[VISTA] Vista met 4 ans à démarrer...

[flyvincent]

bonjour

voila mon souci : vista SP1 met bien 5 bonnes minutes à démmarrer (barre de chargement verte). Je ne comprend pas d'ou vient le problème, d'autant plus que je suis 100% à jours, avast!, spybot, défrag, scandisck, Ccleaner, reset Cmos... tout ok

Quelqu'un aurait une idée de la façon dont je pourrais régler cet ennuieux problème?

vista SP1

asus P5k (bios à jours)

C2D e6420

2go ddr2 G.Skill 800mhz

dd seagate 320go 16mo

merci à vous!

[snooky]

Salut ,

désinstalle les daubes que sont Avast , Spybot et autres Ad-Aware ... !!!

Lance MBAM , supprime tout cequ'il trouve et poste le rapport créé.

Vise ma signature ...

[flyvincent]

salut et merci pour ton aide.

voici le rapport crée par le logiciel que tu m'as conseillé:

-----------------------------

Malwarebytes' Anti-Malware 1.34

Version de la base de données: 1780

Windows 6.0.6001 Service Pack 1

20/02/2009 15:00:11

mbam-log-2009-02-20 (15-00-11).txt

Type de recherche: Examen rapide

Eléments examinés: 63498

Temps écoulé: 4 minute(s), 50 second(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 1

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 1

Fichier(s) infecté(s): 3

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):

HKEY_CURRENT_USER\SOFTWARE\Trymedia Systems (Adware.Trymedia) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

Dossier(s) infecté(s):

C:\Program Files\Advantage (Adware.Advantage) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):

C:\Program Files\Advantage\AdVantage.htm (Adware.Advantage) -> Quarantined and deleted successfully.

C:\Program Files\Advantage\AdVUninst.exe (Adware.Advantage) -> Quarantined and deleted successfully.

C:\Program Files\Advantage\ffext.mod (Adware.Advantage) -> Quarantined and deleted successfully.

------------------------

en esperant que la solution s'y trouve, même si je n'y crois pas trop.

a+

[snooky]

Lance ensuite ComboFix , puis poste le rapport créé :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

[flyvincent]

salut

voici le log de combofix:ne sois pas trop regardant sur certaines choses

ComboFix 09-02-21.01 - vincent 2009-02-22 18:18:50.1 - NTFSx86

Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.2046.1211 [GMT 1:00]

Lancé depuis: c:\users\vincent\Desktop\ComboFix.exe

* Un nouveau point de restauration a été créé

.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\MessengerSkinner

c:\programdata\Microsoft\Windows\Start Menu\Programs\MessengerSkinner\Conditions générales.url

c:\programdata\Microsoft\Windows\Start Menu\Programs\MessengerSkinner\Confidentialité.url

c:\programdata\Microsoft\Windows\Start Menu\Programs\MessengerSkinner\Désinstaller.lnk

c:\programdata\Microsoft\Windows\Start Menu\Programs\MessengerSkinner\MessengerSkinner.lnk

c:\programdata\Microsoft\Windows\Start Menu\Programs\MessengerSkinner\Website.url

c:\windows\emMON.exe

.

((((((((((((((((((((((((((((( Fichiers créés du 2009-01-22 au 2009-02-22 ))))))))))))))))))))))))))))))))))))

.

2009-02-20 14:53 . 2009-02-20 14:53 <REP> d-------- c:\users\vincent\AppData\Roaming\Malwarebytes

2009-02-20 14:53 . 2009-02-20 14:53 <REP> d-------- c:\users\All Users\Malwarebytes

2009-02-20 14:53 . 2009-02-20 14:53 <REP> d-------- c:\programdata\Malwarebytes

2009-02-20 14:53 . 2009-02-20 14:53 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware

2009-02-20 14:53 . 2009-02-11 10:19 38,496 --a------ c:\windows\System32\drivers\mbamswissarmy.sys

2009-02-20 14:53 . 2009-02-11 10:19 15,504 --a------ c:\windows\System32\drivers\mbam.sys

2009-02-19 15:09 . 2009-02-19 15:09 3,974,440 --a------ c:\windows\System32\AdvrCntr3.dll

2009-02-18 20:37 . 2009-02-21 18:25 <REP> d-------- c:\program files\ProxyWay

2009-02-16 00:57 . 2009-02-05 22:06 51,792 --a------ c:\windows\System32\drivers\aswMonFlt.sys

2009-02-12 23:55 . 2009-02-21 12:49 <REP> d-------- C:\UnrealTournament

2009-02-12 23:25 . 2007-03-29 14:00 17,024 --a------ c:\windows\System32\drivers\KMWDFilter.SYS

2009-02-12 23:24 . 2009-02-12 23:24 <REP> d-------- c:\users\All Users\{60727955-924B-4A9F-9506-5104848B6673}

2009-02-12 23:24 . 2009-02-12 23:24 <REP> d-------- c:\programdata\{60727955-924B-4A9F-9506-5104848B6673}

2009-02-12 02:20 . 2009-02-12 02:20 <REP> d-------- c:\program files\Euro Truck Simulator

2009-02-12 01:56 . 2008-12-05 05:32 428,544 --a------ c:\windows\System32\EncDec.dll

2009-02-12 01:56 . 2008-12-05 05:32 293,376 --a------ c:\windows\System32\psisdecd.dll

2009-02-12 01:56 . 2008-12-05 05:31 217,088 --a------ c:\windows\System32\psisrndr.ax

2009-02-12 01:56 . 2008-12-05 05:31 177,664 --a------ c:\windows\System32\mpg2splt.ax

2009-02-12 01:56 . 2008-12-05 05:31 80,896 --a------ c:\windows\System32\MSNP.ax

2009-02-11 17:00 . 2009-01-15 04:36 1,383,424 --a------ c:\windows\System32\mshtml.tlb

2009-02-11 17:00 . 2009-01-15 07:11 827,392 --a------ c:\windows\System32\wininet.dll

2009-02-09 15:25 . 2009-02-09 16:30 <REP> d-------- c:\windows\System32\Adobe

2009-02-08 22:54 . 2009-02-08 22:54 <REP> d-------- C:\GAMES

2009-02-08 22:42 . 2009-02-08 22:42 <REP> d--h----- c:\windows\PIF

2009-02-08 22:32 . 2009-02-08 22:32 <REP> d-------- c:\program files\Games

2009-02-08 22:32 . 1996-11-05 16:13 299,008 --a------ c:\windows\uninst.exe

2009-02-06 19:39 . 2009-02-06 19:39 308,600 --a------ c:\windows\WLXPGSS.SCR

2009-02-06 18:52 . 2009-02-06 18:52 49,504 --a------ c:\windows\System32\sirenacm.dll

2009-02-03 10:16 . 2008-06-20 02:14 781,344 --a------ c:\windows\System32\PresentationNative_v0300.dll

2009-02-03 10:16 . 2008-06-20 02:14 622,080 --a------ c:\windows\System32\icardagt.exe

2009-02-03 10:16 . 2008-06-20 02:14 326,160 --a------ c:\windows\System32\PresentationHost.exe

2009-02-03 10:16 . 2008-06-20 02:14 105,016 --a------ c:\windows\System32\PresentationCFFRasterizerNative_v0300.dll

2009-02-03 10:16 . 2008-06-20 02:14 97,800 --a------ c:\windows\System32\infocardapi.dll

2009-02-03 10:16 . 2008-06-20 02:14 43,544 --a------ c:\windows\System32\PresentationHostProxy.dll

2009-02-03 10:16 . 2008-06-20 02:14 37,384 --a------ c:\windows\System32\infocardcpl.cpl

2009-02-03 10:16 . 2008-06-20 02:14 11,264 --a------ c:\windows\System32\icardres.dll

2009-02-03 10:10 . 2008-07-27 19:03 282,112 --a------ c:\windows\System32\mscoree.dll

2009-02-03 10:10 . 2008-07-27 19:03 158,720 --a------ c:\windows\System32\mscorier.dll

2009-02-03 10:10 . 2008-07-27 19:03 96,760 --a------ c:\windows\System32\dfshim.dll

2009-02-03 10:10 . 2008-07-27 19:03 83,968 --a------ c:\windows\System32\mscories.dll

2009-02-03 10:10 . 2008-07-27 19:03 41,984 --a------ c:\windows\System32\netfxperf.dll

2009-01-31 12:47 . 2009-01-31 12:47 <REP> d-------- c:\users\vincent\AppData\Roaming\ATI

2009-01-31 12:47 . 2009-01-31 12:47 <REP> d-------- c:\users\All Users\ATI

2009-01-31 12:47 . 2009-01-31 12:47 <REP> d-------- c:\programdata\ATI

2009-01-31 12:41 . 2009-01-31 12:41 <REP> d-------- c:\program files\Common Files\ATI Technologies

2009-01-31 12:40 . 2008-08-21 02:36 3,107,788 --a------ c:\windows\System32\atiumdva.dat

2009-01-31 12:40 . 2008-08-21 03:14 425,984 --a------ c:\windows\System32\ATIDEMGX.dll

2009-01-31 12:40 . 2006-08-23 22:26 328,162 --a------ c:\windows\System32\drivers\ativcaxx.cpa

2009-01-31 12:40 . 2007-09-09 03:37 52,400 --a------ c:\windows\System32\drivers\ativvpxx.vp

2009-01-31 12:40 . 2008-07-15 15:28 14,144 --a------ c:\windows\atiogl.xml

2009-01-31 12:40 . 2007-05-30 16:37 2,096 --a------ c:\windows\System32\drivers\ativpkxx.vp

2009-01-31 12:40 . 2007-05-30 16:37 2,096 --a------ c:\windows\System32\drivers\ativokxx.vp

2009-01-31 12:40 . 2007-04-18 13:19 2,096 --a------ c:\windows\System32\drivers\ativdkxx.vp

2009-01-31 12:40 . 2006-08-23 22:26 929 --a------ c:\windows\System32\drivers\ativcaxx.vp

2009-01-31 12:40 . 2009-01-31 12:40 0 --a------ c:\windows\ativpsrm.bin

2009-01-31 12:39 . 2009-01-31 12:42 <REP> d-------- c:\program files\ATI Technologies

2009-01-31 12:39 . 2009-01-31 12:39 <REP> d-------- c:\program files\ATI

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-02-21 17:25 --------- d-----w c:\programdata\Spybot - Search & Destroy

2009-02-18 23:29 --------- d-----w c:\program files\Windows Live

2009-02-18 22:05 --------- d-----w c:\program files\Postal2

2009-02-18 22:04 --------- d-----w c:\programdata\Nero

2009-02-17 22:36 --------- d-----w c:\users\vincent\AppData\Roaming\LimeWire

2009-02-17 01:11 --------- d-----w c:\program files\Common Files\Wise Installation Wizard

2009-02-15 14:25 --------- d-----w c:\program files\Safari

2009-02-14 12:21 --------- d-----w c:\program files\Spybot - Search & Destroy

2009-02-12 22:25 --------- d--h--w c:\program files\InstallShield Installation Information

2009-02-12 00:57 --------- d-----w c:\programdata\Microsoft Help

2009-02-12 00:56 --------- d-----w c:\program files\Windows Mail

2009-02-03 17:40 --------- d-----w c:\users\vincent\AppData\Roaming\Audacity

2009-02-01 20:54 --------- d-----w c:\users\vincent\AppData\Roaming\Hide IP NG

2009-02-01 14:41 --------- d-----w c:\program files\AGEIA Technologies

2009-01-18 21:16 --------- d-----w c:\program files\Micro Application

2009-01-18 21:06 --------- d-----w c:\program files\Microsoft Encarta

2009-01-18 20:53 --------- d-----w c:\program files\Microsoft Référence

2009-01-13 08:45 954,368 ----a-w c:\windows\system32\drivers\athr.sys

2009-01-07 00:31 --------- d-----w c:\program files\IKEA HomePlanner

2009-01-01 15:16 --------- d-----w c:\program files\PGameScan

2008-12-31 11:57 --------- d-----w c:\programdata\NVIDIA

2008-12-30 22:54 --------- d-----w c:\program files\CCleaner

2008-12-30 21:46 --------- d-----w c:\program files\Ubisoft

2008-12-30 21:43 --------- d-----w c:\program files\RivaTuner v2.02

2008-12-30 21:42 444,952 ----a-w c:\windows\System32\wrap_oal.dll

2008-12-30 21:42 109,080 ----a-w c:\windows\System32\OpenAL32.dll

2008-12-30 21:41 --------- d-----w c:\programdata\muvee Technologies

2008-12-30 21:40 --------- d-----w c:\program files\iPod

2008-12-30 21:33 --------- d-----w c:\program files\Electronic Arts

2008-12-23 13:44 --------- d-----w c:\programdata\nHancer

2008-12-22 15:17 410,984 ----a-w c:\windows\System32\deploytk.dll

2008-12-22 15:17 --------- d-----w c:\program files\Java

2008-12-22 14:53 --------- d---a-w c:\programdata\TEMP

2008-12-22 14:23 --------- d-----w c:\program files\NVIDIA Corporation

2008-12-22 14:10 --------- d-----w c:\users\vincent\AppData\Roaming\SystemRequirementsLab

2008-12-22 14:10 --------- d-----w c:\program files\SystemRequirementsLab

2008-12-19 13:45 98,816 ----a-w c:\windows\System32\CoachWia.dll

2008-12-19 13:45 14,336 ----a-w c:\windows\System32\CoachWrp.dll

2008-12-12 10:18 87,336 ----a-w c:\windows\System32\dns-sd.exe

2008-12-12 10:11 61,440 ----a-w c:\windows\System32\dnssd.dll

2008-11-21 14:36 22,328 ----a-w c:\users\vincent\AppData\Roaming\PnkBstrK.sys

2008-03-23 23:36 174 --sha-w c:\program files\desktop.ini

2007-12-24 13:27 2 --shatr c:\windows\winstart.bat

.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-01 61440]

"KMCONFIG"="c:\program files\Trust\Trust R-Series Keyboard\StartAutorun.exe" [2007-03-06 212992]

"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]

"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-08-08 1828136]

"fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" [2009-02-06 454000]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

[HKLM\~\startupfolder\C:^Users^vincent^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Outil de notification Live Search.lnk]

path=c:\users\vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification Live Search.lnk

backup=c:\windows\pss\Outil de notification Live Search.lnk.Startup

backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ai Nap]

--a------ 2007-04-09 13:49 1423360 c:\program files\ASUS\Ai Suite\AiNap\AiNap.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]

--a------ 2009-02-06 16:27 177472 c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

--a----t- 2008-09-02 21:14 133104 c:\users\vincent\AppData\Local\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

--a------ 2008-11-20 13:20 290088 c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

--a------ 2008-11-04 10:30 413696 c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]

--------- 2009-01-26 15:31 2144088 c:\program files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

--a------ 2008-12-22 16:17 136600 c:\program files\Java\jre6\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"UacDisableNotify"=dword:00000001

"InternetSettingsDisableNotify"=dword:00000001

"AutoUpdateDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1930523930-3288793105-916364385-1000]

"EnableNotificationsRef"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]

"{2697875B-EFBE-4C9F-BE63-CFEC04448759}"= UDP:c:\program files\SEGA\SEGA Rally\SEGA Rally.exe:SEGA Rally

"{85C12336-2B0A-43C0-A191-51B547EFBDFE}"= TCP:c:\program files\SEGA\SEGA Rally\SEGA Rally.exe:SEGA Rally

"{E70DE2D4-A4E3-4855-AA5D-25C2C226251F}"= UDP:c:\program files\SEGA\SEGA Rally\SEGA Rally_SSE1.exe:SEGA Rally

"{6D183E5E-4678-4BAD-9D41-69187D8BF1BD}"= TCP:c:\program files\SEGA\SEGA Rally\SEGA Rally_SSE1.exe:SEGA Rally

"{48EB2DCE-D240-426B-9C42-6CC9EE823C1D}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook

"TCP Query User{8F26540A-1E54-426A-A336-BA231797B9AB}c:\\program files\\pando networks\\pando\\pando.exe"= UDP:c:\program files\pando networks\pando\pando.exe:pando

"UDP Query User{53A3652A-12E8-47F5-B303-016C1FC522A6}c:\\program files\\pando networks\\pando\\pando.exe"= TCP:c:\program files\pando networks\pando\pando.exe:pando

"{ADD54EF9-14CF-4D4C-AE41-556083594F44}"= UDP:c:\program files\LimeWire\LimeWire.exe:LimeWire

"{13F0CD6C-CA8D-4FE6-A8F1-8127842113EA}"= TCP:c:\program files\LimeWire\LimeWire.exe:LimeWire

"{2B067EA9-354D-4469-8914-59D3F8960780}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)

"TCP Query User{9ECDC3CC-15F3-4E3F-AB97-2400AF92CDF4}c:\\program files\\nero\\nero8\\nero mediahome\\nmmediaserver.exe"= UDP:c:\program files\nero\nero8\nero mediahome\nmmediaserver.exe:Nero MediaHome

"UDP Query User{FF729234-2922-49E5-B870-1046E7914755}c:\\program files\\nero\\nero8\\nero mediahome\\nmmediaserver.exe"= TCP:c:\program files\nero\nero8\nero mediahome\nmmediaserver.exe:Nero MediaHome

"{352FAC9C-105A-4A35-A2A6-39222C2D9DCE}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)

"{086204BF-F8A0-4068-9A17-F4D551C9636D}"= UDP:c:\windows\System32\PnkBstrA.exe:PnkBstrA

"{3EDDB9C1-0EAB-46E5-9806-43C0E1EA163C}"= TCP:c:\windows\System32\PnkBstrA.exe:PnkBstrA

"{75809D63-BF38-4B05-B764-BFC25FD9FE92}"= UDP:c:\windows\System32\PnkBstrB.exe:PnkBstrB

"{F9B87E3E-E168-4D17-A627-E9E28E411D06}"= TCP:c:\windows\System32\PnkBstrB.exe:PnkBstrB

"TCP Query User{7AA2B1D1-800F-4C06-901F-C942A799BA7E}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer

"UDP Query User{27DE4785-ED88-426D-9CA8-C2D1AFADDC0A}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer

"{29558DEF-9116-4574-9C54-13751469D59C}"= UDP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty® 4 - Modern Warfare

"{B0F520CC-4A4A-4BC6-A156-4CC65DD291B9}"= TCP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty® 4 - Modern Warfare

"{0A596783-BB93-4B39-BA91-1CE9637C0C1C}"= UDP:c:\program files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)

"{574873CA-9D2B-4EFA-AA6D-FDB3F993D709}"= TCP:c:\program files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI)

"{A7593A6E-B5CE-46A8-B8A9-67D1EFBBFCEF}"= UDP:c:\program files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)

"{853CFD67-0277-4093-AFDB-E8E950DA6912}"= TCP:c:\program files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV)

"{5141F027-74A5-4B37-907F-2CD3382E53C3}"= UDP:c:\program files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:Crysis_32

"{DB55704A-8A4D-4218-8C3D-777C6D28FD75}"= TCP:c:\program files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:Crysis_32

"{FABCFEA5-A262-4164-9E5F-F8E5C13C9F57}"= UDP:c:\program files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32

"{102A566D-B028-4EC2-9C1A-25F278BC38F7}"= TCP:c:\program files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32

"{F5B328B3-AC77-4E4B-9097-FC775AD1722B}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)

"TCP Query User{E9F0545F-8930-4A0F-93A4-056309EE9C51}c:\\program files\\quicktime\\quicktimeplayer.exe"= UDP:c:\program files\quicktime\quicktimeplayer.exe:QuickTime Player

"UDP Query User{0F94DED8-3434-4DE4-85B1-C5B63C6FA777}c:\\program files\\quicktime\\quicktimeplayer.exe"= TCP:c:\program files\quicktime\quicktimeplayer.exe:QuickTime Player

"{488C8C65-D93B-4D4C-84A8-4195F6423E41}"= UDP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty® 4 - Modern Warfare

"{8C614C58-AAE3-4681-95B8-45EB34B3E051}"= TCP:c:\program files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:Call of Duty® 4 - Modern Warfare

"{72205101-FEC4-4716-B05F-61438B267A35}"= UDP:c:\windows\ehome\ehshell.exe:Windows Media Center

"{1C1D646F-FF4C-482C-9CE5-CCF748C8DB93}"= TCP:c:\windows\ehome\ehshell.exe:Windows Media Center

"{DA3E91A4-4AAA-4D4E-9C6C-E1C8FA4A5B9F}"= UDP:c:\program files\Pinnacle\TVCenter Pro\PMC.exe:TVCenter Pro

"{E5A3373E-F4A2-4B39-849B-5AE48814F53E}"= TCP:c:\program files\Pinnacle\TVCenter Pro\PMC.exe:TVCenter Pro

"{1105B472-2BB5-40A9-8668-D930D8A5A083}"= UDP:c:\program files\Auran\TRS2008\TRS2008.exe:TRS2008

"{04B05D4E-2747-415D-97DC-41344877CD3D}"= TCP:c:\program files\Auran\TRS2008\TRS2008.exe:TRS2008

"{A57CFFFD-2348-4FB7-AA91-98693BF682B6}"= UDP:c:\program files\Auran\TRS2008\Bin\Trainz.exe:Trainz.exe

"{1B9600D8-5A8B-4947-ABEE-4810C4492616}"= TCP:c:\program files\Auran\TRS2008\Bin\Trainz.exe:Trainz.exe

"{D65D2884-D5D4-4914-8B2C-0435BFB71E6E}"= UDP:c:\program files\Xvid\StatsReader.exe:StatsReader 2.1

"{0DC3E06D-67EC-414B-B10A-DCFD1246878B}"= TCP:c:\program files\Xvid\StatsReader.exe:StatsReader 2.1

"{EEAFA540-DC56-4248-811A-62F53F40EA2F}"= UDP:c:\program files\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\Binaries\MOHA.exe:Medal of Honor Airborne

"{2277AF0E-ADE4-4BBC-9875-4BB8301765BD}"= TCP:c:\program files\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\Binaries\MOHA.exe:Medal of Honor Airborne

"{59B2C05D-54CF-4549-B9A0-891BD9F62B1A}"= UDP:5800:LocalSubnet:LocalSubnet:VNC 5800

"{2D75FCCB-1265-4CEF-8AE5-5833AFC6E5E3}"= UDP:5900:LocalSubnet:LocalSubnet:VNC 5900

"TCP Query User{17565068-7334-469D-8253-79F203EC273E}c:\\program files\\microsoft games\\microsoft flight simulator x\\fsx.exe"= UDP:c:\program files\microsoft games\microsoft flight simulator x\fsx.exe:Microsoft Flight Simulator®

"UDP Query User{5BB5A285-87BA-44C2-8FDE-A6C63583D4BE}c:\\program files\\microsoft games\\microsoft flight simulator x\\fsx.exe"= TCP:c:\program files\microsoft games\microsoft flight simulator x\fsx.exe:Microsoft Flight Simulator®

"TCP Query User{323FCF37-9072-45D6-AAB4-88434B520C5E}c:\\program files\\electronic arts\\crytek\\crysis\\bin32\\crysis.exe"= UDP:c:\program files\electronic arts\crytek\crysis\bin32\crysis.exe:Crysis

"UDP Query User{9D05EB4F-7E24-4C4B-B43F-3AB065268174}c:\\program files\\electronic arts\\crytek\\crysis\\bin32\\crysis.exe"= TCP:c:\program files\electronic arts\crytek\crysis\bin32\crysis.exe:Crysis

"{BF969804-3227-4583-9407-205A1015F0CF}"= UDP:c:\program files\EA GAMES\Battlefield 2\BF2.exe:Battlefield 2

"{763FB570-4CBE-4801-80E6-FE3D531557C3}"= TCP:c:\program files\EA GAMES\Battlefield 2\BF2.exe:Battlefield 2

"TCP Query User{631809E6-EC3A-49F7-8437-2F3638056BFE}c:\\program files\\postal2stp\\system\\postal2mp.exe"= UDP:c:\program files\postal2stp\system\postal2mp.exe:Postal2MP

"UDP Query User{9690144F-69F7-406E-ABD9-EB4C32CA9401}c:\\program files\\postal2stp\\system\\postal2mp.exe"= TCP:c:\program files\postal2stp\system\postal2mp.exe:Postal2MP

"{989369DA-5FDC-4827-8498-F7534A74225A}"= UDP:c:\program files\Pinnacle\TVCenter Pro\PMC.exe:TVCenter Pro

"{2308ED0F-ACD2-4457-9CA5-57E2D97EB79E}"= TCP:c:\program files\Pinnacle\TVCenter Pro\PMC.exe:TVCenter Pro

"TCP Query User{405F5B97-BD5A-4F77-A0A9-FF30364E1508}c:\\program files\\tmnationsforever\\tmforever.exe"= UDP:c:\program files\tmnationsforever\tmforever.exe:TmForever

"UDP Query User{E6A10282-29AA-4957-A632-ABB194566FF6}c:\\program files\\tmnationsforever\\tmforever.exe"= TCP:c:\program files\tmnationsforever\tmforever.exe:TmForever

"TCP Query User{B76A9190-AA13-44A4-911B-DF08A46BAC94}c:\\program files\\videolan\\vlc\\vlc.exe"= UDP:c:\program files\videolan\vlc\vlc.exe:VLC media player

"UDP Query User{B52C8FAE-E7CB-4123-ADD3-01737C9DAACD}c:\\program files\\videolan\\vlc\\vlc.exe"= TCP:c:\program files\videolan\vlc\vlc.exe:VLC media player

"TCP Query User{D35EA17A-B253-42C6-A5E1-338A6BD893E0}c:\\users\\vincent\\downloads\\css_no-steam_by33.1\\hl2.exe"= UDP:c:\users\vincent\downloads\css_no-steam_by33.1\hl2.exe:hl2.exe

"UDP Query User{82C4CA63-49CA-403A-A60B-F211722BAD04}c:\\users\\vincent\\downloads\\css_no-steam_by33.1\\hl2.exe"= TCP:c:\users\vincent\downloads\css_no-steam_by33.1\hl2.exe:hl2.exe

"TCP Query User{5DB1F425-3E23-4A32-9FF1-E497B11A4996}c:\\program files\\wolfenstein - enemy territory\\et.exe"= UDP:c:\program files\wolfenstein - enemy territory\et.exe:ET

"UDP Query User{6DB21750-3D35-4F5D-B44E-EA641D8936C5}c:\\program files\\wolfenstein - enemy territory\\et.exe"= TCP:c:\program files\wolfenstein - enemy territory\et.exe:ET

"TCP Query User{76232BAD-989C-4F89-BF8D-523B0CB76D22}c:\\users\\vincent\\downloads\\race.driver.grid.multi-5.full-rip.skullptura_epidem.ru\\race.driver.grid.multi-5.full-rip.skullptura\\race.driver.grid.multi-5.full-rip.skullptura\\grid\\grid.exe"= UDP:c:\users\vincent\downloads\race.driver.grid.multi-5.full-rip.skullptura_epidem.ru\race.driver.grid.multi-5.full-rip.skullptura\race.driver.grid.multi-5.full-rip.skullptura\grid\grid.exe:grid.exe

"UDP Query User{EA664B19-AD46-4FB5-9A8F-62C34E53B627}c:\\users\\vincent\\downloads\\race.driver.grid.multi-5.full-rip.skullptura_epidem.ru\\race.driver.grid.multi-5.full-rip.skullptura\\race.driver.grid.multi-5.full-rip.skullptura\\grid\\grid.exe"= TCP:c:\users\vincent\downloads\race.driver.grid.multi-5.full-rip.skullptura_epidem.ru\race.driver.grid.multi-5.full-rip.skullptura\race.driver.grid.multi-5.full-rip.skullptura\grid\grid.exe:grid.exe

"{EC58B5D9-F501-4D79-BFD9-EAA840356BA1}"= UDP:c:\program files\Pinnacle\Shared Files\Programs\StrmServer\StrmServer.exe:Pinnacle Streaming Server

"{AF04C114-3B10-44D6-B9D7-B0107313301A}"= TCP:c:\program files\Pinnacle\Shared Files\Programs\StrmServer\StrmServer.exe:Pinnacle Streaming Server

"TCP Query User{CFCCA048-711A-4F49-AD46-3C1F75CD256B}c:\\program files\\pinnacle\\shared files\\programs\\strmserver\\strmserver.exe"= UDP:c:\program files\pinnacle\shared files\programs\strmserver\strmserver.exe:Streaming Server

"UDP Query User{9539A1CA-AAA5-4CDF-903B-ACC499DCC6E0}c:\\program files\\pinnacle\\shared files\\programs\\strmserver\\strmserver.exe"= TCP:c:\program files\pinnacle\shared files\programs\strmserver\strmserver.exe:Streaming Server

"TCP Query User{931ADF22-F1A8-4701-BC57-1CABBED97B46}c:\\program files\\ea games\\mohda\\moh_spearhead.exe"= UDP:c:\program files\ea games\mohda\moh_spearhead.exe:Medal of Honor Allied Assault Spearhead

"UDP Query User{B1AC7097-1C86-4083-B99C-EE8C33DF44C1}c:\\program files\\ea games\\mohda\\moh_spearhead.exe"= TCP:c:\program files\ea games\mohda\moh_spearhead.exe:Medal of Honor Allied Assault Spearhead

"TCP Query User{46505708-CEA8-4967-A5E4-DB65CFA15F8C}c:\\program files\\ea games\\mohda\\mohaa.exe"= UDP:c:\program files\ea games\mohda\mohaa.exe:Medal of Honor Allied Assault

"UDP Query User{713E318B-CB44-41C4-8A66-F7A227E73222}c:\\program files\\ea games\\mohda\\mohaa.exe"= TCP:c:\program files\ea games\mohda\mohaa.exe:Medal of Honor Allied Assault

"{818D6105-D3D4-4B79-995E-01E56D7A9B6D}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour

"{5BA4B397-625A-4E55-A2EE-1FBA38C51B2A}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour

"{98CC14E9-F9C4-4790-9B1C-F7865D7E56FE}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes

"{2A892F6A-578D-4F10-AEBC-AF17FD81820A}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes

"TCP Query User{7AEAF9A2-3BDC-406A-A9E4-C3A0833E1036}c:\\program files\\gamespy\\comrade\\comrade.exe"= UDP:c:\program files\gamespy\comrade\comrade.exe:Comrade

"UDP Query User{4FDB740B-5F9D-4E7A-A289-0363214E1284}c:\\program files\\gamespy\\comrade\\comrade.exe"= TCP:c:\program files\gamespy\comrade\comrade.exe:Comrade

"{49380DE8-0B14-4D6A-BBEA-5A26312E0D2A}"= UDP:c:\program files\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (CLI)

"{44ED767E-AC2B-4BAA-9AEC-4A9C3D7C08CF}"= TCP:c:\program files\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (CLI)

"{EAC6C5D7-37C5-4853-89CE-679FBCDE97E3}"= UDP:c:\program files\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (SRV)

"{D4CAB7D0-8DC1-47B7-9ED7-FE083948217E}"= TCP:c:\program files\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe:S.T.A.L.K.E.R. - Clear Sky (SRV)

"{A92E9352-34BC-4E78-8439-7ACB9823F3BA}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:Far Cry 2 Updater

"{3B508B6C-C1DA-48D2-93F7-008AE65B855A}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:Far Cry 2 Updater

"{C9801375-3C44-47EF-9E37-62CC34B61C97}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:Editeur

"{1DDBC7C8-90A5-4E9E-809D-40D99A68C8D3}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:Editeur

"{22BD5BEC-BA16-43DD-BB9F-17DBFC522FFF}"= UDP:c:\windows\System32\PnkBstrA.exe:PnkBstrA

"{EC3ACCA1-03C8-4AF2-814A-7C2D8FFC7AFE}"= TCP:c:\windows\System32\PnkBstrA.exe:PnkBstrA

"{9AA1454C-4BF6-4384-B5B6-4A67B2CF921D}"= UDP:c:\windows\System32\PnkBstrB.exe:PnkBstrB

"{A7794CC5-108E-4CC6-8A29-5195A2DE8260}"= TCP:c:\windows\System32\PnkBstrB.exe:PnkBstrB

"{3A607C1B-3DAB-42A2-854F-0FC0523D68E9}"= UDP:c:\program files\Ubisoft\Far Cry 2\bin\FarCry2.exe:Far Cry 2

"{222FF9D5-6313-4208-83D3-E0220497D4EB}"= TCP:c:\program files\Ubisoft\Far Cry 2\bin\FarCry2.exe:Far Cry 2

"{D85E63B4-5C4C-4235-B67F-D6C038266AE9}"= UDP:c:\program files\Activision\Call of Duty - World at War\CoDWaWmp.exe:Call of Duty® - World at War

"{E0ABC5B3-6EA2-4BE1-BC29-8BD85E5A0D82}"= TCP:c:\program files\Activision\Call of Duty - World at War\CoDWaWmp.exe:Call of Duty® - World at War

"{111BA772-59A3-45A1-A13B-1DD32D15B7DB}"= UDP:c:\program files\Activision\Call of Duty - World at War\CoDWaW.exe:Call of Duty® - World at War

"{882A61B0-404D-4EF9-87EC-926791F60014}"= TCP:c:\program files\Activision\Call of Duty - World at War\CoDWaW.exe:Call of Duty® - World at War

"{6DF8C3B1-BC17-4842-BA6D-DACF21BAF977}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes

"{F0ACC867-2C07-4DD5-BA2D-E54832C1AB9B}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes

"{375B80D0-1636-4C7B-91AB-8BAA72DEBBFF}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour

"{7F4E8628-EDC6-4788-9A3E-104D9BE69736}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour

"TCP Query User{81CC768B-9BA4-4B9C-995F-B7B471E0BBE2}c:\\program files\\limewire\\limewire.exe"= UDP:c:\program files\limewire\limewire.exe:LimeWire

"UDP Query User{DFE0A994-5ED5-4304-9C21-35650EFD7A14}c:\\program files\\limewire\\limewire.exe"= TCP:c:\program files\limewire\limewire.exe:LimeWire

"{4108C86D-2090-415E-AA46-ED6DF4577AE6}"= UDP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club

"{FEBAFAFF-1A46-42D5-95B3-E1D87D87FC08}"= TCP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club

"{C33E2B95-7FB4-4D58-8432-6047B43F0646}"= UDP:c:\program files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV

"{D08E1B85-4511-44C2-943D-A6792523D994}"= TCP:c:\program files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV

"{5DF85F86-A365-4045-B010-561BE76428B0}"= UDP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club

"{1EABF884-4A77-4F61-B540-363B4E8C291B}"= TCP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club

"TCP Query User{C303A756-E1AE-42F5-A3B2-396B779608D0}c:\\program files\\rockstar games\\grand theft auto iv\\gtaiv.exe"= UDP:c:\program files\rockstar games\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV

"UDP Query User{BF75EA99-BBCB-4F31-BD84-8027B73E38C3}c:\\program files\\rockstar games\\grand theft auto iv\\gtaiv.exe"= TCP:c:\program files\rockstar games\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV

"TCP Query User{4B660B24-3CF2-4CA1-8723-7E32FFD1EC33}c:\\program files\\pando networks\\pando\\pando.exe"= UDP:c:\program files\pando networks\pando\pando.exe:pando

"UDP Query User{189B0FE2-604B-4DDD-B97E-70EE288D8D1A}c:\\program files\\pando networks\\pando\\pando.exe"= TCP:c:\program files\pando networks\pando\pando.exe:pando

"TCP Query User{78E8836B-DF61-4AD3-934A-B27697536391}c:\\program files\\ea games\\mohda\\mohaa.exe"= UDP:c:\program files\ea games\mohda\mohaa.exe:Medal of Honor Allied Assault

"UDP Query User{15D87BCE-434A-4A60-9C22-B8ECC7214C7C}c:\\program files\\ea games\\mohda\\mohaa.exe"= TCP:c:\program files\ea games\mohda\mohaa.exe:Medal of Honor Allied Assault

"TCP Query User{6C9D9942-83A7-4B9F-BB62-F07F55B696E6}c:\\users\\vincent\\downloads\\css_no-steam_by33.1\\hl2.exe"= UDP:c:\users\vincent\downloads\css_no-steam_by33.1\hl2.exe:hl2.exe

"UDP Query User{B99FD5A6-2858-4D86-B08D-8687D1E74FAF}c:\\users\\vincent\\downloads\\css_no-steam_by33.1\\hl2.exe"= TCP:c:\users\vincent\downloads\css_no-steam_by33.1\hl2.exe:hl2.exe

"TCP Query User{EC45D15C-C881-4230-897F-3155277E954F}c:\\unrealtournament\\system\\unrealtournament.exe"= UDP:c:\unrealtournament\system\unrealtournament.exe:UnrealTournament

"UDP Query User{E63E97D5-C073-4564-9094-4DE9B42F68E2}c:\\unrealtournament\\system\\unrealtournament.exe"= TCP:c:\unrealtournament\system\unrealtournament.exe:UnrealTournament

"{5E52DD8D-7A8E-401E-9AD5-5C299ABBA8C6}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live Sync

"TCP Query User{56B3DB66-B4C2-49B4-A497-9CE3FD555856}c:\\unrealtournament\\system\\unrealtournament.exe"= UDP:c:\unrealtournament\system\unrealtournament.exe:UnrealTournament

"UDP Query User{EBBD56D4-C904-4FE7-B3C2-B0C41605EAE5}c:\\unrealtournament\\system\\unrealtournament.exe"= TCP:c:\unrealtournament\system\unrealtournament.exe:UnrealTournament

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]

"DoNotAllowExceptions"= 0 (0x0)

R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [2009-02-16 114768]

R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [2009-02-16 20560]

R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [2009-02-16 51792]

R2 fssfltr;FssFltr;c:\windows\System32\drivers\fssfltr.sys [2008-12-21 55264]

R2 fsssvc;Windows Live Contrôle parental;c:\program files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]

R2 KMWDSERVICE;Keyboard And Mouse Communication Service;c:\program files\Trust\Trust R-Series Keyboard\KMWDSrv.exe [2007-04-05 208896]

R2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2008-05-29 1153368]

R2 SeaPort;SeaPort;c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]

R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\System32\drivers\l160x86.sys [2008-11-12 46592]

S2 WZCOOK;WEP/WPA-PMK key recovery service;c:\users\vincent\Desktop\Outils\Crack_WEP\Crack WEP\Tools\WinAircrackPack\WinAircrackPack\wzcook.exe [2007-09-09 40960]

S3 CoachVid;CoachVid;c:\windows\System32\drivers\CoachVid.sys [2006-12-14 45280]

S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\drivers\mbamswissarmy.sys [2009-02-20 38496]

S3 pctvnet;Pinnacle PCTV Ethernet Driver;c:\windows\System32\drivers\pctvnet.sys [2008-02-14 9340]

S3 PEEK5;PEEK5 Protocol Driver;c:\users\vincent\Desktop\Outils\CRACK_~1\CRACKW~1\Tools\WINAIR~1\WINAIR~1\PEEK5.SYS [2007-09-09 13184]

S3 rt61x86;Ralink RT61 Wireless Driver for Windows Vista;c:\windows\System32\drivers\netr61.sys [2006-08-25 274432]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{425a68f1-96f5-11dd-ab16-00184ded8f90}]

\shell\Auto\command - cmd /C launch.bat

\shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL cmd /C launch.bat

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4cd46bc8-801c-11dc-9968-806e6f6e6963}]

\shell\AutoRun\command - E:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a6c39a3a-8f21-11dd-b0c6-00184ded8f90}]

\shell\AutoRun\command - E:\autorun.exe

.

Contenu du dossier 'Tâches planifiées'

2009-02-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1930523930-3288793105-916364385-1000.job

- c:\users\vincent\AppData\Local\Google\Update\GoogleUpdate.exe [2008-09-02 21:14]

2009-02-22 c:\windows\Tasks\User_Feed_Synchronization-{6DFB7418-1572-476F-A4EE-2D5302A72C0C}.job

- c:\windows\system32\msfeedssync.exe [2008-01-19 08:33]

.

- - - - ORPHELINS SUPPRIMES - - - -

BHO-{E3EA4FD1-CADE-4ae5-84F7-086EEE888BE4} - (no file)

BHO-{EEE6C35C-6118-11DC-9C72-001320C79847} - (no file)

Toolbar-{E3EA4FD9-CADE-4ae5-84F7-086EEE888BE4} - (no file)

WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)

HKCU-Run-UNILEX - (no file)

MSConfigStartUp-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe

.

------- Examen supplémentaire -------

.

uInternet Settings,ProxyOverride = local

uInternet Settings,ProxyServer = 127.0.0.1:81

IE: Add to Windows &Live Favorites

IE: E&xporter vers Microsoft Excel

IE: Liens de téléchargement avec Mega Manager...

DPF: {D5D30A68-E230-49D9-B4D5-BF7532692945} - hxxps://clients.cdiscount.com/Order/TechCity/activex/CDiscount.cab

FF - ProfilePath - c:\users\vincent\AppData\Roaming\Mozilla\Firefox\Profiles\ixev9zaq.default\

FF - prefs.js: browser.startup.homepage - hxxp://fr.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:official

FF - prefs.js: keyword.URL - hxxp://search.live.com/results.aspx?mkt=fr-FR&FORM=MIMWA5&q=

1 fichier(s) déplacé(s).

FF - component: c:\users\vincent\AppData\Roaming\Mozilla\Firefox\Profiles\ixev9zaq.default\extensions\piclens@cooliris.com\components\coolirisstub.dll

FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll

FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: c:\users\vincent\AppData\Local\Google\Update\1.2.141.5\npGoogleOneClick7.dll

.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2009-02-22 18:36:23

Windows 6.0.6001 Service Pack 1 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

c:\users\vincent\AppData\Local\Temp\catchme.dll 53248 bytes executable

Scan terminé avec succès

Fichiers cachés: 1

**************************************************************************

.

Heure de fin: 2009-02-22 18:40:01

ComboFix-quarantined-files.txt 2009-02-22 17:39:27

Avant-CF: 100 262 350 848 octets libres

Après-CF: 98,963,955,712 octets libres

363 --- E O F --- 2009-02-12 01:00:33

[snooky]

Créer un rapport GSI et poste le lien de ce rapport dans ta réponse.

[flyvincent]

salut!

voici le lien demandé

http://gsi.kaspersky.fr/read.php?hl=fr&amp...amp;Microsoft=0

merci à toi pour l'interet que tu porte à mon problème!

[snooky]

Pour la 2ème fois :

Désinstalle Avast et Spybot.

Pareil pour Java , désinstalle les , puis installe la dernière version en date : http://www.java.com/fr/download/installed.jsp

Lance Clean v2.0 > procédure 1

Redémarre le pc .

[flyvincent]

salut

bon, il dsemblerait que le problème vienne de mon driver JMicron qui fait déconner les disques dures, mais j'arrive pas à trouver les derniers pilotes...

merci pour toute l'aide apportée!