Votre question

Plein de service verouillés après pasage de virus gendarmerie national

Tags :
  • Virus
  • Mise à jour Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
14 Septembre 2012 15:26:52

Bonjour.

J'ai eu un problèm avec un virus, le celèbre virus de la genarmerie nationale. Avec rogue killer j'ai reussi a l'eliminer.

Apres cela j'ai utilisé adwcleaner pour eliminer tout pasage de ce virus....

Mais, j'ai un grand probleme, ni le parefeu de windows ni windows update marchent....

du coup je sais pas trop quoi faire.... merci!

pd: plusieurs fonctionalité du cmd ne marchent pas n'en plus! j'ai essayer de réactive le parefeu en utilisant des lignes de commande mais aparament tout est verouillé T_T

Caracteritiques ordinateur:

Windows Seven
6GB de RAM
3GB video
Processeur intel core i7 2.2Ghz

Autres pages sur : plein service verouilles pasage virus gendarmerie national

14 Septembre 2012 21:19:02

Bonsoir
poste les rapports des outils que tu as utilisé, puis :

1
Télécharge DDS de sUBs sur ton bureau.
L'outil ne nécessite pas d'installation.

Lance-le en cliquant sur l'icône dds.scr:

Cette fenêtre DOS va apparaitre:



Le scan ne doit pas dépasser trois minutes.

Deux rapports seront générés, Enregistre les rapports DDS.txt et Attach.txt.



Poste le rapport DDS.txt, tu ne fourniras le rapport Attach.txt que s'il t'est demandé.


2


fais une recherche avec Findykill et poste le rapport:
http://general-changelog-team.fr/fr/downloads/viewdownl...



