Et voici :
http://cjoint.com/?BCftYuTlFnO
Merci
Pare-feu et Centre de sécurité disparus de la liste de services
Re: Pare-feu et Centre de sécurité disparus de la liste de services
Bonsoir,
Combofix
IMPORTANT
Enregistre ComboFix.exe sur le Bureau
Désactive les applications antivirus et anti-malware résidentes, en général via un clic droit sur l'icône de la Zone de notification, sinon elles risquent d'interférer avec l'outil.
Fais un double clic sur l'icône 
et suis les invites.
Sous XP accepte l'installation de la console de récupération.
Surtout ne lance aucune application pendant le scan et après le redémarrage parfois nécessaire et provoqué par l'outil.
Lorsque l'outil aura terminé, il affichera un rapport.
Attends l'affichage du rapport.(Il sera enregistré sous C:\Combofix.txt)
Copie le contenu dans ta prochaine réponse.
Avertissement aux lecteurs.
Combofix n'est pas un outil anodin ni sans risques pour le système d'exploitation.
Il est conseillé de l'utiliser sous le contrôle d'un assistant.
@+
Combofix IMPORTANTEnregistre ComboFix.exe sur le Bureau
Désactive les applications antivirus et anti-malware résidentes, en général via un clic droit sur l'icône de la Zone de notification, sinon elles risquent d'interférer avec l'outil.
Fais un double clic sur l'icône et suis les invites.Sous XP accepte l'installation de la console de récupération.
Surtout ne lance aucune application pendant le scan et après le redémarrage parfois nécessaire et provoqué par l'outil. Lorsque l'outil aura terminé, il affichera un rapport. Attends l'affichage du rapport.(Il sera enregistré sous C:\Combofix.txt) Copie le contenu dans ta prochaine réponse. Avertissement aux lecteurs.Combofix n'est pas un outil anodin ni sans risques pour le système d'exploitation.
Il est conseillé de l'utiliser sous le contrôle d'un assistant.
@+
En cas de problème constaté sur un sujet, contactez un modérateur par MP. N'intervenez pas vous-même. Merci
Re: Pare-feu et Centre de sécurité disparus de la liste de services
Ok, je ferai ça demain car suis au travail et posterai le rapport. Bonne soirée
Re: Pare-feu et Centre de sécurité disparus de la liste de services
Voilà j'ai lancé le programme Combofix.exe mais après redémarrage de mon ordi, plus moyen d'ouvrir internet explorer ni mozilla firefox. J'ai encore une fois redémarrer mon ordi qui a procédé à une réparation et restauration du système. Internet et firefox fonctionnent à nouveau.
Voici le rapport :
ComboFix 12-03-04.02 - Emilie 06/03/2012 8:46.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.32.1036.18.5942.4428 [GMT 1:00]
Lancé depuis: c:\users\Emilie\Desktop\ComboFix.exe
AV: Norton 360 *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1330465458.2100.bin
c:\programdata\1330465458.2652.bin
c:\programdata\1330544982.4484.bin
C:\sooi832.bin
c:\sooi832.bin\92756A6869B8BAF
c:\users\Emilie\AppData\Local\assembly\tmp
c:\users\Emilie\AppData\Roaming\inst.exe
c:\users\Emilie\AppData\Roaming\vso_ts_preview.xml
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\assembly\temp\@
c:\windows\assembly\temp\cfg.ini
c:\windows\system32\consrv.dll
c:\windows\System64
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-02-06 au 2012-03-06 ))))))))))))))))))))))))))))))))))))
.
.
2012-03-05 20:29 . 2012-03-05 20:30 -------- d-----w- c:\program files (x86)\Cobian Backup 10
2012-03-05 13:13 . 2012-03-05 13:14 -------- d-----w- c:\users\Emilie\DoctorWeb
2012-03-04 07:49 . 2012-03-04 07:49 63 ----a-w- c:\windows\DeleteOnReboot.bat
2012-03-03 19:44 . 2012-03-03 19:49 -------- d-----w- C:\ZHP
2012-03-03 19:43 . 2012-03-03 19:48 -------- d-----w- c:\program files (x86)\ZHPDiag
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792059.bdinstall.bin
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792028.bdinstall.bin
2012-03-02 22:27 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-02 22:23 . 2012-03-02 22:23 -------- d-----w- c:\users\Emilie\AppData\Roaming\Bitdefender
2012-03-02 22:07 . 2012-03-02 22:09 -------- d-----w- c:\windows\system32\MpEngineStore
2012-03-02 20:03 . 2012-03-02 22:27 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-03-02 17:24 . 2012-03-02 17:24 154622 ----a-w- c:\programdata\1330708998.bdinstall.bin
2012-03-01 07:59 . 2012-03-01 07:59 -------- d-----w- c:\windows\system32\25DB~1
2012-02-29 20:08 . 2012-02-29 20:08 273351 ----a-w- c:\programdata\1330545604.bdinstall.bin
2012-02-29 19:49 . 2012-02-29 19:50 7203 ----a-w- c:\programdata\1330544982.5340.bin
2012-02-29 19:49 . 2012-02-29 19:50 45079 ----a-w- c:\programdata\1330544982.5376.bin
2012-02-29 19:49 . 2012-02-29 19:49 5679 ----a-w- c:\programdata\1330544982.5352.bin
2012-02-29 19:43 . 2012-02-29 19:43 249578 ----a-w- c:\programdata\1330544174.bdinstall.bin
2012-02-28 22:43 . 2012-02-28 22:43 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-02-28 22:41 . 2012-03-03 07:20 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-02-28 22:41 . 2012-02-28 22:41 -------- d-----r- c:\program files (x86)\Skype
2012-02-28 22:10 . 2012-02-28 22:10 296788 ----a-w- c:\programdata\1330466450.bdinstall.bin
2012-02-28 22:09 . 2012-02-28 22:09 -------- d-----w- c:\programdata\BDLogging
2012-02-28 22:09 . 2012-03-02 22:22 -------- d-----w- c:\programdata\Bitdefender
2012-02-28 21:47 . 2012-02-28 21:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\QuickScan
2012-02-28 21:45 . 2012-03-03 07:20 -------- d-----w- c:\program files\Bitdefender
2012-02-28 21:45 . 2012-02-28 21:50 31343 ----a-w- c:\programdata\1330465458.4164.bin
2012-02-28 21:45 . 2012-02-28 21:45 4410 ----a-w- c:\programdata\1330465458.1140.bin
2012-02-28 21:44 . 2012-02-28 21:49 9235 ----a-w- c:\programdata\1330465458.5048.bin
2012-02-28 21:44 . 2012-02-28 21:47 1698 ----a-w- c:\programdata\1330465458.4016.bin
2012-02-28 21:44 . 2012-02-28 21:46 1670 ----a-w- c:\programdata\1330465458.4448.bin
2012-02-28 21:44 . 2011-10-27 13:07 329800 ----a-w- c:\windows\system32\drivers\trufos.sys
2012-02-28 21:44 . 2011-08-16 12:59 442088 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys
2012-02-28 21:44 . 2012-02-28 21:56 155819 ----a-w- c:\programdata\1330465458.3184.bin
2012-02-28 21:44 . 2012-02-28 21:55 350589 ----a-w- c:\programdata\1330465458.3984.bin
2012-02-28 21:43 . 2012-03-03 07:20 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-02-24 15:33 . 2012-02-24 15:33 -------- d-----w- C:\avrescue
2012-02-24 08:54 . 2012-02-24 08:54 -------- d-----w- c:\users\Emilie\AppData\Roaming\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\programdata\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\program files (x86)\Avira
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\users\Emilie\AppData\Roaming\Malwarebytes
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\programdata\Malwarebytes
2012-02-21 23:17 . 1998-09-30 11:24 242448 ----a-w- c:\windows\system32\scedll.dll
2012-02-21 23:17 . 1998-03-31 15:37 29968 ----a-w- c:\windows\system32\Rshx32_5.dll
2012-02-21 22:41 . 2011-09-06 21:45 254400 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-21 22:41 . 2012-02-24 08:37 -------- d-----w- c:\programdata\AVAST Software
2012-02-21 22:41 . 2012-02-21 22:41 -------- d-----w- c:\program files\AVAST Software
2012-02-10 16:10 . 2012-02-21 23:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\panel
2012-02-07 08:30 . 2012-02-06 19:39 28672 ----a-w- c:\users\Emilie\oai4szz4hk.exe
2012-02-06 19:39 . 2012-02-06 19:39 28672 ----a-w- c:\programdata\oai4szz4hk.exe
2012-02-06 19:29 . 2012-03-06 07:38 0 --sha-w- c:\windows\system32\dds_trash_log.cmd
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-10 14:05 . 2012-01-20 17:37 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-26 23:52 . 2010-12-25 10:20 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-18 16:16 . 2012-01-18 16:16 544552 ----a-w- c:\windows\system32\drivers\avckf.sys
2012-01-18 16:16 . 2012-01-18 16:16 691384 ----a-w- c:\windows\system32\drivers\avc3.sys
2012-01-06 05:15 . 2012-02-03 08:48 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5455C4D4-1FFE-4761-A060-92FFD8EDF170}\mpengine.dll
2011-12-08 12:28 . 2012-01-13 21:32 311296 ----a-w- c:\windows\SysWow64\TubeFinder.exe
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-01-27 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-01-25 61112]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-14 90192]
R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
R2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-01-23 62512]
R3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-30 136824]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 cbVSCService;Cobian Backup 10 Volume Shadow Copy service;c:\program files (x86)\Cobian Backup 10\cbVSCService.exe [2010-09-23 67584]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-10-25 119632]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-01-05 2184496]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-10-25 20552]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - affe67fea5f3ec8
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 09:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2012-03-04 c:\windows\Tasks\HPCeeScheduleForEmilie.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 02:53]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-22 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-22 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-01-22 410136]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-14 487424]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-01-24 1066744]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
KR10N
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.be/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 213.30.163.218:3128
mSearchAssistant = hxxp://www.google.fr
IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\users\Emilie\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
IE: Télécharger avec Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm
LSP: mswsock.dll
TCP: DhcpNameServer = 192.168.1.254
DPF: {DAF94F73-2AA6-44D8-A562-A28831820D34} - hxxp://fr.pixum.be/apps/EasyUploadX.cab
FF - ProfilePath - c:\users\Emilie\AppData\Roaming\Mozilla\Firefox\Profiles\fhzrqoxy.Olivier\
FF - prefs.js: browser.startup.homepage - www.google.be
.
- - - - ORPHELINS SUPPRIMES - - - -
.
URLSearchHooks-{ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
URLSearchHooks-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
URLSearchHooks-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Toolbar-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
Toolbar-10 - (no file)
Toolbar-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-10 - (no file)
WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file)
WebBrowser-{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - (no file)
WebBrowser-{BB1227AC-7A0D-4076-8C1A-51A1348F6FA8} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-installer - c:\program files (x86)\Installer\un_installer_21627.exe
AddRemove-Windows Searchqu Toolbar - c:\program files (x86)\Windows Searchqu Toolbar\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\affe67fea5f3ec8]
"ImagePath"="\SystemRoot\System32\Drivers\affe67fea5f3ec8.sys"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Heure de fin: 2012-03-06 08:58:14 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-03-06 07:58
.
Avant-CF: 305.540.554.752 octets libres
Après-CF: 304.744.427.520 octets libres
.
- - End Of File - - B2C7765C79460308A06B353FD47489B0
Voici le rapport :
ComboFix 12-03-04.02 - Emilie 06/03/2012 8:46.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.32.1036.18.5942.4428 [GMT 1:00]
Lancé depuis: c:\users\Emilie\Desktop\ComboFix.exe
AV: Norton 360 *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1330465458.2100.bin
c:\programdata\1330465458.2652.bin
c:\programdata\1330544982.4484.bin
C:\sooi832.bin
c:\sooi832.bin\92756A6869B8BAF
c:\users\Emilie\AppData\Local\assembly\tmp
c:\users\Emilie\AppData\Roaming\inst.exe
c:\users\Emilie\AppData\Roaming\vso_ts_preview.xml
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\assembly\temp\@
c:\windows\assembly\temp\cfg.ini
c:\windows\system32\consrv.dll
c:\windows\System64
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-02-06 au 2012-03-06 ))))))))))))))))))))))))))))))))))))
.
.
2012-03-05 20:29 . 2012-03-05 20:30 -------- d-----w- c:\program files (x86)\Cobian Backup 10
2012-03-05 13:13 . 2012-03-05 13:14 -------- d-----w- c:\users\Emilie\DoctorWeb
2012-03-04 07:49 . 2012-03-04 07:49 63 ----a-w- c:\windows\DeleteOnReboot.bat
2012-03-03 19:44 . 2012-03-03 19:49 -------- d-----w- C:\ZHP
2012-03-03 19:43 . 2012-03-03 19:48 -------- d-----w- c:\program files (x86)\ZHPDiag
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792059.bdinstall.bin
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792028.bdinstall.bin
2012-03-02 22:27 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-02 22:23 . 2012-03-02 22:23 -------- d-----w- c:\users\Emilie\AppData\Roaming\Bitdefender
2012-03-02 22:07 . 2012-03-02 22:09 -------- d-----w- c:\windows\system32\MpEngineStore
2012-03-02 20:03 . 2012-03-02 22:27 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-03-02 17:24 . 2012-03-02 17:24 154622 ----a-w- c:\programdata\1330708998.bdinstall.bin
2012-03-01 07:59 . 2012-03-01 07:59 -------- d-----w- c:\windows\system32\25DB~1
2012-02-29 20:08 . 2012-02-29 20:08 273351 ----a-w- c:\programdata\1330545604.bdinstall.bin
2012-02-29 19:49 . 2012-02-29 19:50 7203 ----a-w- c:\programdata\1330544982.5340.bin
2012-02-29 19:49 . 2012-02-29 19:50 45079 ----a-w- c:\programdata\1330544982.5376.bin
2012-02-29 19:49 . 2012-02-29 19:49 5679 ----a-w- c:\programdata\1330544982.5352.bin
2012-02-29 19:43 . 2012-02-29 19:43 249578 ----a-w- c:\programdata\1330544174.bdinstall.bin
2012-02-28 22:43 . 2012-02-28 22:43 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-02-28 22:41 . 2012-03-03 07:20 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-02-28 22:41 . 2012-02-28 22:41 -------- d-----r- c:\program files (x86)\Skype
2012-02-28 22:10 . 2012-02-28 22:10 296788 ----a-w- c:\programdata\1330466450.bdinstall.bin
2012-02-28 22:09 . 2012-02-28 22:09 -------- d-----w- c:\programdata\BDLogging
2012-02-28 22:09 . 2012-03-02 22:22 -------- d-----w- c:\programdata\Bitdefender
2012-02-28 21:47 . 2012-02-28 21:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\QuickScan
2012-02-28 21:45 . 2012-03-03 07:20 -------- d-----w- c:\program files\Bitdefender
2012-02-28 21:45 . 2012-02-28 21:50 31343 ----a-w- c:\programdata\1330465458.4164.bin
2012-02-28 21:45 . 2012-02-28 21:45 4410 ----a-w- c:\programdata\1330465458.1140.bin
2012-02-28 21:44 . 2012-02-28 21:49 9235 ----a-w- c:\programdata\1330465458.5048.bin
2012-02-28 21:44 . 2012-02-28 21:47 1698 ----a-w- c:\programdata\1330465458.4016.bin
2012-02-28 21:44 . 2012-02-28 21:46 1670 ----a-w- c:\programdata\1330465458.4448.bin
2012-02-28 21:44 . 2011-10-27 13:07 329800 ----a-w- c:\windows\system32\drivers\trufos.sys
2012-02-28 21:44 . 2011-08-16 12:59 442088 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys
2012-02-28 21:44 . 2012-02-28 21:56 155819 ----a-w- c:\programdata\1330465458.3184.bin
2012-02-28 21:44 . 2012-02-28 21:55 350589 ----a-w- c:\programdata\1330465458.3984.bin
2012-02-28 21:43 . 2012-03-03 07:20 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-02-24 15:33 . 2012-02-24 15:33 -------- d-----w- C:\avrescue
2012-02-24 08:54 . 2012-02-24 08:54 -------- d-----w- c:\users\Emilie\AppData\Roaming\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\programdata\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\program files (x86)\Avira
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\users\Emilie\AppData\Roaming\Malwarebytes
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\programdata\Malwarebytes
2012-02-21 23:17 . 1998-09-30 11:24 242448 ----a-w- c:\windows\system32\scedll.dll
2012-02-21 23:17 . 1998-03-31 15:37 29968 ----a-w- c:\windows\system32\Rshx32_5.dll
2012-02-21 22:41 . 2011-09-06 21:45 254400 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-21 22:41 . 2012-02-24 08:37 -------- d-----w- c:\programdata\AVAST Software
2012-02-21 22:41 . 2012-02-21 22:41 -------- d-----w- c:\program files\AVAST Software
2012-02-10 16:10 . 2012-02-21 23:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\panel
2012-02-07 08:30 . 2012-02-06 19:39 28672 ----a-w- c:\users\Emilie\oai4szz4hk.exe
2012-02-06 19:39 . 2012-02-06 19:39 28672 ----a-w- c:\programdata\oai4szz4hk.exe
2012-02-06 19:29 . 2012-03-06 07:38 0 --sha-w- c:\windows\system32\dds_trash_log.cmd
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-10 14:05 . 2012-01-20 17:37 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-26 23:52 . 2010-12-25 10:20 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-18 16:16 . 2012-01-18 16:16 544552 ----a-w- c:\windows\system32\drivers\avckf.sys
2012-01-18 16:16 . 2012-01-18 16:16 691384 ----a-w- c:\windows\system32\drivers\avc3.sys
2012-01-06 05:15 . 2012-02-03 08:48 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5455C4D4-1FFE-4761-A060-92FFD8EDF170}\mpengine.dll
2011-12-08 12:28 . 2012-01-13 21:32 311296 ----a-w- c:\windows\SysWow64\TubeFinder.exe
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-01-27 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-01-25 61112]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-14 90192]
R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
R2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-01-23 62512]
R3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-30 136824]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 cbVSCService;Cobian Backup 10 Volume Shadow Copy service;c:\program files (x86)\Cobian Backup 10\cbVSCService.exe [2010-09-23 67584]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-10-25 119632]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-01-05 2184496]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-10-25 20552]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - affe67fea5f3ec8
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 09:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2012-03-04 c:\windows\Tasks\HPCeeScheduleForEmilie.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 02:53]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-22 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-22 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-01-22 410136]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-14 487424]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-01-24 1066744]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
KR10N
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.be/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 213.30.163.218:3128
mSearchAssistant = hxxp://www.google.fr
IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\users\Emilie\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
IE: Télécharger avec Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm
LSP: mswsock.dll
TCP: DhcpNameServer = 192.168.1.254
DPF: {DAF94F73-2AA6-44D8-A562-A28831820D34} - hxxp://fr.pixum.be/apps/EasyUploadX.cab
FF - ProfilePath - c:\users\Emilie\AppData\Roaming\Mozilla\Firefox\Profiles\fhzrqoxy.Olivier\
FF - prefs.js: browser.startup.homepage - www.google.be
.
- - - - ORPHELINS SUPPRIMES - - - -
.
URLSearchHooks-{ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
URLSearchHooks-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
URLSearchHooks-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Toolbar-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
Toolbar-10 - (no file)
Toolbar-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-10 - (no file)
WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file)
WebBrowser-{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - (no file)
WebBrowser-{BB1227AC-7A0D-4076-8C1A-51A1348F6FA8} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-installer - c:\program files (x86)\Installer\un_installer_21627.exe
AddRemove-Windows Searchqu Toolbar - c:\program files (x86)\Windows Searchqu Toolbar\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\affe67fea5f3ec8]
"ImagePath"="\SystemRoot\System32\Drivers\affe67fea5f3ec8.sys"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Heure de fin: 2012-03-06 08:58:14 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-03-06 07:58
.
Avant-CF: 305.540.554.752 octets libres
Après-CF: 304.744.427.520 octets libres
.
- - End Of File - - B2C7765C79460308A06B353FD47489B0
Re: Pare-feu et Centre de sécurité disparus de la liste de services
Bonjour,
ATTENTION
Cette procédure a été rédigée pour le cas présent, toute copie sur sur un autre système peut entrainer des dysfonctionnements graves.
Ouvre le bloc-notes : Tous les programmes-Accessoire-Bloc-notes
Copie les lignes écrites ci-dessous en citation et colle-les dans le blocnotes.
Veille à ce que Retour à la ligne ne soit pas coché dans Format.
Enregistre-le sous CFScript.txt sur le bureau, fais glisser CFScript.txt dans Combofix.exe
Combofix va se lancer et faire redémarrer l'ordinateur.
Poste le rapport enregistré ici : C:\Combofix
Supprime le rapport ZHPDiag?txt existant et établis-en un nouveau que tu héberges comme le précédent.
@+
ATTENTIONCette procédure a été rédigée pour le cas présent, toute copie sur sur un autre système peut entrainer des dysfonctionnements graves.
Ouvre le bloc-notes : Tous les programmes-Accessoire-Bloc-notes Copie les lignes écrites ci-dessous en citation et colle-les dans le blocnotes.Veille à ce que Retour à la ligne ne soit pas coché dans Format.
File::
c:\programdata\1330708998.bdinstall.bin
c:\programdata\1330545604.bdinstall.bin
c:\programdata\1330544982.5340.bin
c:\programdata\1330544982.5376.bin
c:\programdata\1330544982.5352.bin
c:\programdata\1330544174.bdinstall.bin
c:\programdata\1330466450.bdinstall.bin
c:\programdata\1330465458.4164.bin
c:\programdata\1330465458.1140.bin
c:\programdata\1330465458.5048.bin
c:\programdata\1330465458.4016.bin
c:\programdata\1330465458.4448.bin
c:\programdata\1330465458.3184.bin
c:\programdata\1330465458.3984.bin
c:\users\Emilie\oai4szz4hk.exe
c:\programdata\oai4szz4hk.exe
Enregistre-le sous CFScript.txt sur le bureau, fais glisser CFScript.txt dans Combofix.exeCombofix va se lancer et faire redémarrer l'ordinateur.
Poste le rapport enregistré ici : C:\Combofix
Supprime le rapport ZHPDiag?txt existant et établis-en un nouveau que tu héberges comme le précédent.
@+
En cas de problème constaté sur un sujet, contactez un modérateur par MP. N'intervenez pas vous-même. Merci
Re: Pare-feu et Centre de sécurité disparus de la liste de services
Bonjour,
Suite à la restauration du système après la première analyse de Combofix j'ai dû le réinstaller comme il n'était plus présent. J'ai déplacé le rapport après l'avoir renommé CFScript.txt sur Combofix.exe, cela a eu pour effet de redémarrer un scan avec redémarrage du mon ordi. Une fois redémarrer, plus moyen d'ouvrir le moindre programme, chaque fois un message d'erreur du type :
" C:\Program Files(x86)\Internet Explorer\iexplorer.exe Tentative d'opération non autorisée sur une clé de Registre marquée pour suppression"
Suite à cela, j'ai redémarrer mon ordi qui a fait une nouvelle réparation et restauration du système, ce qui a eu pour effet d'à nouveau supprimer Combofix.exe.
Deux rapports se sont tout de même enregistré.
Le 1er : BDLOG.TXT
2012-02-28 23:27:40.140 PROFILE [Midas stop] [0ms]
2012-02-28 23:27:40.140 PROFILE [StopProxies] [0ms]
2012-02-28 23:27:40.421 PROFILE [Stop Drivers] [281ms]
2012-02-28 23:27:40.421 PROFILE [Unload html] [0ms]
2012-02-28 23:27:40.421 PROFILE [Registration data] [0ms]
2012-02-28 23:27:40.421 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-28 23:27:40.421 PROFILE [GM unload] [0ms]
2012-02-28 23:27:40.421 PROFILE [Vulner uninit] [0ms]
2012-02-28 23:27:40.421 PROFILE [Parental uninit] [0ms]
2012-02-28 23:27:40.421 PROFILE [WSACleanup] [0ms]
2012-02-28 23:27:40.421 PROFILE [Free SF] [1ms]
2012-02-28 23:27:40.421 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-28 23:27:40.421 PROFILE [AntiPh & AS unload] [0ms]
2012-02-28 23:27:40.421 PROFILE [LogUnInit] [0ms]
2012-02-28 23:27:41.918 PROFILE [CM Stop & eventq uninit] [1s:499ms]
2012-02-28 23:27:41.918 PROFILE [npcomm uninit] [0ms]
2012-02-28 23:27:41.918 PROFILE [STOP Received - time] [1s:792ms]
2012-02-28 23:35:08.105 PROFILE [Midas stop] [0ms]
2012-02-28 23:35:08.105 PROFILE [StopProxies] [0ms]
2012-02-28 23:35:08.339 PROFILE [Stop Drivers] [232ms]
2012-02-28 23:35:08.339 PROFILE [Unload html] [0ms]
2012-02-28 23:35:08.339 PROFILE [Registration data] [0ms]
2012-02-28 23:35:08.339 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-28 23:35:08.339 PROFILE [GM unload] [0ms]
2012-02-28 23:35:08.339 PROFILE [Vulner uninit] [0ms]
2012-02-28 23:35:08.339 PROFILE [Parental uninit] [0ms]
2012-02-28 23:35:08.339 PROFILE [WSACleanup] [0ms]
2012-02-28 23:35:08.339 PROFILE [Free SF] [0ms]
2012-02-28 23:35:08.339 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-28 23:35:08.339 PROFILE [AntiPh & AS unload] [0ms]
2012-02-28 23:35:08.339 PROFILE [LogUnInit] [0ms]
2012-02-28 23:35:09.197 PROFILE [CM Stop & eventq uninit] [860ms]
2012-02-28 23:35:09.197 PROFILE [npcomm uninit] [0ms]
2012-02-28 23:35:09.197 PROFILE [STOP Received - time] [1s:95ms]
2012-02-29 00:01:53.272 PROFILE [Midas stop] [0ms]
2012-02-29 00:01:53.272 PROFILE [StopProxies] [0ms]
2012-02-29 00:01:53.335 PROFILE [Stop Drivers] [56ms]
2012-02-29 00:01:53.335 PROFILE [Unload html] [0ms]
2012-02-29 00:01:53.335 PROFILE [Registration data] [0ms]
2012-02-29 00:01:53.335 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 00:01:53.335 PROFILE [GM unload] [0ms]
2012-02-29 00:01:53.335 PROFILE [Vulner uninit] [0ms]
2012-02-29 00:01:53.335 PROFILE [Parental uninit] [0ms]
2012-02-29 00:01:53.335 PROFILE [WSACleanup] [0ms]
2012-02-29 00:01:53.335 PROFILE [Free SF] [1ms]
2012-02-29 00:01:53.335 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 00:01:53.335 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 00:01:53.335 PROFILE [LogUnInit] [0ms]
2012-02-29 00:01:54.395 PROFILE [CM Stop & eventq uninit] [1s:64ms]
2012-02-29 00:01:54.395 PROFILE [npcomm uninit] [0ms]
2012-02-29 00:01:54.395 PROFILE [STOP Received - time] [1s:144ms]
2012-02-29 09:25:25.606 PROFILE [Midas stop] [0ms]
2012-02-29 09:25:25.606 PROFILE [StopProxies] [0ms]
2012-02-29 09:25:26.028 PROFILE [Stop Drivers] [411ms]
2012-02-29 09:25:26.028 PROFILE [Unload html] [0ms]
2012-02-29 09:25:26.028 PROFILE [Registration data] [0ms]
2012-02-29 09:25:26.028 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 09:25:26.028 PROFILE [GM unload] [0ms]
2012-02-29 09:25:26.028 PROFILE [Vulner uninit] [0ms]
2012-02-29 09:25:26.028 PROFILE [Parental uninit] [0ms]
2012-02-29 09:25:26.028 PROFILE [WSACleanup] [0ms]
2012-02-29 09:25:26.028 PROFILE [Free SF] [0ms]
2012-02-29 09:25:26.028 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 09:25:26.028 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 09:25:26.028 PROFILE [LogUnInit] [0ms]
2012-02-29 09:25:28.087 PROFILE [CM Stop & eventq uninit] [2s:57ms]
2012-02-29 09:25:28.087 PROFILE [npcomm uninit] [0ms]
2012-02-29 09:25:28.087 PROFILE [STOP Received - time] [2s:491ms]
2012-02-29 09:52:28.947 PROFILE [Midas stop] [0ms]
2012-02-29 09:52:28.947 PROFILE [StopProxies] [0ms]
2012-02-29 09:52:29.431 PROFILE [Stop Drivers] [484ms]
2012-02-29 09:52:29.431 PROFILE [Unload html] [0ms]
2012-02-29 09:52:29.431 PROFILE [Registration data] [0ms]
2012-02-29 09:52:29.431 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 09:52:29.431 PROFILE [GM unload] [0ms]
2012-02-29 09:52:29.431 PROFILE [Vulner uninit] [0ms]
2012-02-29 09:52:29.431 PROFILE [Parental uninit] [0ms]
2012-02-29 09:52:29.431 PROFILE [WSACleanup] [0ms]
2012-02-29 09:52:29.431 PROFILE [Free SF] [0ms]
2012-02-29 09:52:29.431 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 09:52:29.431 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 09:52:29.431 PROFILE [LogUnInit] [0ms]
2012-02-29 09:52:30.055 PROFILE [CM Stop & eventq uninit] [625ms]
2012-02-29 09:52:30.055 PROFILE [npcomm uninit] [0ms]
2012-02-29 09:52:30.055 PROFILE [STOP Received - time] [1s:140ms]
2012-02-29 10:59:18.503 PROFILE [Midas stop] [0ms]
2012-02-29 10:59:18.503 PROFILE [StopProxies] [0ms]
2012-02-29 10:59:18.753 PROFILE [Stop Drivers] [240ms]
2012-02-29 10:59:18.753 PROFILE [Unload html] [0ms]
2012-02-29 10:59:18.753 PROFILE [Registration data] [0ms]
2012-02-29 10:59:18.753 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 10:59:18.753 PROFILE [GM unload] [0ms]
2012-02-29 10:59:18.753 PROFILE [Vulner uninit] [0ms]
2012-02-29 10:59:18.753 PROFILE [Parental uninit] [0ms]
2012-02-29 10:59:18.753 PROFILE [WSACleanup] [0ms]
2012-02-29 10:59:18.753 PROFILE [Free SF] [0ms]
2012-02-29 10:59:18.753 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 10:59:18.753 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 10:59:18.753 PROFILE [LogUnInit] [0ms]
2012-02-29 10:59:19.627 PROFILE [CM Stop & eventq uninit] [872ms]
2012-02-29 10:59:19.627 PROFILE [npcomm uninit] [0ms]
2012-02-29 10:59:19.627 PROFILE [STOP Received - time] [1s:140ms]
2012-02-29 13:55:46.314 PROFILE [Midas stop] [0ms]
2012-02-29 13:55:46.314 PROFILE [StopProxies] [0ms]
2012-02-29 13:55:46.392 PROFILE [Stop Drivers] [74ms]
2012-02-29 13:55:46.392 PROFILE [Unload html] [0ms]
2012-02-29 13:55:46.392 PROFILE [Registration data] [0ms]
2012-02-29 13:55:46.392 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 13:55:46.392 PROFILE [GM unload] [0ms]
2012-02-29 13:55:46.392 PROFILE [Vulner uninit] [0ms]
2012-02-29 13:55:46.392 PROFILE [Parental uninit] [0ms]
2012-02-29 13:55:46.392 PROFILE [WSACleanup] [0ms]
2012-02-29 13:55:46.392 PROFILE [Free SF] [0ms]
2012-02-29 13:55:46.392 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 13:55:46.392 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 13:55:46.392 PROFILE [LogUnInit] [0ms]
2012-02-29 13:55:47.890 PROFILE [CM Stop & eventq uninit] [1s:495ms]
2012-02-29 13:55:47.890 PROFILE [npcomm uninit] [0ms]
2012-02-29 13:55:47.890 PROFILE [STOP Received - time] [1s:588ms]
2012-02-29 14:58:40.855 PROFILE [Midas stop] [0ms]
2012-02-29 14:58:40.855 PROFILE [StopProxies] [0ms]
2012-02-29 14:58:41.291 PROFILE [Stop Drivers] [424ms]
2012-02-29 14:58:41.291 PROFILE [Unload html] [0ms]
2012-02-29 14:58:41.291 PROFILE [Registration data] [0ms]
2012-02-29 14:58:41.291 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 14:58:41.291 PROFILE [GM unload] [0ms]
2012-02-29 14:58:41.291 PROFILE [Vulner uninit] [0ms]
2012-02-29 14:58:41.291 PROFILE [Parental uninit] [0ms]
2012-02-29 14:58:41.291 PROFILE [WSACleanup] [0ms]
2012-02-29 14:58:41.291 PROFILE [Free SF] [0ms]
2012-02-29 14:58:41.291 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 14:58:41.291 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 14:58:41.291 PROFILE [LogUnInit] [0ms]
2012-02-29 14:58:41.915 PROFILE [CM Stop & eventq uninit] [630ms]
2012-02-29 14:58:41.915 PROFILE [npcomm uninit] [0ms]
2012-02-29 14:58:41.915 PROFILE [STOP Received - time] [1s:67ms]
2012-02-29 17:37:04.990 PROFILE [Midas stop] [0ms]
2012-02-29 17:37:04.990 PROFILE [StopProxies] [0ms]
2012-02-29 17:37:05.380 PROFILE [Stop Drivers] [386ms]
2012-02-29 17:37:05.380 PROFILE [Unload html] [0ms]
2012-02-29 17:37:05.380 PROFILE [Registration data] [0ms]
2012-02-29 17:37:05.380 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 17:37:05.380 PROFILE [GM unload] [0ms]
2012-02-29 17:37:05.380 PROFILE [Vulner uninit] [0ms]
2012-02-29 17:37:05.380 PROFILE [Parental uninit] [0ms]
2012-02-29 17:37:05.380 PROFILE [WSACleanup] [0ms]
2012-02-29 17:37:05.380 PROFILE [Free SF] [0ms]
2012-02-29 17:37:05.380 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 17:37:05.380 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 17:37:05.380 PROFILE [LogUnInit] [0ms]
2012-02-29 17:37:06.113 PROFILE [CM Stop & eventq uninit] [733ms]
2012-02-29 17:37:06.113 PROFILE [npcomm uninit] [0ms]
2012-02-29 17:37:06.113 PROFILE [STOP Received - time] [1s:141ms]
2012-02-29 20:36:28.746 PROFILE [Midas stop] [0ms]
2012-02-29 20:36:28.746 PROFILE [StopProxies] [0ms]
2012-02-29 20:36:28.755 PROFILE [Stop Drivers] [8ms]
2012-02-29 20:36:28.756 PROFILE [Unload html] [0ms]
2012-02-29 20:36:28.756 PROFILE [Registration data] [0ms]
2012-02-29 20:36:28.756 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 20:36:28.756 PROFILE [GM unload] [0ms]
2012-02-29 20:36:28.756 PROFILE [Vulner uninit] [0ms]
2012-02-29 20:36:28.757 PROFILE [Parental uninit] [0ms]
2012-02-29 20:36:28.757 PROFILE [WSACleanup] [0ms]
2012-02-29 20:36:28.759 PROFILE [Free SF] [1ms]
2012-02-29 20:36:28.759 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 20:36:28.759 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 20:36:28.760 PROFILE [LogUnInit] [0ms]
2012-02-29 20:36:29.833 PROFILE [CM Stop & eventq uninit] [1s:73ms]
2012-02-29 20:36:29.833 PROFILE [npcomm uninit] [0ms]
2012-02-29 20:36:29.835 PROFILE [STOP Received - time] [1s:113ms]
2012-02-29 20:43:44.586 PROFILE [Midas stop] [0ms]
2012-02-29 20:43:44.586 PROFILE [StopProxies] [0ms]
2012-02-29 20:43:44.664 PROFILE [Stop Drivers] [77ms]
2012-02-29 20:43:44.664 PROFILE [Unload html] [0ms]
2012-02-29 20:43:44.664 PROFILE [Registration data] [0ms]
2012-02-29 20:43:44.664 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 20:43:44.664 PROFILE [GM unload] [0ms]
2012-02-29 20:43:44.664 PROFILE [Vulner uninit] [0ms]
2012-02-29 20:43:44.664 PROFILE [Parental uninit] [0ms]
2012-02-29 20:43:44.664 PROFILE [WSACleanup] [0ms]
2012-02-29 20:43:44.664 PROFILE [Free SF] [0ms]
2012-02-29 20:43:44.664 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 20:43:44.664 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 20:43:44.664 PROFILE [LogUnInit] [0ms]
2012-02-29 20:43:45.179 PROFILE [CM Stop & eventq uninit] [513ms]
2012-02-29 20:43:45.179 PROFILE [npcomm uninit] [0ms]
2012-02-29 20:43:45.179 PROFILE [STOP Received - time] [593ms]
2012-02-29 20:49:51.857 PROFILE [Midas stop] [0ms]
2012-02-29 20:49:51.857 PROFILE [StopProxies] [0ms]
2012-02-29 20:49:52.115 PROFILE [Stop Drivers] [258ms]
2012-02-29 20:49:52.115 PROFILE [Unload html] [0ms]
2012-02-29 20:49:52.115 PROFILE [Registration data] [0ms]
2012-02-29 20:49:52.115 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 20:49:52.116 PROFILE [GM unload] [0ms]
2012-02-29 20:49:52.116 PROFILE [Vulner uninit] [0ms]
2012-02-29 20:49:52.117 PROFILE [Parental uninit] [0ms]
2012-02-29 20:49:52.117 PROFILE [WSACleanup] [0ms]
2012-02-29 20:49:52.118 PROFILE [Free SF] [0ms]
2012-02-29 20:49:52.118 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 20:49:52.118 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 20:49:52.118 PROFILE [LogUnInit] [0ms]
2012-02-29 20:49:53.667 PROFILE [CM Stop & eventq uninit] [1s:548ms]
2012-02-29 20:49:53.667 PROFILE [npcomm uninit] [0ms]
2012-02-29 20:49:53.702 PROFILE [STOP Received - time] [1s:988ms]
2012-02-29 22:21:26.434 PROFILE [Midas stop] [0ms]
2012-02-29 22:21:26.434 PROFILE [StopProxies] [0ms]
2012-02-29 22:21:26.793 PROFILE [Stop Drivers] [348ms]
2012-02-29 22:21:26.793 PROFILE [Unload html] [0ms]
2012-02-29 22:21:26.793 PROFILE [Registration data] [0ms]
2012-02-29 22:21:26.793 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 22:21:26.793 PROFILE [GM unload] [0ms]
2012-02-29 22:21:26.793 PROFILE [Vulner uninit] [0ms]
2012-02-29 22:21:26.793 PROFILE [Parental uninit] [0ms]
2012-02-29 22:21:26.793 PROFILE [WSACleanup] [0ms]
2012-02-29 22:21:26.793 PROFILE [Free SF] [0ms]
2012-02-29 22:21:26.793 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 22:21:26.793 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 22:21:26.793 PROFILE [LogUnInit] [0ms]
2012-02-29 22:21:27.432 PROFILE [CM Stop & eventq uninit] [637ms]
2012-02-29 22:21:27.432 PROFILE [npcomm uninit] [0ms]
2012-02-29 22:21:27.432 PROFILE [STOP Received - time] [1s:30ms]
2012-03-01 10:42:16.408 PROFILE [Midas stop] [0ms]
2012-03-01 10:42:16.408 PROFILE [StopProxies] [0ms]
2012-03-01 10:42:16.580 PROFILE [Stop Drivers] [159ms]
2012-03-01 10:42:16.580 PROFILE [Unload html] [0ms]
2012-03-01 10:42:16.580 PROFILE [Registration data] [0ms]
2012-03-01 10:42:16.580 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-01 10:42:16.580 PROFILE [GM unload] [0ms]
2012-03-01 10:42:16.580 PROFILE [Vulner uninit] [0ms]
2012-03-01 10:42:16.580 PROFILE [Parental uninit] [0ms]
2012-03-01 10:42:16.580 PROFILE [WSACleanup] [0ms]
2012-03-01 10:42:16.580 PROFILE [Free SF] [4ms]
2012-03-01 10:42:16.580 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-01 10:42:16.580 PROFILE [AntiPh & AS unload] [0ms]
2012-03-01 10:42:16.580 PROFILE [LogUnInit] [0ms]
2012-03-01 10:42:17.438 PROFILE [CM Stop & eventq uninit] [853ms]
2012-03-01 10:42:17.438 PROFILE [npcomm uninit] [0ms]
2012-03-01 10:42:17.438 PROFILE [STOP Received - time] [1s:76ms]
2012-03-01 22:01:38.682 PROFILE [Midas stop] [0ms]
2012-03-01 22:01:38.682 PROFILE [StopProxies] [0ms]
2012-03-01 22:01:39.291 PROFILE [Stop Drivers] [607ms]
2012-03-01 22:01:39.307 PROFILE [Unload html] [16ms]
2012-03-01 22:01:39.307 PROFILE [Registration data] [0ms]
2012-03-01 22:01:39.307 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-01 22:01:39.307 PROFILE [GM unload] [0ms]
2012-03-01 22:01:39.307 PROFILE [Vulner uninit] [0ms]
2012-03-01 22:01:39.338 PROFILE [Parental uninit] [0ms]
2012-03-01 22:01:39.338 PROFILE [WSACleanup] [0ms]
2012-03-01 22:01:39.338 PROFILE [Free SF] [1ms]
2012-03-01 22:01:39.338 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-01 22:01:39.338 PROFILE [AntiPh & AS unload] [0ms]
2012-03-01 22:01:39.338 PROFILE [LogUnInit] [0ms]
2012-03-01 22:01:41.179 PROFILE [CM Stop & eventq uninit] [1s:829ms]
2012-03-01 22:01:41.179 PROFILE [npcomm uninit] [0ms]
2012-03-01 22:01:41.179 PROFILE [STOP Received - time] [2s:530ms]
2012-03-02 18:23:27.510 PROFILE [Midas stop] [0ms]
2012-03-02 18:23:27.510 PROFILE [StopProxies] [0ms]
2012-03-02 18:23:27.979 PROFILE [Stop Drivers] [468ms]
2012-03-02 18:23:27.979 PROFILE [Unload html] [0ms]
2012-03-02 18:23:27.979 PROFILE [Registration data] [0ms]
2012-03-02 18:23:27.979 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-02 18:23:27.979 PROFILE [GM unload] [0ms]
2012-03-02 18:23:27.980 PROFILE [Vulner uninit] [0ms]
2012-03-02 18:23:27.981 PROFILE [Parental uninit] [0ms]
2012-03-02 18:23:27.981 PROFILE [WSACleanup] [0ms]
2012-03-02 18:23:27.983 PROFILE [Free SF] [1ms]
2012-03-02 18:23:27.983 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-02 18:23:27.983 PROFILE [AntiPh & AS unload] [0ms]
2012-03-02 18:23:27.984 PROFILE [LogUnInit] [0ms]
2012-03-02 18:23:28.633 PROFILE [CM Stop & eventq uninit] [649ms]
2012-03-02 18:23:28.633 PROFILE [npcomm uninit] [0ms]
2012-03-02 18:23:28.635 PROFILE [STOP Received - time] [1s:184ms]
2012-03-02 23:34:44.344 PROFILE [Midas stop] [0ms]
2012-03-02 23:34:44.344 PROFILE [StopProxies] [0ms]
2012-03-02 23:34:44.594 PROFILE [Stop Drivers] [247ms]
2012-03-02 23:34:44.594 PROFILE [Unload html] [0ms]
2012-03-02 23:34:44.594 PROFILE [Registration data] [0ms]
2012-03-02 23:34:44.594 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-02 23:34:44.594 PROFILE [GM unload] [0ms]
2012-03-02 23:34:44.594 PROFILE [Vulner uninit] [0ms]
2012-03-02 23:34:44.594 PROFILE [Parental uninit] [0ms]
2012-03-02 23:34:44.594 PROFILE [WSACleanup] [0ms]
2012-03-02 23:34:44.594 PROFILE [Free SF] [0ms]
2012-03-02 23:34:44.594 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-02 23:34:44.594 PROFILE [AntiPh & AS unload] [0ms]
2012-03-02 23:34:44.594 PROFILE [LogUnInit] [0ms]
2012-03-02 23:34:44.594 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-02 23:34:44.594 PROFILE [npcomm uninit] [0ms]
2012-03-02 23:34:44.594 PROFILE [STOP Received - time] [420ms]
2012-03-03 12:35:43.417 PROFILE [Midas stop] [0ms]
2012-03-03 12:35:43.417 PROFILE [StopProxies] [0ms]
2012-03-03 12:35:43.651 PROFILE [Stop Drivers] [224ms]
2012-03-03 12:35:43.667 PROFILE [Unload html] [17ms]
2012-03-03 12:35:43.667 PROFILE [Registration data] [0ms]
2012-03-03 12:35:43.667 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-03 12:35:43.667 PROFILE [GM unload] [0ms]
2012-03-03 12:35:43.667 PROFILE [Vulner uninit] [0ms]
2012-03-03 12:35:43.667 PROFILE [Parental uninit] [0ms]
2012-03-03 12:35:43.667 PROFILE [WSACleanup] [0ms]
2012-03-03 12:35:43.667 PROFILE [Free SF] [0ms]
2012-03-03 12:35:43.667 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-03 12:35:43.667 PROFILE [AntiPh & AS unload] [0ms]
2012-03-03 12:35:43.682 PROFILE [LogUnInit] [0ms]
2012-03-03 12:35:43.682 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-03 12:35:43.682 PROFILE [npcomm uninit] [0ms]
2012-03-03 12:35:43.682 PROFILE [STOP Received - time] [313ms]
2012-03-03 23:04:25.198 PROFILE [Midas stop] [0ms]
2012-03-03 23:04:25.198 PROFILE [StopProxies] [0ms]
2012-03-03 23:04:25.510 PROFILE [Stop Drivers] [312ms]
2012-03-03 23:04:25.510 PROFILE [Unload html] [0ms]
2012-03-03 23:04:25.510 PROFILE [Registration data] [0ms]
2012-03-03 23:04:25.510 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-03 23:04:25.510 PROFILE [GM unload] [0ms]
2012-03-03 23:04:25.510 PROFILE [Vulner uninit] [0ms]
2012-03-03 23:04:25.510 PROFILE [Parental uninit] [0ms]
2012-03-03 23:04:25.510 PROFILE [WSACleanup] [0ms]
2012-03-03 23:04:25.510 PROFILE [Free SF] [0ms]
2012-03-03 23:04:25.510 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-03 23:04:25.510 PROFILE [AntiPh & AS unload] [0ms]
2012-03-03 23:04:25.510 PROFILE [LogUnInit] [0ms]
2012-03-03 23:04:25.510 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-03 23:04:25.510 PROFILE [npcomm uninit] [0ms]
2012-03-03 23:04:25.510 PROFILE [STOP Received - time] [314ms]
2012-03-04 08:50:04.336 PROFILE [Midas stop] [0ms]
2012-03-04 08:50:04.336 PROFILE [StopProxies] [0ms]
2012-03-04 08:50:04.913 PROFILE [Stop Drivers] [566ms]
2012-03-04 08:50:04.913 PROFILE [Unload html] [0ms]
2012-03-04 08:50:04.913 PROFILE [Registration data] [0ms]
2012-03-04 08:50:04.913 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-04 08:50:04.913 PROFILE [GM unload] [0ms]
2012-03-04 08:50:04.913 PROFILE [Vulner uninit] [0ms]
2012-03-04 08:50:04.913 PROFILE [Parental uninit] [0ms]
2012-03-04 08:50:04.913 PROFILE [WSACleanup] [0ms]
2012-03-04 08:50:04.913 PROFILE [Free SF] [0ms]
2012-03-04 08:50:04.913 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-04 08:50:04.913 PROFILE [AntiPh & AS unload] [0ms]
2012-03-04 08:50:04.913 PROFILE [LogUnInit] [0ms]
2012-03-04 08:50:04.913 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-04 08:50:04.913 PROFILE [npcomm uninit] [0ms]
2012-03-04 08:50:04.913 PROFILE [STOP Received - time] [648ms]
2012-03-04 21:47:29.100 PROFILE [Midas stop] [0ms]
2012-03-04 21:47:29.100 PROFILE [StopProxies] [0ms]
2012-03-04 21:47:29.444 PROFILE [Stop Drivers] [328ms]
2012-03-04 21:47:29.444 PROFILE [Unload html] [0ms]
2012-03-04 21:47:29.444 PROFILE [Registration data] [0ms]
2012-03-04 21:47:29.444 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-04 21:47:29.444 PROFILE [GM unload] [0ms]
2012-03-04 21:47:29.444 PROFILE [Vulner uninit] [0ms]
2012-03-04 21:47:29.444 PROFILE [Parental uninit] [0ms]
2012-03-04 21:47:29.444 PROFILE [WSACleanup] [0ms]
2012-03-04 21:47:29.444 PROFILE [Free SF] [0ms]
2012-03-04 21:47:29.444 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-04 21:47:29.444 PROFILE [AntiPh & AS unload] [0ms]
2012-03-04 21:47:29.444 PROFILE [LogUnInit] [0ms]
2012-03-04 21:47:29.444 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-04 21:47:29.444 PROFILE [npcomm uninit] [0ms]
2012-03-04 21:47:29.444 PROFILE [STOP Received - time] [358ms]
2012-03-04 22:45:42.311 PROFILE [Midas stop] [0ms]
2012-03-04 22:45:42.311 PROFILE [StopProxies] [0ms]
2012-03-04 22:45:43.278 PROFILE [Stop Drivers] [957ms]
2012-03-04 22:45:43.278 PROFILE [Unload html] [0ms]
2012-03-04 22:45:43.278 PROFILE [Registration data] [0ms]
2012-03-04 22:45:43.278 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-04 22:45:43.278 PROFILE [GM unload] [0ms]
2012-03-04 22:45:43.278 PROFILE [Vulner uninit] [0ms]
2012-03-04 22:45:43.278 PROFILE [Parental uninit] [0ms]
2012-03-04 22:45:43.278 PROFILE [WSACleanup] [0ms]
2012-03-04 22:45:43.278 PROFILE [Free SF] [0ms]
2012-03-04 22:45:43.278 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-04 22:45:43.278 PROFILE [AntiPh & AS unload] [0ms]
2012-03-04 22:45:43.278 PROFILE [LogUnInit] [0ms]
2012-03-04 22:45:43.278 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-04 22:45:43.278 PROFILE [npcomm uninit] [0ms]
2012-03-04 22:45:43.278 PROFILE [STOP Received - time] [1s:199ms]
2012-03-04 23:19:39.946 PROFILE [Midas stop] [0ms]
2012-03-04 23:19:39.946 PROFILE [StopProxies] [0ms]
2012-03-04 23:19:40.461 PROFILE [Stop Drivers] [508ms]
2012-03-04 23:19:40.461 PROFILE [Unload html] [0ms]
2012-03-04 23:19:40.461 PROFILE [Registration data] [0ms]
2012-03-04 23:19:40.461 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-04 23:19:40.461 PROFILE [GM unload] [0ms]
2012-03-04 23:19:40.461 PROFILE [Vulner uninit] [0ms]
2012-03-04 23:19:40.461 PROFILE [Parental uninit] [0ms]
2012-03-04 23:19:40.461 PROFILE [WSACleanup] [0ms]
2012-03-04 23:19:40.461 PROFILE [Free SF] [0ms]
2012-03-04 23:19:40.461 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-04 23:19:40.461 PROFILE [AntiPh & AS unload] [0ms]
2012-03-04 23:19:40.461 PROFILE [LogUnInit] [0ms]
2012-03-04 23:19:40.461 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-04 23:19:40.461 PROFILE [npcomm uninit] [0ms]
2012-03-04 23:19:40.461 PROFILE [STOP Received - time] [561ms]
2012-03-05 13:22:41.026 PROFILE [Midas stop] [0ms]
2012-03-05 13:22:41.026 PROFILE [StopProxies] [0ms]
2012-03-05 13:22:41.307 PROFILE [Stop Drivers] [276ms]
2012-03-05 13:22:41.307 PROFILE [Unload html] [0ms]
2012-03-05 13:22:41.307 PROFILE [Registration data] [0ms]
2012-03-05 13:22:41.307 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 13:22:41.307 PROFILE [GM unload] [0ms]
2012-03-05 13:22:41.307 PROFILE [Vulner uninit] [0ms]
2012-03-05 13:22:41.307 PROFILE [Parental uninit] [0ms]
2012-03-05 13:22:41.307 PROFILE [WSACleanup] [0ms]
2012-03-05 13:22:41.307 PROFILE [Free SF] [0ms]
2012-03-05 13:22:41.307 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 13:22:41.307 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 13:22:41.307 PROFILE [LogUnInit] [0ms]
2012-03-05 13:22:41.307 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 13:22:41.307 PROFILE [npcomm uninit] [0ms]
2012-03-05 13:22:41.307 PROFILE [STOP Received - time] [311ms]
2012-03-05 13:31:19.176 PROFILE [Midas stop] [0ms]
2012-03-05 13:31:19.176 PROFILE [StopProxies] [0ms]
2012-03-05 13:31:19.301 PROFILE [Stop Drivers] [122ms]
2012-03-05 13:31:19.301 PROFILE [Unload html] [0ms]
2012-03-05 13:31:19.301 PROFILE [Registration data] [0ms]
2012-03-05 13:31:19.301 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 13:31:19.301 PROFILE [GM unload] [0ms]
2012-03-05 13:31:19.301 PROFILE [Vulner uninit] [4ms]
2012-03-05 13:31:19.301 PROFILE [Parental uninit] [0ms]
2012-03-05 13:31:19.301 PROFILE [WSACleanup] [0ms]
2012-03-05 13:31:19.301 PROFILE [Free SF] [0ms]
2012-03-05 13:31:19.301 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 13:31:19.301 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 13:31:19.301 PROFILE [LogUnInit] [0ms]
2012-03-05 13:31:19.301 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 13:31:19.301 PROFILE [npcomm uninit] [0ms]
2012-03-05 13:31:19.301 PROFILE [STOP Received - time] [207ms]
2012-03-05 13:38:40.883 PROFILE [Midas stop] [0ms]
2012-03-05 13:38:40.883 PROFILE [StopProxies] [0ms]
2012-03-05 13:38:41.304 PROFILE [Stop Drivers] [410ms]
2012-03-05 13:38:41.304 PROFILE [Unload html] [0ms]
2012-03-05 13:38:41.304 PROFILE [Registration data] [0ms]
2012-03-05 13:38:41.304 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 13:38:41.304 PROFILE [GM unload] [0ms]
2012-03-05 13:38:41.320 PROFILE [Vulner uninit] [16ms]
2012-03-05 13:38:41.320 PROFILE [Parental uninit] [0ms]
2012-03-05 13:38:41.320 PROFILE [WSACleanup] [0ms]
2012-03-05 13:38:41.320 PROFILE [Free SF] [0ms]
2012-03-05 13:38:41.320 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 13:38:41.320 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 13:38:41.320 PROFILE [LogUnInit] [0ms]
2012-03-05 13:38:41.320 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 13:38:41.320 PROFILE [npcomm uninit] [0ms]
2012-03-05 13:38:41.320 PROFILE [STOP Received - time] [545ms]
2012-03-05 14:10:15.590 PROFILE [Midas stop] [0ms]
2012-03-05 14:10:15.590 PROFILE [StopProxies] [0ms]
2012-03-05 14:10:15.980 PROFILE [Stop Drivers] [384ms]
2012-03-05 14:10:15.980 PROFILE [Unload html] [0ms]
2012-03-05 14:10:15.980 PROFILE [Registration data] [0ms]
2012-03-05 14:10:15.980 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 14:10:15.980 PROFILE [GM unload] [0ms]
2012-03-05 14:10:15.980 PROFILE [Vulner uninit] [0ms]
2012-03-05 14:10:15.980 PROFILE [Parental uninit] [0ms]
2012-03-05 14:10:15.980 PROFILE [WSACleanup] [0ms]
2012-03-05 14:10:15.980 PROFILE [Free SF] [0ms]
2012-03-05 14:10:15.980 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 14:10:15.980 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 14:10:15.980 PROFILE [LogUnInit] [0ms]
2012-03-05 14:10:15.980 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 14:10:15.980 PROFILE [npcomm uninit] [0ms]
2012-03-05 14:10:15.980 PROFILE [STOP Received - time] [451ms]
2012-03-05 19:10:20.292 PROFILE [Midas stop] [0ms]
2012-03-05 19:10:20.292 PROFILE [StopProxies] [0ms]
2012-03-05 19:10:20.620 PROFILE [Stop Drivers] [327ms]
2012-03-05 19:10:20.620 PROFILE [Unload html] [0ms]
2012-03-05 19:10:20.620 PROFILE [Registration data] [0ms]
2012-03-05 19:10:20.620 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 19:10:20.620 PROFILE [GM unload] [0ms]
2012-03-05 19:10:20.620 PROFILE [Vulner uninit] [0ms]
2012-03-05 19:10:20.620 PROFILE [Parental uninit] [0ms]
2012-03-05 19:10:20.620 PROFILE [WSACleanup] [0ms]
2012-03-05 19:10:20.620 PROFILE [Free SF] [0ms]
2012-03-05 19:10:20.620 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 19:10:20.620 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 19:10:20.620 PROFILE [LogUnInit] [0ms]
2012-03-05 19:10:20.620 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 19:10:20.620 PROFILE [npcomm uninit] [0ms]
2012-03-05 19:10:20.620 PROFILE [STOP Received - time] [377ms]
2012-03-05 22:34:12.436 PROFILE [Midas stop] [0ms]
2012-03-05 22:34:12.436 PROFILE [StopProxies] [0ms]
2012-03-05 22:34:12.685 PROFILE [Stop Drivers] [241ms]
2012-03-05 22:34:12.685 PROFILE [Unload html] [0ms]
2012-03-05 22:34:12.685 PROFILE [Registration data] [0ms]
2012-03-05 22:34:12.685 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 22:34:12.685 PROFILE [GM unload] [0ms]
2012-03-05 22:34:12.685 PROFILE [Vulner uninit] [0ms]
2012-03-05 22:34:12.685 PROFILE [Parental uninit] [0ms]
2012-03-05 22:34:12.685 PROFILE [WSACleanup] [0ms]
2012-03-05 22:34:12.685 PROFILE [Free SF] [0ms]
2012-03-05 22:34:12.685 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 22:34:12.685 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 22:34:12.685 PROFILE [LogUnInit] [0ms]
2012-03-05 22:34:12.685 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 22:34:12.685 PROFILE [npcomm uninit] [0ms]
2012-03-05 22:34:12.685 PROFILE [STOP Received - time] [265ms]
2012-03-06 08:52:34.219 PROFILE [Midas stop] [0ms]
2012-03-06 08:52:34.219 PROFILE [StopProxies] [0ms]
2012-03-06 08:52:34.625 PROFILE [Stop Drivers] [403ms]
2012-03-06 08:52:34.625 PROFILE [Unload html] [0ms]
2012-03-06 08:52:34.625 PROFILE [Registration data] [0ms]
2012-03-06 08:52:34.625 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 08:52:34.625 PROFILE [GM unload] [0ms]
2012-03-06 08:52:34.625 PROFILE [Vulner uninit] [0ms]
2012-03-06 08:52:34.625 PROFILE [Parental uninit] [0ms]
2012-03-06 08:52:34.625 PROFILE [WSACleanup] [0ms]
2012-03-06 08:52:34.625 PROFILE [Free SF] [0ms]
2012-03-06 08:52:34.625 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 08:52:34.625 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 08:52:34.625 PROFILE [LogUnInit] [0ms]
2012-03-06 08:52:34.625 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 08:52:34.625 PROFILE [npcomm uninit] [0ms]
2012-03-06 08:52:34.625 PROFILE [STOP Received - time] [405ms]
2012-03-06 09:01:32.936 PROFILE [Midas stop] [0ms]
2012-03-06 09:01:32.936 PROFILE [StopProxies] [0ms]
2012-03-06 09:01:33.155 PROFILE [Stop Drivers] [213ms]
2012-03-06 09:01:33.155 PROFILE [Unload html] [0ms]
2012-03-06 09:01:33.155 PROFILE [Registration data] [0ms]
2012-03-06 09:01:33.155 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 09:01:33.155 PROFILE [GM unload] [0ms]
2012-03-06 09:01:33.155 PROFILE [Vulner uninit] [0ms]
2012-03-06 09:01:33.155 PROFILE [Parental uninit] [0ms]
2012-03-06 09:01:33.155 PROFILE [WSACleanup] [0ms]
2012-03-06 09:01:33.155 PROFILE [Free SF] [0ms]
2012-03-06 09:01:33.155 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 09:01:33.155 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 09:01:33.155 PROFILE [LogUnInit] [0ms]
2012-03-06 09:01:33.155 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 09:01:33.155 PROFILE [npcomm uninit] [0ms]
2012-03-06 09:01:33.155 PROFILE [STOP Received - time] [232ms]
2012-03-06 09:30:25.090 PROFILE [Midas stop] [0ms]
2012-03-06 09:30:25.090 PROFILE [StopProxies] [0ms]
2012-03-06 09:30:25.714 PROFILE [Stop Drivers] [615ms]
2012-03-06 09:30:25.714 PROFILE [Unload html] [0ms]
2012-03-06 09:30:25.714 PROFILE [Registration data] [0ms]
2012-03-06 09:30:25.714 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 09:30:25.714 PROFILE [GM unload] [0ms]
2012-03-06 09:30:25.714 PROFILE [Vulner uninit] [0ms]
2012-03-06 09:30:25.714 PROFILE [Parental uninit] [0ms]
2012-03-06 09:30:25.714 PROFILE [WSACleanup] [0ms]
2012-03-06 09:30:25.714 PROFILE [Free SF] [0ms]
2012-03-06 09:30:25.714 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 09:30:25.714 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 09:30:25.714 PROFILE [LogUnInit] [0ms]
2012-03-06 09:30:25.714 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 09:30:25.714 PROFILE [npcomm uninit] [0ms]
2012-03-06 09:30:25.714 PROFILE [STOP Received - time] [639ms]
2012-03-06 14:59:11.036 PROFILE [Midas stop] [0ms]
2012-03-06 14:59:11.036 PROFILE [StopProxies] [0ms]
2012-03-06 14:59:11.192 PROFILE [Stop Drivers] [153ms]
2012-03-06 14:59:11.192 PROFILE [Unload html] [0ms]
2012-03-06 14:59:11.192 PROFILE [Registration data] [0ms]
2012-03-06 14:59:11.192 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 14:59:11.192 PROFILE [GM unload] [0ms]
2012-03-06 14:59:11.192 PROFILE [Vulner uninit] [0ms]
2012-03-06 14:59:11.192 PROFILE [Parental uninit] [0ms]
2012-03-06 14:59:11.192 PROFILE [WSACleanup] [0ms]
2012-03-06 14:59:11.192 PROFILE [Free SF] [0ms]
2012-03-06 14:59:11.192 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 14:59:11.192 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 14:59:11.192 PROFILE [LogUnInit] [0ms]
2012-03-06 14:59:11.192 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 14:59:11.192 PROFILE [npcomm uninit] [0ms]
2012-03-06 14:59:11.192 PROFILE [STOP Received - time] [155ms]
2012-03-06 15:08:33.787 PROFILE [Midas stop] [0ms]
2012-03-06 15:08:33.787 PROFILE [StopProxies] [0ms]
2012-03-06 15:08:33.974 PROFILE [Stop Drivers] [184ms]
2012-03-06 15:08:33.974 PROFILE [Unload html] [0ms]
2012-03-06 15:08:33.974 PROFILE [Registration data] [0ms]
2012-03-06 15:08:33.974 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 15:08:33.974 PROFILE [GM unload] [0ms]
2012-03-06 15:08:33.974 PROFILE [Vulner uninit] [0ms]
2012-03-06 15:08:33.974 PROFILE [Parental uninit] [0ms]
2012-03-06 15:08:33.974 PROFILE [WSACleanup] [0ms]
2012-03-06 15:08:33.974 PROFILE [Free SF] [0ms]
2012-03-06 15:08:33.974 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 15:08:33.974 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 15:08:33.974 PROFILE [LogUnInit] [0ms]
2012-03-06 15:08:33.974 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 15:08:33.974 PROFILE [npcomm uninit] [0ms]
2012-03-06 15:08:33.974 PROFILE [STOP Received - time] [202ms]
Le second: ComboFix.TXT
ComboFix 12-03-04.02 - Emilie 06/03/2012 14:34:44.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.32.1036.18.5942.4413 [GMT 1:00]
Lancé depuis: c:\users\Emilie\Desktop\ComboFix.exe
Commutateurs utilisés :: c:\users\Emilie\Desktop\CFScript.txt
AV: Norton 360 *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Emilie\AppData\Roaming\inst.exe
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\assembly\temp\@
c:\windows\assembly\temp\cfg.ini
c:\windows\system32\consrv.dll
c:\windows\System64
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-02-06 au 2012-03-06 ))))))))))))))))))))))))))))))))))))
.
.
2012-03-05 20:29 . 2012-03-06 17:06 -------- d-----w- c:\program files (x86)\Cobian Backup 10
2012-03-05 13:13 . 2012-03-05 13:14 -------- d-----w- c:\users\Emilie\DoctorWeb
2012-03-04 07:49 . 2012-03-04 07:49 63 ----a-w- c:\windows\DeleteOnReboot.bat
2012-03-03 19:44 . 2012-03-03 19:49 -------- d-----w- C:\ZHP
2012-03-03 19:43 . 2012-03-03 19:48 -------- d-----w- c:\program files (x86)\ZHPDiag
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792059.bdinstall.bin
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792028.bdinstall.bin
2012-03-02 22:27 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-02 22:23 . 2012-03-02 22:23 -------- d-----w- c:\users\Emilie\AppData\Roaming\Bitdefender
2012-03-02 22:07 . 2012-03-02 22:09 -------- d-----w- c:\windows\system32\MpEngineStore
2012-03-02 20:03 . 2012-03-02 22:27 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-03-02 17:24 . 2012-03-02 17:24 154622 ----a-w- c:\programdata\1330708998.bdinstall.bin
2012-03-01 07:59 . 2012-03-01 07:59 -------- d-----w- c:\windows\system32\25DB~1
2012-02-29 20:08 . 2012-02-29 20:08 273351 ----a-w- c:\programdata\1330545604.bdinstall.bin
2012-02-29 19:49 . 2012-02-29 19:50 7203 ----a-w- c:\programdata\1330544982.5340.bin
2012-02-29 19:49 . 2012-02-29 19:50 45079 ----a-w- c:\programdata\1330544982.5376.bin
2012-02-29 19:49 . 2012-02-29 19:49 5679 ----a-w- c:\programdata\1330544982.5352.bin
2012-02-29 19:43 . 2012-02-29 19:43 249578 ----a-w- c:\programdata\1330544174.bdinstall.bin
2012-02-28 22:43 . 2012-02-28 22:43 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-02-28 22:41 . 2012-03-03 07:20 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-02-28 22:41 . 2012-02-28 22:41 -------- d-----r- c:\program files (x86)\Skype
2012-02-28 22:10 . 2012-02-28 22:10 296788 ----a-w- c:\programdata\1330466450.bdinstall.bin
2012-02-28 22:09 . 2012-02-28 22:09 -------- d-----w- c:\programdata\BDLogging
2012-02-28 22:09 . 2012-03-02 22:22 -------- d-----w- c:\programdata\Bitdefender
2012-02-28 21:47 . 2012-02-28 21:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\QuickScan
2012-02-28 21:45 . 2012-03-03 07:20 -------- d-----w- c:\program files\Bitdefender
2012-02-28 21:45 . 2012-02-28 21:50 31343 ----a-w- c:\programdata\1330465458.4164.bin
2012-02-28 21:45 . 2012-02-28 21:45 4410 ----a-w- c:\programdata\1330465458.1140.bin
2012-02-28 21:44 . 2012-02-28 21:49 9235 ----a-w- c:\programdata\1330465458.5048.bin
2012-02-28 21:44 . 2012-02-28 21:47 1698 ----a-w- c:\programdata\1330465458.4016.bin
2012-02-28 21:44 . 2012-02-28 21:46 1670 ----a-w- c:\programdata\1330465458.4448.bin
2012-02-28 21:44 . 2011-10-27 13:07 329800 ----a-w- c:\windows\system32\drivers\trufos.sys
2012-02-28 21:44 . 2011-08-16 12:59 442088 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys
2012-02-28 21:44 . 2012-02-28 21:56 155819 ----a-w- c:\programdata\1330465458.3184.bin
2012-02-28 21:44 . 2012-02-28 21:55 350589 ----a-w- c:\programdata\1330465458.3984.bin
2012-02-28 21:43 . 2012-03-03 07:20 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-02-24 15:33 . 2012-02-24 15:33 -------- d-----w- C:\avrescue
2012-02-24 08:54 . 2012-02-24 08:54 -------- d-----w- c:\users\Emilie\AppData\Roaming\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\programdata\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\program files (x86)\Avira
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\users\Emilie\AppData\Roaming\Malwarebytes
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\programdata\Malwarebytes
2012-02-21 23:17 . 1998-09-30 11:24 242448 ----a-w- c:\windows\system32\scedll.dll
2012-02-21 23:17 . 1998-03-31 15:37 29968 ----a-w- c:\windows\system32\Rshx32_5.dll
2012-02-21 22:41 . 2011-09-06 21:45 254400 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-21 22:41 . 2012-02-24 08:37 -------- d-----w- c:\programdata\AVAST Software
2012-02-21 22:41 . 2012-02-21 22:41 -------- d-----w- c:\program files\AVAST Software
2012-02-10 16:10 . 2012-02-21 23:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\panel
2012-02-07 08:30 . 2012-02-06 19:39 28672 ----a-w- c:\users\Emilie\oai4szz4hk.exe
2012-02-06 19:39 . 2012-02-06 19:39 28672 ----a-w- c:\programdata\oai4szz4hk.exe
2012-02-06 19:29 . 2012-03-06 13:27 0 --sha-w- c:\windows\system32\dds_trash_log.cmd
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-10 14:05 . 2012-01-20 17:37 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-26 23:52 . 2010-12-25 10:20 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-18 16:16 . 2012-01-18 16:16 544552 ----a-w- c:\windows\system32\drivers\avckf.sys
2012-01-18 16:16 . 2012-01-18 16:16 691384 ----a-w- c:\windows\system32\drivers\avc3.sys
2012-01-06 05:15 . 2012-02-03 08:48 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5455C4D4-1FFE-4761-A060-92FFD8EDF170}\mpengine.dll
2011-12-08 12:28 . 2012-01-13 21:32 311296 ----a-w- c:\windows\SysWow64\TubeFinder.exe
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-01-27 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-01-25 61112]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-14 90192]
R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
R2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-01-23 62512]
R3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-30 136824]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-10-25 119632]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-01-05 2184496]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-10-25 20552]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - affe67fea5f3ec8
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 09:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2012-03-04 c:\windows\Tasks\HPCeeScheduleForEmilie.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 02:53]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-22 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-22 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-01-22 410136]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-14 487424]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-01-24 1066744]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
KR10N
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.be/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 213.30.163.218:3128
mSearchAssistant = hxxp://www.google.fr
IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\users\Emilie\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
IE: Télécharger avec Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm
LSP: mswsock.dll
TCP: DhcpNameServer = 192.168.1.254
DPF: {DAF94F73-2AA6-44D8-A562-A28831820D34} - hxxp://fr.pixum.be/apps/EasyUploadX.cab
FF - ProfilePath - c:\users\Emilie\AppData\Roaming\Mozilla\Firefox\Profiles\fhzrqoxy.Olivier\
FF - prefs.js: browser.startup.homepage - http://www.google.be
.
- - - - ORPHELINS SUPPRIMES - - - -
.
URLSearchHooks-{ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
URLSearchHooks-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
URLSearchHooks-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Toolbar-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
Toolbar-10 - (no file)
Toolbar-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-10 - (no file)
WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file)
WebBrowser-{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - (no file)
WebBrowser-{BB1227AC-7A0D-4076-8C1A-51A1348F6FA8} - (no file)
AddRemove-installer - c:\program files (x86)\Installer\un_installer_21627.exe
AddRemove-Windows Searchqu Toolbar - c:\program files (x86)\Windows Searchqu Toolbar\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\affe67fea5f3ec8]
"ImagePath"="\SystemRoot\System32\Drivers\affe67fea5f3ec8.sys"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Heure de fin: 2012-03-06 15:04:42 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-03-06 14:04
.
Avant-CF: 305.006.530.560 octets libres
Après-CF: 304.766.644.224 octets libres
.
- - End Of File - - C94C2FF81997D656B8CA112A8AE44824
Je fais lancer ZHPDiag et poser le rapport.
@+
Suite à la restauration du système après la première analyse de Combofix j'ai dû le réinstaller comme il n'était plus présent. J'ai déplacé le rapport après l'avoir renommé CFScript.txt sur Combofix.exe, cela a eu pour effet de redémarrer un scan avec redémarrage du mon ordi. Une fois redémarrer, plus moyen d'ouvrir le moindre programme, chaque fois un message d'erreur du type :
" C:\Program Files(x86)\Internet Explorer\iexplorer.exe Tentative d'opération non autorisée sur une clé de Registre marquée pour suppression"
Suite à cela, j'ai redémarrer mon ordi qui a fait une nouvelle réparation et restauration du système, ce qui a eu pour effet d'à nouveau supprimer Combofix.exe.
Deux rapports se sont tout de même enregistré.
Le 1er : BDLOG.TXT
2012-02-28 23:27:40.140 PROFILE [Midas stop] [0ms]
2012-02-28 23:27:40.140 PROFILE [StopProxies] [0ms]
2012-02-28 23:27:40.421 PROFILE [Stop Drivers] [281ms]
2012-02-28 23:27:40.421 PROFILE [Unload html] [0ms]
2012-02-28 23:27:40.421 PROFILE [Registration data] [0ms]
2012-02-28 23:27:40.421 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-28 23:27:40.421 PROFILE [GM unload] [0ms]
2012-02-28 23:27:40.421 PROFILE [Vulner uninit] [0ms]
2012-02-28 23:27:40.421 PROFILE [Parental uninit] [0ms]
2012-02-28 23:27:40.421 PROFILE [WSACleanup] [0ms]
2012-02-28 23:27:40.421 PROFILE [Free SF] [1ms]
2012-02-28 23:27:40.421 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-28 23:27:40.421 PROFILE [AntiPh & AS unload] [0ms]
2012-02-28 23:27:40.421 PROFILE [LogUnInit] [0ms]
2012-02-28 23:27:41.918 PROFILE [CM Stop & eventq uninit] [1s:499ms]
2012-02-28 23:27:41.918 PROFILE [npcomm uninit] [0ms]
2012-02-28 23:27:41.918 PROFILE [STOP Received - time] [1s:792ms]
2012-02-28 23:35:08.105 PROFILE [Midas stop] [0ms]
2012-02-28 23:35:08.105 PROFILE [StopProxies] [0ms]
2012-02-28 23:35:08.339 PROFILE [Stop Drivers] [232ms]
2012-02-28 23:35:08.339 PROFILE [Unload html] [0ms]
2012-02-28 23:35:08.339 PROFILE [Registration data] [0ms]
2012-02-28 23:35:08.339 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-28 23:35:08.339 PROFILE [GM unload] [0ms]
2012-02-28 23:35:08.339 PROFILE [Vulner uninit] [0ms]
2012-02-28 23:35:08.339 PROFILE [Parental uninit] [0ms]
2012-02-28 23:35:08.339 PROFILE [WSACleanup] [0ms]
2012-02-28 23:35:08.339 PROFILE [Free SF] [0ms]
2012-02-28 23:35:08.339 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-28 23:35:08.339 PROFILE [AntiPh & AS unload] [0ms]
2012-02-28 23:35:08.339 PROFILE [LogUnInit] [0ms]
2012-02-28 23:35:09.197 PROFILE [CM Stop & eventq uninit] [860ms]
2012-02-28 23:35:09.197 PROFILE [npcomm uninit] [0ms]
2012-02-28 23:35:09.197 PROFILE [STOP Received - time] [1s:95ms]
2012-02-29 00:01:53.272 PROFILE [Midas stop] [0ms]
2012-02-29 00:01:53.272 PROFILE [StopProxies] [0ms]
2012-02-29 00:01:53.335 PROFILE [Stop Drivers] [56ms]
2012-02-29 00:01:53.335 PROFILE [Unload html] [0ms]
2012-02-29 00:01:53.335 PROFILE [Registration data] [0ms]
2012-02-29 00:01:53.335 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 00:01:53.335 PROFILE [GM unload] [0ms]
2012-02-29 00:01:53.335 PROFILE [Vulner uninit] [0ms]
2012-02-29 00:01:53.335 PROFILE [Parental uninit] [0ms]
2012-02-29 00:01:53.335 PROFILE [WSACleanup] [0ms]
2012-02-29 00:01:53.335 PROFILE [Free SF] [1ms]
2012-02-29 00:01:53.335 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 00:01:53.335 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 00:01:53.335 PROFILE [LogUnInit] [0ms]
2012-02-29 00:01:54.395 PROFILE [CM Stop & eventq uninit] [1s:64ms]
2012-02-29 00:01:54.395 PROFILE [npcomm uninit] [0ms]
2012-02-29 00:01:54.395 PROFILE [STOP Received - time] [1s:144ms]
2012-02-29 09:25:25.606 PROFILE [Midas stop] [0ms]
2012-02-29 09:25:25.606 PROFILE [StopProxies] [0ms]
2012-02-29 09:25:26.028 PROFILE [Stop Drivers] [411ms]
2012-02-29 09:25:26.028 PROFILE [Unload html] [0ms]
2012-02-29 09:25:26.028 PROFILE [Registration data] [0ms]
2012-02-29 09:25:26.028 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 09:25:26.028 PROFILE [GM unload] [0ms]
2012-02-29 09:25:26.028 PROFILE [Vulner uninit] [0ms]
2012-02-29 09:25:26.028 PROFILE [Parental uninit] [0ms]
2012-02-29 09:25:26.028 PROFILE [WSACleanup] [0ms]
2012-02-29 09:25:26.028 PROFILE [Free SF] [0ms]
2012-02-29 09:25:26.028 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 09:25:26.028 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 09:25:26.028 PROFILE [LogUnInit] [0ms]
2012-02-29 09:25:28.087 PROFILE [CM Stop & eventq uninit] [2s:57ms]
2012-02-29 09:25:28.087 PROFILE [npcomm uninit] [0ms]
2012-02-29 09:25:28.087 PROFILE [STOP Received - time] [2s:491ms]
2012-02-29 09:52:28.947 PROFILE [Midas stop] [0ms]
2012-02-29 09:52:28.947 PROFILE [StopProxies] [0ms]
2012-02-29 09:52:29.431 PROFILE [Stop Drivers] [484ms]
2012-02-29 09:52:29.431 PROFILE [Unload html] [0ms]
2012-02-29 09:52:29.431 PROFILE [Registration data] [0ms]
2012-02-29 09:52:29.431 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 09:52:29.431 PROFILE [GM unload] [0ms]
2012-02-29 09:52:29.431 PROFILE [Vulner uninit] [0ms]
2012-02-29 09:52:29.431 PROFILE [Parental uninit] [0ms]
2012-02-29 09:52:29.431 PROFILE [WSACleanup] [0ms]
2012-02-29 09:52:29.431 PROFILE [Free SF] [0ms]
2012-02-29 09:52:29.431 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 09:52:29.431 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 09:52:29.431 PROFILE [LogUnInit] [0ms]
2012-02-29 09:52:30.055 PROFILE [CM Stop & eventq uninit] [625ms]
2012-02-29 09:52:30.055 PROFILE [npcomm uninit] [0ms]
2012-02-29 09:52:30.055 PROFILE [STOP Received - time] [1s:140ms]
2012-02-29 10:59:18.503 PROFILE [Midas stop] [0ms]
2012-02-29 10:59:18.503 PROFILE [StopProxies] [0ms]
2012-02-29 10:59:18.753 PROFILE [Stop Drivers] [240ms]
2012-02-29 10:59:18.753 PROFILE [Unload html] [0ms]
2012-02-29 10:59:18.753 PROFILE [Registration data] [0ms]
2012-02-29 10:59:18.753 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 10:59:18.753 PROFILE [GM unload] [0ms]
2012-02-29 10:59:18.753 PROFILE [Vulner uninit] [0ms]
2012-02-29 10:59:18.753 PROFILE [Parental uninit] [0ms]
2012-02-29 10:59:18.753 PROFILE [WSACleanup] [0ms]
2012-02-29 10:59:18.753 PROFILE [Free SF] [0ms]
2012-02-29 10:59:18.753 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 10:59:18.753 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 10:59:18.753 PROFILE [LogUnInit] [0ms]
2012-02-29 10:59:19.627 PROFILE [CM Stop & eventq uninit] [872ms]
2012-02-29 10:59:19.627 PROFILE [npcomm uninit] [0ms]
2012-02-29 10:59:19.627 PROFILE [STOP Received - time] [1s:140ms]
2012-02-29 13:55:46.314 PROFILE [Midas stop] [0ms]
2012-02-29 13:55:46.314 PROFILE [StopProxies] [0ms]
2012-02-29 13:55:46.392 PROFILE [Stop Drivers] [74ms]
2012-02-29 13:55:46.392 PROFILE [Unload html] [0ms]
2012-02-29 13:55:46.392 PROFILE [Registration data] [0ms]
2012-02-29 13:55:46.392 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 13:55:46.392 PROFILE [GM unload] [0ms]
2012-02-29 13:55:46.392 PROFILE [Vulner uninit] [0ms]
2012-02-29 13:55:46.392 PROFILE [Parental uninit] [0ms]
2012-02-29 13:55:46.392 PROFILE [WSACleanup] [0ms]
2012-02-29 13:55:46.392 PROFILE [Free SF] [0ms]
2012-02-29 13:55:46.392 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 13:55:46.392 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 13:55:46.392 PROFILE [LogUnInit] [0ms]
2012-02-29 13:55:47.890 PROFILE [CM Stop & eventq uninit] [1s:495ms]
2012-02-29 13:55:47.890 PROFILE [npcomm uninit] [0ms]
2012-02-29 13:55:47.890 PROFILE [STOP Received - time] [1s:588ms]
2012-02-29 14:58:40.855 PROFILE [Midas stop] [0ms]
2012-02-29 14:58:40.855 PROFILE [StopProxies] [0ms]
2012-02-29 14:58:41.291 PROFILE [Stop Drivers] [424ms]
2012-02-29 14:58:41.291 PROFILE [Unload html] [0ms]
2012-02-29 14:58:41.291 PROFILE [Registration data] [0ms]
2012-02-29 14:58:41.291 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 14:58:41.291 PROFILE [GM unload] [0ms]
2012-02-29 14:58:41.291 PROFILE [Vulner uninit] [0ms]
2012-02-29 14:58:41.291 PROFILE [Parental uninit] [0ms]
2012-02-29 14:58:41.291 PROFILE [WSACleanup] [0ms]
2012-02-29 14:58:41.291 PROFILE [Free SF] [0ms]
2012-02-29 14:58:41.291 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 14:58:41.291 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 14:58:41.291 PROFILE [LogUnInit] [0ms]
2012-02-29 14:58:41.915 PROFILE [CM Stop & eventq uninit] [630ms]
2012-02-29 14:58:41.915 PROFILE [npcomm uninit] [0ms]
2012-02-29 14:58:41.915 PROFILE [STOP Received - time] [1s:67ms]
2012-02-29 17:37:04.990 PROFILE [Midas stop] [0ms]
2012-02-29 17:37:04.990 PROFILE [StopProxies] [0ms]
2012-02-29 17:37:05.380 PROFILE [Stop Drivers] [386ms]
2012-02-29 17:37:05.380 PROFILE [Unload html] [0ms]
2012-02-29 17:37:05.380 PROFILE [Registration data] [0ms]
2012-02-29 17:37:05.380 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 17:37:05.380 PROFILE [GM unload] [0ms]
2012-02-29 17:37:05.380 PROFILE [Vulner uninit] [0ms]
2012-02-29 17:37:05.380 PROFILE [Parental uninit] [0ms]
2012-02-29 17:37:05.380 PROFILE [WSACleanup] [0ms]
2012-02-29 17:37:05.380 PROFILE [Free SF] [0ms]
2012-02-29 17:37:05.380 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 17:37:05.380 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 17:37:05.380 PROFILE [LogUnInit] [0ms]
2012-02-29 17:37:06.113 PROFILE [CM Stop & eventq uninit] [733ms]
2012-02-29 17:37:06.113 PROFILE [npcomm uninit] [0ms]
2012-02-29 17:37:06.113 PROFILE [STOP Received - time] [1s:141ms]
2012-02-29 20:36:28.746 PROFILE [Midas stop] [0ms]
2012-02-29 20:36:28.746 PROFILE [StopProxies] [0ms]
2012-02-29 20:36:28.755 PROFILE [Stop Drivers] [8ms]
2012-02-29 20:36:28.756 PROFILE [Unload html] [0ms]
2012-02-29 20:36:28.756 PROFILE [Registration data] [0ms]
2012-02-29 20:36:28.756 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 20:36:28.756 PROFILE [GM unload] [0ms]
2012-02-29 20:36:28.756 PROFILE [Vulner uninit] [0ms]
2012-02-29 20:36:28.757 PROFILE [Parental uninit] [0ms]
2012-02-29 20:36:28.757 PROFILE [WSACleanup] [0ms]
2012-02-29 20:36:28.759 PROFILE [Free SF] [1ms]
2012-02-29 20:36:28.759 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 20:36:28.759 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 20:36:28.760 PROFILE [LogUnInit] [0ms]
2012-02-29 20:36:29.833 PROFILE [CM Stop & eventq uninit] [1s:73ms]
2012-02-29 20:36:29.833 PROFILE [npcomm uninit] [0ms]
2012-02-29 20:36:29.835 PROFILE [STOP Received - time] [1s:113ms]
2012-02-29 20:43:44.586 PROFILE [Midas stop] [0ms]
2012-02-29 20:43:44.586 PROFILE [StopProxies] [0ms]
2012-02-29 20:43:44.664 PROFILE [Stop Drivers] [77ms]
2012-02-29 20:43:44.664 PROFILE [Unload html] [0ms]
2012-02-29 20:43:44.664 PROFILE [Registration data] [0ms]
2012-02-29 20:43:44.664 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 20:43:44.664 PROFILE [GM unload] [0ms]
2012-02-29 20:43:44.664 PROFILE [Vulner uninit] [0ms]
2012-02-29 20:43:44.664 PROFILE [Parental uninit] [0ms]
2012-02-29 20:43:44.664 PROFILE [WSACleanup] [0ms]
2012-02-29 20:43:44.664 PROFILE [Free SF] [0ms]
2012-02-29 20:43:44.664 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 20:43:44.664 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 20:43:44.664 PROFILE [LogUnInit] [0ms]
2012-02-29 20:43:45.179 PROFILE [CM Stop & eventq uninit] [513ms]
2012-02-29 20:43:45.179 PROFILE [npcomm uninit] [0ms]
2012-02-29 20:43:45.179 PROFILE [STOP Received - time] [593ms]
2012-02-29 20:49:51.857 PROFILE [Midas stop] [0ms]
2012-02-29 20:49:51.857 PROFILE [StopProxies] [0ms]
2012-02-29 20:49:52.115 PROFILE [Stop Drivers] [258ms]
2012-02-29 20:49:52.115 PROFILE [Unload html] [0ms]
2012-02-29 20:49:52.115 PROFILE [Registration data] [0ms]
2012-02-29 20:49:52.115 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 20:49:52.116 PROFILE [GM unload] [0ms]
2012-02-29 20:49:52.116 PROFILE [Vulner uninit] [0ms]
2012-02-29 20:49:52.117 PROFILE [Parental uninit] [0ms]
2012-02-29 20:49:52.117 PROFILE [WSACleanup] [0ms]
2012-02-29 20:49:52.118 PROFILE [Free SF] [0ms]
2012-02-29 20:49:52.118 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 20:49:52.118 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 20:49:52.118 PROFILE [LogUnInit] [0ms]
2012-02-29 20:49:53.667 PROFILE [CM Stop & eventq uninit] [1s:548ms]
2012-02-29 20:49:53.667 PROFILE [npcomm uninit] [0ms]
2012-02-29 20:49:53.702 PROFILE [STOP Received - time] [1s:988ms]
2012-02-29 22:21:26.434 PROFILE [Midas stop] [0ms]
2012-02-29 22:21:26.434 PROFILE [StopProxies] [0ms]
2012-02-29 22:21:26.793 PROFILE [Stop Drivers] [348ms]
2012-02-29 22:21:26.793 PROFILE [Unload html] [0ms]
2012-02-29 22:21:26.793 PROFILE [Registration data] [0ms]
2012-02-29 22:21:26.793 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-02-29 22:21:26.793 PROFILE [GM unload] [0ms]
2012-02-29 22:21:26.793 PROFILE [Vulner uninit] [0ms]
2012-02-29 22:21:26.793 PROFILE [Parental uninit] [0ms]
2012-02-29 22:21:26.793 PROFILE [WSACleanup] [0ms]
2012-02-29 22:21:26.793 PROFILE [Free SF] [0ms]
2012-02-29 22:21:26.793 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-02-29 22:21:26.793 PROFILE [AntiPh & AS unload] [0ms]
2012-02-29 22:21:26.793 PROFILE [LogUnInit] [0ms]
2012-02-29 22:21:27.432 PROFILE [CM Stop & eventq uninit] [637ms]
2012-02-29 22:21:27.432 PROFILE [npcomm uninit] [0ms]
2012-02-29 22:21:27.432 PROFILE [STOP Received - time] [1s:30ms]
2012-03-01 10:42:16.408 PROFILE [Midas stop] [0ms]
2012-03-01 10:42:16.408 PROFILE [StopProxies] [0ms]
2012-03-01 10:42:16.580 PROFILE [Stop Drivers] [159ms]
2012-03-01 10:42:16.580 PROFILE [Unload html] [0ms]
2012-03-01 10:42:16.580 PROFILE [Registration data] [0ms]
2012-03-01 10:42:16.580 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-01 10:42:16.580 PROFILE [GM unload] [0ms]
2012-03-01 10:42:16.580 PROFILE [Vulner uninit] [0ms]
2012-03-01 10:42:16.580 PROFILE [Parental uninit] [0ms]
2012-03-01 10:42:16.580 PROFILE [WSACleanup] [0ms]
2012-03-01 10:42:16.580 PROFILE [Free SF] [4ms]
2012-03-01 10:42:16.580 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-01 10:42:16.580 PROFILE [AntiPh & AS unload] [0ms]
2012-03-01 10:42:16.580 PROFILE [LogUnInit] [0ms]
2012-03-01 10:42:17.438 PROFILE [CM Stop & eventq uninit] [853ms]
2012-03-01 10:42:17.438 PROFILE [npcomm uninit] [0ms]
2012-03-01 10:42:17.438 PROFILE [STOP Received - time] [1s:76ms]
2012-03-01 22:01:38.682 PROFILE [Midas stop] [0ms]
2012-03-01 22:01:38.682 PROFILE [StopProxies] [0ms]
2012-03-01 22:01:39.291 PROFILE [Stop Drivers] [607ms]
2012-03-01 22:01:39.307 PROFILE [Unload html] [16ms]
2012-03-01 22:01:39.307 PROFILE [Registration data] [0ms]
2012-03-01 22:01:39.307 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-01 22:01:39.307 PROFILE [GM unload] [0ms]
2012-03-01 22:01:39.307 PROFILE [Vulner uninit] [0ms]
2012-03-01 22:01:39.338 PROFILE [Parental uninit] [0ms]
2012-03-01 22:01:39.338 PROFILE [WSACleanup] [0ms]
2012-03-01 22:01:39.338 PROFILE [Free SF] [1ms]
2012-03-01 22:01:39.338 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-01 22:01:39.338 PROFILE [AntiPh & AS unload] [0ms]
2012-03-01 22:01:39.338 PROFILE [LogUnInit] [0ms]
2012-03-01 22:01:41.179 PROFILE [CM Stop & eventq uninit] [1s:829ms]
2012-03-01 22:01:41.179 PROFILE [npcomm uninit] [0ms]
2012-03-01 22:01:41.179 PROFILE [STOP Received - time] [2s:530ms]
2012-03-02 18:23:27.510 PROFILE [Midas stop] [0ms]
2012-03-02 18:23:27.510 PROFILE [StopProxies] [0ms]
2012-03-02 18:23:27.979 PROFILE [Stop Drivers] [468ms]
2012-03-02 18:23:27.979 PROFILE [Unload html] [0ms]
2012-03-02 18:23:27.979 PROFILE [Registration data] [0ms]
2012-03-02 18:23:27.979 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-02 18:23:27.979 PROFILE [GM unload] [0ms]
2012-03-02 18:23:27.980 PROFILE [Vulner uninit] [0ms]
2012-03-02 18:23:27.981 PROFILE [Parental uninit] [0ms]
2012-03-02 18:23:27.981 PROFILE [WSACleanup] [0ms]
2012-03-02 18:23:27.983 PROFILE [Free SF] [1ms]
2012-03-02 18:23:27.983 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-02 18:23:27.983 PROFILE [AntiPh & AS unload] [0ms]
2012-03-02 18:23:27.984 PROFILE [LogUnInit] [0ms]
2012-03-02 18:23:28.633 PROFILE [CM Stop & eventq uninit] [649ms]
2012-03-02 18:23:28.633 PROFILE [npcomm uninit] [0ms]
2012-03-02 18:23:28.635 PROFILE [STOP Received - time] [1s:184ms]
2012-03-02 23:34:44.344 PROFILE [Midas stop] [0ms]
2012-03-02 23:34:44.344 PROFILE [StopProxies] [0ms]
2012-03-02 23:34:44.594 PROFILE [Stop Drivers] [247ms]
2012-03-02 23:34:44.594 PROFILE [Unload html] [0ms]
2012-03-02 23:34:44.594 PROFILE [Registration data] [0ms]
2012-03-02 23:34:44.594 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-02 23:34:44.594 PROFILE [GM unload] [0ms]
2012-03-02 23:34:44.594 PROFILE [Vulner uninit] [0ms]
2012-03-02 23:34:44.594 PROFILE [Parental uninit] [0ms]
2012-03-02 23:34:44.594 PROFILE [WSACleanup] [0ms]
2012-03-02 23:34:44.594 PROFILE [Free SF] [0ms]
2012-03-02 23:34:44.594 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-02 23:34:44.594 PROFILE [AntiPh & AS unload] [0ms]
2012-03-02 23:34:44.594 PROFILE [LogUnInit] [0ms]
2012-03-02 23:34:44.594 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-02 23:34:44.594 PROFILE [npcomm uninit] [0ms]
2012-03-02 23:34:44.594 PROFILE [STOP Received - time] [420ms]
2012-03-03 12:35:43.417 PROFILE [Midas stop] [0ms]
2012-03-03 12:35:43.417 PROFILE [StopProxies] [0ms]
2012-03-03 12:35:43.651 PROFILE [Stop Drivers] [224ms]
2012-03-03 12:35:43.667 PROFILE [Unload html] [17ms]
2012-03-03 12:35:43.667 PROFILE [Registration data] [0ms]
2012-03-03 12:35:43.667 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-03 12:35:43.667 PROFILE [GM unload] [0ms]
2012-03-03 12:35:43.667 PROFILE [Vulner uninit] [0ms]
2012-03-03 12:35:43.667 PROFILE [Parental uninit] [0ms]
2012-03-03 12:35:43.667 PROFILE [WSACleanup] [0ms]
2012-03-03 12:35:43.667 PROFILE [Free SF] [0ms]
2012-03-03 12:35:43.667 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-03 12:35:43.667 PROFILE [AntiPh & AS unload] [0ms]
2012-03-03 12:35:43.682 PROFILE [LogUnInit] [0ms]
2012-03-03 12:35:43.682 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-03 12:35:43.682 PROFILE [npcomm uninit] [0ms]
2012-03-03 12:35:43.682 PROFILE [STOP Received - time] [313ms]
2012-03-03 23:04:25.198 PROFILE [Midas stop] [0ms]
2012-03-03 23:04:25.198 PROFILE [StopProxies] [0ms]
2012-03-03 23:04:25.510 PROFILE [Stop Drivers] [312ms]
2012-03-03 23:04:25.510 PROFILE [Unload html] [0ms]
2012-03-03 23:04:25.510 PROFILE [Registration data] [0ms]
2012-03-03 23:04:25.510 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-03 23:04:25.510 PROFILE [GM unload] [0ms]
2012-03-03 23:04:25.510 PROFILE [Vulner uninit] [0ms]
2012-03-03 23:04:25.510 PROFILE [Parental uninit] [0ms]
2012-03-03 23:04:25.510 PROFILE [WSACleanup] [0ms]
2012-03-03 23:04:25.510 PROFILE [Free SF] [0ms]
2012-03-03 23:04:25.510 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-03 23:04:25.510 PROFILE [AntiPh & AS unload] [0ms]
2012-03-03 23:04:25.510 PROFILE [LogUnInit] [0ms]
2012-03-03 23:04:25.510 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-03 23:04:25.510 PROFILE [npcomm uninit] [0ms]
2012-03-03 23:04:25.510 PROFILE [STOP Received - time] [314ms]
2012-03-04 08:50:04.336 PROFILE [Midas stop] [0ms]
2012-03-04 08:50:04.336 PROFILE [StopProxies] [0ms]
2012-03-04 08:50:04.913 PROFILE [Stop Drivers] [566ms]
2012-03-04 08:50:04.913 PROFILE [Unload html] [0ms]
2012-03-04 08:50:04.913 PROFILE [Registration data] [0ms]
2012-03-04 08:50:04.913 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-04 08:50:04.913 PROFILE [GM unload] [0ms]
2012-03-04 08:50:04.913 PROFILE [Vulner uninit] [0ms]
2012-03-04 08:50:04.913 PROFILE [Parental uninit] [0ms]
2012-03-04 08:50:04.913 PROFILE [WSACleanup] [0ms]
2012-03-04 08:50:04.913 PROFILE [Free SF] [0ms]
2012-03-04 08:50:04.913 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-04 08:50:04.913 PROFILE [AntiPh & AS unload] [0ms]
2012-03-04 08:50:04.913 PROFILE [LogUnInit] [0ms]
2012-03-04 08:50:04.913 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-04 08:50:04.913 PROFILE [npcomm uninit] [0ms]
2012-03-04 08:50:04.913 PROFILE [STOP Received - time] [648ms]
2012-03-04 21:47:29.100 PROFILE [Midas stop] [0ms]
2012-03-04 21:47:29.100 PROFILE [StopProxies] [0ms]
2012-03-04 21:47:29.444 PROFILE [Stop Drivers] [328ms]
2012-03-04 21:47:29.444 PROFILE [Unload html] [0ms]
2012-03-04 21:47:29.444 PROFILE [Registration data] [0ms]
2012-03-04 21:47:29.444 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-04 21:47:29.444 PROFILE [GM unload] [0ms]
2012-03-04 21:47:29.444 PROFILE [Vulner uninit] [0ms]
2012-03-04 21:47:29.444 PROFILE [Parental uninit] [0ms]
2012-03-04 21:47:29.444 PROFILE [WSACleanup] [0ms]
2012-03-04 21:47:29.444 PROFILE [Free SF] [0ms]
2012-03-04 21:47:29.444 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-04 21:47:29.444 PROFILE [AntiPh & AS unload] [0ms]
2012-03-04 21:47:29.444 PROFILE [LogUnInit] [0ms]
2012-03-04 21:47:29.444 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-04 21:47:29.444 PROFILE [npcomm uninit] [0ms]
2012-03-04 21:47:29.444 PROFILE [STOP Received - time] [358ms]
2012-03-04 22:45:42.311 PROFILE [Midas stop] [0ms]
2012-03-04 22:45:42.311 PROFILE [StopProxies] [0ms]
2012-03-04 22:45:43.278 PROFILE [Stop Drivers] [957ms]
2012-03-04 22:45:43.278 PROFILE [Unload html] [0ms]
2012-03-04 22:45:43.278 PROFILE [Registration data] [0ms]
2012-03-04 22:45:43.278 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-04 22:45:43.278 PROFILE [GM unload] [0ms]
2012-03-04 22:45:43.278 PROFILE [Vulner uninit] [0ms]
2012-03-04 22:45:43.278 PROFILE [Parental uninit] [0ms]
2012-03-04 22:45:43.278 PROFILE [WSACleanup] [0ms]
2012-03-04 22:45:43.278 PROFILE [Free SF] [0ms]
2012-03-04 22:45:43.278 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-04 22:45:43.278 PROFILE [AntiPh & AS unload] [0ms]
2012-03-04 22:45:43.278 PROFILE [LogUnInit] [0ms]
2012-03-04 22:45:43.278 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-04 22:45:43.278 PROFILE [npcomm uninit] [0ms]
2012-03-04 22:45:43.278 PROFILE [STOP Received - time] [1s:199ms]
2012-03-04 23:19:39.946 PROFILE [Midas stop] [0ms]
2012-03-04 23:19:39.946 PROFILE [StopProxies] [0ms]
2012-03-04 23:19:40.461 PROFILE [Stop Drivers] [508ms]
2012-03-04 23:19:40.461 PROFILE [Unload html] [0ms]
2012-03-04 23:19:40.461 PROFILE [Registration data] [0ms]
2012-03-04 23:19:40.461 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-04 23:19:40.461 PROFILE [GM unload] [0ms]
2012-03-04 23:19:40.461 PROFILE [Vulner uninit] [0ms]
2012-03-04 23:19:40.461 PROFILE [Parental uninit] [0ms]
2012-03-04 23:19:40.461 PROFILE [WSACleanup] [0ms]
2012-03-04 23:19:40.461 PROFILE [Free SF] [0ms]
2012-03-04 23:19:40.461 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-04 23:19:40.461 PROFILE [AntiPh & AS unload] [0ms]
2012-03-04 23:19:40.461 PROFILE [LogUnInit] [0ms]
2012-03-04 23:19:40.461 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-04 23:19:40.461 PROFILE [npcomm uninit] [0ms]
2012-03-04 23:19:40.461 PROFILE [STOP Received - time] [561ms]
2012-03-05 13:22:41.026 PROFILE [Midas stop] [0ms]
2012-03-05 13:22:41.026 PROFILE [StopProxies] [0ms]
2012-03-05 13:22:41.307 PROFILE [Stop Drivers] [276ms]
2012-03-05 13:22:41.307 PROFILE [Unload html] [0ms]
2012-03-05 13:22:41.307 PROFILE [Registration data] [0ms]
2012-03-05 13:22:41.307 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 13:22:41.307 PROFILE [GM unload] [0ms]
2012-03-05 13:22:41.307 PROFILE [Vulner uninit] [0ms]
2012-03-05 13:22:41.307 PROFILE [Parental uninit] [0ms]
2012-03-05 13:22:41.307 PROFILE [WSACleanup] [0ms]
2012-03-05 13:22:41.307 PROFILE [Free SF] [0ms]
2012-03-05 13:22:41.307 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 13:22:41.307 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 13:22:41.307 PROFILE [LogUnInit] [0ms]
2012-03-05 13:22:41.307 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 13:22:41.307 PROFILE [npcomm uninit] [0ms]
2012-03-05 13:22:41.307 PROFILE [STOP Received - time] [311ms]
2012-03-05 13:31:19.176 PROFILE [Midas stop] [0ms]
2012-03-05 13:31:19.176 PROFILE [StopProxies] [0ms]
2012-03-05 13:31:19.301 PROFILE [Stop Drivers] [122ms]
2012-03-05 13:31:19.301 PROFILE [Unload html] [0ms]
2012-03-05 13:31:19.301 PROFILE [Registration data] [0ms]
2012-03-05 13:31:19.301 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 13:31:19.301 PROFILE [GM unload] [0ms]
2012-03-05 13:31:19.301 PROFILE [Vulner uninit] [4ms]
2012-03-05 13:31:19.301 PROFILE [Parental uninit] [0ms]
2012-03-05 13:31:19.301 PROFILE [WSACleanup] [0ms]
2012-03-05 13:31:19.301 PROFILE [Free SF] [0ms]
2012-03-05 13:31:19.301 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 13:31:19.301 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 13:31:19.301 PROFILE [LogUnInit] [0ms]
2012-03-05 13:31:19.301 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 13:31:19.301 PROFILE [npcomm uninit] [0ms]
2012-03-05 13:31:19.301 PROFILE [STOP Received - time] [207ms]
2012-03-05 13:38:40.883 PROFILE [Midas stop] [0ms]
2012-03-05 13:38:40.883 PROFILE [StopProxies] [0ms]
2012-03-05 13:38:41.304 PROFILE [Stop Drivers] [410ms]
2012-03-05 13:38:41.304 PROFILE [Unload html] [0ms]
2012-03-05 13:38:41.304 PROFILE [Registration data] [0ms]
2012-03-05 13:38:41.304 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 13:38:41.304 PROFILE [GM unload] [0ms]
2012-03-05 13:38:41.320 PROFILE [Vulner uninit] [16ms]
2012-03-05 13:38:41.320 PROFILE [Parental uninit] [0ms]
2012-03-05 13:38:41.320 PROFILE [WSACleanup] [0ms]
2012-03-05 13:38:41.320 PROFILE [Free SF] [0ms]
2012-03-05 13:38:41.320 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 13:38:41.320 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 13:38:41.320 PROFILE [LogUnInit] [0ms]
2012-03-05 13:38:41.320 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 13:38:41.320 PROFILE [npcomm uninit] [0ms]
2012-03-05 13:38:41.320 PROFILE [STOP Received - time] [545ms]
2012-03-05 14:10:15.590 PROFILE [Midas stop] [0ms]
2012-03-05 14:10:15.590 PROFILE [StopProxies] [0ms]
2012-03-05 14:10:15.980 PROFILE [Stop Drivers] [384ms]
2012-03-05 14:10:15.980 PROFILE [Unload html] [0ms]
2012-03-05 14:10:15.980 PROFILE [Registration data] [0ms]
2012-03-05 14:10:15.980 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 14:10:15.980 PROFILE [GM unload] [0ms]
2012-03-05 14:10:15.980 PROFILE [Vulner uninit] [0ms]
2012-03-05 14:10:15.980 PROFILE [Parental uninit] [0ms]
2012-03-05 14:10:15.980 PROFILE [WSACleanup] [0ms]
2012-03-05 14:10:15.980 PROFILE [Free SF] [0ms]
2012-03-05 14:10:15.980 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 14:10:15.980 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 14:10:15.980 PROFILE [LogUnInit] [0ms]
2012-03-05 14:10:15.980 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 14:10:15.980 PROFILE [npcomm uninit] [0ms]
2012-03-05 14:10:15.980 PROFILE [STOP Received - time] [451ms]
2012-03-05 19:10:20.292 PROFILE [Midas stop] [0ms]
2012-03-05 19:10:20.292 PROFILE [StopProxies] [0ms]
2012-03-05 19:10:20.620 PROFILE [Stop Drivers] [327ms]
2012-03-05 19:10:20.620 PROFILE [Unload html] [0ms]
2012-03-05 19:10:20.620 PROFILE [Registration data] [0ms]
2012-03-05 19:10:20.620 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 19:10:20.620 PROFILE [GM unload] [0ms]
2012-03-05 19:10:20.620 PROFILE [Vulner uninit] [0ms]
2012-03-05 19:10:20.620 PROFILE [Parental uninit] [0ms]
2012-03-05 19:10:20.620 PROFILE [WSACleanup] [0ms]
2012-03-05 19:10:20.620 PROFILE [Free SF] [0ms]
2012-03-05 19:10:20.620 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 19:10:20.620 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 19:10:20.620 PROFILE [LogUnInit] [0ms]
2012-03-05 19:10:20.620 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 19:10:20.620 PROFILE [npcomm uninit] [0ms]
2012-03-05 19:10:20.620 PROFILE [STOP Received - time] [377ms]
2012-03-05 22:34:12.436 PROFILE [Midas stop] [0ms]
2012-03-05 22:34:12.436 PROFILE [StopProxies] [0ms]
2012-03-05 22:34:12.685 PROFILE [Stop Drivers] [241ms]
2012-03-05 22:34:12.685 PROFILE [Unload html] [0ms]
2012-03-05 22:34:12.685 PROFILE [Registration data] [0ms]
2012-03-05 22:34:12.685 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-05 22:34:12.685 PROFILE [GM unload] [0ms]
2012-03-05 22:34:12.685 PROFILE [Vulner uninit] [0ms]
2012-03-05 22:34:12.685 PROFILE [Parental uninit] [0ms]
2012-03-05 22:34:12.685 PROFILE [WSACleanup] [0ms]
2012-03-05 22:34:12.685 PROFILE [Free SF] [0ms]
2012-03-05 22:34:12.685 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-05 22:34:12.685 PROFILE [AntiPh & AS unload] [0ms]
2012-03-05 22:34:12.685 PROFILE [LogUnInit] [0ms]
2012-03-05 22:34:12.685 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-05 22:34:12.685 PROFILE [npcomm uninit] [0ms]
2012-03-05 22:34:12.685 PROFILE [STOP Received - time] [265ms]
2012-03-06 08:52:34.219 PROFILE [Midas stop] [0ms]
2012-03-06 08:52:34.219 PROFILE [StopProxies] [0ms]
2012-03-06 08:52:34.625 PROFILE [Stop Drivers] [403ms]
2012-03-06 08:52:34.625 PROFILE [Unload html] [0ms]
2012-03-06 08:52:34.625 PROFILE [Registration data] [0ms]
2012-03-06 08:52:34.625 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 08:52:34.625 PROFILE [GM unload] [0ms]
2012-03-06 08:52:34.625 PROFILE [Vulner uninit] [0ms]
2012-03-06 08:52:34.625 PROFILE [Parental uninit] [0ms]
2012-03-06 08:52:34.625 PROFILE [WSACleanup] [0ms]
2012-03-06 08:52:34.625 PROFILE [Free SF] [0ms]
2012-03-06 08:52:34.625 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 08:52:34.625 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 08:52:34.625 PROFILE [LogUnInit] [0ms]
2012-03-06 08:52:34.625 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 08:52:34.625 PROFILE [npcomm uninit] [0ms]
2012-03-06 08:52:34.625 PROFILE [STOP Received - time] [405ms]
2012-03-06 09:01:32.936 PROFILE [Midas stop] [0ms]
2012-03-06 09:01:32.936 PROFILE [StopProxies] [0ms]
2012-03-06 09:01:33.155 PROFILE [Stop Drivers] [213ms]
2012-03-06 09:01:33.155 PROFILE [Unload html] [0ms]
2012-03-06 09:01:33.155 PROFILE [Registration data] [0ms]
2012-03-06 09:01:33.155 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 09:01:33.155 PROFILE [GM unload] [0ms]
2012-03-06 09:01:33.155 PROFILE [Vulner uninit] [0ms]
2012-03-06 09:01:33.155 PROFILE [Parental uninit] [0ms]
2012-03-06 09:01:33.155 PROFILE [WSACleanup] [0ms]
2012-03-06 09:01:33.155 PROFILE [Free SF] [0ms]
2012-03-06 09:01:33.155 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 09:01:33.155 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 09:01:33.155 PROFILE [LogUnInit] [0ms]
2012-03-06 09:01:33.155 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 09:01:33.155 PROFILE [npcomm uninit] [0ms]
2012-03-06 09:01:33.155 PROFILE [STOP Received - time] [232ms]
2012-03-06 09:30:25.090 PROFILE [Midas stop] [0ms]
2012-03-06 09:30:25.090 PROFILE [StopProxies] [0ms]
2012-03-06 09:30:25.714 PROFILE [Stop Drivers] [615ms]
2012-03-06 09:30:25.714 PROFILE [Unload html] [0ms]
2012-03-06 09:30:25.714 PROFILE [Registration data] [0ms]
2012-03-06 09:30:25.714 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 09:30:25.714 PROFILE [GM unload] [0ms]
2012-03-06 09:30:25.714 PROFILE [Vulner uninit] [0ms]
2012-03-06 09:30:25.714 PROFILE [Parental uninit] [0ms]
2012-03-06 09:30:25.714 PROFILE [WSACleanup] [0ms]
2012-03-06 09:30:25.714 PROFILE [Free SF] [0ms]
2012-03-06 09:30:25.714 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 09:30:25.714 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 09:30:25.714 PROFILE [LogUnInit] [0ms]
2012-03-06 09:30:25.714 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 09:30:25.714 PROFILE [npcomm uninit] [0ms]
2012-03-06 09:30:25.714 PROFILE [STOP Received - time] [639ms]
2012-03-06 14:59:11.036 PROFILE [Midas stop] [0ms]
2012-03-06 14:59:11.036 PROFILE [StopProxies] [0ms]
2012-03-06 14:59:11.192 PROFILE [Stop Drivers] [153ms]
2012-03-06 14:59:11.192 PROFILE [Unload html] [0ms]
2012-03-06 14:59:11.192 PROFILE [Registration data] [0ms]
2012-03-06 14:59:11.192 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 14:59:11.192 PROFILE [GM unload] [0ms]
2012-03-06 14:59:11.192 PROFILE [Vulner uninit] [0ms]
2012-03-06 14:59:11.192 PROFILE [Parental uninit] [0ms]
2012-03-06 14:59:11.192 PROFILE [WSACleanup] [0ms]
2012-03-06 14:59:11.192 PROFILE [Free SF] [0ms]
2012-03-06 14:59:11.192 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 14:59:11.192 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 14:59:11.192 PROFILE [LogUnInit] [0ms]
2012-03-06 14:59:11.192 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 14:59:11.192 PROFILE [npcomm uninit] [0ms]
2012-03-06 14:59:11.192 PROFILE [STOP Received - time] [155ms]
2012-03-06 15:08:33.787 PROFILE [Midas stop] [0ms]
2012-03-06 15:08:33.787 PROFILE [StopProxies] [0ms]
2012-03-06 15:08:33.974 PROFILE [Stop Drivers] [184ms]
2012-03-06 15:08:33.974 PROFILE [Unload html] [0ms]
2012-03-06 15:08:33.974 PROFILE [Registration data] [0ms]
2012-03-06 15:08:33.974 PROFILE [NPCOMM_MSG_VSSERVDOWN NPC_BDAGENT_MAIN] [0ms]
2012-03-06 15:08:33.974 PROFILE [GM unload] [0ms]
2012-03-06 15:08:33.974 PROFILE [Vulner uninit] [0ms]
2012-03-06 15:08:33.974 PROFILE [Parental uninit] [0ms]
2012-03-06 15:08:33.974 PROFILE [WSACleanup] [0ms]
2012-03-06 15:08:33.974 PROFILE [Free SF] [0ms]
2012-03-06 15:08:33.974 PROFILE [UninitializeMultiUserSupport] [0ms]
2012-03-06 15:08:33.974 PROFILE [AntiPh & AS unload] [0ms]
2012-03-06 15:08:33.974 PROFILE [LogUnInit] [0ms]
2012-03-06 15:08:33.974 PROFILE [CM Stop & eventq uninit] [0ms]
2012-03-06 15:08:33.974 PROFILE [npcomm uninit] [0ms]
2012-03-06 15:08:33.974 PROFILE [STOP Received - time] [202ms]
Le second: ComboFix.TXT
ComboFix 12-03-04.02 - Emilie 06/03/2012 14:34:44.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.32.1036.18.5942.4413 [GMT 1:00]
Lancé depuis: c:\users\Emilie\Desktop\ComboFix.exe
Commutateurs utilisés :: c:\users\Emilie\Desktop\CFScript.txt
AV: Norton 360 *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Emilie\AppData\Roaming\inst.exe
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\assembly\temp\@
c:\windows\assembly\temp\cfg.ini
c:\windows\system32\consrv.dll
c:\windows\System64
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-02-06 au 2012-03-06 ))))))))))))))))))))))))))))))))))))
.
.
2012-03-05 20:29 . 2012-03-06 17:06 -------- d-----w- c:\program files (x86)\Cobian Backup 10
2012-03-05 13:13 . 2012-03-05 13:14 -------- d-----w- c:\users\Emilie\DoctorWeb
2012-03-04 07:49 . 2012-03-04 07:49 63 ----a-w- c:\windows\DeleteOnReboot.bat
2012-03-03 19:44 . 2012-03-03 19:49 -------- d-----w- C:\ZHP
2012-03-03 19:43 . 2012-03-03 19:48 -------- d-----w- c:\program files (x86)\ZHPDiag
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792059.bdinstall.bin
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792028.bdinstall.bin
2012-03-02 22:27 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-02 22:23 . 2012-03-02 22:23 -------- d-----w- c:\users\Emilie\AppData\Roaming\Bitdefender
2012-03-02 22:07 . 2012-03-02 22:09 -------- d-----w- c:\windows\system32\MpEngineStore
2012-03-02 20:03 . 2012-03-02 22:27 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-03-02 17:24 . 2012-03-02 17:24 154622 ----a-w- c:\programdata\1330708998.bdinstall.bin
2012-03-01 07:59 . 2012-03-01 07:59 -------- d-----w- c:\windows\system32\25DB~1
2012-02-29 20:08 . 2012-02-29 20:08 273351 ----a-w- c:\programdata\1330545604.bdinstall.bin
2012-02-29 19:49 . 2012-02-29 19:50 7203 ----a-w- c:\programdata\1330544982.5340.bin
2012-02-29 19:49 . 2012-02-29 19:50 45079 ----a-w- c:\programdata\1330544982.5376.bin
2012-02-29 19:49 . 2012-02-29 19:49 5679 ----a-w- c:\programdata\1330544982.5352.bin
2012-02-29 19:43 . 2012-02-29 19:43 249578 ----a-w- c:\programdata\1330544174.bdinstall.bin
2012-02-28 22:43 . 2012-02-28 22:43 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-02-28 22:41 . 2012-03-03 07:20 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-02-28 22:41 . 2012-02-28 22:41 -------- d-----r- c:\program files (x86)\Skype
2012-02-28 22:10 . 2012-02-28 22:10 296788 ----a-w- c:\programdata\1330466450.bdinstall.bin
2012-02-28 22:09 . 2012-02-28 22:09 -------- d-----w- c:\programdata\BDLogging
2012-02-28 22:09 . 2012-03-02 22:22 -------- d-----w- c:\programdata\Bitdefender
2012-02-28 21:47 . 2012-02-28 21:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\QuickScan
2012-02-28 21:45 . 2012-03-03 07:20 -------- d-----w- c:\program files\Bitdefender
2012-02-28 21:45 . 2012-02-28 21:50 31343 ----a-w- c:\programdata\1330465458.4164.bin
2012-02-28 21:45 . 2012-02-28 21:45 4410 ----a-w- c:\programdata\1330465458.1140.bin
2012-02-28 21:44 . 2012-02-28 21:49 9235 ----a-w- c:\programdata\1330465458.5048.bin
2012-02-28 21:44 . 2012-02-28 21:47 1698 ----a-w- c:\programdata\1330465458.4016.bin
2012-02-28 21:44 . 2012-02-28 21:46 1670 ----a-w- c:\programdata\1330465458.4448.bin
2012-02-28 21:44 . 2011-10-27 13:07 329800 ----a-w- c:\windows\system32\drivers\trufos.sys
2012-02-28 21:44 . 2011-08-16 12:59 442088 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys
2012-02-28 21:44 . 2012-02-28 21:56 155819 ----a-w- c:\programdata\1330465458.3184.bin
2012-02-28 21:44 . 2012-02-28 21:55 350589 ----a-w- c:\programdata\1330465458.3984.bin
2012-02-28 21:43 . 2012-03-03 07:20 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-02-24 15:33 . 2012-02-24 15:33 -------- d-----w- C:\avrescue
2012-02-24 08:54 . 2012-02-24 08:54 -------- d-----w- c:\users\Emilie\AppData\Roaming\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\programdata\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\program files (x86)\Avira
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\users\Emilie\AppData\Roaming\Malwarebytes
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\programdata\Malwarebytes
2012-02-21 23:17 . 1998-09-30 11:24 242448 ----a-w- c:\windows\system32\scedll.dll
2012-02-21 23:17 . 1998-03-31 15:37 29968 ----a-w- c:\windows\system32\Rshx32_5.dll
2012-02-21 22:41 . 2011-09-06 21:45 254400 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-21 22:41 . 2012-02-24 08:37 -------- d-----w- c:\programdata\AVAST Software
2012-02-21 22:41 . 2012-02-21 22:41 -------- d-----w- c:\program files\AVAST Software
2012-02-10 16:10 . 2012-02-21 23:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\panel
2012-02-07 08:30 . 2012-02-06 19:39 28672 ----a-w- c:\users\Emilie\oai4szz4hk.exe
2012-02-06 19:39 . 2012-02-06 19:39 28672 ----a-w- c:\programdata\oai4szz4hk.exe
2012-02-06 19:29 . 2012-03-06 13:27 0 --sha-w- c:\windows\system32\dds_trash_log.cmd
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-10 14:05 . 2012-01-20 17:37 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-26 23:52 . 2010-12-25 10:20 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-18 16:16 . 2012-01-18 16:16 544552 ----a-w- c:\windows\system32\drivers\avckf.sys
2012-01-18 16:16 . 2012-01-18 16:16 691384 ----a-w- c:\windows\system32\drivers\avc3.sys
2012-01-06 05:15 . 2012-02-03 08:48 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5455C4D4-1FFE-4761-A060-92FFD8EDF170}\mpengine.dll
2011-12-08 12:28 . 2012-01-13 21:32 311296 ----a-w- c:\windows\SysWow64\TubeFinder.exe
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-01-27 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-01-25 61112]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-14 90192]
R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
R2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-01-23 62512]
R3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-30 136824]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-10-25 119632]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-01-05 2184496]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-10-25 20552]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - affe67fea5f3ec8
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 09:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2012-03-04 c:\windows\Tasks\HPCeeScheduleForEmilie.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 02:53]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-22 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-22 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-01-22 410136]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-14 487424]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-01-24 1066744]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
KR10N
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.be/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 213.30.163.218:3128
mSearchAssistant = hxxp://www.google.fr
IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\users\Emilie\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
IE: Télécharger avec Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm
LSP: mswsock.dll
TCP: DhcpNameServer = 192.168.1.254
DPF: {DAF94F73-2AA6-44D8-A562-A28831820D34} - hxxp://fr.pixum.be/apps/EasyUploadX.cab
FF - ProfilePath - c:\users\Emilie\AppData\Roaming\Mozilla\Firefox\Profiles\fhzrqoxy.Olivier\
FF - prefs.js: browser.startup.homepage - http://www.google.be
.
- - - - ORPHELINS SUPPRIMES - - - -
.
URLSearchHooks-{ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
URLSearchHooks-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
URLSearchHooks-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Toolbar-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
Toolbar-10 - (no file)
Toolbar-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-10 - (no file)
WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file)
WebBrowser-{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - (no file)
WebBrowser-{BB1227AC-7A0D-4076-8C1A-51A1348F6FA8} - (no file)
AddRemove-installer - c:\program files (x86)\Installer\un_installer_21627.exe
AddRemove-Windows Searchqu Toolbar - c:\program files (x86)\Windows Searchqu Toolbar\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\affe67fea5f3ec8]
"ImagePath"="\SystemRoot\System32\Drivers\affe67fea5f3ec8.sys"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Heure de fin: 2012-03-06 15:04:42 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-03-06 14:04
.
Avant-CF: 305.006.530.560 octets libres
Après-CF: 304.766.644.224 octets libres
.
- - End Of File - - C94C2FF81997D656B8CA112A8AE44824
Je fais lancer ZHPDiag et poser le rapport.
@+
Re: Pare-feu et Centre de sécurité disparus de la liste de services
Aie aie, je viens de me rendre compte que je n'avais pas vu le début de ton post qui concerne la création du fichier CFScript.txt.
J'avais renommé le fichier ComboFix.txt en CFScript.txt pour ensuite le déplacer sur ComboFix.exe
Je vais donc refaire correctement ce que tu m'as indiqué dans ton post précédent.
J'avais renommé le fichier ComboFix.txt en CFScript.txt pour ensuite le déplacer sur ComboFix.exe
Je vais donc refaire correctement ce que tu m'as indiqué dans ton post précédent.
Re: Pare-feu et Centre de sécurité disparus de la liste de services
Et voici le rapport de Combofix :
ComboFix 12-03-04.02 - Emilie 06/03/2012 15:39:04.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.32.1036.18.5942.4556 [GMT 1:00]
Lancé depuis: c:\users\Emilie\Desktop\ComboFix.exe
Commutateurs utilisés :: c:\users\Emilie\Desktop\CFScript.txt
AV: Norton 360 *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\programdata\1330465458.1140.bin"
"c:\programdata\1330465458.3184.bin"
"c:\programdata\1330465458.3984.bin"
"c:\programdata\1330465458.4016.bin"
"c:\programdata\1330465458.4164.bin"
"c:\programdata\1330465458.4448.bin"
"c:\programdata\1330465458.5048.bin"
"c:\programdata\1330466450.bdinstall.bin"
"c:\programdata\1330544174.bdinstall.bin"
"c:\programdata\1330544982.5340.bin"
"c:\programdata\1330544982.5352.bin"
"c:\programdata\1330544982.5376.bin"
"c:\programdata\1330545604.bdinstall.bin"
"c:\programdata\1330708998.bdinstall.bin"
"c:\programdata\oai4szz4hk.exe"
"c:\users\Emilie\oai4szz4hk.exe"
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1330465458.1140.bin
c:\programdata\1330465458.3184.bin
c:\programdata\1330465458.3984.bin
c:\programdata\1330465458.4016.bin
c:\programdata\1330465458.4164.bin
c:\programdata\1330465458.4448.bin
c:\programdata\1330465458.5048.bin
c:\programdata\1330466450.bdinstall.bin
c:\programdata\1330544174.bdinstall.bin
c:\programdata\1330544982.5340.bin
c:\programdata\1330544982.5352.bin
c:\programdata\1330544982.5376.bin
c:\programdata\1330545604.bdinstall.bin
c:\programdata\1330708998.bdinstall.bin
c:\users\Emilie\AppData\Roaming\inst.exe
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\assembly\temp\@
c:\windows\assembly\temp\cfg.ini
c:\windows\system32\consrv.dll
c:\windows\System64
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-02-06 au 2012-03-06 ))))))))))))))))))))))))))))))))))))
.
.
2012-03-05 20:29 . 2012-03-06 17:06 -------- d-----w- c:\program files (x86)\Cobian Backup 10
2012-03-05 13:13 . 2012-03-05 13:14 -------- d-----w- c:\users\Emilie\DoctorWeb
2012-03-04 07:49 . 2012-03-04 07:49 63 ----a-w- c:\windows\DeleteOnReboot.bat
2012-03-03 19:44 . 2012-03-03 19:49 -------- d-----w- C:\ZHP
2012-03-03 19:43 . 2012-03-03 19:48 -------- d-----w- c:\program files (x86)\ZHPDiag
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792059.bdinstall.bin
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792028.bdinstall.bin
2012-03-02 22:27 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-02 22:23 . 2012-03-02 22:23 -------- d-----w- c:\users\Emilie\AppData\Roaming\Bitdefender
2012-03-02 22:07 . 2012-03-02 22:09 -------- d-----w- c:\windows\system32\MpEngineStore
2012-03-02 20:03 . 2012-03-02 22:27 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-03-01 07:59 . 2012-03-01 07:59 -------- d-----w- c:\windows\system32\25DB~1
2012-02-28 22:43 . 2012-02-28 22:43 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-02-28 22:41 . 2012-03-03 07:20 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-02-28 22:41 . 2012-02-28 22:41 -------- d-----r- c:\program files (x86)\Skype
2012-02-28 22:09 . 2012-02-28 22:09 -------- d-----w- c:\programdata\BDLogging
2012-02-28 22:09 . 2012-03-02 22:22 -------- d-----w- c:\programdata\Bitdefender
2012-02-28 21:47 . 2012-02-28 21:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\QuickScan
2012-02-28 21:45 . 2012-03-03 07:20 -------- d-----w- c:\program files\Bitdefender
2012-02-28 21:44 . 2011-10-27 13:07 329800 ----a-w- c:\windows\system32\drivers\trufos.sys
2012-02-28 21:44 . 2011-08-16 12:59 442088 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys
2012-02-28 21:43 . 2012-03-03 07:20 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-02-24 15:33 . 2012-02-24 15:33 -------- d-----w- C:\avrescue
2012-02-24 08:54 . 2012-02-24 08:54 -------- d-----w- c:\users\Emilie\AppData\Roaming\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\programdata\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\program files (x86)\Avira
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\users\Emilie\AppData\Roaming\Malwarebytes
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\programdata\Malwarebytes
2012-02-21 23:17 . 1998-09-30 11:24 242448 ----a-w- c:\windows\system32\scedll.dll
2012-02-21 23:17 . 1998-03-31 15:37 29968 ----a-w- c:\windows\system32\Rshx32_5.dll
2012-02-21 22:41 . 2011-09-06 21:45 254400 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-21 22:41 . 2012-02-24 08:37 -------- d-----w- c:\programdata\AVAST Software
2012-02-21 22:41 . 2012-02-21 22:41 -------- d-----w- c:\program files\AVAST Software
2012-02-10 16:10 . 2012-02-21 23:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\panel
2012-02-07 08:30 . 2012-02-06 19:39 28672 ----a-w- c:\users\Emilie\oai4szz4hk.exe
2012-02-06 19:39 . 2012-02-06 19:39 28672 ----a-w- c:\programdata\oai4szz4hk.exe
2012-02-06 19:29 . 2012-03-06 14:16 0 --sha-w- c:\windows\system32\dds_trash_log.cmd
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-10 14:05 . 2012-01-20 17:37 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-26 23:52 . 2010-12-25 10:20 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-18 16:16 . 2012-01-18 16:16 544552 ----a-w- c:\windows\system32\drivers\avckf.sys
2012-01-18 16:16 . 2012-01-18 16:16 691384 ----a-w- c:\windows\system32\drivers\avc3.sys
2012-01-06 05:15 . 2012-02-03 08:48 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5455C4D4-1FFE-4761-A060-92FFD8EDF170}\mpengine.dll
2011-12-08 12:28 . 2012-01-13 21:32 311296 ----a-w- c:\windows\SysWow64\TubeFinder.exe
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-01-27 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-01-25 61112]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-14 90192]
R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
R2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-01-23 62512]
R3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-30 136824]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-10-25 119632]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-01-05 2184496]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-10-25 20552]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - affe67fea5f3ec8
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 09:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2012-03-04 c:\windows\Tasks\HPCeeScheduleForEmilie.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 02:53]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-22 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-22 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-01-22 410136]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-14 487424]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-01-24 1066744]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
KR10N
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.be/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 213.30.163.218:3128
mSearchAssistant = hxxp://www.google.fr
IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\users\Emilie\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
IE: Télécharger avec Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm
LSP: mswsock.dll
TCP: DhcpNameServer = 192.168.1.254
DPF: {DAF94F73-2AA6-44D8-A562-A28831820D34} - hxxp://fr.pixum.be/apps/EasyUploadX.cab
FF - ProfilePath - c:\users\Emilie\AppData\Roaming\Mozilla\Firefox\Profiles\fhzrqoxy.Olivier\
FF - prefs.js: browser.startup.homepage - www.google.be
.
- - - - ORPHELINS SUPPRIMES - - - -
.
URLSearchHooks-{ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
URLSearchHooks-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
URLSearchHooks-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Toolbar-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
Toolbar-10 - (no file)
Toolbar-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-10 - (no file)
WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file)
WebBrowser-{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - (no file)
WebBrowser-{BB1227AC-7A0D-4076-8C1A-51A1348F6FA8} - (no file)
AddRemove-installer - c:\program files (x86)\Installer\un_installer_21627.exe
AddRemove-Windows Searchqu Toolbar - c:\program files (x86)\Windows Searchqu Toolbar\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\affe67fea5f3ec8]
"ImagePath"="\SystemRoot\System32\Drivers\affe67fea5f3ec8.sys"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Heure de fin: 2012-03-06 15:50:48 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-03-06 14:50
ComboFix2.txt 2012-03-06 14:04
.
Avant-CF: 304.807.059.456 octets libres
Après-CF: 304.541.249.536 octets libres
.
- - End Of File - - E3B84B831A96A6C9EDC7B9041F4C8B02
Une fois terminé j'ai une fois de plus eu le même problème : impossibilité d'ouvrir un programme avec le même message d'erreur repris de mon post précédent.
Je lance ZHPDiag et te poste le rapport
ComboFix 12-03-04.02 - Emilie 06/03/2012 15:39:04.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.32.1036.18.5942.4556 [GMT 1:00]
Lancé depuis: c:\users\Emilie\Desktop\ComboFix.exe
Commutateurs utilisés :: c:\users\Emilie\Desktop\CFScript.txt
AV: Norton 360 *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\programdata\1330465458.1140.bin"
"c:\programdata\1330465458.3184.bin"
"c:\programdata\1330465458.3984.bin"
"c:\programdata\1330465458.4016.bin"
"c:\programdata\1330465458.4164.bin"
"c:\programdata\1330465458.4448.bin"
"c:\programdata\1330465458.5048.bin"
"c:\programdata\1330466450.bdinstall.bin"
"c:\programdata\1330544174.bdinstall.bin"
"c:\programdata\1330544982.5340.bin"
"c:\programdata\1330544982.5352.bin"
"c:\programdata\1330544982.5376.bin"
"c:\programdata\1330545604.bdinstall.bin"
"c:\programdata\1330708998.bdinstall.bin"
"c:\programdata\oai4szz4hk.exe"
"c:\users\Emilie\oai4szz4hk.exe"
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1330465458.1140.bin
c:\programdata\1330465458.3184.bin
c:\programdata\1330465458.3984.bin
c:\programdata\1330465458.4016.bin
c:\programdata\1330465458.4164.bin
c:\programdata\1330465458.4448.bin
c:\programdata\1330465458.5048.bin
c:\programdata\1330466450.bdinstall.bin
c:\programdata\1330544174.bdinstall.bin
c:\programdata\1330544982.5340.bin
c:\programdata\1330544982.5352.bin
c:\programdata\1330544982.5376.bin
c:\programdata\1330545604.bdinstall.bin
c:\programdata\1330708998.bdinstall.bin
c:\users\Emilie\AppData\Roaming\inst.exe
c:\windows\assembly\GAC_32\Desktop.ini
c:\windows\assembly\GAC_64\Desktop.ini
c:\windows\assembly\temp\@
c:\windows\assembly\temp\cfg.ini
c:\windows\system32\consrv.dll
c:\windows\System64
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-02-06 au 2012-03-06 ))))))))))))))))))))))))))))))))))))
.
.
2012-03-05 20:29 . 2012-03-06 17:06 -------- d-----w- c:\program files (x86)\Cobian Backup 10
2012-03-05 13:13 . 2012-03-05 13:14 -------- d-----w- c:\users\Emilie\DoctorWeb
2012-03-04 07:49 . 2012-03-04 07:49 63 ----a-w- c:\windows\DeleteOnReboot.bat
2012-03-03 19:44 . 2012-03-03 19:49 -------- d-----w- C:\ZHP
2012-03-03 19:43 . 2012-03-03 19:48 -------- d-----w- c:\program files (x86)\ZHPDiag
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792059.bdinstall.bin
2012-03-03 16:27 . 2012-03-03 16:27 1550 ----a-w- c:\programdata\1330792028.bdinstall.bin
2012-03-02 22:27 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-03-02 22:23 . 2012-03-02 22:23 -------- d-----w- c:\users\Emilie\AppData\Roaming\Bitdefender
2012-03-02 22:07 . 2012-03-02 22:09 -------- d-----w- c:\windows\system32\MpEngineStore
2012-03-02 20:03 . 2012-03-02 22:27 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-03-01 07:59 . 2012-03-01 07:59 -------- d-----w- c:\windows\system32\25DB~1
2012-02-28 22:43 . 2012-02-28 22:43 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-02-28 22:41 . 2012-03-03 07:20 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-02-28 22:41 . 2012-02-28 22:41 -------- d-----r- c:\program files (x86)\Skype
2012-02-28 22:09 . 2012-02-28 22:09 -------- d-----w- c:\programdata\BDLogging
2012-02-28 22:09 . 2012-03-02 22:22 -------- d-----w- c:\programdata\Bitdefender
2012-02-28 21:47 . 2012-02-28 21:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\QuickScan
2012-02-28 21:45 . 2012-03-03 07:20 -------- d-----w- c:\program files\Bitdefender
2012-02-28 21:44 . 2011-10-27 13:07 329800 ----a-w- c:\windows\system32\drivers\trufos.sys
2012-02-28 21:44 . 2011-08-16 12:59 442088 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys
2012-02-28 21:43 . 2012-03-03 07:20 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-02-24 15:33 . 2012-02-24 15:33 -------- d-----w- C:\avrescue
2012-02-24 08:54 . 2012-02-24 08:54 -------- d-----w- c:\users\Emilie\AppData\Roaming\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\programdata\Avira
2012-02-24 08:48 . 2012-02-24 08:48 -------- d-----w- c:\program files (x86)\Avira
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\users\Emilie\AppData\Roaming\Malwarebytes
2012-02-21 23:41 . 2012-02-21 23:41 -------- d-----w- c:\programdata\Malwarebytes
2012-02-21 23:17 . 1998-09-30 11:24 242448 ----a-w- c:\windows\system32\scedll.dll
2012-02-21 23:17 . 1998-03-31 15:37 29968 ----a-w- c:\windows\system32\Rshx32_5.dll
2012-02-21 22:41 . 2011-09-06 21:45 254400 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-21 22:41 . 2012-02-24 08:37 -------- d-----w- c:\programdata\AVAST Software
2012-02-21 22:41 . 2012-02-21 22:41 -------- d-----w- c:\program files\AVAST Software
2012-02-10 16:10 . 2012-02-21 23:47 -------- d-----w- c:\users\Emilie\AppData\Roaming\panel
2012-02-07 08:30 . 2012-02-06 19:39 28672 ----a-w- c:\users\Emilie\oai4szz4hk.exe
2012-02-06 19:39 . 2012-02-06 19:39 28672 ----a-w- c:\programdata\oai4szz4hk.exe
2012-02-06 19:29 . 2012-03-06 14:16 0 --sha-w- c:\windows\system32\dds_trash_log.cmd
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-10 14:05 . 2012-01-20 17:37 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-26 23:52 . 2010-12-25 10:20 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-18 16:16 . 2012-01-18 16:16 544552 ----a-w- c:\windows\system32\drivers\avckf.sys
2012-01-18 16:16 . 2012-01-18 16:16 691384 ----a-w- c:\windows\system32\drivers\avc3.sys
2012-01-06 05:15 . 2012-02-03 08:48 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5455C4D4-1FFE-4761-A060-92FFD8EDF170}\mpengine.dll
2011-12-08 12:28 . 2012-01-13 21:32 311296 ----a-w- c:\windows\SysWow64\TubeFinder.exe
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-01-27 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-01-22 2363392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-01-25 61112]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-14 90192]
R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 103504]
R1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
R2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2012-01-23 62512]
R3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]
R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-30 136824]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-10-25 119632]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-02-08 338168]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-01-18 20480]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2010-01-05 2184496]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-10-25 20552]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - affe67fea5f3ec8
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-01-22 09:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenu du dossier 'Tâches planifiées'
.
2012-03-04 c:\windows\Tasks\HPCeeScheduleForEmilie.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 02:53]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-01-22 166424]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-01-22 390680]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-01-22 410136]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-14 487424]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-01-24 1066744]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
KR10N
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.be/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = 213.30.163.218:3128
mSearchAssistant = hxxp://www.google.fr
IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\users\Emilie\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
IE: Télécharger avec Mipony - file://c:\program files (x86)\MiPony\Browser\IEContext.htm
LSP: mswsock.dll
TCP: DhcpNameServer = 192.168.1.254
DPF: {DAF94F73-2AA6-44D8-A562-A28831820D34} - hxxp://fr.pixum.be/apps/EasyUploadX.cab
FF - ProfilePath - c:\users\Emilie\AppData\Roaming\Mozilla\Firefox\Profiles\fhzrqoxy.Olivier\
FF - prefs.js: browser.startup.homepage - www.google.be
.
- - - - ORPHELINS SUPPRIMES - - - -
.
URLSearchHooks-{ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
URLSearchHooks-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
URLSearchHooks-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Toolbar-{4daac69c-cba7-45e2-9bc8-1044483d3352} - (no file)
Toolbar-10 - (no file)
Toolbar-{bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-10 - (no file)
WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file)
WebBrowser-{4DAAC69C-CBA7-45E2-9BC8-1044483D3352} - (no file)
WebBrowser-{BB1227AC-7A0D-4076-8C1A-51A1348F6FA8} - (no file)
AddRemove-installer - c:\program files (x86)\Installer\un_installer_21627.exe
AddRemove-Windows Searchqu Toolbar - c:\program files (x86)\Windows Searchqu Toolbar\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\affe67fea5f3ec8]
"ImagePath"="\SystemRoot\System32\Drivers\affe67fea5f3ec8.sys"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Heure de fin: 2012-03-06 15:50:48 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-03-06 14:50
ComboFix2.txt 2012-03-06 14:04
.
Avant-CF: 304.807.059.456 octets libres
Après-CF: 304.541.249.536 octets libres
.
- - End Of File - - E3B84B831A96A6C9EDC7B9041F4C8B02
Une fois terminé j'ai une fois de plus eu le même problème : impossibilité d'ouvrir un programme avec le même message d'erreur repris de mon post précédent.
Je lance ZHPDiag et te poste le rapport
Re: Pare-feu et Centre de sécurité disparus de la liste de services
Bonjour,
Peux-tu relancer ces deux outils après avoir supprimer leurs rapports existants :
TDSSKiller et ADwCleaner
Envoie les nouveaux rapports.
@+
Peux-tu relancer ces deux outils après avoir supprimer leurs rapports existants :
TDSSKiller et ADwCleaner
Envoie les nouveaux rapports.
@+
En cas de problème constaté sur un sujet, contactez un modérateur par MP. N'intervenez pas vous-même. Merci