Ordinateur lent,... - FORUMS 01net.

Bonsoir,

Je suis novice en informatique mais mon ordinateur est de plus en plus lent. Je ne sais pas quoi faire.

Si quelqu'un pouvait m'aider.

Merci et bonne soirée
ty

saluttyee1

fais ceci

Télécharge Adwcleaner

adwcleaner ICI
Télécharges Pour Vista et Windows 7 : il faut lancer le fichier par clic-droit "Exécuter en tant qu'administrateur"

Lance AdwCleaner.exe
Acceptes l'avertissement qui suit
Clic sur Recherche

Patientes le temps de la recherche

copies/colles sur le forum le rapport qui apparait à la fin.

Il est sauvegardé aussi sous (C:\AdwCleaner[R1].txt)
Click sur Quitter

Bonsoir,

Merci pour vos réponses.

Logfile of random's system information tool 1.09 (written by random/random)
Run by MAX at 2012-02-28 21:34:38
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 647 MB (0%) free of 194 GB
Total RAM: 1023 MB (5% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:36:10, on 28/02/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Fichiers communs\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
C:\Program Files\Ulead Systems\Ulead Photo Express 5 SE\calcheck.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\LVComsX.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Fichiers communs\Research In Motion\Auto Update\RIMAutoUpdate.exe
C:\Program Files\Fichiers communs\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\SIMPLE~1\PHOTOS~1\data\Xtras\mssysmgr.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Samsung\Digimax Viewer 2.1\STImgBrowser.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ScanWizard 5\ScannerFinder.exe
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearchIndexer.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\CrazyLoader\spointer\crazyloader_air.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\MAX\Bureau\RSIT.exe
C:\Program Files\trend micro\MAX.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files\BearShareTb\BearShareDx.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Interest recogniser for Crazyloader (powered by Spointer) - {C5F65718-341D-4e7d-9842-FCB9CC89527E} - C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} - C:\Program Files\OfferBox\OfferBoxBHO.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files\BearShareTb\BearShareDx.dll
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [KAZAA] C:\Program Files\Kazaa\kazaa.exe /SYSTRAY
O4 - HKLM\..\Run: [Ulead AutoDetector] C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe
O4 - HKLM\..\Run: [Controleur de calendrier pour Ulead Photo Express] C:\Program Files\Ulead Systems\Ulead Photo Express 5 SE\calcheck.exe
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\progra~1\softwin\bitdef~1\bdswitch.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BlackBerryAutoUpdate] C:\Program Files\Fichiers communs\Research In Motion\Auto Update\RIMAutoUpdate.exe /background
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Fichiers communs\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor_new.exe" /Q
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [TheTurtle] C:\Program Files\TheTurtle\TheTurtle.exe
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\SIMPLE~1\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [VoipCheapCom] "C:\Program Files\VoipCheapCom\VoipCheapCom.exe" -nosplash -minimized
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [EPSON Stylus D78 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBGE.EXE /FU "C:\DOCUME~1\MAX\LOCALS~1\Temp\E_S25.tmp" /EF "HKCU"
O4 - HKCU\..\RunOnce: [DesktopMgr.exe] C:\Program Files\Research In Motion\BlackBerry\DesktopMgr.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Event Reminder.lnk = C:\pmw\PMREMIND.EXE
O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Digimax Viewer 2.1.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Scanner Finder.lnk = C:\Program Files\ScanWizard 5\ScannerFinder.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: &Search - ?p=ZS
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clients/5.3.1.0/Rawflow.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {315B0BFB-2BD4-481B-80A3-A9B80727C61B} (WebIQ Engine Application Object) - http://webiq005.webiqonline.com/WebIQ/DataServer/Pub/DataServer.dll?Handler=G(...){896A23A1-5821-4609-A6C6-6D5536C585C9}
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {86EEF11E-FF16-48CE-B1A2-474B663041A9} - http://18807.kit.carpediem.fr/Gay-connection-a.exe
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Fichiers communs\AVG Secure Search\ViProtocolInstaller\10.0.6\ViProtocol.dll
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG8\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: bliglfblsdzt - Unknown owner - C:\DOCUME~1\MAX\LOCALS~1\Temp\DAT2D.tmp.exe (file missing)
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: QuestDns Service - Unknown owner - C:\Documents and Settings\All Users\Application Data\QuestDns\questdns111.exe (file missing)
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files\Fichiers communs\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

--
End of file - 21513 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\MAX\Application Data\Mozilla\Firefox\Profiles\xnt1vvsn.default

prefs.js - "browser.startup.homepage" - "http://search.bearshare.com/"
prefs.js - "keyword.URL" - "http://search.bearshare.com/webResults.html?src=ffb&q="

"avg@igeared"=C:\Program Files\AVG\AVG8\Toolbar\Firefox\avg@igeared
"avg@toolbar"=C:\Documents and Settings\All Users\Application Data\AVG Secure Search\10.0.0.7\


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=Module iTunes Detector
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX® Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4]
"Description"=Office Live Update v1.4
"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2629]
"Description"=RealJukebox Netscape Plugin
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739]
"Description"=6.0.12.1739
"Path"=C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0]
"Description"=BlackBerry Web Software Loading Helper Plug-In for Mozilla browsers
"Path"=C:\Program Files\Fichiers communs\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll

C:\Program Files\Mozilla Firefox\\extensions\
{0497D7FA-B45F-11DB-9DCC-3D3756D89593}
{3112ca9c-de6d-4884-a869-9855de68056c}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\\components\
AskHPRFF.js
browser.xpt
jar50.dll
jsconsole-clhandler.js
jsd3250.dll
nppl3260.xpt
nsBrowserContentHandler.js
nsBrowserGlue.js
nsCloseAllWindows.js
nsDictionary.js
nsExtensionManager.js
nsHelperAppDlg.js
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt
nsPostUpdateWin.js
nsProxyAutoConfig.js
nsSetDefaultBrowser.js
nsSidebar.js
nsUpdateService.js
nsXmlRpcClient.js
xpinstal.dll

C:\Program Files\Mozilla Firefox\\plugins\
np32dsw.dll
npdeploytk.dll
npnul32.dll
NPOFF12.DLL
nppdf32.dll
nppdf32.FRA
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpjplug.dll
QuickTimePlugin.class
ShockwavePlugin.class

C:\Program Files\Mozilla Firefox\\searchplugins\
amazon-france.png
amazon-france.src
avg-secure-search.xml
BearShareWebSearch.png
BearShareWebSearch.src
eBay-france.gif
eBay-france.src
google.gif
google.src
MediaDICO-fr.gif
MediaDICO-fr.src
search.xml
wikipedia-fr.png
wikipedia-fr.src
yahoo-france.gif
yahoo-france.src

C:\Documents and Settings\MAX\Application Data\Mozilla\Firefox\Profiles\xnt1vvsn.default\extensions\
toolbar@ask.com
{635abd67-4fe9-1b23-4f01-e679fa7484c1}

C:\Documents and Settings\MAX\Application Data\Mozilla\Firefox\Profiles\xnt1vvsn.default\searchplugins\
askcom.xml
BearShareWebSearch.png
BearShareWebSearch.src

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}]
MediaBar - C:\Program Files\BearShareTb\BearShareDx.dll [2009-08-10 91576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-12-21 1111320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-01-28 1554256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll [2010-09-17 842296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C5F65718-341D-4e7d-9842-FCB9CC89527E}]
Interest recogniser for Crazyloader (powered by Spointer) - C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll [2010-06-16 132256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-09-02 1175944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}]
EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}]
OfferBox - C:\Program Files\OfferBox\OfferBoxBHO.dll [2010-07-06 135000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Barre d'outils MSN Search - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll [2005-07-07 577232]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2005-11-22 399352]
{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
{EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640]
{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
{E0E899AB-F487-11D5-8D29-0050BA6940E3}
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{A057A204-BACC-4D26-9990-79A187E2698E}
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-07-05 256112]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2009-09-02 1175944]
{0974BA1E-64EC-11DE-B2A5-E43756D89593} - MediaBar - C:\Program Files\BearShareTb\BearShareDx.dll [2009-08-10 91576]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-12-08 32768]
"nwiz"=nwiz.exe /install []
"LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe [2004-10-08 458752]
"LogitechVideoTray"=C:\Program Files\Logitech\Video\LogiTray.exe [2004-10-08 217088]
"KAZAA"=C:\Program Files\Kazaa\kazaa.exe /SYSTRAY []
"Ulead AutoDetector"=C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe [2003-11-19 45056]
"Controleur de calendrier pour Ulead Photo Express"=C:\Program Files\Ulead Systems\Ulead Photo Express 5 SE\calcheck.exe [2004-01-12 69632]
"BDSwitchAgent"=C:\progra~1\softwin\bitdef~1\bdswitch.exe []
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2007-02-27 185896]
"Ulead AutoDetector v2"=C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe [2004-11-26 90112]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-03-27 13684736]
"avgnt"=C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe [2008-07-27 266497]
"BearShare"=C:\Program Files\BearShare\BearShare.exe /pause []
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2011-10-21 2042208]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-11-15 77824]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-03-27 86016]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-03-18 421888]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2010-06-15 141624]
"BlackBerryAutoUpdate"=C:\Program Files\Fichiers communs\Research In Motion\Auto Update\RIMAutoUpdate.exe [2010-06-01 648536]
""= []
"RIMBBLaunchAgent.exe"=C:\Program Files\Fichiers communs\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [2011-02-18 79192]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2010-04-16 3872080]
"LogitechSoftwareUpdate"=C:\Program Files\Logitech\Video\ManifestEngine.exe [2004-10-08 196608]
"NBJ"=C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2005-02-10 1937408]
"updateMgr"=C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe [2005-10-24 307200]
"Spyware Doctor"=C:\Program Files\Spyware Doctor\swdoctor_new.exe /Q []
"BitTorrent"=C:\Program Files\BitTorrent\bittorrent.exe --force_start_minimized []
"SweetIM"=C:\Program Files\Macrogaming\SweetIM\SweetIM.exe [2006-06-06 40960]
"TheTurtle"=C:\Program Files\TheTurtle\TheTurtle.exe []
"PhotoShow Deluxe Media Manager"=C:\PROGRA~1\SIMPLE~1\PHOTOS~1\data\Xtras\mssysmgr.exe [2005-02-01 163840]
"VoipCheapCom"=C:\Program Files\VoipCheapCom\VoipCheapCom.exe -nosplash -minimized []
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-01-28 2097488]
"Shareaza"=C:\Program Files\Shareaza\Shareaza.exe [2008-10-01 5723136]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-07-30 68856]
"ISUSPM"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe [2008-10-24 206112]
"EPSON Stylus D78 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBGE.EXE [2006-02-23 131072]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"DesktopMgr.exe"=C:\Program Files\Research In Motion\BlackBerry\DesktopMgr.exe [2010-06-01 1819992]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Digimax Viewer 2.1.lnk - C:\Program Files\Samsung\Digimax Viewer 2.1\STImgBrowser.exe
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE
Scanner Finder.lnk - C:\Program Files\ScanWizard 5\ScannerFinder.exe
Windows Desktop Search.lnk - C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-fr\bin\WindowsSearch.exe
WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK.EXE

C:\Documents and Settings\MAX\Menu Démarrer\Programmes\Démarrage
Event Reminder.lnk - C:\pmw\PMREMIND.EXE
MSN Pictures Displayer.lnk - C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
OpenOffice.org 3.3.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-08-27 11952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"NoFind"=0
"NoRun"=0
"NoDesktop"=0
"NoClose"=0
"StartMenuLogOff"=0
"HideClock"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=36
"NoDriveAutoRun"=0xFFFFFFFF

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"AllowLegacyWebView"=1
"AllowUnhashedWebView"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\VoipCheapCom\VoipCheapCom.exe"="C:\Program Files\VoipCheapCom\VoipCheapCom.exe:*:Enabled:VoipCheapCom"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Webtarot\webtarot.exe"="C:\Program Files\Webtarot\webtarot.exe:*:Enabled:jeu de tarot"
"C:\Program Files\Shareaza\Shareaza.exe"="C:\Program Files\Shareaza\Shareaza.exe:*:Enabled:Shareaza"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"C:\WINDOWS\system32\svchost.exe"="C:\WINDOWS\system32\svchost.exe:*:Enabled:svchost.exe"
"D:\libNEAP.dll"="D:\libNEAP.dll:*:Enabled:DCClibrary"
"D:\DWizard300.exe"="D:\DWizard300.exe:*:Enabled:DCCWizard"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Service Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\CrazyLoader\crazyloader.exe"="C:\Program Files\CrazyLoader\crazyloader.exe:*:Enabled:CrazyLoader v1.2"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Javaw (x64)"
"C:\Program Files\Java\jre6\bin\javaws.exe"="C:\Program Files\Java\jre6\bin\javaws.exe:*:Enabled:Javaws (x64)"
"C:\Documents and Settings\MAX\Local Settings\Temp\jdic_0_9_5\IeEmbed.exe"="C:\Documents and Settings\MAX\Local Settings\Temp\jdic_0_9_5\IeEmbed.exe:*:Enabled:JDesktop Integration Components binary"
"C:\Program Files\Java\jre6\launch4j-tmp\crazyloader.exe"="C:\Program Files\Java\jre6\launch4j-tmp\crazyloader.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Microsoft Games\Age of Empires III\age3.exe"="C:\Program Files\Microsoft Games\Age of Empires III\age3.exe:*:Enabled:Age of Empires 3"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Disabled:eMule"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Microsoft Games\Halo Trial\halo.exe"="C:\Program Files\Microsoft Games\Halo Trial\halo.exe:*:Enabled:Halo"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Firaxis Games\Sid Meier's Civilization 4 Demo\Civilization4.exe"="C:\Program Files\Firaxis Games\Sid Meier's Civilization 4 Demo\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4 Demo"
"C:\Program Files\Microsoft Games\Age of Empires II Trial\EMPIRES2.EXE"="C:\Program Files\Microsoft Games\Age of Empires II Trial\EMPIRES2.EXE:*:Enabled:Age of Empires II"
"C:\Program Files\Call of Duty\CoDMP.exe"="C:\Program Files\Call of Duty\CoDMP.exe:*:Enabled:CoDMP"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\brastk.exe]
"Debugger="svchost.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=lvcodec2.dll
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"msacm.dvacm"=C:\PROGRA~1\FICHIE~1\ULEADS~1\Vio\Dvacm.acm
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.MPG4"=mpg4c32.dll
"VIDC.MP42"=mpg4c32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"vidc.dvsd"=mcdvd_32.dll
"msacm.siren"=sirenacm.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv

======File associations======

.reg - edit -
.reg - open - c:\Winnt\Regedit.exe %1

======List of files/folders created in the last 1 month======

2012-02-19 00:45:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2660465$
2012-01-31 18:29:31 ----HDC---- C:\WINDOWS\$NtUninstallKB2585542$
2012-01-29 22:42:44 ----D---- C:\spoolerlogs

======List of files/folders modified in the last 1 month======

2012-02-28 21:36:09 ----D---- C:\Program Files\Trend Micro
2012-02-28 21:34:39 ----D---- C:\WINDOWS\Prefetch
2012-02-28 17:22:57 ----AD---- C:\WINDOWS\Temp
2012-02-28 16:23:30 ----AD---- C:\WINDOWS\system32
2012-02-28 12:03:16 ----D---- C:\Program Files\AntiVir PersonalEdition Classic
2012-02-28 12:03:10 ----D---- C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic
2012-02-28 11:43:22 ----D---- C:\WINDOWS\system32\drivers\Avg
2012-02-28 00:12:56 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-02-19 12:16:45 ----D---- C:\WINDOWS\Microsoft.NET
2012-02-19 12:16:20 ----RSD---- C:\WINDOWS\assembly
2012-02-19 11:50:57 ----D---- C:\WINDOWS
2012-02-19 11:47:56 ----D---- C:\Program Files\Microsoft Silverlight
2012-02-19 01:00:13 ----SHD---- C:\Config.Msi
2012-02-19 01:00:05 ----SHD---- C:\WINDOWS\Installer
2012-02-19 00:59:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-02-19 00:59:10 ----D---- C:\WINDOWS\WinSxS
2012-02-19 00:45:55 ----A---- C:\WINDOWS\system32\MRT.exe
2012-02-19 00:45:42 ----HD---- C:\WINDOWS\inf
2012-02-19 00:45:39 ----DC---- C:\WINDOWS\system32\dllcache
2012-02-19 00:45:29 ----A---- C:\WINDOWS\imsins.BAK
2012-02-19 00:45:11 ----D---- C:\Program Files\Internet Explorer
2012-02-19 00:45:05 ----D---- C:\WINDOWS\system32\CatRoot2
2012-02-19 00:42:51 ----HD---- C:\WINDOWS\$hf_mig$
2012-02-19 00:40:34 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2012-02-18 23:35:45 ----HD---- C:\$AVG8.VAULT$
2012-02-18 21:25:16 ----A---- C:\WINDOWS\Ulead32.ini
2012-02-12 23:26:40 ----A---- C:\WINDOWS\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;Contrôleur hôte compatible IEE 1394 VIA OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-05-01 43528]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 avgio;avgio; \??\C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys []
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-08-27 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-08-27 27784]
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-05-27 75096]
R1 ikhfile;File Security Kernel Anti-Spyware Driver; \??\C:\WINDOWS\system32\drivers\ikhfile.sys []
R1 ikhlayer;Kernel Anti-Spyware Driver; \??\C:\WINDOWS\system32\drivers\ikhlayer.sys []
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880]
R2 cvintdrv;cvintdrv; C:\WINDOWS\system32\drivers\cvintdrv.sys [1998-04-13 6848]
R2 irda;Protocole IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-14 88320]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2008-04-14 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2008-04-14 55936]
R2 symlcbrd;symlcbrd; \??\C:\WINDOWS\system32\drivers\symlcbrd.sys []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-11-17 2297664]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2005-07-26 10368]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-03-27 6280416]
R3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 RimVSerPort;RIM Virtual Serial Port v2; C:\WINDOWS\system32\DRIVERS\RimSerial.sys [2009-01-09 27136]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
R3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\system32\DRIVERS\R8139n51.SYS [2002-06-13 45568]
R3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio.sys [2009-12-01 34384]
R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720]
S2 FILESpy;FILESpy; \??\C:\Program Files\Softwin\BitDefender9\filespy.sys []
S2 REGSpy;REGSpy; \??\C:\Program Files\Softwin\BitDefender9\regspy.sys []
S3 avgntflt;avgntflt; \??\C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys []
S3 bdfdll;bdfdll; \??\C:\Program Files\Softwin\BitDefender9\bdfdll.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\MAX\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
S3 irsir;Pilote série infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\irsir.sys []
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2004-10-08 22016]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nenum13E;nenum13E; \??\C:\DOCUME~1\MAX\LOCALS~1\Temp\nenum13E.sys []
S3 netrcacm;RCA USB Digital Cable Modem Driver; C:\WINDOWS\system32\DRIVERS\netrcacm.sys [2005-03-08 20648]
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-14 40320]
S3 PnkBstrK;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 QCMerced;Logitech QuickCam Communicate; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2004-10-08 585824]
S3 RimUsb;Téléphone intelligent BlackBerry ; C:\WINDOWS\System32\Drivers\RimUsb.sys [2011-02-16 64000]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2010-04-19 41984]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WUDFRd;WUDFRd; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 aawservice;Ad-Aware 2007 Service; C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe [2008-04-10 607576]
R2 AntiVirScheduler;AntiVir PersonalEdition Classic Scheduler; C:\Program Files\AntiVir PersonalEdition Classic\sched.exe [2008-10-24 68865]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-08-27 297752]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376]
R2 Irmon;Moniteur infrarouge; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-03-27 163908]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-07-22 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2011-07-22 202448]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 vToolbarUpdater;vToolbarUpdater; C:\Program Files\Fichiers communs\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe [2012-01-15 909152]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-06-15 540472]
S2 bliglfblsdzt;bliglfblsdzt; C:\DOCUME~1\MAX\LOCALS~1\Temp\DAT2D.tmp.exe --SERVICE []
S2 QuestDns Service;QuestDns Service; C:\Documents and Settings\All Users\Application Data\QuestDns\questdns111.exe C:\Program Files\QuestDns\questdns.dll dnlzczon []
S2 Roxio Upnp Server 9;Roxio Upnp Server 9; C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe [2007-12-06 362992]
S2 RoxLiveShare9;LiveShare P2P Server 9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe [2009-07-08 313840]
S2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2009-07-08 170480]
S2 SPService;SPService; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 AntiVirService;AntiVir PersonalEdition Classic Guard; C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe [2008-10-24 151297]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG8\Toolbar\ToolbarBroker.exe [2011-11-10 167264]
S3 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe [2006-06-07 69120]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-05 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Roxio UPnP Renderer 9;Roxio UPnP Renderer 9; C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe [2007-12-06 88560]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2009-07-08 1108464]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------


info.txt logfile of random's system information tool 1.06 2009-11-03 20:13:57

======Uninstall list======

-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNNMP.exe /UNINSTALL
-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FA7621DC-7144-4A24-973C-B9BC0E945628}\setup.exe" -l0x9
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0401-0000-0000000FF1CE} /uninstall {5A2F65A4-808F-4A1E-973E-92E17824982D}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0413-0000-0000000FF1CE} /uninstall {B3F4DC34-7F60-4B7C-A79F-1C13012D99D4}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-040C-0000-0000000FF1CE} /uninstall {A0353900-21A2-42CF-B973-883500A027F7}
ABBYY FineReader 6.0 Sprint-->MsiExec.exe /X{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
ABBYY FineReader OCR Engine -->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{345C90FB-FA10-11D5-9C2A-0080C85A0C2D}\setup.exe"
Ad-Aware 2007-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->MsiExec.exe /X{0DFB3DE8-65B9-44FF-AA0A-3BECC5A2BFD1}
Adobe Reader 7.0.7 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70000000000}
Adobe Reader 7.0.7 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A70700000002}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Ad-remover-->C:\Program Files\Ad-remover\Uninstall ADR.exe
Age of Empires III-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{485775E8-AEB8-46BD-922B-242879E03DD5}
Alive Video Converter (version 2.6.8.0)-->"C:\Program Files\AliveMedia\Video Converter\unins000.exe"
Analyseur et SDK MSXML 4.0 SP2-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
Apple Mobile Device Support-->MsiExec.exe /I{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Documents and Settings\MAX\Bureau\uninstall.exe
ArcSoft PhotoImpression 4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{546C7D0B-1E12-4573-BCD0-F5B0D3C66A74}\Setup.exe" -l0x40c
Ask Toolbar-->MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
Atlas mondial Microsoft Encarta Édition 1998-->C:\Program Files\Fichiers communs\Microsoft Shared\Geography\Setup\acmsetup.exe /U /T SWA3040C.stf
AVG Free 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
Barre d'outils MSN Search-->MsiExec.exe /X{B2CF0FAC-D52C-41D8-81E0-BFD7A3E7C84B}
BearShare-->"C:\Program Files\BearShare Applications\BearShare\UninstallSurvey.exe" "C:\Program Files\BearShare Applications\BearShare\UnwiseLauncher.exe" /A "C:\Program Files\BearShare Applications\BearShare\INSTALL.LOG"
BeClean-->"C:\Program Files\BeClean\unins000.exe"
BingoLiner-->C:\PROGRA~1\BINGOL~1\UNWISE.EXE C:\PROGRA~1\BINGOL~1\INSTALL.LOG
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Bureau Médias de Kazaa 2.6.7-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{78903C42-CB0C-4B35-91A1-D4DEDD91F8CB}\Setup.exe" -l0x40c --AddRemove
Cabri Géomètre II Plus-->MsiExec.exe /I{E45873F4-AB2D-473F-9CBB-78125F4BF624}
Call of Duty-->C:\PROGRA~1\CALLOF~1\Uninstall\Unwise.exe /u C:\PROGRA~1\CALLOF~1\Uninstall\Install.log
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clean Virus MSN-->"C:\Program Files\AxBx\Clean Virus MSN\unins000.exe"
Codeur Windows Media Série 9-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Codeur Windows Media Série 9-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Collection Microsoft Encarta 2005-->MsiExec.exe /I{054600C0-64A6-4248-A026-9745C1E9E159}
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
dBpowerAMP Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP Music Converter.dat
Digimax Viewer 2.1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9EE54C1F-FC99-44D6-916A-0CA2D45E740F}\Setup.exe"
Digital Camera Driver-->C:\PROGRA~1\DIGITA~1\UNWISE.EXE C:\PROGRA~1\DIGITA~1\INSTALL.LOG
Disney Donald Couak Attak-->C:\WINDOWS\IsUn040c.exe -fC:\PROGRA~1\DISNEY~1\DISNEY~1\DeIsL1.isu
DivX Converter-->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DivX-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
eDonkey2000-->"C:\Program Files\eDonkey2000\uninstall_eDonkey2000.exe"
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Encyclopédie Microsoft Encarta 99-->RunDll32 C:\PROGRA~1\MICROS~2\ENCYCL~1\UNENC99.DLL,Uninstall C:\PROGRA~1\MICROS~2\ENCYCL~1\SETUP99F\INST99F.LOG
EPSON Attach To Email-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~

...

Des toolbars à profusion et des programmes (beaucoup) qui se lancent au démarrage : tout cela contribue à ralentir le PC ...

http://forum.malekal.com/les-toolbars-est-pas-obligatoire-t6173.html

-----
+ Deux antivirus résidents : il faut en retirer un des deux ...

Antivir ou AVG !? Il va te falloir faire un choix.

Un seul antivirus suffit : ça aussi, ça contribue à ralentir le PC !


Tu peux, aussi, virer cette s*******ie de Spyware Doctor, via Démarrer > Panneau de config. > Ajout/suppres... des programmes.

-----
Continue avec AdwCleaner comme demandé par did ...

Ok, merci pour l'aide. Voici le rapport pour adwcleaner

# AdwCleaner v1.500 - Rapport créé le 28/02/2012 à 22:10:58
# Mis à jour le 23/02/2012 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : MAX - XP
# Exécuté depuis : C:\Documents and Settings\MAX\Bureau\adwcleaner.exe
# Option [Recherche]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Présent : C:\Documents and Settings\MAX\Application Data\CrazyLoader
Dossier Présent : C:\Documents and Settings\MAX\Application Data\OfferBox
Dossier Présent : C:\Documents and Settings\MAX\Local Settings\Application Data\AskToolbar
Dossier Présent : C:\Documents and Settings\MAX\Menu Démarrer\Programmes\CrazyLoader
Dossier Présent : C:\Program Files\Ask.com
Dossier Présent : C:\Program Files\CrazyLoader
Dossier Présent : C:\Program Files\MacroGaming
Dossier Présent : C:\Program Files\OfferBox
Dossier Présent : C:\Program Files\Search Guard Plus
Dossier Présent : C:\Program Files\Search Guard PlusU
Dossier Présent : C:\Program Files\SGPSA
Dossier Présent : C:\Program Files\VVSN
Dossier Présent : C:\WINDOWS\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Dossier Présent : C:\Documents and Settings\MAX\Application Data\Mozilla\Firefox\Profiles\xnt1vvsn.default\extensions\toolbar@ask.com
Fichier Présent : C:\Program Files\Mozilla Firefox\.autoreg
Fichier Présent : C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
Fichier Présent : C:\Documents and Settings\MAX\Application Data\Mozilla\Firefox\Profiles\xnt1vvsn.default\searchplugins\Askcom.xml

***** [H. Navipromo] *****


***** [Registre] *****

Clé Présente : HKLM\SOFTWARE\Classes\XBTB01621.IEToolbar.1

Clé Présente : HKLM\SOFTWARE\Classes\XBTB01621.XBTB01621.1
Clé Présente : HKCU\Software\Ask.com
Clé Présente : HKCU\Software\AskToolbar
Clé Présente : HKCU\Software\Offerbox
Clé Présente : HKCU\Software\SGPUpdater
Clé Présente : HKCU\Software\SWEETIE
Clé Présente : HKCU\Software\AppDataLow\AskBarDis
Clé Présente : HKCU\Software\AppDataLow\AskToolbarInfo
Clé Présente : HKCU\Software\JavaSoft\Prefs\crazyloader
Clé Présente : HKLM\SOFTWARE\Offerbox
Clé Présente : HKLM\SOFTWARE\Classes\BHO.PSHelper
Clé Présente : HKLM\SOFTWARE\Classes\BHO.PSHelper.1
Clé Présente : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Clé Présente : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Clé Présente : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Clé Présente : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Clé Présente : HKLM\SOFTWARE\Classes\Need2FindBar.SettingsPlugin
Clé Présente : HKLM\SOFTWARE\Classes\Need2FindBar.SettingsPlugin.1
Clé Présente : HKLM\SOFTWARE\Classes\Need2FindBar.ToolbarPlugin
Clé Présente : HKLM\SOFTWARE\Classes\Need2FindBar.ToolbarPlugin.1
Clé Présente : HKLM\SOFTWARE\Classes\OfferBox.OfferBoxServer
Clé Présente : HKLM\SOFTWARE\Classes\OfferBox.OfferBoxServer.1
Clé Présente : HKLM\SOFTWARE\Classes\ShopperReports.Reporter
Clé Présente : HKLM\SOFTWARE\Classes\ShopperReports.Reporter.1
Clé Présente : HKLM\SOFTWARE\Classes\SWEETIE.SWEETIE
Clé Présente : HKLM\SOFTWARE\Classes\SWEETIE.SWEETIE.1
Clé Présente : HKLM\SOFTWARE\Classes\ToolBand.SWEETIE
Clé Présente : HKLM\SOFTWARE\Classes\ToolBand.SWEETIE.1
Clé Présente : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{A7E8C343-7860-4A95-9AA8-AAF30D0F6D1E}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{4D1C4E89-A32A-416b-BCDB-33B3EF3617D3}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{4D1C4E8B-A32A-416b-BCDB-33B3EF3617D3}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{630D6140-04C5-4db0-B27A-020D766FF09B}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{F78B32D6-D6D8-4137-A18F-91EBE1A4AEDB}
Clé Présente : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Clé Présente : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Clé Présente : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{6E4C89CF-3061-4EE4-B22A-B7A8AAEA5CB3}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{45D59156-647B-4B06-B20E-0E297A1077BD}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{9EBB289A-2D7B-465B-825F-1530B813E95A}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{BE990A32-C2EC-4654-8FD0-26FECEA81998}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{CD5C92AE-97B0-4BC3-BA65-BA0308D543BF}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{ED85AEBE-F834-4088-B5D3-97EB2478A6CD}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Clé Présente : HKLM\SOFTWARE\Classes\Typelib\{58906392-79C4-497C-ACC6-6942B59F1A08}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}
Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0626A63-410B-45E2-99A1-3F2475B2D695}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{258C9770-1713-4021-8D7E-1F184A2BD754}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CrazyLoader
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\uninstall\Need2FindBar Uninstall
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}]

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v1.5 (fr)

Profil : xnt1vvsn.default
Fichier : C:\Documents and Settings\MAX\Application Data\Mozilla\Firefox\Profiles\xnt1vvsn.default\prefs.js

Présente : user_pref("browser.search.defaultenginename", "BearShare Web Search");
Présente : user_pref("browser.search.order.1", "BearShare Web Search");

*************************

AdwCleaner[R1].txt - [9402 octets] - [28/02/2012 22:10:58]

########## EOF - C:\AdwCleaner[R1].txt - [9530 octets] ##########

...

OK.

Tu as lu ce que j'ai mis plus haut !?

----
did80,

A toi de jouer pour la suite ... Y a du boulot comme tu peux le constater.

Bon courage.

Oui je viens de supprimer AVG et une partie des barres de tâches inutilisées.

a vous

+1 kmisol effectivement

tyee1

tu as suivi les conseils de kmisol
pour l'antivirus déja çà

fais ceci

1/ Relances Adwcleaner
Pour Vista et Windows 7 : il faut lancer le fichier par clic-droit "Exécuter en tant qu'administrateur"
Sur la page, cliques sur le bouton Suppression
Acceptes l'avertissement qui suit
Laisses travailler l'outil

copies/colles le rapport qui apparait à la fin .
Il est sauvegardé aussi sous C:\AdwCleaner[S1].txt
Click sur Quitter


2/télécharges ad remover
http://www.donnemoilinfo.com/tuto/Ad-Remover/

tu fais la phase1 recherche

copies/colles le rapport c:\ad_reportSCAN.txt

j'attends tes 2 rapports

Bonjour, merci pour votre aide.

Voici le premier rapport:

# AdwCleaner v1.500 - Rapport créé le 29/02/2012 à 17:54:18
# Mis à jour le 23/02/2012 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : MAX - XP
# Exécuté depuis : C:\Documents and Settings\MAX\Bureau\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Documents and Settings\MAX\Application Data\CrazyLoader
Dossier Supprimé : C:\Documents and Settings\MAX\Application Data\OfferBox
Dossier Supprimé : C:\Documents and Settings\MAX\Menu Démarrer\Programmes\CrazyLoader
Dossier Supprimé : C:\Program Files\CrazyLoader
Dossier Supprimé : C:\Program Files\MacroGaming
Dossier Supprimé : C:\Program Files\OfferBox
Dossier Supprimé : C:\Program Files\Search Guard Plus
Dossier Supprimé : C:\Program Files\Search Guard PlusU
Dossier Supprimé : C:\Program Files\SGPSA
Dossier Supprimé : C:\Program Files\VVSN
Fichier Supprimé : C:\Program Files\Mozilla Firefox\.autoreg
Fichier Supprimé : C:\Documents and Settings\MAX\Application Data\Mozilla\Firefox\Profiles\xnt1vvsn.default\searchplugins\Askcom.xml

***** [H. Navipromo] *****


***** [Registre] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\XBTB01621.IEToolbar.1

Clé Supprimée : HKLM\SOFTWARE\Classes\XBTB01621.XBTB01621.1
Clé Supprimée : HKCU\Software\Offerbox
Clé Supprimée : HKCU\Software\SGPUpdater
Clé Supprimée : HKCU\Software\SWEETIE
Clé Supprimée : HKCU\Software\JavaSoft\Prefs\crazyloader
Clé Supprimée : HKLM\SOFTWARE\Offerbox
Clé Supprimée : HKLM\SOFTWARE\Classes\BHO.PSHelper
Clé Supprimée : HKLM\SOFTWARE\Classes\BHO.PSHelper.1
Clé Supprimée : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Clé Supprimée : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Need2FindBar.SettingsPlugin
Clé Supprimée : HKLM\SOFTWARE\Classes\Need2FindBar.SettingsPlugin.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Need2FindBar.ToolbarPlugin
Clé Supprimée : HKLM\SOFTWARE\Classes\Need2FindBar.ToolbarPlugin.1
Clé Supprimée : HKLM\SOFTWARE\Classes\OfferBox.OfferBoxServer
Clé Supprimée : HKLM\SOFTWARE\Classes\OfferBox.OfferBoxServer.1
Clé Supprimée : HKLM\SOFTWARE\Classes\ShopperReports.Reporter
Clé Supprimée : HKLM\SOFTWARE\Classes\ShopperReports.Reporter.1
Clé Supprimée : HKLM\SOFTWARE\Classes\SWEETIE.SWEETIE
Clé Supprimée : HKLM\SOFTWARE\Classes\SWEETIE.SWEETIE.1
Clé Supprimée : HKLM\SOFTWARE\Classes\ToolBand.SWEETIE
Clé Supprimée : HKLM\SOFTWARE\Classes\ToolBand.SWEETIE.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A7E8C343-7860-4A95-9AA8-AAF30D0F6D1E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4D1C4E89-A32A-416b-BCDB-33B3EF3617D3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4D1C4E8B-A32A-416b-BCDB-33B3EF3617D3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{630D6140-04C5-4db0-B27A-020D766FF09B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F78B32D6-D6D8-4137-A18F-91EBE1A4AEDB}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{6E4C89CF-3061-4EE4-B22A-B7A8AAEA5CB3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{45D59156-647B-4B06-B20E-0E297A1077BD}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9EBB289A-2D7B-465B-825F-1530B813E95A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BE990A32-C2EC-4654-8FD0-26FECEA81998}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{CD5C92AE-97B0-4BC3-BA65-BA0308D543BF}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{ED85AEBE-F834-4088-B5D3-97EB2478A6CD}
Clé Supprimée : HKLM\SOFTWARE\Classes\Typelib\{58906392-79C4-497C-ACC6-6942B59F1A08}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0626A63-410B-45E2-99A1-3F2475B2D695}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{258C9770-1713-4021-8D7E-1F184A2BD754}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CrazyLoader
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\uninstall\Need2FindBar Uninstall
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}]
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}]
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}]

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v1.5 (fr)

Profil : xnt1vvsn.default
Fichier : C:\Documents and Settings\MAX\Application Data\Mozilla\Firefox\Profiles\xnt1vvsn.default\prefs.js

Supprimée : user_pref("browser.search.defaultenginename", "BearShare Web Search");
Supprimée : user_pref("browser.search.order.1", "BearShare Web Search");

*************************

AdwCleaner[R1].txt - [9531 octets] - [28/02/2012 22:10:58]
AdwCleaner[S1].txt - [7305 octets] - [29/02/2012 17:54:18]

########## EOF - C:\AdwCleaner[S1].txt - [7433 octets] ##########

Je poste le second dans 1 min

Voici le second rapport:

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-remover\main.exe (SCAN [1]) -> Lancé à 18:08:53 le 29/02/2012, Mode normal

Microsoft Windows XP Édition familiale Service Pack 3 (X86)
MAX@XP ( )

============== RECHERCHE ==============

Service: "QuestDns Service" Présent

Dossier trouvé: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\AbsoluCasino
Dossier trouvé: C:\Documents and Settings\All Users\Application Data\QuestDns
Dossier trouvé: C:\Program Files\QuestDns
Dossier trouvé: C:\Documents and Settings\utilisateur\Application Data\OfferBox
Dossier trouvé: C:\Program Files\Red Kawa\Video Converter App\OpenCandy

Clé trouvée: HKLM\Software\Classes\CLSID\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Clé trouvée: HKLM\Software\Classes\CLSID\{6DF77AA3-27AF-46f2-A1DA-B569AC6BEEFF}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6DF77AA3-27AF-46f2-A1DA-B569AC6BEEFF}
Clé trouvée: HKLM\Software\Classes\CLSID\{6F6C45E4-E231-4F0F-8CD8-AA5770303EAA}
Clé trouvée: HKLM\Software\Classes\Interface\{6F6C45E4-E231-4F0F-8CD8-AA5770303EAA}
Clé trouvée: HKLM\Software\Classes\CLSID\{86460CE5-46A0-4543-B8FE-2D2AE182A2FE}
Clé trouvée: HKLM\Software\Classes\CLSID\{C5F65718-341D-4e7d-9842-FCB9CC89527E}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C5F65718-341D-4e7d-9842-FCB9CC89527E}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C5F65718-341D-4e7d-9842-FCB9CC89527E}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C5F65718-341D-4e7d-9842-FCB9CC89527E}
Clé trouvée: HKLM\Software\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Clé trouvée: HKLM\Software\Classes\Interface\{471E3998-588E-41D5-A874-FA11C44B70DE}
Clé trouvée: HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Clé trouvée: HKLM\Software\Classes\Interface\{D4E856E7-C034-49BA-BFEF-B785F3CBD7BA}
Clé trouvée: HKLM\Software\Classes\Interface\{DB7A9C36-6C85-48BE-BA8D-151B6B144BE0}
Clé trouvée: HKLM\Software\Classes\Interface\{F77F3DFC-F5DC-4316-AB50-B50B16F2BEF4}
Clé trouvée: HKLM\Software\Classes\TypeLib\{4D1C4E80-A32A-416B-BCDB-33B3EF3617D3}
Clé trouvée: HKLM\Software\Classes\TypeLib\{63AF3145-D2DC-4F1D-BB3A-3AAD9FEC3430}
Clé trouvée: HKLM\Software\Classes\TypeLib\{D530F69A-EB2D-4EC6-BD37-E123AEFCA011}
Clé trouvée: HKLM\Software\Classes\Crazyloader.Spointer
Clé trouvée: HKLM\Software\Classes\Crazyloader.Spointer.1
Clé trouvée: HKLM\Software\Classes\Crazyloader.SpointerCtrl
Clé trouvée: HKLM\Software\Classes\Crazyloader.SpointerCtrl.1
Clé trouvée: HKLM\Software\QuestDns
Clé trouvée: HKCU\Software\Spointer
Clé trouvée: HKU\.DEFAULT\Software\AskToolbar
Clé trouvée: HKU\S-1-5-18\Software\AskToolbar
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\AbsoluCasino
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\CrazyLoader
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9ABDEC72-88ED-4087-923C-83D0F95EB671}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37F4A335-D085-423e-A425-0370799166FB}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9AD47395-182E-4069-8F3C-85610B5411E6}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBA4B812-2415-4000-AFCB-56F53E668DC5}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\QuestDns
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search Guard Plus
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search Guard Plus Updater
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search

Valeur trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E879027FB77658523EAC99


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [1.5 (fr)] ****

FIREFOX.EXE\Shell\Open\Command - "C:\Program Files\Mozilla Firefox\firefox.exe"
Searchplugins\avg-secure-search.xml ( hxxp://isearch.avg.com/search?cid={C41AEEF6-0818-4E0D-9DD2-7585BFCF75F4}&amp;mid=4954c4fd843c6e4f96becfecb2817121-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&amp;ds=AVG&amp;lang=fr&amp;v=10.0.0.7&amp;pr=fr&amp;d=2011-12-03 18:29:48&amp;sap=dsp&amp;q={searchTerms}/)
Searchplugins\search.xml (hxxp://search-gala.com/?)
Components\jar50.dll (Mozilla Foundation)
Components\jsd3250.dll (Mozilla Foundation)
Components\nsCloseAllWindows.js
Components\nsDictionary.js
Components\nsPostUpdateWin.js
Components\nsXmlRpcClient.js
Components\xpinstal.dll (Mozilla Foundation)
Extensions\{0497D7FA-B45F-11DB-9DCC-3D3756D89593} (MSN Pictures Displayer)

-- C:\Documents and Settings\MAX\Application Data\Mozilla\FireFox\Profiles\xnt1vvsn.default --
Prefs.js - browser.search.defaulturl, hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
Prefs.js - browser.search.selectedEngine, search
Prefs.js - browser.startup.homepage_override.mstone, rv:1.8.0.3
Prefs.js - browser.startup.homepage, hxxp://search.bearshare.com/
Prefs.js - keyword.URL, hxxp://search.bearshare.com/webResults.html?src=ffb&q=

========================================

**** Internet Explorer Version [8.0.6001.18702] ****

HKCU_Main|SearchMigratedDefaultURL - hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKCU_Main|Start Page - hxxp://www.google.fr/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKCU_SearchScopes\{9ABDEC72-88ED-4087-923C-83D0F95EB671} - "Fast Browser Search" (hxxp://search-gala.com/?&uid=220&q={searchTerms})
HKCU_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} - "Web Search" (hxxp://search.bearshare.com/webResults.html?src=ieb&q={searchTerms})
HKCU_Toolbar\ShellBrowser|{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3} (x)
HKCU_Toolbar\WebBrowser|{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3} (x)
HKCU_Toolbar\WebBrowser|{A057A204-BACC-4D26-9990-79A187E2698E} (x)
HKLM_Toolbar|{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} (x)
HKLM_Toolbar|{E0E899AB-F487-11D5-8D29-0050BA6940E3} (x)
HKLM_Toolbar|{CCC7A320-B3CA-4199-B1A6-9F516DD69829} (x)
HKLM_Toolbar|{A057A204-BACC-4D26-9990-79A187E2698E} (x)
HKLM_Toolbar|{0974BA1E-64EC-11DE-B2A5-E43756D89593} (C:\Program Files\BearShareTb\BearShareDx.dll)
HKLM_ElevationPolicy\{2A9467B4-C085-11DD-BC92-869555D89593} - C:\Program Files\BearShareTb\uninstall.exe (Visicom Media Inc.)
HKLM_ElevationPolicy\{37F4A335-D085-423e-A425-0370799166FB} - C:\Program Files\OfferBox\OfferBox.exe (x)
HKLM_ElevationPolicy\{9AD47395-182E-4069-8F3C-85610B5411E6} - C:\Program Files\Fast Browser Search\IE\ClearRecycleBin.exe (x)
HKLM_ElevationPolicy\{a00068b1-1e4e-41c7-afa9-baeb9697e2b9} - C:\Program Files\Fichiers communs\Research In Motion\AppLoader\Loader.exe (Research In Motion Limited)
HKLM_ElevationPolicy\{DBA4B812-2415-4000-AFCB-56F53E668DC5} - C:\Program Files\CrazyLoader\spointer\crazyloader_air.exe (x)
HKLM_Extensions\{2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - "Spyware Doctor" ("C:\PROGRA~1\SPYWAR~1\Tools\iesdpb.dll",1)
HKLM_Extensions\{9455301C-CF6B-11D3-A266-00C04F689C50} - "Organise-notes" (C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL,106)
HKLM_Extensions\{B205A35E-1FC4-4CE3-818B-899DBBB3388C} - "?" (?)
HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
BHO\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - "AcroIEHlprObj Class" (C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx)
BHO\{0974BA1E-64EC-11DE-B2A5-E43756D89593} - "MediaBar" (C:\Program Files\BearShareTb\BearShareDx.dll)
BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
BHO\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (?)
BHO\{C5F65718-341D-4e7d-9842-FCB9CC89527E} - "Interest recogniser for Crazyloader (powered by Spointer)" (C:\Program Files\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll) (x)
BHO\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} - "OfferBox" (C:\Program Files\OfferBox\OfferBoxBHO.dll) (x)

========================================

C:\Program Files\Ad-remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-remover\Backup: 1 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 29/02/2012 18:09:20 (829 Octet(s))

Fin à: 18:10:13, 29/02/2012

============== E.O.F ==============

re salut

relance ad remover
phase 2 nettoyer/supprimer

copies/colles le rapport
C:\Ad-Report-CLEAN[1].txt

2/ fais ceci

Télécharge zhpdiag

http://telechargement.zebulon.fr/zhpdiag.html


Enregistrer le Fichier sur le bureau important
exécuter en tant qu'administrateur pour Vista/7) pour lancer le programme d'assistant d'installation
Scanner le pc en cliquant sur image de la loupe
Enregistrer le rapport image de la disquette

si vista/ seven il faut désactiver l'uac

aide en image
http://www.commentcamarche.net/faq/17943-desactiver-controle-de-compte-d-util(...)

très volumineux incomplet sur le forum

il faut le poster sur www.mydoc.tk

1 parcourir : zhpdiag.txt sur le bureau

2 déposer

3 me donner le lien formé qui ressemble a çà
http://mydoc.tk/3/8762ZHPDiag.txt

Encore merci pour l'aide!!

Voici le premier rapport:

======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files\Ad-remover\main.exe (CLEAN [1]) -> Lancé à 20:43:25 le 29/02/2012, Mode normal

Microsoft Windows XP Édition familiale Service Pack 3 (X86)
MAX@XP ( )

============== ACTION(S) ==============

Service: "QuestDns Service" Stoppé et supprimé

Dossier supprimé: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\AbsoluCasino
Dossier supprimé: C:\Documents and Settings\All Users\Application Data\QuestDns
Dossier supprimé: C:\Program Files\QuestDns
Dossier supprimé: C:\Documents and Settings\utilisateur\Application Data\OfferBox
Dossier supprimé: C:\Program Files\Red Kawa\Video Converter App\OpenCandy

(!) -- Fichiers temporaires supprimés.


Clé supprimée: HKLM\Software\Classes\CLSID\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0974BA1E-64EC-11DE-B2A5-E43756D89593}
Clé supprimée: HKLM\Software\Classes\CLSID\{6DF77AA3-27AF-46f2-A1DA-B569AC6BEEFF}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6DF77AA3-27AF-46f2-A1DA-B569AC6BEEFF}
Clé supprimée: HKLM\Software\Classes\CLSID\{6F6C45E4-E231-4F0F-8CD8-AA5770303EAA}
Clé supprimée: HKLM\Software\Classes\Interface\{6F6C45E4-E231-4F0F-8CD8-AA5770303EAA}
Clé supprimée: HKLM\Software\Classes\CLSID\{86460CE5-46A0-4543-B8FE-2D2AE182A2FE}
Clé supprimée: HKLM\Software\Classes\CLSID\{C5F65718-341D-4e7d-9842-FCB9CC89527E}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C5F65718-341D-4e7d-9842-FCB9CC89527E}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C5F65718-341D-4e7d-9842-FCB9CC89527E}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C5F65718-341D-4e7d-9842-FCB9CC89527E}
Clé supprimée: HKLM\Software\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Clé supprimée: HKLM\Software\Classes\Interface\{471E3998-588E-41D5-A874-FA11C44B70DE}
Clé supprimée: HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Clé supprimée: HKLM\Software\Classes\Interface\{D4E856E7-C034-49BA-BFEF-B785F3CBD7BA}
Clé supprimée: HKLM\Software\Classes\Interface\{DB7A9C36-6C85-48BE-BA8D-151B6B144BE0}
Clé supprimée: HKLM\Software\Classes\Interface\{F77F3DFC-F5DC-4316-AB50-B50B16F2BEF4}
Clé supprimée: HKLM\Software\Classes\TypeLib\{4D1C4E80-A32A-416B-BCDB-33B3EF3617D3}
Clé supprimée: HKLM\Software\Classes\TypeLib\{63AF3145-D2DC-4F1D-BB3A-3AAD9FEC3430}
Clé supprimée: HKLM\Software\Classes\TypeLib\{D530F69A-EB2D-4EC6-BD37-E123AEFCA011}
Clé supprimée: HKLM\Software\Classes\Crazyloader.Spointer
Clé supprimée: HKLM\Software\Classes\Crazyloader.Spointer.1
Clé supprimée: HKLM\Software\Classes\Crazyloader.SpointerCtrl
Clé supprimée: HKLM\Software\Classes\Crazyloader.SpointerCtrl.1
Clé supprimée: HKLM\Software\QuestDns
Clé supprimée: HKCU\Software\Spointer
Clé supprimée: HKU\.DEFAULT\Software\AskToolbar
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\AbsoluCasino
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu\Programs\CrazyLoader
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9ABDEC72-88ED-4087-923C-83D0F95EB671}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37F4A335-D085-423e-A425-0370799166FB}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9AD47395-182E-4069-8F3C-85610B5411E6}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBA4B812-2415-4000-AFCB-56F53E668DC5}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\QuestDns
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search Guard Plus
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search Guard Plus Updater
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\MenuExt\&Search

Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform|SRS_IT_E879027FB77658523EAC99


============== SCAN ADDITIONNEL ==============

**** Mozilla Firefox Version [1.5 (fr)] ****

FIREFOX.EXE\Shell\Open\Command - "C:\Program Files\Mozilla Firefox\firefox.exe"
Searchplugins\avg-secure-search.xml ( hxxp://isearch.avg.com/search?cid={C41AEEF6-0818-4E0D-9DD2-7585BFCF75F4}&amp;mid=4954c4fd843c6e4f96becfecb2817121-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&amp;ds=AVG&amp;lang=fr&amp;v=10.0.0.7&amp;pr=fr&amp;d=2011-12-03 18:29:48&amp;sap=dsp&amp;q={searchTerms}/)
Searchplugins\search.xml (hxxp://search-gala.com/?)
Components\jar50.dll (Mozilla Foundation)
Components\jsd3250.dll (Mozilla Foundation)
Components\nsCloseAllWindows.js
Components\nsDictionary.js
Components\nsPostUpdateWin.js
Components\nsXmlRpcClient.js
Components\xpinstal.dll (Mozilla Foundation)
Extensions\{0497D7FA-B45F-11DB-9DCC-3D3756D89593} (MSN Pictures Displayer)

-- C:\Documents and Settings\MAX\Application Data\Mozilla\FireFox\Profiles\xnt1vvsn.default --
Prefs.js - browser.search.defaulturl, hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
Prefs.js - browser.search.selectedEngine, search
Prefs.js - browser.startup.homepage_override.mstone, rv:1.8.0.3
Prefs.js - browser.startup.homepage, hxxp://search.bearshare.com/
Prefs.js - keyword.URL, hxxp://search.bearshare.com/webResults.html?src=ffb&q=

========================================

**** Internet Explorer Version [8.0.6001.18702] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} - "Web Search" (hxxp://search.bearshare.com/webResults.html?src=ieb&q={searchTerms})
HKCU_Toolbar\ShellBrowser|{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3} (x)
HKCU_Toolbar\WebBrowser|{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3} (x)
HKCU_Toolbar\WebBrowser|{A057A204-BACC-4D26-9990-79A187E2698E} (x)
HKLM_Toolbar|{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} (x)
HKLM_Toolbar|{E0E899AB-F487-11D5-8D29-0050BA6940E3} (x)
HKLM_Toolbar|{CCC7A320-B3CA-4199-B1A6-9F516DD69829} (x)
HKLM_Toolbar|{A057A204-BACC-4D26-9990-79A187E2698E} (x)
HKLM_Toolbar|{0974BA1E-64EC-11DE-B2A5-E43756D89593} (x)
HKLM_ElevationPolicy\{2A9467B4-C085-11DD-BC92-869555D89593} - C:\Program Files\BearShareTb\uninstall.exe (Visicom Media Inc.)
HKLM_ElevationPolicy\{a00068b1-1e4e-41c7-afa9-baeb9697e2b9} - C:\Program Files\Fichiers communs\Research In Motion\AppLoader\Loader.exe (Research In Motion Limited)
HKLM_Extensions\{2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - "Spyware Doctor" ("C:\PROGRA~1\SPYWAR~1\Tools\iesdpb.dll",1)
HKLM_Extensions\{9455301C-CF6B-11D3-A266-00C04F689C50} - "Organise-notes" (C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL,106)
HKLM_Extensions\{B205A35E-1FC4-4CE3-818B-899DBBB3388C} - "?" (?)
HKLM_Extensions\{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - "?" (?)
HKLM_Extensions\{e2e2dd38-d088-4134-82b7-f2ba38496583} - "?" (?)
BHO\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - "AcroIEHlprObj Class" (C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx)
BHO\{5C255C8A-E604-49b4-9D64-90988571CECB} (?)
BHO\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (?)

========================================

C:\Program Files\Ad-remover\Quarantine: 7 Fichier(s)
C:\Program Files\Ad-remover\Backup: 14 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 29/02/2012 20:43:31 (7663 Octet(s))
C:\Ad-Report-SCAN[1].txt - 29/02/2012 18:09:20 (9670 Octet(s))

Fin à: 20:45:48, 29/02/2012

============== E.O.F ==============


Et le lien du second:

http://mydoc.tk/3/3070ZHPDiag.Txt

re salut tyee1

on va mettre de coté zhp pour le moment
on y reviendra

tu as un rootkit

fais ceci

Télécharge load_tdsskiller de Loup Blanc sur ton Bureau
http://fradesch.perso.cegetel.net/transf/Load_tdsskiller.exe
ou la:
http://support.kaspersky.com/downloads/utils/tdsskiller.zip

Cet outil est conçu pour automatiser différentes tâches proposées par TDSSKiller, un fix de Kaspersky.

Lance load_tdsskiller en double-cliquant dessus. Clic droit et exécuter en tant qu'administrateur avec Vista/Seven

lance le scan.



Si une entrée est trouvée il faut cocher CURE

Continue et redémarrer le pc


Tu peux récupérer le rapport en validant Report

Poste le rapport C:\TDSSKiller.version_date_heure_log.txt
(C:\ est la partition contenant l'OS du PC).

Voilà le rapport,

21:37:05.0703 3964 TDSS rootkit removing tool 2.7.17.0 Feb 29 2012 14:02:24
21:37:05.0937 3964 ============================================================
21:37:05.0937 3964 Current date / time: 2012/02/29 21:37:05.0937
21:37:05.0937 3964 SystemInfo:
21:37:05.0937 3964
21:37:05.0937 3964 OS Version: 5.1.2600 ServicePack: 3.0
21:37:05.0937 3964 Product type: Workstation
21:37:05.0937 3964 ComputerName: XP
21:37:05.0937 3964 UserName: MAX
21:37:05.0937 3964 Windows directory: C:\WINDOWS
21:37:05.0937 3964 System windows directory: C:\WINDOWS
21:37:05.0937 3964 Processor architecture: Intel x86
21:37:05.0937 3964 Number of processors: 2
21:37:05.0937 3964 Page size: 0x1000
21:37:05.0937 3964 Boot type: Normal boot
21:37:05.0937 3964 ============================================================
21:37:09.0984 3964 Drive \Device\Harddisk0\DR0 - Size: 0x2F7B100000 (189.92 Gb), SectorSize: 0x200, Cylinders: 0x60D8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:37:10.0015 3964 Drive \Device\Harddisk1\DR2 - Size: 0x1E3000000 (7.55 Gb), SectorSize: 0x200, Cylinders: 0x3D9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:37:10.0187 3964 \Device\Harddisk0\DR0:
21:37:10.0218 3964 MBR used
21:37:10.0218 3964 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x17BD5299
21:37:10.0218 3964 \Device\Harddisk1\DR2:
21:37:10.0218 3964 MBR used
21:37:10.0218 3964 \Device\Harddisk1\DR2\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0xF17FC1
21:37:10.0265 3964 Initialize success
21:37:10.0265 3964 ============================================================
21:37:11.0890 1008 ============================================================
21:37:11.0890 1008 Scan started
21:37:11.0890 1008 Mode: Manual;
21:37:11.0890 1008 ============================================================
21:37:13.0343 1008 Abiosdsk - ok
21:37:13.0390 1008 abp480n5 - ok
21:37:13.0453 1008 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:37:13.0453 1008 ACPI - ok
21:37:13.0515 1008 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:37:13.0515 1008 ACPIEC - ok
21:37:13.0546 1008 adpu160m - ok
21:37:13.0593 1008 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:37:13.0609 1008 aec - ok
21:37:13.0671 1008 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:37:13.0671 1008 AFD - ok
21:37:13.0718 1008 Aha154x - ok
21:37:13.0750 1008 aic78u2 - ok
21:37:13.0796 1008 aic78xx - ok
21:37:13.0906 1008 ALCXWDM (933933288df5ed26d1928215c97d05c7) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:37:13.0953 1008 ALCXWDM - ok
21:37:14.0000 1008 AliIde - ok
21:37:14.0046 1008 amsint - ok
21:37:14.0125 1008 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:37:14.0125 1008 Arp1394 - ok
21:37:14.0171 1008 asc - ok
21:37:14.0218 1008 asc3350p - ok
21:37:14.0250 1008 asc3550 - ok
21:37:14.0296 1008 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:37:14.0296 1008 AsyncMac - ok
21:37:14.0359 1008 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:37:14.0359 1008 atapi - ok
21:37:14.0390 1008 Atdisk - ok
21:37:14.0453 1008 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:37:14.0453 1008 Atmarpc - ok
21:37:14.0531 1008 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:37:14.0531 1008 audstub - ok
21:37:14.0593 1008 avgio (afa456a6210abe5798561a5758517340) C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys
21:37:14.0593 1008 avgio - ok
21:37:14.0593 1008 avgntflt (906f73c4f6b8ba5daabc41a1f04cecfe) C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys
21:37:14.0593 1008 avgntflt - ok
21:37:14.0656 1008 avipbb (bdb37b3b217f5181a5bc129c50844f98) C:\WINDOWS\system32\DRIVERS\avipbb.sys
21:37:14.0656 1008 avipbb - ok
21:37:14.0687 1008 bdfdll - ok
21:37:14.0734 1008 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:37:14.0734 1008 Beep - ok
21:37:14.0843 1008 catchme - ok
21:37:14.0890 1008 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:37:14.0906 1008 cbidf2k - ok
21:37:14.0953 1008 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:37:14.0953 1008 CCDECODE - ok
21:37:15.0000 1008 cd20xrnt - ok
21:37:15.0125 1008 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:37:15.0125 1008 Cdaudio - ok
21:37:15.0187 1008 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:37:15.0187 1008 Cdfs - ok
21:37:15.0250 1008 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:37:15.0250 1008 Cdrom - ok
21:37:15.0265 1008 Changer - ok
21:37:15.0312 1008 CmdIde - ok
21:37:15.0359 1008 Cpqarray - ok
21:37:15.0421 1008 cvintdrv (7ba8d91a41805a316bba67ff29c891b2) C:\WINDOWS\system32\drivers\cvintdrv.sys
21:37:15.0421 1008 cvintdrv - ok
21:37:15.0453 1008 dac2w2k - ok
21:37:15.0484 1008 dac960nt - ok
21:37:15.0562 1008 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:37:15.0562 1008 Disk - ok
21:37:15.0671 1008 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
21:37:15.0734 1008 dmboot - ok
21:37:15.0828 1008 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
21:37:15.0828 1008 dmio - ok
21:37:15.0875 1008 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:37:15.0875 1008 dmload - ok
21:37:15.0937 1008 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:37:15.0937 1008 DMusic - ok
21:37:15.0984 1008 dpti2o - ok
21:37:16.0078 1008 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:37:16.0078 1008 drmkaud - ok
21:37:16.0156 1008 EverestDriver (76984d46b2abaa46f8b3fcef82c9217d) C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt
21:37:16.0156 1008 EverestDriver - ok
21:37:16.0234 1008 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:37:16.0234 1008 Fastfat - ok
21:37:16.0296 1008 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:37:16.0296 1008 Fdc - ok
21:37:16.0328 1008 FILESpy - ok
21:37:16.0375 1008 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
21:37:16.0375 1008 Fips - ok
21:37:16.0421 1008 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:37:16.0421 1008 Flpydisk - ok
21:37:16.0515 1008 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:37:16.0515 1008 FltMgr - ok
21:37:16.0578 1008 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:37:16.0578 1008 Fs_Rec - ok
21:37:16.0609 1008 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:37:16.0609 1008 Ftdisk - ok
21:37:16.0687 1008 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:37:16.0687 1008 GEARAspiWDM - ok
21:37:16.0765 1008 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:37:16.0765 1008 Gpc - ok
21:37:16.0812 1008 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:37:16.0812 1008 HidUsb - ok
21:37:16.0843 1008 hpn - ok
21:37:16.0921 1008 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:37:16.0937 1008 HTTP - ok
21:37:16.0968 1008 i2omgmt - ok
21:37:17.0015 1008 i2omp - ok
21:37:17.0078 1008 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:37:17.0078 1008 i8042prt - ok
21:37:17.0171 1008 ikhfile (398fe28291bcda3dceb8f56147f02831) C:\WINDOWS\system32\drivers\ikhfile.sys
21:37:17.0171 1008 ikhfile - ok
21:37:17.0218 1008 ikhlayer (ffb485863f837b2b212dfe182ad61144) C:\WINDOWS\system32\drivers\ikhlayer.sys
21:37:17.0218 1008 ikhlayer - ok
21:37:17.0296 1008 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:37:17.0312 1008 Imapi - ok
21:37:17.0359 1008 ini910u - ok
21:37:17.0421 1008 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
21:37:17.0421 1008 IntelIde - ok
21:37:17.0500 1008 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:37:17.0500 1008 intelppm - ok
21:37:17.0562 1008 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:37:17.0562 1008 Ip6Fw - ok
21:37:17.0609 1008 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:37:17.0609 1008 IpFilterDriver - ok
21:37:17.0671 1008 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:37:17.0671 1008 IpInIp - ok
21:37:17.0734 1008 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:37:17.0734 1008 IpNat - ok
21:37:17.0812 1008 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:37:17.0812 1008 IPSec - ok
21:37:17.0859 1008 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
21:37:17.0859 1008 irda - ok
21:37:17.0937 1008 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:37:17.0937 1008 IRENUM - ok
21:37:17.0968 1008 irsir - ok
21:37:18.0078 1008 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:37:18.0078 1008 isapnp - ok
21:37:18.0171 1008 Iviaspi (94a8c9436c36cd9657cfed0043066b9c) C:\WINDOWS\system32\drivers\iviaspi.sys
21:37:18.0171 1008 Iviaspi - ok
21:37:18.0234 1008 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:37:18.0234 1008 Kbdclass - ok
21:37:18.0296 1008 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:37:18.0296 1008 kbdhid - ok
21:37:18.0343 1008 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:37:18.0359 1008 kmixer - ok
21:37:18.0421 1008 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:37:18.0421 1008 KSecDD - ok
21:37:18.0468 1008 lbrtfdc - ok
21:37:18.0531 1008 LVUSBSta (90259f3a20fbaec1a08d74ef5415b9d8) C:\WINDOWS\system32\drivers\lvusbsta.sys
21:37:18.0531 1008 LVUSBSta - ok
21:37:18.0593 1008 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:37:18.0593 1008 mnmdd - ok
21:37:18.0656 1008 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
21:37:18.0656 1008 Modem - ok
21:37:18.0703 1008 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:37:18.0703 1008 Mouclass - ok
21:37:18.0750 1008 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:37:18.0750 1008 mouhid - ok
21:37:18.0796 1008 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:37:18.0796 1008 MountMgr - ok
21:37:18.0828 1008 mraid35x - ok
21:37:18.0906 1008 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:37:18.0921 1008 MRxDAV - ok
21:37:19.0250 1008 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:37:19.0265 1008 MRxSmb - ok
21:37:19.0328 1008 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:37:19.0328 1008 Msfs - ok
21:37:19.0375 1008 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:37:19.0375 1008 MSKSSRV - ok
21:37:19.0421 1008 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:37:19.0421 1008 MSPCLOCK - ok
21:37:19.0484 1008 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:37:19.0484 1008 MSPQM - ok
21:37:19.0546 1008 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:37:19.0546 1008 mssmbios - ok
21:37:19.0625 1008 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
21:37:19.0625 1008 MSTEE - ok
21:37:19.0671 1008 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:37:19.0671 1008 Mup - ok
21:37:19.0734 1008 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:37:19.0734 1008 NABTSFEC - ok
21:37:19.0796 1008 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:37:19.0812 1008 NDIS - ok
21:37:19.0890 1008 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:37:19.0890 1008 NdisIP - ok
21:37:19.0953 1008 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:37:19.0953 1008 NdisTapi - ok
21:37:20.0031 1008 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:37:20.0031 1008 Ndisuio - ok
21:37:20.0109 1008 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:37:20.0109 1008 NdisWan - ok
21:37:20.0187 1008 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:37:20.0187 1008 NDProxy - ok
21:37:20.0281 1008 nenum13E - ok
21:37:20.0328 1008 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:37:20.0328 1008 NetBIOS - ok
21:37:20.0375 1008 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:37:20.0390 1008 NetBT - ok
21:37:20.0515 1008 netrcacm (b128ccc0e4586628d5d6f6a8f1d0778d) C:\WINDOWS\system32\DRIVERS\netrcacm.sys
21:37:20.0515 1008 netrcacm - ok
21:37:20.0578 1008 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:37:20.0578 1008 NIC1394 - ok
21:37:20.0671 1008 nm (1e421a6bcf2203cc61b821ada9de878b) C:\WINDOWS\system32\DRIVERS\NMnt.sys
21:37:20.0671 1008 nm - ok
21:37:20.0734 1008 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:37:20.0734 1008 Npfs - ok
21:37:20.0796 1008 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:37:20.0812 1008 Ntfs - ok
21:37:20.0859 1008 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:37:20.0859 1008 Null - ok
21:37:21.0125 1008 nv (23b95a09677e62ec8d1641ecf39b9bfb) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:37:21.0265 1008 nv - ok
21:37:21.0328 1008 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:37:21.0328 1008 NwlnkFlt - ok
21:37:21.0390 1008 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:37:21.0390 1008 NwlnkFwd - ok
21:37:21.0468 1008 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
21:37:21.0468 1008 NwlnkIpx - ok
21:37:21.0515 1008 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
21:37:21.0515 1008 NwlnkNb - ok
21:37:21.0546 1008 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
21:37:21.0562 1008 NwlnkSpx - ok
21:37:21.0640 1008 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:37:21.0640 1008 ohci1394 - ok
21:37:21.0703 1008 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
21:37:21.0703 1008 Parport - ok
21:37:21.0750 1008 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:37:21.0765 1008 PartMgr - ok
21:37:21.0796 1008 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
21:37:21.0796 1008 ParVdm - ok
21:37:21.0859 1008 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
21:37:21.0859 1008 PCI - ok
21:37:21.0921 1008 PCIDump - ok
21:37:21.0968 1008 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:37:21.0968 1008 PCIIde - ok
21:37:22.0125 1008 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:37:22.0140 1008 Pcmcia - ok
21:37:22.0250 1008 PDCOMP - ok
21:37:22.0328 1008 PDFRAME - ok
21:37:22.0359 1008 PDRELI - ok
21:37:22.0406 1008 PDRFRAME - ok
21:37:22.0453 1008 perc2 - ok
21:37:22.0500 1008 perc2hib - ok
21:37:22.0593 1008 PnkBstrK (d9145f60012289421f1b2dee4945c845) C:\WINDOWS\system32\drivers\PnkBstrK.sys
21:37:22.0593 1008 PnkBstrK - ok
21:37:22.0656 1008 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:37:22.0656 1008 PptpMiniport - ok
21:37:22.0703 1008 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:37:22.0703 1008 PSched - ok
21:37:22.0750 1008 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:37:22.0750 1008 Ptilink - ok
21:37:22.0843 1008 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:37:22.0843 1008 PxHelp20 - ok
21:37:22.0921 1008 QCMerced (e7ac7b1e8ae57c3d55c661187ceebf11) C:\WINDOWS\system32\DRIVERS\LVCM.sys
21:37:22.0937 1008 QCMerced - ok
21:37:22.0984 1008 ql1080 - ok
21:37:23.0046 1008 Ql10wnt - ok
21:37:23.0093 1008 ql12160 - ok
21:37:23.0140 1008 ql1240 - ok
21:37:23.0187 1008 ql1280 - ok
21:37:23.0250 1008 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:37:23.0250 1008 RasAcd - ok
21:37:23.0312 1008 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
21:37:23.0312 1008 Rasirda - ok
21:37:23.0375 1008 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:37:23.0375 1008 Rasl2tp - ok
21:37:23.0421 1008 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:37:23.0421 1008 RasPppoe - ok
21:37:23.0468 1008 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:37:23.0468 1008 Raspti - ok
21:37:23.0531 1008 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:37:23.0546 1008 Rdbss - ok
21:37:23.0578 1008 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:37:23.0578 1008 RDPCDD - ok
21:37:23.0656 1008 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:37:23.0656 1008 RDPWD - ok
21:37:23.0765 1008 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:37:23.0765 1008 redbook - ok
21:37:23.0781 1008 REGSpy - ok
21:37:23.0875 1008 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys
21:37:23.0875 1008 RimUsb - ok
21:37:23.0937 1008 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
21:37:23.0937 1008 RimVSerPort - ok
21:37:24.0000 1008 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
21:37:24.0000 1008 ROOTMODEM - ok
21:37:24.0093 1008 rtl8139 (d0ac0b0355a3ffb85eb77b083cd0627c) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
21:37:24.0093 1008 rtl8139 - ok
21:37:24.0171 1008 SCREAMINGBDRIVER (a643d6df1b7546256b11fb5d6b5d1375) C:\WINDOWS\system32\drivers\ScreamingBAudio.sys
21:37:24.0171 1008 SCREAMINGBDRIVER - ok
21:37:24.0234 1008 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:37:24.0250 1008 Secdrv - ok
21:37:24.0296 1008 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:37:24.0312 1008 serenum - ok
21:37:24.0359 1008 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
21:37:24.0359 1008 Serial - ok
21:37:24.0421 1008 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:37:24.0421 1008 Sfloppy - ok
21:37:24.0468 1008 Simbad - ok
21:37:24.0531 1008 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:37:24.0531 1008 SLIP - ok
21:37:24.0578 1008 Sparrow - ok
21:37:24.0656 1008 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:37:24.0671 1008 splitter - ok
21:37:24.0734 1008 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
21:37:24.0734 1008 sr - ok
21:37:24.0828 1008 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:37:24.0843 1008 Srv - ok
21:37:24.0921 1008 ssmdrv (3d2829fde1c52fc64da5413889ce4dee) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
21:37:24.0921 1008 ssmdrv - ok
21:37:25.0000 1008 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
21:37:25.0000 1008 ssm_bus - ok
21:37:25.0093 1008 ssm_mdfl (5347169fa449eabc4d0728ae39fab926) C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
21:37:25.0093 1008 ssm_mdfl - ok
21:37:25.0187 1008 ssm_mdm (7aae23dd105eed15c4f45fc269fa42a9) C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys
21:37:25.0187 1008 ssm_mdm - ok
21:37:25.0265 1008 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:37:25.0265 1008 streamip - ok
21:37:25.0328 1008 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:37:25.0328 1008 swenum - ok
21:37:25.0406 1008 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:37:25.0406 1008 swmidi - ok
21:37:25.0453 1008 symc810 - ok
21:37:25.0500 1008 symc8xx - ok
21:37:25.0562 1008 symlcbrd (5220576ee29bea7c18dff9ecabf18bbc) C:\WINDOWS\system32\drivers\symlcbrd.sys
21:37:25.0562 1008 symlcbrd - ok
21:37:25.0609 1008 sym_hi - ok
21:37:25.0640 1008 sym_u3 - ok
21:37:25.0687 1008 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:37:25.0687 1008 sysaudio - ok
21:37:25.0750 1008 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:37:25.0765 1008 Tcpip - ok
21:37:25.0812 1008 Tcpip6 (4e53bbcc4be37d7a4bd6ef1098c89ff7) C:\WINDOWS\system32\DRIVERS\tcpip6.sys
21:37:25.0828 1008 Tcpip6 - ok
21:37:25.0890 1008 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:37:25.0890 1008 TDPIPE - ok
21:37:25.0953 1008 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:37:25.0953 1008 TDTCP - ok
21:37:26.0015 1008 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:37:26.0015 1008 TermDD - ok
21:37:26.0062 1008 TosIde - ok
21:37:26.0109 1008 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
21:37:26.0109 1008 tunmp - ok
21:37:26.0156 1008 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:37:26.0171 1008 Udfs - ok
21:37:26.0218 1008 ultra - ok
21:37:26.0281 1008 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:37:26.0296 1008 Update - ok
21:37:26.0375 1008 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
21:37:26.0375 1008 USBAAPL - ok
21:37:26.0453 1008 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
21:37:26.0453 1008 usbaudio - ok
21:37:26.0500 1008 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:37:26.0500 1008 usbccgp - ok
21:37:26.0578 1008 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:37:26.0578 1008 usbehci - ok
21:37:26.0656 1008 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:37:26.0656 1008 usbhub - ok
21:37:26.0718 1008 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:37:26.0718 1008 usbprint - ok
21:37:26.0796 1008 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:37:26.0796 1008 usbscan - ok
21:37:26.0843 1008 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:37:26.0843 1008 USBSTOR - ok
21:37:26.0906 1008 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:37:26.0906 1008 usbuhci - ok
21:37:26.0953 1008 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:37:26.0953 1008 VgaSave - ok
21:37:27.0000 1008 ViaIde - ok
21:37:27.0046 1008 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
21:37:27.0046 1008 VolSnap - ok
21:37:27.0156 1008 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:37:27.0156 1008 Wanarp - ok
21:37:27.0250 1008 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
21:37:27.0312 1008 Wdf01000 - ok
21:37:27.0359 1008 WDICA - ok
21:37:27.0593 1008 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:37:27.0625 1008 wdmaud - ok
21:37:27.0734 1008 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys
21:37:27.0750 1008 WpdUsb - ok
21:37:27.0812 1008 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:37:27.0812 1008 WSTCODEC - ok
21:37:27.0875 1008 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:37:27.0875 1008 WudfPf - ok
21:37:27.0921 1008 WUDFRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:37:27.0921 1008 WUDFRd - ok
21:37:27.0953 1008 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk0\DR0
21:37:28.0109 1008 \Device\Harddisk0\DR0 - ok
21:37:28.0109 1008 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
21:37:31.0218 1008 \Device\Harddisk1\DR2 - ok
21:37:31.0234 1008 Boot (0x1200) (24f8c42c1bfe95fc873bcefeabe3d2f0) \Device\Harddisk0\DR0\Partition0
21:37:31.0250 1008 \Device\Harddisk0\DR0\Partition0 - ok
21:37:31.0250 1008 Boot (0x1200) (1b22984a5c7d0d9467d9e1055ac1bfb6) \Device\Harddisk1\DR2\Partition0
21:37:31.0250 1008 \Device\Harddisk1\DR2\Partition0 - ok
21:37:31.0250 1008 ============================================================
21:37:31.0250 1008 Scan finished
21:37:31.0250 1008 ============================================================
21:37:31.0265 1104 Detected object count: 0
21:37:31.0265 1104 Actual detected object count: 0
21:39:03.0703 2996 Deinitialize success

re tu as bien fait la manip

O58 - SDL:[MD5.4B5443B41F8611E07141EE59BC179C4B] - 13/04/2011 - 15:16:32 ---A- . (...) -- C:\WINDOWS\system32\drivers\str.sys [327743] => Infection Rootkit (Rootkit.Agent)

Ben je ne sais pas, il y a visiblement eu un problème lors du premier scann.

Voici le nouveau rapport:
Sinon, je ne peux pas selectionner "cure". Je n'ai le choix qu'entre: skipe, delete, copy to quarantine

22:03:45.0312 0148 TDSS rootkit removing tool 2.7.17.0 Feb 29 2012 14:02:24
22:03:45.0562 0148 ============================================================
22:03:45.0562 0148 Current date / time: 2012/02/29 22:03:45.0562
22:03:45.0562 0148 SystemInfo:
22:03:45.0562 0148
22:03:45.0578 0148 OS Version: 5.1.2600 ServicePack: 3.0
22:03:45.0578 0148 Product type: Workstation
22:03:45.0578 0148 ComputerName: XP
22:03:45.0578 0148 UserName: MAX
22:03:45.0578 0148 Windows directory: C:\WINDOWS
22:03:45.0578 0148 System windows directory: C:\WINDOWS
22:03:45.0578 0148 Processor architecture: Intel x86
22:03:45.0578 0148 Number of processors: 2
22:03:45.0578 0148 Page size: 0x1000
22:03:45.0578 0148 Boot type: Normal boot
22:03:45.0578 0148 ============================================================
22:03:50.0953 0148 Drive \Device\Harddisk0\DR0 - Size: 0x2F7B100000 (189.92 Gb), SectorSize: 0x200, Cylinders: 0x60D8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:03:50.0968 0148 Drive \Device\Harddisk1\DR2 - Size: 0x1E3000000 (7.55 Gb), SectorSize: 0x200, Cylinders: 0x3D9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:03:51.0093 0148 \Device\Harddisk0\DR0:
22:03:51.0093 0148 MBR used
22:03:51.0093 0148 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x17BD5299
22:03:51.0093 0148 \Device\Harddisk1\DR2:
22:03:51.0093 0148 MBR used
22:03:51.0093 0148 \Device\Harddisk1\DR2\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0xF17FC1
22:03:51.0125 0148 Initialize success
22:03:51.0125 0148 ============================================================
22:05:11.0828 3940 ============================================================
22:05:11.0828 3940 Scan started
22:05:11.0828 3940 Mode: Manual;
22:05:11.0828 3940 ============================================================
22:05:12.0140 3940 Abiosdsk - ok
22:05:12.0187 3940 abp480n5 - ok
22:05:12.0250 3940 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:05:12.0265 3940 ACPI - ok
22:05:12.0328 3940 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:05:12.0328 3940 ACPIEC - ok
22:05:12.0359 3940 adpu160m - ok
22:05:12.0406 3940 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
22:05:12.0421 3940 aec - ok
22:05:12.0484 3940 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
22:05:12.0484 3940 AFD - ok
22:05:12.0531 3940 Aha154x - ok
22:05:12.0578 3940 aic78u2 - ok
22:05:12.0609 3940 aic78xx - ok
22:05:12.0718 3940 ALCXWDM (933933288df5ed26d1928215c97d05c7) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
22:05:12.0765 3940 ALCXWDM - ok
22:05:12.0828 3940 AliIde - ok
22:05:12.0859 3940 amsint - ok
22:05:12.0921 3940 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:05:12.0921 3940 Arp1394 - ok
22:05:12.0968 3940 asc - ok
22:05:13.0000 3940 asc3350p - ok
22:05:13.0031 3940 asc3550 - ok
22:05:13.0093 3940 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:05:13.0093 3940 AsyncMac - ok
22:05:13.0156 3940 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:05:13.0156 3940 atapi - ok
22:05:13.0187 3940 Atdisk - ok
22:05:13.0250 3940 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:05:13.0250 3940 Atmarpc - ok
22:05:13.0312 3940 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:05:13.0312 3940 audstub - ok
22:05:13.0390 3940 avgio (afa456a6210abe5798561a5758517340) C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys
22:05:13.0390 3940 avgio - ok
22:05:13.0406 3940 avgntflt (906f73c4f6b8ba5daabc41a1f04cecfe) C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys
22:05:13.0406 3940 avgntflt - ok
22:05:13.0453 3940 avipbb (bdb37b3b217f5181a5bc129c50844f98) C:\WINDOWS\system32\DRIVERS\avipbb.sys
22:05:13.0453 3940 avipbb - ok
22:05:13.0500 3940 bdfdll - ok
22:05:13.0578 3940 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:05:13.0578 3940 Beep - ok
22:05:13.0656 3940 catchme - ok
22:05:13.0703 3940 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:05:13.0703 3940 cbidf2k - ok
22:05:13.0765 3940 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:05:13.0765 3940 CCDECODE - ok
22:05:13.0812 3940 cd20xrnt - ok
22:05:13.0859 3940 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:05:13.0859 3940 Cdaudio - ok
22:05:13.0906 3940 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
22:05:13.0906 3940 Cdfs - ok
22:05:13.0953 3940 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:05:13.0953 3940 Cdrom - ok
22:05:14.0000 3940 Changer - ok
22:05:14.0046 3940 CmdIde - ok
22:05:14.0093 3940 Cpqarray - ok
22:05:14.0140 3940 cvintdrv (7ba8d91a41805a316bba67ff29c891b2) C:\WINDOWS\system32\drivers\cvintdrv.sys
22:05:14.0140 3940 cvintdrv - ok
22:05:14.0171 3940 dac2w2k - ok
22:05:14.0203 3940 dac960nt - ok
22:05:14.0265 3940 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
22:05:14.0265 3940 Disk - ok
22:05:14.0406 3940 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
22:05:14.0468 3940 dmboot - ok
22:05:14.0515 3940 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
22:05:14.0531 3940 dmio - ok
22:05:14.0703 3940 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:05:14.0703 3940 dmload - ok
22:05:14.0765 3940 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
22:05:14.0765 3940 DMusic - ok
22:05:14.0812 3940 dpti2o - ok
22:05:14.0859 3940 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
22:05:14.0859 3940 drmkaud - ok
22:05:14.0937 3940 EverestDriver (76984d46b2abaa46f8b3fcef82c9217d) C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt
22:05:14.0937 3940 EverestDriver - ok
22:05:15.0000 3940 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
22:05:15.0000 3940 Fastfat - ok
22:05:15.0078 3940 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:05:15.0078 3940 Fdc - ok
22:05:15.0109 3940 FILESpy - ok
22:05:15.0171 3940 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
22:05:15.0171 3940 Fips - ok
22:05:15.0203 3940 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:05:15.0203 3940 Flpydisk - ok
22:05:15.0281 3940 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
22:05:15.0296 3940 FltMgr - ok
22:05:15.0359 3940 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:05:15.0359 3940 Fs_Rec - ok
22:05:15.0406 3940 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:05:15.0406 3940 Ftdisk - ok
22:05:15.0468 3940 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:05:15.0468 3940 GEARAspiWDM - ok
22:05:15.0531 3940 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:05:15.0531 3940 Gpc - ok
22:05:15.0593 3940 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:05:15.0593 3940 HidUsb - ok
22:05:15.0640 3940 hpn - ok
22:05:15.0718 3940 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
22:05:15.0734 3940 HTTP - ok
22:05:15.0781 3940 i2omgmt - ok
22:05:15.0812 3940 i2omp - ok
22:05:15.0859 3940 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:05:15.0875 3940 i8042prt - ok
22:05:15.0921 3940 ikhfile (398fe28291bcda3dceb8f56147f02831) C:\WINDOWS\system32\drivers\ikhfile.sys
22:05:15.0921 3940 ikhfile - ok
22:05:15.0968 3940 ikhlayer (ffb485863f837b2b212dfe182ad61144) C:\WINDOWS\system32\drivers\ikhlayer.sys
22:05:15.0968 3940 ikhlayer - ok
22:05:16.0031 3940 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:05:16.0031 3940 Imapi - ok
22:05:16.0062 3940 ini910u - ok
22:05:16.0125 3940 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:05:16.0125 3940 IntelIde - ok
22:05:16.0187 3940 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:05:16.0187 3940 intelppm - ok
22:05:16.0250 3940 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
22:05:16.0250 3940 Ip6Fw - ok
22:05:16.0296 3940 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:05:16.0296 3940 IpFilterDriver - ok
22:05:16.0343 3940 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:05:16.0343 3940 IpInIp - ok
22:05:16.0390 3940 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:05:16.0406 3940 IpNat - ok
22:05:16.0453 3940 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:05:16.0453 3940 IPSec - ok
22:05:16.0515 3940 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
22:05:16.0515 3940 irda - ok
22:05:16.0625 3940 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:05:16.0625 3940 IRENUM - ok
22:05:16.0656 3940 irsir - ok
22:05:16.0718 3940 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:05:16.0734 3940 isapnp - ok
22:05:16.0781 3940 Iviaspi (94a8c9436c36cd9657cfed0043066b9c) C:\WINDOWS\system32\drivers\iviaspi.sys
22:05:16.0781 3940 Iviaspi - ok
22:05:16.0843 3940 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:05:16.0843 3940 Kbdclass - ok
22:05:16.0921 3940 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:05:16.0921 3940 kbdhid - ok
22:05:16.0968 3940 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
22:05:17.0000 3940 kmixer - ok
22:05:17.0046 3940 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
22:05:17.0046 3940 KSecDD - ok
22:05:17.0078 3940 lbrtfdc - ok
22:05:17.0140 3940 LVUSBSta (90259f3a20fbaec1a08d74ef5415b9d8) C:\WINDOWS\system32\drivers\lvusbsta.sys
22:05:17.0140 3940 LVUSBSta - ok
22:05:17.0218 3940 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:05:17.0218 3940 mnmdd - ok
22:05:17.0281 3940 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
22:05:17.0281 3940 Modem - ok
22:05:17.0328 3940 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:05:17.0328 3940 Mouclass - ok
22:05:17.0375 3940 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:05:17.0375 3940 mouhid - ok
22:05:17.0421 3940 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
22:05:17.0421 3940 MountMgr - ok
22:05:17.0453 3940 mraid35x - ok
22:05:17.0515 3940 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:05:17.0531 3940 MRxDAV - ok
22:05:17.0609 3940 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:05:17.0625 3940 MRxSmb - ok
22:05:17.0718 3940 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
22:05:17.0718 3940 Msfs - ok
22:05:17.0765 3940 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:05:17.0765 3940 MSKSSRV - ok
22:05:17.0828 3940 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:05:17.0828 3940 MSPCLOCK - ok
22:05:17.0875 3940 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
22:05:17.0875 3940 MSPQM - ok
22:05:17.0937 3940 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:05:17.0937 3940 mssmbios - ok
22:05:18.0000 3940 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
22:05:18.0000 3940 MSTEE - ok
22:05:18.0062 3940 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
22:05:18.0062 3940 Mup - ok
22:05:18.0125 3940 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:05:18.0125 3940 NABTSFEC - ok
22:05:18.0187 3940 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
22:05:18.0218 3940 NDIS - ok
22:05:18.0265 3940 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:05:18.0281 3940 NdisIP - ok
22:05:18.0328 3940 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:05:18.0328 3940 NdisTapi - ok
22:05:18.0421 3940 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:05:18.0421 3940 Ndisuio - ok
22:05:18.0484 3940 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:05:18.0484 3940 NdisWan - ok
22:05:18.0578 3940 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
22:05:18.0578 3940 NDProxy - ok
22:05:18.0656 3940 nenum13E - ok
22:05:18.0703 3940 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:05:18.0703 3940 NetBIOS - ok
22:05:18.0750 3940 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:05:18.0765 3940 NetBT - ok
22:05:18.0843 3940 netrcacm (b128ccc0e4586628d5d6f6a8f1d0778d) C:\WINDOWS\system32\DRIVERS\netrcacm.sys
22:05:18.0843 3940 netrcacm - ok
22:05:18.0906 3940 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:05:18.0906 3940 NIC1394 - ok
22:05:18.0953 3940 nm (1e421a6bcf2203cc61b821ada9de878b) C:\WINDOWS\system32\DRIVERS\NMnt.sys
22:05:18.0953 3940 nm - ok
22:05:19.0015 3940 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
22:05:19.0015 3940 Npfs - ok
22:05:19.0078 3940 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
22:05:19.0093 3940 Ntfs - ok
22:05:19.0156 3940 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:05:19.0156 3940 Null - ok
22:05:19.0375 3940 nv (23b95a09677e62ec8d1641ecf39b9bfb) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:05:19.0500 3940 nv - ok
22:05:19.0562 3940 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:05:19.0562 3940 NwlnkFlt - ok
22:05:19.0609 3940 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:05:19.0609 3940 NwlnkFwd - ok
22:05:19.0671 3940 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
22:05:19.0687 3940 NwlnkIpx - ok
22:05:19.0734 3940 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
22:05:19.0734 3940 NwlnkNb - ok
22:05:19.0781 3940 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
22:05:19.0781 3940 NwlnkSpx - ok
22:05:19.0843 3940 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:05:19.0843 3940 ohci1394 - ok
22:05:19.0906 3940 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
22:05:19.0906 3940 Parport - ok
22:05:19.0937 3940 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
22:05:19.0937 3940 PartMgr - ok
22:05:20.0000 3940 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
22:05:20.0000 3940 ParVdm - ok
22:05:20.0062 3940 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
22:05:20.0062 3940 PCI - ok
22:05:20.0109 3940 PCIDump - ok
22:05:20.0171 3940 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:05:20.0171 3940 PCIIde - ok
22:05:20.0250 3940 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:05:20.0250 3940 Pcmcia - ok
22:05:20.0296 3940 PDCOMP - ok
22:05:20.0343 3940 PDFRAME - ok
22:05:20.0375 3940 PDRELI - ok
22:05:20.0421 3940 PDRFRAME - ok
22:05:20.0468 3940 perc2 - ok
22:05:20.0515 3940 perc2hib - ok
22:05:20.0671 3940 PnkBstrK (d9145f60012289421f1b2dee4945c845) C:\WINDOWS\system32\drivers\PnkBstrK.sys
22:05:20.0687 3940 PnkBstrK - ok
22:05:20.0765 3940 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:05:20.0765 3940 PptpMiniport - ok
22:05:20.0812 3940 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
22:05:20.0812 3940 PSched - ok
22:05:20.0859 3940 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:05:20.0859 3940 Ptilink - ok
22:05:20.0953 3940 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:05:20.0953 3940 PxHelp20 - ok
22:05:21.0031 3940 QCMerced (e7ac7b1e8ae57c3d55c661187ceebf11) C:\WINDOWS\system32\DRIVERS\LVCM.sys
22:05:21.0046 3940 QCMerced - ok
22:05:21.0093 3940 ql1080 - ok
22:05:21.0125 3940 Ql10wnt - ok
22:05:21.0187 3940 ql12160 - ok
22:05:21.0218 3940 ql1240 - ok
22:05:21.0265 3940 ql1280 - ok
22:05:21.0312 3940 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:05:21.0312 3940 RasAcd - ok
22:05:21.0359 3940 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
22:05:21.0359 3940 Rasirda - ok
22:05:21.0406 3940 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:05:21.0406 3940 Rasl2tp - ok
22:05:21.0437 3940 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:05:21.0437 3940 RasPppoe - ok
22:05:21.0484 3940 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:05:21.0484 3940 Raspti - ok
22:05:21.0546 3940 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:05:21.0578 3940 Rdbss - ok
22:05:21.0640 3940 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:05:21.0640 3940 RDPCDD - ok
22:05:21.0703 3940 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
22:05:21.0718 3940 RDPWD - ok
22:05:21.0812 3940 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:05:21.0812 3940 redbook - ok
22:05:21.0875 3940 REGSpy - ok
22:05:21.0968 3940 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys
22:05:21.0968 3940 RimUsb - ok
22:05:22.0046 3940 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
22:05:22.0046 3940 RimVSerPort - ok
22:05:22.0109 3940 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
22:05:22.0109 3940 ROOTMODEM - ok
22:05:22.0203 3940 rtl8139 (d0ac0b0355a3ffb85eb77b083cd0627c) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
22:05:22.0203 3940 rtl8139 - ok
22:05:22.0265 3940 SCREAMINGBDRIVER (a643d6df1b7546256b11fb5d6b5d1375) C:\WINDOWS\system32\drivers\ScreamingBAudio.sys
22:05:22.0265 3940 SCREAMINGBDRIVER - ok
22:05:22.0328 3940 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:05:22.0328 3940 Secdrv - ok
22:05:22.0375 3940 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
22:05:22.0375 3940 serenum - ok
22:05:22.0421 3940 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
22:05:22.0421 3940 Serial - ok
22:05:22.0468 3940 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:05:22.0468 3940 Sfloppy - ok
22:05:22.0515 3940 Simbad - ok
22:05:22.0625 3940 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:05:22.0625 3940 SLIP - ok
22:05:22.0656 3940 Sparrow - ok
22:05:22.0734 3940 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
22:05:22.0734 3940 splitter - ok
22:05:22.0781 3940 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
22:05:22.0796 3940 sr - ok
22:05:22.0859 3940 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
22:05:22.0875 3940 Srv - ok
22:05:22.0953 3940 ssmdrv (3d2829fde1c52fc64da5413889ce4dee) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
22:05:22.0953 3940 ssmdrv - ok
22:05:23.0031 3940 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
22:05:23.0031 3940 ssm_bus - ok
22:05:23.0093 3940 ssm_mdfl (5347169fa449eabc4d0728ae39fab926) C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
22:05:23.0093 3940 ssm_mdfl - ok
22:05:23.0156 3940 ssm_mdm (7aae23dd105eed15c4f45fc269fa42a9) C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys
22:05:23.0156 3940 ssm_mdm - ok
22:05:23.0218 3940 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:05:23.0218 3940 streamip - ok
22:05:23.0296 3940 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:05:23.0296 3940 swenum - ok
22:05:23.0359 3940 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
22:05:23.0359 3940 swmidi - ok
22:05:23.0406 3940 symc810 - ok
22:05:23.0453 3940 symc8xx - ok
22:05:23.0515 3940 symlcbrd (5220576ee29bea7c18dff9ecabf18bbc) C:\WINDOWS\system32\drivers\symlcbrd.sys
22:05:23.0515 3940 symlcbrd - ok
22:05:23.0562 3940 sym_hi - ok
22:05:23.0640 3940 sym_u3 - ok
22:05:23.0687 3940 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
22:05:23.0687 3940 sysaudio - ok
22:05:23.0750 3940 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:05:23.0765 3940 Tcpip - ok
22:05:23.0812 3940 Tcpip6 (4e53bbcc4be37d7a4bd6ef1098c89ff7) C:\WINDOWS\system32\DRIVERS\tcpip6.sys
22:05:23.0828 3940 Tcpip6 - ok
22:05:23.0890 3940 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:05:23.0890 3940 TDPIPE - ok
22:05:23.0953 3940 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
22:05:23.0953 3940 TDTCP - ok
22:05:23.0984 3940 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:05:23.0984 3940 TermDD - ok
22:05:24.0015 3940 TosIde - ok
22:05:24.0062 3940 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
22:05:24.0062 3940 tunmp - ok
22:05:24.0109 3940 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
22:05:24.0109 3940 Udfs - ok
22:05:24.0171 3940 ultra - ok
22:05:24.0234 3940 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
22:05:24.0250 3940 Update - ok
22:05:24.0312 3940 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
22:05:24.0312 3940 USBAAPL - ok
22:05:24.0390 3940 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
22:05:24.0390 3940 usbaudio - ok
22:05:24.0437 3940 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:05:24.0437 3940 usbccgp - ok
22:05:24.0500 3940 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:05:24.0515 3940 usbehci - ok
22:05:24.0625 3940 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:05:24.0625 3940 usbhub - ok
22:05:24.0671 3940 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:05:24.0687 3940 usbprint - ok
22:05:24.0750 3940 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:05:24.0750 3940 usbscan - ok
22:05:24.0812 3940 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:05:24.0812 3940 USBSTOR - ok
22:05:24.0843 3940 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:05:24.0843 3940 usbuhci - ok
22:05:24.0906 3940 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
22:05:24.0906 3940 VgaSave - ok
22:05:24.0937 3940 ViaIde - ok
22:05:25.0000 3940 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
22:05:25.0000 3940 VolSnap - ok
22:05:25.0062 3940 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:05:25.0062 3940 Wanarp - ok
22:05:25.0140 3940 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
22:05:25.0156 3940 Wdf01000 - ok
22:05:25.0203 3940 WDICA - ok
22:05:25.0250 3940 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
22:05:25.0250 3940 wdmaud - ok
22:05:25.0359 3940 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys
22:05:25.0375 3940 WpdUsb - ok
22:05:25.0437 3940 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:05:25.0437 3940 WSTCODEC - ok
22:05:25.0500 3940 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:05:25.0500 3940 WudfPf - ok
22:05:25.0593 3940 WUDFRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
22:05:25.0609 3940 WUDFRd - ok
22:05:25.0640 3940 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk0\DR0
22:05:25.0750 3940 \Device\Harddisk0\DR0 - ok
22:05:25.0750 3940 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
22:05:28.0843 3940 \Device\Harddisk1\DR2 - ok
22:05:28.0843 3940 Boot (0x1200) (24f8c42c1bfe95fc873bcefeabe3d2f0) \Device\Harddisk0\DR0\Partition0
22:05:28.0843 3940 \Device\Harddisk0\DR0\Partition0 - ok
22:05:28.0859 3940 Boot (0x1200) (1b22984a5c7d0d9467d9e1055ac1bfb6) \Device\Harddisk1\DR2\Partition0
22:05:28.0859 3940 \Device\Harddisk1\DR2\Partition0 - ok
22:05:28.0859 3940 ============================================================
22:05:28.0859 3940 Scan finished
22:05:28.0859 3940 ============================================================
22:05:28.0859 4032 Detected object count: 0
22:05:28.0859 4032 Actual detected object count: 0
22:05:35.0953 2252 ============================================================
22:05:35.0953 2252 Scan started
22:05:35.0953 2252 Mode: Manual; SigCheck; TDLFS;
22:05:35.0953 2252 ============================================================
22:05:36.0140 2252 Abiosdsk - ok
22:05:36.0171 2252 abp480n5 - ok
22:05:36.0234 2252 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:05:38.0015 2252 ACPI - ok
22:05:38.0078 2252 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:05:38.0250 2252 ACPIEC - ok
22:05:38.0312 2252 adpu160m - ok
22:05:38.0421 2252 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
22:05:38.0562 2252 aec - ok
22:05:38.0625 2252 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
22:05:38.0703 2252 AFD - ok
22:05:38.0750 2252 Aha154x - ok
22:05:38.0781 2252 aic78u2 - ok
22:05:38.0828 2252 aic78xx - ok
22:05:38.0937 2252 ALCXWDM (933933288df5ed26d1928215c97d05c7) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
22:05:39.0109 2252 ALCXWDM - ok
22:05:39.0156 2252 AliIde - ok
22:05:39.0203 2252 amsint - ok
22:05:39.0281 2252 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:05:39.0390 2252 Arp1394 - ok
22:05:39.0437 2252 asc - ok
22:05:39.0468 2252 asc3350p - ok
22:05:39.0515 2252 asc3550 - ok
22:05:39.0578 2252 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:05:39.0703 2252 AsyncMac - ok
22:05:39.0765 2252 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:05:39.0890 2252 atapi - ok
22:05:39.0937 2252 Atdisk - ok
22:05:40.0000 2252 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:05:40.0109 2252 Atmarpc - ok
22:05:40.0156 2252 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:05:40.0281 2252 audstub - ok
22:05:40.0359 2252 avgio (afa456a6210abe5798561a5758517340) C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys
22:05:40.0375 2252 avgio - ok
22:05:40.0390 2252 avgntflt (906f73c4f6b8ba5daabc41a1f04cecfe) C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys
22:05:40.0406 2252 avgntflt - ok
22:05:40.0453 2252 avipbb (bdb37b3b217f5181a5bc129c50844f98) C:\WINDOWS\system32\DRIVERS\avipbb.sys
22:05:40.0453 2252 avipbb - ok
22:05:40.0484 2252 bdfdll - ok
22:05:40.0546 2252 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:05:40.0687 2252 Beep - ok
22:05:40.0765 2252 catchme - ok
22:05:40.0843 2252 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:05:40.0968 2252 cbidf2k - ok
22:05:41.0046 2252 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:05:41.0171 2252 CCDECODE - ok
22:05:41.0218 2252 cd20xrnt - ok
22:05:41.0281 2252 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:05:41.0390 2252 Cdaudio - ok
22:05:41.0453 2252 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
22:05:41.0578 2252 Cdfs - ok
22:05:41.0656 2252 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:05:41.0765 2252 Cdrom - ok
22:05:41.0812 2252 Changer - ok
22:05:41.0875 2252 CmdIde - ok
22:05:41.0906 2252 Cpqarray - ok
22:05:41.0968 2252 cvintdrv (7ba8d91a41805a316bba67ff29c891b2) C:\WINDOWS\system32\drivers\cvintdrv.sys
22:05:41.0984 2252 cvintdrv ( UnsignedFile.Multi.Generic ) - warning
22:05:41.0984 2252 cvintdrv - detected UnsignedFile.Multi.Generic (1)
22:05:42.0015 2252 dac2w2k - ok
22:05:42.0062 2252 dac960nt - ok
22:05:42.0109 2252 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
22:05:42.0218 2252 Disk - ok
22:05:42.0375 2252 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
22:05:42.0531 2252 dmboot - ok
22:05:42.0609 2252 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
22:05:42.0734 2252 dmio - ok
22:05:42.0796 2252 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:05:42.0906 2252 dmload - ok
22:05:43.0000 2252 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
22:05:43.0125 2252 DMusic - ok
22:05:43.0171 2252 dpti2o - ok
22:05:43.0250 2252 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
22:05:43.0359 2252 drmkaud - ok
22:05:43.0437 2252 EverestDriver (76984d46b2abaa46f8b3fcef82c9217d) C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt
22:05:43.0453 2252 EverestDriver ( UnsignedFile.Multi.Generic ) - warning
22:05:43.0468 2252 EverestDriver - detected UnsignedFile.Multi.Generic (1)
22:05:43.0546 2252 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
22:05:43.0671 2252 Fastfat - ok
22:05:43.0734 2252 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:05:43.0843 2252 Fdc - ok
22:05:43.0906 2252 FILESpy - ok
22:05:43.0953 2252 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
22:05:44.0078 2252 Fips - ok
22:05:44.0125 2252 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:05:44.0250 2252 Flpydisk - ok
22:05:44.0390 2252 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
22:05:44.0515 2252 FltMgr - ok
22:05:44.0578 2252 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:05:44.0687 2252 Fs_Rec - ok
22:05:44.0750 2252 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:05:44.0875 2252 Ftdisk - ok
22:05:44.0968 2252 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:05:44.0968 2252 GEARAspiWDM - ok
22:05:45.0031 2252 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:05:45.0156 2252 Gpc - ok
22:05:45.0234 2252 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:05:45.0343 2252 HidUsb - ok
22:05:45.0375 2252 hpn - ok
22:05:45.0453 2252 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
22:05:45.0500 2252 HTTP - ok
22:05:45.0546 2252 i2omgmt - ok
22:05:45.0578 2252 i2omp - ok
22:05:45.0656 2252 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:05:45.0781 2252 i8042prt - ok
22:05:45.0859 2252 ikhfile (398fe28291bcda3dceb8f56147f02831) C:\WINDOWS\system32\drivers\ikhfile.sys
22:05:45.0875 2252 ikhfile ( UnsignedFile.Multi.Generic ) - warning
22:05:45.0875 2252 ikhfile - detected UnsignedFile.Multi.Generic (1)
22:05:45.0921 2252 ikhlayer (ffb485863f837b2b212dfe182ad61144) C:\WINDOWS\system32\drivers\ikhlayer.sys
22:05:45.0937 2252 ikhlayer ( UnsignedFile.Multi.Generic ) - warning
22:05:45.0937 2252 ikhlayer - detected UnsignedFile.Multi.Generic (1)
22:05:46.0000 2252 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:05:46.0125 2252 Imapi - ok
22:05:46.0187 2252 ini910u - ok
22:05:46.0250 2252 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:05:46.0375 2252 IntelIde - ok
22:05:46.0421 2252 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:05:46.0546 2252 intelppm - ok
22:05:46.0625 2252 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
22:05:46.0750 2252 Ip6Fw - ok
22:05:46.0812 2252 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:05:46.0937 2252 IpFilterDriver - ok
22:05:47.0000 2252 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:05:47.0125 2252 IpInIp - ok
22:05:47.0171 2252 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:05:47.0281 2252 IpNat - ok
22:05:47.0390 2252 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:05:47.0515 2252 IPSec - ok
22:05:47.0578 2252 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
22:05:47.0625 2252 irda - ok
22:05:47.0703 2252 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:05:47.0750 2252 IRENUM - ok
22:05:47.0796 2252 irsir - ok
22:05:47.0843 2252 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:05:47.0968 2252 isapnp - ok
22:05:48.0046 2252 Iviaspi (94a8c9436c36cd9657cfed0043066b9c) C:\WINDOWS\system32\drivers\iviaspi.sys
22:05:48.0046 2252 Iviaspi ( UnsignedFile.Multi.Generic ) - warning
22:05:48.0046 2252 Iviaspi - detected UnsignedFile.Multi.Generic (1)
22:05:48.0109 2252 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:05:48.0218 2252 Kbdclass - ok
22:05:48.0265 2252 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:05:48.0390 2252 kbdhid - ok
22:05:48.0453 2252 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
22:05:48.0578 2252 kmixer - ok
22:05:48.0640 2252 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
22:05:48.0718 2252 KSecDD - ok
22:05:48.0796 2252 lbrtfdc - ok
22:05:48.0859 2252 LVUSBSta (90259f3a20fbaec1a08d74ef5415b9d8) C:\WINDOWS\system32\drivers\lvusbsta.sys
22:05:48.0937 2252 LVUSBSta - ok
22:05:49.0000 2252 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:05:49.0125 2252 mnmdd - ok
22:05:49.0218 2252 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
22:05:49.0343 2252 Modem - ok
22:05:49.0375 2252 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:05:49.0515 2252 Mouclass - ok
22:05:49.0593 2252 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:05:49.0718 2252 mouhid - ok
22:05:49.0765 2252 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
22:05:49.0890 2252 MountMgr - ok
22:05:49.0937 2252 mraid35x - ok
22:05:50.0000 2252 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:05:50.0109 2252 MRxDAV - ok
22:05:50.0187 2252 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:05:50.0296 2252 MRxSmb - ok
22:05:50.0406 2252 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
22:05:50.0515 2252 Msfs - ok
22:05:50.0578 2252 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:05:50.0687 2252 MSKSSRV - ok
22:05:50.0765 2252 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:05:50.0875 2252 MSPCLOCK - ok
22:05:50.0937 2252 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
22:05:51.0031 2252 MSPQM - ok
22:05:51.0093 2252 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:05:51.0203 2252 mssmbios - ok
22:05:51.0265 2252 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
22:05:51.0390 2252 MSTEE - ok
22:05:51.0484 2252 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
22:05:51.0515 2252 Mup - ok
22:05:51.0593 2252 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:05:51.0703 2252 NABTSFEC - ok
22:05:51.0781 2252 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
22:05:51.0890 2252 NDIS - ok
22:05:51.0953 2252 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:05:52.0062 2252 NdisIP - ok
22:05:52.0140 2252 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:05:52.0218 2252 NdisTapi - ok
22:05:52.0281 2252 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:05:52.0421 2252 Ndisuio - ok
22:05:52.0468 2252 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:05:52.0593 2252 NdisWan - ok
22:05:52.0671 2252 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
22:05:52.0734 2252 NDProxy - ok
22:05:52.0812 2252 nenum13E - ok
22:05:52.0875 2252 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:05:52.0984 2252 NetBIOS - ok
22:05:53.0062 2252 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:05:53.0171 2252 NetBT - ok
22:05:53.0234 2252 netrcacm (b128ccc0e4586628d5d6f6a8f1d0778d) C:\WINDOWS\system32\DRIVERS\netrcacm.sys
22:05:53.0265 2252 netrcacm - ok
22:05:53.0468 2252 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:05:53.0578 2252 NIC1394 - ok
22:05:53.0640 2252 nm (1e421a6bcf2203cc61b821ada9de878b) C:\WINDOWS\system32\DRIVERS\NMnt.sys
22:05:53.0765 2252 nm - ok
22:05:53.0843 2252 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
22:05:53.0968 2252 Npfs - ok
22:05:54.0062 2252 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
22:05:54.0218 2252 Ntfs - ok
22:05:54.0296 2252 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:05:54.0421 2252 Null - ok
22:05:54.0640 2252 nv (23b95a09677e62ec8d1641ecf39b9bfb) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:05:54.0875 2252 nv - ok
22:05:54.0953 2252 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:05:55.0078 2252 NwlnkFlt - ok
22:05:55.0125 2252 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:05:55.0234 2252 NwlnkFwd - ok
22:05:55.0328 2252 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
22:05:55.0437 2252 NwlnkIpx - ok
22:05:55.0500 2252 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
22:05:55.0609 2252 NwlnkNb - ok
22:05:55.0671 2252 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
22:05:55.0796 2252 NwlnkSpx - ok
22:05:55.0843 2252 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:05:55.0953 2252 ohci1394 - ok
22:05:56.0062 2252 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
22:05:56.0156 2252 Parport - ok
22:05:56.0203 2252 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
22:05:56.0328 2252 PartMgr - ok
22:05:56.0406 2252 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
22:05:56.0531 2252 ParVdm - ok
22:05:56.0593 2252 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
22:05:56.0687 2252 PCI - ok
22:05:56.0750 2252 PCIDump - ok
22:05:56.0812 2252 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:05:56.0906 2252 PCIIde - ok
22:05:57.0000 2252 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:05:57.0125 2252 Pcmcia - ok
22:05:57.0171 2252 PDCOMP - ok
22:05:57.0218 2252 PDFRAME - ok
22:05:57.0250 2252 PDRELI - ok
22:05:57.0296 2252 PDRFRAME - ok
22:05:57.0359 2252 perc2 - ok
22:05:57.0406 2252 perc2hib - ok
22:05:57.0500 2252 PnkBstrK (d9145f60012289421f1b2dee4945c845) C:\WINDOWS\system32\drivers\PnkBstrK.sys
22:05:57.0515 2252 PnkBstrK - ok
22:05:57.0593 2252 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:05:57.0703 2252 PptpMiniport - ok
22:05:57.0781 2252 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
22:05:57.0890 2252 PSched - ok
22:05:57.0937 2252 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:05:58.0062 2252 Ptilink - ok
22:05:58.0171 2252 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:05:59.0437 2252 PxHelp20 - ok
22:05:59.0515 2252 QCMerced (e7ac7b1e8ae57c3d55c661187ceebf11) C:\WINDOWS\system32\DRIVERS\LVCM.sys
22:05:59.0562 2252 QCMerced - ok
22:05:59.0609 2252 ql1080 - ok
22:05:59.0656 2252 Ql10wnt - ok
22:05:59.0703 2252 ql12160 - ok
22:05:59.0734 2252 ql1240 - ok
22:05:59.0796 2252 ql1280 - ok
22:05:59.0859 2252 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:06:00.0000 2252 RasAcd - ok
22:06:00.0062 2252 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
22:06:00.0109 2252 Rasirda - ok
22:06:00.0156 2252 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:06:00.0281 2252 Rasl2tp - ok
22:06:00.0343 2252 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:06:00.0468 2252 RasPppoe - ok
22:06:00.0546 2252 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:06:00.0656 2252 Raspti - ok
22:06:00.0734 2252 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:06:00.0859 2252 Rdbss - ok
22:06:00.0937 2252 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:06:01.0046 2252 RDPCDD - ok
22:06:01.0125 2252 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
22:06:01.0171 2252 RDPWD - ok
22:06:01.0250 2252 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:06:01.0359 2252 redbook - ok
22:06:01.0406 2252 REGSpy - ok
22:06:01.0500 2252 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys
22:06:01.0562 2252 RimUsb - ok
22:06:01.0640 2252 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
22:06:01.0687 2252 RimVSerPort - ok
22:06:01.0750 2252 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
22:06:01.0859 2252 ROOTMODEM - ok
22:06:01.0968 2252 rtl8139 (d0ac0b0355a3ffb85eb77b083cd0627c) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
22:06:02.0031 2252 rtl8139 - ok
22:06:02.0156 2252 SCREAMINGBDRIVER (a643d6df1b7546256b11fb5d6b5d1375) C:\WINDOWS\system32\drivers\ScreamingBAudio.sys
22:06:02.0156 2252 SCREAMINGBDRIVER - ok
22:06:02.0218 2252 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:06:02.0296 2252 Secdrv - ok
22:06:02.0375 2252 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
22:06:02.0500 2252 serenum - ok
22:06:02.0531 2252 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
22:06:02.0640 2252 Serial - ok
22:06:02.0718 2252 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:06:02.0828 2252 Sfloppy - ok
22:06:02.0890 2252 Simbad - ok
22:06:02.0953 2252 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:06:03.0062 2252 SLIP - ok
22:06:03.0109 2252 Sparrow - ok
22:06:03.0187 2252 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
22:06:03.0296 2252 splitter - ok
22:06:03.0375 2252 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
22:06:03.0437 2252 sr - ok
22:06:03.0562 2252 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
22:06:03.0625 2252 Srv - ok
22:06:03.0703 2252 ssmdrv (3d2829fde1c52fc64da5413889ce4dee) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
22:06:03.0718 2252 ssmdrv - ok
22:06:03.0796 2252 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
22:06:03.0843 2252 ssm_bus - ok
22:06:03.0906 2252 ssm_mdfl (5347169fa449eabc4d0728ae39fab926) C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
22:06:03.0968 2252 ssm_mdfl - ok
22:06:04.0031 2252 ssm_mdm (7aae23dd105eed15c4f45fc269fa42a9) C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys
22:06:04.0062 2252 ssm_mdm - ok
22:06:04.0125 2252 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:06:04.0218 2252 streamip - ok
22:06:04.0296 2252 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:06:04.0421 2252 swenum - ok
22:06:04.0500 2252 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
22:06:04.0609 2252 swmidi - ok
22:06:04.0656 2252 symc810 - ok
22:06:04.0703 2252 symc8xx - ok
22:06:04.0765 2252 symlcbrd (5220576ee29bea7c18dff9ecabf18bbc) C:\WINDOWS\system32\drivers\symlcbrd.sys
22:06:04.0781 2252 symlcbrd ( UnsignedFile.Multi.Generic ) - warning
22:06:04.0781 2252 symlcbrd - detected UnsignedFile.Multi.Generic (1)
22:06:04.0828 2252 sym_hi - ok
22:06:04.0875 2252 sym_u3 - ok
22:06:04.0937 2252 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
22:06:05.0062 2252 sysaudio - ok
22:06:05.0156 2252 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:06:05.0218 2252 Tcpip - ok
22:06:05.0281 2252 Tcpip6 (4e53bbcc4be37d7a4bd6ef1098c89ff7) C:\WINDOWS\system32\DRIVERS\tcpip6.sys
22:06:05.0375 2252 Tcpip6 - ok
22:06:05.0453 2252 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:06:05.0562 2252 TDPIPE - ok
22:06:05.0656 2252 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
22:06:05.0781 2252 TDTCP - ok
22:06:05.0828 2252 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:06:05.0953 2252 TermDD - ok
22:06:06.0015 2252 TosIde - ok
22:06:06.0093 2252 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
22:06:06.0203 2252 tunmp - ok
22:06:06.0281 2252 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
22:06:06.0390 2252 Udfs - ok
22:06:06.0437 2252 ultra - ok
22:06:06.0500 2252 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
22:06:06.0671 2252 Update - ok
22:06:06.0765 2252 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
22:06:06.0781 2252 USBAAPL - ok
22:06:06.0843 2252 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
22:06:06.0968 2252 usbaudio - ok
22:06:07.0078 2252 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:06:07.0406 2252 usbccgp - ok
22:06:07.0500 2252 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:06:07.0609 2252 usbehci - ok
22:06:07.0687 2252 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:06:07.0796 2252 usbhub - ok
22:06:07.0875 2252 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:06:07.0984 2252 usbprint - ok
22:06:08.0062 2252 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:06:08.0171 2252 usbscan - ok
22:06:08.0265 2252 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:06:08.0390 2252 USBSTOR - ok
22:06:08.0437 2252 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:06:08.0531 2252 usbuhci - ok
22:06:08.0593 2252 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
22:06:08.0718 2252 VgaSave - ok
22:06:08.0765 2252 ViaIde - ok
22:06:08.0828 2252 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
22:06:08.0921 2252 VolSnap - ok
22:06:09.0000 2252 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:06:09.0109 2252 Wanarp - ok
22:06:09.0187 2252 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
22:06:09.0218 2252 Wdf01000 - ok
22:06:09.0265 2252 WDICA - ok
22:06:09.0343 2252 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
22:06:09.0468 2252 wdmaud - ok
22:06:09.0593 2252 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys
22:06:09.0671 2252 WpdUsb - ok
22:06:09.0750 2252 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:06:09.0859 2252 WSTCODEC - ok
22:06:09.0953 2252 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:06:09.0984 2252 WudfPf - ok
22:06:10.0046 2252 WUDFRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
22:06:10.0062 2252 WUDFRd - ok
22:06:10.0093 2252 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk0\DR0
22:06:10.0234 2252 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:06:10.0234 2252 \Device\Harddisk0\DR0 - detected TDSS File System (1)
22:06:10.0234 2252 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
22:06:13.0453 2252 \Device\Harddisk1\DR2 - ok
22:06:13.0468 2252 Boot (0x1200) (24f8c42c1bfe95fc873bcefeabe3d2f0) \Device\Harddisk0\DR0\Partition0
22:06:13.0468 2252 \Device\Harddisk0\DR0\Partition0 - ok
22:06:13.0468 2252 Boot (0x1200) (1b22984a5c7d0d9467d9e1055ac1bfb6) \Device\Harddisk1\DR2\Partition0
22:06:13.0468 2252 \Device\Harddisk1\DR2\Partition0 - ok
22:06:13.0468 2252 ============================================================
22:06:13.0468 2252 Scan finished
22:06:13.0468 2252 ============================================================
22:06:13.0593 1368 Detected object count: 7
22:06:13.0593 1368 Actual detected object count: 7

salut tyee1

relance tdsskiller coches delete

continues et redemarres

copies/colles le rapport aprés le redémarrage
pour voir si les processus sont tués

Voilà le rapport

18:08:58.0515 2644 TDSS rootkit removing tool 2.7.17.0 Feb 29 2012 14:02:24
18:08:58.0734 2644 ============================================================
18:08:58.0734 2644 Current date / time: 2012/03/01 18:08:58.0734
18:08:58.0734 2644 SystemInfo:
18:08:58.0734 2644
18:08:58.0734 2644 OS Version: 5.1.2600 ServicePack: 3.0
18:08:58.0734 2644 Product type: Workstation
18:08:58.0734 2644 ComputerName: XP
18:08:58.0734 2644 UserName: MAX
18:08:58.0734 2644 Windows directory: C:\WINDOWS
18:08:58.0734 2644 System windows directory: C:\WINDOWS
18:08:58.0734 2644 Processor architecture: Intel x86
18:08:58.0734 2644 Number of processors: 2
18:08:58.0734 2644 Page size: 0x1000
18:08:58.0734 2644 Boot type: Normal boot
18:08:58.0734 2644 ============================================================
18:09:00.0234 2644 Drive \Device\Harddisk0\DR0 - Size: 0x2F7B100000 (189.92 Gb), SectorSize: 0x200, Cylinders: 0x60D8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:09:00.0234 2644 Drive \Device\Harddisk1\DR2 - Size: 0x1E3000000 (7.55 Gb), SectorSize: 0x200, Cylinders: 0x3D9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:09:00.0359 2644 \Device\Harddisk0\DR0:
18:09:00.0359 2644 MBR used
18:09:00.0359 2644 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x17BD5299
18:09:00.0359 2644 \Device\Harddisk1\DR2:
18:09:00.0359 2644 MBR used
18:09:00.0359 2644 \Device\Harddisk1\DR2\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0xF17FC1
18:09:00.0531 2644 Initialize success
18:09:00.0531 2644 ============================================================
18:09:05.0515 2860 ============================================================
18:09:05.0515 2860 Scan started
18:09:05.0515 2860 Mode: Manual; SigCheck; TDLFS;
18:09:05.0515 2860 ============================================================
18:09:05.0796 2860 Abiosdsk - ok
18:09:05.0843 2860 abp480n5 - ok
18:09:05.0921 2860 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:09:07.0312 2860 ACPI - ok
18:09:07.0375 2860 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:09:07.0546 2860 ACPIEC - ok
18:09:07.0593 2860 adpu160m - ok
18:09:07.0671 2860 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:09:07.0796 2860 aec - ok
18:09:07.0875 2860 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:09:07.0953 2860 AFD - ok
18:09:08.0000 2860 Aha154x - ok
18:09:08.0031 2860 aic78u2 - ok
18:09:08.0078 2860 aic78xx - ok
18:09:08.0187 2860 ALCXWDM (933933288df5ed26d1928215c97d05c7) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
18:09:08.0390 2860 ALCXWDM - ok
18:09:08.0453 2860 AliIde - ok
18:09:08.0500 2860 amsint - ok
18:09:08.0562 2860 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:09:08.0687 2860 Arp1394 - ok
18:09:08.0734 2860 asc - ok
18:09:08.0765 2860 asc3350p - ok
18:09:08.0796 2860 asc3550 - ok
18:09:08.0875 2860 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:09:08.0984 2860 AsyncMac - ok
18:09:09.0046 2860 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:09:09.0156 2860 atapi - ok
18:09:09.0218 2860 Atdisk - ok
18:09:09.0281 2860 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:09:09.0390 2860 Atmarpc - ok
18:09:09.0453 2860 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:09:09.0578 2860 audstub - ok
18:09:09.0640 2860 avgio (afa456a6210abe5798561a5758517340) C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys
18:09:09.0671 2860 avgio - ok
18:09:09.0687 2860 avgntflt (906f73c4f6b8ba5daabc41a1f04cecfe) C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys
18:09:09.0687 2860 avgntflt - ok
18:09:09.0750 2860 avipbb (bdb37b3b217f5181a5bc129c50844f98) C:\WINDOWS\system32\DRIVERS\avipbb.sys
18:09:09.0765 2860 avipbb - ok
18:09:09.0796 2860 bdfdll - ok
18:09:09.0859 2860 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:09:09.0968 2860 Beep - ok
18:09:10.0046 2860 catchme - ok
18:09:10.0109 2860 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:09:10.0218 2860 cbidf2k - ok
18:09:10.0296 2860 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:09:10.0406 2860 CCDECODE - ok
18:09:10.0453 2860 cd20xrnt - ok
18:09:10.0515 2860 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:09:10.0625 2860 Cdaudio - ok
18:09:10.0687 2860 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:09:10.0812 2860 Cdfs - ok
18:09:10.0890 2860 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:09:11.0015 2860 Cdrom - ok
18:09:11.0062 2860 Changer - ok
18:09:11.0093 2860 CmdIde - ok
18:09:11.0140 2860 Cpqarray - ok
18:09:11.0171 2860 dac2w2k - ok
18:09:11.0218 2860 dac960nt - ok
18:09:11.0265 2860 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:09:11.0359 2860 Disk - ok
18:09:11.0500 2860 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
18:09:11.0703 2860 dmboot - ok
18:09:11.0781 2860 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
18:09:11.0906 2860 dmio - ok
18:09:12.0015 2860 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:09:12.0140 2860 dmload - ok
18:09:12.0218 2860 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:09:12.0343 2860 DMusic - ok
18:09:12.0406 2860 dpti2o - ok
18:09:12.0453 2860 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:09:12.0562 2860 drmkaud - ok
18:09:12.0640 2860 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:09:12.0765 2860 Fastfat - ok
18:09:12.0843 2860 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:09:12.0968 2860 Fdc - ok
18:09:13.0031 2860 FILESpy - ok
18:09:13.0093 2860 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
18:09:13.0203 2860 Fips - ok
18:09:13.0234 2860 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:09:13.0343 2860 Flpydisk - ok
18:09:13.0640 2860 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:09:13.0828 2860 FltMgr - ok
18:09:14.0062 2860 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:09:14.0203 2860 Fs_Rec - ok
18:09:14.0578 2860 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:09:14.0734 2860 Ftdisk - ok
18:09:14.0812 2860 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
18:09:14.0828 2860 GEARAspiWDM - ok
18:09:14.0875 2860 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:09:15.0000 2860 Gpc - ok
18:09:15.0062 2860 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:09:15.0171 2860 HidUsb - ok
18:09:15.0218 2860 hpn - ok
18:09:15.0296 2860 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:09:15.0359 2860 HTTP - ok
18:09:15.0390 2860 i2omgmt - ok
18:09:15.0453 2860 i2omp - ok
18:09:15.0500 2860 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:09:15.0625 2860 i8042prt - ok
18:09:15.0687 2860 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:09:15.0812 2860 Imapi - ok
18:09:15.0859 2860 ini910u - ok
18:09:15.0906 2860 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
18:09:16.0031 2860 IntelIde - ok
18:09:16.0109 2860 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:09:16.0234 2860 intelppm - ok
18:09:16.0296 2860 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:09:16.0421 2860 Ip6Fw - ok
18:09:16.0500 2860 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:09:16.0625 2860 IpFilterDriver - ok
18:09:16.0703 2860 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:09:16.0828 2860 IpInIp - ok
18:09:16.0890 2860 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:09:17.0015 2860 IpNat - ok
18:09:17.0078 2860 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:09:17.0203 2860 IPSec - ok
18:09:17.0265 2860 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
18:09:17.0312 2860 irda - ok
18:09:17.0390 2860 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:09:17.0437 2860 IRENUM - ok
18:09:17.0484 2860 irsir - ok
18:09:17.0546 2860 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:09:17.0656 2860 isapnp - ok
18:09:17.0734 2860 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:09:17.0843 2860 Kbdclass - ok
18:09:17.0906 2860 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:09:18.0031 2860 kbdhid - ok
18:09:18.0078 2860 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:09:18.0218 2860 kmixer - ok
18:09:18.0296 2860 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:09:18.0406 2860 KSecDD - ok
18:09:18.0453 2860 lbrtfdc - ok
18:09:18.0515 2860 LVUSBSta (90259f3a20fbaec1a08d74ef5415b9d8) C:\WINDOWS\system32\drivers\lvusbsta.sys
18:09:18.0609 2860 LVUSBSta - ok
18:09:18.0703 2860 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:09:18.0812 2860 mnmdd - ok
18:09:18.0875 2860 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
18:09:19.0000 2860 Modem - ok
18:09:19.0062 2860 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:09:19.0171 2860 Mouclass - ok
18:09:19.0234 2860 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:09:19.0343 2860 mouhid - ok
18:09:19.0421 2860 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:09:19.0546 2860 MountMgr - ok
18:09:19.0609 2860 mraid35x - ok
18:09:19.0656 2860 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:09:19.0781 2860 MRxDAV - ok
18:09:19.0859 2860 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:09:20.0031 2860 MRxSmb - ok
18:09:20.0125 2860 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:09:20.0234 2860 Msfs - ok
18:09:20.0312 2860 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:09:20.0406 2860 MSKSSRV - ok
18:09:20.0484 2860 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:09:20.0593 2860 MSPCLOCK - ok
18:09:20.0656 2860 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:09:20.0750 2860 MSPQM - ok
18:09:20.0812 2860 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:09:20.0921 2860 mssmbios - ok
18:09:21.0000 2860 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
18:09:21.0125 2860 MSTEE - ok
18:09:21.0187 2860 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:09:21.0234 2860 Mup - ok
18:09:21.0296 2860 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:09:21.0421 2860 NABTSFEC - ok
18:09:21.0500 2860 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:09:21.0609 2860 NDIS - ok
18:09:21.0671 2860 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:09:21.0796 2860 NdisIP - ok
18:09:21.0859 2860 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:09:21.0937 2860 NdisTapi - ok
18:09:22.0015 2860 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:09:22.0171 2860 Ndisuio - ok
18:09:22.0250 2860 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:09:22.0421 2860 NdisWan - ok
18:09:22.0515 2860 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:09:22.0578 2860 NDProxy - ok
18:09:22.0656 2860 nenum13E - ok
18:09:22.0718 2860 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:09:22.0843 2860 NetBIOS - ok
18:09:22.0906 2860 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:09:23.0015 2860 NetBT - ok
18:09:23.0109 2860 netrcacm (b128ccc0e4586628d5d6f6a8f1d0778d) C:\WINDOWS\system32\DRIVERS\netrcacm.sys
18:09:23.0140 2860 netrcacm - ok
18:09:23.0218 2860 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:09:23.0328 2860 NIC1394 - ok
18:09:23.0406 2860 nm (1e421a6bcf2203cc61b821ada9de878b) C:\WINDOWS\system32\DRIVERS\NMnt.sys
18:09:23.0531 2860 nm - ok
18:09:23.0609 2860 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:09:23.0718 2860 Npfs - ok
18:09:23.0796 2860 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:09:23.0968 2860 Ntfs - ok
18:09:24.0031 2860 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:09:24.0156 2860 Null - ok
18:09:24.0375 2860 nv (23b95a09677e62ec8d1641ecf39b9bfb) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:09:24.0703 2860 nv - ok
18:09:24.0781 2860 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:09:24.0906 2860 NwlnkFlt - ok
18:09:24.0953 2860 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:09:25.0062 2860 NwlnkFwd - ok
18:09:25.0125 2860 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
18:09:25.0250 2860 NwlnkIpx - ok
18:09:25.0312 2860 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
18:09:25.0421 2860 NwlnkNb - ok
18:09:25.0484 2860 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
18:09:25.0593 2860 NwlnkSpx - ok
18:09:25.0671 2860 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:09:25.0765 2860 ohci1394 - ok
18:09:25.0843 2860 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys
18:09:25.0953 2860 Parport - ok
18:09:26.0000 2860 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:09:26.0109 2860 PartMgr - ok
18:09:26.0171 2860 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
18:09:26.0296 2860 ParVdm - ok
18:09:26.0343 2860 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
18:09:26.0453 2860 PCI - ok
18:09:26.0500 2860 PCIDump - ok
18:09:26.0546 2860 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:09:26.0656 2860 PCIIde - ok
18:09:26.0734 2860 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:09:26.0859 2860 Pcmcia - ok
18:09:26.0906 2860 PDCOMP - ok
18:09:26.0968 2860 PDFRAME - ok
18:09:27.0000 2860 PDRELI - ok
18:09:27.0031 2860 PDRFRAME - ok
18:09:27.0078 2860 perc2 - ok
18:09:27.0109 2860 perc2hib - ok
18:09:27.0375 2860 PnkBstrK (d9145f60012289421f1b2dee4945c845) C:\WINDOWS\system32\drivers\PnkBstrK.sys
18:09:27.0703 2860 PnkBstrK - ok
18:09:27.0781 2860 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:09:27.0906 2860 PptpMiniport - ok
18:09:27.0968 2860 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:09:28.0078 2860 PSched - ok
18:09:28.0156 2860 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:09:28.0281 2860 Ptilink - ok
18:09:28.0406 2860 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:09:28.0515 2860 PxHelp20 - ok
18:09:28.0593 2860 QCMerced (e7ac7b1e8ae57c3d55c661187ceebf11) C:\WINDOWS\system32\DRIVERS\LVCM.sys
18:09:28.0656 2860 QCMerced - ok
18:09:28.0718 2860 ql1080 - ok
18:09:28.0750 2860 Ql10wnt - ok
18:09:28.0781 2860 ql12160 - ok
18:09:28.0843 2860 ql1240 - ok
18:09:28.0875 2860 ql1280 - ok
18:09:28.0937 2860 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:09:29.0062 2860 RasAcd - ok
18:09:29.0140 2860 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
18:09:29.0203 2860 Rasirda - ok
18:09:29.0312 2860 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:09:29.0421 2860 Rasl2tp - ok
18:09:29.0468 2860 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:09:29.0593 2860 RasPppoe - ok
18:09:29.0625 2860 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:09:29.0750 2860 Raspti - ok
18:09:29.0828 2860 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:09:29.0953 2860 Rdbss - ok
18:09:30.0015 2860 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:09:30.0125 2860 RDPCDD - ok
18:09:30.0250 2860 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
18:09:30.0328 2860 RDPWD - ok
18:09:30.0406 2860 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:09:30.0515 2860 redbook - ok
18:09:30.0562 2860 REGSpy - ok
18:09:30.0656 2860 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys
18:09:30.0718 2860 RimUsb - ok
18:09:30.0812 2860 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
18:09:30.0859 2860 RimVSerPort - ok
18:09:30.0906 2860 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
18:09:31.0031 2860 ROOTMODEM - ok
18:09:31.0125 2860 rtl8139 (d0ac0b0355a3ffb85eb77b083cd0627c) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
18:09:31.0171 2860 rtl8139 - ok
18:09:31.0250 2860 SCREAMINGBDRIVER (a643d6df1b7546256b11fb5d6b5d1375) C:\WINDOWS\system32\drivers\ScreamingBAudio.sys
18:09:31.0265 2860 SCREAMINGBDRIVER - ok
18:09:31.0343 2860 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:09:31.0406 2860 Secdrv - ok
18:09:31.0453 2860 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:09:31.0593 2860 serenum - ok
18:09:31.0656 2860 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys
18:09:31.0765 2860 Serial - ok
18:09:31.0796 2860 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
18:09:31.0921 2860 Sfloppy - ok
18:09:31.0984 2860 Simbad - ok
18:09:32.0046 2860 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:09:32.0156 2860 SLIP - ok
18:09:32.0218 2860 Sparrow - ok
18:09:32.0453 2860 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
18:09:32.0640 2860 splitter - ok
18:09:32.0718 2860 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
18:09:32.0781 2860 sr - ok
18:09:32.0859 2860 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
18:09:32.0937 2860 Srv - ok
18:09:33.0015 2860 ssmdrv (3d2829fde1c52fc64da5413889ce4dee) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
18:09:33.0015 2860 ssmdrv - ok
18:09:33.0093 2860 ssm_bus (df5c19f053eff7f8ba25d73aea899656) C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
18:09:33.0171 2860 ssm_bus - ok
18:09:33.0281 2860 ssm_mdfl (5347169fa449eabc4d0728ae39fab926) C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
18:09:33.0328 2860 ssm_mdfl - ok
18:09:33.0421 2860 ssm_mdm (7aae23dd105eed15c4f45fc269fa42a9) C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys
18:09:33.0453 2860 ssm_mdm - ok
18:09:33.0515 2860 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:09:33.0609 2860 streamip - ok
18:09:33.0687 2860 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:09:33.0796 2860 swenum - ok
18:09:33.0875 2860 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
18:09:33.0984 2860 swmidi - ok
18:09:34.0046 2860 symc810 - ok
18:09:34.0093 2860 symc8xx - ok
18:09:34.0125 2860 sym_hi - ok
18:09:34.0171 2860 sym_u3 - ok
18:09:34.0296 2860 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
18:09:34.0421 2860 sysaudio - ok
18:09:34.0484 2860 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:09:34.0578 2860 Tcpip - ok
18:09:34.0625 2860 Tcpip6 (4e53bbcc4be37d7a4bd6ef1098c89ff7) C:\WINDOWS\system32\DRIVERS\tcpip6.sys
18:09:34.0718 2860 Tcpip6 - ok
18:09:34.0765 2860 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:09:34.0875 2860 TDPIPE - ok
18:09:34.0968 2860 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
18:09:35.0078 2860 TDTCP - ok
18:09:35.0140 2860 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:09:35.0265 2860 TermDD - ok
18:09:35.0328 2860 TosIde - ok
18:09:35.0406 2860 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys
18:09:35.0500 2860 tunmp - ok
18:09:35.0562 2860 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
18:09:35.0671 2860 Udfs - ok
18:09:35.0734 2860 ultra - ok
18:09:35.0796 2860 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
18:09:35.0968 2860 Update - ok
18:09:36.0046 2860 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\WINDOWS\system32\Drivers\usbaapl.sys
18:09:36.0125 2860 USBAAPL - ok
18:09:36.0203 2860 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
18:09:36.0328 2860 usbaudio - ok
18:09:36.0375 2860 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:09:36.0484 2860 usbccgp - ok
18:09:36.0531 2860 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:09:36.0640 2860 usbehci - ok
18:09:36.0718 2860 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:09:36.0828 2860 usbhub - ok
18:09:36.0906 2860 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:09:37.0046 2860 usbprint - ok
18:09:37.0125 2860 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:09:37.0250 2860 usbscan - ok
18:09:37.0328 2860 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:09:37.0437 2860 USBSTOR - ok
18:09:37.0500 2860 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:09:37.0609 2860 usbuhci - ok
18:09:37.0656 2860 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
18:09:37.0781 2860 VgaSave - ok
18:09:37.0843 2860 ViaIde - ok
18:09:37.0890 2860 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
18:09:38.0000 2860 VolSnap - ok
18:09:38.0078 2860 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:09:38.0187 2860 Wanarp - ok
18:09:38.0296 2860 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
18:09:38.0343 2860 Wdf01000 - ok
18:09:38.0406 2860 WDICA - ok
18:09:38.0468 2860 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
18:09:38.0578 2860 wdmaud - ok
18:09:38.0703 2860 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\Drivers\wpdusb.sys
18:09:38.0796 2860 WpdUsb - ok
18:09:38.0859 2860 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:09:38.0968 2860 WSTCODEC - ok
18:09:39.0046 2860 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:09:39.0078 2860 WudfPf - ok
18:09:39.0140 2860 WUDFRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
18:09:39.0156 2860 WUDFRd - ok
18:09:39.0218 2860 MBR (0x1B8) (c99c3199cfaa4cbdcd91493f6d113a50) \Device\Harddisk0\DR0
18:09:39.0625 2860 \Device\Harddisk0\DR0 - ok
18:09:39.0625 2860 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
18:09:42.0828 2860 \Device\Harddisk1\DR2 - ok
18:09:42.0843 2860 Boot (0x1200) (24f8c42c1bfe95fc873bcefeabe3d2f0) \Device\Harddisk0\DR0\Partition0
18:09:42.0843 2860 \Device\Harddisk0\DR0\Partition0 - ok
18:09:42.0859 2860 Boot (0x1200) (1b22984a5c7d0d9467d9e1055ac1bfb6) \Device\Harddisk1\DR2\Partition0
18:09:42.0859 2860 \Device\Harddisk1\DR2\Partition0 - ok
18:09:42.0859 2860 ============================================================
18:09:42.0859 2860 Scan finished
18:09:42.0859 2860 ============================================================
18:09:42.0968 0140 Detected object count: 0
18:09:42.0968 0140 Actual detected object count: 0

fais ceci pendant qu'on y est

Télécharges sur le Bureau Roguekiller
et pas ailleurs.

• Quitte tous les programmes en cours.
• Sous Vista/Seven , clic droit -> lancer en tant qu'administrateur
• Sinon lance simplement RogueKiller.exe
• Lorsque demandé > tape 1 et valide.
• Un rapport s'ouvrira (RKreport[1].txt qui se trouve également à côté de l'exécutable), Poste moi ce rapport.

ok

RogueKiller V7.2.1 [29/02/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode normal
Utilisateur: MAX [Droits d'admin]
Mode: Recherche -- Date: 01/03/2012 20:42:40

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 4 ¤¤¤
[IFEO] HKLM\[...]\Image File Execution Options : brastk.exe (svchost.exe) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [CHARGE] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: Maxtor 6B200M0 +++++
--- User ---
[MBR] 46dee3e80c6361306ec9afaa372b6d1d
[BSP] ee9bc6c09e9308f5425089d3a98790f2 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 194474 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: USB Device +++++
--- User ---
[MBR] 3c31d08e3f9f8b450abd984fa861adc5
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 7727 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Termine : << RKreport[1].txt >>
RKreport[1].txt

ok relance le
phase suppression
coches les cases found
supprimes postes le rapport

a demain passe en position horizontale

Voilà le rapport=) Que de travail!! Merci Il y a encore des virus? ^^
Encore MERCI!

RogueKiller V7.2.1 [29/02/2012] par Tigzy
mail: tigzyRK<at>gmail<dot>com
Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html
Blog: http://tigzyrk.blogspot.com

Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Demarrage : Mode normal
Utilisateur: MAX [Droits d'admin]
Mode: Recherche -- Date: 01/03/2012 22:12:59

¤¤¤ Processus malicieux: 0 ¤¤¤

¤¤¤ Entrees de registre: 0 ¤¤¤

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver: [CHARGE] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
127.0.0.1 localhost


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: Maxtor 6B200M0 +++++
--- User ---
[MBR] 46dee3e80c6361306ec9afaa372b6d1d
[BSP] ee9bc6c09e9308f5425089d3a98790f2 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 194474 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: USB Device +++++
--- User ---
[MBR] 3c31d08e3f9f8b450abd984fa861adc5
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 7727 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Termine : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt

salut tyiee1

on s'est occupé de ton root

le 29/02 je te disais qu'on reprendrai ton zhpdiag ensuite
donc ne t'étonnes pas si on voit la ligne du root

on va continuer la désinfection

fais ceci

Sélectionnes et copies les lignes bleues suivantes



M0 - MFSP: prefs.js [MAX - xnt1vvsn.default] http://search.bearshare.com => BearShare MediaBar
O3 - Toolbar: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} . (...) -- (.not file.) => BearShare MediaBar
O3 - Toolbar: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} . (...) -- (.not file.) => MediaBar Toolbar
O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (...) -- (.not file.) => Yahoo Companion!
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} [DefaultScope] - (Web Search) - http://search.bearshare.com => BearShare MediaBar
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} [DefaultScope] - (Web Search) - http://search.bearshare.com => BearShare MediaBar
[HKCU\Software\?? ?? ???? ????? ??? ?? ????]
O4 - HKCU\..\Run: [Spyware Doctor] C:\Program Files\Spyware Doctor\swdoctor_new.exe (.not file.)
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe (.not file.) => Macrogaming®SweetIM
O4 - HKUS\S-1-5-18\..\Run: [Spyware Doctor] C:\Program Files\Spyware Doctor\swdoctor.exe (.not file.) => PC Tools®Spyware Doctor
O4 - HKUS\S-1-5-18\..\Run: [Spyware Doctor] C:\Program Files\Spyware Doctor\swdoctor.exe (.not file.) => PC Tools®Spyware Doctor
O4 - HKUS\S-1-5-21-2230923689-1021817841-248678059-1006\..\Run: [Spyware Doctor] C:\Program Files\Spyware Doctor\swdoctor_new.exe (.not file.)
O4 - HKUS\S-1-5-21-2230923689-1021817841-248678059-1006\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe (.not file.) => Macrogaming®SweetIM
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\iTunes.lnk . (...) -- C:\WINDOWS\Installer\{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}\iTunesIco.exe (.not file.)
O4 - Global Startup: C:\Documents And Settings\All Users\Menu Démarrer\Programmes\iTunes.lnk . (...) -- C:\WINDOWS\Installer\{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}\iTunesIco.exe (.not file.)
O42 - Logiciel: Macrogaming SweetIM 1.2a - (.Macrogaming LTD..) [HKLM] -- {5827C8C9-A3C6-4E7C-AA70-F6AFAB52F981} => Macrogaming SweetIM
O42 - Logiciel: SweetIM For Internet Explorer 1.0a - (.Macrogaming LTD..) [HKLM] -- {BBB1528C-2F8C-4526-9C8E-699F17AF21CA} => Microgaming SweetIM
[HKCU\Software\ESMP]
[HKLM\Software\ESMP]
O16 - DPF: {86EEF11E-FF16-48CE-B1A2-474B663041A9} () - http://18807.kit.carpediem.fr/Gay-connection-a.exe => Infection Diverse (InstantAccess.Dial)
O23 - Service: bliglfblsdzt (bliglfblsdzt) . (...) - C:\DOCUME~1\MAX\LOCALS~1\Temp\DAT2D.tmp.exe (.not file.) => Infection Diverse
[HKCU\Software\3]
O43 - CFD: 10/08/2008 - 19:24:18 - [16,128] ----D- C:\Documents and Settings\MAX\Application Data\Temporary => Infection MSN (Matcash.CS.Troj)
O58 - SDL:[MD5.4B5443B41F8611E07141EE59BC179C4B] - 13/04/2011 - 15:16:32 ---A- . (...) -- C:\WINDOWS\system32\drivers\str.sys [327743] => Infection Rootkit (Rootkit.Agent)
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall] =>Adware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F0626A63-410B-45E2-99A1-3F2475B2D695}] =>PUP.Fbsearch => Infection BT (Fast Browser Search Toolbar)
SS - | Auto 0 | (bliglfblsdzt) . (...) - C:\DOCUME~1\MAX\LOCALS~1\Temp\DAT2D.tmp.exe => Infection Diverse
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater] =>PUP.Fbsearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus] =>PUP.Fbsearch
[HKLM\Software\Classes\ToolBand.XBTP01621.1] =>PUP.iMesh
[HKLM\Software\Classes\CLSID\{1a03f196-9617-4ca0-842b-a83ceecb022b}] =>Toolbar.SweetIM
[HKLM\Software\Classes\CLSID\{96AFBE69-C3B0-4b00-8578-D933D2896EE2}] =>Virus.Virut
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}] =>Adware.ShopperReports
[HKLM\Software\CrazyLoader] =>Adware.SPointer
[HKCU\Software\MSOLoad] =>Trojan.Agent
C:\Documents and Settings\MAX\Local Settings\Application Data\Crazyloader Air =>Adware.SPointer
[HKLM\Software\Macrogaming]
FirewallRaz
EmptyFlash
EmptyTemp


lance zhpfix

tu colles les lignes avec le bouton H

tu supprimes avec le bouton ok tous nettoyer

copies colles zhpfixreport

repostes un zhpdiag sur www.mydoc.tk après suppression

Salut, et merci =)
Premier rapport:

Rapport de ZHPFix 1.12.3380 par Nicolas Coolman, Update du 05/02/2011
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-02-03-2012-18-27-20.txt
Run by MAX at 02/03/2012 18:27:20
Windows XP Home Edition Service Pack 3 (Build 2600)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
Web site : http://nicolascoolman.skyrock.com/

========== Logiciel(s) ==========
SUPPRIME Macrogaming SweetIM 1.2a
SUPPRIME SweetIM For Internet Explorer 1.0a

========== Clé(s) du Registre ==========
SUPPRIME Key*: SearchScopes :{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}
ABSENT SearchScopes :{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}
ABSENT Key: HKCU\Software\?? ?? ???? ????? ??? ?? ????
SUPPRIME Key: HKCU\Software\ESMP
SUPPRIME Key: HKLM\Software\ESMP
SUPPRIME Key: CLSID DPF: {86EEF11E-FF16-48CE-B1A2-474B663041A9}
SUPPRIME Key: Service: bliglfblsdzt
SUPPRIME Key: HKCU\Software\3
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F0626A63-410B-45E2-99A1-3F2475B2D695}
ABSENT Key: Service: bliglfblsdzt
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus
SUPPRIME Key: HKLM\Software\Classes\ToolBand.XBTP01621.1
SUPPRIME Key: HKLM\Software\Classes\CLSID\{1a03f196-9617-4ca0-842b-a83ceecb022b}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{96AFBE69-C3B0-4b00-8578-D933D2896EE2}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}
SUPPRIME Key: HKLM\Software\CrazyLoader
SUPPRIME Key: HKCU\Software\MSOLoad
ABSENT Key: HKLM\Software\Macrogaming

========== Valeur(s) du Registre ==========
SUPPRIME Toolbar: {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
SUPPRIME Toolbar: {0974BA1E-64EC-11DE-B2A5-E43756D89593}
SUPPRIME Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88}
SUPPRIME RunValue: Spyware Doctor
ABSENT RunValue: SweetIM
ABSENT RunValue: Spyware Doctor
SUPPRIME FirewallRaz (SP) : C:\Program Files\LimeWire\LimeWire.exe
SUPPRIME FirewallRaz (SP) : C:\Program Files\VoipCheapCom\VoipCheapCom.exe
SUPPRIME FirewallRaz (SP) : C:\Program Files\MSN Messenger\livecall.exe
SUPPRIME FirewallRaz (SP) : C:\Program Files\BearShare Applications\BearShare\BearShare.exe
SUPPRIME FirewallRaz (SP) : D:\libNEAP.dll
SUPPRIME FirewallRaz (SP) : D:\DWizard300.exe
SUPPRIME FirewallRaz (SP) : C:\Program Files\CrazyLoader\crazyloader.exe
SUPPRIME FirewallRaz (SP) : C:\Program Files\eMule\emule.exe
SUPPRIME FirewallRaz (DP) : C:\Program Files\MSN Messenger\livecall.exe
Aucune valeur présente dans la clé d'exception du registre (FirewallRaz)

========== Préférences navigateur ==========
SUPPRIME Mozilla Pref: http://search.bearshare.com
SUPPRIME Mozilla Pref: http://search.bearshare.com

========== Dossier(s) ==========
SUPPRIME Folder: C:\Documents and Settings\MAX\Application Data\Temporary
SUPPRIME Folder: c:\documents and settings\max\local settings\application data\crazyloader air
SUPPRIME Flash Cookies: 0
SUPPRIME Temporaires Windows: : 180

========== Fichier(s) ==========
ABSENT File: c:\program files\spyware doctor\swdoctor_new.exe
ABSENT File: c:\program files\macrogaming\sweetim\sweetim.exe
ABSENT File: c:\program files\spyware doctor\swdoctor.exe
SUPPRIME File: c:\documents and settings\all users\menu démarrer\programmes\itunes.lnk
ABSENT File: c:\windows\installer\{5efcbb42-36ab-4ff9-b90c-e78c7b9ee7b3}\itunesico.exe
ABSENT File: c:\docume~1\max\locals~1\temp\dat2d.tmp.exe
SUPPRIME File: c:\windows\system32\drivers\str.sys
SUPPRIME Flash Cookies: 0
SUPPRIME Temporaires Windows: : 4375


========== Récapitulatif ==========
20 : Clé(s) du Registre
16 : Valeur(s) du Registre
4 : Dossier(s)
9 : Fichier(s)
2 : Logiciel(s)
2 : Préférences navigateur


End of clean in 01mn 36s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 02/03/2012 18:27:20 [4027]

Second rapport:

http://mydoc.tk/3/ZHPDiag4.txt

re salut

çà s'améliore il y a encore BearShare

p2p vecteur infection

fais ceci
Sélectionnes et copies les lignes bleues suivantes



O43 - CFD: 26/10/2009 - 13:50:32 - [1,160] ----D- C:\Documents and Settings\MAX\Application Data\BearShareTb => BearShare PeerToPeer
O43 - CFD: 12/09/2007 - 20:33:48 - [0,000] ----D- C:\Program Files\BearShare Applications => BearShare PeerToPeer
O43 - CFD: 26/10/2009 - 13:49:56 - [1,961] ----D- C:\Program Files\BearShareTb => BearShare PeerToPeer

[HKCU\Software\bearsharetb] => BearShare PeerToPeer
[HKCU\Software\BearShare] => BearShare PeerToPeer
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\90296765.sys . (...) -- C:\WINDOWS\system32\Drivers\90296765.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\90296765.sys . (...) -- C:\WINDOWS\system32\Drivers\90296765.sys (.not file.)
C:\Program Files\BearShare Applications =>PUP.BearShare
C:\Program Files\BearShare Applications


lance zhpfix

tu colles les lignes avec le bouton H

tu supprimes avec le bouton ok tous nettoyer

copies colles zhpfixreport

Le rapport

Rapport de ZHPFix 1.12.3380 par Nicolas Coolman, Update du 05/02/2011
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-02-03-2012-21-14-40.txt
Run by MAX at 02/03/2012 21:14:40
Windows XP Home Edition Service Pack 3 (Build 2600)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
Web site : http://nicolascoolman.skyrock.com/

========== Clé(s) du Registre ==========
SUPPRIME Key: HKCU\Software\bearsharetb
SUPPRIME Key: HKCU\Software\BearShare
SUPPRIME O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\90296765.sys . (...) -- C:\WINDOWS\system32\Drivers\90296765.sys (.not file.)
SUPPRIME O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\90296765.sys . (...) -- C:\WINDOWS\system32\Drivers\90296765.sys (.not file.)

========== Dossier(s) ==========
SUPPRIME Folder: C:\Documents and Settings\MAX\Application Data\BearShareTb
SUPPRIME Folder: C:\Program Files\BearShare Applications
SUPPRIME Folder: C:\Program Files\BearShareTb

========== Fichier(s) ==========
ABSENT File: c:\windows\system32\drivers\90296765.sys
ABSENT Folder/File: c:\program files\bearshare applications


========== Récapitulatif ==========
4 : Clé(s) du Registre
3 : Dossier(s)
2 : Fichier(s)


End of clean in 00mn 08s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 02/03/2012 18:27:20 [4079]
C:\ZHP\ZHPFix[R2].txt - 02/03/2012 21:14:40 [1304]

comment va ton pc mieux j'espére

Oui beaucoup mieux

Plus rapide au démarrage, plus rapide pour l'ouverture des pages sur internet...

MERCI
Je dosi en conclure qu'il est clean et qu'il n'y a plus rien à faire?
Au fait, il avait quoi? ^^

ENCORE merci et bonne soirée

Tyee1

Par contre, je peux supprimer tous les rapports, les logiciels de décontamination?

salut tyiee1

Softwin®BitDefender Antivirus
Avira®AntiVir PersonalEdition
Panda Software

qustion tu as combien d'antivirus??

2/
Lavasoft AB®Ad-Aware 2007
Spybot Search & Destroy

tu peux les supprimer tous les 2 ne servent plus a rien

a la place tu vas télécharger MBAM que tu garderas tu le mttras a jour
et tu scannera ton pc

d'ailleurs fais ceci

Télécharges Malwarebytes version free
http://www.malwarebytes.org/products/malwarebytes_free

tu le mets a jour
scan complet

s’il trouve des infections important
coches les cases et supprimes la sélection

Copies colles le rapport


3/ mettre a jour java et adobe pour les failles de sécurité

si le rapport mbam est clean je te dirai comment désinstaller les outils

Salut,

Je n'ai pas réussi à trouver et à desinstaller panda anti-virus... Je ne l'ai pas trouvé dans "ajout/supp de fichiers".

Sinon voici le rapport demandé (9 intrus trouvés ;))

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Version de la base de données: v2012.03.03.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
MAX :: XP [administrateur]

03/03/2012 16:21:39
mbam-log-2012-03-03 (16-21-39).txt

Type d'examen: Examen complet
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 355852
Temps écoulé: 1 heure(s), 23 minute(s), 42 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 3
HKCR\sp (TrojanProxy.Agent) -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\sp (TrojanProxy.Agent) -> Mis en quarantaine et supprimé avec succès.
HKLM\System\CurrentControlSet\Services\SPService (TrojanProxy.Agent) -> Mis en quarantaine et supprimé avec succès.

Valeur(s) du Registre détectée(s): 4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{96AFBE69-C3B0-4b00-8578-D933D2896EE2} (TrojanProxy.Agent) -> Données: -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{96AFBE69-C3B0-4b00-8578-D933D2896EE2} (TrojanProxy.Agent) -> Données: sp -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost|netsvc (TrojanProxy.Agent) -> Données: SPService^^ -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup|RegistryMonitor2 (Malware.Trace) -> Données: 5899030 -> Mis en quarantaine et supprimé avec succès.

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 8
C:\Program Files\Ad-remover\Quarantine\C\Program Files\QuestDns\questdns.exe.vir (Adware.QuestDns) -> Mis en quarantaine et supprimé avec succès.
C:\Program Files\Ad-remover\Quarantine\C\Program Files\QuestDns\uninstall.exe.vir (Adware.QuestDns) -> Mis en quarantaine et supprimé avec succès.
C:\System Volume Information\_restore{5F5C4951-CEE9-4CD8-B1AE-63774215BF83}\RP187\A0008329.exe (Adware.QuestDns) -> Mis en quarantaine et supprimé avec succès.
C:\System Volume Information\_restore{5F5C4951-CEE9-4CD8-B1AE-63774215BF83}\RP187\A0008302.exe (PUP.Fbsearch) -> Mis en quarantaine et supprimé avec succès.
C:\System Volume Information\_restore{5F5C4951-CEE9-4CD8-B1AE-63774215BF83}\RP187\A0008330.exe (Adware.QuestDns) -> Mis en quarantaine et supprimé avec succès.
C:\TDSSKiller_Quarantine\01.03.2012_18.01.23\tdlfs0000\tsk0002.dta (Rootkit.TDSS) -> Mis en quarantaine et supprimé avec succès.
C:\TDSSKiller_Quarantine\01.03.2012_18.01.23\tdlfs0000\tsk0003.dta (Rootkit.TDSS) -> Mis en quarantaine et supprimé avec succès.
C:\WINDOWS\system32\crt.dat (Malware.Trace) -> Mis en quarantaine et supprimé avec succès.

(fin)
MERCI

ok la c'est toi qui voit si ton pc va bien on désinstalle

fais ceci

Télécharges delfix pour désinstaller les outils de désinfection qui ne vont plus te
Servir puisque mis a jour régulièrement

http://general-changelog-team.fr/telechargements/logiciels/viewdownload/75-ou(...)
fais la phase 1 recherche
copies/colles le rapport delfixsearch.txt

sinon explique les problèmes restants
un peu long au démarrage par exemple

Bonsoir,

Et merci pour tout. Mon ordi est plus rapide au démarrage, plus "fluide" dans l'ensemble.

Voilà le rapport:

# DelFix v8.8 - Rapport créé le 03/03/2012 à 20:41:26
# Mis à jour le 12/02/12 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : MAX - XP (Administrateur)
# Exécuté depuis : C:\Documents and Settings\MAX\Mes documents\Mes fichiers reçus\delfix.exe
# Option [Recherche]


~~~~~~ Dossiers(s) ~~~~~~

Présent : C:\Qoobox
Présent : C:\SDFix
Présent : C:\RSIT
Présent : C:\VundoFix Backups
Présent : C:\ZHP
Présent : C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
Présent : C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Hijackthis
Présent : C:\Documents and Settings\MAX\Bureau\RK_Quarantine
Présent : C:\Program Files\Ad-Remover
Présent : C:\Program Files\Navilog1
Présent : C:\Program Files\ZHPDiag
Présent : C:\Program Files\Trend Micro\Hijackthis

~~~~~~ Fichier(s) ~~~~~~

Présent : C:\Ad-Report-CLEAN[1].txt
Présent : C:\Ad-Report-Scan-07.03.2009.log
Présent : C:\Ad-Report-SCAN[1].txt
Présent : C:\AdwCleaner[R1].txt
Présent : C:\AdwCleaner[S1].txt
Présent : C:\ComboFix-quarantined-files.txt
Présent : C:\ComboFix.txt
Présent : C:\TDSSKiller.2.7.17.0_01.03.2012_18.01.22_log.txt
Présent : C:\TDSSKiller.2.7.17.0_01.03.2012_18.08.58_log.txt
Présent : C:\TDSSKiller.2.7.17.0_01.03.2012_22.08.41_log.txt
Présent : C:\TDSSKiller.2.7.17.0_29.02.2012_21.37.05_log.txt
Présent : C:\TDSSKiller.2.7.17.0_29.02.2012_22.03.45_log.txt
Présent : C:\VundoFix.txt
Présent : C:\Documents and Settings\MAX\Bureau\AD-R.lnk
Présent : C:\Documents and Settings\MAX\Bureau\adwcleaner.exe
Présent : C:\Documents and Settings\MAX\Bureau\RKreport[1].txt
Présent : C:\Documents and Settings\MAX\Bureau\RKreport[2].txt
Présent : C:\Documents and Settings\MAX\Bureau\RKreport[3].txt
Présent : C:\Documents and Settings\MAX\Bureau\RKreport[4].txt
Présent : C:\Documents and Settings\MAX\Bureau\RogueKiller.exe
Présent : C:\Documents and Settings\MAX\Bureau\RSIT.exe
Présent : C:\Documents and Settings\MAX\Bureau\tdsskiller.zip
Présent : C:\Documents and Settings\MAX\Bureau\ZHPDiag.txt
Présent : C:\Documents and Settings\MAX\Bureau\ZHPDiag2.exe
Présent : C:\Documents and Settings\MAX\Bureau\ZHPFixReport.txt
Présent : C:\Documents and Settings\All Users\Bureau\ZHPDiag.lnk
Présent : C:\Documents and Settings\All Users\Bureau\ZHPFix.lnk
Présent : C:\Documents and Settings\All Users\Bureau\MBRCheck.lnk
Présent : C:\WINDOWS\NIRCMD.exe
Présent : C:\WINDOWS\system32\SWReg.exe
Présent : C:\WINDOWS\system32\SWSC.exe
Présent : C:\WINDOWS\system32\SWXCacls.exe

~~~~~~ Registre ~~~~~~

Clé Présente : HKCU\Software\Ad-Remover
Clé Présente : HKLM\SOFTWARE\AdwCleaner
Clé Présente : HKLM\SOFTWARE\Soeperman Enterprises Ltd.
Clé Présente : HKLM\SOFTWARE\Swearware
Clé Présente : HKLM\SOFTWARE\TrendMicro\Hijackthis
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ad-Remover
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Hijackthis
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\HijackThis.exe

~~~~~~ Autres ~~~~~~


*************************

DelFix[R1].txt - [3238 octets] - [03/03/2012 20:41:26]

########## EOF - C:\DelFix[R1].txt - [3362 octets] ##########

ok
relance le phase 2 nettoyer supprimer

puis relance le désinstaller

edites ton 1er message bouton modifier marques résolu

bon surf did80

Okay, merci pour tout.

J'pense que mon ordi est venu dans un mauvais état et repart comme neuf.


Encore merci =)
Tyee1