Navigateur s'ouvre tout seul (log HijackThis)

[Résolu/Fermé]
Signaler
Messages postés
55
Date d'inscription
jeudi 21 avril 2011
Statut
Membre
Dernière intervention
25 août 2013
-
 Utilisateur anonyme -
Bonjour,

J'étais occupé à jouer à Dragon Age Origins en mode fenêtré lorsque mon navigateur par défaut, Google Chrome, a ouvert une page automatiquement, ma page d'accueil d'ailleurs... je me suis d'abord dit que ce devait être un raccourci correspondant, sans songer à un virus qui lui m'aurait ouvert une publicité. Viennent ensuite la seconde page, la troisième, je les ferme et cela recommence plusieurs fois et je les ferme en pestant jusqu'à en avoir VINGT d'ouvertes (dans une nouvelle fenêtre, si ce n'était qu'en onglet ça aurait été... pas drôle), j'ai du fermer le groupe. J'ai tenté une recherche sur Google dans Chrome mais il semblerait que lorsque je tente de me servir de mon clavier je ne sas quelle saleté m'ouvre des pages d'accueil... J'imagine que j'ai un virus dans mon ordinateur et je suis passé sur mon pc portable sous Linux pour vous envoyer mon rapport HijackThis en espérant que vous me trouverez une solution... J'ajoute qu'il semblerait que le virus ne veut pas que j'écrive dans ma clef USB, j'ai donc galéré pour transférer le log de HijackThis. J'ai retenté en ayant éjecté ma clef et l'inscription semble à nouveau possible. Peu importe cela, pour l'heure j'aurais besoin d'un expert pour m'aider. D'avance merci beaucoup

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe  
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe  
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: HP Network Devices Support (HPSLPSVC) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe  
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - C:\Windows\system32\inetsrv\inetinfo.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe  
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: Serveur (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe  
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe  
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe  
O23 - Service: Marvell RAID Event Agent (Marvell RAID) - Unknown owner - C:\Program Files (x86)\Marvell\raid\svc\mvraidsvc.exe  
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: MRU Web Service (MRUWebService) - Apache Software Foundation - C:\Program Files (x86)\Marvell\raid\Apache2\bin\httpd.exe  
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe  
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\Windows\system32\mqsvc.exe (file missing)  
O23 - Service: @mqutil.dll,-6203 (MSMQTriggers) - Unknown owner - C:\Windows\system32\mqtgsvc.exe (file missing)  
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe  
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe  
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: Service de l'Assistant Compatibilité des programmes (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe  
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe  
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe  
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)  
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: SafeBox - Bitdefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe  
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe  
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe  
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe  
O23 - Service: Acquisition d'image Windows (WIA) (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe  
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe  
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe  
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe  
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: DCNTranProc (Tran_Process_Proc) - Unknown owner - C:\Program Files (x86)\FarStone\DriveClone\Client\DCNTranProc.exe  
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe  
O23 - Service: TunnelClientService - Network Tunnel Client Service - C:\Program Files (x86)\Super Network Tunnel\TunnelClientService.exe  
O23 - Service: TunnelServerService - Network Tunnel Client Service - C:\Program Files (x86)\Super Network Tunnel\TunnelServerService.exe  
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe  
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe  
O23 - Service: BitDefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe  
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: User Privilege Service (usprserv) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)  
O23 - Service: Cliché instantané des volumes (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)  
O23 - Service: BitDefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe  
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30003 (W3SVC) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30001 (WAS) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)  
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)  
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Service de rapport d'erreurs Windows (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe  
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Windows Driver Foundation - Infrastructure de pilote mode-utilisateur (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe  

--  
End of file - 29966 bytes  
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tem32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe  
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe  
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: HP Network Devices Support (HPSLPSVC) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe  
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - C:\Windows\system32\inetsrv\inetinfo.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe  
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: Serveur (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe  
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe  
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe  
O23 - Service: Marvell RAID Event Agent (Marvell RAID) - Unknown owner - C:\Program Files (x86)\Marvell\raid\svc\mvraidsvc.exe  
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: MRU Web Service (MRUWebService) - Apache Software Foundation - C:\Program Files (x86)\Marvell\raid\Apache2\bin\httpd.exe  
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe  
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\Windows\system32\mqsvc.exe (file missing)  
O23 - Service: @mqutil.dll,-6203 (MSMQTriggers) - Unknown owner - C:\Windows\system32\mqtgsvc.exe (file missing)  
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe  
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe  
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: Service de l'Assistant Compatibilité des programmes (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe  
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe  
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe  
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)  
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: SafeBox - Bitdefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe  
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: ServiceLayer - Nokia. - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe  
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe  
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe  
O23 - Service: Acquisition d'image Windows (WIA) (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe  
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe  
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe  
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe  
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: DCNTranProc (Tran_Process_Proc) - Unknown owner - C:\Program Files (x86)\FarStone\DriveClone\Client\DCNTranProc.exe  
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe  
O23 - Service: TunnelClientService - Network Tunnel Client Service - C:\Program Files (x86)\Super Network Tunnel\TunnelClientService.exe  
O23 - Service: TunnelServerService - Network Tunnel Client Service - C:\Program Files (x86)\Super Network Tunnel\TunnelServerService.exe  
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe  
O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe  
O23 - Service: BitDefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe  
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: User Privilege Service (usprserv) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)  
O23 - Service: Cliché instantané des volumes (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)  
O23 - Service: BitDefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe  
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30003 (W3SVC) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30001 (WAS) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)  
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)  
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Service de rapport d'erreurs Windows (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe  
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)  
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe  
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: Windows Driver Foundation - Infrastructure de pilote mode-utilisateur (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe  
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe  

--  
End of file - 29966 bytes


J'tiens à ajouter que je viens de rouvrir Chrome, une vingtaine de minutes après le premier symptôme, et que tout semble normal. J'ai scanné mon jeux DAO et rien n'a été trouvé...
Et j'ajoute que tout mon pc est trèès lent.


10 réponses


salut


/!\ ATTENTION SUIVRE A LA LETTRE CES INDICATIONS/!\

__________________________________________________________
>Ce logiciel n'est à utiliser que prescrit par un helper qualifié et formé à l'outil.<
>>>>>>>Ne pas utiliser en dehors de ce cas de figure : dangereux!<<<<<<<<
=====================================================


▶ Surtout , pense à l'enregistrement à renommer Combofix en "ton prenom.exe" avant qu'il soit enregistré sur ton disque dur

Telecharge ici : Combofix

Avant d'utiliser ComboFix :

Si tu utilises AVG, IL FAUT IMPERATIVEMENT LE DESINSTALLER avant d'utiliser Combofix car il peut causer des dégâts en interaction avec l'outil pouvant mener à la réinstallation totale du système.
La simple désactivation du résident n'est pas suffisante.
Télécharge le désinstalleur d'AVG sur ce lien : https://www.avg.com/fr-fr/avg-remover
Choisis la version adéquate (32 ou 64 bits)/!\

Les logiciels d'émulation de CD comme Daemon Tools peuvent gêner les outils de désinfection. Utilise Defogger pour les désactiver temporairement :

▶ Télécharge Defogger (de jpshortstuff) sur ton Bureau

▶ Lance le

Une fenêtre apparait : clique sur "Disable"

▶ Fais redémarrer l'ordinateur si l'outil te le demande

Note : Quand nous aurons terminé la désinfection, tu pourras réactiver ces logiciels en relançant Defogger et en cliquant sur "Re-enable"

_________________________________________________________
>> referme les fenêtres de tous les programmes en cours.
>> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix,
>>la protection en temps réel de ton Antivirus et de tes Antispywares,
>>qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°°


si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."


sur combofix renommé

¤¤¤¤¤¤¤¤¤¤ LAISSE-LE INSTALLER LA CONSOLE DE RECUPERATION S'IL TE LE DEMANDE ¤¤¤¤¤¤¤¤¤¤

▶ !!!!!NE TOUCHE A RIEN PENDANT LE TRAVAIL DE COMBOFIX (SOURIS/CLAVIER.....)!!!!!

▶ n'oublie pas de reactiver la garde de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

▶▶ Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.


▶▶▶ Si, après le redémarrage de votre pc par combofix, vous avez des erreurs "Clé marquée pour suppression" ou des soucis de connexion internet, redémarrez à nouveau votre ordinateur



Messages postés
55
Date d'inscription
jeudi 21 avril 2011
Statut
Membre
Dernière intervention
25 août 2013
1
ComboFix m'indique que mes scanneurs en temps réel sont activés ; mon antivirus et mon antispyware sont actifs (bitdefender total security 2012) malgré que j'ai selon BitDefende tout désactivé. J'ai fermé ma session pour empêcher ComboFix de poursuivre. (introuvable dans taskmgr)

lance combofix en mode sans echec
Messages postés
55
Date d'inscription
jeudi 21 avril 2011
Statut
Membre
Dernière intervention
25 août 2013
1
Voici le log... certaines suppressions m'ont laissé perplexe. J'attends ton avis g3n :)

ComboFix 12-05-29.01 - Axel FIOLLE 29/05/2012  23:23:25.1.8 - x64 MINIMAL  
Microsoft Windows 7 Édition Familiale Premium   6.1.7601.1.1252.32.1036.18.8187.6816 [GMT 2:00]  
Lancé depuis: c:\users\Axel FIOLLE\Desktop\Axel.exe  
AV: Bitdefender Antivirus *Disabled/Outdated* {50909708-FF80-02AF-F814-B28405891E92}  
FW: Bitdefender Pare-feu *Disabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}  
SP: Bitdefender Antispyware *Disabled/Outdated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}  
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}  
 * Un nouveau point de restauration a été créé  
.  
.  
((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))  
.  
.  
C:\install.exe  
c:\programdata\1314288978.bdinstall.bin  
c:\users\Axel FIOLLE\AppData\Local\assembly\tmp  
c:\users\Axel FIOLLE\AppData\Roaming\chrtmp  
c:\users\Axel FIOLLE\AppData\Roaming\Roaming  
c:\users\Axel FIOLLE\AppData\Roaming\Roaming\Ubisoft\Anno1404Addon\Config\Engine.ini  
c:\users\Axel FIOLLE\cat.exe  
c:\users\Axel FIOLLE\Documents\~WRL0001.tmp  
c:\users\Axel FIOLLE\Documents\~WRL3571.tmp  
c:\users\Axel FIOLLE\hashcat-cli32.exe  
c:\users\Utilisateur\AppData\Roaming\Roaming  
c:\users\Utilisateur\AppData\Roaming\Roaming\Ubisoft\Anno1404Addon\Config\Engine.ini  
c:\windows\system32\drivers\etc\hosts.ics  
c:\windows\SysWow64\DEBUG.log  
.  
.  
(((((((((((((((((((((((((((((   Fichiers créés du 2012-04-28 au 2012-05-29  ))))))))))))))))))))))))))))))))))))  
.  
.  
2012-05-29 21:36 . 2012-05-29 21:36 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp  
2012-05-29 21:36 . 2012-05-29 21:36 -------- d-----w- c:\users\Default\AppData\Local\temp  
2012-05-29 21:36 . 2012-05-29 21:36 -------- d-----w- c:\users\Axel FIOLLE\AppData\Local\temp  
2012-05-29 21:36 . 2012-05-29 21:36 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp  
2012-05-27 20:15 . 2012-05-27 20:15 -------- d-----w- c:\programdata\BioWare  
2012-05-27 20:12 . 2012-05-27 20:12 -------- d-----w- c:\windows\SysWow64\AGEIA  
2012-05-27 20:12 . 2012-05-27 20:12 -------- d-----w- c:\program files (x86)\AGEIA Technologies  
2012-05-27 20:11 . 2012-05-27 20:11 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard  
2012-05-27 20:11 . 2012-05-27 20:11 -------- d-----w- c:\programdata\Media Center Programs  
2012-05-27 19:51 . 2012-05-27 20:11 -------- d-----w- c:\program files (x86)\Common Files\BioWare  
2012-05-27 19:51 . 2012-05-27 20:04 -------- d-----w- c:\program files (x86)\Dragon Age  
2012-05-20 17:16 . 2012-05-20 17:50 -------- d-----w- c:\users\Axel FIOLLE\AppData\Local\mypaint  
2012-05-20 17:16 . 2012-05-20 17:16 -------- d-----w- c:\program files\MyPaint  
2012-05-10 19:23 . 2012-05-10 19:29 -------- d-----w- C:\cygwin  
2012-05-09 04:51 . 2012-03-03 06:35 1544704 ----a-w- c:\windows\system32\DWrite.dll  
2012-05-09 04:51 . 2012-03-03 05:31 1077248 ----a-w- c:\windows\SysWow64\DWrite.dll  
2012-05-09 04:51 . 2012-03-31 06:05 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe  
2012-05-09 04:51 . 2012-03-31 03:10 3146240 ----a-w- c:\windows\system32\win32k.sys  
2012-05-09 04:51 . 2012-03-31 04:39 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe  
2012-05-09 04:51 . 2012-03-31 04:39 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe  
2012-05-09 04:50 . 2012-03-17 07:58 75120 ----a-w- c:\windows\system32\drivers\partmgr.sys  
2012-05-09 04:50 . 2012-03-30 11:35 1918320 ----a-w- c:\windows\system32\drivers\tcpip.sys  
2012-05-09 04:50 . 2012-03-31 05:42 1732096 ----a-w- c:\program files\Windows Journal\NBDoc.DLL  
2012-05-09 04:50 . 2012-03-31 05:40 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll  
2012-05-09 04:50 . 2012-03-31 05:40 1367552 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll  
2012-05-09 04:50 . 2012-03-31 05:40 1393664 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll  
2012-05-09 04:50 . 2012-03-31 04:29 936960 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll  
2012-05-05 19:05 . 2012-05-05 19:05 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys  
2012-05-05 19:04 . 2012-05-05 21:00 -------- d-----w- c:\users\Axel FIOLLE\AppData\Roaming\DAEMON Tools Lite  
2012-05-05 19:04 . 2012-05-05 19:05 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite  
2012-05-05 19:04 . 2012-05-05 21:00 -------- d-----w- c:\programdata\DAEMON Tools Lite  
2012-05-05 09:02 . 2012-05-05 09:11 -------- d-----w- c:\users\Axel FIOLLE\AppData\Roaming\Nik Software  
2012-04-30 22:20 . 2012-04-30 22:20 -------- d-----w- c:\program files (x86)\Amnesia - The Dark Descent - Copie  
2012-04-30 21:29 . 2012-05-16 15:18 -------- d-----w- c:\users\Axel FIOLLE\AppData\Local\Procaster  
2012-04-30 17:57 . 2012-04-30 18:04 -------- d-----w- c:\program files (x86)\Amnesia - The Dark Descent  
.  
.  
.  
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))  
.  
2012-05-29 21:16 . 2011-11-03 18:14 458752 ----a-w- c:\windows\ServiceProfiles\NetworkService\msmqlog.bin  
2012-05-10 20:28 . 2012-04-29 17:32 419488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe  
2012-05-10 20:28 . 2011-06-16 17:44 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl  
2012-04-05 22:57 . 2012-02-06 16:57 691896 ------w- c:\windows\system32\drivers\avc3.sys  
2012-04-04 13:56 . 2011-07-06 18:32 24904 ----a-w- c:\windows\system32\drivers\mbam.sys  
2012-03-06 12:52 . 2012-02-06 16:57 545064 ------w- c:\windows\system32\drivers\avckf.sys  
2008-06-24 15:06 972072 --shatr- c:\windows\UNNeroMediaHome.exe  
2007-02-28 15:41 972336 --shatr- c:\windows\UNNeroShowTime.exe  
2007-03-21 20:02 972336 --shatr- c:\windows\UNNeroVision.exe  
2008-06-06 13:54 972072 --shatr- c:\windows\UNRecode.exe  
2011-07-16 04:26 44032 --shatr- c:\windows\AppPatch\acwow64.dll  
2010-11-20 13:44 198656 --shatr- c:\windows\assembly\GAC_64\mcupdate\6.1.0.0__31bf3856ad364e35\mcupdate.exe  
2010-11-13 00:54 311296 --shatw- c:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.Resources.dll  
2007-02-22 21:41 304544 --shatr- c:\windows\Downloaded Program Files\MessengerStatsPAClient.dll  
2010-11-20 13:24 295936 --shatr- c:\windows\ehome\ehprivjob.exe  
2009-07-14 01:40 26112 --shatr- c:\windows\ehome\ehSSO.dll  
2010-11-20 13:44 198656 --shatr- c:\windows\ehome\mcupdate.exe  
2011-03-17 00:22 4301184 --sha-r- c:\windows\Installer\$PatchCache$\Managed\00004109D30000000000000000F01FEC\14.0.6029\GRAPH.EXE  
2009-06-10 20:39 28496 --shatr- c:\windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll  
2010-11-05 01:56 797016 --shatr- c:\windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll  
2010-11-05 01:56 113488 --shatr- c:\windows\Microsoft.NET\Framework64\v2.0.50727\shfusion.dll  
2011-12-25 20:40 746256 --shatr- c:\windows\Microsoft.NET\Framework64\v2.0.50727\webengine.dll  
2010-11-05 01:53 42856 --shatr- c:\windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe  
2010-03-18 20:16 78152 --shatr- c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\ClientLP\Setup.exe  
1998-10-13 19:08 274497 --shatr- c:\windows\Msagent\AGENTSVR.EXE  
2010-11-20 13:25 194048 --shatr- c:\windows\servicing\TrustedInstaller.exe  
2008-12-04 09:59 188416 --shatr- c:\windows\System32\APOMgr64.DLL  
2008-09-17 12:07 88064 --shatr- c:\windows\System32\CmdRtr64.DLL  
2009-07-14 01:40 211456 --shatr- c:\windows\System32\CNBLM3_2.DLL  
2011-01-17 11:09 197120 --shatr- c:\windows\System32\d3d10_1.dll  
2010-11-20 13:26 321024 --shatr- c:\windows\System32\d3d10_1core.dll  
2010-07-23 07:55 32768 --shatr- c:\windows\System32\hpbmiapi.dll  
2010-07-23 07:55 33280 --shatr- c:\windows\System32\hpboid.dll  
2010-07-23 07:55 57344 --shatr- c:\windows\System32\hpbpro.dll  
2009-04-16 12:08 136704 --shatr- c:\windows\System32\hpf3l70v.dll  
2009-02-10 13:03 1403904 --shatr- c:\windows\System32\hpost_p02d.dll  
2009-02-10 13:03 880640 --shatr- c:\windows\System32\hposwia_p02d.dll  
2010-08-06 09:15 54784 --shatr- c:\windows\System32\HPZipr12.dll  
2011-11-18 20:09 252296 --shatr- c:\windows\System32\javaws.exe  
2009-05-05 02:53 320512 --shatr- c:\windows\System32\MaxxAudioAPO20.dll  
2009-05-14 08:02 72192 --shatr- c:\windows\System32\MBWrp64.dll  
2009-07-14 01:38 25600 --shatr- c:\windows\System32\msacm32.drv  
2009-07-02 11:28 198656 --shatr- c:\windows\System32\RTEED64A.dll  
2009-07-02 11:28 73216 --shatr- c:\windows\System32\RTEEG64A.dll  
2009-07-02 11:28 95744 --shatr- c:\windows\System32\RTEEL64A.dll  
2009-07-02 11:28 363008 --shatr- c:\windows\System32\RTEEP64A.dll  
2009-09-22 13:14 436768 --shatr- c:\windows\System32\RtkApi64.dll  
2009-09-22 13:14 1671200 --shatr- c:\windows\System32\RtkAPO64.dll  
2009-09-22 13:14 149536 --shatr- c:\windows\System32\RtkCfg64.dll  
2009-09-22 13:14 332320 --shatr- c:\windows\System32\RtlCPAPI64.dll  
2009-09-22 13:14 1483296 --shatr- c:\windows\System32\RtPgEx64.dll  
2009-07-14 01:41 45056 --shatr- c:\windows\System32\sfc_os.dll  
2008-04-30 00:48 193536 --shatr- c:\windows\System32\SRSHP64.dll  
2007-05-17 03:26 211376 --shatr- c:\windows\System32\SRSTSH64.dll  
2006-12-13 02:30 513536 --shatr- c:\windows\System32\SRSTSX64.dll  
2007-07-25 01:34 150528 --shatr- c:\windows\System32\SRSWOW64.dll  
2009-07-14 01:41 378880 --shatr- c:\windows\System32\SysFxUI.dll  
2011-06-06 13:23 1649016 --shatr- c:\windows\System32\Wacom_Tablet.dll  
2010-11-20 13:24 217088 --shatr- c:\windows\System32\wdmaud.drv  
2010-11-20 13:24 442368 --shatr- c:\windows\System32\winspool.drv  
2011-06-06 13:23 1100664 --shatr- c:\windows\System32\Wintab32.dll  
2010-11-20 13:27 297984 --shatr- c:\windows\System32\ws2_32.dll  
2011-04-14 03:47 31216 --shatr- c:\windows\System32\drivers\clwvd.sys  
2010-11-20 10:44 350208 --shatr- c:\windows\System32\drivers\HdAudio.sys  
2010-03-18 09:00 63568 --shatr- c:\windows\System32\drivers\LHidFilt.Sys  
2010-04-30 10:07 43680 --shatr- c:\windows\System32\drivers\lirsgt.sys  
2009-07-14 01:48 114752 --shatr- c:\windows\System32\drivers\lsi_fc.sys  
2009-07-14 01:48 106560 --shatr- c:\windows\System32\drivers\lsi_sas.sys  
2009-07-14 01:48 65600 --shatr- c:\windows\System32\drivers\lsi_sas2.sys  
2009-07-14 01:48 115776 --shatr- c:\windows\System32\drivers\lsi_scsi.sys  
2010-07-07 12:52 271712 --shatr- c:\windows\System32\drivers\lvpopf64.sys  
2010-05-07 16:43 30304 --shatr- c:\windows\System32\drivers\LVPr2M64.sys  
2009-09-25 14:58 73728 --shatr- c:\windows\System32\drivers\nusb3hub.sys  
2009-09-25 14:58 178688 --shatr- c:\windows\System32\drivers\nusb3xhc.sys  
2009-08-21 20:24 84512 --shatr- c:\windows\System32\drivers\nvhda64v.sys  
2007-09-17 14:53 29184 --shatr- c:\windows\System32\drivers\pccsmcfdx64.sys  
2009-08-20 16:05 239616 --shatr- c:\windows\System32\drivers\Rt64win7.sys  
2009-09-22 13:04 2002080 --shatr- c:\windows\System32\drivers\RTKVHD64.sys  
2009-07-14 00:01 13824 --shatr- c:\windows\System32\drivers\sffp_mmc.sys  
2010-11-20 10:34 14336 --shatr- c:\windows\System32\drivers\sffp_sd.sys  
2011-03-30 11:05 35112 --shatr- c:\windows\System32\drivers\teamviewervpn.sys  
2011-07-06 20:36 62552 --shatr- c:\windows\System32\drivers\toolkitdisk.sys  
2009-07-13 23:21 38400 --shatr- c:\windows\System32\drivers\tpm.sys  
2011-11-24 16:17 329800 --shatr- c:\windows\System32\drivers\trufos.sys  
2007-02-16 19:12 12848 --shatr- c:\windows\System32\drivers\wacommousefilter.sys  
2010-11-20 10:43 41984 --shatr- c:\windows\System32\drivers\winusb.sys  
2009-07-14 01:41 299520 --shatr- c:\windows\System32\drivers\UMDF\WpdFs.dll  
2009-07-14 01:41 1195008 --shatr- c:\windows\System32\drivers\UMDF\WpdMtpDr.dll  
2010-11-20 13:25 221184 --shatr- c:\windows\System32\inetsrv\abocomp.dll  
2010-11-20 13:25 43008 --shatr- c:\windows\System32\inetsrv\authanon.dll  
2010-11-20 13:25 25088 --shatr- c:\windows\System32\inetsrv\cachfile.dll  
2009-07-14 01:40 55296 --shatr- c:\windows\System32\inetsrv\cachhttp.dll  
2009-07-14 01:40 12288 --shatr- c:\windows\System32\inetsrv\cachtokn.dll  
2009-07-14 01:40 12800 --shatr- c:\windows\System32\inetsrv\cachuri.dll  
2010-11-20 13:25 57344 --shatr- c:\windows\System32\inetsrv\compstat.dll  
2009-07-14 01:40 48128 --shatr- c:\windows\System32\inetsrv\custerr.dll  
2009-07-14 01:40 22016 --shatr- c:\windows\System32\inetsrv\defdoc.dll  
2009-07-14 01:40 25600 --shatr- c:\windows\System32\inetsrv\dirlist.dll  
2010-11-20 13:26 301056 --shatr- c:\windows\System32\inetsrv\iiscore.dll  
2010-11-20 13:26 90624 --shatr- c:\windows\System32\inetsrv\iisetw.dll  
2009-07-14 01:41 169472 --shatr- c:\windows\System32\inetsrv\iisfreb.dll  
2009-07-14 01:41 14848 --shatr- c:\windows\System32\inetsrv\iisreqs.dll  
2009-07-14 01:41 120320 --shatr- c:\windows\System32\inetsrv\isapi.dll  
2009-07-14 01:41 22016 --shatr- c:\windows\System32\inetsrv\loghttp.dll  
2010-11-20 13:26 45568 --shatr- c:\windows\System32\inetsrv\modrqflt.dll  
2010-11-20 13:27 472576 --shatr- c:\windows\System32\inetsrv\nativerd.dll  
2009-07-14 01:41 23040 --shatr- c:\windows\System32\inetsrv\protsup.dll  
2009-07-14 01:41 23552 --shatr- c:\windows\System32\inetsrv\redirect.dll  
2010-11-20 13:27 40448 --shatr- c:\windows\System32\inetsrv\static.dll  
2010-11-20 13:27 22016 --shatr- c:\windows\System32\inetsrv\validcfg.dll  
2010-11-20 13:25 24576 --shatr- c:\windows\System32\inetsrv\w3wp.exe  
2010-11-20 13:27 60928 --shatr- c:\windows\System32\inetsrv\w3wphost.dll  
2010-11-20 13:27 884224 --shatr- c:\windows\System32\spool\drivers\x64\unidrvui.dll  
2009-04-16 11:59 1103872 --shatr- c:\windows\System32\spool\drivers\x64\3\hpfst70v.dll  
2009-04-16 12:08 1607168 --shatr- c:\windows\System32\spool\drivers\x64\3\hpfui70v.dll  
2010-11-20 13:27 884224 --shatw- c:\windows\System32\spool\drivers\x64\3\unidrvui.dll  
2009-07-14 01:40 83968 --shatr- c:\windows\System32\spool\prtprocs\x64\CNBPP3.DLL  
2009-04-16 12:08 248320 --shatr- c:\windows\System32\spool\prtprocs\x64\hpfpp70v.dll  
2010-11-20 13:27 39424 --shatr- c:\windows\System32\spool\prtprocs\x64\winprint.dll  
2010-05-22 19:48 1255736 --shatr- c:\windows\System32\Wat\WatAdminSvc.exe  
2009-07-14 01:39 203264 --shatr- c:\windows\System32\wbem\WmiApSrv.exe  
2010-11-20 13:25 372736 --shatr- c:\windows\System32\wbem\WmiPrvSE.exe  
2009-07-14 01:39 473600 --shatr- c:\windows\System32\WindowsPowerShell\v1.0\powershell.exe  
2008-12-04 09:57 146432 --shatr- c:\windows\SysWOW64\APOMngr.DLL  
2012-01-30 02:27 43520 --shatr- c:\windows\SysWOW64\CmdLineExt03.dll  
2011-07-25 16:56 178800 --shatr- c:\windows\SysWOW64\CmdLineExt_x64.dll  
2008-09-17 12:05 72704 --shatr- c:\windows\SysWOW64\CmdRtr.DLL  
2010-10-20 11:44 1207656 --shatr- c:\windows\SysWOW64\FM20.DLL  
2006-03-17 11:45 497296 --shatr- c:\windows\SysWOW64\imagXpr7.dll  
2005-07-19 15:32 221184 --shatr- c:\windows\SysWOW64\LVCOMSX.EXE  
2005-07-19 15:32 258048 --shatr- c:\windows\SysWOW64\LVMAENUM.dll  
1998-09-17 06:20 393216 --shatr- c:\windows\SysWOW64\MSRDO20.DLL  
2010-11-20 12:19 257024 --shatr- c:\windows\SysWOW64\msv1_0.dll  
2009-07-20 23:05 1348432 --shatr- c:\windows\SysWOW64\msxml4.dll  
2009-07-14 01:16 40960 --shatr- c:\windows\SysWOW64\sfc_os.dll  
2010-11-20 12:21 206848 --shatr- c:\windows\SysWOW64\ws2_32.dll  
2011-08-16 10:34 279480 --shatr- c:\windows\SysWOW64\Adobe\Director\SwDir.dll  
2011-08-16 10:35 112568 --shatr- c:\windows\SysWOW64\Adobe\Director\SWDNLD.EXE  
2011-08-16 10:34 1040824 --shatr- c:\windows\SysWOW64\Adobe\Shockwave 11\SwHelper_1161629.exe  
2001-03-14 12:14 491574 --shatr- c:\windows\SysWOW64\Adobe\SVG Viewer\SVGControl.dll  
2011-11-11 11:13 8527008 --shatr- c:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll  
2005-05-13 10:47 315392 --shatr- c:\windows\twain_32\LogiVid\HPortal2.dll  
2005-05-13 10:47 212992 --shatr- c:\windows\twain_32\LogiVid\HVideoS2.exe  
2005-05-13 10:46 221184 --shatr- c:\windows\twain_32\LogiVid\PCSmart2.dll  
.  
.  
(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))  
.  
.  
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés   
REGEDIT4  
.  
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]  
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-02-13 39408]  
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-06-24 1840424]  
"AutoStartNPSAgent"="c:\program files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe" [2010-03-09 102400]  
"Clavier+"="c:\users\Axel FIOLLE\AppData\Local\Clavier+\Clavier.exe" [2010-04-25 88576]  
"Dyyno Launcher"="c:\program files (x86)\Dyyno\Dyyno Broadcaster\dyyno_launcher.exe" [2011-01-15 2151776]  
"Akamai NetSession Interface"="c:\users\Axel FIOLLE\AppData\Local\Akamai\netsession_win.exe" [2012-05-07 3331872]  
"Facebook Update"="c:\users\Axel FIOLLE\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-04-07 137536]  
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-02-28 1242448]  
.  
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]  
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]  
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2010-06-09 49208]  
"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]  
"BCU"="c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-08-04 346320]  
"MRUTray"="c:\program files (x86)\Marvell\raid\tray\MarvellTray.exe" [2009-10-09 741376]  
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]  
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]  
"LWS"="c:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2011-11-11 205336]  
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]  
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]  
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]  
.  
c:\users\Axel FIOLLE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\  
Facebook Messenger.lnk - c:\users\Axel FIOLLE\AppData\Local\Facebook\Messenger\2.1.4520.0\FacebookMessenger.exe [2012-5-17 200704]  
Rainmeter.lnk - c:\program files\Rainmeter\Rainmeter.exe [2012-1-8 107720]  
.  
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\  
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2011-6-16 275768]  
.  
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]  
"ConsentPromptBehaviorAdmin"= 0 (0x0)  
"ConsentPromptBehaviorUser"= 3 (0x3)  
"EnableLUA"= 0 (0x0)  
"EnableUIADesktopToggle"= 0 (0x0)  
"PromptOnSecureDesktop"= 0 (0x0)  
.  
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]  
Security Packages REG_MULTI_SZ    kerberos msv1_0 schannel wdigest tspkg pku2u livessp  
.  
R0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]  
R0 dcsnap;dcsnap; [x]  
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-24 90192]  
R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-24 103504]  
R1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]  
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]  
R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]  
R2 BCUService;Browser Configuration Utility Service;c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]  
R2 Cepstral License Server;Cepstral License Server;c:\program files\Cepstral\bin\CepstralLicSrv.exe [2009-09-29 121856]  
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]  
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]  
R2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]  
R2 DCScheduler;DCScheduler;c:\program files (x86)\FarStone\DriveClone\Client\cbp\DCSchdlerSRVC.exe [2009-09-02 104976]  
R2 Dyyno Launcher;Dyyno Service;c:\program files (x86)\Dyyno\Dyyno Broadcaster\launcherd.exe [2011-01-15 415072]  
R2 FBAgent;File Backup Agent;c:\program files (x86)\FarStone\DriveClone\Client\Efb\FBPAgent.exe [2009-09-02 86016]  
R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-02-13 135664]  
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-02-28 2343816]  
R2 Marvell RAID;Marvell RAID Event Agent;c:\program files (x86)\Marvell\raid\svc\mvraidsvc.exe [2009-10-05 151552]  
R2 MRUWebService;MRU Web Service;c:\program files (x86)\Marvell\raid\Apache2\bin\httpd.exe [2009-04-09 24635]  
R2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]  
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856]  
R2 TabletServiceWacom;TabletServiceWacom;c:\program files\Tablet\Wacom\Wacom_Tablet.exe [2011-06-06 6438264]  
R2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-08-30 2358656]  
R2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2011-12-14 2984832]  
R2 Tran_Process_Proc;DCNTranProc;c:\program files (x86)\FarStone\DriveClone\Client\DCNTranProc.exe [2009-09-02 77824]  
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]  
R2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-04-05 66096]  
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]  
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]  
R3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [x]  
R3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;c:\program files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]  
R3 driverhardwarev2x64;driverhardwarev2x64;c:\program files\ma-config.com\Drivers\driverhardwarev2x64.sys [2010-05-01 15872]  
R3 dump_wmimmc;dump_wmimmc;c:\program files (x86)\NCsoft\Lineage II\system\GameGuard\dump_wmimmc.sys [x]  
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [x]  
R3 FARMNTIO;FARMNTIO;c:\windows\system32\drivers\farmntio.sys [x]  
R3 gupdatem;Service Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-02-13 135664]  
R3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]  
R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys [x]  
R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [x]  
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [x]  
R3 LVUVC64;Logitech Webcam 300(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [x]  
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2010-07-19 341504]  
R3 MonitorFunction;Driver for Monitor;c:\windows\system32\DRIVERS\TVMonitor.sys [x]  
R3 netr7364;Pilote de carte LAN sans fil USB RT73 pour Vista;c:\windows\system32\DRIVERS\netr7364.sys [x]  
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-06-25 35344]  
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]  
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]  
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]  
R3 SafeBox;SafeBox;c:\program files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2012-03-06 75384]  
R3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]  
R3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]  
R3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]  
R3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]  
R3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]  
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]  
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [x]  
R3 ToolkitDisk;ToolkitDisk;c:\windows\system32\Drivers\toolkitdisk.sys [x]  
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]  
R3 TunnelClientService;TunnelClientService;c:\program files (x86)\Super Network Tunnel\TunnelClientService.exe [2010-06-21 1157120]  
R3 TunnelServerService;TunnelServerService;c:\program files (x86)\Super Network Tunnel\TunnelServerService.exe [2010-06-20 1431552]  
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-11-02 466736]  
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]  
R3 X6va001;X6va001;c:\users\AXELFI~1\AppData\Local\Temp\00142DE.tmp [x]  
S0 mv91cons;Marvell 91xx Config Device Driver;c:\windows\system32\DRIVERS\mv91cons.sys [x]  
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]  
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]  
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]  
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]  
S3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [x]  
.  
.  
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]  
Akamai REG_MULTI_SZ    Akamai  
hpdevmgmt REG_MULTI_SZ    hpqcxs08 hpqddsvc  
iissvcs REG_MULTI_SZ    w3svc was  
apphost REG_MULTI_SZ    apphostsvc  
.  
Contenu du dossier 'Tâches planifiées'  
.  
2012-04-07 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1004Core1cd14523c1c934f.job  
- c:\users\Axel FIOLLE\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-11-29 00:05]  
.  
2012-05-29 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1004UA.job  
- c:\users\Axel FIOLLE\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-11-29 00:05]  
.  
2012-03-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cd09d640a18a05.job  
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-16 19:52]  
.  
2012-05-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job  
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-16 19:52]  
.  
2012-03-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1000Core1cd0a683cd6c5b4.job  
- c:\users\Utilisateur\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-17 14:27]  
.  
2012-05-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1000UA.job  
- c:\users\Utilisateur\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-17 14:27]  
.  
2012-03-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1004Core1cd0ddc1cb1e4d7.job  
- c:\users\Axel FIOLLE\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-12 14:27]  
.  
2012-05-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1004UA.job  
- c:\users\Axel FIOLLE\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-12 14:27]  
.  
.  
--------- x86-64 -----------  
.  
.  
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1]  
@="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}"  
[HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}]  
2012-03-06 12:52 266952 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll  
.  
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2]  
@="{342DAA0B-D796-460D-8566-901E08A1CCAD}"  
[HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}]  
2012-03-06 12:52 266952 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll  
.  
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3]  
@="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}"  
[HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}]  
2012-03-06 12:52 266952 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll  
.  
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4]  
@="{33816773-98AE-4723-ADE0-EBE54C8B5A67}"  
[HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}]  
2012-03-06 12:52 266952 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll  
.  
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]  
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-03-15 499608]  
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-09-22 8116256]  
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-04-05 1067256]  
"MsmqIntCert"="mqrt.dll" [2010-11-20 247808]  
.  
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]  
"LoadAppInit_DLLs"=0x1  
.  
------- Examen supplémentaire -------  
.  
uLocal Page = c:\windows\system32\blank.htm  
uStart Page = about:blank  
mStart Page = about:blank  
mLocal Page = c:\windows\SysWOW64\blank.htm  
uInternet Settings,ProxyOverride = 127.0.0.1;<local>;127.0.0.1:9421;  
uInternet Settings,ProxyServer = socks=127.0.0.1:9050  
IE: &Envoyer à OneNote - c:\program files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105  
IE: E&xporter vers Microsoft Excel - c:\program files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000  
IE: Sothink SWF Catcher - c:\program files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm  
Trusted Zone: clonewarsadventures.com  
Trusted Zone: freerealms.com  
Trusted Zone: soe.com  
Trusted Zone: sony.com  
TCP: DhcpNameServer = 192.168.1.1  
FF - ProfilePath - c:\users\Axel FIOLLE\AppData\Roaming\Mozilla\Firefox\Profiles\l74zsa5d.default\  
FF - prefs.js: network.proxy.http - localhost  
FF - prefs.js: network.proxy.http_port - 4444  
FF - prefs.js: network.proxy.socks - localhost  
FF - prefs.js: network.proxy.socks_port - 4444  
FF - prefs.js: network.proxy.type - 0  
.  
- - - - ORPHELINS SUPPRIMES - - - -  
.  
Toolbar-10 - (no file)  
Wow6432Node-HKCU-Run-AdobeBridge - (no file)  
Wow6432Node-HKCU-Run-PlayNC Launcher - (no file)  
Wow6432Node-HKLM-Run-NPSStartup - (no file)  
Toolbar-10 - (no file)  
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)  
AddRemove-correctif rpgxp 1.0.0.1 pour vista - c:\windows\system32\Uninstal.exe  
.  
.  
.  
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Akamai]  
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll"  
.  
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]  
"ImagePath"="c:\windows\system32\GameMon.des -service"  
.  
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va001]  
"ImagePath"="\??\c:\users\AXELFI~1\AppData\Local\Temp\00142DE.tmp"  
.  
--------------------- CLES DE REGISTRE BLOQUEES ---------------------  
.  
[HKEY_USERS\S-1-5-21-322790053-608092770-2951396433-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]  
@Allowed: (Read) (RestrictedCode)  
"??"=hex:1d,84,60,d4,f9,b1,42,9d,30,eb,f4,5d,82,10,45,c9,6c,25,c2,da,a4,9e,ba,  
   db,53,d1,a9,2f,54,1f,18,53,c5,20,11,81,33,68,1a,22,a1,32,be,92,69,72,e2,64,\  
"??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d  
.  
[HKEY_LOCAL_MACHINE\software\Classes\.eml\shellex\{8895b1c6-b41f-4c1c-a562-0d564250836f}]  
@DACL=(02 0000)  
@="{b9815375-5d7f-4ce2-9245-c9d4da436930}"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\.nws\shellex\{8895b1c6-b41f-4c1c-a562-0d564250836f}]  
@DACL=(02 0000)  
@="{b9815375-5d7f-4ce2-9245-c9d4da436930}"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\.rss\shellex\{8895B1C6-B41F-4C1C-A562-0D564250836F}]  
@DACL=(02 0000)  
@="{b9815375-5d7f-4ce2-9245-c9d4da436930}"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\.wlcshrtctv2\LiveCall\ShellNew]  
@DACL=(02 0000)  
"Command"="\"c:\\Program Files (x86)\\Windows Live\\Messenger\\wlcstart.exe\" %1"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]  
@Denied: (A 2) (Everyone)  
@="FlashBroker"  
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]  
"Enabled"=dword:00000001  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]  
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]  
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]  
@Denied: (A 2) (Everyone)  
@="Shockwave Flash Object"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]  
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"  
"ThreadingModel"="Apartment"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]  
@="0"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]  
@="ShockwaveFlash.ShockwaveFlash.11"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]  
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]  
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]  
@="1.0"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]  
@="ShockwaveFlash.ShockwaveFlash"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]  
@Denied: (A 2) (Everyone)  
@="Macromedia Flash Factory Object"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]  
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"  
"ThreadingModel"="Apartment"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]  
@="FlashFactory.FlashFactory.1"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]  
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]  
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]  
@="1.0"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]  
@="FlashFactory.FlashFactory"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]  
@Denied: (A 2) (Everyone)  
@="IFlashBroker4"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]  
@="{00020424-0000-0000-C000-000000000046}"  
.  
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]  
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"  
"Version"="1.0"  
.  
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]  
@Denied: (A) (Everyone)  
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"  
.  
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]  
@Denied: (A) (Everyone)  
.  
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]  
"Key"="ActionsPane3"  
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"  
.  
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]  
@Denied: (Full) (Everyone)  
.  
Heure de fin: 2012-05-29  23:41:46  
ComboFix-quarantined-files.txt  2012-05-29 21:41  
.  
Avant-CF: 28.439.302.144 octets libres  
Après-CF: 69.201.129.472 octets libres  
.  
- - End Of File - - E10DCF981AE2EC8BEE93AC5FBB033CA9


Il semble que le symptôme soit toujours présent, j'avais ouvert une fenêtre chrome histoire de titiller un peu le virus qui semble plus agité quand j'ouvre le navigateur manuellement histoire de voir s'il était toujours présent et je constate peu après qu'il y a une deuxième fenêtre d'ouverte.


__________________________________________________
=>/!\Le script qui suit a été écrit spécialement cet ordinateur/!\ <=
=>il est fort déconseillé de le transposer sur un autre ordinateur !<=
----------------------------------------------------------------------------


Toujours avec toutes les protections désactivées, fais ceci :

▶ Ouvre le bloc-notes (Menu démarrer --> programmes --> accessoires --> bloc-notes)
▶ Copie/colle dans le bloc-notes ce qui entre les lignes ci dessous (sans les lignes) :

----------------------------------------------------------
KillAll::

ClearJavaCache::

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\.eml\shellex\{8895b1c6-b41f-4c1c-a562-0d564250836f}]
[HKEY_LOCAL_MACHINE\software\Classes\.nws\shellex\{8895b1c6-b41f-4c1c-a562-0d564250836f}]
[HKEY_LOCAL_MACHINE\software\Classes\.rss\shellex\{8895B1C6-B41F-4C1C-A562-0D564250836F}]
[HKEY_LOCAL_MACHINE\software\Classes\.wlcshrtctv2\LiveCall\ShellNew]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]


Driver::
dcsnap
X6va001

------------------------------------------------------------------

▶ Enregistre ce fichier sur ton Bureau (et pas ailleurs !) sous le nom CFScript.txt
▶ Quitte le Bloc Notes

▶ Fais un glisser/déposer de ce fichier CFScript sur le fichier combofix comme sur cette : illustration

▶ Patiente le temps du scan. Le Bureau va disparaître à plusieurs reprises : c'est normal ! Ne touche à rien tant que le scan n'est pas terminé.
▶ Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
▶ Si le fichier ne s'ouvre pas, il se trouve ici => C:\ComboFix.txt


Messages postés
55
Date d'inscription
jeudi 21 avril 2011
Statut
Membre
Dernière intervention
25 août 2013
1
Je ferai ça après une nuit bonne de sommeil et une matinée de cours... c'est chiant l'infographie sans son PC principal j'dois dire. ^^"
En tout cas, d'avance merci pour ton aide! Je posterai demain le rapport.

ok
Messages postés
55
Date d'inscription
jeudi 21 avril 2011
Statut
Membre
Dernière intervention
25 août 2013
1
Après avoir effectué l'opération que tu m'as indiquée, le PC redémarrait à chaque fois que je tente de lance Windows, lorsque je désactive le redémarrage en cas d'incident, j'obtiens un BSOD. J'ai démarré la "dernière bonne configuration connue" et là Windows démarre, voici le rapport :
ComboFix 12-05-29.01 - Axel FIOLLE 30/05/2012   6:37.2.8 - x64 MINIMAL
Microsoft Windows 7 Édition Familiale Premium   6.1.7601.1.1252.32.1036.18.8187.6941 [GMT 2:00]
Lancé depuis: c:\users\Axel FIOLLE\Desktop\Axel.exe
Commutateurs utilisés :: c:\users\Axel FIOLLE\Desktop\CFScript.txt
AV: Bitdefender Antivirus *Disabled/Outdated* {50909708-FF80-02AF-F814-B28405891E92}
FW: Bitdefender Pare-feu *Disabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
SP: Bitdefender Antispyware *Disabled/Outdated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Un nouveau point de restauration a été créé
.
.
((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Axel FIOLLE\AppData\Roaming\Rift
c:\users\Axel FIOLLE\AppData\Roaming\Rift\rift.cfg
c:\users\Axel FIOLLE\AppData\Roaming\Rift\riftpatch.cfg
c:\windows\SysWow64\DEBUG.log
.
.
(((((((((((((((((((((((((((((((((((((((   Pilotes/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_X6VA001
-------\Service_dcsnap
-------\Service_X6va001
.
.
(((((((((((((((((((((((((((((   Fichiers créés du 2012-04-28 au 2012-05-30  ))))))))))))))))))))))))))))))))))))
.
.
2012-05-30 04:50 . 2012-05-30 04:50	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2012-05-30 04:50 . 2012-05-30 04:50	--------	d-----w-	c:\users\TEMP\AppData\Local\temp
2012-05-30 04:50 . 2012-05-30 04:50	--------	d-----w-	c:\users\DefaultAppPool\AppData\Local\temp
2012-05-30 04:50 . 2012-05-30 04:50	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-05-27 20:15 . 2012-05-27 20:15	--------	d-----w-	c:\programdata\BioWare
2012-05-27 20:12 . 2012-05-27 20:12	--------	d-----w-	c:\windows\SysWow64\AGEIA
2012-05-27 20:12 . 2012-05-27 20:12	--------	d-----w-	c:\program files (x86)\AGEIA Technologies
2012-05-27 20:11 . 2012-05-27 20:11	--------	d-----w-	c:\program files (x86)\Common Files\Wise Installation Wizard
2012-05-27 20:11 . 2012-05-27 20:11	--------	d-----w-	c:\programdata\Media Center Programs
2012-05-27 19:51 . 2012-05-27 20:11	--------	d-----w-	c:\program files (x86)\Common Files\BioWare
2012-05-27 19:51 . 2012-05-27 20:04	--------	d-----w-	c:\program files (x86)\Dragon Age
2012-05-20 17:16 . 2012-05-20 17:50	--------	d-----w-	c:\users\Axel FIOLLE\AppData\Local\mypaint
2012-05-20 17:16 . 2012-05-20 17:16	--------	d-----w-	c:\program files\MyPaint
2012-05-10 19:23 . 2012-05-10 19:29	--------	d-----w-	C:\cygwin
2012-05-09 04:51 . 2012-03-03 06:35	1544704	----a-w-	c:\windows\system32\DWrite.dll
2012-05-09 04:51 . 2012-03-03 05:31	1077248	----a-w-	c:\windows\SysWow64\DWrite.dll
2012-05-09 04:51 . 2012-03-31 06:05	5559664	----a-w-	c:\windows\system32\ntoskrnl.exe
2012-05-09 04:51 . 2012-03-31 03:10	3146240	----a-w-	c:\windows\system32\win32k.sys
2012-05-09 04:51 . 2012-03-31 04:39	3968368	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2012-05-09 04:51 . 2012-03-31 04:39	3913072	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2012-05-09 04:50 . 2012-03-17 07:58	75120	----a-w-	c:\windows\system32\drivers\partmgr.sys
2012-05-09 04:50 . 2012-03-30 11:35	1918320	----a-w-	c:\windows\system32\drivers\tcpip.sys
2012-05-09 04:50 . 2012-03-31 05:42	1732096	----a-w-	c:\program files\Windows Journal\NBDoc.DLL
2012-05-09 04:50 . 2012-03-31 05:40	1402880	----a-w-	c:\program files\Windows Journal\JNWDRV.dll
2012-05-09 04:50 . 2012-03-31 05:40	1367552	----a-w-	c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2012-05-09 04:50 . 2012-03-31 05:40	1393664	----a-w-	c:\program files\Windows Journal\JNTFiltr.dll
2012-05-09 04:50 . 2012-03-31 04:29	936960	----a-w-	c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2012-05-05 19:05 . 2012-05-05 19:05	283200	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2012-05-05 19:04 . 2012-05-05 21:00	--------	d-----w-	c:\users\Axel FIOLLE\AppData\Roaming\DAEMON Tools Lite
2012-05-05 19:04 . 2012-05-05 19:05	--------	d-----w-	c:\program files (x86)\DAEMON Tools Lite
2012-05-05 19:04 . 2012-05-05 21:00	--------	d-----w-	c:\programdata\DAEMON Tools Lite
2012-05-05 09:02 . 2012-05-05 09:11	--------	d-----w-	c:\users\Axel FIOLLE\AppData\Roaming\Nik Software
2012-04-30 22:20 . 2012-04-30 22:20	--------	d-----w-	c:\program files (x86)\Amnesia - The Dark Descent - Copie
2012-04-30 21:29 . 2012-05-16 15:18	--------	d-----w-	c:\users\Axel FIOLLE\AppData\Local\Procaster
2012-04-30 17:57 . 2012-04-30 18:04	--------	d-----w-	c:\program files (x86)\Amnesia - The Dark Descent
.
.
.
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-30 05:00 . 2011-11-03 18:14	4194304	----a-w-	c:\windows\ServiceProfiles\NetworkService\msmqlog.bin
2012-05-10 20:28 . 2012-04-29 17:32	419488	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2012-05-10 20:28 . 2011-06-16 17:44	70304	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-04-05 22:57 . 2012-02-06 16:57	691896	------w-	c:\windows\system32\drivers\avc3.sys
2012-04-04 13:56 . 2011-07-06 18:32	24904	----a-w-	c:\windows\system32\drivers\mbam.sys
2012-03-06 12:52 . 2012-02-06 16:57	545064	------w-	c:\windows\system32\drivers\avckf.sys
2008-06-24 15:06	972072	--shatr-	c:\windows\UNNeroMediaHome.exe
2007-02-28 15:41	972336	--shatr-	c:\windows\UNNeroShowTime.exe
2007-03-21 20:02	972336	--shatr-	c:\windows\UNNeroVision.exe
2008-06-06 13:54	972072	--shatr-	c:\windows\UNRecode.exe
2011-07-16 04:26	44032	--shatr-	c:\windows\AppPatch\acwow64.dll
2010-11-20 13:44	198656	--shatr-	c:\windows\assembly\GAC_64\mcupdate\6.1.0.0__31bf3856ad364e35\mcupdate.exe
2010-11-13 00:54	311296	--shatw-	c:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.Resources.dll
2007-02-22 21:41	304544	--shatr-	c:\windows\Downloaded Program Files\MessengerStatsPAClient.dll
2010-11-20 13:24	295936	--shatr-	c:\windows\ehome\ehprivjob.exe
2009-07-14 01:40	26112	--shatr-	c:\windows\ehome\ehSSO.dll
2010-11-20 13:44	198656	--shatr-	c:\windows\ehome\mcupdate.exe
2011-03-17 00:22	4301184	--sha-r-	c:\windows\Installer\$PatchCache$\Managed\00004109D30000000000000000F01FEC\14.0.6029\GRAPH.EXE
2009-06-10 20:39	28496	--shatr-	c:\windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
2010-11-05 01:56	797016	--shatr-	c:\windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
2010-11-05 01:56	113488	--shatr-	c:\windows\Microsoft.NET\Framework64\v2.0.50727\shfusion.dll
2011-12-25 20:40	746256	--shatr-	c:\windows\Microsoft.NET\Framework64\v2.0.50727\webengine.dll
2010-11-05 01:53	42856	--shatr-	c:\windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
2010-03-18 20:16	78152	--shatr-	c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\ClientLP\Setup.exe
1998-10-13 19:08	274497	--shatr-	c:\windows\Msagent\AGENTSVR.EXE
2010-11-20 13:25	194048	--shatr-	c:\windows\servicing\TrustedInstaller.exe
2008-12-04 09:59	188416	--shatr-	c:\windows\System32\APOMgr64.DLL
2008-09-17 12:07	88064	--shatr-	c:\windows\System32\CmdRtr64.DLL
2009-07-14 01:40	211456	--shatr-	c:\windows\System32\CNBLM3_2.DLL
2011-01-17 11:09	197120	--shatr-	c:\windows\System32\d3d10_1.dll
2010-11-20 13:26	321024	--shatr-	c:\windows\System32\d3d10_1core.dll
2010-07-23 07:55	32768	--shatr-	c:\windows\System32\hpbmiapi.dll
2010-07-23 07:55	33280	--shatr-	c:\windows\System32\hpboid.dll
2010-07-23 07:55	57344	--shatr-	c:\windows\System32\hpbpro.dll
2009-04-16 12:08	136704	--shatr-	c:\windows\System32\hpf3l70v.dll
2009-02-10 13:03	1403904	--shatr-	c:\windows\System32\hpost_p02d.dll
2009-02-10 13:03	880640	--shatr-	c:\windows\System32\hposwia_p02d.dll
2010-08-06 09:15	54784	--shatr-	c:\windows\System32\HPZipr12.dll
2011-11-18 20:09	252296	--shatr-	c:\windows\System32\javaws.exe
2009-05-05 02:53	320512	--shatr-	c:\windows\System32\MaxxAudioAPO20.dll
2009-05-14 08:02	72192	--shatr-	c:\windows\System32\MBWrp64.dll
2009-07-14 01:38	25600	--shatr-	c:\windows\System32\msacm32.drv
2009-07-02 11:28	198656	--shatr-	c:\windows\System32\RTEED64A.dll
2009-07-02 11:28	73216	--shatr-	c:\windows\System32\RTEEG64A.dll
2009-07-02 11:28	95744	--shatr-	c:\windows\System32\RTEEL64A.dll
2009-07-02 11:28	363008	--shatr-	c:\windows\System32\RTEEP64A.dll
2009-09-22 13:14	436768	--shatr-	c:\windows\System32\RtkApi64.dll
2009-09-22 13:14	1671200	--shatr-	c:\windows\System32\RtkAPO64.dll
2009-09-22 13:14	149536	--shatr-	c:\windows\System32\RtkCfg64.dll
2009-09-22 13:14	332320	--shatr-	c:\windows\System32\RtlCPAPI64.dll
2009-09-22 13:14	1483296	--shatr-	c:\windows\System32\RtPgEx64.dll
2009-07-14 01:41	45056	--shatr-	c:\windows\System32\sfc_os.dll
2008-04-30 00:48	193536	--shatr-	c:\windows\System32\SRSHP64.dll
2007-05-17 03:26	211376	--shatr-	c:\windows\System32\SRSTSH64.dll
2006-12-13 02:30	513536	--shatr-	c:\windows\System32\SRSTSX64.dll
2007-07-25 01:34	150528	--shatr-	c:\windows\System32\SRSWOW64.dll
2009-07-14 01:41	378880	--shatr-	c:\windows\System32\SysFxUI.dll
2011-06-06 13:23	1649016	--shatr-	c:\windows\System32\Wacom_Tablet.dll
2010-11-20 13:24	217088	--shatr-	c:\windows\System32\wdmaud.drv
2010-11-20 13:24	442368	--shatr-	c:\windows\System32\winspool.drv
2011-06-06 13:23	1100664	--shatr-	c:\windows\System32\Wintab32.dll
2010-11-20 13:27	297984	--shatr-	c:\windows\System32\ws2_32.dll
2011-04-14 03:47	31216	--shatr-	c:\windows\System32\drivers\clwvd.sys
2010-11-20 10:44	350208	--shatr-	c:\windows\System32\drivers\HdAudio.sys
2010-03-18 09:00	63568	--shatr-	c:\windows\System32\drivers\LHidFilt.Sys
2010-04-30 10:07	43680	--shatr-	c:\windows\System32\drivers\lirsgt.sys
2009-07-14 01:48	114752	--shatr-	c:\windows\System32\drivers\lsi_fc.sys
2009-07-14 01:48	106560	--shatr-	c:\windows\System32\drivers\lsi_sas.sys
2009-07-14 01:48	65600	--shatr-	c:\windows\System32\drivers\lsi_sas2.sys
2009-07-14 01:48	115776	--shatr-	c:\windows\System32\drivers\lsi_scsi.sys
2010-07-07 12:52	271712	--shatr-	c:\windows\System32\drivers\lvpopf64.sys
2010-05-07 16:43	30304	--shatr-	c:\windows\System32\drivers\LVPr2M64.sys
2009-09-25 14:58	73728	--shatr-	c:\windows\System32\drivers\nusb3hub.sys
2009-09-25 14:58	178688	--shatr-	c:\windows\System32\drivers\nusb3xhc.sys
2009-08-21 20:24	84512	--shatr-	c:\windows\System32\drivers\nvhda64v.sys
2007-09-17 14:53	29184	--shatr-	c:\windows\System32\drivers\pccsmcfdx64.sys
2009-08-20 16:05	239616	--shatr-	c:\windows\System32\drivers\Rt64win7.sys
2009-09-22 13:04	2002080	--shatr-	c:\windows\System32\drivers\RTKVHD64.sys
2009-07-14 00:01	13824	--shatr-	c:\windows\System32\drivers\sffp_mmc.sys
2010-11-20 10:34	14336	--shatr-	c:\windows\System32\drivers\sffp_sd.sys
2011-03-30 11:05	35112	--shatr-	c:\windows\System32\drivers\teamviewervpn.sys
2011-07-06 20:36	62552	--shatr-	c:\windows\System32\drivers\toolkitdisk.sys
2009-07-13 23:21	38400	--shatr-	c:\windows\System32\drivers\tpm.sys
2011-11-24 16:17	329800	--shatr-	c:\windows\System32\drivers\trufos.sys
2007-02-16 19:12	12848	--shatr-	c:\windows\System32\drivers\wacommousefilter.sys
2010-11-20 10:43	41984	--shatr-	c:\windows\System32\drivers\winusb.sys
2009-07-14 01:41	299520	--shatr-	c:\windows\System32\drivers\UMDF\WpdFs.dll
2009-07-14 01:41	1195008	--shatr-	c:\windows\System32\drivers\UMDF\WpdMtpDr.dll
2010-11-20 13:25	221184	--shatr-	c:\windows\System32\inetsrv\abocomp.dll
2010-11-20 13:25	43008	--shatr-	c:\windows\System32\inetsrv\authanon.dll
2010-11-20 13:25	25088	--shatr-	c:\windows\System32\inetsrv\cachfile.dll
2009-07-14 01:40	55296	--shatr-	c:\windows\System32\inetsrv\cachhttp.dll
2009-07-14 01:40	12288	--shatr-	c:\windows\System32\inetsrv\cachtokn.dll
2009-07-14 01:40	12800	--shatr-	c:\windows\System32\inetsrv\cachuri.dll
2010-11-20 13:25	57344	--shatr-	c:\windows\System32\inetsrv\compstat.dll
2009-07-14 01:40	48128	--shatr-	c:\windows\System32\inetsrv\custerr.dll
2009-07-14 01:40	22016	--shatr-	c:\windows\System32\inetsrv\defdoc.dll
2009-07-14 01:40	25600	--shatr-	c:\windows\System32\inetsrv\dirlist.dll
2010-11-20 13:26	301056	--shatr-	c:\windows\System32\inetsrv\iiscore.dll
2010-11-20 13:26	90624	--shatr-	c:\windows\System32\inetsrv\iisetw.dll
2009-07-14 01:41	169472	--shatr-	c:\windows\System32\inetsrv\iisfreb.dll
2009-07-14 01:41	14848	--shatr-	c:\windows\System32\inetsrv\iisreqs.dll
2009-07-14 01:41	120320	--shatr-	c:\windows\System32\inetsrv\isapi.dll
2009-07-14 01:41	22016	--shatr-	c:\windows\System32\inetsrv\loghttp.dll
2010-11-20 13:26	45568	--shatr-	c:\windows\System32\inetsrv\modrqflt.dll
2010-11-20 13:27	472576	--shatr-	c:\windows\System32\inetsrv\nativerd.dll
2009-07-14 01:41	23040	--shatr-	c:\windows\System32\inetsrv\protsup.dll
2009-07-14 01:41	23552	--shatr-	c:\windows\System32\inetsrv\redirect.dll
2010-11-20 13:27	40448	--shatr-	c:\windows\System32\inetsrv\static.dll
2010-11-20 13:27	22016	--shatr-	c:\windows\System32\inetsrv\validcfg.dll
2010-11-20 13:25	24576	--shatr-	c:\windows\System32\inetsrv\w3wp.exe
2010-11-20 13:27	60928	--shatr-	c:\windows\System32\inetsrv\w3wphost.dll
2010-11-20 13:27	884224	--shatr-	c:\windows\System32\spool\drivers\x64\unidrvui.dll
2009-04-16 11:59	1103872	--shatr-	c:\windows\System32\spool\drivers\x64\3\hpfst70v.dll
2009-04-16 12:08	1607168	--shatr-	c:\windows\System32\spool\drivers\x64\3\hpfui70v.dll
2010-11-20 13:27	884224	--shatw-	c:\windows\System32\spool\drivers\x64\3\unidrvui.dll
2009-07-14 01:40	83968	--shatr-	c:\windows\System32\spool\prtprocs\x64\CNBPP3.DLL
2009-04-16 12:08	248320	--shatr-	c:\windows\System32\spool\prtprocs\x64\hpfpp70v.dll
2010-11-20 13:27	39424	--shatr-	c:\windows\System32\spool\prtprocs\x64\winprint.dll
2010-05-22 19:48	1255736	--shatr-	c:\windows\System32\Wat\WatAdminSvc.exe
2009-07-14 01:39	203264	--shatr-	c:\windows\System32\wbem\WmiApSrv.exe
2010-11-20 13:25	372736	--shatr-	c:\windows\System32\wbem\WmiPrvSE.exe
2009-07-14 01:39	473600	--shatr-	c:\windows\System32\WindowsPowerShell\v1.0\powershell.exe
2008-12-04 09:57	146432	--shatr-	c:\windows\SysWOW64\APOMngr.DLL
2012-01-30 02:27	43520	--shatr-	c:\windows\SysWOW64\CmdLineExt03.dll
2011-07-25 16:56	178800	--shatr-	c:\windows\SysWOW64\CmdLineExt_x64.dll
2008-09-17 12:05	72704	--shatr-	c:\windows\SysWOW64\CmdRtr.DLL
2010-10-20 11:44	1207656	--shatr-	c:\windows\SysWOW64\FM20.DLL
2006-03-17 11:45	497296	--shatr-	c:\windows\SysWOW64\imagXpr7.dll
2005-07-19 15:32	221184	--shatr-	c:\windows\SysWOW64\LVCOMSX.EXE
2005-07-19 15:32	258048	--shatr-	c:\windows\SysWOW64\LVMAENUM.dll
1998-09-17 06:20	393216	--shatr-	c:\windows\SysWOW64\MSRDO20.DLL
2010-11-20 12:19	257024	--shatr-	c:\windows\SysWOW64\msv1_0.dll
2009-07-20 23:05	1348432	--shatr-	c:\windows\SysWOW64\msxml4.dll
2009-07-14 01:16	40960	--shatr-	c:\windows\SysWOW64\sfc_os.dll
2010-11-20 12:21	206848	--shatr-	c:\windows\SysWOW64\ws2_32.dll
2011-08-16 10:34	279480	--shatr-	c:\windows\SysWOW64\Adobe\Director\SwDir.dll
2011-08-16 10:35	112568	--shatr-	c:\windows\SysWOW64\Adobe\Director\SWDNLD.EXE
2011-08-16 10:34	1040824	--shatr-	c:\windows\SysWOW64\Adobe\Shockwave 11\SwHelper_1161629.exe
2001-03-14 12:14	491574	--shatr-	c:\windows\SysWOW64\Adobe\SVG Viewer\SVGControl.dll
2011-11-11 11:13	8527008	--shatr-	c:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll
2005-05-13 10:47	315392	--shatr-	c:\windows\twain_32\LogiVid\HPortal2.dll
2005-05-13 10:47	212992	--shatr-	c:\windows\twain_32\LogiVid\HVideoS2.exe
2005-05-13 10:46	221184	--shatr-	c:\windows\twain_32\LogiVid\PCSmart2.dll
.
.
(((((((((((((((((((((((((((((   SnapShot@2012-05-29_21.39.26   )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-06-16 16:32 . 2012-05-30 05:02	99910              c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2011-06-16 16:32 . 2012-05-30 05:02	66468              c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-06-16 16:32 . 2012-05-30 05:02	18784              c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-322790053-608092770-2951396433-1004_UserData.bin
+ 2012-01-19 18:05 . 2012-05-30 04:31	69186              c:\windows\system32\config\systemprofile\AppData\Roaming\WTablet\Wacom_Tablet.dat
- 2012-01-19 18:05 . 2012-05-29 16:48	69186              c:\windows\system32\config\systemprofile\AppData\Roaming\WTablet\Wacom_Tablet.dat
+ 2011-06-16 16:28 . 2012-05-29 22:00	16384              c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-06-16 16:28 . 2012-05-29 16:48	16384              c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-06-16 16:28 . 2012-05-29 16:48	16384              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-06-16 16:28 . 2012-05-29 22:00	16384              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-05-30 05:00 . 2012-05-30 05:00	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-05-29 21:18 . 2012-05-29 21:18	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-05-29 21:18 . 2012-05-29 21:18	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-05-30 05:00 . 2012-05-30 05:00	2048              c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-06-16 16:28 . 2012-05-29 16:48	163840              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-06-16 16:28 . 2012-05-29 22:00	163840              c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2011-06-16 16:26 . 2012-05-29 21:16	497168              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-06-16 16:26 . 2012-05-29 22:08	497168              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-06-17 23:49 . 2012-05-29 22:08	54315592              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-322790053-608092770-2951396433-1004-12288.dat
- 2011-06-17 23:49 . 2012-05-29 21:16	54315592              c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-322790053-608092770-2951396433-1004-12288.dat
.
(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-02-13 39408]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-06-24 1840424]
"AutoStartNPSAgent"="c:\program files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe" [2010-03-09 102400]
"Clavier+"="c:\users\Axel FIOLLE\AppData\Local\Clavier+\Clavier.exe" [2010-04-25 88576]
"Dyyno Launcher"="c:\program files (x86)\Dyyno\Dyyno Broadcaster\dyyno_launcher.exe" [2011-01-15 2151776]
"Akamai NetSession Interface"="c:\users\Axel FIOLLE\AppData\Local\Akamai\netsession_win.exe" [2012-05-07 3331872]
"Facebook Update"="c:\users\Axel FIOLLE\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-04-07 137536]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-02-28 1242448]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2010-06-09 49208]
"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]
"BCU"="c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-08-04 346320]
"MRUTray"="c:\program files (x86)\Marvell\raid\tray\MarvellTray.exe" [2009-10-09 741376]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
"LWS"="c:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2011-11-11 205336]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
.
c:\users\Axel FIOLLE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Rainmeter.lnk - c:\program files\Rainmeter\Rainmeter.exe [2012-1-8 107720]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2011-6-16 275768]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages	REG_MULTI_SZ   	kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 DCScheduler;DCScheduler;c:\program files (x86)\FarStone\DriveClone\Client\cbp\DCSchdlerSRVC.exe [2009-09-02 104976]
R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-02-13 135664]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;c:\program files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
R3 driverhardwarev2x64;driverhardwarev2x64;c:\program files\ma-config.com\Drivers\driverhardwarev2x64.sys [2010-05-01 15872]
R3 dump_wmimmc;dump_wmimmc;c:\program files (x86)\NCsoft\Lineage II\system\GameGuard\dump_wmimmc.sys [x]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [x]
R3 FARMNTIO;FARMNTIO;c:\windows\system32\drivers\farmntio.sys [x]
R3 gupdatem;Service Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-02-13 135664]
R3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys [x]
R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [x]
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2010-07-19 341504]
R3 netr7364;Pilote de carte LAN sans fil USB RT73 pour Vista;c:\windows\system32\DRIVERS\netr7364.sys [x]
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2010-06-25 35344]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 SafeBox;SafeBox;c:\program files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2012-03-06 75384]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [x]
R3 ToolkitDisk;ToolkitDisk;c:\windows\system32\Drivers\toolkitdisk.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TunnelClientService;TunnelClientService;c:\program files (x86)\Super Network Tunnel\TunnelClientService.exe [2010-06-21 1157120]
R3 TunnelServerService;TunnelServerService;c:\program files (x86)\Super Network Tunnel\TunnelServerService.exe [2010-06-20 1431552]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-11-02 466736]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
S0 dcsnap;dcsnap; [x]
S0 mv91cons;Marvell 91xx Config Device Driver;c:\windows\system32\DRIVERS\mv91cons.sys [x]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-24 90192]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-24 103504]
S1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 BCUService;Browser Configuration Utility Service;c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
S2 Cepstral License Server;Cepstral License Server;c:\program files\Cepstral\bin\CepstralLicSrv.exe [2009-09-29 121856]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 Dyyno Launcher;Dyyno Service;c:\program files (x86)\Dyyno\Dyyno Broadcaster\launcherd.exe [2011-01-15 415072]
S2 FBAgent;File Backup Agent;c:\program files (x86)\FarStone\DriveClone\Client\Efb\FBPAgent.exe [2009-09-02 86016]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-02-28 2343816]
S2 Marvell RAID;Marvell RAID Event Agent;c:\program files (x86)\Marvell\raid\svc\mvraidsvc.exe [2009-10-05 151552]
S2 MRUWebService;MRU Web Service;c:\program files (x86)\Marvell\raid\Apache2\bin\httpd.exe [2009-04-09 24635]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 TabletServiceWacom;TabletServiceWacom;c:\program files\Tablet\Wacom\Wacom_Tablet.exe [2011-06-06 6438264]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-08-30 2358656]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2011-12-14 2984832]
S2 Tran_Process_Proc;DCNTranProc;c:\program files (x86)\FarStone\DriveClone\Client\DCNTranProc.exe [2009-09-02 77824]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
S2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-04-05 66096]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
S3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [x]
S3 LVUVC64;Logitech Webcam 300(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [x]
S3 MonitorFunction;Driver for Monitor;c:\windows\system32\DRIVERS\TVMonitor.sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai	REG_MULTI_SZ   	Akamai
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
iissvcs	REG_MULTI_SZ   	w3svc was
apphost	REG_MULTI_SZ   	apphostsvc
.
Contenu du dossier 'Tâches planifiées'
.
2012-04-07 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1004Core1cd14523c1c934f.job
- c:\users\Axel FIOLLE\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-11-29 00:05]
.
2012-05-29 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1004UA.job
- c:\users\Axel FIOLLE\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-11-29 00:05]
.
2012-03-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cd09d640a18a05.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-16 19:52]
.
2012-05-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-16 19:52]
.
2012-03-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1000Core1cd0a683cd6c5b4.job
- c:\users\Utilisateur\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-17 14:27]
.
2012-05-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1000UA.job
- c:\users\Utilisateur\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-17 14:27]
.
2012-03-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1004Core1cd0ddc1cb1e4d7.job
- c:\users\Axel FIOLLE\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-12 14:27]
.
2012-05-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-322790053-608092770-2951396433-1004UA.job
- c:\users\Axel FIOLLE\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-12 14:27]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1]
@="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}"
[HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}]
2012-03-06 12:52	266952	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2]
@="{342DAA0B-D796-460D-8566-901E08A1CCAD}"
[HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}]
2012-03-06 12:52	266952	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3]
@="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}"
[HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}]
2012-03-06 12:52	266952	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4]
@="{33816773-98AE-4723-ADE0-EBE54C8B5A67}"
[HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}]
2012-03-06 12:52	266952	----a-w-	c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-03-15 499608]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-09-22 8116256]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-04-05 1067256]
"MsmqIntCert"="mqrt.dll" [2010-11-20 247808]
"combofix"="c:\axel\CF31623.3XE" [2010-11-20 345088]
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = 127.0.0.1;<local>;127.0.0.1:9421;
uInternet Settings,ProxyServer = socks=127.0.0.1:9050
IE: &Envoyer à OneNote - c:\program files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
IE: E&xporter vers Microsoft Excel - c:\program files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000
IE: Sothink SWF Catcher - c:\program files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
FF - ProfilePath - c:\users\Axel FIOLLE\AppData\Roaming\Mozilla\Firefox\Profiles\l74zsa5d.default\
FF - prefs.js: network.proxy.http - localhost
FF - prefs.js: network.proxy.http_port - 4444
FF - prefs.js: network.proxy.socks - localhost
FF - prefs.js: network.proxy.socks_port - 4444
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Toolbar-10 - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet002\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll"
.
[HKEY_LOCAL_MACHINE\system\ControlSet002\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_USERS\S-1-5-21-322790053-608092770-2951396433-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:1d,84,60,d4,f9,b1,42,9d,30,eb,f4,5d,82,10,45,c9,6c,25,c2,da,a4,9e,ba,
   db,53,d1,a9,2f,54,1f,18,53,c5,20,11,81,33,68,1a,22,a1,32,be,92,69,72,e2,64,\
"??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d
.
[HKEY_LOCAL_MACHINE\system\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\FarStone\DriveClone\Client\cbp\DCSchdler.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\CDBurnerXP\NMSAccessU.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
c:\program files (x86)\TeamViewer\Version7\TeamViewer.exe
c:\program files (x86)\TeamViewer\Version7\tv_w32.exe
c:\program files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
c:\program files (x86)\Windows iLivid Toolbar\Datamngr\datamngrUI.exe
c:\program files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
c:\program files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
c:\program files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
.
**************************************************************************
.
Heure de fin: 2012-05-30  07:11:18 - La machine a redémarré
ComboFix-quarantined-files.txt  2012-05-30 05:11
ComboFix2.txt  2012-05-29 21:41
.
Avant-CF: 79.635.775.488 octets libres
Après-CF: 79.213.699.072 octets libres
.
- - End Of File - - 09ACBC6E15F9DC10859045C0C9EE7A2E

ok et il redemarre en mode normal maintenant ?
Messages postés
55
Date d'inscription
jeudi 21 avril 2011
Statut
Membre
Dernière intervention
25 août 2013
1
je vérifie de suite
Messages postés
55
Date d'inscription
jeudi 21 avril 2011
Statut
Membre
Dernière intervention
25 août 2013
1
Absolument, mais le navigateur reste fou.

Télécharge et enregistre ADWcleaner sur ton bureau :

ADWCleaner (Merci à Xplode)

Lance le,

clique sur suppression et poste son rapport.
Messages postés
55
Date d'inscription
jeudi 21 avril 2011
Statut
Membre
Dernière intervention
25 août 2013
1
Je pense avoir trouvé et tu vas me prendre pour un stupide néophyte... en fait sur mon clavier il y a un bouton avec une icône de maison qui est en fait un raccourci vers le navigateur... je le croyais mort depuis plus d'un an et là il se décide à refonctionner or il se trouve qu'il est bloqué en position enfoncée... une pince suffit. Quand l'hardware troll les experts du software. Désolé du dérangement.

ok fais le menage

https://gen-hackman.kanak.fr/