Sujet Précédent Sujet Suivant

Virus impossible a effacer

sbelenne -  
Fish66 Messages postés 18337 Statut Contributeur sécurité -
Bonjour,

j'ai un virus qui revient tout le temps et eset le bloque mais ne le suprime pas , pouvez vous m'aider svp ?

A voir également:

5 réponses

Réponse 1 / 5
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Salut,
1/
Est ce que tu peux nous donner le nom de ce virus et son emplacement ?

2/
* Télécharge puis enregistre sur le bureau de ton PC ZHPDiag
(de Nicolas Coolman) à partir l'un des deux liens : Lien 1 ou Lien 2
* Lance-le, (Clic droit "exécuter en tant qu'administrateur" si tu es sous Vista/7)
* Clique sur l'icône en forme de loupe pour lancer le diagnostique
* Héberge le rapport ZHPDiag.txt de ton bureau sur : malekal.com ou cjoint.com
* Fais copier/coller le lien fourni dans ta prochaine réponse
* Aide ZHPDiag : <<< ICI >>>
1
Réponse 2 / 5
sbelenne
 
bonjour et merci de m'aider , le nom du virus est " win 64 sirfef.AE " et win 64 agent.BA "

voici le rapport demander :

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: Service Pack 1 (build 7601), 64-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: XPS 8300
Logical Drives Mask: 0x00002ffc

Kernel Drivers (total 188):
0x0345C000 \SystemRoot\system32\ntoskrnl.exe
0x03413000 \SystemRoot\system32\hal.dll
0x00BB8000 \SystemRoot\system32\kdcom.dll
0x00C9C000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00CEB000 \SystemRoot\system32\PSHED.dll
0x00CFF000 \SystemRoot\system32\CLFS.SYS
0x00E50000 \SystemRoot\system32\CI.dll
0x00F10000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00FB4000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00D5D000 \SystemRoot\system32\drivers\ACPI.sys
0x00FC3000 \SystemRoot\system32\drivers\WMILIB.SYS
0x00FCC000 \SystemRoot\system32\drivers\msisadrv.sys
0x00E00000 \SystemRoot\system32\drivers\pci.sys
0x00E33000 \SystemRoot\system32\drivers\vdrvroot.sys
0x00FD6000 \SystemRoot\System32\drivers\partmgr.sys
0x00FEB000 \SystemRoot\system32\drivers\volmgr.sys
0x00C00000 \SystemRoot\System32\drivers\volmgrx.sys
0x00C5C000 \SystemRoot\System32\drivers\mountmgr.sys
0x01054000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x01000000 \SystemRoot\system32\drivers\atapi.sys
0x01009000 \SystemRoot\system32\drivers\ataport.SYS
0x01033000 \SystemRoot\system32\drivers\msahci.sys
0x0103E000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x00E40000 \SystemRoot\system32\drivers\amdxata.sys
0x00DB4000 \SystemRoot\system32\drivers\fltmgr.sys
0x00C76000 \SystemRoot\system32\drivers\fileinfo.sys
0x01447000 \SystemRoot\System32\Drivers\Ntfs.sys
0x01635000 \SystemRoot\System32\Drivers\msrpc.sys
0x01693000 \SystemRoot\System32\Drivers\ksecdd.sys
0x016AE000 \SystemRoot\System32\Drivers\cng.sys
0x01720000 \SystemRoot\System32\drivers\pcw.sys
0x01731000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x018A3000 \SystemRoot\system32\drivers\ndis.sys
0x01996000 \SystemRoot\system32\drivers\NETIO.SYS
0x01800000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01AD5000 \SystemRoot\System32\drivers\tcpip.sys
0x01CD8000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x01D22000 \SystemRoot\system32\DRIVERS\epfwwfp.sys
0x01D37000 \SystemRoot\system32\drivers\volsnap.sys
0x01D83000 \SystemRoot\System32\Drivers\spldr.sys
0x01D8B000 \SystemRoot\System32\drivers\rdyboost.sys
0x01DC5000 \SystemRoot\System32\Drivers\mup.sys
0x01DD7000 \SystemRoot\System32\drivers\hwpolicy.sys
0x01A00000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x01A3A000 \SystemRoot\system32\drivers\disk.sys
0x01A50000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x01A8E000 \SystemRoot\system32\DRIVERS\dtsoftbus01.sys
0x0182B000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x04FDA000 \SystemRoot\System32\Drivers\Null.SYS
0x04FE3000 \SystemRoot\System32\Drivers\Beep.SYS
0x01855000 \SystemRoot\system32\DRIVERS\ehdrv.sys
0x04FEA000 \SystemRoot\System32\drivers\vga.sys
0x0187C000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x04C00000 \SystemRoot\System32\drivers\watchdog.sys
0x04C10000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x04C19000 \SystemRoot\system32\drivers\rdpencdd.sys
0x01DE0000 \SystemRoot\system32\drivers\rdprefmp.sys
0x01DE9000 \SystemRoot\System32\Drivers\Msfs.SYS
0x0173B000 \SystemRoot\System32\Drivers\Npfs.SYS
0x0174C000 \SystemRoot\system32\DRIVERS\tdx.sys
0x0176E000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x04072000 \SystemRoot\system32\drivers\afd.sys
0x040FB000 \SystemRoot\System32\DRIVERS\netbt.sys
0x04140000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x04149000 \SystemRoot\system32\DRIVERS\pacer.sys
0x0416F000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x04185000 \SystemRoot\system32\DRIVERS\EpfwLWF.sys
0x04192000 \SystemRoot\system32\DRIVERS\netbios.sys
0x041A1000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x041BC000 \SystemRoot\system32\DRIVERS\termdd.sys
0x04000000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x04051000 \SystemRoot\system32\drivers\nsiproxy.sys
0x0405D000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x041D0000 \SystemRoot\System32\drivers\discache.sys
0x041DF000 \SystemRoot\System32\Drivers\dfsc.sys
0x0177B000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x0178C000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x0F414000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x0B2C1000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x0B3B5000 \SystemRoot\System32\drivers\dxgmms1.sys
0x0B200000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x0B224000 \SystemRoot\system32\DRIVERS\HECIx64.sys
0x0B235000 \SystemRoot\system32\drivers\usbehci.sys
0x0B246000 \SystemRoot\system32\drivers\USBPORT.SYS
0x07A00000 \SystemRoot\system32\DRIVERS\bcmwl664.sys
0x0B29C000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x078CA000 \SystemRoot\system32\DRIVERS\k57nd60a.sys
0x07934000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x07941000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x07957000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x07967000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x0797D000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x079A1000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x079AD000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x079DC000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x07800000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x07821000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x0783B000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x0784A000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x07859000 \SystemRoot\system32\DRIVERS\swenum.sys
0x0785B000 \SystemRoot\system32\DRIVERS\ks.sys
0x0789E000 \SystemRoot\system32\DRIVERS\umbus.sys
0x08082000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x080DC000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x080F1000 \SystemRoot\system32\drivers\nvhda64v.sys
0x08123000 \SystemRoot\system32\drivers\portcls.sys
0x08160000 \SystemRoot\system32\drivers\drmk.sys
0x08182000 \SystemRoot\system32\drivers\ksthunk.sys
0x08806000 \SystemRoot\system32\drivers\RTKVHD64.sys
0x08188000 \SystemRoot\system32\drivers\HdAudio.sys
0x00030000 \SystemRoot\System32\win32k.sys
0x08BD9000 \SystemRoot\System32\drivers\Dxapi.sys
0x08BE5000 \SystemRoot\System32\Drivers\crashdmp.sys
0x04C22000 \SystemRoot\System32\Drivers\dump_iaStor.sys
0x081E4000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x08000000 \SystemRoot\system32\DRIVERS\monitor.sys
0x00530000 \SystemRoot\System32\TSDDD.dll
0x007B0000 \SystemRoot\System32\cdd.dll
0x0800E000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x0801C000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x08BF3000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x08BFC000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x08035000 \SystemRoot\system32\DRIVERS\USBSTOR.SYS
0x08050000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x0805E000 \SystemRoot\system32\drivers\luafv.sys
0x03CB1000 \SystemRoot\system32\DRIVERS\eamonm.sys
0x03D93000 \SystemRoot\system32\drivers\WudfPf.sys
0x03DB4000 \SystemRoot\system32\DRIVERS\xusb21.sys
0x03DC7000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x03C00000 \SystemRoot\system32\DRIVERS\epfw.sys
0x03C31000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x03C46000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x03C99000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x03DD4000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x03DEC000 \SystemRoot\system32\DRIVERS\vwifimp.sys
0x017B2000 \SystemRoot\System32\Drivers\fastfat.SYS
0x06624000 \SystemRoot\system32\drivers\HTTP.sys
0x066ED000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x0671E000 \SystemRoot\system32\DRIVERS\bowser.sys
0x0673C000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x06769000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x067B7000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x082B2000 \SystemRoot\System32\DRIVERS\srv2.sys
0x0831B000 \SystemRoot\System32\DRIVERS\srv.sys
0x08200000 \SystemRoot\system32\drivers\peauth.sys
0x082A6000 \SystemRoot\System32\Drivers\secdrv.SYS
0x083B3000 \SystemRoot\System32\drivers\tcpipreg.sys
0x083C5000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
0x77140000 \Windows\System32\ntdll.dll
0x47E10000 \Windows\System32\smss.exe
0xFF460000 \Windows\System32\apisetschema.dll
0xFFEE0000 \Windows\System32\autochk.exe
0xFF400000 \Windows\System32\ws2_32.dll
0x76F30000 \Windows\System32\iertutil.dll
0xFF380000 \Windows\System32\shlwapi.dll
0x76E10000 \Windows\System32\kernel32.dll
0xFF2E0000 \Windows\System32\msvcrt.dll
0xFF200000 \Windows\System32\oleaut32.dll
0x76D10000 \Windows\System32\user32.dll
0xFF1F0000 \Windows\System32\nsi.dll
0xFF110000 \Windows\System32\advapi32.dll
0xFF070000 \Windows\System32\comdlg32.dll
0xFF050000 \Windows\System32\imagehlp.dll
0xFEF20000 \Windows\System32\rpcrt4.dll
0xFEEF0000 \Windows\System32\imm32.dll
0xFEE70000 \Windows\System32\difxapi.dll
0x77310000 \Windows\System32\normaliz.dll
0xFE0E0000 \Windows\System32\shell32.dll
0xFE080000 \Windows\System32\Wldap32.dll
0x76BC0000 \Windows\System32\urlmon.dll
0x77300000 \Windows\System32\psapi.dll
0xFE060000 \Windows\System32\sechost.dll
0xFDE80000 \Windows\System32\setupapi.dll
0xFDDB0000 \Windows\System32\usp10.dll
0xFDBA0000 \Windows\System32\ole32.dll
0xFDB30000 \Windows\System32\gdi32.dll
0x76A60000 \Windows\System32\wininet.dll
0xFDB20000 \Windows\System32\lpk.dll
0xFDA80000 \Windows\System32\clbcatq.dll
0xFD970000 \Windows\System32\msctf.dll
0xFD900000 \Windows\System32\KernelBase.dll
0xFD790000 \Windows\System32\crypt32.dll
0xFD770000 \Windows\System32\devobj.dll
0xFD6D0000 \Windows\System32\comctl32.dll
0xFD690000 \Windows\System32\wintrust.dll
0xFD650000 \Windows\System32\cfgmgr32.dll
0xFD640000 \Windows\System32\msasn1.dll
0x766A0000 \Windows\SysWOW64\normaliz.dll

Processes (total 68):
0 System Idle Process
4 System
388 C:\Windows\System32\smss.exe
564 csrss.exe
640 C:\Windows\System32\wininit.exe
664 csrss.exe
696 C:\Windows\System32\services.exe
720 C:\Windows\System32\lsass.exe
732 C:\Windows\System32\lsm.exe
756 C:\Windows\System32\winlogon.exe
908 C:\Windows\System32\svchost.exe
964 C:\Windows\System32\nvvsvc.exe
988 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
144 C:\Windows\System32\svchost.exe
484 C:\Windows\System32\svchost.exe
448 C:\Windows\System32\svchost.exe
560 C:\Windows\System32\svchost.exe
1168 C:\Windows\System32\svchost.exe
1284 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
1296 C:\Windows\System32\nvvsvc.exe
1340 C:\Windows\System32\svchost.exe
1432 C:\Windows\System32\wlanext.exe
1440 C:\Windows\System32\conhost.exe
1620 C:\Windows\System32\spoolsv.exe
1864 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
1984 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
2012 C:\Program Files\Bonjour\mDNSResponder.exe
1016 C:\Windows\System32\svchost.exe
1248 C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
1444 C:\Program Files\Intel\iCLS Client\HeciServer.exe
2372 WUDFHost.exe
3024 C:\Windows\System32\svchost.exe
3052 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
2184 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2284 C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
2500 C:\Program Files\Windows Media Player\wmpnetwk.exe
2720 C:\Windows\System32\SearchIndexer.exe
2576 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
1560 C:\Windows\System32\taskhost.exe
1192 C:\Windows\System32\dwm.exe
2888 C:\Windows\explorer.exe
2788 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
444 C:\Program Files\ESET\ESET Smart Security\egui.exe
2812 C:\Windows\vsnp2std.exe
1768 C:\Windows\vsnpstd3.exe
812 C:\Program Files (x86)\Internet Download Manager\IDMan.exe
2088 C:\Program Files\Windows Sidebar\sidebar.exe
1116 C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
3116 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
3148 C:\Program Files (x86)\iTunes\iTunesHelper.exe
3404 C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
3736 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
3772 C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
3836 C:\Program Files\iPod\bin\iPodService.exe
3100 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
3488 C:\Windows\System32\audiodg.exe
2592 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
1100 C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
4424 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_262.exe
1500 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_262.exe
1516 C:\Windows\SysWOW64\svchost.exe
4348 C:\Windows\System32\taskeng.exe
4420 C:\Windows\System32\SearchProtocolHost.exe
3572 C:\Windows\System32\SearchFilterHost.exe
1136 dllhost.exe
4656 dllhost.exe
2276 C:\Users\SBELENNE\Desktop\ZHPDiag\mbrcheck.exe
2492 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000003'19b00000 (NTFS)
\\.\E: --> \\.\PhysicalDrive1 at offset 0x00000000'00007e00 (NTFS)
\\.\F: --> \\.\PhysicalDrive2 at offset 0x00000000'00007e00 (NTFS)
\\.\G: --> \\.\PhysicalDrive1 at offset 0x0000007a'11f97a00 (NTFS)
\\.\H: --> \\.\PhysicalDrive1 at offset 0x0000009f'a2853800 (NTFS)

PhysicalDrive0 Model Number: WDCWD10EALX-759BA1, Rev: 17.01H17
PhysicalDrive1 Model Number: WDCWD10EALS-00Z8A0, Rev: 05.01D05
PhysicalDrive2 Model Number: ST31000528AS, Rev: CC38

Size Device Name MBR Status
--------------------------------------------
931 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79
931 GB \\.\PhysicalDrive1 Windows XP MBR code detected
SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A
931 GB \\.\PhysicalDrive2 Windows XP MBR code detected
SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A

Done!
0
Réponse 3 / 5
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Re,
1/
Tu as envoyé le rapport mbrcheck et non ZHPDiag!
Refais l'opération indiqué : ici stp et poste le rapport : ZHPDiag

2/
Télécharge TDSSKiller sur ton Bureau.

# Décompresse le (clic droit sur le fichier et extraire) sur le bureau.
# dans le dossier crée, déplacer le fichier TDSSKiller.exe pour le mettre sur le Bureau
# Faire un double clic sur TDSSKiller.exe pour le lancer.
# Cliquer sur Start scan pour lancer l'analyse,

# Lorsque l'outil a terminé son travail d'inspection, si des nuisibles ("Malicious objects") ont été trouvés, vérifier que l'option Cure est sélectionnée,
# Si des objects suspects "Suspicious objects" ont été détectés, sur l'écran de demande de confirmation, laisser l'option sur Skip.
# Puis cliquer sur le bouton Continue.
# Attendre l'affichage du fichier rapport.
# Si l'outil a besoin d'un redémarrage pour finaliser le nettoyage, cliquer sur le bouton Reboot computer.

Envoyer en réponse le rapport de TDSSKiller

Note : Il se trouve aussi en C:\TDSSKiller.Version_Date_Heure_log.txt
0
Réponse 4 / 5
sbelenne
 
re voici le rapport ZHPDiag :

Rapport de ZHPDiag v1.31.100 par Nicolas Coolman, Update du 17/06/2012
Run by SBELENNE at 24/06/2012 17:58:51
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.

---\\ Web Browser
MSIE: Internet Explorer v

---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : RMV82
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : KO
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6126 MB (70% free)
System Restore: Inconnu (Unknown)
System drive C: has 391 GB (42%) free of 919 GB

---\\ Logged in mode
~ Computer Name: SBELENNE-PC
~ User Name: SBELENNE
~ All Users Names: UpdatusUser, SBELENNE, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\SBELENNE\AppData\Roaming\
~ %Desktop% : C:\Users\SBELENNE\Desktop\
~ %Favorites% : C:\Users\SBELENNE\Favorites\
~ %LocalAppData% : C:\Users\SBELENNE\AppData\Local\
~ %StartMenu% : C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 391 Go of 919 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Hard drive, Flash drive, Thumb drive (Free 67 Go of 488 Go)
F:\ Hard drive, Flash drive, Thumb drive (Free 112 Go of 932 Go)
G:\ Hard drive, Flash drive, Thumb drive (Free 114 Go of 150 Go)
H:\ Hard drive, Flash drive, Thumb drive (Free 78 Go of 293 Go)
I:\ Floppy drive, Flash card reader, USB Key (Free 4 Go of 7 Go)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
L:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
N:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.870ECFEBD41C7B8F9C6777748368D51F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/05/2012 - 02:59:14.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/03/2011 - 07:41:34.) -- C:\Windows\system32\Drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2
~ Mes musiques (My Musics) : 1/3316
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/2033
~ Mon Bureau (My Desktop) : 1/4808
~ Menu demarrer (Programs) : 0/38
~ Scan Hidden Files in 00mn 02s

---\\ Processus lancés
[MD5.B5C0AEB9DBB6E424936B2288F50BC79B] - (.Sonix - CameraMonitor Application.) -- C:\Windows\vsnp2std.exe [675840] [PID.2948]
[MD5.FB0C8699B87F7140BB6201BE7B4B6778] - (.Pas de propriétaire - CameraMonitor Application.) -- C:\Windows\vsnpstd3.exe [827392] [PID.3000]
[MD5.E78FA80D4D7FD757A53781E17A3B7402] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3487128] [PID.3008]
[MD5.CEA0461AAE4B8B6216F164501B1B5A10] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912] [PID.1312]
[MD5.995BEB69AE5C50D354894354F5A6CD5A] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252296] [PID.2252]
[MD5.D9D79F547AE2A70C650DFCFC27AEC0F7] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736] [PID.2692]
[MD5.1B82BCF0B8F9228B39F75B0DFA079A21] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [462408] [PID.1812]
[MD5.207B16FA69F61D1895F8D8532F587E4B] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [263600] [PID.2552]
[MD5.F9803B1B1FA3E9D34F309D2DD8DB30B5] - (.DT Soft Ltd - DAEMON Tools Shell Extensions Helper.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe [2998592] [PID.3380]
[MD5.50650A6B920C576FC1C8266E17DD28BD] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284480] [PID.3812]
[MD5.D3C0837346C49095B8AF9EF54AD7E90A] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [913888] [PID.4104]
[MD5.41623176FEF9DF3C113EAADADBB5FB42] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16864] [PID.4632]
[MD5.682E4FBE954535E60C5DC7D4A3445ACC] - (.Adobe Systems, Inc. - Adobe Flash Player 11.3 r300.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_262.exe [1535176] [PID.2076]
[MD5.E24F75DCD2A9576085DC2758EB040366] - (...) -- C:\Users\SBELENNE\securite\ZHPDiag\ZHPDiag.exe [4540928] [PID.4612]
~ Scan Processes Running in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\SBELENNE\AppData\Roaming\Mozilla\Firefox\Profiles\q930unnh.default\prefs.js
M3 - MFPP: Plugins - [SBELENNE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [SBELENNE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [SBELENNE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [SBELENNE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [SBELENNE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [SBELENNE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [SBELENNE] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [SBELENNE - q930unnh.default\{1018e4d6-728f-4b20-ad56-37578a4de76b}] [] Flagfox v4.1.16 (.Dave Garrett.)
~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Interpréteur de commandes Windows.) (No version) -- (.not file.)
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 21

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [WebcamMaxAutoRun] . (.CoolwareMax - WebcamMax.) -- C:\Program Files (x86)\WebcamMax\WebcamMax.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\SBELENNE\Desktop\3D Live Pool - Raccourci.lnk . (...) -- C:\Program Files (x86)\3D Live Pool PC Game\3D Live Pool.exe
O4 - Global Startup: C:\Users\SBELENNE\Desktop\Le Maillon Faible.lnk . (...) -- C:\Program Files (x86)\Activision\Le Maillon Faible\uninstall\slaunch.exe
O4 - Global Startup: C:\Users\SBELENNE\Desktop\Safecracker.lnk . (.The Adventure Company - Kheops Studio.) -- C:\Program Files (x86)\The Adventure Company\Safecracker\Safecracker.exe
O4 - Global Startup: C:\Users\SBELENNE\Desktop\scrabble2005 - Raccourci.lnk . (.Ubisoft Entertainment.) -- C:\Program Files (x86)\Ubisoft\SCRABBLE® 2005 EDITION\scrabble2005.exe
O4 - Global Startup: C:\Users\SBELENNE\Desktop\t3dgm - Raccourci.lnk . (...) -- C:\Program Files (x86)\The Game Creators\The 3D Gamemaker\t3dgm.exe
O4 - Global Startup: C:\Users\SBELENNE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FreeArc.lnk . (...) -- C:\Program Files (x86)\FreeArc\bin\FreeArc.exe
O4 - Global Startup: C:\Users\SBELENNE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\JDownloader.lnk . (.AppWork GmbH.) -- C:\Program Files (x86)\JDownloader\JDownloaderPortable.exe
O4 - Global Startup: C:\Users\SBELENNE\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Global Startup in 00mn 00s

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: Télécharger avec IDM . (...) -- C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM . (...) -- C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
~ Scan IE Menu Contextuel in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
[MD5.00000000000000000000000000000000] [APT] [{155B07B5-EF26-446B-BD13-F63C038E8CB7}] (...) -- C:\Users\SBELENNE\Desktop\mm2\INSTALL.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{24EF350D-BCB6-4F0B-B4AC-B241B7B0D15D}] (...) -- C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2010\kitserver\manager.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{75744A4D-EB68-499F-9D97-3F47DE1390A4}] (...) -- C:\Users\SBELENNE\Desktop\installation pes 2010\Setup.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{8248084C-3FD4-4568-8735-BC5C0D3A0112}] (...) -- C:\Users\SBELENNE\Downloads\Programs\STOR_Win7_XP_11.2.0.1006.exe (.not file.)
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 02s

---\\ Composants installés (ActiveSetup Installed Components) (O40) (None)

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 16/06/2012 - 01:11:36 - [7,091] ----D C:\Program Files (x86)\3D Live Pool PC Game
O43 - CFD: 16/06/2012 - 01:36:33 - [559,666] ----D C:\Program Files (x86)\Activision
O43 - CFD: 04/06/2012 - 14:41:10 - [122,146] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 21/05/2012 - 17:20:54 - [2,201] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 16/06/2012 - 01:16:36 - [636,643] ----D C:\Program Files (x86)\Artefacts Studio
O43 - CFD: 22/06/2012 - 16:19:49 - [463,684] ----D C:\Program Files (x86)\Atari
O43 - CFD: 20/06/2012 - 12:05:41 - [864,798] ----D C:\Program Files (x86)\Avanquest
O43 - CFD: 20/06/2012 - 12:10:22 - [2,746] ----D C:\Program Files (x86)\Avanquest update
O43 - CFD: 23/05/2012 - 17:49:01 - [64,150] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 21/05/2012 - 17:31:30 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 26/05/2012 - 11:41:39 - [12,770] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 14/05/2012 - 13:07:37 - [3,432] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 24/05/2012 - 12:59:01 - [305,977] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 16/06/2012 - 01:27:02 - [1389,444] ----D C:\Program Files (x86)\Crash Time 4 - The Syndicate
O43 - CFD: 13/06/2012 - 19:30:13 - [24,459] ----D C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 13/06/2012 - 19:34:19 - [280,465] ----D C:\Program Files (x86)\Empire Interactive
O43 - CFD: 25/05/2012 - 19:35:51 - [3,579] ----D C:\Program Files (x86)\FLV-Media Player
O43 - CFD: 14/05/2012 - 18:55:47 - [29,247] ----D C:\Program Files (x86)\FreeArc
O43 - CFD: 22/06/2012 - 16:19:50 - [150,194] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/06/2012 - 16:54:52 - [35,446] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/05/2012 - 13:53:52 - [9,391] ----D C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 13/06/2012 - 03:22:08 - [6,169] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 21/05/2012 - 17:32:33 - [120,831] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 15/05/2012 - 14:23:32 - [93,354] ----D C:\Program Files (x86)\Java
O43 - CFD: 22/06/2012 - 19:26:24 - [161,961] ----D C:\Program Files (x86)\JDownloader
O43 - CFD: 15/05/2012 - 19:19:48 - [-1949,422] ----D C:\Program Files (x86)\KONAMI
O43 - CFD: 14/05/2012 - 12:52:43 - [6,206] ----D C:\Program Files (x86)\ma-config.com
O43 - CFD: 24/06/2012 - 15:17:43 - [11,554] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 16/06/2012 - 01:26:04 - [10,745] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 15/05/2012 - 21:39:13 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 05/06/2012 - 15:49:58 - [-1231,424] ----D C:\Program Files (x86)\Milestone
O43 - CFD: 30/05/2012 - 04:47:26 - [426,628] ----D C:\Program Files (x86)\Mindscape
O43 - CFD: 17/06/2012 - 15:47:30 - [37,206] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 18/06/2012 - 11:18:06 - [0,195] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 22/06/2012 - 02:06:25 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 13/06/2012 - 16:57:46 - [118,425] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 15/05/2012 - 14:24:24 - [33,186] ----D C:\Program Files (x86)\Oracle
O43 - CFD: 16/06/2012 - 01:10:47 - [178,144] ----D C:\Program Files (x86)\Petank Party
O43 - CFD: 21/05/2012 - 17:28:21 - [72,431] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 14/05/2012 - 13:08:42 - [3,210] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,349] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 22/06/2012 - 12:26:29 - [230,851] ----D C:\Program Files (x86)\SKIRYN
O43 - CFD: 28/05/2012 - 17:13:45 - [1216,838] ----D C:\Program Files (x86)\Sonic the Hedgehog 4 - Episode II
O43 - CFD: 14/05/2012 - 13:09:07 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 16/06/2012 - 01:18:46 - [360,001] ----D C:\Program Files (x86)\The Adventure Company
O43 - CFD: 17/06/2012 - 15:32:27 - [1280,806] ----D C:\Program Files (x86)\The Game Creators
O43 - CFD: 14/05/2012 - 16:26:06 - [727,799] ----D C:\Program Files (x86)\TmNationsForever
O43 - CFD: 16/05/2012 - 01:44:20 - [1703,916] ----D C:\Program Files (x86)\TmUnitedForever
O43 - CFD: 15/05/2012 - 14:00:47 - [1279,054] ----D C:\Program Files (x86)\TrackMania United
O43 - CFD: 16/06/2012 - 01:40:39 - [1809,394] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/06/2012 - 17:23:59 - [9,935] ----D C:\Program Files (x86)\Veetle
O43 - CFD: 14/05/2012 - 14:11:42 - [88,797] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 22/05/2012 - 17:52:02 - [46,489] ----D C:\Program Files (x86)\WebcamMax
O43 - CFD: 12/04/2011 - 11:16:36 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - 11:16:36 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 12/04/2011 - 11:16:36 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 11:16:36 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 11:16:36 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 06/06/2012 - 15:14:14 - [-702,162] ----D C:\Program Files (x86)\Worms Reloaded
O43 - CFD: 22/05/2012 - 16:38:14 - [20,229] ----D C:\Program Files (x86)\Zylom Games
O43 - CFD: 04/06/2012 - 14:41:13 - [6,046] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 21/05/2012 - 17:32:19 - [105,239] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 23/05/2012 - 17:48:49 - [92,263] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 14/05/2012 - 13:08:30 - [5,235] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 14/05/2012 - 13:16:44 - [0,012] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 15/05/2012 - 14:24:40 - [1,181] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 15/05/2012 - 14:25:59 - [1,962] ----D C:\Program Files (x86)\Common Files\Metaboli
O43 - CFD: 16/06/2012 - 01:11:05 - [19,567] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/05/2012 - 13:06:10 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 22/05/2012 - 02:24:19 - [25,314] ----D C:\Program Files (x86)\Common Files\snp2std
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 14/05/2012 - 16:33:08 - [9,771] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 04/06/2012 - 14:43:59 - [137,377] ----D C:\ProgramData\Adobe
O43 - CFD: 21/05/2012 - 17:25:11 - [61,248] ----D C:\ProgramData\Apple
O43 - CFD: 21/05/2012 - 17:32:19 - [72,499] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 20/06/2012 - 12:10:22 - [34,863] ----D C:\ProgramData\Avanquest
O43 - CFD: 20/06/2012 - 12:09:04 - [0] ----D C:\ProgramData\Avanquest Software
O43 - CFD: 23/05/2012 - 17:49:57 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 14/05/2012 - 12:43:20 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 26/05/2012 - 11:41:42 - [0] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 18/06/2012 - 11:19:07 - [0,002] ----D C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 14/05/2012 - 13:38:13 - [137,228] ----D C:\ProgramData\ESET
O43 - CFD: 14/05/2012 - 12:43:20 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites
O43 - CFD: 15/05/2012 - 13:35:04 - [0,002] ----D C:\ProgramData\HiddenSecretsNightmare
O43 - CFD: 14/05/2012 - 13:06:33 - [0,072] ----D C:\ProgramData\Intel
O43 - CFD: 22/06/2012 - 00:39:52 - [75,533] ----D C:\ProgramData\IronCode
O43 - CFD: 15/05/2012 - 19:19:48 - [62,031] ----D C:\ProgramData\KONAMI
O43 - CFD: 14/05/2012 - 12:52:40 - [1,207] ----D C:\ProgramData\ma-config.com
O43 - CFD: 24/06/2012 - 15:17:42 - [7,016] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 04/06/2012 - 14:41:32 - [0] ----D C:\ProgramData\McAfee
O43 - CFD: 14/05/2012 - 12:43:20 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 24/06/2012 - 16:30:07 - [12,553] -S--D C:\ProgramData\Microsoft
O43 - CFD: 14/05/2012 - 12:43:20 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 14/05/2012 - 13:51:15 - [0,007] ----D C:\ProgramData\Mozilla
O43 - CFD: 24/06/2012 - 17:50:03 - [3,983] ----D C:\ProgramData\NVIDIA
O43 - CFD: 14/05/2012 - 12:54:52 - [3,127] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 28/05/2012 - 17:02:16 - [0,645] ----D C:\ProgramData\RELOADED
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu
O43 - CFD: 15/05/2012 - 14:24:40 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 16/06/2012 - 01:27:16 - [0,029] ----D C:\ProgramData\Synetic
O43 - CFD: 22/06/2012 - 11:06:37 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates
O43 - CFD: 15/05/2012 - 14:43:23 - [2,420] ----D C:\ProgramData\TmForever
O43 - CFD: 16/05/2012 - 12:37:08 - [25,481] ----D C:\ProgramData\TrackMania
O43 - CFD: 22/05/2012 - 17:59:21 - [3,593] ----D C:\ProgramData\WebcamMax
O43 - CFD: 22/05/2012 - 16:38:16 - [0,248] ----D C:\ProgramData\Zylom
O43 - CFD: 21/05/2012 - 17:22:41 - [0] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 04/06/2012 - 14:43:14 - [4,677] ----D C:\Users\SBELENNE\AppData\Roaming\Adobe
O43 - CFD: 21/05/2012 - 17:33:19 - [3,675] ----D C:\Users\SBELENNE\AppData\Roaming\Apple Computer
O43 - CFD: 23/05/2012 - 17:49:58 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\AVS4YOU
O43 - CFD: 15/05/2012 - 23:28:07 - [1,545] ----D C:\Users\SBELENNE\AppData\Roaming\BlackBean
O43 - CFD: 26/05/2012 - 11:41:42 - [0,001] ----D C:\Users\SBELENNE\AppData\Roaming\Canneverbe Limited
O43 - CFD: 24/06/2012 - 17:45:11 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 24/06/2012 - 17:49:21 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\DMCache
O43 - CFD: 15/06/2012 - 17:06:28 - [0,001] ----D C:\Users\SBELENNE\AppData\Roaming\dvdcss
O43 - CFD: 14/05/2012 - 13:38:43 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\ESET
O43 - CFD: 14/05/2012 - 18:55:47 - [0,006] ----D C:\Users\SBELENNE\AppData\Roaming\FreeArc
O43 - CFD: 22/05/2012 - 16:38:25 - [0,001] ----D C:\Users\SBELENNE\AppData\Roaming\Identities
O43 - CFD: 16/06/2012 - 00:50:24 - [-1294,782] ----D C:\Users\SBELENNE\AppData\Roaming\IDM
O43 - CFD: 14/05/2012 - 13:07:02 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\InstallShield
O43 - CFD: 14/05/2012 - 13:16:44 - [0,001] ----D C:\Users\SBELENNE\AppData\Roaming\Intel Corporation
O43 - CFD: 22/06/2012 - 00:39:51 - [0,641] ----D C:\Users\SBELENNE\AppData\Roaming\IronCode
O43 - CFD: 14/05/2012 - 12:53:30 - [0,001] ----D C:\Users\SBELENNE\AppData\Roaming\Macromedia
O43 - CFD: 24/06/2012 - 15:17:47 - [0,004] ----D C:\Users\SBELENNE\AppData\Roaming\Malwarebytes
O43 - CFD: 12/04/2011 - 11:27:52 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\Media Center Programs
O43 - CFD: 04/06/2012 - 14:43:14 - [4,463] -S--D C:\Users\SBELENNE\AppData\Roaming\Microsoft
O43 - CFD: 05/06/2012 - 16:03:27 - [1,373] ----D C:\Users\SBELENNE\AppData\Roaming\Milestone
O43 - CFD: 14/05/2012 - 13:51:24 - [18,317] ----D C:\Users\SBELENNE\AppData\Roaming\Mozilla
O43 - CFD: 16/05/2012 - 00:11:39 - [0,013] ----D C:\Users\SBELENNE\AppData\Roaming\NVIDIA
O43 - CFD: 24/06/2012 - 17:40:09 - [0,079] ----D C:\Users\SBELENNE\AppData\Roaming\vlc
O43 - CFD: 22/05/2012 - 17:52:53 - [0,000] ----D C:\Users\SBELENNE\AppData\Roaming\WebcamMax
O43 - CFD: 14/05/2012 - 13:53:00 - [0,000] ----D C:\Users\SBELENNE\AppData\Roaming\WinRAR
O43 - CFD: 22/05/2012 - 16:38:25 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\Zylom
O43 - CFD: 04/06/2012 - 14:43:14 - [14,553] ----D C:\Users\SBELENNE\AppData\Local\Adobe
O43 - CFD: 02/06/2012 - 12:46:37 - [0] ----D C:\Users\SBELENNE\AppData\Local\Apple
O43 - CFD: 06/06/2012 - 00:15:36 - [10,340] ----D C:\Users\SBELENNE\AppData\Local\Apple Computer
O43 - CFD: 14/05/2012 - 12:43:33 - [0] ----D C:\Users\SBELENNE\AppData\Local\Application Data
O43 - CFD: 22/06/2012 - 12:21:41 - [0,011] ----D C:\Users\SBELENNE\AppData\Local\Black_Tree_Gaming
O43 - CFD: 16/06/2012 - 01:15:00 - [4,495] ----D C:\Users\SBELENNE\AppData\Local\Diagnostics
O43 - CFD: 31/05/2012 - 23:21:49 - [1138,676] ----D C:\Users\SBELENNE\AppData\Local\ESET
O43 - CFD: 13/06/2012 - 19:53:38 - [0,094] ----D C:\Users\SBELENNE\AppData\Local\FlatOut Ultimate Carnage
O43 - CFD: 14/05/2012 - 12:43:33 - [0] ----D C:\Users\SBELENNE\AppData\Local\Historique
O43 - CFD: 12/06/2012 - 22:53:08 - [0] ----D C:\Users\SBELENNE\AppData\Local\Macromedia
O43 - CFD: 20/06/2012 - 12:08:42 - [23,611] ----D C:\Users\SBELENNE\AppData\Local\Micro Application
O43 - CFD: 13/06/2012 - 19:53:47 - [24,326] ----D C:\Users\SBELENNE\AppData\Local\Microsoft
O43 - CFD: 20/06/2012 - 12:15:32 - [0,003] ----D C:\Users\SBELENNE\AppData\Local\Micro_Application
O43 - CFD: 31/05/2012 - 16:11:13 - [44,110] ----D C:\Users\SBELENNE\AppData\Local\Mozilla
O43 - CFD: 05/06/2012 - 15:42:03 - [0] ----D C:\Users\SBELENNE\AppData\Local\Paint.NET
O43 - CFD: 22/06/2012 - 12:22:07 - [0,001] ----D C:\Users\SBELENNE\AppData\Local\Skyrim
O43 - CFD: 24/06/2012 - 17:58:41 - [0,001] ----D C:\Users\SBELENNE\AppData\Local\Temp
O43 - CFD: 14/05/2012 - 12:43:33 - [0] ----D C:\Users\SBELENNE\AppData\Local\Temporary Internet Files
O43 - CFD: 22/06/2012 - 14:28:13 - [50,063] ----D C:\Users\SBELENNE\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/06/2012 - 01:37:07 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Activision
O43 - CFD: 14/05/2012 - 16:37:11 - [0,000] R---D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/05/2012 - 17:48:59 - [0,001] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 13/06/2012 - 19:39:55 - [0,003] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Empire Interactive
O43 - CFD: 25/05/2012 - 19:35:34 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV-Media Player
O43 - CFD: 14/05/2012 - 18:55:46 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeArc
O43 - CFD: 15/05/2012 - 13:54:43 - [0] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/05/2012 - 13:53:45 - [0,006] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/07/2009 - 06:49:38 - [0,001] R---D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 24/06/2012 - 14:52:21 - [0] R---D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 14/05/2012 - 13:52:52 - [0,003] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 22/05/2012 - 16:38:16 - [0,000] ----D C:\Users\SBELENNE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zylom Games
O43 - CFD: 16/06/2012 - 01:11:36 - [7,091] ----D C:\Program Files (x86)\3D Live Pool PC Game
O43 - CFD: 16/06/2012 - 01:36:33 - [559,666] ----D C:\Program Files (x86)\Activision
O43 - CFD: 04/06/2012 - 14:41:10 - [122,146] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 21/05/2012 - 17:20:54 - [2,201] ----D C:\Program Files (x86)\Apple Software Update
O43 - CFD: 16/06/2012 - 01:16:36 - [636,643] ----D C:\Program Files (x86)\Artefacts Studio
O43 - CFD: 22/06/2012 - 16:19:49 - [463,684] ----D C:\Program Files (x86)\Atari
O43 - CFD: 20/06/2012 - 12:05:41 - [864,798] ----D C:\Program Files (x86)\Avanquest
O43 - CFD: 20/06/2012 - 12:10:22 - [2,746] ----D C:\Program Files (x86)\Avanquest update
O43 - CFD: 23/05/2012 - 17:49:01 - [64,150] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 21/05/2012 - 17:31:30 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 26/05/2012 - 11:41:39 - [12,770] ----D C:\Program Files (x86)\CDBurnerXP
O43 - CFD: 14/05/2012 - 13:07:37 - [3,432] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 24/05/2012 - 12:59:01 - [305,977] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 16/06/2012 - 01:27:02 - [1389,444] ----D C:\Program Files (x86)\Crash Time 4 - The Syndicate
O43 - CFD: 13/06/2012 - 19:30:13 - [24,459] ----D C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 13/06/2012 - 19:34:19 - [280,465] ----D C:\Program Files (x86)\Empire Interactive
O43 - CFD: 25/05/2012 - 19:35:51 - [3,579] ----D C:\Program Files (x86)\FLV-Media Player
O43 - CFD: 14/05/2012 - 18:55:47 - [29,247] ----D C:\Program Files (x86)\FreeArc
O43 - CFD: 22/06/2012 - 16:19:50 - [150,194] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/06/2012 - 16:54:52 - [35,446] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/05/2012 - 13:53:52 - [9,391] ----D C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 13/06/2012 - 03:22:08 - [6,169] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 21/05/2012 - 17:32:33 - [120,831] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 15/05/2012 - 14:23:32 - [93,354] ----D C:\Program Files (x86)\Java
O43 - CFD: 22/06/2012 - 19:26:24 - [161,961] ----D C:\Program Files (x86)\JDownloader
O43 - CFD: 15/05/2012 - 19:19:48 - [-1949,422] ----D C:\Program Files (x86)\KONAMI
O43 - CFD: 14/05/2012 - 12:52:43 - [6,206] ----D C:\Program Files (x86)\ma-config.com
O43 - CFD: 24/06/2012 - 15:17:43 - [11,554] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 16/06/2012 - 01:26:04 - [10,745] ----D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 15/05/2012 - 21:39:13 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 05/06/2012 - 15:49:58 - [-1231,424] ----D C:\Program Files (x86)\Milestone
O43 - CFD: 30/05/2012 - 04:47:26 - [426,628] ----D C:\Program Files (x86)\Mindscape
O43 - CFD: 17/06/2012 - 15:47:30 - [37,206] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 18/06/2012 - 11:18:06 - [0,195] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 22/06/2012 - 02:06:25 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 13/06/2012 - 16:57:46 - [118,425] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 15/05/2012 - 14:24:24 - [33,186] ----D C:\Program Files (x86)\Oracle
O43 - CFD: 16/06/2012 - 01:10:47 - [178,144] ----D C:\Program Files (x86)\Petank Party
O43 - CFD: 21/05/2012 - 17:28:21 - [72,431] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 14/05/2012 - 13:08:42 - [3,210] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,349] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 22/06/2012 - 12:26:29 - [230,851] ----D C:\Program Files (x86)\SKIRYN
O43 - CFD: 28/05/2012 - 17:13:45 - [1216,838] ----D C:\Program Files (x86)\Sonic the Hedgehog 4 - Episode II
O43 - CFD: 14/05/2012 - 13:09:07 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 16/06/2012 - 01:18:46 - [360,001] ----D C:\Program Files (x86)\The Adventure Company
O43 - CFD: 17/06/2012 - 15:32:27 - [1280,806] ----D C:\Program Files (x86)\The Game Creators
O43 - CFD: 14/05/2012 - 16:26:06 - [727,799] ----D C:\Program Files (x86)\TmNationsForever
O43 - CFD: 16/05/2012 - 01:44:20 - [1703,916] ----D C:\Program Files (x86)\TmUnitedForever
O43 - CFD: 15/05/2012 - 14:00:47 - [1279,054] ----D C:\Program Files (x86)\TrackMania United
O43 - CFD: 16/06/2012 - 01:40:39 - [1809,394] ----D C:\Program Files (x86)\Ubisoft
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 13/06/2012 - 17:23:59 - [9,935] ----D C:\Program Files (x86)\Veetle
O43 - CFD: 14/05/2012 - 14:11:42 - [88,797] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 22/05/2012 - 17:52:02 - [46,489] ----D C:\Program Files (x86)\WebcamMax
O43 - CFD: 12/04/2011 - 11:16:36 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - 11:16:36 - [5,895] ----D C:\Program Files (x86)\Windows Mail
O43 - CFD: 12/04/2011 - 11:16:36 - [4,791] ----D C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 11:16:36 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 11:16:36 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 06/06/2012 - 15:14:14 - [-702,162] ----D C:\Program Files (x86)\Worms Reloaded
O43 - CFD: 22/05/2012 - 16:38:14 - [20,229] ----D C:\Program Files (x86)\Zylom Games
O43 - CFD: 04/06/2012 - 14:41:13 - [6,046] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 21/05/2012 - 17:32:19 - [105,239] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 23/05/2012 - 17:48:49 - [92,263] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 14/05/2012 - 13:08:30 - [5,235] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 14/05/2012 - 13:16:44 - [0,012] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 15/05/2012 - 14:24:40 - [1,181] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 15/05/2012 - 14:25:59 - [1,962] ----D C:\Program Files (x86)\Common Files\Metaboli
O43 - CFD: 16/06/2012 - 01:11:05 - [19,567] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/05/2012 - 13:06:10 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 22/05/2012 - 02:24:19 - [25,314] ----D C:\Program Files (x86)\Common Files\snp2std
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 14/05/2012 - 16:33:08 - [9,771] ----D C:\Program Files (x86)\Common Files\System
~ Scan Program Folder in 00mn 28s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.8C13088ACCBAB915221C46F6052DC5F0] - 24/06/2012 - 16:52:45 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1842129]
O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 24/06/2012 - 16:50:07 ---A- . (...) -- C:\Windows\setupact.log [56]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/06/2012 - 16:50:07 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.F6999DADE0A2C63FBFB0469294B55D56] - 24/06/2012 - 16:50:06 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [348312]
O44 - LFC:[MD5.64AE46C2836F87BAA5473A5D47AA01F1] - 24/06/2012 - 16:50:03 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.34DC37D35DE5051960B93EC3B5E17617] - 24/06/2012 - 13:59:21 ---A- . (...) -- C:\TDSSKiller.2.7.41.0_24.06.2012_14.58.43_log.txt [127636]
O44 - LFC:[MD5.5E0CD4AE3FF9B2AA657FBCC692548DAA] - 22/06/2012 - 15:16:13 . (.NVIDIA Corporation - NVIDIA Video Decoder MFT, Version 301.42.) -- C:\Windows\System32\perfc009.dat [364352]]]]]
O44 - LFC:[MD5.BF5318759A816D19A63346F918435272] - 22/06/2012 - 15:16:13 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1661710]
O44 - LFC:[MD5.5E0CD4AE3FF9B2AA657FBCC692548DAA] - 22/06/2012 - 15:16:13 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [120870]
O44 - LFC:[MD5.9F7266D26E8C7B332EC5D76556B11B6F] - 22/06/2012 - 15:16:13 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [148574]
O44 - LFC:[MD5.C06A020D057DE68092C4CD82178689B0] - 22/06/2012 - 15:16:13 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [651938]
O44 - LFC:[MD5.99EC02466F758380504D4F984DA0582B] - 22/06/2012 - 15:16:13 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [745056]
O44 - LFC:[MD5.BF5318759A816D19A63346F918435272] - 22/06/2012 - 15:16:13 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1661710]
O44 - LFC:[MD5.9F1871743384288A0D13EF1FBFBFB164] - 13/06/2012 - 15:56:24 . (.NVIDIA Corporation - NVIDIA Video Decoder MFT, Version 301.42.) -- C:\Windows\System32\nvhdap64.dll [364352]]
O44 - LFC:[MD5.EF8979B2B8802D7372F37529C4C1A094] - 13/06/2012 - 15:56:24 . (.NVIDIA Corporation - NVIDIA Video Decoder MFT, Version 301.42.) -- C:\Windows\System32\nvinitx.dll [364352]]]
O44 - LFC:[MD5.B521C917323C51F858F349346A760369] - 13/06/2012 - 15:56:24 . (.NVIDIA Corporation - NVIDIA Video Decoder MFT, Version 301.42.) -- C:\Windows\System32\nvoglv64.dll [364352]]]]
O44 - LFC:[MD5.763C6C130FEE93EEB0CB3DFB365F3259] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 301.42.) -- C:\Windows\SysNative\nvcuda.dll [8139072]
O44 - LFC:[MD5.763C6C130FEE93EEB0CB3DFB365F3259] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 301.42.) -- C:\Windows\System32\nvcuda.dll [8139072]
O44 - LFC:[MD5.27A7461D26E098E4CDC9902D581ABAAA] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 301.4.) -- C:\Windows\SysNative\nvcuvid.dll [2681664]
O44 - LFC:[MD5.27A7461D26E098E4CDC9902D581ABAAA] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 301.4.) -- C:\Windows\System32\nvcuvid.dll [2681664]
O44 - LFC:[MD5.91698A30542A6443421E629954DD3A92] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 301.42.) -- C:\Windows\SysNative\nvcuvenc.dll [2881856]
O44 - LFC:[MD5.91698A30542A6443421E629954DD3A92] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Encoder, Version 301.42.) -- C:\Windows\System32\nvcuvenc.dll [2881856]
O44 - LFC:[MD5.B521C917323C51F858F349346A760369] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\SysNative\nvoglv64.dll [25743168]
O44 - LFC:[MD5.C1F84FDC305AC75197F653B340F1645E] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 301.42.) -- C:\Windows\SysNative\nvcompiler.dll [25248064]
O44 - LFC:[MD5.C1F84FDC305AC75197F653B340F1645E] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 301.42.) -- C:\Windows\System32\nvcompiler.dll [25248064]
O44 - LFC:[MD5.9F1871743384288A0D13EF1FBFBFB164] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\SysNative\nvhdap64.dll [31040]
O44 - LFC:[MD5.5087C9C50C40919D0CDDB2D7502B8BC2] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA Video Decoder MFT, Version 301.42.) -- C:\Windows\SysNative\nvdecodemft.dll [364352]
O44 - LFC:[MD5.5087C9C50C40919D0CDDB2D7502B8BC2] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA Video Decoder MFT, Version 301.42.) -- C:\Windows\System32\nvdecodemft.dll [364352]
O44 - LFC:[MD5.EF8979B2B8802D7372F37529C4C1A094] - 13/06/2012 - 15:56:24 ---A- . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 301.) -- C:\Windows\SysNative\nvinitx.dll [246592]
O44 - LFC:[MD5.53E83F1F6CF9D62F32801CF66D8352A8] - 01/05/2012 - 06:40:20 . (...) -- C:\Windows\System32\profsvc.dll [1661710]]
O44 - LFC:[MD5.6D5DCC1579B3961D791ABDE286A1CB5E] - 26/04/2012 - 06:41:56 . (...) -- C:\Windows\System32\rdpwsx.dll [1661710]]]]
O44 - LFC:[MD5.5B236296E233CAA6BF86BE0C6501A224] - 26/04/2012 - 06:41:55 . (...) -- C:\Windows\System32\rdpcorekmts.dll [1661710]]]
~ Scan Files in 00mn 05s

---\\ Contrôle du Safe Boot (CSB) (O49) (None)

---\\ MountPoints2 Shell Key (O51) (None)

---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.9F66C4BD06334BB772317C438644EF74] - 25/01/2007 - 17:48:34 ---A- . (.Pas de propriétaire - USB2.0 PC Camera driver.) -- C:\Windows\SysWOW64\drivers\sncamd.sys [25472]
~ Scan Drivers in 00mn 00s

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
~ Scan Keys in 00mn 00s

---\\ Start Menu Internet (O68) (None)

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s

---\\ Recherche des services démarrés par Svchost (O83) (None)

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.BA08C02A209407416793D716E732E02C] [SPRF][17/06/2012] (...) -- C:\Users\SBELENNE\Desktop\T3DGMInstaller.exe [317590904]
~ Scan Files in 00mn 03s

End of the scan (544 lines in 00mn 53s)(0)

ET VOICI LE RAPPORT TDSSKiller :

18:03:43.0254 1816 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
18:03:43.0360 1816 ============================================================
18:03:43.0360 1816 Current date / time: 2012/06/24 18:03:43.0360
18:03:43.0360 1816 SystemInfo:
18:03:43.0360 1816
18:03:43.0360 1816 OS Version: 6.1.7601 ServicePack: 1.0
18:03:43.0360 1816 Product type: Workstation
18:03:43.0360 1816 ComputerName: SBELENNE-PC
18:03:43.0361 1816 UserName: SBELENNE
18:03:43.0361 1816 Windows directory: C:\Windows
18:03:43.0361 1816 System windows directory: C:\Windows
18:03:43.0361 1816 Running under WOW64
18:03:43.0361 1816 Processor architecture: Intel x64
18:03:43.0361 1816 Number of processors: 8
18:03:43.0361 1816 Page size: 0x1000
18:03:43.0361 1816 Boot type: Normal boot
18:03:43.0361 1816 ============================================================
18:03:43.0689 1816 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:03:43.0698 1816 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:03:43.0708 1816 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:03:43.0718 1816 Drive \Device\Harddisk3\DR3 - Size: 0x1CD800000 (7.21 Gb), SectorSize: 0x200, Cylinders: 0x3AD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:03:43.0738 1816 ============================================================
18:03:43.0738 1816 \Device\Harddisk0\DR0:
18:03:43.0738 1816 MBR partitions:
18:03:43.0738 1816 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x4E800, BlocksNum 0x187F000
18:03:43.0738 1816 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18CD800, BlocksNum 0x72E38800
18:03:43.0738 1816 \Device\Harddisk1\DR1:
18:03:43.0738 1816 MBR partitions:
18:03:43.0738 1816 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3D08FC7E
18:03:43.0738 1816 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3D08FCBD, BlocksNum 0x12C845DF
18:03:43.0738 1816 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x4FD1429C, BlocksNum 0x249F1725
18:03:43.0738 1816 \Device\Harddisk2\DR2:
18:03:43.0738 1816 MBR partitions:
18:03:43.0738 1816 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
18:03:43.0738 1816 \Device\Harddisk3\DR3:
18:03:43.0738 1816 MBR partitions:
18:03:43.0738 1816 \Device\Harddisk3\DR3\Partition0: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0xE6A000
18:03:43.0738 1816 ============================================================
18:03:43.0818 1816 C: <-> \Device\Harddisk0\DR0\Partition1
18:03:43.0838 1816 E: <-> \Device\Harddisk1\DR1\Partition0
18:03:43.0848 1816 F: <-> \Device\Harddisk2\DR2\Partition0
18:03:43.0898 1816 G: <-> \Device\Harddisk1\DR1\Partition1
18:03:43.0928 1816 H: <-> \Device\Harddisk1\DR1\Partition2
18:03:43.0928 1816 ============================================================
18:03:43.0928 1816 Initialize success
18:03:43.0928 1816 ============================================================
18:03:55.0409 4764 ============================================================
18:03:55.0409 4764 Scan started
18:03:55.0409 4764 Mode: Manual; SigCheck; TDLFS;
18:03:55.0409 4764 ============================================================
18:03:56.0022 4764 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:03:56.0130 4764 1394ohci - ok
18:03:56.0214 4764 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:03:56.0232 4764 ACPI - ok
18:03:56.0266 4764 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:03:56.0342 4764 AcpiPmi - ok
18:03:56.0415 4764 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:03:56.0426 4764 AdobeARMservice - ok
18:03:56.0541 4764 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:03:56.0556 4764 AdobeFlashPlayerUpdateSvc - ok
18:03:56.0634 4764 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
18:03:56.0657 4764 adp94xx - ok
18:03:56.0719 4764 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
18:03:56.0745 4764 adpahci - ok
18:03:56.0788 4764 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
18:03:56.0804 4764 adpu320 - ok
18:03:56.0841 4764 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:03:56.0962 4764 AeLookupSvc - ok
18:03:57.0056 4764 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:03:57.0126 4764 AFD - ok
18:03:57.0170 4764 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:03:57.0183 4764 agp440 - ok
18:03:57.0204 4764 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:03:57.0258 4764 ALG - ok
18:03:57.0294 4764 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:03:57.0307 4764 aliide - ok
18:03:57.0322 4764 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:03:57.0334 4764 amdide - ok
18:03:57.0365 4764 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
18:03:57.0396 4764 AmdK8 - ok
18:03:57.0413 4764 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
18:03:57.0439 4764 AmdPPM - ok
18:03:57.0488 4764 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:03:57.0502 4764 amdsata - ok
18:03:57.0538 4764 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
18:03:57.0555 4764 amdsbs - ok
18:03:57.0576 4764 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:03:57.0584 4764 amdxata - ok
18:03:57.0621 4764 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:03:57.0774 4764 AppID - ok
18:03:57.0821 4764 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:03:57.0886 4764 AppIDSvc - ok
18:03:57.0931 4764 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:03:57.0992 4764 Appinfo - ok
18:03:58.0069 4764 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:03:58.0080 4764 Apple Mobile Device - ok
18:03:58.0110 4764 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
18:03:58.0124 4764 arc - ok
18:03:58.0144 4764 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
18:03:58.0158 4764 arcsas - ok
18:03:58.0279 4764 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:03:58.0291 4764 aspnet_state - ok
18:03:58.0318 4764 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:03:58.0378 4764 AsyncMac - ok
18:03:58.0441 4764 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:03:58.0454 4764 atapi - ok
18:03:58.0529 4764 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:03:58.0604 4764 AudioEndpointBuilder - ok
18:03:58.0612 4764 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:03:58.0637 4764 AudioSrv - ok
18:03:58.0692 4764 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:03:58.0783 4764 AxInstSV - ok
18:03:58.0868 4764 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
18:03:58.0978 4764 b06bdrv - ok
18:03:59.0025 4764 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:03:59.0085 4764 b57nd60a - ok
18:03:59.0277 4764 BCM43XX (2d659b569a76cdb83b815675a80d7096) C:\Windows\system32\DRIVERS\bcmwl664.sys
18:03:59.0379 4764 BCM43XX - ok
18:03:59.0484 4764 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:03:59.0540 4764 BDESVC - ok
18:03:59.0579 4764 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:03:59.0636 4764 Beep - ok
18:03:59.0712 4764 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:03:59.0809 4764 BITS - ok
18:03:59.0838 4764 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:03:59.0868 4764 blbdrive - ok
18:03:59.0982 4764 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
18:04:00.0012 4764 Bonjour Service - ok
18:04:00.0069 4764 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:04:00.0091 4764 bowser - ok
18:04:00.0130 4764 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
18:04:00.0162 4764 BrFiltLo - ok
18:04:00.0178 4764 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
18:04:00.0196 4764 BrFiltUp - ok
18:04:00.0249 4764 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:04:00.0303 4764 Browser - ok
18:04:00.0339 4764 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:04:00.0400 4764 Brserid - ok
18:04:00.0419 4764 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:04:00.0449 4764 BrSerWdm - ok
18:04:00.0470 4764 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:04:00.0502 4764 BrUsbMdm - ok
18:04:00.0506 4764 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:04:00.0524 4764 BrUsbSer - ok
18:04:00.0540 4764 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
18:04:00.0559 4764 BTHMODEM - ok
18:04:00.0614 4764 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:04:00.0657 4764 bthserv - ok
18:04:00.0701 4764 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:04:00.0754 4764 cdfs - ok
18:04:00.0798 4764 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:04:00.0807 4764 cdrom - ok
18:04:00.0828 4764 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:04:00.0874 4764 CertPropSvc - ok
18:04:00.0917 4764 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
18:04:00.0942 4764 circlass - ok
18:04:00.0985 4764 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:04:01.0004 4764 CLFS - ok
18:04:01.0083 4764 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:04:01.0095 4764 clr_optimization_v2.0.50727_32 - ok
18:04:01.0170 4764 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:04:01.0194 4764 clr_optimization_v2.0.50727_64 - ok
18:04:01.0287 4764 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:04:01.0299 4764 clr_optimization_v4.0.30319_32 - ok
18:04:01.0321 4764 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:04:01.0334 4764 clr_optimization_v4.0.30319_64 - ok
18:04:01.0380 4764 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
18:04:01.0405 4764 CmBatt - ok
18:04:01.0423 4764 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:04:01.0435 4764 cmdide - ok
18:04:01.0507 4764 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:04:01.0548 4764 CNG - ok
18:04:01.0586 4764 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
18:04:01.0599 4764 Compbatt - ok
18:04:01.0628 4764 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
18:04:01.0656 4764 CompositeBus - ok
18:04:01.0674 4764 COMSysApp - ok
18:04:01.0699 4764 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
18:04:01.0710 4764 crcdisk - ok
18:04:01.0754 4764 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:04:01.0802 4764 CryptSvc - ok
18:04:01.0855 4764 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:04:01.0916 4764 DcomLaunch - ok
18:04:02.0032 4764 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:04:02.0072 4764 defragsvc - ok
18:04:02.0123 4764 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:04:02.0177 4764 DfsC - ok
18:04:02.0222 4764 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:04:02.0306 4764 Dhcp - ok
18:04:02.0337 4764 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:04:02.0395 4764 discache - ok
18:04:02.0440 4764 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
18:04:02.0454 4764 Disk - ok
18:04:02.0496 4764 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:04:02.0566 4764 Dnscache - ok
18:04:02.0587 4764 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:04:02.0663 4764 dot3svc - ok
18:04:02.0703 4764 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:04:02.0760 4764 DPS - ok
18:04:02.0892 4764 driverhardwarev2x64 (b28c853770c995552b9f5760d8245f44) C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys
18:04:02.0919 4764 driverhardwarev2x64 - ok
18:04:02.0992 4764 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:04:03.0025 4764 drmkaud - ok
18:04:03.0074 4764 dtsoftbus01 (d3d64cf7b2bceaa34a270f45a3fffb36) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:04:03.0090 4764 dtsoftbus01 - ok
18:04:03.0170 4764 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:04:03.0235 4764 DXGKrnl - ok
18:04:03.0309 4764 eamonm (13533557d01b88c83110d5cf749f14d7) C:\Windows\system32\DRIVERS\eamonm.sys
18:04:03.0323 4764 eamonm - ok
18:04:03.0370 4764 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:04:03.0421 4764 EapHost - ok
18:04:03.0560 4764 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\dri
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Re,
Les deux rapports sont incomplets!
Héberge les comme suit :
* Rends toi sur pjjoint.malekal.com
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux héberger et clique sur Ouvrir
* Clique sur le bouton Envoyer
* Un message de confirmation s'affiche (L'upload a réussi ! - Le lien à transmettre à vos correspondant pour visualiser le fichier est : https://pjjoint.malekal.com/files.php?id=df5ea299241015

* Copie le lien dans ta prochaine réponse.
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Tukif bloqué ? Solutions express !
Paparazzi -
bzh60 -

5 réponses
Cacher une commande amazon en 2025
Matthew5 -
Adraen -

25 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses