Pc bloqué : navigation vers la page web annul

Résolu
Bibou -  
Bibou1981 Messages postés 38 Statut Membre -
Bonjour,

Je vous écris de mon iPad car hier soir mon ordi à eu un gros soucis. Des messages d'erreur comme quoi un fichier ne pouvait pas correctement s'installer s'affichait. À chaque fois que je le ferai, il réapparaissait. Puis d'un coup, lordi à ferme un à un les programme ouvert puis page toute blanche.
J'ai voulu le redémarrer en mode sans échec et la, page blanche avec l'intitulé du forum sur la page web annulée...
J'ai vu qu'il y avait des réponses assez explicites (merci Nanard pour tant de simplicité), je suis donc en train de faire tout le truc avec OTLPE depuis un ordi sain, et ensuite je rentre chez moi afin de tester ceci sur ma machine.
Comme il faut à un moment publier le rapport qu'il s'affichera, je viens donc déjà vers vous pour vous demander de l'aide.
Merci d'avance pour vos réponses,
Maud

49 réponses

  • 1
  • 2
  • 3
Résumé de la discussion

Le sujet porte sur un ordinateur victime d’erreurs d’installation, de fermeture soudaine des programmes et d’un écran blanc au redémarrage, avec diagnostic en mode sans échec et recours à OTLPE. Des éléments identifient une détection d’Adware.Boxore et des tentatives de quarantaine, suivies de recommandations sur les mises à jour, dont Flash, et sur la vérification des rapports générés. Les conseils essentiels portent sur la désinfection via des outils appropriés, l’arrêt des programmes indésirables et la vérification des mises à jour système, afin d’éviter les blocages futurs. D'autres éléments indiquent que la réussite du nettoyage dépend d'un poste client propre, de la précision des rapports des outils utilisés et du respect des étapes recommandées, afin d'éviter de réintroduire des menaces.

Généré automatiquement par IA
sur la base des meilleures réponses
  1. Utilisateur anonyme
     
    Bonjour

    Poste ce rapport OTLPE.
    Pour transmettre le rapport clique sur ce lien :

    http://pjjoint.malekal.com/

    https://www.cjoint.com/

    Clique sur Parcourir et cherche le fichier : Nom_complet_du_fichier (Fichier demandé )
    Clique sur Ouvrir.

    Clique sur "Cliquez ici pour déposer le fichier".

    Un lien de cette forme :

    http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt

    est ajouté dans la page.

    Copie ce lien dans ta réponse.

    @+
    0
  2. Bibou1981 Messages postés 38 Statut Membre
     
    Ok merci beaucoup. Je vais essayer.
    Pour l'instant, le scan dure toujours. Cest normal que ça soit aussi long ?
    0
    1. Utilisateur anonyme
       
      Depuis combien de temps ce scan?
      0
    2. Bibou1981 Messages postés 38 Statut Membre
       
      Une bonne demi heure je crois environ.
      0
  3. Utilisateur anonyme
     
    Re

    Arrête le et relance comme ceci:

    * Double-clique sur l'icone OTLPE
    * quand demandé "Do you wish to load the remote registry", select Yes
    * Tu choisis ta session
    * Sous Vista et Seven il faut développer l'arborescence du lecteur C qui par défaut embarque Windows et arriver sur le dossier Windows.
    Rappel :Tutorial ici : https://forum.malekal.com/viewtopic.php?t=23453&start=
    Ensuite
    * sous Custom Scan box
    1) copie_colle le contenu du cadre ci dessous:

    netsvcs
    msconfig
    safebootminimal
    safebootnetwork
    activex
    drivers32
    %ALLUSERSPROFILE%\Application Data\*.
    %ALLUSERSPROFILE%\Application Data\*.exe /s
    %SYSTEMDRIVE%\*.exe
    /md5start
    eventlog.dll
    scecli.dll
    netlogon.dll
    cngaudit.dll
    sceclt.dll
    ntelogon.dll
    logevent.dll
    iaStor.sys
    nvstor.sys
    atapi.sys
    cdrom.sys
    disk.sys
    ndis.sys
    mountmgr.sys
    aec.sys
    rasacd.sys
    mrxsmb10.sys
    mrxsmb20.sys
    termdd.sys
    mrxsmb.sys
    win32k.sys
    storport.sys
    IdeChnDr.sys
    viasraid.sys
    explorer.exe
    winlogon.exe
    wininit.exe
    AGP440.sys
    vaxscsi.sys
    nvatabus.sys
    viamraid.sys
    nvata.sys
    nvgts.sys
    iastorv.sys
    ViPrt.sys
    eNetHook.dll
    ahcix86.sys
    KR10N.sys
    nvstor32.sys
    ahcix86s.sys
    nvrd32.sys
    /md5stop
    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\System32\config\*.sav
    CREATERESTOREPOINT


    * copie colle ce texte dans un fichier texte|bloc note que tu enregistres sur clé usb que tu brancheras sous reatogo tu pourras alors facilement le copier\coller.

    * 2) Clic Run Scan pour démarrer le scan.
    * Une fois terminé , le fichier se trouve là C:\OTL.txt
    * Copie_colle le contenu dans ta prochaine réponse.

    @+
    0
  4. Bibou1981 Messages postés 38 Statut Membre
     
    Je ne peux pas l'arrêter...
    Et je suis sur un iPad donc pour mettre clé USB, je suis un peu embêter lol.
    Je vais essayer brancher ordi portable.
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. Bibou1981 Messages postés 38 Statut Membre
     
    a aucun moment il ne me propose do you wish to load the remote registry.
    je nai que do you wish to load remote user profile for scanning
    je choisi bien dans l,arborescence windows dans c: et c'est tout ?
    0
    1. Utilisateur anonyme
       
      c'est bon ;-)
      0
    2. Bibou1981 Messages postés 38 Statut Membre
       
      j,ai directement la page qui s'ouvre sur "browse for folder".
      choose windows directory.
      ps je suis sous vista.
      0
  7. Bibou1981 Messages postés 38 Statut Membre
     
    c'est bon j'ai lancé le scan.
    0
  8. Bibou1981 Messages postés 38 Statut Membre
     
    ca doit prrendre combien de temps ?
    0
    1. Utilisateur anonyme
       
      Je ne sais pas
      Un peu de patience ;-)
      0
    2. Bibou1981 Messages postés 38 Statut Membre
       
      Pardon lol
      Mais c'est que je dois m'absenter une heure et que je ne sais pas si quelqu'un pourra toujours m'aider a mon retour...
      0
  9. Bibou1981 Messages postés 38 Statut Membre
     
    Je laisse tourner le scan.
    Je ne sais pas si vous serez encore la dans une heure, mais en tout cas merci pour votre aide !
    0
  10. Bibou1981 Messages postés 38 Statut Membre
     
    Le scan à fini.
    Excuse moi je suis peut être débile, mais je ne vois pas comment copier le rapport s'il est sur mon ordi infecté et te le copier ici sur l'ipad.
    J'ai bien vu les deux liens, mais je ne peux pas joindre le fichier.
    0
  11. Bibou1981 Messages postés 38 Statut Membre
     
    OTL logfile created on: 9/8/2012 6:29:30 PM - Run
    OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
    Windows Vista (TM) Home Basic Service Pack 2 (Version = 6.0.6002) - Type = System
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

    3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 87.00% Memory free
    3.00 Gb Paging File | 3.00 Gb Available in Paging File | 96.00% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
    Drive C: | 222.75 Gb Total Space | 6.58 Gb Free Space | 2.96% Space Free | Partition Type: NTFS
    Drive D: | 10.00 Gb Total Space | 4.98 Gb Free Space | 49.83% Space Free | Partition Type: NTFS
    Drive E: | 488.00 Mb Total Space | 477.05 Mb Free Space | 97.76% Space Free | Partition Type: FAT
    Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

    Computer Name: REATOGO | User Name: SYSTEM
    Boot Mode: Normal | Scan Mode: All users
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
    Using ControlSet: ControlSet003

    [color=#E56717]========== Win32 Services (SafeList) ==========[/color]

    SRV - [2012/09/07 15:47:47 | 000,140,080 | ---- | M] (Boxore OU.) [Auto] -- C:\Program Files\Software\Update\SoftwareUpdate.exe -- (supdate) Software Update Service (supdate)
    SRV - [2012/09/04 05:59:18 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
    SRV - [2012/08/23 05:55:10 | 000,362,008 | ---- | M] (McAfee, Inc.) [On_Demand] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
    SRV - [2012/08/15 12:57:10 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
    SRV - [2012/03/20 07:11:32 | 000,151,880 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe -- (mfevtp)
    SRV - [2012/03/20 07:05:00 | 000,161,632 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
    SRV - [2012/03/20 07:04:32 | 000,166,288 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe -- (McShield)
    SRV - [2011/10/21 10:23:42 | 000,196,176 | ---- | M] (Microsoft Corporation.) [Auto] -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
    SRV - [2011/10/13 12:21:52 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
    SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (MSK80Service)
    SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McProxy)
    SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNASvc)
    SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McNaiAnn)
    SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (mcmscsvc)
    SRV - [2011/01/27 13:28:14 | 000,214,904 | ---- | M] (McAfee, Inc.) [Auto] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc)
    SRV - [2009/10/27 04:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
    SRV - [2009/04/12 05:38:26 | 000,611,664 | ---- | M] (Lavasoft) [Auto] -- C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe -- (aawservice)
    SRV - [2009/02/25 13:17:22 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
    SRV - [2008/10/04 09:58:04 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter)
    SRV - [2008/09/23 18:09:52 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
    SRV - [2008/01/20 22:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
    SRV - [2007/05/31 03:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
    SRV - [2007/05/31 03:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)

    [color=#E56717]========== Driver Services (SafeList) ==========[/color]

    DRV - File not found [Kernel | On_Demand] -- -- (NwlnkFwd)
    DRV - File not found [Kernel | On_Demand] -- -- (NwlnkFlt)
    DRV - File not found [Kernel | On_Demand] -- -- (mfeavfk01)
    DRV - File not found [Kernel | On_Demand] -- -- (IpInIp)
    DRV - File not found [Kernel | On_Demand] -- -- (dgderdrv)
    DRV - File not found [Kernel | On_Demand] -- -- (cpuz132)
    DRV - [2012/02/22 07:29:46 | 000,464,304 | ---- | M] (McAfee, Inc.) [Kernel | Boot] -- C:\Windows\System32\drivers\mfehidk.sys -- (mfehidk)
    DRV - [2012/02/22 07:29:46 | 000,340,920 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mfefirek.sys -- (mfefirek)
    DRV - [2012/02/22 07:29:46 | 000,180,848 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mfeavfk.sys -- (mfeavfk)
    DRV - [2012/02/22 07:29:46 | 000,169,608 | ---- | M] (McAfee, Inc.) [Kernel | System] -- C:\Windows\System32\drivers\mfewfpk.sys -- (mfewfpk)
    DRV - [2012/02/22 07:29:46 | 000,121,544 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mfeapfk.sys -- (mfeapfk)
    DRV - [2012/02/22 07:29:46 | 000,087,656 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mferkdet.sys -- (mferkdet)
    DRV - [2012/02/22 07:29:46 | 000,064,912 | ---- | M] (McAfee, Inc.) [Kernel | System] -- C:\Windows\System32\drivers\mfenlfk.sys -- (mfenlfk)
    DRV - [2012/02/22 07:29:46 | 000,059,456 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\mfebopk.sys -- (mfebopk)
    DRV - [2012/02/22 07:29:46 | 000,057,600 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\cfwids.sys -- (cfwids)
    DRV - [2010/05/01 02:51:28 | 000,036,640 | ---- | M] () [Kernel | On_Demand] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
    DRV - [2010/04/26 22:25:20 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\sscemdm.sys -- (sscemdm)
    DRV - [2010/04/26 22:25:20 | 000,098,560 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\sscebus.sys -- (sscebus) SAMSUNG USB Composite Device V2 driver (WDM)
    DRV - [2010/04/26 22:25:20 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\sscemdfl.sys -- (sscemdfl)
    DRV - [2009/10/06 06:52:50 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
    DRV - [2009/10/06 06:52:34 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
    DRV - [2009/10/06 06:52:34 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
    DRV - [2009/10/06 06:52:34 | 000,007,936 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
    DRV - [2008/08/26 04:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
    DRV - [2008/06/13 07:34:12 | 003,592,704 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)
    DRV - [2008/06/13 07:34:12 | 003,592,704 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
    DRV - [2007/11/05 05:56:58 | 000,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
    DRV - [2007/04/29 04:42:24 | 000,228,224 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel(R)
    DRV - [2006/11/02 03:30:56 | 000,047,104 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp)

    [color=#E56717]========== Standard Registry (SafeList) ==========[/color]

    [color=#E56717]========== Internet Explorer ==========[/color]

    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\Bibou_ON_C\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=dell.msn.com&OCID=DELLDHP&pc=MDDS
    IE - HKU\Bibou_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\Bibou_ON_C\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

    FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\System32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: C:\Program Files\McAfee\MSC\npMcSnFFPl.dll ()
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@www.dlmanager.net/omaha/tools//Software Update;version=8: C:\Program Files\Software\Update\1.2.199.0\npSoftwareOneClick8.dll (Boxore OU.)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009/12/12 06:16:22 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2009/12/30 15:55:57 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{D19CA586-DD6C-4a0a-96F8-14644F340D60}: C:\Program Files\Common Files\McAfee\SystemCore [2012/09/08 04:37:40 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/09/04 05:59:20 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/11/23 04:23:35 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 11.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012/03/08 06:41:02 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 11.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins

    [2012/01/15 04:47:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
    [2012/09/04 05:59:20 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
    [2011/04/14 08:01:38 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\mozilla firefox\components\Scriptff.dll
    [2011/10/03 00:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
    [2012/09/04 05:59:16 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
    [2012/09/04 05:59:16 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
    [2012/09/04 05:59:16 | 000,001,822 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
    [2012/09/04 05:59:16 | 000,001,154 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
    [2012/09/04 05:59:15 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
    [2012/09/04 05:59:15 | 000,000,956 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

    O1 HOSTS File: ([2011/12/21 14:44:43 | 000,000,767 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: ::1 localhost
    O2 - BHO: (Shareaza Web Download Hook) - {0EEDB912-C5FA-486F-8334-57288578C627} - C:\Program Files\Shareaza\RazaWebHook32.dll (Shareaza Development Team)
    O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - File not found
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120627161026.dll (McAfee, Inc.)
    O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
    O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
    O3 - HKU\Bibou_ON_C\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
    O4 - HKLM..\Run: [Boxore Client] C:\Program Files\Boxore\BoxoreClient\boxore.exe (Boxore OU)
    O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
    O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
    O4 - HKLM..\Run: [NeroCheck] C:\Windows\System32\NeroCheck.exe (Ahead Software Gmbh)
    O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKU\Bibou_ON_C..\Run: [] File not found
    O4 - HKU\Bibou_ON_C..\Run: [EPSON Stylus SX200 Series] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_FATIEFE.EXE (SEIKO EPSON CORPORATION)
    O4 - HKU\Bibou_ON_C..\Run: [ISUSPM] C:\ProgramData\Macrovision\FLEXnet Connect\6\ISUSPM.exe (Macrovision Corporation)
    O4 - HKU\Bibou_ON_C..\Run: [KiesTrayAgent] File not found
    O4 - HKU\Bibou_ON_C..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
    O4 - HKU\LocalService_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
    O4 - HKU\NetworkService_ON_C..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
    O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
    O13 - gopher Prefix: missing
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07)
    O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
    O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20 - HKU\Bibou_ON_C Winlogon: Shell - (C:\Users\Bibou\AppData\Roaming\1.exe) - C:\Users\Bibou\AppData\Roaming\1.exe ()
    O20 - Winlogon\Notify\GoToAssist: DllName - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll - C:\Program Files\Citrix\GoToAssist\514\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
    O24 - Desktop WallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: B:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
    O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O34 - HKLM BootExecute: (lsdelete) - C:\Windows\System32\lsdelete.exe ()
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    NetSvcs: FastUserSwitchingCompatibility - File not found
    NetSvcs: Ias - File not found
    NetSvcs: Nla - File not found
    NetSvcs: Ntmssvc - File not found
    NetSvcs: NWCWorkstation - File not found
    NetSvcs: Nwsapagent - File not found
    NetSvcs: SRService - File not found
    NetSvcs: WmdmPmSp - File not found
    NetSvcs: LogonHours - File not found
    NetSvcs: PCAudit - File not found
    NetSvcs: helpsvc - File not found
    NetSvcs: uploadmgr - File not found

    MsConfig - StartUpReg: [b]Adobe Reader Speed Launcher[/b] - hkey= - key= - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
    MsConfig - StartUpReg: [b]iTunesHelper[/b] - hkey= - key= - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
    MsConfig - StartUpReg: [b]NokiaMServer[/b] - hkey= - key= - C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
    MsConfig - StartUpReg: [b]NokiaOviSuite2[/b] - hkey= - key= - C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe (Nokia)
    MsConfig - StartUpReg: [b]PC Suite Tray[/b] - hkey= - key= - C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
    MsConfig - StartUpReg: [b]PDVDDXSrv[/b] - hkey= - key= - C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
    MsConfig - StartUpReg: [b]QuickTime Task[/b] - hkey= - key= - C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
    MsConfig - StartUpReg: [b]RtHDVCpl[/b] - hkey= - key= - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
    MsConfig - StartUpReg: [b]SunJavaUpdateSched[/b] - hkey= - key= - C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
    MsConfig - StartUpReg: [b]Windows Mobile Device Center[/b] - hkey= - key= - C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
    MsConfig - StartUpReg: [b]WMPNSCFG[/b] - hkey= - key= - C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)

    SafeBootMin: aawservice - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe (Lavasoft)
    SafeBootMin: AppMgmt - Service
    SafeBootMin: Base - Driver Group
    SafeBootMin: Boot Bus Extender - Driver Group
    SafeBootMin: Boot file system - Driver Group
    SafeBootMin: File system - Driver Group
    SafeBootMin: Filter - Driver Group
    SafeBootMin: HelpSvc - Service
    SafeBootMin: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
    SafeBootMin: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
    SafeBootMin: NTDS - File not found
    SafeBootMin: PCI Configuration - Driver Group
    SafeBootMin: PNP Filter - Driver Group
    SafeBootMin: Primary disk - Driver Group
    SafeBootMin: sacsvr - Service
    SafeBootMin: SCSI Class - Driver Group
    SafeBootMin: System Bus Extender - Driver Group
    SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
    SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
    SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
    SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
    SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
    SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
    SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
    SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
    SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
    SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
    SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
    SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
    SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
    SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
    SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
    SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
    SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
    SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

    SafeBootNet: aawservice - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe (Lavasoft)
    SafeBootNet: AppMgmt - Service
    SafeBootNet: Base - Driver Group
    SafeBootNet: Boot Bus Extender - Driver Group
    SafeBootNet: Boot file system - Driver Group
    SafeBootNet: File system - Driver Group
    SafeBootNet: Filter - Driver Group
    SafeBootNet: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe (Citrix Online, a division of Citrix Systems, Inc.)
    SafeBootNet: HelpSvc - Service
    SafeBootNet: McMPFSvc - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
    SafeBootNet: mcmscsvc - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe (McAfee, Inc.)
    SafeBootNet: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
    SafeBootNet: Messenger - Service
    SafeBootNet: mfefire - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)
    SafeBootNet: mfefirek - C:\Windows\System32\drivers\mfefirek.sys (McAfee, Inc.)
    SafeBootNet: mfefirek.sys - C:\Windows\System32\drivers\mfefirek.sys (McAfee, Inc.)
    SafeBootNet: mfehidk - C:\Windows\System32\drivers\mfehidk.sys (McAfee, Inc.)
    SafeBootNet: mfehidk.sys - C:\Windows\System32\drivers\mfehidk.sys (McAfee, Inc.)
    SafeBootNet: mfevtp - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe (McAfee, Inc.)
    SafeBootNet: NDIS Wrapper - Driver Group
    SafeBootNet: NetBIOSGroup - Driver Group
    SafeBootNet: NetDDEGroup - Driver Group
    SafeBootNet: Network - Driver Group
    SafeBootNet: NetworkProvider - Driver Group
    SafeBootNet: NTDS - File not found
    SafeBootNet: PCI Configuration - Driver Group
    SafeBootNet: PNP Filter - Driver Group
    SafeBootNet: PNP_TDI - Driver Group
    SafeBootNet: Primary disk - Driver Group
    SafeBootNet: rdsessmgr - Service
    SafeBootNet: sacsvr - Service
    SafeBootNet: SCSI Class - Driver Group
    SafeBootNet: Streams Drivers - Driver Group
    SafeBootNet: System Bus Extender - Driver Group
    SafeBootNet: TDI - Driver Group
    SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
    SafeBootNet: WudfPf - Driver
    SafeBootNet: WudfUsbccidDriver - Driver
    SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
    SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
    SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
    SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
    SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
    SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
    SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
    SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
    SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
    SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
    SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
    SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
    SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
    SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
    SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
    SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
    SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
    SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
    SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
    SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
    SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
    SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

    ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
    ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
    ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
    ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
    ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
    ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
    ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
    ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
    ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
    ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
    ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
    ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
    ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
    ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
    ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
    ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
    ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
    ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
    ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
    ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
    ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
    ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
    ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
    ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
    ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
    ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
    ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

    Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
    Drivers32: msacm.sl_anet - C:\Windows\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
    Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)

    [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

    [2012/09/08 04:40:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
    [2012/09/07 15:59:19 | 000,007,168 | ---- | C] (Microsoft) -- C:\Users\Bibou\AppData\Roaming\883412.exe
    [2012/09/07 15:58:56 | 000,007,168 | ---- | C] (Microsoft) -- C:\Users\Bibou\AppData\Roaming\690303.exe
    [2012/09/07 15:43:21 | 000,000,000 | ---D | C] -- C:\Program Files\Boxore
    [2012/09/07 15:42:24 | 000,000,000 | ---D | C] -- C:\Users\Bibou\AppData\Local\Software
    [2012/09/07 15:42:24 | 000,000,000 | ---D | C] -- C:\Program Files\Software
    [2012/09/04 06:22:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shareaza
    [2012/09/04 05:59:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
    [2012/09/04 05:59:24 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
    [2012/08/20 03:44:43 | 000,000,000 | ---D | C] -- C:\Users\Bibou\Desktop\Voiture
    [2012/08/15 15:54:55 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
    [2012/08/15 15:54:54 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
    [2012/08/15 15:54:54 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
    [2012/08/15 15:54:53 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
    [2012/08/15 15:54:53 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
    [2012/08/15 15:54:53 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
    [2012/08/15 15:54:52 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
    [2012/08/15 15:54:52 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
    [2012/08/15 15:54:18 | 002,047,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
    [2012/08/15 10:05:44 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll

    [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

    [2012/09/08 04:45:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2012/09/08 04:45:03 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    [2012/09/08 04:45:01 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    [2012/09/08 04:40:02 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
    [2012/09/08 04:34:16 | 000,001,068 | ---- | M] () -- C:\Windows\tasks\SoftwareUpdateTaskMachineCore.job
    [2012/09/08 04:32:44 | 3219,312,640 | -HS- | M] () -- C:\hiberfil.sys
    [2012/09/07 16:57:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
    [2012/09/07 16:53:00 | 000,001,072 | ---- | M] () -- C:\Windows\tasks\SoftwareUpdateTaskMachineUA.job
    [2012/09/07 16:04:01 | 000,000,599 | ---- | M] () -- C:\Users\Bibou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ja.lnk
    [2012/09/07 16:03:35 | 000,391,573 | ---- | M] () -- C:\Users\Bibou\AppData\Roaming\1.exe
    [2012/09/07 15:59:19 | 000,007,168 | ---- | M] (Microsoft) -- C:\Users\Bibou\AppData\Roaming\883412.exe
    [2012/09/07 15:58:57 | 000,007,168 | ---- | M] (Microsoft) -- C:\Users\Bibou\AppData\Roaming\690303.exe
    [2012/09/07 10:03:20 | 000,165,888 | ---- | M] () -- C:\Users\Bibou\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2012/09/04 10:03:22 | 000,669,328 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
    [2012/09/04 10:03:22 | 000,586,980 | ---- | M] () -- C:\Windows\System32\perfh009.dat
    [2012/09/04 10:03:22 | 000,123,350 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
    [2012/09/04 10:03:22 | 000,101,052 | ---- | M] () -- C:\Windows\System32\perfc009.dat
    [2012/09/04 06:22:49 | 000,000,892 | ---- | M] () -- C:\Users\Bibou\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shareaza.lnk
    [2012/09/04 06:22:49 | 000,000,000 | ---D | M] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shareaza
    [2012/09/04 06:22:48 | 000,000,868 | ---- | M] () -- C:\Users\Public\Desktop\Shareaza.lnk
    [2012/09/03 06:59:06 | 001,093,632 | ---- | M] () -- C:\Users\Bibou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Avast! Crack-V7.exe
    [2012/08/29 07:34:38 | 000,026,360 | ---- | M] () -- C:\Users\Bibou\Documents\Planning Septembre.pdf
    [2012/08/29 07:28:23 | 000,003,337 | ---- | M] () -- C:\Users\Bibou\Documents\planning septembre.zip
    [2012/08/29 07:21:09 | 000,043,283 | ---- | M] () -- C:\Users\Bibou\Documents\TDS Septembre.pdf
    [2012/08/29 05:27:12 | 000,035,802 | ---- | M] () -- C:\Users\Bibou\Documents\planning septembre.ics
    [2012/08/16 03:16:36 | 000,289,488 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
    [2012/08/15 12:57:09 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
    [2012/08/15 12:57:09 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
    [2012/08/14 02:56:00 | 000,013,247 | ---- | M] () -- C:\Users\Bibou\Documents\Voiture.odt

    [color=#E56717]========== Files Created - No Company Name ==========[/color]

    [2012/09/07 16:22:02 | 3219,312,640 | -HS- | C] () -- C:\hiberfil.sys
    [2012/09/07 16:04:01 | 000,000,599 | ---- | C] () -- C:\Users\Bibou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ja.lnk
    [2012/09/07 16:03:54 | 000,391,573 | ---- | C] () -- C:\Users\Bibou\AppData\Roaming\1.exe
    [2012/09/07 15:59:03 | 001,093,632 | ---- | C] () -- C:\Users\Bibou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Avast! Crack-V7.exe
    [2012/09/07 15:42:53 | 000,001,072 | ---- | C] () -- C:\Windows\tasks\SoftwareUpdateTaskMachineUA.job
    [2012/09/07 15:42:51 | 000,001,068 | ---- | C] () -- C:\Windows\tasks\SoftwareUpdateTaskMachineCore.job
    [2012/08/29 07:34:37 | 000,026,360 | ---- | C] () -- C:\Users\Bibou\Documents\Planning Septembre.pdf
    [2012/08/29 07:29:21 | 000,035,802 | ---- | C] () -- C:\Users\Bibou\Documents\planning septembre.ics
    [2012/08/29 07:28:21 | 000,003,337 | ---- | C] () -- C:\Users\Bibou\Documents\planning septembre.zip
    [2012/08/29 07:21:09 | 000,043,283 | ---- | C] () -- C:\Users\Bibou\Documents\TDS Septembre.pdf
    [2012/08/14 02:55:59 | 000,013,247 | ---- | C] () -- C:\Users\Bibou\Documents\Voiture.odt
    [2010/10/02 13:22:56 | 000,057,344 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
    [2010/07/20 13:05:19 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
    [2010/07/20 13:05:19 | 000,036,640 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
    [2009/10/06 03:16:00 | 000,819,200 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
    [2009/09/17 04:47:29 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
    [2009/09/17 04:47:29 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
    [2009/05/08 06:09:48 | 000,111,932 | ---- | C] () -- C:\Windows\System32\EPPICPrinterDB.dat
    [2009/05/08 06:09:48 | 000,031,053 | ---- | C] () -- C:\Windows\System32\EPPICPattern131.dat
    [2009/05/08 06:09:48 | 000,027,417 | ---- | C] () -- C:\Windows\System32\EPPICPattern121.dat
    [2009/05/08 06:09:48 | 000,026,154 | ---- | C] () -- C:\Windows\System32\EPPICPattern1.dat
    [2009/05/08 06:09:48 | 000,024,903 | ---- | C] () -- C:\Windows\System32\EPPICPattern3.dat
    [2009/05/08 06:09:48 | 000,021,390 | ---- | C] () -- C:\Windows\System32\EPPICPattern5.dat
    [2009/05/08 06:09:48 | 000,020,148 | ---- | C] () -- C:\Windows\System32\EPPICPattern2.dat
    [2009/05/08 06:09:48 | 000,011,811 | ---- | C] () -- C:\Windows\System32\EPPICPattern4.dat
    [2009/05/08 06:09:48 | 000,004,943 | ---- | C] () -- C:\Windows\System32\EPPICPattern6.dat
    [2009/05/08 06:09:48 | 000,001,146 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_DU.dat
    [2009/05/08 06:09:48 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_PT.dat
    [2009/05/08 06:09:48 | 000,001,139 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_BP.dat
    [2009/05/08 06:09:48 | 000,001,136 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_ES.dat
    [2009/05/08 06:09:48 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_FR.dat
    [2009/05/08 06:09:48 | 000,001,129 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_CF.dat
    [2009/05/08 06:09:48 | 000,001,120 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_IT.dat
    [2009/05/08 06:09:48 | 000,001,107 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_GE.dat
    [2009/05/08 06:09:48 | 000,001,104 | ---- | C] () -- C:\Windows\System32\EPPICPresetData_EN.dat
    [2009/05/08 06:09:48 | 000,000,097 | ---- | C] () -- C:\Windows\System32\PICSDK.ini
    [2009/05/06 10:06:18 | 000,000,025 | ---- | C] () -- C:\Windows\CDE SX200DEFGIPS.ini
    [2009/04/11 13:52:47 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
    [2009/04/09 09:14:34 | 000,007,512 | ---- | C] () -- C:\Users\Bibou\AppData\Local\d3d9caps.dat
    [2009/04/04 14:59:28 | 000,165,888 | ---- | C] () -- C:\Users\Bibou\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2009/04/04 13:15:01 | 000,001,700 | ---- | C] () -- C:\Users\Bibou\AppData\Roaming\wklnhst.dat
    [2009/02/25 20:49:06 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
    [2009/02/25 20:49:06 | 000,168,883 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
    [2009/02/25 20:49:06 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
    [2009/02/25 20:49:06 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe
    [2009/02/25 20:49:06 | 000,081,920 | ---- | C] () -- C:\Windows\System32\ATIODE.exe
    [2009/02/25 20:49:06 | 000,040,960 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe
    [2009/02/25 20:46:13 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
    [2009/02/25 12:55:00 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
    [2008/05/16 05:58:04 | 000,012,632 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
    [2008/01/21 03:23:37 | 000,669,328 | ---- | C] () -- C:\Windows\System32\perfh00C.dat
    [2008/01/21 03:23:37 | 000,340,236 | ---- | C] () -- C:\Windows\System32\perfi00C.dat
    [2008/01/21 03:23:37 | 000,123,350 | ---- | C] () -- C:\Windows\System32\perfc00C.dat
    [2008/01/21 03:23:37 | 000,037,390 | ---- | C] () -- C:\Windows\System32\perfd00C.dat
    [2006/11/02 08:53:49 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
    [2006/11/02 08:44:53 | 000,289,488 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
    [2006/11/02 06:33:01 | 000,586,980 | ---- | C] () -- C:\Windows\System32\perfh009.dat
    [2006/11/02 06:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
    [2006/11/02 06:33:01 | 000,101,052 | ---- | C] () -- C:\Windows\System32\perfc009.dat
    [2006/11/02 06:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
    [2006/11/02 06:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
    [2006/11/02 04:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
    [2006/11/02 04:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
    [2006/11/02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
    [2006/11/02 03:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
    [2005/04/07 22:16:43 | 000,000,015 | -H-- | C] () -- C:\Users\Bibou\AppData\Roaming\Biboulog.dat

    [color=#E56717]========== LOP Check ==========[/color]

    [2010/11/14 15:16:49 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\EPSON
    [2010/03/22 16:40:43 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\Facebook
    [2011/07/20 03:18:05 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\HandBrake
    [2011/07/10 17:11:15 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\Hobbyist Software
    [2010/10/02 13:23:07 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\iPhone Tool Kits
    [2010/11/18 12:50:53 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\MobileSyncBrowser
    [2010/06/20 17:13:03 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\Nokia
    [2010/03/02 12:37:10 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\Nokia Ovi Suite
    [2009/04/12 15:30:14 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\OpenOffice.org
    [2009/04/25 11:36:37 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\PC Suite
    [2011/12/06 19:00:45 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\PhotoFiltre
    [2010/07/20 13:03:17 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\Samsung
    [2012/05/19 14:49:56 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\Shareaza
    [2009/04/04 16:20:18 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\Template
    [2010/10/04 04:09:24 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\Thunderbird
    [2011/04/20 14:53:13 | 000,000,000 | ---D | M] -- C:\Users\Bibou\AppData\Roaming\uTorrent
    [2009/04/04 11:25:16 | 000,000,000 | -HSD | M] -- C:\ProgramData\Application Data
    [2009/04/04 11:25:16 | 000,000,000 | -HSD | M] -- C:\ProgramData\Bureau
    [2009/04/04 11:25:16 | 000,000,000 | -HSD | M] -- C:\ProgramData\Documents
    [2010/10/02 12:00:31 | 000,000,000 | ---D | M] -- C:\ProgramData\Driver Mender
    [2009/05/08 06:09:23 | 000,000,000 | ---D | M] -- C:\ProgramData\EPSON
    [2009/04/04 11:25:16 | 000,000,000 | -HSD | M] -- C:\ProgramData\Favoris
    [2009/12/29 14:24:48 | 000,000,000 | ---D | M] -- C:\ProgramData\Installations
    [2009/04/04 11:25:16 | 000,000,000 | -HSD | M] -- C:\ProgramData\Menu Démarrer
    [2009/04/04 11:25:16 | 000,000,000 | -HSD | M] -- C:\ProgramData\Modèles
    [2009/04/26 11:35:40 | 000,000,000 | ---D | M] -- C:\ProgramData\Nokia
    [2009/12/30 15:49:11 | 000,000,000 | ---D | M] -- C:\ProgramData\OviInstallerCache
    [2009/04/25 11:36:22 | 000,000,000 | ---D | M] -- C:\ProgramData\PC Suite
    [2009/02/25 13:22:44 | 000,000,000 | ---D | M] -- C:\ProgramData\PC-Doctor
    [2009/02/25 13:22:44 | 000,000,000 | ---D | M] -- C:\ProgramData\PCDr
    [2011/09/17 12:45:39 | 000,000,000 | ---D | M] -- C:\ProgramData\Samsung
    [2009/02/25 13:22:46 | 000,000,000 | ---D | M] -- C:\ProgramData\SupportSoft
    [2009/05/08 06:18:22 | 000,000,000 | ---D | M] -- C:\ProgramData\UDL
    [2009/02/25 13:15:05 | 000,000,000 | ---D | M] -- C:\ProgramData\Uninstall
    [2010/07/31 16:52:19 | 000,000,000 | ---D | M] -- C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
    [2012/09/08 04:45:01 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
    [2012/09/08 04:34:16 | 000,001,068 | ---- | M] () -- C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
    [2012/09/07 16:53:00 | 000,001,072 | ---- | M] () -- C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job

    [color=#E56717]========== Purity Check ==========[/color]

    [color=#E56717]========== Custom Scans ==========[/color]

    Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.

    Invalid Environment Variable: %ALLUSERSPROFILE%\Application Data\*.exe

    [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]

    [color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
    [2008/01/20 22:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
    [2008/01/20 22:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
    [2008/01/20 22:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
    [2008/01/20 22:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
    [2008/01/20 22:32:22 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
    [2006/11/02 05:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys

    [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
    [2009/02/25 20:29:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_4c9c5a00\atapi.sys
    [2009/02/25 20:29:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18034_none_dd1bb97e219e87cb\atapi.sys
    [2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
    [2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
    [2009/04/11 02:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
    [2008/01/20 22:32:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
    [2008/01/20 22:32:21 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
    [2006/11/02 05:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
    [2009/02/25 20:29:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=96DC4E1A9F90CCD489950A8935425C59 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22134_none_dda556493abc2795\atapi.sys

    [color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
    [2008/01/20 22:32:23 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
    [2008/01/20 22:32:23 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
    [2009/04/11 00:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
    [2009/04/11 00:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
    [2009/04/11 00:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
    [2006/11/02 04:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys

    [color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
    [2006/11/02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
    [2006/11/02 05:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll

    [color=#A23BEC]< MD5 for: DISK.SYS >[/color]
    [2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\System32\drivers\disk.sys
    [2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_5c850fad\disk.sys
    [2009/04/11 02:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6002.18005_none_fbb1faf0714e4ea6\disk.sys
    [2008/01/20 22:32:45 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_90722180\disk.sys
    [2008/01/20 22:32:45 | 000,055,352 | ---- | M] (Microsoft Corporation) MD5=64109E623ABD6955C8FB110B592E68B7 -- C:\Windows\winsxs\x86_disk.inf_31bf3856ad364e35_6.0.6001.18000_none_f9c681e4742c835a\disk.sys
    [2006/11/02 05:49:51 | 000,052,840 | ---- | M] (Microsoft Corporation) MD5=841AF4C4D41D3E3B2F244E976B0F7963 -- C:\Windows\System32\DriverStore\FileRepository\disk.inf_e0b0b355\disk.sys

    [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
    [2009/02/25 20:44:26 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
    [2009/02/25 20:44:26 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
    [2009/02/25 20:44:25 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
    [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
    [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
    [2009/02/25 20:44:26 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
    [2008/01/20 22:34:05 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

    [color=#A23BEC]< MD5 for: IASTOR.SYS >[/color]
    [2007/04/26 06:41:38 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395724C16 -- C:\Drivers\storage\R154092\iastor.sys
    [2007/04/26 06:41:38 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395724C16 -- C:\Windows\System32\drivers\iaStor.sys
    [2007/04/26 06:41:38 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395724C16 -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_3a63e5a6\iaStor.sys
    [2007/04/26 06:41:38 | 000,304,920 | ---- | M] (Intel Corporation) MD5=997E8F5939F2D12CD9F2E6B395724C16 -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_5f6e7be5\iaStor.sys

    [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
    [2008/01/20 22:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
    [2008/01/20 22:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
    [2008/01/20 22:32:49 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
    [2006/11/02 05:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys

    [color=#A23BEC]< MD5 for: MOUNTMGR.SYS >[/color]
    [2008/01/20 22:33:14 | 000,057,400 | ---- | M] (Microsoft Corporation) MD5=BDAFC88AA6B92F7842416EA6A48E1600 -- C:\Windows\System32\drivers\mountmgr.sys
    [2008/01/20 22:33:14 | 000,057,400 | ---- | M] (Microsoft Corporation) MD5=BDAFC88AA6B92F7842416EA6A48E1600 -- C:\Windows\winsxs\x86_microsoft-windows-mountpointmanager_31bf3856ad364e35_6.0.6001.18000_none_f29824c60705c394\mountmgr.sys

    [color=#A23BEC]< MD5 for: MRXSMB.SYS >[/color]
    [2011/04/29 09:24:40 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=1E94971C4B446AB2290DEB71D01CF0C2 -- C:\Windows\System32\drivers\mrxsmb.sys
    [2011/04/29 09:24:40 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=1E94971C4B446AB2290DEB71D01CF0C2 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.18462_none_81390d734e728aac\mrxsmb.sys
    [2010/02/23 07:16:50 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=1F0DAA8676E0B3D00C2EC1F82B140A1C -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.22346_none_81dc4772677c5da2\mrxsmb.sys
    [2009/04/11 00:14:28 | 000,105,984 | ---- | M] (Microsoft Corporation) MD5=317EB668973951BAD512EE8BEBF9ED25 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.18005_none_817ce6414e3f3a6f\mrxsmb.sys
    [2011/04/29 08:51:45 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=43E584A3CA783C3D7A610B0C21E290E1 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.22910_none_801049446a431416\mrxsmb.sys
    [2010/02/23 07:10:13 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=454341E652BDF5E01B0F2140232B073E -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.18213_none_8170198d4e491e00\mrxsmb.sys
    [2011/02/22 08:51:30 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=45C648D35CA74FE5D6D799728B1F9C45 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.22859_none_7fee0a486a5b6ac2\mrxsmb.sys
    [2011/04/29 08:49:35 | 000,105,984 | ---- | M] (Microsoft Corporation) MD5=5734A0F2BE7E495F7D3ED6EFD4B9F5A1 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.18644_none_7f6a3a11513a332d\mrxsmb.sys
    [2011/02/22 09:23:59 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=5FE5CF325F5B02EBC60832D3440CB414 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.18409_none_8180ef014e3b9467\mrxsmb.sys
    [2009/12/04 12:14:15 | 000,102,400 | ---- | M] (Microsoft Corporation) MD5=64B76496CCEA0A56CC0B1F9B32605F8F -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6000.21173_none_7debfa986d4ab84f\mrxsmb.sys
    [2009/12/04 12:12:51 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=66592E91051728C3571B0D77175686AB -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.18375_none_7f4ac4e55151a8e2\mrxsmb.sys
    [2009/12/04 11:56:09 | 000,105,984 | ---- | M] (Microsoft Corporation) MD5=66DE1A2B389A1969CA1751B276108E45 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.18158_none_8149d9694e650f50\mrxsmb.sys
    [2009/12/04 12:08:29 | 000,105,984 | ---- | M] (Microsoft Corporation) MD5=7295B41FBCA3231841A7EDFF34A7BD14 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.22281_none_81ac046a67a1518c\mrxsmb.sys
    [2010/02/23 07:32:31 | 000,105,984 | ---- | M] (Microsoft Corporation) MD5=7AFC42E60432FD1014F5342F2B1B1F74 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.18431_none_7f7205535134d0e9\mrxsmb.sys
    [2010/02/23 09:14:41 | 000,102,400 | ---- | M] (Microsoft Corporation) MD5=8AF705CE1BB907932157FAB821170F27 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6000.17025_none_7d9a6dfd5402bf7e\mrxsmb.sys
    [2011/02/22 10:56:08 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=8B478E8E8F90FB25C3684C35F5AD2907 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.22594_none_81a43b0e67a6b0f7\mrxsmb.sys
    [2009/12/04 12:16:23 | 000,105,984 | ---- | M] (Microsoft Corporation) MD5=B81A462840C1C9FE6B4EAB893402F3D2 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.22575_none_7fd463966a6f45d3\mrxsmb.sys
    [2011/04/29 09:00:00 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=B99F961821C20CA8326A7197913E0298 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6002.22634_none_81e51c7c67760678\mrxsmb.sys
    [2010/02/23 07:30:49 | 000,102,912 | ---- | M] (Microsoft Corporation) MD5=BBB0D31B477CFF3B4F737ED0367F635F -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6000.21230_none_7e143b506d2cf9ad\mrxsmb.sys
    [2008/01/20 22:33:48 | 000,105,472 | ---- | M] (Microsoft Corporation) MD5=C4AD205530888404E2B5FC8D9319B119 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.18000_none_7f916d35511d6f23\mrxsmb.sys
    [2011/02/22 08:51:53 | 000,105,984 | ---- | M] (Microsoft Corporation) MD5=CC752D233EF39875CA6885D9415BA869 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.18604_none_7f9579c15119c369\mrxsmb.sys
    [2010/02/23 07:30:23 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=D92DB980E8F791286750127C8E371A7D -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6001.22641_none_7ff0d4186a5a89cb\mrxsmb.sys
    [2009/12/04 12:27:45 | 000,101,888 | ---- | M] (Microsoft Corporation) MD5=F6805DC6823B90393D561BDB163468F6 -- C:\Windows\winsxs\x86_microsoft-windows-smbminirdr_31bf3856ad364e35_6.0.6000.16971_none_7d608517542eb295\mrxsmb.sys

    [color=#A23BEC]< MD5 for: MRXSMB10.SYS >[/color]
    [2009/04/11 00:14:36 | 000,212,992 | ---- | M] (Microsoft Corporation) MD5=05716F0203B5C774A87384A1FF7B968F -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6002.18005_none_8a900495489078d1\mrxsmb10.sys
    [2009/02/25 20:32:14 | 000,212,480 | ---- | M] (Microsoft Corporation) MD5=0883E1ADA541F4201ECAF63C29F2DCAC -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6001.22252_none_88fa1b3264b308d9\mrxsmb10.sys
    [2009/02/25 20:32:14 | 000,212,480 | ---- | M] (Microsoft Corporation) MD5=0A986B34F1678A2697574D7B1664E2DD -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6001.18130_none_88841dab4b86fe7f\mrxsmb10.sys
    [2010/02/23 07:10:19 | 000,212,992 | ---- | M] (Microsoft Corporation) MD5=2A4901AFF069944FA945ED5BBF4DCDE3 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6002.18213_none_8a8337e1489a5c62\mrxsmb10.sys
    [2009/02/25 20:32:14 | 000,211,456 | ---- | M] (Microsoft Corporation) MD5=2BBD3970018270D2C6A0B069F568154E -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6000.16738_none_86a5e1554e593846\mrxsmb10.sys
    [2011/02/22 09:24:10 | 000,213,504 | ---- | M] (Microsoft Corporation) MD5=30B9C769446AF379A2AFB72B0392604D -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6002.18409_none_8a940d55488cd2c9\mrxsmb10.sys
    [2010/02/23 07:16:58 | 000,212,992 | ---- | M] (Microsoft Corporation) MD5=32E743994055D8D4729E2F2E0EF4758D -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6002.22346_none_8aef65c661cd9c04\mrxsmb10.sys
    [2009/12/04 11:56:16 | 000,212,992 | ---- | M] (Microsoft Corporation) MD5=346611D7523B520FAA86B76753CC9874 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6002.18158_none_8a5cf7bd48b64db2\mrxsmb10.sys
    [2009/12/04 12:27:52 | 000,211,968 | ---- | M] (Microsoft Corporation) MD5=3B6200FE9DEEF1F9BBF576A80082A741 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6000.16971_none_8673a36b4e7ff0f7\mrxsmb10.sys
    [2009/02/25 20:45:49 | 000,211,968 | ---- | M] (Microsoft Corporation) MD5=3C9B1B7D11B08B465598C6B87A8B1735 -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e35_6.0.6001.22175_none_88e77a5264c08f99\mrxsmb10.sys
    [2010/02/23 09:14:51 | 000,211,968 | ---- | M] (Microsoft Corporation) MD5=47E13AB23371BE3279EEF22BBFA2C1BE -- C:\Windows\winsxs\x86_microsoft-windows-smb10-minirdr_31bf3856ad364e3
    0
  12. Utilisateur anonyme
     
    Re

    * Double-clique sur l'icone OTLPE
    * quand demandé "Do you wish to load the remote registry", selectionne "Yes"
    * quand demandé "Do you wish to load remote user profile(s) for scanning", selectionne "Yes"
    * verifier que "Automatically Load All Remaining Users" est sélectionné et presse OK

    http://imagesup.org/image

    * sous Custom Scan box copie_colle le tout ci dessous et clic RUNFIX

    :OTL
    O20 - HKU\Bibou_ON_C Winlogon: Shell - (C:\Users\Bibou\AppData\Roaming\1.exe) - C:\Users\Bibou\AppData\Roaming\1.exe ()
    [2012/09/07 15:59:19 | 000,007,168 | ---- | C] (Microsoft) -- C:\Users\Bibou\AppData\Roaming\883412.exe
    [2012/09/07 15:58:56 | 000,007,168 | ---- | C] (Microsoft) -- C:\Users\Bibou\AppData\Roaming\690303.exe
    [2012/09/07 16:03:35 | 000,391,573 | ---- | M] () -- C:\Users\Bibou\AppData\Roaming\1.exe


    tu conserves le rapport qui s'affiche ; et tu le copies et colles dans ta prochaine réponse

    @+
    0
  13. Bibou1981 Messages postés 38 Statut Membre
     
    ========== OTL ==========
    Registry value HKEY_USERS\Bibou_ON_C\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\Users\Bibou\AppData\Roaming\1.exe deleted successfully.
    C:\Users\Bibou\AppData\Roaming\1.exe moved successfully.
    C:\Users\Bibou\AppData\Roaming\883412.exe moved successfully.
    C:\Users\Bibou\AppData\Roaming\690303.exe moved successfully.
    File C:\Users\Bibou\AppData\Roaming\1.exe not found.

    OTLPE by OldTimer - Version 3.1.48.0 log created on 09082012_212035
    0
  14. Utilisateur anonyme
     
    Re

    Essaie de démarrer ton PC normalement.
    Cela devrait fonctionner

    @+
    0
  15. Bibou1981 Messages postés 38 Statut Membre
     
    Question bête avant de faire une bêtise.
    Je laisse le cd, je touche à rient je fais comme si de rien n'était, comme d'habitude lol ?!
    0
  16. Utilisateur anonyme
     
    Re

    Tu enlèves le CD et tu démarres Windows normalement

    @+
    0
  17. Bibou1981 Messages postés 38 Statut Membre
     
    J'ai enlevé le cd et je ne peux plus éteindre lordi, le bouton démarrer ne répond plus.
    Si je l'éteind en mode force, ça va tout foiré non ?
    0
    1. Utilisateur anonyme
       
      Non
      0
  18. Bibou1981 Messages postés 38 Statut Membre
     
    MERCI
    MERCI
    MERCI
    Tu as sauvé ma journée qui avais si mal commencé...
    Merci pour ton aide, ta patience, tes explications !!!!
    Tout remarche et c'est vraiment super !!

    Du coup, je suis en plein divorce avec Mc Afee qui a laissé passer un si gros virus (je l'étais déjà avant que ça plante tout), et je suis donc à la recherche d'un super antivirus si possible gratuit que j'associerai à un bon pare feu. Sinon je passerai à un autre antivirus payant dans la limite du raisonnable. Si tu as une idée, un conseil, il sera le bienvenu.
    0
  19. Utilisateur anonyme
     
    Re

    Ton antivirus y est pour rien.
    C'est toi avec ton PC qui n'est pas à jour .

    1)Télécharge Malwaresbytes anti malware ici
    http://www.malwarebytes.org/mbam.php

    Bouton »Download free version »

    * Installe le (choisis bien "français" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

    * Potasse le tuto pour te familiariser avec le prg :

    https://forum.pcastuces.com/sujet.asp?f=31&s=3

    (cela dis, il est très simple d'utilisation).

    relance Malwaresbytes en suivant scrupuleusement ces consignes :

    ! Déconnecte toi et ferme toutes applications en cours !

    * Lance Malwarebyte's. Sous Vista et Seven (clic droit de la souris « exécuter en tant que administrateur »)

    *Procèdes à une mise à jour

    *Fais un examen dit "Complet"

    --> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
    --> à la fin tu cliques sur "Afficher les résultats" " .
    --> Vérifie que tous les objets infectés soient validés, puis clique sur " supprimer la sélection " .

    Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !

    Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwaresbytes, le dernier en date)


    2)
    Pour vérifier les mises à jour logiciels à appliquer sur ton PC
    https://www.flexera.com/products/operations/software-vulnerability-management.html
    Divers liens te seront proposés pour les logiciels non à jour.

    Ces mises à jour sont très importantes.
    Si tu ne les fais pas cela se reproduira.

    Tiens moi au courant.
    Ce n'est pas fini...

    @+
    0
  20. Bibou1981 Messages postés 38 Statut Membre
     
    Re,

    J'en suis à plus de 3h15 de scan et pour l'instant j'ai 57 éléments détectés mais c'est pas fini...
    Je vais donc devoir laisser tourner le scan toute la nuit, le seul soucis, lordi est dans la chambre et il est pas vraiment silencieux. Mais trop peur de suspendre ou arrêter et de devoir tout refaire demain... Et si je suspend l'analyse maintenant et que je poste le rapport, ça n'avancera pas à grand chose pour les soucis.
    Je te tiens donc au courant demain,
    Encore merci
    Bonne nuit
    0
  21. Bibou1981 Messages postés 38 Statut Membre
     
    2012/09/09 08:52:38 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore QUARANTINE
    2012/09/09 08:52:38 +0200 PC-DE-BIBOU Bibou ERROR Quarantine failed: DeleteFile failed with error code 5
    2012/09/09 08:53:46 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 08:53:56 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 08:54:05 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 08:54:19 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 08:54:30 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 08:56:49 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 08:57:12 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 08:59:40 +0200 PC-DE-BIBOU Bibou DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 09:10:47 +0200 PC-DE-BIBOU (null) DETECTION C:\Program Files\Boxore\BoxoreClient\boxore.exe Adware.Boxore DENY
    2012/09/09 09:13:51 +0200 PC-DE-BIBOU Bibou MESSAGE Starting protection
    2012/09/09 09:13:56 +0200 PC-DE-BIBOU Bibou MESSAGE Protection started successfully
    2012/09/09 09:14:00 +0200 PC-DE-BIBOU Bibou MESSAGE Starting IP protection
    2012/09/09 09:14:02 +0200 PC-DE-BIBOU Bibou MESSAGE IP Protection started successfully
    0
  • 1
  • 2
  • 3