\Local\Facebook\Video\Skype pFacebookVideoCalling.dll P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster pPandoWebPlugin.dll ~ Scan Firefox Browser in 00mn 00s ---\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R3 - URLSearchHook: IMVU Inc Toolbar [64Bits] - {90b49673-5506-483e-b92b-ca0265bd9ca8} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll R3 - URLSearchHook: IMVU Inc Toolbar [64Bits] - {90b49673-5506-483e-b92b-ca0265bd9ca8} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ Scan IE Browser in 00mn 00s ---\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe,C:\Windows\SysWOW64\MPK\mpk.exe F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe ~ Scan Keys in 00mn 00s ---\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 04s ---\ Browser Helper Objects de navigateur (O2) O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print [64Bits] - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION / CyCom Technology - Epson Easy Photo Print (TBL x64).) -- C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5

Fish66 · Answer

Bonjour,

Le rapport est incomplet, héberge le stp

@+

PC très lent

13 réponses

Votre réponse

Newsletters