15 Septembre 2012 01:04:42

le dds
Spoiler


DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.4.1
Run by Lanian at 0:44:01 on 2012-09-15
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.6121.4345 [GMT 2:00]
.
AV: Trend Micro Titanium Internet Security *Disabled/Outdated* {68F968AC-2AA0-091D-848C-803E83E35902}
SP: Trend Micro Titanium Internet Security *Disabled/Outdated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiWatchDog.exe
C:\Windows\system32\conhost.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
C:\ProgramData\Banda Ancha Movil\OnlineUpdate\ouc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\ExpressGateUtil\VAWinService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files\ASUS\P4G\BatteryLife.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe
C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\Roxio\CinePlayer\5.0\CPMonitor.exe
C:\ExpressGateUtil\VAWinAgent.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Downloads\FrozenWay 1.5.2\FrozenWay.exe
C:\Fraps\fraps.exe
C:\Fraps\fraps64.dat
C:\Program Files\BitComet\BitComet.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\explorer.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = https://www.google.fr/
uDefault_Page_URL = hxxp://asus.msn.com
mStart Page = hxxp://asus.msn.com
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe
BHO: TmIEPlugInBHO Class: {1ca1377b-dc1d-4a52-9585-6e06050fac53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1505\6.6.1088\TmIEPlg32.dll
BHO: BitComet Helper: {39f7e362-828a-4b5a-bcaf-5b79bfdfea60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
BHO: CIESpeechBHO Class: {8d10f6c4-0e01-4bd4-8601-11ac1fdf8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: TmBpIeBHO Class: {bbacbafd-fa5e-4079-8b33-00eb9f13d4ac} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [Google Update] "C:\Users\Lanian\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
uRun: [NCsoft Launcher] C:\Program Files (x86)\NCSoft\Launcher\NCLauncher.exe /Minimized
uRun: [RGSC] D:\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
mRun: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
mRun: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
mRun: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
mRun: [THX TruStudio NB Settings] "C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" /r
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [CPMonitor] "C:\Program Files (x86)\Roxio\CinePlayer\5.0\CPMonitor.exe"
mRun: [VAWinAgent] C:\ExpressGateUtil\VAWinAgent.exe
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun: [ACMON] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
mRun: [FLxHCIm64] "C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe"
mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ASUSVI~1.LNK - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.207\SSScheduler.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\VPNGUI~1.LNK - C:\Windows\Installer\{5FDC06BF-3D3D-4367-8FFB-4FAFCB61972D}\Icon09DB8A851.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Tout télécharger avec BitComet - C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
IE: Télécharger avec BitComet - C:\Program Files\BitComet\BitComet.exe/AddLink.htm
IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
LSP: %SystemRoot%\system32\PrxerDrv.dll
LSP: mswsock.dll
Trusted Zone: grenet.fr\vpn1
DPF: {538793D5-659C-4639-A56C-A179AD87ED44} - hxxps://vpn1.grenet.fr/CACHE/stc/1/binaries/vpnweb.cab
DPF: {CC679CB8-DC4B-458B-B817-D447B3B6AC31} - hxxps://vpn2.grenet.fr/CACHE/stc/1/binaries/vpnweb.cab
TCP: DhcpNameServer = 192.168.182.1 192.168.182.1
TCP: Interfaces\{0F360285-EF31-4891-BC7A-B961E7F0A31A} : DhcpNameServer = 192.168.182.1 192.168.182.1
TCP: Interfaces\{0F360285-EF31-4891-BC7A-B961E7F0A31A}\34146454 : DhcpNameServer = 10.0.0.1
TCP: Interfaces\{0F360285-EF31-4891-BC7A-B961E7F0A31A}\3425F45535D26505E4 : DhcpNameServer = 193.52.241.66 10.5.5.6
TCP: Interfaces\{0F360285-EF31-4891-BC7A-B961E7F0A31A}\B61627C616D636 : DhcpNameServer = 200.74.121.12 192.168.0.1
TCP: Interfaces\{D1232C70-B1E6-482E-8242-D446C6ED207C} : DhcpNameServer = 10.5.0.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\6.6.1010\6.6.1010\TmBpIe32.dll
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1505\6.6.1088\TmIEPlg32.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
{1CA1377B-DC1D-4A52-9585-6E06050FAC53}
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC}
{d2ce3e00-f94a-4740-988e-03dc2f38c34f}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
{8dcb7100-df86-4384-8842-8fa844297b3f}
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}
mRun-x64: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
mRun-x64: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
mRun-x64: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
mRun-x64: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
mRun-x64: [THX TruStudio NB Settings] "C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" /r
mRun-x64: [UpdReg] C:\Windows\UpdReg.EXE
mRun-x64: [CPMonitor] "C:\Program Files (x86)\Roxio\CinePlayer\5.0\CPMonitor.exe"
mRun-x64: [VAWinAgent] C:\ExpressGateUtil\VAWinAgent.exe
mRun-x64: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun-x64: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun-x64: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun-x64: [ACMON] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
mRun-x64: [FLxHCIm64] "C:\Program Files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe"
mRun-x64: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
IE-X64: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll/206
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Lanian\AppData\Roaming\Mozilla\Firefox\Profiles\p3g20um1.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
FF - prefs.js: network.proxy.type - 4
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Lanian\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: C:\Users\Lanian\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Lanian\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
R1 ATKWMIACPIIO_;ATKWMIACPI Driver_;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\system32\DRIVERS\dtsoftbus01.sys --> C:\Windows\system32\DRIVERS\dtsoftbus01.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 Amsp;Trend Micro Solution Platform;C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2011-10-19 256336]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]
R2 AsusUacSvc;Asus process privilege adjust service;C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe [2012-2-22 113840]
R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-3-13 138400]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2011-3-13 74912]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-9-14 44808]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-5-15 382272]
R2 tmevtmgr;tmevtmgr;C:\Windows\system32\DRIVERS\tmevtmgr.sys --> C:\Windows\system32\DRIVERS\tmevtmgr.sys [?]
R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\system32\DRIVERS\TurboB.sys --> C:\Windows\system32\DRIVERS\TurboB.sys [?]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-2-22 2655768]
R2 VideAceWindowsService;VideAceWindowsService;C:\ExpressGateUtil\VAWinService.exe [2011-3-26 91464]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\drivers\AiCharger.sys [2012-1-30 17152]
R3 BTATH_BUS;Atheros Bluetooth Bus;C:\Windows\system32\DRIVERS\btath_bus.sys --> C:\Windows\system32\DRIVERS\btath_bus.sys [?]
R3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;C:\Windows\system32\DRIVERS\FLxHCIc.sys --> C:\Windows\system32\DRIVERS\FLxHCIc.sys [?]
R3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;C:\Windows\system32\DRIVERS\FLxHCIh.sys --> C:\Windows\system32\DRIVERS\FLxHCIh.sys [?]
R3 huawei_enumerator;huawei_enumerator;C:\Windows\system32\DRIVERS\ew_jubusenum.sys --> C:\Windows\system32\DRIVERS\ew_jubusenum.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\system32\DRIVERS\MijXfilt.sys --> C:\Windows\system32\DRIVERS\MijXfilt.sys [?]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 Sftfs;Sftfs;C:\Windows\system32\DRIVERS\Sftfslh.sys --> C:\Windows\system32\DRIVERS\Sftfslh.sys [?]
R3 Sftplay;Sftplay;C:\Windows\system32\DRIVERS\Sftplaylh.sys --> C:\Windows\system32\DRIVERS\Sftplaylh.sys [?]
R3 Sftredir;Sftredir;C:\Windows\system32\DRIVERS\Sftredirlh.sys --> C:\Windows\system32\DRIVERS\Sftredirlh.sys [?]
R3 Sftvol;Sftvol;C:\Windows\system32\DRIVERS\Sftvollh.sys --> C:\Windows\system32\DRIVERS\Sftvollh.sys [?]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
R3 SmbDrv;SmbDrv;C:\Windows\system32\DRIVERS\Smb_driver.sys --> C:\Windows\system32\DRIVERS\Smb_driver.sys [?]
S2 Banda Ancha Movil. RunOuc;Banda Ancha Movil. OUC;C:\Program Files (x86)\Banda Ancha Movil\UpdateDog\ouc.exe [2012-7-6 655712]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-5-28 1262400]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-6-5 160944]
S3 acsock;acsock;C:\Windows\system32\DRIVERS\acsock64.sys --> C:\Windows\system32\DRIVERS\acsock64.sys [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-5-6 250056]
S3 AthBTPort;Atheros Virtual Bluetooth Class;C:\Windows\system32\DRIVERS\btath_flt.sys --> C:\Windows\system32\DRIVERS\btath_flt.sys [?]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-3-2 183560]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;C:\Program Files\BitComet\tools\BitCometService.exe -service --> C:\Program Files\BitComet\tools\BitCometService.exe -service [?]
S3 BrSerIb;Brother Serial Interface Driver(WDM);C:\Windows\system32\DRIVERS\BrSerIb.sys --> C:\Windows\system32\DRIVERS\BrSerIb.sys [?]
S3 BrUsbSIb;Brother Serial USB Driver(WDM);C:\Windows\system32\DRIVERS\BrUsbSIb.sys --> C:\Windows\system32\DRIVERS\BrUsbSIb.sys [?]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\system32\drivers\btath_a2dp.sys --> C:\Windows\system32\drivers\btath_a2dp.sys [?]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\system32\DRIVERS\btath_hcrp.sys --> C:\Windows\system32\DRIVERS\btath_hcrp.sys [?]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\system32\DRIVERS\btath_lwflt.sys --> C:\Windows\system32\DRIVERS\btath_lwflt.sys [?]
S3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\system32\DRIVERS\btath_rcp.sys --> C:\Windows\system32\DRIVERS\btath_rcp.sys [?]
S3 BtFilter;BtFilter;C:\Windows\system32\DRIVERS\btfilter.sys --> C:\Windows\system32\DRIVERS\btfilter.sys [?]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2012-2-22 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2012-2-22 79360]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;E:\Dragon Age\bin_ship\daupdatersvc.service.exe [2009-12-15 25832]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\Windows\system32\DRIVERS\ew_hwusbdev.sys --> C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [?]
S3 ew_usbenumfilter;huawei_CompositeFilter;C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys --> C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [?]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;C:\Windows\system32\DRIVERS\ewusbwwan.sys --> C:\Windows\system32\DRIVERS\ewusbwwan.sys [?]
S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-14 1492840]
S3 huawei_cdcacm;huawei_cdcacm;C:\Windows\system32\DRIVERS\ew_jucdcacm.sys --> C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [?]
S3 huawei_ext_ctrl;huawei_ext_ctrl;C:\Windows\system32\DRIVERS\ew_juextctrl.sys --> C:\Windows\system32\DRIVERS\ew_juextctrl.sys [?]
S3 huawei_wwanecm;huawei_wwanecm;C:\Windows\system32\DRIVERS\ew_juwwanecm.sys --> C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [?]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\system32\DRIVERS\L1C62x64.sys --> C:\Windows\system32\DRIVERS\L1C62x64.sys [?]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.207\McCHSvc.exe [2011-6-17 237008]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-4-25 129976]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUVStor.sys --> C:\Windows\system32\Drivers\RtsUVStor.sys [?]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\system32\DRIVERS\SiSG664.sys --> C:\Windows\system32\DRIVERS\SiSG664.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-30 149504]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Service Windows Activation Technologies;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== Created Last 30 ================
.
2012-09-14 13:16:35 -------- d-----w- C:\Users\Lanian\AppData\Local\ElevatedDiagnostics
2012-09-14 13:04:05 -------- d-----w- C:\Program Files\CCleaner
2012-09-14 12:38:11 969200 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2012-09-14 12:33:47 71600 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2012-09-14 12:33:39 41224 ----a-w- C:\Windows\avastSS.scr
2012-09-14 12:33:32 -------- d-----w- C:\ProgramData\AVAST Software
2012-09-14 12:33:32 -------- d-----w- C:\Program Files\AVAST Software
2012-09-12 19:24:54 -------- d-----w- C:\Users\Lanian\AppData\Local\LucasArts
2012-09-12 18:45:47 -------- d-----w- C:\Users\Lanian\AppData\Local\SWTOR
2012-09-10 04:46:43 -------- d-----w- C:\Users\Lanian\AppData\Local\Chromium
2012-09-10 04:44:47 -------- d-----w- C:\Program Files (x86)\Heroes of Newerth
2012-09-05 16:33:02 -------- d-----w- C:\Users\Lanian\AppData\Local\BigHugeEngine
2012-08-31 21:30:59 -------- d-----w- C:\Program Files (x86)\Your Freedom
2012-08-31 21:23:32 -------- d-----w- C:\Program Files\Common Files\Deterministic Networks
2012-08-31 21:21:13 107432 ----a-r- C:\Windows\System32\drivers\acsock64.sys
2012-08-31 20:02:05 169472 ----a-w- C:\Users\Lanian\AppData\Roaming\msmsiz.dll
2012-08-31 20:02:02 -------- d-----w- C:\Users\Lanian\AppData\Roaming\xsecva
2012-08-31 17:22:42 -------- d-----w- C:\Users\Lanian\AppData\Roaming\Proxifier
2012-08-31 17:21:32 91240 ----a-w- C:\Windows\SysWow64\ProxifierShellExt.dll
2012-08-31 17:21:32 76392 ----a-w- C:\Windows\System32\PrxerDrv.dll
2012-08-31 17:21:32 70248 ----a-w- C:\Windows\SysWow64\PrxerDrv.dll
2012-08-31 17:21:32 56936 ----a-w- C:\Windows\System32\PrxerNsp.dll
2012-08-31 17:21:32 56424 ----a-w- C:\Windows\SysWow64\PrxerNsp.dll
2012-08-31 17:21:32 11264 ----a-w- C:\Windows\SysWow64\SPORDER.DLL
2012-08-31 17:21:32 103016 ----a-w- C:\Windows\System32\ProxifierShellExt.dll
2012-08-31 17:21:32 -------- d-----w- C:\Program Files (x86)\Proxifier
2012-08-31 17:08:50 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8BA140E5-123A-423C-905D-67C49C55AF19}\offreg.dll
2012-08-31 16:59:05 -------- d-----w- C:\Users\Lanian\AppData\Local\Your Freedom
2012-08-31 15:06:08 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8BA140E5-123A-423C-905D-67C49C55AF19}\mpengine.dll
2012-08-31 02:59:34 -------- d-----w- C:\Users\Lanian\AppData\Roaming\Microsoft Games
2012-08-31 02:58:43 -------- d-----w- C:\Program Files (x86)\GameSpy Arcade
2012-08-31 00:57:49 -------- d-----w- C:\Program Files (x86)\World of Warcraft Ivalice
2012-08-29 18:17:02 -------- d-----w- C:\Program Files (x86)\SEGA
2012-08-22 11:07:01 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2012-08-19 05:42:52 -------- d---a-w- C:\boot-sav
2012-08-18 00:33:07 -------- d-----w- C:\Users\Lanian\AppData\Roaming\iFunbox_UserCache
2012-08-18 00:33:03 -------- d-----w- C:\Program Files (x86)\i-Funbox DevTeam
2012-08-17 23:43:42 34152 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
2012-08-17 23:43:42 126312 ----a-w- C:\Windows\System32\GEARAspi64.dll
2012-08-17 23:43:42 107368 ----a-w- C:\Windows\SysWow64\GEARAspi.dll
2012-08-17 23:43:16 -------- d-----w- C:\Program Files\iTunes
2012-08-17 23:43:16 -------- d-----w- C:\Program Files\iPod
2012-08-17 23:43:16 -------- d-----w- C:\Program Files (x86)\iTunes
2012-08-17 23:03:24 -------- d-----w- C:\Users\Lanian\AppData\Local\libimobiledevice
2012-08-16 01:04:59 754784 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
.
==================== Find3M ====================
.
2012-09-14 21:25:12 380 ----a-w- C:\Users\Lanian\AppData\Roaming\sp_data.sys
2012-09-14 16:56:34 103736 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2012-08-15 06:37:42 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-15 06:37:42 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-08-05 00:02:03 178800 ----a-w- C:\Windows\SysWow64\CmdLineExt_x64.dll
2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys
2012-07-06 20:07:42 552960 ----a-w- C:\Windows\System32\drivers\bthport.sys
2012-07-06 20:02:39 98304 ----a-w- C:\Windows\System32\drivers\ew_jucdcacm.sys
2012-07-06 20:02:39 87040 ----a-w- C:\Windows\System32\drivers\ew_jubusenum.sys
2012-07-06 20:02:39 72192 ----a-w- C:\Windows\System32\drivers\ew_jucdcecm.sys
2012-07-06 20:02:39 422400 ----a-w- C:\Windows\System32\drivers\ewusbwwan.sys
2012-07-06 20:02:39 28672 ----a-w- C:\Windows\System32\drivers\ew_juextctrl.sys
2012-07-06 20:02:39 223744 ----a-w- C:\Windows\System32\drivers\ew_juwwanecm.sys
2012-07-06 20:02:39 22016 ----a-w- C:\Windows\System32\drivers\ew_hwupgrade.sys
2012-07-06 20:02:39 1490656 ----a-w- C:\Windows\System32\WdfCoInstaller01007.dll
2012-07-06 20:02:39 1490656 ----a-w- C:\Windows\System32\drivers\WdfCoInstaller01007.dll
2012-07-06 20:02:39 13952 ----a-w- C:\Windows\System32\drivers\ew_usbenumfilter.sys
2012-07-06 20:02:39 117248 ----a-w- C:\Windows\System32\drivers\ew_hwusbdev.sys
2012-07-04 22:13:27 59392 ----a-w- C:\Windows\System32\browcli.dll
2012-07-04 22:13:27 136704 ----a-w- C:\Windows\System32\browser.dll
2012-07-04 21:14:34 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2012-06-29 03:56:34 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-06-29 03:49:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-06-29 03:48:07 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-06-29 03:43:49 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-06-29 03:39:48 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-06-29 00:16:58 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-06-29 00:09:01 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-06-29 00:08:59 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-06-29 00:04:43 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-06-29 00:00:45 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
.
============= FINISH: 0:44:45,89 ===============

le attach:

Spoiler

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Édition Familiale Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 25/04/2012 13:21:37
System Uptime: 14/09/2012 21:11:21 (3 hours ago)
.
Motherboard: ASUSTeK Computer Inc. | | G74Sx
Processor: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz | CPU 1 | 2201/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 186 GiB total, 50,682 GiB free.
D: is FIXED (NTFS) - 254 GiB total, 57,646 GiB free.
E: is FIXED (NTFS) - 233 GiB total, 14,704 GiB free.
G: is CDROM (CDFS)
I: is CDROM (CDFS)
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Cisco Systems VPN Adapter for 64-bit Windows
Device ID: ROOT\NET\0000
Manufacturer: Cisco Systems
Name: Cisco Systems VPN Adapter for 64-bit Windows
PNP Device ID: ROOT\NET\0000
Service: CVirtA
.
==== System Restore Points ===================
.
RP131: 10/09/2012 06:44:48 - DirectX est installé
RP132: 12/09/2012 21:21:00 - DirectX est installé
RP133: 14/09/2012 14:33:12 - Installation avast! Free Antivirus
.
==== Installed Programs ======================
.
??? ActiveX ?? Windows Live Mesh ???? ??????? ???????
???? ??? Windows Live
???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ???????
???? Windows Live
????? Windows Live
?????? ??????? ?? Windows Live
??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ???????????
??????? Windows Live Mesh ActiveX ???
???????? ?????????? Windows Live
?????????? Windows Live
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
AeroFly Professional Deluxe
Age of Empires III
Age of Empires III - The Asian Dynasties
Age of Empires III - The WarChiefs
Apple Application Support
Apple Software Update
ASUS AI Recovery
ASUS FaceLogon
ASUS Live Update
ASUS Splendid Video Enhancement Technology
ASUS USB Charger Plus
ASUS Virtual Camera
ASUS WebStorage
AsusScr_G74 Series_ENG
AsusVibe2.0
Atheros Client Installation Program
ATK Package
avast! Free Antivirus
Banda Ancha Movil
Bing Bar
BitComet 1.32 64-bit
Bubbletown
Call of Duty: Modern Warfare 3
Call of Duty: Modern Warfare 3 - Multiplayer
Cheat Engine 6.1
Contrôle ActiveX Windows Live Mesh pour connexions à distance
Control ActiveX de Windows Live Mesh para conexiones remotas
Controlo ActiveX do Windows Live Mesh para Ligações Remotas
Crysis® 2
CyberLink LabelPrint
CyberLink Media Suite
CyberLink Power2Go
D3DX10
DAEMON Tools Lite
Deadtime Stories
Diablo III
DirectX 9 Runtime
Dragon Age II
Dragon Age: Origins
Dream Day First Home
Dream Vacation Solitaire
ExpressGateCloud
Farm Frenzy 3 - Madagascar
FIFA 12 (c) EA version 1
Fraps (remove only)
Galapago
Galeria de Fotografias do Windows Live
Galerie de photos Windows Live
Galería fotográfica de Windows Live
Game Park Console
GameSpy Arcade
Go Go Gourmet Chef of the Year
Google Chrome
Google Talk Plugin
Grand Theft Auto IV
Heroes of Newerth
iFunbox (v1.99.958.697), iFunbox DevTeam
Impulse
Intel(R) Control Center
Intel(R) Management Engine Components
Java Auto Updater
Java(TM) 7 Update 4
JavaFX 2.1.0
Junk Mail filter update
Kingdoms of Amalur: Reckoning
Mahjong Memoirs
Mass Effect
Mass Effect 2
Mass Effect™ 3
McAfee Security Scan Plus
Medieval II Total War
Medieval II Total War : Kingdoms : Americas
Medieval II Total War : Kingdoms : Britannia
Medieval II Total War : Kingdoms : Crusades
Medieval II Total War : Kingdoms : Teutonic
Mesh Runtime
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Office « Démarrer en un clic » 2010
Microsoft Office 2010
Microsoft Office Starter 2010 - Français
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Mozilla Firefox 12.0 (x86 fr)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML4 Parser
Mumble 1.2.3
Nuance PDF Reader
NVIDIA PhysX
NVIDIA Stereoscopic 3D Driver
Origin
Pando Media Booster
Plants vs Zombies
Proxifier version 3.15
Raccolta foto di Windows Live
Realtek Ethernet Controller Driver
Realtek USB 2.0 Reader Driver
Rise of Nations
Roxio AACS Certificate
Roxio CinePlayer
S?????? f?t???af??? t?? Windows Live
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Sins of a Solar Empire - Trinity
Sins of a Solar Empire: Rebellion
Skype™ 5.9
SpeedFan (remove only)
SPORE™
St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se??
Star Wars: The Force Unleashed 2
Star Wars: The Old Republic
StarCraft II
Steam
The Witcher 2
The Witcher Enhanced Edition
THX TruStudio
Turbo Fiesta
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
VLC media player 2.0.1
Windows Live
Windows Live ???
Windows Live ????
Windows Live Communications Platform
Windows Live Essentials
Windows Live Fotogalerie
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinFlash
WinRAR 4.11 (32-bit)
Wireless Console 3
World of Goo
World of Warcraft
Your Freedom 20120831-01
.
==== End Of File ===========================


Pour le adwcleaner le voila:
Spoiler

# AdwCleaner v2.001 - Rapport créé le 14/09/2012 à 15:08:04
# Mis à jour le 09/09/2012 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Lanian - ROGUE-LANIAN
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Lanian\Desktop\Utilitaires\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\Users\Lanian\AppData\Local\Babylon
Dossier Supprimé : C:\Users\Lanian\AppData\Local\Ilivid
Dossier Supprimé : C:\Users\Lanian\AppData\Roaming\Babylon

***** [Registre] *****

Clé Supprimée : HKCU\Software\ilivid
Clé Supprimée : HKCU\Software\Softonic
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

Restauré : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restauré : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restauré : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restauré : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v12.0 (fr)

Nom du profil : default
Fichier : C:\Users\Lanian\AppData\Roaming\Mozilla\Firefox\Profiles\p3g20um1.default\prefs.js

[OK] Le fichier ne contient aucune entrée illégitime.

-\\ Google Chrome v21.0.1180.89

Fichier : C:\Users\Lanian\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [1561 octets] - [02/09/2012 00:00:06]
AdwCleaner[R2].txt - [1621 octets] - [02/09/2012 00:00:38]
AdwCleaner[R3].txt - [1623 octets] - [14/09/2012 14:19:01]
AdwCleaner[R4].txt - [1683 octets] - [14/09/2012 15:05:57]
AdwCleaner[S3].txt - [1939 octets] - [14/09/2012 15:08:04]

########## EOF - C:\AdwCleaner[S3].txt - [1999 octets] ##########

Pour le findykill:
Spoiler


############################## | FindyKill V6.001 |

User : Lanian (Administrateurs) # ROGUE-LANIAN
Update on 10/08/2012 by El Desaparecido
Start at: 00:59:18 | 15/09/2012
Web site : http://eldesaparecido.com/
Forum : http://forum.eldesaparecido.com/
Contact : contact@eldesaparecido.com

OS : Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-bit) # Service Pack 1
PC : ASUSTeK Computer Inc. ( x64-based PC ) G74Sx ( Notebook )
Proc : Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz ( 2201 )
RAM -> [ Total : 6121 | Free : 4264 ]
Bios : BIOS Date: 09/23/11 16:59:53 Ver: 04.06.03
Boot : Normal boot

AntiVirus : Trend Micro Titanium Internet Security [ Disabled | Outdated ]
Firewall : Windows Firewall [ Enabled ]
Anti-Spyware : Trend Micro Titanium Internet Security [ Disabled | Outdated ]
Anti-Spyware : Windows Defender [ Disabled | Updated ]
Web browser : Internet Explorer 9.0.8112.16421

C:\ Disque fixe local (NTFS) [ Total : 186,3 Go - Free : 50,27 Go ]
D:\ Disque fixe local (NTFS) [ Total : 254,46 Go - Free : 57,65 Go ]
E:\ Disque fixe local (NTFS) [ Total : 232,87 Go - Free : 14,7 Go ]
G:\ Disque CD-ROM (CDFS) [ Total : 5,93 Go - Free : 0 Mo ]
I:\ Disque CD-ROM (CDFS) [ Total : 1,02 Go - Free : 0 Mo ]
Q:\ Disque fixe local

################## | Processus infectieux |


################## | Rootkits |


################## | Eléments infectieux |

[02/12/2010 01:19|-r-------|44] G:\autorun.inf

################## | Références Bagle MD5 ... |


################## | MD5 ... |
Contenus similaires
Pas de réponse à votre question ? Demandez !
15 Septembre 2012 10:34:23

Bonjour
possible que ça soit compliqué...

(merci à Hyunkel pour la procédure:) )

++


Télécharge Farbar Service Scanner (de Farbar) sur ton bureau.

  • Ferme toutes tes fenêtres, puis double clique sur FSS.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

  • Laisse les options cochées par défaut
  • Coche en plus "Windows Update" et "Windows Firewall"
  • Clique sur le bouton "Scan"
  • Laisse travailler l'outil, un rapport va apparaitre.
  • Poste son contenu dans ta prochaine réponse

    (S'il n'apparait pas, tu le trouveras à l'emplacement du fichier FSS.exe, sous le nom FSS.txt )

    15 Septembre 2012 17:18:54

    Spoiler

    Farbar Service Scanner Version: 06-08-2012
    Ran by Lanian (administrator) on 15-09-2012 at 17:17:16
    Running from "C:\Users\Lanian\Desktop\Utilitaires"
    Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
    Boot Mode: Normal
    ****************************************************************

    Internet Services:
    ============

    Connection Status:
    ==============
    Localhost is accessible.
    LAN connected.
    Attempt to access Google IP returned error: Google IP is offline
    Google.com is accessible.
    Yahoo IP is accessible.
    Yahoo.com is accessible.


    Windows Firewall:
    =============
    MpsSvc Service is not running. Checking service configuration:
    The start type of MpsSvc service is OK.
    The ImagePath of MpsSvc service is OK.
    The ServiceDll of MpsSvc service is OK.

    bfe Service is not running. Checking service configuration:
    The start type of bfe service is OK.
    The ImagePath of bfe service is OK.
    The ServiceDll of bfe service is OK.


    Firewall Disabled Policy:
    ==================


    Action Center:
    ============
    wscsvc Service is not running. Checking service configuration:
    Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
    Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
    Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


    Windows Update:
    ============
    wuauserv Service is not running. Checking service configuration:
    Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
    Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
    Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

    BITS Service is not running. Checking service configuration:
    Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
    Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
    Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


    Windows Autoupdate Disabled Policy:
    ============================


    Windows Defender:
    ==============
    WinDefend Service is not running. Checking service configuration:
    Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
    Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
    Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


    Other Services:
    ==============
    Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
    Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
    Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


    File Check:
    ========
    C:\Windows\System32\nsisvc.dll => MD5 is legit
    C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
    C:\Windows\System32\drivers\afd.sys => MD5 is legit
    C:\Windows\System32\drivers\tdx.sys => MD5 is legit
    C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
    C:\Windows\System32\dnsrslvr.dll => MD5 is legit
    C:\Windows\System32\mpssvc.dll => MD5 is legit
    C:\Windows\System32\bfe.dll => MD5 is legit
    C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
    C:\Windows\System32\wscsvc.dll => MD5 is legit
    C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
    C:\Windows\System32\wuaueng.dll => MD5 is legit
    C:\Windows\System32\qmgr.dll => MD5 is legit
    C:\Windows\System32\es.dll => MD5 is legit
    C:\Windows\System32\cryptsvc.dll => MD5 is legit
    C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\System32\rpcss.dll => MD5 is legit


    **** End of log ****


    Voila voila
    15 Septembre 2012 21:28:13

    re
    beaucoup de clé de registres ont été détruites par ton infection...
    ça va être plutôt compliqué :/ 
    Désactive ton antivirus et tout autre type de protection.
    Télécharge ComboFix de sUBs : Combofix
    Sauvegarde-le sur ton bureau et pas ailleurs!

    Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
    clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"

    viens sur le forum et édition "coller"

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer

    <@_@>

    +++++++++++++++++++++
    16 Septembre 2012 05:05:06

    C alain de raucourt qui répond, bref faut remercier que j'ai dual boot avec ubuntu, combofix a detruit les registre de mes explorateurs internet, je ne peut pas ni acceder a explorer ni a google chrome ni a firefox..... je fait quoi la au juste? T_T

    sinon le rapport de combofix:

    Spoiler

    omboFix 12-09-15.02 - Lanian 16/09/2012 4:29.1.8 - x64
    Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.6121.4518 [GMT 2:00]
    Lancé depuis: c:\users\Lanian\Desktop\ComboFix.exe
    AV: Trend Micro Titanium Internet Security *Disabled/Outdated* {68F968AC-2AA0-091D-848C-803E83E35902}
    SP: Trend Micro Titanium Internet Security *Disabled/Outdated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\$recycle.bin\S-1-5-18\$3c42eb883e76c42fe757e3ec8d556822\@
    c:\$recycle.bin\S-1-5-18\$3c42eb883e76c42fe757e3ec8d556822\n
    C:\install.exe
    c:\programdata\FullRemove.exe
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk
    c:\users\Lanian\AppData\Local\assembly\tmp
    c:\users\Lanian\AppData\Local\Temp\{E05094D7-7B77-48C5-9CB8-0ED179610056}\fpb.tmp
    c:\users\Lanian\AppData\Local\Temp\INS_6761d0fd.TMP
    c:\users\Lanian\AppData\Roaming\app
    c:\users\Lanian\AppData\Roaming\app\Jerakine_lang.dat
    c:\users\Lanian\AppData\Roaming\app\Jerakine_lang_vesrion.dat
    c:\users\Lanian\AppData\Roaming\msmsiz.dll
    c:\users\Lanian\AppData\Roaming\xsecva
    c:\users\Lanian\AppData\Roaming\xsecva\xsecva.exe
    c:\windows\AsPatch10430001.exe
    .
    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2012-08-16 au 2012-09-16 ))))))))))))))))))))))))))))))))))))
    .
    .
    2012-09-14 22:56 . 2012-09-14 22:56 -------- d-----w- c:\users\UpdatusUser
    2012-09-14 22:56 . 2012-08-30 16:18 891240 ----a-w- c:\windows\system32\nvvsvc.exe
    2012-09-14 22:56 . 2012-08-30 16:18 63336 ----a-w- c:\windows\system32\nvshext.dll
    2012-09-14 22:56 . 2012-08-30 16:18 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
    2012-09-14 22:56 . 2012-08-30 16:18 118120 ----a-w- c:\windows\system32\nvmctray.dll
    2012-09-14 22:56 . 2012-08-30 16:18 3266920 ----a-w- c:\windows\system32\nvsvc64.dll
    2012-09-14 22:56 . 2012-08-30 16:17 6198120 ----a-w- c:\windows\system32\nvcpl.dll
    2012-09-14 22:55 . 2012-08-30 19:14 60776 ----a-w- c:\windows\system32\OpenCL.dll
    2012-09-14 22:55 . 2012-08-30 19:14 52584 ----a-w- c:\windows\SysWow64\OpenCL.dll
    2012-09-14 22:55 . 2012-09-14 22:55 -------- d-----w- c:\programdata\NVIDIA Corporation
    2012-09-14 22:51 . 2012-09-14 22:59 -------- d-----w- C:\FyK
    2012-09-14 13:16 . 2012-09-14 13:16 -------- d-----w- c:\users\Lanian\AppData\Local\ElevatedDiagnostics
    2012-09-14 13:04 . 2012-09-14 13:04 -------- d-----w- c:\program files\CCleaner
    2012-09-14 12:38 . 2012-08-21 09:13 969200 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2012-09-14 12:38 . 2012-08-21 09:13 359464 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2012-09-14 12:38 . 2012-08-21 09:13 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2012-09-14 12:33 . 2012-08-21 09:13 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2012-09-14 12:33 . 2012-08-21 09:12 285328 ----a-w- c:\windows\system32\aswBoot.exe
    2012-09-14 12:33 . 2012-08-21 09:12 41224 ----a-w- c:\windows\avastSS.scr
    2012-09-14 12:33 . 2012-08-21 09:12 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
    2012-09-14 12:33 . 2012-09-14 12:33 -------- d-----w- c:\programdata\AVAST Software
    2012-09-14 12:33 . 2012-09-14 12:33 -------- d-----w- c:\program files\AVAST Software
    2012-09-12 19:24 . 2012-09-12 19:24 -------- d-----w- c:\users\Lanian\AppData\Local\LucasArts
    2012-09-12 18:45 . 2012-09-14 14:42 -------- d-----w- c:\users\Lanian\AppData\Local\SWTOR
    2012-09-10 04:46 . 2012-09-10 04:46 -------- d-----w- c:\users\Lanian\AppData\Local\Chromium
    2012-09-10 04:44 . 2012-09-10 12:11 -------- d-----w- c:\program files (x86)\Heroes of Newerth
    2012-09-05 16:33 . 2012-09-05 16:33 -------- d-----w- c:\users\Lanian\AppData\Local\BigHugeEngine
    2012-08-31 21:30 . 2012-08-31 21:31 -------- d-----w- c:\program files (x86)\Your Freedom
    2012-08-31 21:23 . 2012-08-31 21:23 -------- d-----w- c:\program files\Common Files\Deterministic Networks
    2012-08-31 21:21 . 2012-06-07 15:24 107432 ----a-r- c:\windows\system32\drivers\acsock64.sys
    2012-08-31 17:22 . 2012-08-31 17:22 -------- d-----w- c:\users\Lanian\AppData\Roaming\Proxifier
    2012-08-31 17:21 . 2012-08-31 17:21 -------- d-----w- c:\program files (x86)\Proxifier
    2012-08-31 17:21 . 2012-04-02 17:24 91240 ----a-w- c:\windows\SysWow64\ProxifierShellExt.dll
    2012-08-31 17:21 . 2012-04-02 17:24 76392 ----a-w- c:\windows\system32\PrxerDrv.dll
    2012-08-31 17:21 . 2012-04-02 17:24 70248 ----a-w- c:\windows\SysWow64\PrxerDrv.dll
    2012-08-31 17:21 . 2012-04-02 17:24 56936 ----a-w- c:\windows\system32\PrxerNsp.dll
    2012-08-31 17:21 . 2012-04-02 17:24 56424 ----a-w- c:\windows\SysWow64\PrxerNsp.dll
    2012-08-31 17:21 . 2012-04-02 17:24 103016 ----a-w- c:\windows\system32\ProxifierShellExt.dll
    2012-08-31 17:21 . 1997-06-06 13:52 11264 ----a-w- c:\windows\SysWow64\SPORDER.DLL
    2012-08-31 17:08 . 2012-08-31 17:08 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8BA140E5-123A-423C-905D-67C49C55AF19}\offreg.dll
    2012-08-31 16:59 . 2012-08-31 16:59 -------- d-----w- c:\users\Lanian\AppData\Local\Your Freedom
    2012-08-31 15:06 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8BA140E5-123A-423C-905D-67C49C55AF19}\mpengine.dll
    2012-08-31 02:59 . 2012-08-31 02:59 -------- d-----w- c:\users\Lanian\AppData\Roaming\Microsoft Games
    2012-08-31 02:58 . 2012-08-31 02:58 -------- d-----w- c:\program files (x86)\GameSpy Arcade
    2012-08-31 00:57 . 2012-08-31 01:03 -------- d-----w- c:\program files (x86)\World of Warcraft Ivalice
    2012-08-30 08:40 . 2012-08-30 08:40 429416 ----a-w- c:\windows\SysWow64\nvStreaming.exe
    2012-08-29 18:17 . 2012-08-29 18:17 -------- d-----w- c:\program files (x86)\SEGA
    2012-08-29 17:04 . 2012-08-29 17:04 -------- d-----w- c:\users\Lanian\AppData\Roaming\InstallShield
    2012-08-22 11:07 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
    2012-08-19 05:42 . 2012-08-19 05:42 -------- d---a-w- C:\boot-sav
    2012-08-18 00:33 . 2012-08-18 00:33 -------- d-----w- c:\users\Lanian\AppData\Roaming\iFunbox_UserCache
    2012-08-18 00:33 . 2012-08-18 00:33 -------- d-----w- c:\program files (x86)\i-Funbox DevTeam
    2012-08-17 23:43 . 2009-05-18 11:17 34152 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
    2012-08-17 23:43 . 2008-04-17 10:12 126312 ----a-w- c:\windows\system32\GEARAspi64.dll
    2012-08-17 23:43 . 2008-04-17 10:12 107368 ----a-w- c:\windows\SysWow64\GEARAspi.dll
    2012-08-17 23:43 . 2012-08-17 23:43 -------- d-----w- c:\program files\iTunes
    2012-08-17 23:43 . 2012-08-17 23:43 -------- d-----w- c:\program files (x86)\iTunes
    2012-08-17 23:43 . 2012-08-17 23:43 -------- d-----w- c:\program files\iPod
    2012-08-17 23:03 . 2012-08-17 23:03 -------- d-----w- c:\users\Lanian\AppData\Local\libimobiledevice
    .
    .
    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-09-15 14:56 . 2012-04-26 12:08 380 ----a-w- c:\users\Lanian\AppData\Roaming\sp_data.sys
    2012-09-14 16:56 . 2012-05-16 21:35 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
    2012-08-16 01:00 . 2012-08-07 01:01 62134624 ----a-w- c:\windows\system32\MRT.exe
    2012-08-15 06:37 . 2012-05-06 21:12 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-08-15 06:37 . 2012-05-06 21:12 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-08-05 00:02 . 2012-08-05 00:02 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
    2012-07-18 18:15 . 2012-08-15 02:26 3148800 ----a-w- c:\windows\system32\win32k.sys
    2012-07-06 20:07 . 2012-08-16 01:05 552960 ----a-w- c:\windows\system32\drivers\bthport.sys
    2012-07-06 20:02 . 2012-07-06 20:03 98304 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys
    2012-07-06 20:02 . 2012-07-06 20:03 87040 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys
    2012-07-06 20:02 . 2012-07-06 20:03 72192 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys
    2012-07-06 20:02 . 2012-07-06 20:03 422400 ----a-w- c:\windows\system32\drivers\ewusbwwan.sys
    2012-07-06 20:02 . 2012-07-06 20:03 28672 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys
    2012-07-06 20:02 . 2012-07-06 20:03 223744 ----a-w- c:\windows\system32\drivers\ew_juwwanecm.sys
    2012-07-06 20:02 . 2012-07-06 20:03 22016 ----a-w- c:\windows\system32\drivers\ew_hwupgrade.sys
    2012-07-06 20:02 . 2012-07-06 20:03 1490656 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
    2012-07-06 20:02 . 2012-07-06 20:03 1490656 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
    2012-07-06 20:02 . 2012-07-06 20:03 13952 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
    2012-07-06 20:02 . 2012-07-06 20:03 117248 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
    2012-07-04 22:16 . 2012-08-15 02:26 73216 ----a-w- c:\windows\system32\netapi32.dll
    2012-07-04 22:13 . 2012-08-15 02:26 59392 ----a-w- c:\windows\system32\browcli.dll
    2012-07-04 22:13 . 2012-08-15 02:26 136704 ----a-w- c:\windows\system32\browser.dll
    2012-07-04 21:14 . 2012-08-15 02:26 41984 ----a-w- c:\windows\SysWow64\browcli.dll
    2012-06-29 04:55 . 2012-08-16 01:04 17809920 ----a-w- c:\windows\system32\mshtml.dll
    2012-06-29 04:09 . 2012-08-16 01:04 10925568 ----a-w- c:\windows\system32\ieframe.dll
    2012-06-29 03:56 . 2012-08-16 01:04 2312704 ----a-w- c:\windows\system32\jscript9.dll
    2012-06-29 03:49 . 2012-08-16 01:05 1346048 ----a-w- c:\windows\system32\urlmon.dll
    2012-06-29 03:49 . 2012-08-16 01:04 1392128 ----a-w- c:\windows\system32\wininet.dll
    2012-06-29 03:48 . 2012-08-16 01:04 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
    2012-06-29 03:47 . 2012-08-16 01:05 237056 ----a-w- c:\windows\system32\url.dll
    2012-06-29 03:45 . 2012-08-16 01:04 85504 ----a-w- c:\windows\system32\jsproxy.dll
    2012-06-29 03:44 . 2012-08-16 01:04 816640 ----a-w- c:\windows\system32\jscript.dll
    2012-06-29 03:43 . 2012-08-16 01:04 173056 ----a-w- c:\windows\system32\ieUnatt.exe
    2012-06-29 03:42 . 2012-08-16 01:05 2144768 ----a-w- c:\windows\system32\iertutil.dll
    2012-06-29 03:40 . 2012-08-16 01:05 96768 ----a-w- c:\windows\system32\mshtmled.dll
    2012-06-29 03:39 . 2012-08-16 01:05 2382848 ----a-w- c:\windows\system32\mshtml.tlb
    2012-06-29 03:35 . 2012-08-16 01:04 248320 ----a-w- c:\windows\system32\ieui.dll
    2012-06-29 00:16 . 2012-08-16 01:04 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
    2012-06-29 00:09 . 2012-08-16 01:04 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
    2012-06-29 00:08 . 2012-08-16 01:04 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
    2012-06-29 00:04 . 2012-08-16 01:04 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
    2012-06-29 00:00 . 2012-08-16 01:05 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
    .
    .
    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
    "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
    "Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-08-06 1353080]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "Nuance PDF Reader-reminder"="c:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]
    "ASUSPRP"="c:\program files (x86)\ASUS\APRP\APRP.EXE" [2011-10-19 3331312]
    "ASUSWebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe" [2011-07-29 737104]
    "ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2012-02-22 3058304]
    "THX TruStudio NB Settings"="c:\program files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" [2011-03-17 909312]
    "UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
    "CPMonitor"="c:\program files (x86)\Roxio\CinePlayer\5.0\CPMonitor.exe" [2011-04-01 84464]
    "VAWinAgent"="c:\expressgateutil\VAWinAgent.exe" [2011-04-08 45448]
    "CLMLServer"="c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [2010-08-20 107816]
    "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280]
    "ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2011-12-22 318080]
    "ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2011-10-24 174720]
    "HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
    "ACMON"="c:\program files (x86)\ASUS\Splendid\ACMON.exe" [2012-02-06 102568]
    "FLxHCIm64"="c:\program files\Fresco Logic\Fresco Logic USB3.0 Host Controller\amd64_host\FLxHCIm.exe" [2012-01-15 48128]
    "Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2012-02-02 2321072]
    "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-06-07 421776]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    AsusVibeLauncher.lnk - c:\program files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe [2011-10-19 549040]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    R2 Banda Ancha Movil. RunOuc;Banda Ancha Movil. OUC;c:\program files (x86)\Banda Ancha Movil\UpdateDog\ouc.exe [2012-07-06 655712]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-06-05 160944]
    R3 acsock;acsock;c:\windows\system32\DRIVERS\acsock64.sys [2012-06-07 107432]
    R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
    R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
    R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-02 183560]
    R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
    R3 BrSerIb;Brother Serial Interface Driver(WDM);c:\windows\system32\DRIVERS\BrSerIb.sys [2010-01-19 87552]
    R3 BrUsbSIb;Brother Serial USB Driver(WDM);c:\windows\system32\DRIVERS\BrUsbSIb.sys [2010-01-19 14592]
    R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
    R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
    R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
    R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
    R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
    R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2012-02-22 79360]
    R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2012-02-22 79360]
    R3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;e:\dragon age\bin_ship\DAUpdaterSvc.Service.exe [2009-12-15 25832]
    R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2012-07-06 117248]
    R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-07-06 13952]
    R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [2012-07-06 422400]
    R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [x]
    R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [2012-07-06 98304]
    R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys [2012-07-06 28672]
    R3 huawei_wwanecm;huawei_wwanecm;c:\windows\system32\DRIVERS\ew_juwwanecm.sys [2012-07-06 223744]
    R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
    R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
    R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;c:\windows\system32\drivers\libusb0.sys [x]
    R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [x]
    R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-04-21 129976]
    R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
    R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys [2010-08-03 290920]
    R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
    R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
    R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
    R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736]
    R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2012-04-27 1255736]
    R3 XPADFL02;XPAD Filter Service 02;c:\windows\system32\DRIVERS\xpadfl02.sys [x]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
    S1 aswSnx;aswSnx; [x]
    S1 aswSP;aswSP; [x]
    S1 ATKWMIACPIIO_;ATKWMIACPI Driver_;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-25 283200]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
    S2 Amsp;Trend Micro Solution Platform;c:\program files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe [x]
    S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
    S2 AsusUacSvc;Asus process privilege adjust service;c:\program files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe [2010-07-27 113840]
    S2 aswFsBlk;aswFsBlk; [x]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-08-21 71600]
    S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
    S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
    S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
    S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-30 1258856]
    S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
    S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-08-30 382312]
    S2 tmevtmgr;tmevtmgr;c:\windows\system32\DRIVERS\tmevtmgr.sys [2010-09-17 67664]
    S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
    S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
    S2 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2011-03-26 91464]
    S3 AiCharger;ASUS Charger Driver;c:\windows\system32\DRIVERS\AiCharger.sys [2012-01-30 17152]
    S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
    S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;c:\windows\system32\DRIVERS\FLxHCIc.sys [2012-01-10 219648]
    S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;c:\windows\system32\DRIVERS\FLxHCIh.sys [2012-01-10 65024]
    S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2012-07-06 87040]
    S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-09-21 56344]
    S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys [2011-11-10 115272]
    S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-04-21 471144]
    S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
    S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
    S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
    S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
    S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
    S3 SmbDrv;SmbDrv;c:\windows\system32\DRIVERS\Smb_driver.sys [2012-01-26 22800]
    .
    .
    Contenu du dossier 'Tâches planifiées'
    .
    2012-09-16 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-06 06:37]
    .
    2012-09-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3308576706-2638107543-865331214-1000Core.job
    - c:\users\Lanian\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-02 16:27]
    .
    2012-09-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3308576706-2638107543-865331214-1000UA.job
    - c:\users\Lanian\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-02 16:27]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-08-21 09:11 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
    @="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
    [HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
    2011-05-25 07:09 227840 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSShellExt64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
    @="{64174815-8D98-4CE6-8646-4C039977D808}"
    [HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
    2011-05-25 07:09 227840 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSShellExt64.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Trend Micro Titanium"="c:\program files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe" [2011-10-08 1111568]
    "AtherosBtStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2011-03-13 617120]
    "AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2011-03-13 379552]
    "IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
    "Trend Micro Client Framework"="c:\program files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe" [2011-02-10 197152]
    "XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "LoadAppInit_DLLs"=0x0
    .
    ------- Examen supplémentaire -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = https://www.google.fr/
    mStart Page = hxxp://asus.msn.com
    mLocal Page = c:\windows\SysWOW64\blank.htm
    uInternet Settings,ProxyOverride = *.local
    IE: Tout télécharger avec BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
    IE: Télécharger avec BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm
    LSP: %SystemRoot%\system32\PrxerDrv.dll
    Trusted Zone: grenet.fr\vpn1
    TCP: DhcpNameServer = 192.168.182.1 192.168.182.1
    DPF: {538793D5-659C-4639-A56C-A179AD87ED44} - hxxps://vpn1.grenet.fr/CACHE/stc/1/binaries/vpnweb.cab
    DPF: {CC679CB8-DC4B-458B-B817-D447B3B6AC31} - hxxps://vpn2.grenet.fr/CACHE/stc/1/binaries/vpnweb.cab
    FF - ProfilePath - c:\users\Lanian\AppData\Roaming\Mozilla\Firefox\Profiles\p3g20um1.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
    FF - prefs.js: network.proxy.type - 4
    .
    - - - - ORPHELINS SUPPRIMES - - - -
    .
    Toolbar-Locked - (no file)
    Wow6432Node-HKCU-Run-NCsoft Launcher - c:\program files (x86)\NCSoft\Launcher\NCLauncher.exe
    Wow6432Node-HKCU-Run-RGSC - d:\rockstar games\Rockstar Games Social Club\RGSCLauncher.exe
    Toolbar-Locked - (no file)
    HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
    HKLM-Run-SynAsusAcpi - c:\program files (x86)\Synaptics\SynTP\SynAsusAcpi.exe
    AddRemove-Banda Ancha Movil - c:\program files (x86)\Banda Ancha Movil\uninst.exe
    .
    .
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------
    .
    [HKEY_USERS\S-1-5-21-3308576706-2638107543-865331214-1000\Software\SecuROM\License information*]
    "datasecu"=hex:94,df,fe,a2,53,1c,f9,01,d2,80,19,fe,c0,37,34,10,b8,95,14,a5,ae,
    18,1b,aa,64,74,cd,a1,f2,fc,9a,16,d3,15,7e,87,b0,0c,fe,e4,fa,a8,ec,a5,a5,92,\
    "rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ------------------------ Autres processus actifs ------------------------
    .
    c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
    c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    c:\program files\AVAST Software\Avast\AvastSvc.exe
    c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    c:\programdata\Banda Ancha Movil\OnlineUpdate\ouc.exe
    c:\program files (x86)\Cisco Systems\VPN Client\cvpnd.exe
    c:\windows\SysWOW64\PnkBstrA.exe
    c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE
    c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
    c:\program files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
    c:\program files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
    c:\program files (x86)\ASUS\FaceLogon\sensorsrv.exe
    c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    .
    **************************************************************************
    .
    Heure de fin: 2012-09-16 04:46:32 - La machine a redémarré
    ComboFix-quarantined-files.txt 2012-09-16 02:46
    .
    Avant-CF: 53 345 804 288 octets libres
    Après-CF: 52 547 121 152 octets libres
    .
    - - End Of File - - C38258911C38ED7F8A36FA995E03F30C

    16 Septembre 2012 05:11:19

    pour explorer et companie c bon j'ai taper
    fsutil file createnew "%userprofile%\desktop\CFScript.txt" 0


    sur executer et c bon.... j'ai flipper un peut j'avou hahaha

    pd: sinon j'ai essayer et le windows update et windows defender marchent a merveille maintenant!!!! il y a que le parefeu qui bug encore :S
    soyons plus précit, en faites quand j'essaye de "metre a jour les parametres recommandes" le programme commence a charger cependant rien se pase.... c bizare

    16 Septembre 2012 19:10:16

    Bonsoir

    Fais ceci :

    Démarrer -> exécuter (si non présent, : Tous les programmes -> Accessoire -> exécuter)

    Tape exactement ceci :
    services.msc


    Valide avec "entrée"

    Dans la nouvelle fenêtre cherche dans la liste le service nommé "Parefeu Windows""
    Sélectionne sa ligne, puis clique à gauche sur "démarrer le service" sous sa description.

    Dis-moi s'il démarre, ou si tu obtiens une erreur, si erreur, donne-la moi.

    +++

    dans la foulée, tu repostes un rapport Farbar Service Scanner
    6 Octobre 2012 00:16:48

    Bonjour et désolé de ne pas avoir répondu avant, j'était en vacances.

    Du coup, non sa ne marche pas :S
    il me dit:

    Windows n' pas pue demarer Le parefeuWIndows sur Ordinateur Local, bla bla bla (contacter machin) service:5

    Voila, sinon j'ai un autre probleme, on a voulu faire des soirées geeks avec des potes et depuis que j'ai fait toutes les manipes que vous m'avez demandez de faire j'arrive plus a heberger des parties, je ne comprend pas pourquoi :S (je desactive toutes les protections quand j'essaye T_T)

    VOila pour le rapport sinon:

    Spoiler

    Farbar Service Scanner Version: 06-08-2012
    Ran by Lanian (administrator) on 06-10-2012 at 00:16:11
    Running from "C:\Users\Lanian\Desktop\Utilitaires"
    Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
    Boot Mode: Normal
    ****************************************************************

    Internet Services:
    ============

    Connection Status:
    ==============
    Localhost is accessible.
    LAN connected.
    Google IP is accessible.
    Google.com is accessible.
    Yahoo IP is accessible.
    Yahoo.com is accessible.


    Windows Firewall:
    =============
    MpsSvc Service is not running. Checking service configuration:
    The start type of MpsSvc service is OK.
    The ImagePath of MpsSvc service is OK.
    The ServiceDll of MpsSvc service is OK.


    Firewall Disabled Policy:
    ==================


    System Restore:
    ============

    System Restore Disabled Policy:
    ========================


    Action Center:
    ============

    Windows Update:
    ============

    Windows Autoupdate Disabled Policy:
    ============================


    Windows Defender:
    ==============
    WinDefend Service is not running. Checking service configuration:
    The start type of WinDefend service is OK.
    The ImagePath of WinDefend service is OK.
    The ServiceDll of WinDefend service is OK.


    Other Services:
    ==============
    Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
    Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
    Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


    File Check:
    ========
    C:\Windows\System32\nsisvc.dll => MD5 is legit
    C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
    C:\Windows\System32\drivers\afd.sys => MD5 is legit
    C:\Windows\System32\drivers\tdx.sys => MD5 is legit
    C:\Windows\System32\Drivers\tcpip.sys
    [2012-09-16 05:15] - [2012-08-22 20:12] - 1913200 ____A (Microsoft Corporation) F782CAD3CEDBB3F9FFE3BF2775D92DDC

    C:\Windows\System32\dnsrslvr.dll => MD5 is legit
    C:\Windows\System32\mpssvc.dll => MD5 is legit
    C:\Windows\System32\bfe.dll => MD5 is legit
    C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
    C:\Windows\System32\SDRSVC.dll => MD5 is legit
    C:\Windows\System32\vssvc.exe => MD5 is legit
    C:\Windows\System32\wscsvc.dll => MD5 is legit
    C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
    C:\Windows\System32\wuaueng.dll => MD5 is legit
    C:\Windows\System32\qmgr.dll => MD5 is legit
    C:\Windows\System32\es.dll => MD5 is legit
    C:\Windows\System32\cryptsvc.dll => MD5 is legit
    C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\System32\rpcss.dll => MD5 is legit


    **** End of log ****


    edit: je pense savoir quel est le prob avec les hebergements, je pense que le parefeu est instaler et operatif sans l'etre, en gros que j'ai pas accès donc je ne peut pas le desactivé.... LOL
    6 Octobre 2012 18:11:24

    Bonjour


    1) Télécharge Services Repair (de Eset) sur ton bureau.

  • Ferme toutes tes fenêtres, puis double clique sur ServicesRepair.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

  • L'outil va te demander de confirmer le lancement, accepte avec le bouton "Yes"
  • Laisser-le travailler (cela peut prendre quelques minutes)
  • Une nouvelle fenêtre va apparaitre pour demander de redémarrer le PC, accepte avec "Yes"

  • Au redémarrage, un dossier aura été crée sur ton bureau, nommé CC Support
  • Poste-moi dans la prochaine réponse le rapport qui se trouve ici : CC Support\Logs\SvcRepair.txt

    2) Relance FSS :

  • Ferme toutes tes fenêtres, puis double clique sur FSS.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

  • Coche toutes les options
  • Clique sur le bouton "Scan"
  • Laisse travailler l'outil, un rapport va apparaitre.
  • Poste son contenu dans ta prochaine réponse

    (S'il n'apparait pas, tu le trouveras à l'emplacement du fichier FSS.exe, sous le nom FSS.txt )


    ++++
    6 Octobre 2012 18:56:37

    Voila rapport service repair:
    Spoiler

    Log Opened: 2012-10-06 @ 18:48:46
    18:48:46 - -----------------
    18:48:46 - | Begin Logging |
    18:48:46 - -----------------
    18:48:46 - Fix started on a WIN_7 X64 computer
    18:48:46 - Prep in progress. Please Wait.
    18:48:47 - Prep complete
    18:48:47 - Repairing Services Now. Please wait...
    INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
    INFORMATION: Input file for restore operation opened: '.\Win7\BFE.sddl'
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\SubLayer>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\Provider>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\Filter>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\BootTime\Filter>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\BootTime>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE>

    SetACL finished successfully.
    INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
    INFORMATION: Input file for restore operation opened: '.\Win7\BITS.sddl'
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Security>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Performance>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Parameters>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS>

    SetACL finished successfully.
    INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
    INFORMATION: Input file for restore operation opened: '.\Win7\iphlpsvc.sddl'
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Teredo>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Teredo\{FA88062C-9A61-4C1E-AC45-7143F8F01AAD}>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Teredo>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Isatap\{8AD2FB26-F91E-44F1-9B24-3C0AE56C9CE0}>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\Isatap>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters\IPHTTPS>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Interfaces>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\config>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc>

    SetACL finished successfully.
    INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
    INFORMATION: Input file for restore operation opened: '.\Win7\MpsSvc.sddl'
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Security>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\Teredo>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\RPC-EPMap>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\IPTLSOut>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\IPTLSIn>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\DHCP>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc>

    SetACL finished successfully.
    INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
    INFORMATION: Input file for restore operation opened: '.\Win7\SharedAccess.sddl'
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static\System>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static\System> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable\System>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable\System> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\Logging>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\Logging> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\GloballyOpenPorts>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\GloballyOpenPorts> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Epoch2>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Epoch2> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Epoch>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Epoch> failed with: Accès refusé.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile\Logging>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile\Logging> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile\Logging>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile\Logging> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\FirewallRules>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\FirewallRules> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile\Logging>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile\Logging> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults>
    ERROR: Writing SD to <machine\System\CurrentControlset\Services\SharedAccess\Defaults> failed with: Le fichier spécifié est introuvable.
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess>

    SetACL finished successfully.
    INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
    INFORMATION: Input file for restore operation opened: '.\Win7\WinDefend.sddl'
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\TriggerInfo\0>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\TriggerInfo>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\Security>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\Parameters>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend>

    SetACL finished successfully.
    INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
    INFORMATION: Input file for restore operation opened: '.\Win7\wscsvc.sddl'
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Security>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Parameters>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc>

    SetACL finished successfully.
    INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
    INFORMATION: Input file for restore operation opened: '.\Win7\wuauserv.sddl'
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Security>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Parameters>
    INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv>

    SetACL finished successfully.
    18:48:48 - Services Repair Complete.
    18:48:52 - Reboot Initiated


    Sinon voila celui de FFS:

    Spoiler

    Farbar Service Scanner Version: 06-08-2012
    Ran by Lanian (administrator) on 06-10-2012 at 18:55:49
    Running from "C:\Users\Lanian\Desktop\Utilitaires"
    Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
    Boot Mode: Normal
    ****************************************************************

    Internet Services:
    ============

    Connection Status:
    ==============
    Localhost is accessible.
    LAN connected.
    Google IP is accessible.
    Attempt to access Google.com returned error: Google.com is offline
    Yahoo IP is accessible.
    Yahoo.com is accessible.


    Windows Firewall:
    =============
    MpsSvc Service is not running. Checking service configuration:
    The start type of MpsSvc service is OK.
    The ImagePath of MpsSvc service is OK.
    The ServiceDll of MpsSvc service is OK.


    Firewall Disabled Policy:
    ==================


    System Restore:
    ============

    System Restore Disabled Policy:
    ========================


    Action Center:
    ============

    Windows Update:
    ============

    Windows Autoupdate Disabled Policy:
    ============================


    Windows Defender:
    ==============

    Other Services:
    ==============
    Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
    Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
    Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


    File Check:
    ========
    C:\Windows\System32\nsisvc.dll => MD5 is legit
    C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
    C:\Windows\System32\drivers\afd.sys => MD5 is legit
    C:\Windows\System32\drivers\tdx.sys => MD5 is legit
    C:\Windows\System32\Drivers\tcpip.sys
    [2012-09-16 05:15] - [2012-08-22 20:12] - 1913200 ____A (Microsoft Corporation) F782CAD3CEDBB3F9FFE3BF2775D92DDC

    C:\Windows\System32\dnsrslvr.dll => MD5 is legit
    C:\Windows\System32\mpssvc.dll => MD5 is legit
    C:\Windows\System32\bfe.dll => MD5 is legit
    C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
    C:\Windows\System32\SDRSVC.dll => MD5 is legit
    C:\Windows\System32\vssvc.exe => MD5 is legit
    C:\Windows\System32\wscsvc.dll => MD5 is legit
    C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
    C:\Windows\System32\wuaueng.dll => MD5 is legit
    C:\Windows\System32\qmgr.dll => MD5 is legit
    C:\Windows\System32\es.dll => MD5 is legit
    C:\Windows\System32\cryptsvc.dll => MD5 is legit
    C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
    C:\Windows\System32\ipnathlp.dll => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\System32\rpcss.dll => MD5 is legit


    **** End of log ****


    Voila
    8 Octobre 2012 20:40:12

    Bonsoir
    ça ne va toujours pas...

    1) Télécharge Windows Repair (de Tweaking.com) sur ton bureau.

  • Double-Clic dessus pour l'installer puis lance-le.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

  • Va directement à l'onglet "step 3"

  • Clique sur le bouton Do It, et laisse le scan s'effectuer.

  • Ferme le programme et redémarre le PC

  • Relance l'outil et va cette fois-ci sur l'onglet Start Repairs (à la fin)
  • Clique sur le bouton"Start"
  • Dans la fenêtre suivante, coche exactement ces options :


  • Redémarre le pc s'il ne le fait pas automatiquement.

    (Merci à WhiteHat pour les images)


    2) Relance FSS :

  • Ferme toutes tes fenêtres, puis double clique sur FSS.exe pour le lancer.
    (Utilisateur de Vista/Windows 7 faites un clic droit -> "Exécuter en tant qu'administrateur")

  • Coche toutes les options
  • Clique sur le bouton "Scan"
  • Laisse travailler l'outil, un rapport va apparaitre.
  • Poste son contenu dans ta prochaine réponse

    (S'il n'apparait pas, tu le trouveras à l'emplacement du fichier FSS.exe, sous le nom FSS.txt )
    9 Octobre 2012 13:35:33

    Spoiler

    Farbar Service Scanner Version: 06-08-2012
    Ran by Lanian (administrator) on 09-10-2012 at 13:34:03
    Running from "C:\Users\Lanian\Desktop\Utilitaires"
    Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
    Boot Mode: Normal
    ****************************************************************

    Internet Services:
    ============

    Connection Status:
    ==============
    Localhost is accessible.
    LAN connected.
    Google IP is accessible.
    Google.com is accessible.
    Yahoo IP is accessible.
    Yahoo.com is accessible.


    Windows Firewall:
    =============
    MpsSvc Service is not running. Checking service configuration:
    The start type of MpsSvc service is OK.
    The ImagePath of MpsSvc service is OK.
    The ServiceDll of MpsSvc service is OK.


    Firewall Disabled Policy:
    ==================


    System Restore:
    ============

    System Restore Disabled Policy:
    ========================


    Action Center:
    ============

    Windows Update:
    ============

    Windows Autoupdate Disabled Policy:
    ============================


    Windows Defender:
    ==============

    Other Services:
    ==============


    File Check:
    ========
    C:\Windows\System32\nsisvc.dll => MD5 is legit
    C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
    C:\Windows\System32\drivers\afd.sys => MD5 is legit
    C:\Windows\System32\drivers\tdx.sys => MD5 is legit
    C:\Windows\System32\Drivers\tcpip.sys
    [2012-09-16 05:15] - [2012-08-22 20:12] - 1913200 ____A (Microsoft Corporation) F782CAD3CEDBB3F9FFE3BF2775D92DDC

    C:\Windows\System32\dnsrslvr.dll => MD5 is legit
    C:\Windows\System32\mpssvc.dll => MD5 is legit
    C:\Windows\System32\bfe.dll => MD5 is legit
    C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
    C:\Windows\System32\SDRSVC.dll => MD5 is legit
    C:\Windows\System32\vssvc.exe => MD5 is legit
    C:\Windows\System32\wscsvc.dll => MD5 is legit
    C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
    C:\Windows\System32\wuaueng.dll => MD5 is legit
    C:\Windows\System32\qmgr.dll => MD5 is legit
    C:\Windows\System32\es.dll => MD5 is legit
    C:\Windows\System32\cryptsvc.dll => MD5 is legit
    C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
    C:\Windows\System32\ipnathlp.dll => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\System32\rpcss.dll => MD5 is legit


    **** End of log ****


    Voila, j'ai tester de redemarer le service de parefeu windows et c pas encore possible :S
    9 Octobre 2012 21:26:42

    re
    on va reprendre quelque chose:
    Citation :
    Windows n' pas pue demarer Le parefeuWIndows sur Ordinateur Local, bla bla bla (contacter machin) service:5

    il me faut le message exact, avec le code erreur...
    10 Octobre 2012 17:45:32

    En gros il me dit que le service n'a pas pu être demarer et il e demande d'aller voir au journal d'evenement, il ne donne pas de code d'erreur il dit juste "service:5" et que si c'est pas un service de windows que j'aille voir directement le fourniseur du service. Je suis aller voir au journal d'evenement et j'ai trouve l'erreur ci voici:

    Spoiler


    Nom du journal :System
    Source : Service Control Manager
    Date : 10/10/2012 17:36:06
    ID de l’événement :7024
    Catégorie de la tâche :Aucun
    Niveau : Erreur
    Mots clés : Classique
    Utilisateur : N/A
    Ordinateur : ROGUE-Lanian
    Description :
    Le service Pare-feu Windows s’est arrêté avec l’erreur service particulière Accès refusé..
    XML de l’événement :
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
    <EventID Qualifiers="49152">7024</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8080000000000000</Keywords>
    <TimeCreated SystemTime="2012-10-10T15:36:06.242606900Z" />
    <EventRecordID>80743</EventRecordID>
    <Correlation />
    <Execution ProcessID="724" ThreadID="6396" />
    <Channel>System</Channel>
    <Computer>ROGUE-Lanian</Computer>
    <Security />
    </System>
    <EventData>
    <Data Name="param1">Pare-feu Windows</Data>
    <Data Name="param2">%%5</Data>
    </EventData>
    </Event>



    edit: en regardant plus bas je viens de m'apersevoir que, lorsque je lance mon PC, il y a une erreur qui se lance avec... c'est étrange, aparament il y a deux services que ne peuvent pas s'executer corectement, je met ici les rapports de l'evenement:

    Spoiler

    Nom du journal :System
    Source : Service Control Manager
    Date : 09/10/2012 22:37:18
    ID de l’événement :7023
    Catégorie de la tâche :Aucun
    Niveau : Erreur
    Mots clés : Classique
    Utilisateur : N/A
    Ordinateur : ROGUE-Lanian
    Description :
    Le service Publication des ressources de découverte de fonctions s’est arrêté avec l’erreur :
    %%-2147024891
    XML de l’événement :
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
    <EventID Qualifiers="49152">7023</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8080000000000000</Keywords>
    <TimeCreated SystemTime="2012-10-09T20:37:18.637203700Z" />
    <EventRecordID>80638</EventRecordID>
    <Correlation />
    <Execution ProcessID="724" ThreadID="1988" />
    <Channel>System</Channel>
    <Computer>ROGUE-Lanian</Computer>
    <Security />
    </System>
    <EventData>
    <Data Name="param1">Publication des ressources de découverte de fonctions</Data>
    <Data Name="param2">%%-2147024891</Data>
    </EventData>
    </Event>


    Spoiler

    Nom du journal :System
    Source : Service Control Manager
    Date : 09/10/2012 22:37:18
    ID de l’événement :7001
    Catégorie de la tâche :Aucun
    Niveau : Erreur
    Mots clés : Classique
    Utilisateur : N/A
    Ordinateur : ROGUE-Lanian
    Description :
    Le service Fournisseur HomeGroup dépend du service Publication des ressources de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur :
    %%-2147024891
    XML de l’événement :
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
    <EventID Qualifiers="49152">7001</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8080000000000000</Keywords>
    <TimeCreated SystemTime="2012-10-09T20:37:18.637203700Z" />
    <EventRecordID>80639</EventRecordID>
    <Correlation />
    <Execution ProcessID="724" ThreadID="5596" />
    <Channel>System</Channel>
    <Computer>ROGUE-Lanian</Computer>
    <Security />
    </System>
    <EventData>
    <Data Name="param1">Fournisseur HomeGroup</Data>
    <Data Name="param2">Publication des ressources de découverte de fonctions</Data>
    <Data Name="param3">%%-2147024891</Data>
    </EventData>
    </Event>
    11 Octobre 2012 21:33:54

    Bonsoir
    après discussion avec d'autres helpers (dont Hyunkel ^^), possible que cela soit ta solution de sécurité:
    Citation :
    AV: Trend Micro Titanium Internet Security *Disabled/Outdated* {68F968AC-2AA0-091D-848C-803E83E35902}
    SP: Trend Micro Titanium Internet Security *Disabled/Outdated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}

    qui bloque la remise en fonctionnement du pare feu.
    Il faudrait que tu trouves un désinstalleur ici:
    http://esupport.trendmicro.com/solution/en-US/1059018.a...
    puis tu essaies de remettre en route le pare feu. :) 
    12 Octobre 2012 21:51:55

    bonjour, c alain de raucourt qui répond, trend micro n'est plus, en theorie, installer sur mon pc, je l'est reinstaller et desintaler, desinstaler comodo firewall et rien, rien du tout....
    le service ne peut pas encore être reactivé....
    :S

    je commence a croire que c mort la T_T, sinon, peut être il y a encore des traces de ces parefeux, commen pourais-je eliminer tout pasage de ces deux parefeux?

    sinon avant de instaler-desinstaler, je me souviens pas d'avoir desinstaler micro trend, d'ailleur je suis certain, je ne l'ai jamais desinstaler, peut être le virus en question a fait quelque chose a ce niveau?
    14 Octobre 2012 22:57:41

    Aucune application de sécurité mal desinstaler a été detectée T_T

    une autre idée?
    15 Octobre 2012 21:38:51

    non
    aucune idée :/ 
    il est probable que des fichiers systèmes aient été endommagés par l’infection.
    le plus sage serait de réinstaller ton système....
    15 Octobre 2012 23:40:16

    par sa tu entend formater????

    pas moyen de faire ceci sans perdre l'info sur le disque dur ou wintendo est installer? :/ 
    17 Octobre 2012 20:35:33

    bonsoir
    tu sauvegardes tes données puis tu formates et tu réinstalles, oui, c'est la solution la plus sage..
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS