Votre question

Avast : Erreur 42000

Tags :
  • Avast
  • Antivirus
  • Sécurité
Dernière réponse : dans Sécurité et virus
6 Novembre 2011 11:20:13

Bonjour à tous et à toutes, voici mon problème.

Quand je double-clique sur avast (icone dans la barre des tâches) il m'affiche une erreur "avast! : le sous système AAVM a détecté une erreur RPC. L'opération n'a pas pu être effectuée"

Donc je tente de le lancer avec le raccourci de mon bureau, tout ce lance normalement , il test la mémoire et PAF !
Erreur inconnue : Le scan s'est terminée avec l'erreur 42000 : erreur inconnue. Donc je fais ok. Avast! s'ouvre, je tente un scan de mon ordi.
Il démarre et 1 seconde après il m'affiche la même erreur qu'au lancement.

Voilà, j'en appelle à une âme charitable, pour me sauver. Je peux vous donner des précisions si vous voulez .

Autres pages sur : avast erreur 42000

6 Novembre 2011 14:52:30

Je vais tester ca et, je te répond de suite.
m
0
l
Contenus similaires
6 Novembre 2011 15:07:22

Meme après une désinstallation, puis une réinstallation, l'erreur persiste.
m
0
l
7 Novembre 2011 18:15:36

Personne veut/peut m'aider ?
m
0
l
7 Novembre 2011 21:00:11

Bonsoir
pas la peine de faire des up, j'ai une vie aussi...
On va déjà vérifier que ce n'est pas d'ordre infectieux:

1

Télécharge DDS et sauvegarde-le sur ton bureau.
  • Désactive tout script bloquant, tels qu'un antivirus, un logiciel comme ad-block, noscript etc.
  • Double-clique sur dds.scr pour lancer l'outil.
  • Une fois le scan fini, un document texte, DDS.txt, va s'ouvrir .
  • Clique Oui à la prochaine invite Optional Scan.
  • Sauvegarde les deux rapports sur ton bureau et poste-moi uniquement le DDS.txt.

    <@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**

    ++

    ****
    2

    telecharge sur ton bureau http://support.kaspersky.com/downloads/utils/tdsskiller... , dezippe le et execute le , un rapport sera crée ici:

    C:\TDSSKillerVersion_Date_Time_log.txt.<< copie_colle son contenu

    tu as aussi directement l'executable là : http://support.kaspersky.com/downloads/utils/tdsskiller...

    o execute le , La fenêtre suivante va s'ouvrir::



    o Clique sur Start scan et laisse l'outil scanner ton disque dur sans l'interrompre et sans utiliser le PC.
    o Si des fichiers infectés sont trouvées, une nouvelle fenêtre va s'ouvrir:



    o Si TDSS.tdl2 est détecté l'option delete sera cochée par défaut.

    o Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.

    o Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.

    o Si Suspicious file est indiqué, laisse l'option cochée sur Skip

    o Clique sur Continue puis sur Reboot now pour redémarrer le PC.

    o Copie-colle le rapport généré dans ta prochaine réponse (Il est aussi sauvegardé à la racine de ta partition système sous le nom C:\TDSSKiller_Quarantine\JJ.MM.AA_HH.MM.SS. (JJ.MM.AA date du passage de l'outil, HH.MM.SS heure de passage).

    tutoriel--> http://support.kaspersky.com/viruses/solutions?qid=2082...



    ++++++++++++++++++++++++++++++++++++++++
    m
    0
    l
    8 Novembre 2011 19:09:31

    Pardonne moi mon up, il ne t'étais pas directement destiner :) 

    Je n'ai pas réussi a télécharger le premier lien que tu m'as donné. Il m'affiche un about:blank et rien de se passe.
    J'ai tenter un scan malgré que je n'ai pas le premier fichier.

    Voilà le rapport de scan. Il a détecté un fichier "Suspicious" du nom de sptd.sys
    J'ai donc Skip comme tu me l'as conseiller.


    19:03:32.0058 0372 TDSS rootkit removing tool 2.6.16.0 Nov 7 2011 16:26:51
    19:03:32.0632 0372 ============================================================
    19:03:32.0632 0372 Current date / time: 2011/11/08 19:03:32.0632
    19:03:32.0632 0372 SystemInfo:
    19:03:32.0632 0372
    19:03:32.0632 0372 OS Version: 6.1.7600 ServicePack: 0.0
    19:03:32.0632 0372 Product type: Workstation
    19:03:32.0632 0372 ComputerName: ADAM-PC
    19:03:32.0632 0372 UserName: GAME
    19:03:32.0632 0372 Windows directory: C:\Windows
    19:03:32.0632 0372 System windows directory: C:\Windows
    19:03:32.0632 0372 Running under WOW64
    19:03:32.0632 0372 Processor architecture: Intel x64
    19:03:32.0632 0372 Number of processors: 8
    19:03:32.0632 0372 Page size: 0x1000
    19:03:32.0632 0372 Boot type: Normal boot
    19:03:32.0632 0372 ============================================================
    19:03:33.0398 0372 Initialize success
    19:03:48.0977 4140 ============================================================
    19:03:48.0977 4140 Scan started
    19:03:48.0977 4140 Mode: Manual;
    19:03:48.0977 4140 ============================================================
    19:03:49.0815 4140 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
    19:03:49.0819 4140 1394ohci - ok
    19:03:49.0892 4140 Aavmker4 (c5c312b1195f936d4bd1dd8896db151c) C:\Windows\system32\drivers\Aavmker4.sys
    19:03:49.0892 4140 Aavmker4 - ok
    19:03:49.0951 4140 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
    19:03:49.0956 4140 ACPI - ok
    19:03:49.0979 4140 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
    19:03:49.0981 4140 AcpiPmi - ok
    19:03:50.0069 4140 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
    19:03:50.0086 4140 adp94xx - ok
    19:03:50.0140 4140 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
    19:03:50.0157 4140 adpahci - ok
    19:03:50.0193 4140 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
    19:03:50.0196 4140 adpu320 - ok
    19:03:50.0277 4140 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
    19:03:50.0293 4140 AFD - ok
    19:03:50.0331 4140 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
    19:03:50.0332 4140 agp440 - ok
    19:03:50.0389 4140 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
    19:03:50.0390 4140 aliide - ok
    19:03:50.0403 4140 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
    19:03:50.0404 4140 amdide - ok
    19:03:50.0434 4140 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
    19:03:50.0436 4140 AmdK8 - ok
    19:03:50.0619 4140 amdkmdag (522a8bd1414cc7517faec907f138db9c) C:\Windows\system32\DRIVERS\atikmdag.sys
    19:03:50.0745 4140 amdkmdag - ok
    19:03:50.0815 4140 amdkmdap (f712c26d40bf3cd2c020bb518e8150b1) C:\Windows\system32\DRIVERS\atikmpag.sys
    19:03:50.0817 4140 amdkmdap - ok
    19:03:50.0854 4140 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
    19:03:50.0856 4140 AmdPPM - ok
    19:03:50.0901 4140 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
    19:03:50.0903 4140 amdsata - ok
    19:03:50.0933 4140 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
    19:03:50.0935 4140 amdsbs - ok
    19:03:50.0952 4140 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
    19:03:50.0953 4140 amdxata - ok
    19:03:50.0981 4140 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
    19:03:50.0982 4140 AppID - ok
    19:03:51.0047 4140 AppleCharger (301aa64f9643bc453d90a66c4c0e7204) C:\Windows\system32\DRIVERS\AppleCharger.sys
    19:03:51.0048 4140 AppleCharger - ok
    19:03:51.0146 4140 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
    19:03:51.0148 4140 arc - ok
    19:03:51.0175 4140 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
    19:03:51.0177 4140 arcsas - ok
    19:03:51.0318 4140 aswMon2 (3bb2cb1d118c6665b752c9426728849d) C:\Windows\system32\drivers\aswMon2.sys
    19:03:51.0319 4140 aswMon2 - ok
    19:03:51.0365 4140 aswTdi (57e4707060400c0172aea83d6d101eb1) C:\Windows\system32\drivers\aswTdi.sys
    19:03:51.0366 4140 aswTdi - ok
    19:03:51.0420 4140 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
    19:03:51.0421 4140 AsyncMac - ok
    19:03:51.0436 4140 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
    19:03:51.0437 4140 atapi - ok
    19:03:51.0466 4140 AtiHDAudioService (e02b26650acc2f4901342d4a66774ad7) C:\Windows\system32\drivers\AtihdW76.sys
    19:03:51.0467 4140 AtiHDAudioService - ok
    19:03:51.0493 4140 AtiHdmiService (fb7602c5c508be281368aae0b61b51c6) C:\Windows\system32\drivers\AtiHdmi.sys
    19:03:51.0495 4140 AtiHdmiService - ok
    19:03:51.0653 4140 atikmdag (522a8bd1414cc7517faec907f138db9c) C:\Windows\system32\DRIVERS\atikmdag.sys
    19:03:51.0691 4140 atikmdag - ok
    19:03:51.0805 4140 atksgt (fc0e8778c000291caf60eb88c011e931) C:\Windows\system32\DRIVERS\atksgt.sys
    19:03:51.0807 4140 atksgt - ok
    19:03:51.0874 4140 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
    19:03:51.0892 4140 b06bdrv - ok
    19:03:51.0917 4140 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
    19:03:51.0922 4140 b57nd60a - ok
    19:03:51.0961 4140 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
    19:03:51.0961 4140 Beep - ok
    19:03:52.0035 4140 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
    19:03:52.0036 4140 blbdrive - ok
    19:03:52.0108 4140 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
    19:03:52.0110 4140 bowser - ok
    19:03:52.0143 4140 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
    19:03:52.0145 4140 BrFiltLo - ok
    19:03:52.0156 4140 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
    19:03:52.0157 4140 BrFiltUp - ok
    19:03:52.0196 4140 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
    19:03:52.0201 4140 Brserid - ok
    19:03:52.0217 4140 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
    19:03:52.0219 4140 BrSerWdm - ok
    19:03:52.0245 4140 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
    19:03:52.0246 4140 BrUsbMdm - ok
    19:03:52.0266 4140 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
    19:03:52.0267 4140 BrUsbSer - ok
    19:03:52.0288 4140 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
    19:03:52.0289 4140 BTHMODEM - ok
    19:03:52.0331 4140 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
    19:03:52.0333 4140 cdfs - ok
    19:03:52.0374 4140 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
    19:03:52.0376 4140 cdrom - ok
    19:03:52.0413 4140 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
    19:03:52.0415 4140 circlass - ok
    19:03:52.0451 4140 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
    19:03:52.0457 4140 CLFS - ok
    19:03:52.0518 4140 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
    19:03:52.0520 4140 CmBatt - ok
    19:03:52.0537 4140 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
    19:03:52.0538 4140 cmdide - ok
    19:03:52.0573 4140 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
    19:03:52.0578 4140 CNG - ok
    19:03:52.0599 4140 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
    19:03:52.0599 4140 Compbatt - ok
    19:03:52.0619 4140 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
    19:03:52.0620 4140 CompositeBus - ok
    19:03:52.0682 4140 cpuz130 - ok
    19:03:52.0760 4140 cpuz132 (c9c25778efe890baa4087e32937016a0) C:\Windows\system32\drivers\cpuz132_x64.sys
    19:03:52.0760 4140 cpuz132 - ok
    19:03:52.0840 4140 cpuz133 (95c88d25e211a4d52a82c53e5d93e634) C:\Windows\system32\drivers\cpuz133_x64.sys
    19:03:52.0840 4140 cpuz133 - ok
    19:03:52.0866 4140 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
    19:03:52.0867 4140 crcdisk - ok
    19:03:52.0995 4140 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
    19:03:53.0000 4140 DfsC - ok
    19:03:53.0043 4140 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
    19:03:53.0044 4140 discache - ok
    19:03:53.0087 4140 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
    19:03:53.0088 4140 Disk - ok
    19:03:53.0162 4140 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
    19:03:53.0164 4140 drmkaud - ok
    19:03:53.0194 4140 dump_wmimmc - ok
    19:03:53.0265 4140 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
    19:03:53.0274 4140 DXGKrnl - ok
    19:03:53.0375 4140 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
    19:03:53.0424 4140 ebdrv - ok
    19:03:53.0470 4140 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
    19:03:53.0478 4140 elxstor - ok
    19:03:53.0523 4140 ENTECH64 (12c061d9f9621be916d58191872ec281) C:\Windows\system32\DRIVERS\ENTECH64.sys
    19:03:53.0524 4140 ENTECH64 - ok
    19:03:53.0573 4140 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
    19:03:53.0574 4140 ErrDev - ok
    19:03:53.0618 4140 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
    19:03:53.0621 4140 exfat - ok
    19:03:53.0671 4140 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
    19:03:53.0675 4140 fastfat - ok
    19:03:53.0702 4140 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
    19:03:53.0703 4140 fdc - ok
    19:03:53.0731 4140 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
    19:03:53.0732 4140 FileInfo - ok
    19:03:53.0750 4140 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
    19:03:53.0751 4140 Filetrace - ok
    19:03:53.0845 4140 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
    19:03:53.0846 4140 flpydisk - ok
    19:03:53.0866 4140 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
    19:03:53.0870 4140 FltMgr - ok
    19:03:53.0903 4140 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
    19:03:53.0904 4140 FsDepends - ok
    19:03:53.0957 4140 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
    19:03:53.0959 4140 fssfltr - ok
    19:03:53.0983 4140 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
    19:03:53.0984 4140 Fs_Rec - ok
    19:03:54.0042 4140 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
    19:03:54.0045 4140 fvevol - ok
    19:03:54.0072 4140 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
    19:03:54.0074 4140 gagp30kx - ok
    19:03:54.0086 4140 gdrv - ok
    19:03:54.0188 4140 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
    19:03:54.0189 4140 hamachi - ok
    19:03:54.0240 4140 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
    19:03:54.0242 4140 hcw85cir - ok
    19:03:54.0278 4140 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
    19:03:54.0284 4140 HdAudAddService - ok
    19:03:54.0321 4140 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
    19:03:54.0323 4140 HDAudBus - ok
    19:03:54.0335 4140 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
    19:03:54.0336 4140 HidBatt - ok
    19:03:54.0367 4140 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
    19:03:54.0370 4140 HidBth - ok
    19:03:54.0402 4140 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
    19:03:54.0404 4140 HidIr - ok
    19:03:54.0430 4140 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
    19:03:54.0431 4140 HidUsb - ok
    19:03:54.0484 4140 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
    19:03:54.0486 4140 HpSAMD - ok
    19:03:54.0522 4140 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
    19:03:54.0539 4140 HTTP - ok
    19:03:54.0556 4140 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
    19:03:54.0557 4140 hwpolicy - ok
    19:03:54.0592 4140 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
    19:03:54.0594 4140 i8042prt - ok
    19:03:54.0654 4140 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
    19:03:54.0659 4140 iaStorV - ok
    19:03:54.0699 4140 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
    19:03:54.0700 4140 iirsp - ok
    19:03:54.0721 4140 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
    19:03:54.0722 4140 intelide - ok
    19:03:54.0749 4140 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
    19:03:54.0749 4140 intelppm - ok
    19:03:54.0785 4140 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
    19:03:54.0787 4140 IpFilterDriver - ok
    19:03:54.0808 4140 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
    19:03:54.0810 4140 IPMIDRV - ok
    19:03:54.0826 4140 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
    19:03:54.0828 4140 IPNAT - ok
    19:03:54.0850 4140 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
    19:03:54.0851 4140 IRENUM - ok
    19:03:54.0883 4140 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
    19:03:54.0884 4140 isapnp - ok
    19:03:54.0904 4140 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
    19:03:54.0908 4140 iScsiPrt - ok
    19:03:54.0931 4140 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
    19:03:54.0932 4140 kbdclass - ok
    19:03:54.0959 4140 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
    19:03:54.0960 4140 kbdhid - ok
    19:03:54.0994 4140 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
    19:03:55.0002 4140 KSecDD - ok
    19:03:55.0036 4140 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
    19:03:55.0038 4140 KSecPkg - ok
    19:03:55.0071 4140 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
    19:03:55.0072 4140 ksthunk - ok
    19:03:55.0130 4140 L8042Kbd (f33c5d79d3273530e1892a0922283a7b) C:\Windows\system32\DRIVERS\L8042Kbd.sys
    19:03:55.0130 4140 L8042Kbd - ok
    19:03:55.0190 4140 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
    19:03:55.0191 4140 LEqdUsb - ok
    19:03:55.0256 4140 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
    19:03:55.0256 4140 LHidEqd - ok
    19:03:55.0277 4140 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
    19:03:55.0278 4140 LHidFilt - ok
    19:03:55.0308 4140 lirsgt (156ab2e56dc3ca0b582e3362e07cded7) C:\Windows\system32\DRIVERS\lirsgt.sys
    19:03:55.0309 4140 lirsgt - ok
    19:03:55.0355 4140 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
    19:03:55.0356 4140 lltdio - ok
    19:03:55.0424 4140 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
    19:03:55.0425 4140 LMouFilt - ok
    19:03:55.0447 4140 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
    19:03:55.0449 4140 LSI_FC - ok
    19:03:55.0470 4140 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
    19:03:55.0472 4140 LSI_SAS - ok
    19:03:55.0486 4140 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
    19:03:55.0488 4140 LSI_SAS2 - ok
    19:03:55.0503 4140 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
    19:03:55.0505 4140 LSI_SCSI - ok
    19:03:55.0531 4140 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
    19:03:55.0533 4140 luafv - ok
    19:03:55.0591 4140 LUsbFilt (9d9714e78eac9e5368208649489c920e) C:\Windows\system32\Drivers\LUsbFilt.Sys
    19:03:55.0593 4140 LUsbFilt - ok
    19:03:55.0621 4140 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
    19:03:55.0622 4140 megasas - ok
    19:03:55.0654 4140 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
    19:03:55.0658 4140 MegaSR - ok
    19:03:55.0716 4140 Mkd2Nadr (b6ccdc7f88354f2d053a8adf13dd3aab) C:\Windows\system32\drivers\Mkd2Nadr.sys
    19:03:55.0717 4140 Mkd2Nadr - ok
    19:03:55.0779 4140 Mkd3kfNt (28630c95d8f1cc313e80b8ef376648f2) C:\Windows\system32\drivers\Mkd3kfNt.sys
    19:03:55.0781 4140 Mkd3kfNt - ok
    19:03:55.0816 4140 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
    19:03:55.0817 4140 Modem - ok
    19:03:55.0838 4140 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
    19:03:55.0839 4140 monitor - ok
    19:03:55.0854 4140 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
    19:03:55.0855 4140 mouclass - ok
    19:03:55.0880 4140 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
    19:03:55.0880 4140 mouhid - ok
    19:03:55.0907 4140 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
    19:03:55.0908 4140 mountmgr - ok
    19:03:55.0930 4140 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
    19:03:55.0932 4140 mpio - ok
    19:03:55.0949 4140 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
    19:03:55.0950 4140 mpsdrv - ok
    19:03:55.0972 4140 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
    19:03:55.0975 4140 MRxDAV - ok
    19:03:56.0051 4140 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
    19:03:56.0053 4140 mrxsmb - ok
    19:03:56.0095 4140 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
    19:03:56.0099 4140 mrxsmb10 - ok
    19:03:56.0124 4140 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
    19:03:56.0126 4140 mrxsmb20 - ok
    19:03:56.0166 4140 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
    19:03:56.0168 4140 msahci - ok
    19:03:56.0231 4140 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
    19:03:56.0234 4140 msdsm - ok
    19:03:56.0282 4140 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
    19:03:56.0283 4140 Msfs - ok
    19:03:56.0316 4140 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
    19:03:56.0317 4140 mshidkmdf - ok
    19:03:56.0377 4140 MSHUSBVideo (bb590070d606ae6f008341fc9a7b2ad7) C:\Windows\system32\Drivers\nx6000.sys
    19:03:56.0378 4140 MSHUSBVideo - ok
    19:03:56.0404 4140 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
    19:03:56.0406 4140 msisadrv - ok
    19:03:56.0449 4140 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
    19:03:56.0450 4140 MSKSSRV - ok
    19:03:56.0465 4140 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
    19:03:56.0466 4140 MSPCLOCK - ok
    19:03:56.0483 4140 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
    19:03:56.0485 4140 MSPQM - ok
    19:03:56.0511 4140 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
    19:03:56.0517 4140 MsRPC - ok
    19:03:56.0540 4140 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
    19:03:56.0541 4140 mssmbios - ok
    19:03:56.0557 4140 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
    19:03:56.0559 4140 MSTEE - ok
    19:03:56.0577 4140 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
    19:03:56.0578 4140 MTConfig - ok
    19:03:56.0601 4140 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
    19:03:56.0603 4140 Mup - ok
    19:03:56.0646 4140 mv91cons (6af2640b5d7202fa0d96467318d4592e) C:\Windows\system32\DRIVERS\mv91cons.sys
    19:03:56.0648 4140 mv91cons - ok
    19:03:56.0700 4140 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
    19:03:56.0706 4140 NativeWifiP - ok
    19:03:56.0819 4140 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
    19:03:56.0845 4140 NDIS - ok
    19:03:56.0868 4140 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
    19:03:56.0869 4140 NdisCap - ok
    19:03:56.0899 4140 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
    19:03:56.0900 4140 NdisTapi - ok
    19:03:56.0932 4140 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
    19:03:56.0934 4140 Ndisuio - ok
    19:03:56.0956 4140 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
    19:03:56.0959 4140 NdisWan - ok
    19:03:56.0985 4140 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
    19:03:56.0990 4140 NDProxy - ok
    19:03:57.0025 4140 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
    19:03:57.0026 4140 NetBIOS - ok
    19:03:57.0049 4140 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
    19:03:57.0053 4140 NetBT - ok
    19:03:57.0162 4140 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
    19:03:57.0164 4140 nfrd960 - ok
    19:03:57.0222 4140 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
    19:03:57.0224 4140 Npfs - ok
    19:03:57.0257 4140 NPPTNT2 - ok
    19:03:57.0278 4140 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
    19:03:57.0279 4140 nsiproxy - ok
    19:03:57.0357 4140 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
    19:03:57.0392 4140 Ntfs - ok
    19:03:57.0408 4140 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
    19:03:57.0409 4140 Null - ok
    19:03:57.0442 4140 nusb3hub (f5bc2345e8c89d4e90fafd23a2239935) C:\Windows\system32\DRIVERS\nusb3hub.sys
    19:03:57.0444 4140 nusb3hub - ok
    19:03:57.0478 4140 nusb3xhc (5d42578241bc2a9b4a64837077436d5f) C:\Windows\system32\DRIVERS\nusb3xhc.sys
    19:03:57.0481 4140 nusb3xhc - ok
    19:03:57.0533 4140 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
    19:03:57.0536 4140 nvraid - ok
    19:03:57.0581 4140 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
    19:03:57.0584 4140 nvstor - ok
    19:03:57.0623 4140 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
    19:03:57.0626 4140 nv_agp - ok
    19:03:57.0648 4140 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
    19:03:57.0650 4140 ohci1394 - ok
    19:03:57.0720 4140 P17 (634347adebc790b8f07654a3ea8034fd) C:\Windows\system32\drivers\P17.sys
    19:03:57.0746 4140 P17 - ok
    19:03:57.0775 4140 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
    19:03:57.0776 4140 Parport - ok
    19:03:57.0790 4140 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
    19:03:57.0792 4140 partmgr - ok
    19:03:57.0812 4140 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
    19:03:57.0814 4140 pci - ok
    19:03:57.0832 4140 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
    19:03:57.0833 4140 pciide - ok
    19:03:57.0852 4140 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
    19:03:57.0854 4140 pcmcia - ok
    19:03:57.0870 4140 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
    19:03:57.0871 4140 pcw - ok
    19:03:57.0898 4140 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
    19:03:57.0916 4140 PEAUTH - ok
    19:03:58.0065 4140 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
    19:03:58.0067 4140 PptpMiniport - ok
    19:03:58.0094 4140 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
    19:03:58.0096 4140 Processor - ok
    19:03:58.0154 4140 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
    19:03:58.0156 4140 Psched - ok
    19:03:58.0196 4140 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
    19:03:58.0222 4140 ql2300 - ok
    19:03:58.0235 4140 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
    19:03:58.0238 4140 ql40xx - ok
    19:03:58.0259 4140 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
    19:03:58.0260 4140 QWAVEdrv - ok
    19:03:58.0285 4140 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
    19:03:58.0286 4140 RasAcd - ok
    19:03:58.0316 4140 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
    19:03:58.0318 4140 RasAgileVpn - ok
    19:03:58.0334 4140 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
    19:03:58.0336 4140 Rasl2tp - ok
    19:03:58.0351 4140 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
    19:03:58.0353 4140 RasPppoe - ok
    19:03:58.0378 4140 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
    19:03:58.0379 4140 RasSstp - ok
    19:03:58.0405 4140 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
    19:03:58.0409 4140 rdbss - ok
    19:03:58.0432 4140 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
    19:03:58.0433 4140 rdpbus - ok
    19:03:58.0453 4140 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
    19:03:58.0454 4140 RDPCDD - ok
    19:03:58.0476 4140 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
    19:03:58.0477 4140 RDPENCDD - ok
    19:03:58.0500 4140 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
    19:03:58.0500 4140 RDPREFMP - ok
    19:03:58.0520 4140 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
    19:03:58.0523 4140 RDPWD - ok
    19:03:58.0543 4140 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
    19:03:58.0546 4140 rdyboost - ok
    19:03:58.0593 4140 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
    19:03:58.0595 4140 rspndr - ok
    19:03:58.0637 4140 RTL8167 (7ea8d2eb9bbfd2ab8a3117a1e96d3b3a) C:\Windows\system32\DRIVERS\Rt64win7.sys
    19:03:58.0640 4140 RTL8167 - ok
    19:03:58.0688 4140 RtNdPt60 (2b38c905492f36fe42b59da52d6b4eb7) C:\Windows\system32\DRIVERS\RtNdPt60.sys
    19:03:58.0689 4140 RtNdPt60 - ok
    19:03:58.0745 4140 RTTEAMPT (3183388da27655085960a22b4b29caa9) C:\Windows\system32\DRIVERS\RtTeam60.sys
    19:03:58.0747 4140 RTTEAMPT - ok
    19:03:58.0762 4140 RTVLANPT (8b6b42d782202363a562f82b0e13b1c0) C:\Windows\system32\DRIVERS\RtVlan60.sys
    19:03:58.0764 4140 RTVLANPT - ok
    19:03:58.0798 4140 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
    19:03:58.0800 4140 sbp2port - ok
    19:03:58.0826 4140 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
    19:03:58.0828 4140 scfilter - ok
    19:03:58.0882 4140 ScreamBAudioSvc (8b56bdce6a303dde63d63440d1cf9ad1) C:\Windows\system32\drivers\ScreamingBAudio64.sys
    19:03:58.0882 4140 ScreamBAudioSvc - ok
    19:03:58.0907 4140 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
    19:03:58.0908 4140 secdrv - ok
    19:03:58.0939 4140 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
    19:03:58.0940 4140 Serenum - ok
    19:03:58.0977 4140 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
    19:03:58.0979 4140 Serial - ok
    19:03:59.0021 4140 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
    19:03:59.0022 4140 sermouse - ok
    19:03:59.0059 4140 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
    19:03:59.0060 4140 sffdisk - ok
    19:03:59.0080 4140 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
    19:03:59.0082 4140 sffp_mmc - ok
    19:03:59.0097 4140 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\drivers\sffp_sd.sys
    19:03:59.0098 4140 sffp_sd - ok
    19:03:59.0118 4140 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
    19:03:59.0119 4140 sfloppy - ok
    19:03:59.0149 4140 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
    19:03:59.0151 4140 SiSRaid2 - ok
    19:03:59.0170 4140 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
    19:03:59.0172 4140 SiSRaid4 - ok
    19:03:59.0194 4140 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
    19:03:59.0196 4140 Smb - ok
    19:03:59.0227 4140 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
    19:03:59.0228 4140 spldr - ok
    19:03:59.0311 4140 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
    19:03:59.0311 4140 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
    19:03:59.0317 4140 sptd ( LockedFile.Multi.Generic ) - warning
    19:03:59.0317 4140 sptd - detected LockedFile.Multi.Generic (1)

    19:03:59.0375 4140 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
    19:03:59.0383 4140 srv - ok
    19:03:59.0403 4140 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
    19:03:59.0411 4140 srv2 - ok
    19:03:59.0463 4140 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
    19:03:59.0466 4140 srvnet - ok
    19:03:59.0512 4140 StarOpen (e57b778208c783d8debab320c16a1b82) C:\Windows\system32\drivers\StarOpen.sys
    19:03:59.0514 4140 StarOpen - ok
    19:03:59.0544 4140 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
    19:03:59.0545 4140 stexstor - ok
    19:03:59.0573 4140 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
    19:03:59.0574 4140 swenum - ok
    19:03:59.0641 4140 tap0901t (b08740047145b9bce15bf75ca0f9718a) C:\Windows\system32\DRIVERS\tap0901t.sys
    19:03:59.0643 4140 tap0901t - ok
    19:03:59.0733 4140 Tcpip (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\drivers\tcpip.sys
    19:03:59.0775 4140 Tcpip - ok
    19:03:59.0829 4140 TCPIP6 (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\DRIVERS\tcpip.sys
    19:03:59.0844 4140 TCPIP6 - ok
    19:03:59.0867 4140 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
    19:03:59.0868 4140 tcpipreg - ok
    19:03:59.0892 4140 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
    19:03:59.0893 4140 TDPIPE - ok
    19:03:59.0911 4140 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
    19:03:59.0912 4140 TDTCP - ok
    19:03:59.0935 4140 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
    19:03:59.0937 4140 tdx - ok
    19:03:59.0978 4140 TEAM (3183388da27655085960a22b4b29caa9) C:\Windows\system32\DRIVERS\RtTeam60.sys
    19:03:59.0980 4140 TEAM - ok
    19:04:00.0015 4140 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
    19:04:00.0016 4140 TermDD - ok
    19:04:00.0051 4140 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
    19:04:00.0052 4140 tssecsrv - ok
    19:04:00.0094 4140 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
    19:04:00.0097 4140 tunnel - ok
    19:04:00.0131 4140 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
    19:04:00.0133 4140 uagp35 - ok
    19:04:00.0171 4140 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
    19:04:00.0176 4140 udfs - ok
    19:04:00.0232 4140 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
    19:04:00.0234 4140 uliagpkx - ok
    19:04:00.0259 4140 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
    19:04:00.0260 4140 umbus - ok
    19:04:00.0293 4140 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
    19:04:00.0295 4140 UmPass - ok
    19:04:00.0367 4140 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
    19:04:00.0369 4140 usbaudio - ok
    19:04:00.0424 4140 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
    19:04:00.0426 4140 usbccgp - ok
    19:04:00.0464 4140 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
    19:04:00.0466 4140 usbcir - ok
    19:04:00.0519 4140 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\drivers\usbehci.sys
    19:04:00.0521 4140 usbehci - ok
    19:04:00.0557 4140 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
    19:04:00.0562 4140 usbhub - ok
    19:04:00.0611 4140 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\drivers\usbohci.sys
    19:04:00.0613 4140 usbohci - ok
    19:04:00.0652 4140 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
    19:04:00.0653 4140 usbprint - ok
    19:04:00.0704 4140 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
    19:04:00.0705 4140 usbscan - ok
    19:04:00.0749 4140 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
    19:04:00.0751 4140 USBSTOR - ok
    19:04:00.0804 4140 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\drivers\usbuhci.sys
    19:04:00.0805 4140 usbuhci - ok
    19:04:00.0850 4140 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
    19:04:00.0852 4140 usbvideo - ok
    19:04:00.0878 4140 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
    19:04:00.0879 4140 vdrvroot - ok
    19:04:00.0924 4140 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
    19:04:00.0925 4140 vga - ok
    19:04:00.0947 4140 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
    19:04:00.0948 4140 VgaSave - ok
    19:04:00.0971 4140 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
    19:04:00.0974 4140 vhdmp - ok
    19:04:00.0995 4140 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
    19:04:00.0999 4140 viaide - ok
    19:04:01.0025 4140 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
    19:04:01.0026 4140 volmgr - ok
    19:04:01.0047 4140 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
    19:04:01.0050 4140 volmgrx - ok
    19:04:01.0071 4140 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
    19:04:01.0075 4140 volsnap - ok
    19:04:01.0094 4140 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
    19:04:01.0096 4140 vsmraid - ok
    19:04:01.0114 4140 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
    19:04:01.0115 4140 vwifibus - ok
    19:04:01.0149 4140 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
    19:04:01.0150 4140 WacomPen - ok
    19:04:01.0176 4140 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
    19:04:01.0177 4140 WANARP - ok
    19:04:01.0181 4140 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
    19:04:01.0182 4140 Wanarpv6 - ok
    19:04:01.0217 4140 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
    19:04:01.0218 4140 Wd - ok
    19:04:01.0242 4140 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
    19:04:01.0259 4140 Wdf01000 - ok
    19:04:01.0298 4140 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
    19:04:01.0299 4140 WfpLwf - ok
    19:04:01.0322 4140 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
    19:04:01.0323 4140 WIMMount - ok
    19:04:01.0444 4140 WinRing0_1_2_0 (0c0195c48b6b8582fa6f6373032118da) C:\Program Files (x86)\Sytexis Software\PlayClaw\WinRing0x64.sys
    19:04:01.0446 4140 WinRing0_1_2_0 - ok
    19:04:01.0566 4140 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
    19:04:01.0567 4140 WinUsb - ok
    19:04:01.0645 4140 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
    19:04:01.0646 4140 WmiAcpi - ok
    19:04:01.0692 4140 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
    19:04:01.0693 4140 ws2ifsl - ok
    19:04:01.0712 4140 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
    19:04:01.0714 4140 WudfPf - ok
    19:04:01.0793 4140 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
    19:04:01.0796 4140 WUDFRd - ok
    19:04:01.0830 4140 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
    19:04:01.0835 4140 \Device\Harddisk0\DR0 - ok
    19:04:01.0837 4140 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
    19:04:01.0842 4140 \Device\Harddisk1\DR1 - ok
    19:04:01.0845 4140 Boot (0x1200) (040789685e291d953386dfd141729d74) \Device\Harddisk0\DR0\Partition0
    19:04:01.0846 4140 \Device\Harddisk0\DR0\Partition0 - ok
    19:04:01.0849 4140 Boot (0x1200) (57cd1864f853ecbf43bd8d8b44586b98) \Device\Harddisk1\DR1\Partition0
    19:04:01.0850 4140 \Device\Harddisk1\DR1\Partition0 - ok
    19:04:01.0852 4140 Boot (0x1200) (6b2fb9f08798f74434cb1da5f270fdb6) \Device\Harddisk1\DR1\Partition1
    19:04:01.0853 4140 \Device\Harddisk1\DR1\Partition1 - ok
    19:04:01.0854 4140 ============================================================
    19:04:01.0854 4140 Scan finished
    19:04:01.0854 4140 ============================================================
    19:04:01.0865 5444 Detected object count: 1
    19:04:01.0865 5444 Actual detected object count: 1
    19:04:16.0873 5444 sptd ( LockedFile.Multi.Generic ) - skipped by user
    19:04:16.0873 5444 sptd ( LockedFile.Multi.Generic ) - User select action: Skip


    m
    0
    l
    8 Novembre 2011 21:08:29

    Bonsoir
    sptd, c'est daemon tools, ton lecteur virtuel, pas de soucis avec ça...

    par contre, le fait que ton antivirus soit out et que tu n'arrives pas à lancer dds me fais penser à une infection bagle...




    Télécharge ComboFix de sUBs :
    ComboFix.exe
    et sauvegarde le sur ton bureau et pas ailleurs!

    mais attention, vu que ton infection semble faire planter les outils, il faut feinter pour que tu puisses lancer combofix donc:
    renomme Combofix en Exomus avant de lancer le téléchargement comme suit:
    http://forum.pcastuces.com/combofix___renommer_au_telec...

    Double-clic sur Exomus, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
    clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"

    viens sur le forum et édition "coller"

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer

    +++++++++
    m
    0
    l
    11 Novembre 2011 10:39:30

    ComboFix 11-11-11.02 - GAME 11/11/2011 10:21:23.1.8 - x64
    Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.33.1036.18.4087.2122 [GMT 1:00]
    Lancé depuis: c:\users\GAME\Desktop\Exomus.exe
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    * Un nouveau point de restauration a été créé
    .
    .
    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    C:\install.exe
    c:\programdata\xml1F4.tmp
    c:\programdata\xml262.tmp
    c:\programdata\xml8B10.tmp
    c:\programdata\xml8B7F.tmp
    c:\programdata\xml96D3.tmp
    c:\programdata\xml982B.tmp
    c:\programdata\xml98B9.tmp
    c:\programdata\xml9965.tmp
    c:\programdata\xmlA351.tmp
    c:\programdata\xmlA3BF.tmp
    c:\programdata\xmlBE50.tmp
    c:\programdata\xmlBEBE.tmp
    c:\users\GAME\AppData\Roaming\app
    c:\users\GAME\AppData\Roaming\app\Jerakine_lang.dat
    c:\users\GAME\AppData\Roaming\app\Jerakine_lang_vesrion.dat
    c:\users\GAME\AppData\Roaming\inst.exe
    c:\users\GAME\AppData\Roaming\Local
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\(2).ddr
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\.ddr
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\0.ddi
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\1.ddi
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\2.ddi
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\minecrafterreur.mp4.ddr
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\settings.ddi
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\(2)
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\.ddp
    c:\users\GAME\AppData\Roaming\Local\Temp\DDM\Settings\Temporary Downloaded Files\minecrafterreur.mp4
    c:\users\GAME\AppData\Roaming\vso_ts_preview.xml
    c:\users\GAME\dsound.dll
    c:\users\GAME\lua51.dll
    c:\users\GAME\Trainer.asi
    .
    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2011-10-11 au 2011-11-11 ))))))))))))))))))))))))))))))))))))
    .
    .
    2074-05-07 17:38 . 2006-11-21 19:48 203576 ------w- c:\program files (x86)\Microsoft Games\Age of Empires III\autopatcher2.exe
    2011-11-09 19:25 . 2011-11-11 09:16 -------- d-----w- c:\users\GAME\AppData\Local\Akamai
    2011-11-09 12:10 . 2011-10-01 05:28 886784 ----a-w- c:\program files\Common Files\System\wab32.dll
    2011-11-09 12:10 . 2011-10-01 04:43 708608 ----a-w- c:\program files (x86)\Common Files\System\wab32.dll
    2011-11-09 12:10 . 2011-09-29 16:24 1897328 ----a-w- c:\windows\system32\drivers\tcpip.sys
    2011-11-09 12:10 . 2011-09-29 04:09 3141120 ----a-w- c:\windows\system32\win32k.sys
    2011-11-06 13:59 . 2004-12-02 12:54 55296 ----a-w- c:\windows\system32\drivers\aswmon2.sys
    2011-11-06 13:59 . 2004-12-02 12:51 14848 ----a-w- c:\windows\system32\drivers\aavmker4.sys
    2011-11-06 13:59 . 2004-12-01 22:00 40960 ----a-w- c:\windows\system32\drivers\aswTdi.sys
    2011-11-06 13:58 . 2011-11-06 13:58 -------- d-----w- c:\program files (x86)\Alwil Software
    2011-11-06 13:58 . 2004-12-02 12:17 90112 ----a-w- c:\windows\SysWow64\AVASTSS.scr
    2011-11-06 13:58 . 2004-11-29 13:15 339968 ----a-w- c:\windows\SysWow64\aswBoot.exe
    2011-11-06 13:58 . 2004-01-09 09:13 380928 ----a-w- c:\windows\SysWow64\actskin4.ocx
    2011-11-05 19:13 . 2011-11-05 19:15 -------- d-----w- c:\users\Public\1Musique soso
    2011-11-05 09:17 . 2011-11-05 09:18 -------- d-----w- c:\users\Public\image d'époque
    2011-11-02 17:35 . 2011-11-02 17:35 -------- d-----w- c:\program files (x86)\Clownfish
    2011-10-28 09:52 . 2011-11-10 21:33 -------- d-----w- c:\users\GAME\riotsGamesLogs
    2011-10-28 09:52 . 2011-10-28 09:52 -------- d-----w- c:\users\GAME\AppData\Roaming\LolClient
    2011-10-28 09:26 . 2008-07-12 06:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
    2011-10-28 09:26 . 2008-07-12 06:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll
    2011-10-28 09:26 . 2008-07-12 06:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
    2011-10-28 09:23 . 2011-10-28 09:23 -------- d-----w- C:\Riot Games
    2011-10-28 08:53 . 2011-11-11 09:27 -------- d-----w- c:\users\GAME\AppData\Local\PMB Files
    2011-10-28 08:53 . 2011-11-10 21:37 -------- d-----w- c:\programdata\PMB Files
    2011-10-28 08:53 . 2011-10-28 08:53 -------- d-----w- c:\program files (x86)\Pando Networks
    2011-10-26 10:53 . 2011-10-26 10:53 -------- d-----w- c:\program files (x86)\Cheat Engine 6.1
    2011-10-26 09:26 . 2011-08-15 05:08 6144 ----a-w- c:\program files\Internet Explorer\iecompat.dll
    2011-10-26 09:26 . 2011-08-15 04:25 6144 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
    2011-10-26 09:22 . 2011-10-26 09:22 -------- d-----w- c:\program files (x86)\Common Files\xing shared
    2011-10-12 12:24 . 2011-08-17 05:32 613888 ----a-w- c:\windows\system32\psisdecd.dll
    .
    .
    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-10-22 17:10 . 2010-05-08 19:35 270408 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
    2011-10-22 17:10 . 2010-01-19 16:30 270408 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
    2011-10-22 15:23 . 2010-01-19 16:30 270408 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
    2011-10-07 04:16 . 2011-11-11 09:12 8570192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{26CDE8A2-575A-4069-B2FC-A610EDC32C41}\mpengine.dll
    2011-10-03 03:06 . 2010-05-21 09:11 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
    2011-08-17 17:56 . 2011-08-17 17:56 11606 ----a-w- c:\windows\SysWow64\ealregsnapshot1.reg
    2011-08-16 22:37 . 2011-08-16 22:37 314016 ----a-w- c:\windows\system32\drivers\atksgt.sys
    2011-08-16 22:37 . 2011-08-16 22:37 43680 ----a-w- c:\windows\system32\drivers\lirsgt.sys
    2006-05-03 10:06 163328 --sh--r- c:\windows\SysWOW64\flvDX.dll
    2007-02-21 11:47 31232 --sh--r- c:\windows\SysWOW64\msfDX.dll
    2008-03-16 13:30 216064 --sh--r- c:\windows\SysWOW64\nbDX.dll
    .
    .
    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "LogitechSoftwareUpdate"="c:\program files (x86)\Logitech\Video\ManifestEngine.exe" [2005-06-08 196608]
    "BitTorrent DNA"="c:\program files (x86)\DNA\btdna.exe" [2010-01-23 323392]
    "Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
    "Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2011-10-28 3077528]
    "Clownfish"="c:\program files (x86)\Clownfish\Clownfish.exe" [2011-11-01 962048]
    "Akamai NetSession Interface"="c:\users\GAME\AppData\Local\Akamai\netsession_win.exe" [2011-11-10 3303000]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "P17RunE"="P17RunE.dll" [2008-03-28 14848]
    "NUSB3MON"="c:\program files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2009-10-21 106496]
    "LogitechVideoRepair"="c:\program files (x86)\Logitech\Video\ISStart.exe" [2005-06-08 458752]
    "LogitechVideoTray"="c:\program files (x86)\Logitech\Video\LogiTray.exe" [2005-06-08 217088]
    "Google Desktop Search"="c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" [2010-06-01 30192]
    "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]
    "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-10-26 98304]
    "ATICustomerCare"="c:\program files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-05-04 311296]
    "DivX Download Manager"="c:\program files (x86)\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]
    "BCU"="c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-10-15 375000]
    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
    "LifeCam"="c:\program files (x86)\Microsoft LifeCam\LifeExp.exe" [2010-12-13 135536]
    "EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320]
    "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
    "LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2011-08-04 1955208]
    "SearchSettings"="c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" [2011-09-27 894304]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
    "TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2011-10-26 273528]
    .
    c:\users\GAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    MSN Pictures Displayer.lnk - c:\programdata\MSN Pictures Displayer\MSN Pictures Displayer.exe [2010-6-26 4711936]
    Notification de cadeaux MSN.lnk - c:\users\GAME\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe [2010-4-9 135680]
    OpenOffice.org 3.3.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-3-16 1207312]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\progra~2\Google\GOOGLE~1\GoogleDesktopNetwork3.dll
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-21 136176]
    R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [x]
    R3 cpuz130;cpuz130;c:\users\GAME\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
    R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2011-03-05 79360]
    R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2009-12-19 79360]
    R3 dump_wmimmc;dump_wmimmc;c:\aeriagames\WolfTeam\GameGuard\dump_wmimmc.sys [x]
    R3 ENTECH64;ENTECH64;c:\windows\system32\DRIVERS\ENTECH64.sys [x]
    R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
    R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-01 30192]
    R3 gupdatem;Service Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-21 136176]
    R3 Mkd3kfNt;Mkd3kfNt;c:\windows\system32\drivers\Mkd3kfNt.sys [x]
    R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys [x]
    R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys [x]
    R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.0);c:\windows\system32\DRIVERS\RtTeam60.sys [x]
    R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
    R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Sytexis Software\PlayClaw\WinRing0x64.sys [2008-07-26 14544]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
    S0 mv91cons;Marvell 91xx Config Device Driver;c:\windows\system32\DRIVERS\mv91cons.sys [x]
    S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
    S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [x]
    S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
    S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
    S2 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [2011-09-27 745880]
    S2 BCUService;Browser Configuration Utility Service;c:\program files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-10-15 223464]
    S2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x64.sys [x]
    S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
    S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
    S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
    S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-08-04 2329480]
    S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys [x]
    S2 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe [2010-11-22 718072]
    S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
    S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
    S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
    S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys [x]
    S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys [x]
    S3 Mkd2Nadr;Mkd2Nadr;c:\windows\system32\drivers\Mkd2Nadr.sys [x]
    S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\Drivers\nx6000.sys [x]
    S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
    S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
    S3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys [x]
    S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [x]
    .
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
    Akamai REG_MULTI_SZ Akamai
    .
    Contenu du dossier 'Tâches planifiées'
    .
    2011-11-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-16 13:48]
    .
    2011-11-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-06-16 13:48]
    .
    2011-11-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3707577770-117122976-375237790-1001Core.job
    - c:\users\GAME\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-21 13:48]
    .
    2011-11-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3707577770-117122976-375237790-1001UA.job
    - c:\users\GAME\AppData\Local\Google\Update\GoogleUpdate.exe [2010-03-21 13:48]
    .
    .
    --------- x86-64 -----------
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-12-19 172032]
    "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
    "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "LoadAppInit_DLLs"=0x0
    .
    ------- Examen supplémentaire -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.google.fr/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    uInternet Settings,ProxyOverride = *.local;<local>
    uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
    IE: Download with GetRight - c:\program files (x86)\GetRight\GRdownload.htm
    IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
    IE: Open with GetRight Browser - c:\program files (x86)\GetRight\GRbrowse.htm
    FF - ProfilePath - c:\users\GAME\AppData\Roaming\Mozilla\Firefox\Profiles\7a7rxfb5.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://search.sweetim.com/search.asp?src=2&q=
    FF - prefs.js: browser.search.selectedEngine - Bing
    FF - prefs.js: browser.startup.homepage - hxxp://fr.msn.com/
    FF - prefs.js: keyword.URL - hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=971163&p=
    FF - Ext: MSN Pictures Displayer: {0497D7FA-B45F-11DB-9DCC-3D3756D89593} - c:\program files (x86)\Mozilla Firefox\extensions\{0497D7FA-B45F-11DB-9DCC-3D3756D89593}
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
    FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files (x86)\DivX\DivX Plus Web Player\firefox\html5video
    FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files (x86)\DivX\DivX Plus Web Player\firefox\wpa
    FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
    .
    - - - - ORPHELINS SUPPRIMES - - - -
    .
    WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
    AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
    AddRemove-Audacity_is1 - c:\program files (x86)\Audacity\unins000.exe
    AddRemove-CamStudio 2.0 Fr_is1 - c:\program files (x86)\CamStudio\unins000.exe
    AddRemove-Chicken Attack Deluxe_is1 - c:\program files (x86)\Chicken Attack Deluxe\ReflexiveArcade\unins000.exe
    AddRemove-MAGIX Music Maker 16 Version à télécharger F - c:\program files (x86)\MAGIX\MusicMaker16_Version_a_telecharger\unwise.exe
    AddRemove-MAGIX Screenshare F - c:\program files (x86)\MAGIX\PCVisit\unwise.exe
    AddRemove-MAGIX Speed burnR F - c:\program files (x86)\MAGIX\Speed2_burnR_mxcdr\unwise.exe
    AddRemove-MAGIX_MSI_mm17dlx - c:\program files (x86)\MAGIX\Music_Maker_17_Premium_Version_a_telecharger\mm17dlx_fr-FR_setup.exe
    AddRemove-WinDS PRODSi 2.0.4 - c:\program files (x86)\WinDS PRO\uninstall.exe
    AddRemove-WolfTeam - c:\aeriagames\WolfTeam\Uninst.exe
    AddRemove-{675DD1E6-637A-4F0E-B6DE-26F45CC26092}_is1 - c:\program files (x86)\Ubisoft\Assassin's Creed II\unins000.exe
    AddRemove-PhotoFiltre - c:\program files (x86)\PhotoFiltre\Uninst.exe
    .
    .
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
    "ImagePath"="c:\windows\system32\GameMon.des -service"
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------
    .
    [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
    @Denied: (2) (LocalSystem)
    "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
    d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,b5,99,52,d7,8d,05,5e,4f,a8,05,8f,\
    "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
    d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,b5,99,52,d7,8d,05,5e,4f,a8,05,8f,\
    .
    [HKEY_USERS\S-1-5-21-3707577770-117122976-375237790-1001\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{463D0559-34A8-8F60-5AD3-634A252318E6}*]
    "hahamgmmdkggodlc"=hex:69,61,6a,61,61,68,6e,65,67,6a,70,68,65,65,6a,6d,6a,6a,
    00,00
    "ianbgbhadlggbclcjg"=hex:69,61,69,61,6a,68,63,62,6d,6c,67,62,6f,69,69,68,66,61,
    00,00
    .
    [HKEY_USERS\S-1-5-21-3707577770-117122976-375237790-1001\Software\SecuROM\License information*]
    "datasecu"=hex:43,58,6f,1a,23,c9,9f,27,b2,0a,e3,25,21,c8,d8,d2,be,5c,8b,cd,e3,
    30,ed,35,91,61,a4,a7,1b,02,19,07,23,ac,77,76,50,0e,dd,fd,50,88,f2,68,19,5c,\
    "rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10q_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10q_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10q.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.10"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10q.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10q.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10q.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ------------------------ Autres processus actifs ------------------------
    .
    c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
    c:\program files (x86)\Alwil Software\Avast4\aswUpdSv.exe
    c:\program files (x86)\Bonjour\mDNSResponder.exe
    c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    c:\program files (x86)\CDBurnerXP\NMSAccessU.exe
    c:\windows\SysWOW64\PnkBstrA.exe
    c:\windows\SysWOW64\rundll32.exe
    c:\program files (x86)\OpenOffice.org 3\program\soffice.exe
    c:\program files (x86)\OpenOffice.org 3\program\soffice.bin
    c:\windows\SysWOW64\DllHost.exe
    c:\program files\Logitech\SetPoint\x86\SetPoint32.exe
    c:\program files (x86)\Logitech\Video\FxSvr2.exe
    .
    **************************************************************************
    .
    Heure de fin: 2011-11-11 10:36:19 - La machine a redémarré
    ComboFix-quarantined-files.txt 2011-11-11 09:36
    .
    Avant-CF: 15 552 491 520 octets libres
    Après-CF: 15 756 689 408 octets libres
    .
    - - End Of File - - 6DE22D64A9D96CE5FC5A14798BDB94FD



    Voilà, j'ai patienté, et ceci est le rapport de ConboFix.
    Il a supprimé des fichiers orphelins à ce que j'ai compris et quelque dossier qui se trouvait dans Temp. Si ce n'est pas trop compliqué, peux tu m'expliquer en quoi Combo Fix est dangereux ?
    m
    0
    l
    12 Novembre 2011 10:06:03

    Bonjour
    je n'ai pas dit que c'était dangereux... c'est un outil puissant, c'est tout, donc il ne faut pas l'utiliser n'importante comment...


  • Télécharge RogueKiller sur lon bureau
    (A partir d'une clé USB si le Rogue empêche l'accès au net) .
    http://www.sur-la-toile.com/RogueKiller/
  • Quitte tous les programmes en cours
  • Lance RogueKiller.exe.
    Sous Vista/Seven, faire un clic droit et choisir Exécuter en tant qu'administrateur.
  • Choisis l'option 1 et laisse tourner l'outil.

  • Poste le rapport RKreport.txt crée sur ton bureau.
    m
    0
    l
    13 Novembre 2011 12:35:57

    RogueKiller V6.1.7 [05/11/2011] par Tigzy
    mail: tigzyRK<at>gmail<dot>com
    Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueK...
    Blog: http://tigzyrk.blogspot.com

    Systeme d'exploitation: Windows 7 (6.1.7600 ) 64 bits version
    Demarrage : Mode normal
    Utilisateur: GAME [Droits d'admin]
    Mode: Recherche -- Date : 13/11/2011 12:35:22

    ¤¤¤ Processus malicieux: 3 ¤¤¤
    [SUSP PATH] netsession_win.exe -- C:\Users\GAME\AppData\Local\Akamai\netsession_win.exe -> KILLED [TermProc]
    [SUSP PATH] lsnfier.exe -- C:\Users\GAME\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe -> KILLED [TermProc]
    [SUSP PATH] netsession_win.exe -- C:\Users\GAME\AppData\Local\Akamai\netsession_win.exe -> KILLED [TermProc]

    ¤¤¤ Entrees de registre: 8 ¤¤¤
    [SUSP PATH] HKCU\[...]\Run : Akamai NetSession Interface (C:\Users\GAME\AppData\Local\Akamai\netsession_win.exe) -> FOUND
    [SUSP PATH] HKUS\S-1-5-21-3707577770-117122976-375237790-1001[...]\Run : Akamai NetSession Interface (C:\Users\GAME\AppData\Local\Akamai\netsession_win.exe) -> FOUND
    [SUSP PATH] MSN Pictures Displayer.lnk : C:\ProgramData\MSN Pictures Displayer\MSN Pictures Displayer.exe -> FOUND
    [SUSP PATH] Notification de cadeaux MSN.lnk : C:\Users\GAME\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe -> FOUND
    [HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND
    [HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND
    [HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
    [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

    ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

    ¤¤¤ Driver: [NOT LOADED] ¤¤¤

    ¤¤¤ Infection : ¤¤¤

    ¤¤¤ Fichier HOSTS: ¤¤¤
    127.0.0.1 localhost


    Termine : << RKreport[1].txt >>
    RKreport[1].txt


    Je sais pas ce que ca veut dire mais je te fais confiance :) 
    m
    0
    l
    13 Novembre 2011 18:42:59

    Bonjour
    ça se termine
    à faire dans l'ordre:

    1
    Télécharge MalwareByte's Anti-Malware sur ton Bureau.

  • Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe, effectue la mise à jour.


    2

  • Lance RogueKiller.exe.
    Sous Vista/Seven, faire un clic droit et choisir Exécuter en tant qu'administrateur.
  • Choisis l'option 2 et laisse tourner l'outil.

  • Poste le rapport RKreport.txt crée sur ton bureau.

    3

  • Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
  • Afin de lancer la recherche, clic sur"Rechercher".
  • Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
    ~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
    ~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.

  • Poste ce rapport.

    ~~REMARQUE: Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.


    ~~Aide :

  • Tutoriel MalwareByte's Anti-Malware
    m
    0
    l
    14 Novembre 2011 19:14:59

    RogueKiller V6.1.7 [05/11/2011] par Tigzy
    mail: tigzyRK<at>gmail<dot>com
    Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueK...
    Blog: http://tigzyrk.blogspot.com

    Systeme d'exploitation: Windows 7 (6.1.7600 ) 64 bits version
    Demarrage : Mode normal
    Utilisateur: GAME [Droits d'admin]
    Mode: Suppression -- Date : 14/11/2011 17:56:32

    ¤¤¤ Processus malicieux: 0 ¤¤¤

    ¤¤¤ Entrees de registre: 7 ¤¤¤
    [SUSP PATH] HKCU\[...]\Run : Akamai NetSession Interface (C:\Users\GAME\AppData\Local\Akamai\netsession_win.exe) -> DELETED
    [SUSP PATH] MSN Pictures Displayer.lnk : C:\ProgramData\MSN Pictures Displayer\MSN Pictures Displayer.exe -> DELETED
    [SUSP PATH] Notification de cadeaux MSN.lnk : C:\Users\GAME\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe -> DELETED
    [HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED ()
    [HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED ()
    [HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED ()
    [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED ()

    ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

    ¤¤¤ Driver: [NOT LOADED] ¤¤¤

    ¤¤¤ Infection : ¤¤¤

    ¤¤¤ Fichier HOSTS: ¤¤¤
    127.0.0.1 localhost


    Termine : << RKreport[2].txt >>
    RKreport[1].txt ; RKreport[2].txt


    Et voilà ce qu'a donner le scan de mon ordi avec un logiciel qui se nomme Spigot et que j'ai bien peur que ca soit un virus.

    http://s3.noelshack.com/uploads/images/16353788207625_t...
    m
    0
    l
    14 Novembre 2011 22:07:40

    Euh j'ai aussi remarquer que MalwareByte bloquait un logiciel .exe qui tente de se connecter à différent ip...

    Le logiciel s'appelle btdna.exe . J'ai trouver comme quoi certains virus peuvent se cacher sous ce nom.

    Voilà le fichier txt protection-log :

    17:57:25 GAME MESSAGE Protection started successfully
    17:57:28 GAME MESSAGE IP Protection started successfully
    18:11:04 GAME IP-BLOCK 85.234.173.253 (Type: outgoing, Port: 56202, Process: btdna.exe)
    18:38:34 GAME IP-BLOCK 85.234.173.253 (Type: outgoing, Port: 56202, Process: btdna.exe)
    18:39:47 GAME IP-BLOCK 62.45.195.114 (Type: outgoing, Port: 56202, Process: btdna.exe)
    18:40:59 GAME IP-BLOCK 89.28.90.221 (Type: incoming, Port: 56202, Process: btdna.exe)
    18:46:54 GAME IP-BLOCK 194.165.0.3 (Type: incoming, Port: 56202, Process: btdna.exe)
    19:09:30 GAME IP-BLOCK 62.45.146.148 (Type: incoming, Port: 56202, Process: btdna.exe)
    19:28:29 GAME IP-BLOCK 89.28.54.223 (Type: incoming, Port: 56202, Process: btdna.exe)
    19:31:01 GAME IP-BLOCK 62.45.32.46 (Type: incoming, Port: 56202, Process: btdna.exe)
    19:33:02 GAME IP-BLOCK 89.28.54.100 (Type: incoming, Port: 56202, Process: btdna.exe)
    19:36:54 GAME IP-BLOCK 89.28.118.17 (Type: incoming, Port: 56202, Process: btdna.exe)
    19:42:39 GAME IP-BLOCK 89.28.24.244 (Type: outgoing, Port: 56202, Process: btdna.exe)
    19:57:52 GAME IP-BLOCK 89.28.54.223 (Type: incoming, Port: 56202, Process: btdna.exe)
    19:59:20 GAME IP-BLOCK 222.70.177.2 (Type: incoming, Port: 56202, Process: btdna.exe)
    19:59:28 GAME IP-BLOCK 89.28.91.148 (Type: incoming, Port: 56202, Process: btdna.exe)
    20:02:09 GAME IP-BLOCK 89.28.110.33 (Type: incoming, Port: 56202, Process: btdna.exe)
    20:04:43 GAME MESSAGE Protection started successfully
    20:04:47 GAME MESSAGE IP Protection started successfully
    20:06:15 GAME IP-BLOCK 222.68.249.91 (Type: outgoing, Port: 56202, Process: btdna.exe)
    20:06:31 GAME IP-BLOCK 89.28.45.6 (Type: outgoing, Port: 56202, Process: btdna.exe)
    20:06:50 GAME IP-BLOCK 89.28.115.247 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:06:50 GAME IP-BLOCK 89.28.82.188 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:06:50 GAME IP-BLOCK 84.16.224.190 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:06:58 GAME IP-BLOCK 204.124.182.206 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:06:58 GAME IP-BLOCK 204.124.182.206 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:06:58 GAME IP-BLOCK 124.217.235.211 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:06:58 GAME IP-BLOCK 84.16.224.93 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:07:39 GAME IP-BLOCK 84.16.224.93 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:07:39 GAME IP-BLOCK 89.28.115.247 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:07:39 GAME IP-BLOCK 89.28.82.188 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:07:39 GAME IP-BLOCK 84.16.224.190 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:07:39 GAME IP-BLOCK 204.124.182.206 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:07:47 GAME IP-BLOCK 204.124.182.206 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:07:47 GAME IP-BLOCK 124.217.235.211 (Type: outgoing, Port: 28960, Process: iw4mp.dat)
    20:10:05 GAME IP-BLOCK 58.241.98.49 (Type: outgoing, Port: 28940, Process: iw4mp.exe)
    20:13:34 GAME IP-BLOCK 83.128.56.70 (Type: outgoing, Port: 28940, Process: iw4mp.exe)
    20:19:29 GAME IP-BLOCK 89.28.74.99 (Type: incoming, Port: 28940, Process: iw4mp.exe)
    20:20:25 GAME IP-BLOCK 62.45.99.96 (Type: incoming, Port: 56202, Process: btdna.exe)
    20:22:09 GAME IP-BLOCK 89.28.110.33 (Type: incoming, Port: 56202, Process: btdna.exe)
    20:22:49 GAME IP-BLOCK 89.28.75.33 (Type: outgoing, Port: 49810, Process: iw4mp.exe)
    20:24:18 GAME IP-BLOCK 221.150.130.193 (Type: outgoing, Port: 28940, Process: iw4mp.exe)
    20:26:34 GAME IP-BLOCK 94.100.30.74 (Type: outgoing, Port: 28940, Process: iw4mp.exe)
    20:31:31 GAME IP-BLOCK 89.28.75.33 (Type: outgoing, Port: 51485, Process: iw4mp.exe)
    20:46:46 GAME IP-BLOCK 89.28.110.33 (Type: incoming, Port: 56202, Process: btdna.exe)
    20:50:47 GAME IP-BLOCK 188.243.230.128 (Type: outgoing, Port: 56202, Process: btdna.exe)
    21:07:36 GAME IP-BLOCK 89.28.110.33 (Type: incoming, Port: 56202, Process: btdna.exe)
    21:08:00 GAME IP-BLOCK 59.34.42.127 (Type: outgoing, Port: 56202, Process: btdna.exe)
    21:12:41 GAME IP-BLOCK 121.10.137.190 (Type: incoming, Port: 56202, Process: btdna.exe)
    21:12:41 GAME IP-BLOCK 121.10.137.190 (Type: incoming, Port: 56202, Process: btdna.exe)
    m
    0
    l
    15 Novembre 2011 19:15:59

    re
    Exomus a dit :
    RogueKiller V6.1.7 [05/11/2011] par Tigzy
    Et voilà ce qu'a donner le scan de mon ordi avec un logiciel qui se nomme Spigot et que j'ai bien peur que ca soit un virus.


    à un moment faudrait essayer de lire ce que je te demande de faire aussi... :o 
    c'est quoi cette bouse de spigot? Désinstalle moi ça au plus vite, encore un adware bidon...
    voir:
    http://www.teamxscript.org/Changelog/Ad-R.txt


    je t'ai dit dans l'ordre:

    roguekiller option 2 puis MBAM dans la foulée....
    donc tu refais ça et exactement ça.
    je te mets le lien:
    http://www.infos-du-net.com/forum/id-2070443/avast-erre...

    Le reste, on verra après.


    m
    0
    l
    15 Novembre 2011 20:45:01

    Je n'ai pas installer spigot :o ... Quand j'ai fait l'analyse, il me l'a signaler. J'ai fait exactement ce que tu ma demander.

    Je me suis mal exprimer dans mon message. J evoulais dire que le logiciel à détecter un logiciel du nom de Spigot... Je sais pas pourquoi j'ai marqué que j'avais anlayser avec spigot.

    m
    0
    l
    15 Novembre 2011 20:57:20

    re
    J'attends tes rapports.
    Roguekiller option2 et MBAM.... (pas en screenshot, un vrai rapport)

    m
    0
    l
    15 Novembre 2011 21:42:55

    Roguekiller option 2 :


    RogueKiller V6.1.7 [05/11/2011] par Tigzy
    mail: tigzyRK<at>gmail<dot>com
    Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueK...
    Blog: http://tigzyrk.blogspot.com

    Systeme d'exploitation: Windows 7 (6.1.7600 ) 64 bits version
    Demarrage : Mode normal
    Utilisateur: GAME [Droits d'admin]
    Mode: Suppression -- Date : 14/11/2011 17:56:32

    ¤¤¤ Processus malicieux: 0 ¤¤¤

    ¤¤¤ Entrees de registre: 7 ¤¤¤
    [SUSP PATH] HKCU\[...]\Run : Akamai NetSession Interface (C:\Users\GAME\AppData\Local\Akamai\netsession_win.exe) -> DELETED
    [SUSP PATH] MSN Pictures Displayer.lnk : C:\ProgramData\MSN Pictures Displayer\MSN Pictures Displayer.exe -> DELETED
    [SUSP PATH] Notification de cadeaux MSN.lnk : C:\Users\GAME\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe -> DELETED
    [HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED ()
    [HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED ()
    [HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED ()
    [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED ()

    ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

    ¤¤¤ Driver: [NOT LOADED] ¤¤¤

    ¤¤¤ Infection : ¤¤¤

    ¤¤¤ Fichier HOSTS: ¤¤¤
    127.0.0.1 localhost


    Termine : << RKreport[2].txt >>
    RKreport[1].txt ; RKreport[2].txt

    MBAM

    Malwarebytes' Anti-Malware 1.51.2.1300
    www.malwarebytes.org

    Version de la base de données: 8161

    Windows 6.1.7600
    Internet Explorer 8.0.7600.16385

    14/11/2011 19:06:27
    mbam-log-2011-11-14 (19-06-26).txt

    Type d'examen: Examen complet (C:\|E:\|F:\|)
    Elément(s) analysé(s): 479580
    Temps écoulé: 1 heure(s), 7 minute(s), 39 seconde(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 1
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 6

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\PROGRAM FILES (X86)\COMMON FILES\SPIGOT\WTXPCOM\COMPONENTS\WIDGITOOLBARFF.DLL (Adware.WidgiToolbar) -> Value: WIDGITOOLBARFF.DLL -> Quarantined and deleted successfully.

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    c:\program files (x86)\common files\Spigot\wtxpcom\components\widgitoolbarff.dll (Adware.WidgiToolbar) -> Quarantined and deleted successfully.
    c:\program files (x86)\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.5 (Adware.WidgiToolbar) -> Quarantined and deleted successfully.
    c:\program files (x86)\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.6 (Adware.WidgiToolbar) -> Quarantined and deleted successfully.
    c:\program files (x86)\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.7 (Adware.WidgiToolbar) -> Quarantined and deleted successfully.
    c:\program files (x86)\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.8 (Adware.WidgiToolbar) -> Quarantined and deleted successfully.
    c:\Users\GAME\downloads\bankaistory.exe (Spyware.OnLineGames) -> Quarantined and deleted successfully.



    m
    0
    l
    16 Novembre 2011 13:50:48

    Bonjour
    que dit avast?
    m
    0
    l
    16 Novembre 2011 14:13:38

    Toujours pareil...

    Mais ce qui m'inquiète c'est ce Btdna.exe qui continue à essayer d'envoyer des infos vers différents IP
    m
    0
    l
    16 Novembre 2011 14:17:45

    Citation :
    "BitTorrent DNA"="c:\program files (x86)\DNA\btdna.exe" [2010-01-23 323392]


    :o 

    ++++++++++++++++++++


    Télécharge GMER à partir de ce lien : http://www.gmer.net/files.php – clic sur « Download EXE » et télécharge le fichier sur ton bureau.
    Voir le tutorial GMER, ça peut peut-être t’aider : http://www.malekal.com/tutorial_GMER.php

    Désactive tes logiciels de protection (antivirus, antispyware etc) et ferme tous les programmes ouverts.
    Double-clic sur le fichier GMER téléchargé.
    Une fois lancé, fais un clic droit sur le fond blanc (comme ci-dessus) et clic sur « Only Non MS files »
    Clic en bas à droite sur le bouton « Scan » pour lancer le scan.



    Lorsque le scan est terminé, clic sur « Copy »

    Ouvre le bloc-note et clic sur le Menu Edition / Coller
    Le rapport doit alors apparaître.
    Enregistre le fichier sur ton bureau et copie/colle le contenu ici.


    m
    0
    l
    16 Novembre 2011 17:15:38

    GMER 1.0.15.15641 - http://www.gmer.net
    Rootkit scan 2011-11-16 17:15:13
    Windows 6.1.7600
    Running: l2wjj4hl.exe


    ---- Modules - GMER 1.0.15 ----

    Module \SystemRoot\System32\Drivers\spil.sys 0107E000-011A4000 (1204224 bytes)
    Module \SystemRoot\system32\DRIVERS\mv91cons.sys (Marvell 91xx Confige Device Driver/Marvell Semiconductor Inc.) 00E5C000-00E66000 (40960 bytes)
    Module \SystemRoot\system32\drivers\amdxata.sys (Storage Filter Driver/Advanced Micro Devices) 00EB3000-00EBE000 (45056 bytes)
    Module \SystemRoot\system32\DRIVERS\AppleCharger.sys 03CEF000-03CF7000 (32768 bytes)
    Module \SystemRoot\system32\DRIVERS\atikmpag.sys (AMD multi-vendor Miniport Driver/Advanced Micro Devices, Inc.) 03D33000-03D7E000 (307200 bytes)
    Module \SystemRoot\system32\DRIVERS\atikmdag.sys (ATI Radeon Kernel Mode Driver/ATI Technologies Inc.) 04800000-04FF5000 (8343552 bytes)
    Module \SystemRoot\system32\DRIVERS\Rt64win7.sys (Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver /Realtek ) 03D7E000-03DD5000 (356352 bytes)
    Module \SystemRoot\system32\DRIVERS\nusb3xhc.sys (USB 3.0 Host Controller Driver/NEC Electronics Corporation) 03C00000-03C2F000 (192512 bytes)
    Module \SystemRoot\system32\drivers\P17.sys (WDM Audio Miniport (Basic) Driver/Creative Technology Ltd.) 04441000-045C0000 (1568768 bytes)
    Module \SystemRoot\system32\DRIVERS\L8042Kbd.sys (Logitech PS2 Keyboard Filter Driver./Logitech, Inc.) 052FE000-05309000 (45056 bytes)
    Module \SystemRoot\system32\drivers\ScreamingBAudio64.sys (Screaming Bee Audio Driver/Screaming Bee LLC) 0536D000-0537B000 (57344 bytes)
    Module \SystemRoot\system32\DRIVERS\tap0901t.sys (TAP-Win32 Virtual Network Driver/Tunngle.net) 05256000-05263000 (53248 bytes)
    Module \SystemRoot\system32\DRIVERS\hamachi.sys (Hamachi Virtual Network Interface Driver/LogMeIn, Inc.) 05263000-0526E000 (45056 bytes)
    Module \SystemRoot\system32\DRIVERS\nusb3hub.sys (USB 3.0 Hub Driver/NEC Electronics Corporation) 0588E000-058A5000 (94208 bytes)
    Module \SystemRoot\system32\drivers\AtihdW76.sys (ATI High Definition Audio Function Driver/ATI Technologies, Inc.) 058BA000-058DA000 (131072 bytes)
    Module \SystemRoot\system32\drivers\Mkd2Nadr.sys (MyKeyDefense USB Keyboard Filter Driver(AMD64)/AhnLab, Inc.) 05935000-05951000 (114688 bytes)
    Module \SystemRoot\system32\DRIVERS\LEqdUsb.Sys (Logitech Equad USB Driver./Logitech, Inc.) 05951000-05968000 (94208 bytes)
    Module \SystemRoot\system32\DRIVERS\LHidEqd.Sys (Logitech HID Filter Driver./Logitech, Inc.) 059CB000-059D3000 (32768 bytes)
    Module \SystemRoot\system32\DRIVERS\LHidFilt.Sys (Logitech HID Filter Driver./Logitech, Inc.) 059D3000-059E6000 (77824 bytes)
    Module \SystemRoot\system32\DRIVERS\LMouFilt.Sys (Logitech Mouse Filter Driver./Logitech, Inc.) 059E6000-059FA000 (81920 bytes)
    Module \SystemRoot\System32\ATMFD.DLL (Windows NT OpenType/Type 1 Font Driver/Adobe Systems Incorporated) 00830000-00891000 (397312 bytes)
    Module \SystemRoot\system32\DRIVERS\RtNdPt60.sys (Realtek NDIS Protocol Driver/Realtek ) 02AA7000-02AB3000 (49152 bytes)
    Module \SystemRoot\system32\DRIVERS\atksgt.sys 06EC1000-06F10000 (323584 bytes)
    Module \??\C:\Windows\system32\drivers\cpuz132_x64.sys (CPUID Driver/Windows (R) Codename Longhorn DDK provider) 06F10000-06F18000 (32768 bytes)
    Module \??\C:\Windows\system32\drivers\cpuz133_x64.sys (CPUID Driver/Windows (R) Win 7 DDK provider) 06F18000-06F21000 (36864 bytes)
    Module \SystemRoot\system32\DRIVERS\lirsgt.sys 06F21000-06F2E000 (53248 bytes)
    Module \SystemRoot\System32\Drivers\secdrv.SYS (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) 06FD4000-06FDF000 (45056 bytes)
    Module \??\C:\Windows\system32\drivers\mbam.sys (Malwarebytes' Anti-Malware/Malwarebytes Corporation) 08B3A000-08B44000 (40960 bytes)
    Module \Windows\System32\usp10.dll (Uniscribe Unicode script processor/Microsoft Corporation) FD8A0000-FD96A000 (827392 bytes)

    ---- Processes - GMER 1.0.15 ----

    Process CTAudSvc.exe 592
    Process atiesrxx.exe (AMD External Events Service Module/AMD) 920
    Process DTLite.exe 1040
    Process atieclxx.exe (AMD External Events Client Module/AMD) 1216
    Process NetworkLicenseServer.exe 1444
    Process ApplicationUpdater.exe 1504
    Process aswUpdSv.exe 1532
    Process BCUService.exe 1688
    Process mDNSResponder.exe 1708
    Process chrome.exe 1756
    Process E_S50STB.EXE 1780
    Process E_S50RPB.EXE 1832
    Process FABS.exe 1844
    Process hamachi-2.exe 2064
    Process MDM.EXE 2204
    Process MSCamS64.exe 2284
    Process NMSAccessU.exe 2312
    Process chrome.exe 2336
    Process PnkBstrA.exe 2348
    Process TnglCtrl.exe 2556
    Process hamachi-2-ui.exe 2576
    Process CCC.exe (Catalyst Control Center: Host application/ATI Technologies Inc.) 3024
    Process jusched.exe 3124
    Process btdna.exe 3164
    Process sidebar.exe 3172
    Process Clownfish.exe 3192
    Process nusb3mon.exe 3628
    Process SetPoint.exe 3648
    Process soffice.exe 3956
    Process soffice.bin 3964
    Process LogiTray.exe 3980
    Process AdobeARM.exe 4088
    Process FxSvr2.exe 4132
    Process chrome.exe 4156
    Process SetPoint32.exe 4212
    Process KHALMNPR.exe (Logitech KHAL Main Process/Logitech, Inc.) 4236
    Process wmpnetwk.exe 4536
    Process MOM.exe (Catalyst Control Center: Monitoring program/Advanced Micro Devices Inc.) 4584
    Process DDMService.exe 4592
    Process BCU.exe 4604
    Process EEventManager.exe 4644
    Process DivXUpdate.exe 4668
    Process SearchSettings.exe 4684
    Process jusched.exe 4700
    Process realsched.exe 4708
    Process mbamservice.exe 5060
    Process chrome.exe 5488
    Process chrome.exe 6472
    Process l2wjj4hl.exe 7008
    Process chrome.exe 7128

    ---- Services - GMER 1.0.15 ----

    Service (avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP/ALWIL Software) [SYSTEM] Aavmker4
    Service C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (ABBYY network license server/ABBYY) [AUTO] ABBYY.Licensing.FineReader.Sprint.9.0
    Service system32\DRIVERS\adp94xx.sys (Adaptec Windows SAS/SATA Storport Driver/Adaptec, Inc.) [MANUAL] adp94xx
    Service system32\DRIVERS\adpahci.sys (Adaptec Windows SATA Storport Driver/Adaptec, Inc.) [MANUAL] adpahci
    Service system32\DRIVERS\adpu320.sys (Adaptec StorPort Ultra320 SCSI Driver (X64)/Adaptec, Inc.) [MANUAL] adpu320
    Service system32\DRIVERS\aliide.sys (ALi mini IDE Driver/Acer Laboratories Inc.) [MANUAL] aliide
    Service C:\Windows\system32\atiesrxx.exe (AMD External Events Service Module/AMD) [AUTO] AMD External Events Utility
    Service system32\DRIVERS\atikmdag.sys (ATI Radeon Kernel Mode Driver/ATI Technologies Inc.) [MANUAL] amdkmdag
    Service system32\DRIVERS\atikmpag.sys (AMD multi-vendor Miniport Driver/Advanced Micro Devices, Inc.) [MANUAL] amdkmdap
    Service system32\drivers\amdsata.sys (AHCI 1.2 Device Driver/Advanced Micro Devices) [MANUAL] amdsata
    Service system32\DRIVERS\amdsbs.sys (AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform/AMD Technologies Inc.) [MANUAL] amdsbs
    Service system32\drivers\amdxata.sys (Storage Filter Driver/Advanced Micro Devices) [BOOT] amdxata
    Service system32\DRIVERS\AppleCharger.sys [SYSTEM] AppleCharger
    Service system32\AppleChargerSrv.exe [MANUAL] AppleChargerSrv
    Service C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe (Application Updater/Spigot, Inc.) [AUTO] Application Updater
    Service system32\DRIVERS\arc.sys (Adaptec RAID Storport Driver/Adaptec, Inc.) [MANUAL] arc
    Service system32\DRIVERS\arcsas.sys (Adaptec SAS RAID WS03 Driver/Adaptec, Inc.) [MANUAL] arcsas
    Service (avast! File System Filter Driver for Windows XP/ALWIL Software) [AUTO] aswMon2
    Service (avast! TDI Filter Driver/ALWIL Software) [SYSTEM] aswTdi
    Service C:\Program Files (x86)\Alwil Software\Avast4\aswUpdSv.exe [AUTO] aswUpdSv
    Service Atierecord
    Service system32\drivers\AtihdW76.sys (ATI High Definition Audio Function Driver/ATI Technologies, Inc.) [MANUAL] AtiHDAudioService
    Service system32\drivers\AtiHdmi.sys (ATI High Definition Audio Function Driver/ATI Technologies, Inc.) [MANUAL] AtiHdmiService
    Service system32\DRIVERS\atikmdag.sys (ATI Radeon Kernel Mode Driver/ATI Technologies Inc.) [MANUAL] atikmdag
    Service system32\DRIVERS\atksgt.sys [AUTO] atksgt
    Service C:\Program Files (x86)\Alwil Software\Avast4\ashServ.exe [AUTO] avast! Antivirus
    Service C:\Program Files (x86)\Alwil Software\Avast4\ashMaiSv.exe (avast! e-Mail Scanner Service/ALWIL Software) [MANUAL] avast! Mail Scanner
    Service system32\DRIVERS\bxvbda.sys (Broadcom NetXtreme II GigE VBD/Broadcom Corporation) [MANUAL] b06bdrv
    Service system32\DRIVERS\b57nd60a.sys (Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver./Broadcom Corporation) [MANUAL] b57nd60a
    Service C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe (Browser Configuration Utility Auto-recovery Service/DeviceVM, Inc.) [AUTO] BCUService
    Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) [AUTO] Bonjour Service
    Service system32\DRIVERS\BrFiltLo.sys (Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltLo
    Service system32\DRIVERS\BrFiltUp.sys (Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltUp
    Service System32\Drivers\Brserid.sys (Pilote Brother Série I/F (WDM)/Brother Industries Ltd.) [MANUAL] Brserid
    Service System32\Drivers\BrSerWdm.sys (Brother Serial driver (WDM version)/Brother Industries Ltd.) [MANUAL] BrSerWdm
    Service System32\Drivers\BrUsbMdm.sys (Brother USB MDM Driver /Brother Industries Ltd.) [MANUAL] BrUsbMdm
    Service System32\Drivers\BrUsbSer.sys (Brother USB Serial Driver/Brother Industries Ltd.) [MANUAL] BrUsbSer
    Service BTHPORT
    Service C:\Exomus\catchme.sys [MANUAL] catchme
    Service system32\DRIVERS\cmdide.sys (CMD PCI IDE Bus Driver/CMD Technology, Inc.) [MANUAL] cmdide
    Service C:\Users\GAME\AppData\Local\Temp\cpuz130\cpuz_x64.sys [MANUAL] cpuz130
    Service C:\Windows\system32\drivers\cpuz132_x64.sys (CPUID Driver/Windows (R) Codename Longhorn DDK provider) [AUTO] cpuz132
    Service C:\Windows\system32\drivers\cpuz133_x64.sys (CPUID Driver/Windows (R) Win 7 DDK provider) [AUTO] cpuz133
    Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe (System Level Service Utility/Creative Labs) [MANUAL] Creative ALchemy AL6 Licensing Service
    Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe (System Level Service Utility/Creative Labs) [MANUAL] Creative Audio Engine Licensing Service
    Service C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Audio Service/Creative Technology Ltd) [AUTO] CTAudSvcService
    Service C:\AeriaGames\WolfTeam\GameGuard\dump_wmimmc.sys [MANUAL] dump_wmimmc
    Service system32\DRIVERS\evbda.sys (Broadcom NetXtreme II 10 GigE VBD/Broadcom Corporation) [MANUAL] ebdrv
    Service system32\DRIVERS\elxstor.sys (Storport Miniport Driver for LightPulse HBAs/Emulex) [MANUAL] elxstor
    Service C:\Windows\system32\DRIVERS\ENTECH64.sys (EnTech driver for Windows XP 64/EnTech Taiwan) [MANUAL] ENTECH64
    Service C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE (EPSON Status Monitor 3/SEIKO EPSON CORPORATION) [AUTO] EPSON_EB_RPCV4_04
    Service C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE (EPSON Status Monitor 3/SEIKO EPSON CORPORATION) [AUTO] EPSON_PM_RPCV4_04
    Service C:\Program [AUTO] Fabs
    Service C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe (Firebird SQL Server - MAGIX Edition/MAGIX®) [MANUAL] FirebirdServerMAGIXInstance
    Service C:\Windows\gdrv.sys [MANUAL] gdrv
    Service C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe (Google Desktop/Google) [MANUAL] GoogleDesktopManager-051210-111108
    Service C:\Program [AUTO] gupdate
    Service C:\Program [MANUAL] gupdatem
    Service system32\DRIVERS\hamachi.sys (Hamachi Virtual Network Interface Driver/LogMeIn, Inc.) [MANUAL] hamachi
    Service C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (Hamachi Client Tunneling Engine/LogMeIn Inc.) [AUTO] Hamachi2Svc
    Service system32\drivers\hcw85cir.sys (Hauppauge WinTV 885 Consumer IR Driver for eHome/Hauppauge Computer Works, Inc.) [MANUAL] hcw85cir
    Service system32\DRIVERS\HpSAMD.sys (Smart Array SAS/SATA Controller Media Driver/Hewlett-Packard Company) [MANUAL] HpSAMD
    Service system32\drivers\iaStorV.sys (Intel Matrix Storage Manager driver - x64/Intel Corporation) [MANUAL] iaStorV
    Service C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe (IDriverT Module/Macrovision Corporation) [MANUAL] IDriverT
    Service system32\DRIVERS\iirsp.sys (Intel/ICP Raid Storport Driver/Intel Corp./ICP vortex GmbH) [MANUAL] iirsp
    Service system32\DRIVERS\L8042Kbd.sys (Logitech PS2 Keyboard Filter Driver./Logitech, Inc.) [MANUAL] L8042Kbd
    Service C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech Bluetooth Service/Logitech, Inc.) [MANUAL] LBTServ
    Service system32\DRIVERS\LEqdUsb.Sys (Logitech Equad USB Driver./Logitech, Inc.) [MANUAL] LEqdUsb
    Service system32\DRIVERS\LHidEqd.Sys (Logitech HID Filter Driver./Logitech, Inc.) [MANUAL] LHidEqd
    Service system32\DRIVERS\LHidFilt.Sys (Logitech HID Filter Driver./Logitech, Inc.) [MANUAL] LHidFilt
    Service system32\DRIVERS\lirsgt.sys [AUTO] lirsgt
    Service system32\DRIVERS\LMouFilt.Sys (Logitech Mouse Filter Driver./Logitech, Inc.) [MANUAL] LMouFilt
    Service system32\DRIVERS\lsi_fc.sys (LSI Fusion-MPT FC Driver (StorPort)/LSI Corporation) [MANUAL] LSI_FC
    Service system32\DRIVERS\lsi_sas.sys (LSI Fusion-MPT SAS Driver (StorPort)/LSI Corporation) [MANUAL] LSI_SAS
    Service system32\DRIVERS\lsi_sas2.sys (LSI SAS Gen2 Driver (StorPort)/LSI Corporation) [MANUAL] LSI_SAS2
    Service system32\DRIVERS\lsi_scsi.sys (LSI Fusion-MPT SCSI Driver (StorPort)/LSI Corporation) [MANUAL] LSI_SCSI
    Service System32\Drivers\LUsbFilt.Sys (Logitech USB Filter Driver./Logitech, Inc.) [MANUAL] LUsbFilt
    Service C:\Windows\system32\drivers\mbam.sys (Malwarebytes' Anti-Malware/Malwarebytes Corporation) [MANUAL] MBAMProtector
    Service C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes' Anti-Malware/Malwarebytes Corporation) [AUTO] MBAMService
    Service system32\DRIVERS\megasas.sys (MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64/LSI Corporation) [MANUAL] megasas
    Service system32\DRIVERS\MegaSR.sys (LSI MegaRAID Software RAID Driver/LSI Corporation, Inc.) [MANUAL] MegaSR
    Service system32\drivers\Mkd2Nadr.sys (MyKeyDefense USB Keyboard Filter Driver(AMD64)/AhnLab, Inc.) [MANUAL] Mkd2Nadr
    Service system32\drivers\Mkd3kfNt.sys (MyKeyDefense Keyboard Filter Driver(AMD64)/AhnLab, Inc.) [MANUAL] Mkd3kfNt
    Service MSDTC Bridge 3.0.0.0
    Service MSDTC Bridge 4.0.0.0
    Service system32\DRIVERS\mv91cons.sys (Marvell 91xx Confige Device Driver/Marvell Semiconductor Inc.) [BOOT] mv91cons
    Service system32\DRIVERS\nfrd960.sys (IBM ServeRAID Controller Driver/IBM Corporation) [MANUAL] nfrd960
    Service NMSAccess
    Service C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [AUTO] NMSAccessU
    Service C:\Windows\system32\GameMon.des [MANUAL] npggsvc
    Service C:\??\C:\Windows\system32\npptNT2.sys [MANUAL] NPPTNT2
    Service system32\DRIVERS\nusb3hub.sys (USB 3.0 Hub Driver/NEC Electronics Corporation) [MANUAL] nusb3hub
    Service system32\DRIVERS\nusb3xhc.sys (USB 3.0 Host Controller Driver/NEC Electronics Corporation) [MANUAL] nusb3xhc
    Service system32\drivers\nvraid.sys (NVIDIA® nForce(TM) RAID Driver/NVIDIA Corporation) [MANUAL] nvraid
    Service system32\drivers\nvstor.sys (NVIDIA® nForce(TM) Sata Performance Driver/NVIDIA Corporation) [MANUAL] nvstor
    Service Outlook
    Service system32\drivers\P17.sys (WDM Audio Miniport (Basic) Driver/Creative Technology Ltd.) [MANUAL] P17
    Service C:\Windows\system32\PnkBstrA.exe [AUTO] PnkBstrA
    Service system32\DRIVERS\ql2300.sys (QLogic Fibre Channel Stor Miniport Driver/QLogic Corporation) [MANUAL] ql2300
    Service system32\DRIVERS\ql40xx.sys (QLogic iSCSI Storport Miniport Driver/QLogic Corporation) [MANUAL] ql40xx
    Service system32\DRIVERS\Rt64win7.sys (Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver /Realtek ) [MANUAL] RTL8167
    Service system32\DRIVERS\RtNdPt60.sys (Realtek NDIS Protocol Driver/Realtek ) [AUTO] RtNdPt60
    Service system32\DRIVERS\RtTeam60.sys (Realtek NDIS 6.0 Intermediate Miniport Driver for Teaming/Realtek Corporation) [MANUAL] RTTEAMPT
    Service system32\DRIVERS\RtVlan60.sys (Sample NDIS 6.0 Intermediate Miniport Driver/Windows (R) Codename Longhorn DDK provider) [MANUAL] RTVLANPT
    Service system32\drivers\ScreamingBAudio64.sys (Screaming Bee Audio Driver/Screaming Bee LLC) [MANUAL] ScreamBAudioSvc
    Service (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [AUTO] secdrv
    Service ServiceModelEndpoint 3.0.0.0
    Service ServiceModelOperation 3.0.0.0
    Service ServiceModelService 3.0.0.0
    Service system32\DRIVERS\SiSRaid2.sys (SiS RAID Stor Miniport Driver/Silicon Integrated Systems Corp.) [MANUAL] SiSRaid2
    Service system32\DRIVERS\sisraid4.sys (SiS AHCI Stor-Miniport Driver/Silicon Integrated Systems) [MANUAL] SiSRaid4
    Service SMSvcHost 3.0.0.0
    Service SMSvcHost 4.0.0.0
    Service System32\Drivers\sptd.sys [BOOT] sptd
    Service [MANUAL] StarOpen
    Service C:\Program [MANUAL] Steam Client Service
    Service system32\DRIVERS\stexstor.sys (Promise SuperTrak EX Series Driver for Windows /Promise Technology) [MANUAL] stexstor
    Service system32\DRIVERS\tap0901t.sys (TAP-Win32 Virtual Network Driver/Tunngle.net) [MANUAL] tap0901t
    Service TCPIP6TUNNEL
    Service TCPIPTUNNEL
    Service system32\DRIVERS\RtTeam60.sys (Realtek NDIS 6.0 Intermediate Miniport Driver for Teaming/Realtek Corporation) [MANUAL] TEAM
    Service C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle Service/Tunngle.net GmbH) [AUTO] TunngleService
    Service system32\DRIVERS\viaide.sys (VIA Generic PCI IDE Bus Driver/VIA Technologies, Inc.) [MANUAL] viaide
    Service system32\DRIVERS\vsmraid.sys (VIA RAID DRIVER FOR AMD-X86-64/VIA Technologies Inc.,Ltd) [MANUAL] vsmraid
    Service Windows Workflow Foundation 3.0.0.0
    Service Windows Workflow Foundation 4.0.0.0
    Service C:\??\C:\Program Files (x86)\Sytexis Software\PlayClaw\WinRing0x64.sys [MANUAL] WinRing0_1_2_0
    Service C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe [AUTO] WMPNetworkSvc
    Service WSearchIdxPi

    ---- EOF - GMER 1.0.15 ----


    :) 
    m
    0
    l
    16 Novembre 2011 21:19:01

    ok

    Ta version d'avast ne serait pas craquée par hasard....
    tu l'as bien re-téléchargé et enregistré à parti de mon tuto?
    Tutoriel: Avast!

    1


  • Rends-toi sur cette page AdwCleaner de Xplode , clique sur Télécharger et enregistre le fichier sur ton Bureau
  • Double-clique sur l'icône AdwCleaner0.exe pour lancer l'installation
    /!\ Sous Vista et Windows 7, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
  • Sur le menu principal, clique sur Nettoyage et patiente le temps de l'analyse
  • A la fin du scan, un rapport AdwCleaner[R].txt s'ouvre. Poste le rapport en pièce jointe dans ta prochaine réponse
    Le rapport se trouve sous C:\AdwCleaner[R].txt

    2
  • Télécharge CKScanner de askey127 et enregistre-le sur ton Bureau

  • /!\ Important -> Branche tous tes périphériques externes de stockage (clés, disques durs ....)

  • Double-clique sur CKScanner.exe sur ton Bureau
    /!\ Sous Vista et Windows 7, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur

  • Clique sur l'option Search For Files. et laisse l'outil analyser ton système

  • Quand la recherche est finie, clique sur Save List To File, puis sur OK pour Saved to filename ckfiles.txt.

  • Clique sur Exit pour refermer l'outil.

  • Le rapport ckfiles.txt s'affiche. Poste le contenu du rapport dans ta prochaine réponse
    Le rapport est enregistré sur ton Bureau
    m
    0
    l
    17 Novembre 2011 10:50:16

    # AdwCleaner v1.318 - Rapport créé le 17/11/2011 à 10:41:59
    # Mis à jour le 13/11/11 à 21h par Xplode
    # Système d'exploitation : Windows 7 Home Premium (64 bits)
    # Nom d'utilisateur : GAME - ADAM-PC (Administrateur)
    # Exécuté depuis : C:\Users\GAME\Desktop\adwcleaner0.exe
    # Option [Recherche]


    ***** [Services] *****

    Présent : Application Updater

    ***** [Fichiers / Dossiers] *****

    Dossier Présent : C:\Users\GAME\AppData\LocalLow\Search Settings
    Dossier Présent : C:\Users\GAME\AppData\LocalLow\pdfforge
    Dossier Présent : C:\Program Files (x86)\Application Updater
    Dossier Présent : C:\Program Files (x86)\pdfforge Toolbar
    Dossier Présent : C:\Program Files (x86)\Common Files\spigot
    Dossier Présent : C:\Users\GAME\AppData\Roaming\Mozilla\Firefox\Profiles\7a7rxfb5.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
    Fichier Présent : C:\Program Files (x86)\Mozilla Firefox\extensions\pdfforge@mybrowserbar.com
    Fichier Présent : C:\Program Files (x86)\Mozilla Firefox\extensions\wtxpcom@mybrowserbar.com
    Fichier Présent : C:\Users\GAME\AppData\Roaming\Mozilla\Firefox\Profiles\7a7rxfb5.default\searchplugins\SweetIm.xml

    ***** [Registre] *****

    Clé Présente : HKCU\Software\Headlight
    Clé Présente : HKCU\Software\SweetIm
    Clé Présente : HKCU\Software\AppDataLow\Software\pdfforge
    Clé Présente : HKCU\Software\AppDataLow\Software\Search Settings
    Clé Présente : HKLM\SOFTWARE\Application Updater
    Clé Présente : HKLM\SOFTWARE\pdfforge
    Clé Présente : HKLM\SOFTWARE\Search Settings
    Clé Présente : HKLM\SOFTWARE\SweetIM
    Clé Présente : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
    Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
    Valeur Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]

    ***** [Registre (x64)] *****

    Clé Présente : HKCU\Software\Headlight
    Clé Présente : HKCU\Software\SweetIm
    Clé Présente : HKCU\Software\AppDataLow\Software\pdfforge
    Clé Présente : HKCU\Software\AppDataLow\Software\Search Settings
    Clé Présente : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
    Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}

    ***** [Navigateurs] *****

    -\\ Internet Explorer v8.0.7600.16385

    [OK] Le registre ne contient aucune entrée illégitime.

    -\\ Mozilla Firefox v3.6 (fr)

    Profil : 7a7rxfb5.default
    Fichier : C:\Users\GAME\AppData\Roaming\Mozilla\Firefox\Profiles\7a7rxfb5.default\prefs.js

    Présente : user_pref("browser.search.defaultenginename", "SweetIM Search");
    Présente : user_pref("browser.search.defaulturl", "hxxp://search.sweetim.com/search.asp?src=2&q=");
    Présente : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
    Présente : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
    Présente : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
    Présente : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
    Présente : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
    Présente : user_pref("sweetim.toolbar.mode.debug", "false");
    Présente : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "chrome://browser-region/loca[...]
    Présente : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "hxxp://www.google.fr/");
    Présente : user_pref("sweetim.toolbar.previous.keyword.URL", "chrome://browser-region/locale/region.properties"[...]
    Présente : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engin[...]
    Présente : user_pref("sweetim.toolbar.search.history", "%3Ca%20href%3D%22hxxp%3A%2F%2Fwww.sweetim.com%2Fs.asp%3[...]
    Présente : user_pref("sweetim.toolbar.search.history.capacity", "10");
    Présente : user_pref("sweetim.toolbar.simapp_id", "{B0B8F17C-6623-4FC1-93EF-44A1E59376B4}");
    Présente : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
    Présente : user_pref("sweetim.toolbar.version", "1.0.0.9");

    -\\ Google Chrome v15.0.874.120

    Fichier : C:\Users\GAME\AppData\Local\Google\Chrome\User Data\Default\Preferences

    [OK] Le fichier ne contient aucune entrée illégitime.

    *************************

    AdwCleaner[R1].txt - [4829 octets] - [17/11/2011 10:41:59]

    ########## EOF - C:\AdwCleaner[R1].txt - [4957 octets] ##########



    m
    0
    l
    17 Novembre 2011 20:54:18

    Bonsoir
    Tu n'as pas répondu à ma question....
    ton rapport CKScanner stp :) 
    m
    0
    l
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS