nod32 n'est pas une application win32 valide resolu - Sécurité - Virus
TomsGuide.com : 700 000 inscrits répondent à toutes vos questions high-tech et informatique.
Pour obtenir de l'aide, inscrivez-vous gratuitement !
 

Ajouter une réponse



Mot :   Pseudo :  
 
Bas de page
Auteur
 Sujet : nod32 n'est pas une application win32 valide resolu
 
mizot 59
Profil : IDNaute
Plus d'informations
n°301479
14-04-2008 à 11:53:42

bonjour
mon antivirus nod32 est disparu de la barre des taches et je n'arrice plus a le lancer pourriez vous m'aider merci


Message édité par mizot 59 le 24-04-2008 à 18:34:04
Liens sponsorisés


Inscrivez-vous ou connectez-vous pour masquer ceci.

Egwene
Profil : Helper
Plus d'informations
n°301486
14-04-2008 à 12:11:05

Bonjour, :hello:

Télécharge ELIBAGLA en bas de cette page:
==> http://www.zonavirus.com/datos/des [...] ibagla.asp
Lance Elibagla en double cliquant dessus.
assure toi que le bouton "Eliminar Ficheros Automaticamente" soit coché.
Vérifie que C:\ soit sélectionné dans Unidad (ou la partition contenant ton OS).
Clique sur le bouton Explorar.
à la fin poste le rapport C:\infoSat.txt

N.B : Si ELIBAGLA ne marche pas, reviens me le dire, sinon poste le rapport demandé :)

;)


---------------
Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
mizot 59
Profil : IDNaute
Plus d'informations
n°301505
14-04-2008 à 13:36:59

Mon Apr 14 13:28:13 2008
EliBagle v11.25 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):

Mon Apr 14 13:28:20 2008
EliBagle v11.25 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad E:\

Nº Total de Directorios: 10776
Nº Total de Ficheros: 77988
Nº de Ficheros Analizados: 9932
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0

mizot 59
Profil : IDNaute
Plus d'informations
n°301517
14-04-2008 à 14:07:22

bonjour je re poste le msg d'eliblaga merci

Mon Apr 14 14:05:14 2008
EliBagle v11.25 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):

Mon Apr 14 14:05:20 2008
EliBagle v11.25 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad E:\

Nº Total de Directorios: 10776
Nº Total de Ficheros: 78164
Nº de Ficheros Analizados: 9933
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0

Egwene
Profil : Helper
Plus d'informations
n°301518
14-04-2008 à 14:07:27

Re,

Citation :

Infection BAGLE



Si tu es sous Vista, désactive l'uac : http://bibou0007.com/tutos-f45/tut [...] a-t132.htm

Télécharge Combofix de sUBs : Renomme le avant toute installation, par exemple, nomme le "KillBagle". aide ici : http://forum.pcastuces.com/sujet.asp?f=25&s=37315

http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Sauvegarde le sur ton bureau et pas ailleurs !

Double-clic sur combofix, Il va te poser une question, réponds par la touche 1 et entrée pour valider, laisse toi guider.
Attends que combofix ait terminé, un rapport sera créé. Poste le rapport.

;)


---------------
Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
mizot 59
Profil : IDNaute
Plus d'informations
n°301532
14-04-2008 à 14:25:02

voici mon rapport

ComboFix 08-04-13.3 - mizot 2008-04-14 14:21:15.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.2794 [GMT 2:00]
Endroit: E:\Documents and Settings\mizot\Bureau\ComboFix.exe
* Création d'un nouveau point de restauration
* Resident AV is active


[color=red]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

E:\WINDOWS\system32\drivers\downld
E:\WINDOWS\system32\drivers\downld\100531.exe
E:\WINDOWS\system32\drivers\downld\1057250.exe
E:\WINDOWS\system32\drivers\downld\1068515.exe
E:\WINDOWS\system32\drivers\downld\111062.exe
E:\WINDOWS\system32\drivers\downld\1130140.exe
E:\WINDOWS\system32\drivers\downld\1142453.exe
E:\WINDOWS\system32\drivers\downld\1157312.exe
E:\WINDOWS\system32\drivers\downld\1164968.exe
E:\WINDOWS\system32\drivers\downld\1182281.exe
E:\WINDOWS\system32\drivers\downld\1184328.exe
E:\WINDOWS\system32\drivers\downld\1209984.exe
E:\WINDOWS\system32\drivers\downld\1221703.exe
E:\WINDOWS\system32\drivers\downld\1231890.exe
E:\WINDOWS\system32\drivers\downld\1234000.exe
E:\WINDOWS\system32\drivers\downld\19918500.exe
E:\WINDOWS\system32\drivers\downld\19931359.exe
E:\WINDOWS\system32\drivers\downld\19954656.exe
E:\WINDOWS\system32\drivers\downld\19966218.exe
E:\WINDOWS\system32\drivers\downld\19976906.exe
E:\WINDOWS\system32\drivers\downld\29567781.exe
E:\WINDOWS\system32\drivers\downld\29706531.exe
E:\WINDOWS\system32\drivers\downld\29836843.exe
E:\WINDOWS\system32\drivers\downld\29847062.exe
E:\WINDOWS\system32\drivers\downld\29853921.exe
E:\WINDOWS\system32\drivers\downld\29856828.exe
E:\WINDOWS\system32\drivers\downld\32701578.exe
E:\WINDOWS\system32\drivers\downld\32726031.exe
E:\WINDOWS\system32\drivers\downld\3276531.exe
E:\WINDOWS\system32\drivers\downld\32854078.exe
E:\WINDOWS\system32\drivers\downld\32871906.exe
E:\WINDOWS\system32\drivers\downld\32878265.exe
E:\WINDOWS\system32\drivers\downld\32880312.exe
E:\WINDOWS\system32\drivers\downld\3431781.exe
E:\WINDOWS\system32\drivers\downld\34381859.exe
E:\WINDOWS\system32\drivers\downld\34395515.exe
E:\WINDOWS\system32\drivers\downld\34434593.exe
E:\WINDOWS\system32\drivers\downld\34448437.exe
E:\WINDOWS\system32\drivers\downld\34460765.exe
E:\WINDOWS\system32\drivers\downld\346500.exe
E:\WINDOWS\system32\drivers\downld\3467796.exe
E:\WINDOWS\system32\drivers\downld\3480500.exe
E:\WINDOWS\system32\drivers\downld\3492625.exe
E:\WINDOWS\system32\drivers\downld\4156312.exe
E:\WINDOWS\system32\drivers\downld\4289875.exe
E:\WINDOWS\system32\drivers\downld\4307421.exe
E:\WINDOWS\system32\drivers\downld\4316984.exe
E:\WINDOWS\system32\drivers\downld\476328.exe
E:\WINDOWS\system32\drivers\downld\48863421.exe
E:\WINDOWS\system32\drivers\downld\48881218.exe
E:\WINDOWS\system32\drivers\downld\48910265.exe
E:\WINDOWS\system32\drivers\downld\48939453.exe
E:\WINDOWS\system32\drivers\downld\48957875.exe
E:\WINDOWS\system32\drivers\downld\7198546.exe
E:\WINDOWS\system32\drivers\downld\7211781.exe
E:\WINDOWS\system32\drivers\downld\7233234.exe
E:\WINDOWS\system32\drivers\downld\7245625.exe
E:\WINDOWS\system32\drivers\downld\7257750.exe
E:\WINDOWS\system32\drivers\downld\75234.exe
E:\WINDOWS\system32\drivers\downld\89031.exe

.
((((((((((((((((((((((((((((( Fichiers créés 2008-03-14 to 2008-04-14 ))))))))))))))))))))))))))))))))))))
.

2008-04-14 09:07 . 2008-04-14 09:07 <REP> d-------- E:\WINDOWS\AU_Temp
2008-04-14 09:07 . 2008-04-14 09:07 36,683,501 --a------ E:\WINDOWS\VPTNFILE.213
2008-04-14 09:07 . 2008-04-14 09:07 36,683,501 --a------ E:\WINDOWS\LPT$VPN.213
2008-04-11 23:28 . 2008-04-11 23:29 1,374 --a------ E:\WINDOWS\imsins.BAK
2008-04-11 16:51 . 2008-04-11 16:51 <REP> d-------- E:\Program Files\Panda Security
2008-04-06 00:55 . 2008-04-06 00:55 <REP> d-------- E:\Program Files\Arturia
2008-04-04 11:08 . 2008-04-04 11:08 <REP> d-------- E:\WINDOWS\system32\Kaspersky Lab
2008-04-04 11:08 . 2008-04-04 11:08 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-04-04 08:43 . 2008-04-14 09:07 <REP> d-------- E:\WINDOWS\report
2008-04-04 08:43 . 2008-04-14 09:07 <REP> d-------- E:\WINDOWS\AU_Backup
2008-04-04 08:43 . 2008-04-14 09:07 1,947,387 --a------ E:\WINDOWS\tsc.ptn
2008-04-04 08:43 . 2008-04-14 09:07 1,163,344 --a------ E:\WINDOWS\vsapi32.dll
2008-04-04 08:43 . 2008-04-14 09:07 333,576 --a------ E:\WINDOWS\TSC.exe
2008-04-04 08:43 . 2008-04-14 09:07 86,094 --a------ E:\WINDOWS\BPMNT.dll
2008-04-04 08:43 . 2008-04-14 09:07 71,749 --a------ E:\WINDOWS\hcextoutput.dll
2008-04-04 08:43 . 2008-04-14 10:41 823 --a------ E:\WINDOWS\tsc.ini
2008-04-04 08:42 . 2008-04-04 08:42 <REP> d-------- E:\WINDOWS\AU_Log
2008-04-04 08:42 . 2008-04-04 08:42 507,904 --a------ E:\WINDOWS\TMUPDATE.DLL
2008-04-04 08:42 . 2008-04-04 08:42 286,720 --a------ E:\WINDOWS\PATCH.EXE
2008-04-04 08:42 . 2008-04-04 08:42 69,689 --a------ E:\WINDOWS\UNZIP.DLL
2008-04-04 08:42 . 2008-04-14 09:07 170 --a------ E:\WINDOWS\GetServer.ini
2008-04-03 19:14 . 2008-04-03 19:14 <REP> d-------- E:\Program Files\Alwil Software
2008-04-03 19:14 . 2003-03-18 21:20 1,060,864 --a------ E:\WINDOWS\system32\MFC71.dll
2008-03-31 11:11 . 2008-03-31 11:11 <REP> d-------- E:\Program Files\IBoot
2008-03-31 09:51 . 2008-03-31 09:51 137,344 --a------ E:\WINDOWS\system32\drivers\hwpsgt.sys
2008-03-31 09:51 . 2008-03-31 09:51 9,472 --a------ E:\WINDOWS\system32\drivers\lemsgt.sys
2008-03-30 17:00 . 2008-03-30 17:01 <REP> d-------- E:\Program Files\Mio Technology
2008-03-29 14:49 . 2008-03-29 14:49 <REP> d-------- E:\Documents and Settings\mizot\Application Data\Nero
2008-03-29 14:48 . 2008-03-29 14:48 <REP> d-------- E:\Program Files\Nero
2008-03-29 14:48 . 2008-04-03 10:53 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Nero
2008-03-28 20:06 . 2008-03-28 20:06 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Elaborate Bytes
2008-03-28 19:55 . 2008-03-28 19:55 <REP> d-------- E:\Program Files\Elaborate Bytes
2008-03-28 11:02 . 2008-04-05 09:37 <REP> d-------- E:\Program Files\Steam
2008-03-26 13:58 . 2008-03-26 13:58 <REP> d-------- E:\Program Files\ASIO4ALL v2
2008-03-25 20:46 . 2008-04-04 08:35 <REP> d-a------ E:\Documents and Settings\All Users\Application Data\TEMP
2008-03-25 20:16 . 2008-03-25 20:16 <REP> d-------- E:\Program Files\Citrix
2008-03-25 20:16 . 2008-03-25 20:16 <REP> d-------- E:\Documents and Settings\mizot\Application Data\ICAClient
2008-03-25 20:07 . 2008-03-25 20:07 <REP> d-------- E:\Program Files\Connection Booster
2008-03-25 20:07 . 2003-09-05 01:17 917,504 --a------ E:\WINDOWS\system32\Flash.ocx
2008-03-25 20:07 . 2004-02-05 15:53 389,120 --a------ E:\WINDOWS\system32\actskn43.ocx
2008-03-25 20:07 . 2004-01-09 05:54 188,416 --a------ E:\WINDOWS\system32\actsplash.ocx
2008-03-25 20:07 . 2000-07-15 00:00 101,888 --a------ E:\WINDOWS\system32\VB6STKIT.DLL
2008-03-25 18:32 . 2008-03-25 20:46 <REP> d-------- E:\Program Files\Smart PC Solutions
2008-03-25 18:32 . 2008-03-25 20:46 <REP> d-------- E:\Documents and Settings\mizot\Application Data\Smart PC Solutions
2008-03-25 16:40 . 2008-03-25 16:40 <REP> d-------- E:\Program Files\Microsoft SQL Server Compact Edition
2008-03-25 16:19 . 2008-03-25 16:19 <REP> d-------- E:\Program Files\AviSynth 2.5
2008-03-25 16:17 . 2008-03-25 17:03 <REP> d-------- E:\Program Files\Ripp-it_AM
2008-03-22 12:51 . 2008-03-22 12:51 <REP> d-------- E:\Program Files\MSXML 4.0
2008-03-22 12:01 . 2008-03-22 12:01 <REP> d-------- E:\ConvertTemp
2008-03-22 11:41 . 2008-03-22 11:41 <REP> d-------- E:\Documents and Settings\mizot\Application Data\Samsung
2008-03-21 19:16 . 2008-03-21 19:16 107,888 --a------ E:\WINDOWS\system32\CmdLineExt.dll
2008-03-21 19:15 . 2008-03-21 19:15 <REP> d-------- E:\Program Files\OpenAL
2008-03-21 19:05 . 2008-03-21 19:05 <REP> d-------- E:\WINDOWS\SpaceForce - Captains DEMO
2008-03-21 19:05 . 2008-03-21 19:05 <REP> d-------- E:\Program Files\JoWooD Productions
2008-03-21 13:53 . 2008-03-21 13:53 206 --a------ E:\Raccourci vers Lecteur CD.lnk
2008-03-21 13:52 . 2008-03-22 18:56 <REP> d-------- E:\Program Files\FairUse Wizard 2
2008-03-21 12:06 . 2008-03-21 12:06 <REP> d-------- E:\WINDOWS\system32\Samsung_USB_Drivers
2008-03-21 12:06 . 2006-05-03 23:53 174,592 --a------ E:\WINDOWS\system32\framedyn.dll
2008-03-21 12:06 . 2005-08-30 02:49 94,000 --a------ E:\WINDOWS\system32\drivers\ssm_mdm.sys
2008-03-21 12:06 . 2005-08-30 02:47 58,320 --a------ E:\WINDOWS\system32\drivers\ssm_bus.sys
2008-03-21 12:06 . 2005-08-30 02:49 8,336 --a------ E:\WINDOWS\system32\drivers\ssm_mdfl.sys
2008-03-21 12:06 . 2005-08-30 02:49 6,176 --a------ E:\WINDOWS\system32\drivers\ssm_cmnt.sys
2008-03-21 12:06 . 2005-08-30 02:49 6,176 --a------ E:\WINDOWS\system32\drivers\ssm_cm.sys
2008-03-21 12:06 . 2005-08-30 02:47 5,840 --a------ E:\WINDOWS\system32\drivers\ssm_whnt.sys
2008-03-21 12:06 . 2005-08-30 02:47 5,840 --a------ E:\WINDOWS\system32\drivers\ssm_wh.sys
2008-03-21 12:05 . 2008-03-21 12:05 <REP> d-------- E:\Program Files\Samsung
2008-03-21 12:05 . 2006-07-24 17:05 5,632 --a------ E:\WINDOWS\system32\drivers\StarOpen.sys
2008-03-21 12:05 . 2005-08-28 21:51 766 --a------ E:\WINDOWS\system32\Uninstall.ico
2008-03-19 13:14 . 2008-03-19 13:14 <REP> d-------- E:\Documents and Settings\All Users\Application Data\ATI
2008-03-19 13:02 . 2008-03-19 13:02 <REP> d-------- E:\Documents and Settings\mizot\Application Data\Earthsim
2008-03-19 12:56 . 2008-03-19 12:56 0 --a------ E:\WINDOWS\ativpsrm.bin
2008-03-19 12:51 . 2008-03-19 13:13 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Earthsim
2008-03-19 09:57 . 2008-03-19 09:57 <REP> d-------- E:\Documents and Settings\All Users\Application Data\AMSB
2008-03-18 16:37 . 2008-04-05 14:46 <REP> d-------- E:\Program Files\Waves
2008-03-18 16:08 . 2008-03-18 16:08 <REP> d-------- E:\Program Files\Acon Digital Media
2008-03-17 15:03 . 2008-04-04 08:37 <REP> d-------- E:\Program Files\Tweak-XP Pro 4
2008-03-17 15:03 . 2008-03-17 15:02 737,280 --a------ E:\WINDOWS\iun6002.exe
2008-03-17 14:36 . 2004-08-03 23:10 85,376 --a------ E:\WINDOWS\system32\drivers\NABTSFEC.sys
2008-03-17 14:36 . 2004-08-03 23:10 19,328 --a------ E:\WINDOWS\system32\drivers\WSTCODEC.SYS
2008-03-17 14:36 . 2004-08-04 00:55 16,384 --a------ E:\WINDOWS\system32\ipsink.ax
2008-03-17 14:36 . 2004-08-03 23:10 15,360 --a------ E:\WINDOWS\system32\drivers\StreamIP.sys
2008-03-17 14:36 . 2004-08-03 23:10 11,136 --a------ E:\WINDOWS\system32\drivers\SLIP.sys
2008-03-17 14:36 . 2004-08-03 23:10 10,880 --a------ E:\WINDOWS\system32\drivers\NdisIP.sys
2008-03-17 14:36 . 2004-08-03 22:58 5,504 --a------ E:\WINDOWS\system32\drivers\MSTEE.sys
2008-03-17 14:35 . 2008-03-17 14:35 <REP> d-------- E:\Program Files\Fichiers communs\snp2std
2008-03-16 14:45 . 2008-03-28 19:54 <REP> d-------- E:\Program Files\SlySoft
2008-03-16 14:45 . 2008-03-28 20:06 72 ---hs---- E:\WINDOWS\SB6CB8FB1.tmp
2008-03-15 10:20 . 2008-03-15 10:20 <REP> d-------- E:\Program Files\RapidSolution
2008-03-15 10:20 . 2008-03-15 10:20 <REP> d-------- E:\Program Files\PixiePack Codec Pack
2008-03-15 10:20 . 2008-03-21 09:46 <REP> d-------- E:\Documents and Settings\mizot\Application Data\Tunebite
2008-03-15 10:20 . 2008-03-15 11:29 <REP> d-------- E:\Documents and Settings\All Users\Application Data\RapidSolution
2008-03-15 10:20 . 2007-12-11 10:52 26,784 --a------ E:\WINDOWS\system32\drivers\tbhsd.sys
2008-03-14 13:58 . 2008-03-14 13:58 <REP> d-------- E:\Program Files\Ubisoft

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-04-14 08:55 --------- d-----w E:\Documents and Settings\mizot\Application Data\OpenOffice.org2
2008-04-07 13:15 --------- d-----w E:\Program Files\eMule
2008-04-03 08:49 --------- d-----w E:\Program Files\Astonsoft
2008-04-02 13:12 418,480 ----a-w E:\WINDOWS\system32\wrap_oal.dll
2008-04-02 13:12 115,432 ----a-w E:\WINDOWS\system32\OpenAL32.dll
2008-04-02 13:07 --------- d-----w E:\Program Files\Steinberg
2008-04-02 12:43 --------- d--h--w E:\Program Files\InstallShield Installation Information
2008-03-26 15:39 --------- d-----w E:\Documents and Settings\mizot\Application Data\Steinberg
2008-03-26 10:05 --------- d-----w E:\Program Files\Windows Live
2008-03-25 14:40 --------- dcsh--w E:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-03-25 14:39 --------- d-----w E:\Documents and Settings\All Users\Application Data\WLInstaller
2008-03-20 07:56 1,846,016 ----a-w E:\WINDOWS\system32\win32k.sys
2008-03-19 10:41 --------- d-----w E:\Documents and Settings\mizot\Application Data\ma-config.com
2008-03-15 00:13 --------- d-----w E:\Program Files\Java
2008-03-12 18:46 --------- d-----w E:\Program Files\Google
2008-03-11 16:51 --------- d-----w E:\Program Files\Readiris Pro 11 Corporate Edition
2008-03-10 14:22 --------- d-----w E:\Program Files\Smart Projects
2008-03-10 12:15 --------- d-----w E:\Program Files\OpenOffice.org 2.3
2008-03-10 09:03 2,560 ----a-w E:\WINDOWS\_MSRSTRT.EXE
2008-03-10 09:03 --------- d-----w E:\Program Files\SimpleOCR
2008-03-10 08:16 77,184 ----a-w E:\WINDOWS\system32\drivers\lnsfw1.sys
2008-03-10 08:16 45,824 ----a-w E:\WINDOWS\system32\drivers\lnsfw.sys
2008-03-10 08:16 36,924 ----a-w E:\WINDOWS\system32\fwapi.dll
2008-03-08 14:34 --------- d-----w E:\Program Files\Jazz_Guitar_Solos_Vol_1-4
2008-03-08 14:20 --------- d-----w E:\Program Files\Roland
2008-03-08 14:20 --------- d-----w E:\Program Files\PowerTracks DirectX Plugins
2008-03-05 14:51 --------- d-----w E:\Program Files\ma-config.com
2008-03-05 12:30 360,064 ----a-w E:\WINDOWS\system32\drivers\TCPIP.SYS
2008-03-05 12:29 360,064 ----a-w E:\WINDOWS\system32\drivers\TCPIP.SYS.ORIGINAL
2008-03-05 12:03 --------- d-----w E:\Documents and Settings\mizot\Application Data\DeepBurner Pro
2008-03-05 11:38 --------- d-----w E:\Program Files\VideoLAN
2008-03-05 11:02 --------- d-----w E:\Program Files\bb
2008-03-05 10:02 --------- d-----w E:\Program Files\Fichiers communs\Java
2008-03-05 08:58 --------- d-----w E:\Documents and Settings\mizot\Application Data\InfraRecorder
2008-03-04 17:23 315,392 ----a-w E:\WINDOWS\HideWin.exe
2008-03-04 17:20 --------- d-----w E:\Program Files\Intel
2008-03-04 17:14 --------- d-----w E:\Program Files\Lavalys
2008-03-03 17:27 --------- d-----w E:\Documents and Settings\mizot\Application Data\Cycling '74
2008-03-03 16:25 --------- d-----w E:\Program Files\EPSON
2008-03-03 14:52 --------- d-----w E:\Program Files\AAS
2008-03-03 14:52 --------- d-----w E:\Documents and Settings\mizot\Application Data\Applied Acoustics Systems
2008-03-03 14:29 --------- d-----w E:\Program Files\IK Multimedia
2008-03-03 14:28 --------- d-----w E:\Documents and Settings\mizot\Application Data\InstallShield
2008-03-03 14:21 --------- d-----w E:\Program Files\FXpansion DR-008 v1.21
2008-03-03 14:21 --------- d-----w E:\Program Files\Fichiers communs\Digidesign
2008-03-03 14:15 --------- d-----w E:\Program Files\AKAI professional M.I. Corp
2008-03-03 14:13 --------- d-----w E:\Program Files\Antares
2008-03-03 14:03 --------- d-----w E:\Program Files\VOB
2008-03-01 14:25 --------- d-----w E:\Documents and Settings\mizot\Application Data\DeepBurner
2008-03-01 12:58 826,368 ----a-w E:\WINDOWS\system32\wininet.dll
2008-02-29 17:20 --------- d-----w E:\Documents and Settings\mizot\Application Data\vlc
2008-02-29 17:17 --------- d-----w E:\Documents and Settings\All Users\Application Data\Pinnacle
2008-02-29 14:26 --------- d-----w E:\Documents and Settings\mizot\Application Data\Media Player Classic
2008-02-28 17:46 --------- d-----w E:\Program Files\PowerQuest
2008-02-28 17:16 --------- d-----w E:\Program Files\Eset
2008-02-28 09:30 --------- d-----w E:\Program Files\Everest
2008-02-28 09:25 --------- d-----w E:\Program Files\Fichiers communs\Adobe
2008-02-28 08:37 --------- d-----w E:\Program Files\Syncrosoft
2008-02-28 07:57 --------- d-----w E:\Documents and Settings\mizot\Application Data\ATI
2008-02-28 07:54 --------- d-----w E:\Program Files\ATI Technologies
2008-02-28 07:52 --------- d-----w E:\Program Files\Fichiers communs\InstallShield
2008-02-28 07:52 --------- d-----w E:\Program Files\Fichiers communs\ATI Technologies
2008-02-20 06:52 282,624 ----a-w E:\WINDOWS\system32\gdi32.dll
2008-02-20 05:35 45,568 ----a-w E:\WINDOWS\system32\dnsrslvr.dll
2008-02-01 10:17 587,264 ----a-w E:\WINDOWS\WLXPGSS.SCR
2007-02-12 18:10 2,682,880 ------w E:\Documents and Settings\All Users\VCREDI~3.EXE
2004-09-28 03:00 26,240 ----a-w E:\WINDOWS\inf\RAMDSK.SYS
.

------- Sigcheck -------

2007-10-30 18:53 360832 64798ecfa43d78c7178375fcdd16d8c8 E:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
2006-03-25 13:13 360448 88e085a02ae1e4d4ae2b143d1325f383 E:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
2008-03-05 14:30 360064 ed06c31200714e734118f9a47f5df5ce E:\WINDOWS\system32\dllcache\TCPIP.SYS
2008-03-05 14:30 360064 ed06c31200714e734118f9a47f5df5ce E:\WINDOWS\system32\drivers\TCPIP.SYS
.
((((((((((((((((((((((((((((( snapshot@2008-04-11_13.26.45.26 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-03-10 09:03:39 2,560 ----a-w E:\WINDOWS\_MSRSTRT.EXE
+ 2008-04-09 02:41:46 71,749 ----a-w E:\WINDOWS\AU_Temp\1\27\hcextoutput.dll
+ 2008-04-09 02:41:46 333,576 ----a-w E:\WINDOWS\AU_Temp\1\27\TSC.exe
+ 2008-04-14 08:55:16 2,048 --s-a-w E:\WINDOWS\bootstat.dat
+ 2008-03-25 16:13:04 124,208 ----a-w E:\WINDOWS\Downloaded Program Files\as2stubie.dll
+ 2007-07-18 11:49:56 12,592 ----a-w E:\WINDOWS\Downloaded Program Files\libcomm.dll
+ 2007-12-07 02:08:32 124,928 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\advpack.dll
+ 2007-12-19 22:53:23 347,136 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\dxtmsft.dll
+ 2007-12-07 02:08:32 214,528 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\dxtrans.dll
+ 2007-12-07 02:08:32 133,120 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\extmgr.dll
+ 2007-12-07 02:08:32 63,488 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\icardie.dll
+ 2007-12-06 11:02:31 70,656 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\ie4uinit.exe
+ 2007-12-07 02:08:32 153,088 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\ieakeng.dll
+ 2007-12-07 02:08:32 230,400 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\ieaksie.dll
+ 2007-12-06 04:59:51 161,792 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\ieakui.dll
+ 2007-12-07 02:08:32 383,488 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\ieapfltr.dll
+ 2007-12-07 02:08:32 384,512 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\iedkcs32.dll
+ 2007-12-07 02:08:33 6,066,176 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\ieframe.dll
+ 2007-12-07 02:08:33 44,544 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\iernonce.dll
+ 2007-12-07 02:08:33 267,776 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\iertutil.dll
+ 2007-12-06 11:00:58 13,824 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\ieudinit.exe
+ 2007-12-06 11:03:16 625,664 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\iexplore.exe
+ 2007-12-07 02:08:33 27,648 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\jsproxy.dll
+ 2007-12-07 02:08:33 459,264 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\msfeeds.dll
+ 2007-12-07 02:08:33 52,224 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\msfeedsbs.dll
+ 2007-12-08 09:38:36 3,592,192 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\mshtml.dll
+ 2007-12-07 02:08:34 478,208 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\mshtmled.dll
+ 2007-12-07 02:08:34 193,024 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\msrating.dll
+ 2007-12-07 02:08:34 671,232 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\mstime.dll
+ 2007-12-07 02:08:34 102,912 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\occache.dll
+ 2008-01-11 05:36:55 44,544 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\pngfilt.dll
+ 2007-03-06 01:34:38 216,800 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:35:48 394,976 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\spuninst\updspapi.dll
+ 2007-12-07 02:08:34 105,984 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\url.dll
+ 2007-12-07 02:08:34 1,159,680 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\urlmon.dll
+ 2007-12-07 02:08:34 233,472 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\webcheck.dll
+ 2007-12-07 02:08:34 824,832 -c----w E:\WINDOWS\ie7updates\KB947864-IE7\wininet.dll
+ 2006-12-31 23:29:21 2,678 ----a-w E:\WINDOWS\java\Packages\Data\7L71VLN9.DAT
+ 2006-12-31 23:29:20 2,678 ----a-w E:\WINDOWS\java\Packages\Data\CTFD7DZR.DAT
+ 2006-12-31 23:29:20 2,678 ----a-w E:\WINDOWS\java\Packages\Data\GLFR57JV.DAT
+ 2006-12-31 23:29:20 2,678 ----a-w E:\WINDOWS\java\Packages\Data\J57X7FZL.DAT
+ 2006-12-31 23:29:22 2,678 ----a-w E:\WINDOWS\java\Packages\Data\UF9JX35V.DAT
+ 2007-01-01 00:34:48 2,430 ----a-w E:\WINDOWS\pchealth\helpctr\PackageStore\SkuStore.bin
+ 2001-08-28 12:00:00 2,000 ----a-w E:\WINDOWS\system\KEYBOARD.DRV
+ 2001-08-28 12:00:00 2,032 ----a-w E:\WINDOWS\system\MOUSE.DRV
+ 2001-08-28 12:00:00 1,744 ----a-w E:\WINDOWS\system\SOUND.DRV
+ 2001-08-28 12:00:00 2,176 ----a-w E:\WINDOWS\system\VGA.DRV
- 2007-12-07 02:08:32 124,928 ----a-w E:\WINDOWS\system32\advpack.dll
+ 2008-03-01 12:58:06 124,928 ----a-w E:\WINDOWS\system32\advpack.dll
+ 2004-08-04 00:08:26 1,788 ----a-w E:\WINDOWS\system32\Dcache.bin
- 2007-12-07 02:08:32 124,928 -c----w E:\WINDOWS\system32\dllcache\advpack.dll
+ 2008-03-01 12:58:06 124,928 -c----w E:\WINDOWS\system32\dllcache\advpack.dll
- 2006-06-26 17:41:32 148,480 -c----w E:\WINDOWS\system32\dllcache\dnsapi.dll
+ 2008-02-20 05:35:05 148,992 -c----w E:\WINDOWS\system32\dllcache\dnsapi.dll
+ 2008-02-20 05:35:05 45,568 -c----w E:\WINDOWS\system32\dllcache\dnsrslvr.dll
- 2007-12-19 22:53:23 347,136 -c----w E:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2008-03-01 12:58:06 347,136 -c----w E:\WINDOWS\system32\dllcache\dxtmsft.dll
- 2007-12-07 02:08:32 214,528 -c----w E:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2008-03-01 12:58:06 214,528 -c----w E:\WINDOWS\system32\dllcache\dxtrans.dll
- 2007-12-07 02:08:32 133,120 -c----w E:\WINDOWS\system32\dllcache\extmgr.dll
+ 2008-03-01 12:58:06 133,120 -c----w E:\WINDOWS\system32\dllcache\extmgr.dll
- 2007-06-19 13:41:12 282,112 -c----w E:\WINDOWS\system32\dllcache\gdi32.dll
+ 2008-02-20 06:52:42 282,624 -c----w E:\WINDOWS\system32\dllcache\gdi32.dll
- 2007-12-07 02:08:32 63,488 -c----w E:\WINDOWS\system32\dllcache\icardie.dll
+ 2008-03-01 12:58:06 63,488 -c----w E:\WINDOWS\system32\dllcache\icardie.dll
- 2007-12-06 11:02:31 70,656 -c----w E:\WINDOWS\system32\dllcache\ie4uinit.exe
+ 2008-02-29 08:56:41 70,656 -c----w E:\WINDOWS\system32\dllcache\ie4uinit.exe
- 2007-12-07 02:08:32 153,088 -c----w E:\WINDOWS\system32\dllcache\ieakeng.dll
+ 2008-03-01 12:58:06 153,088 -c----w E:\WINDOWS\system32\dllcache\ieakeng.dll
- 2007-12-07 02:08:32 230,400 -c----w E:\WINDOWS\system32\dllcache\ieaksie.dll
+ 2008-03-01 12:58:06 230,400 -c----w E:\WINDOWS\system32\dllcache\ieaksie.dll
- 2007-12-06 04:59:51 161,792 -c----w E:\WINDOWS\system32\dllcache\ieakui.dll
+ 2008-02-15 05:44:25 161,792 -c----w E:\WINDOWS\system32\dllcache\ieakui.dll
- 2007-12-07 02:08:32 383,488 -c----w E:\WINDOWS\system32\dllcache\ieapfltr.dll
+ 2008-03-01 12:58:07 383,488 -c----w E:\WINDOWS\system32\dllcache\ieapfltr.dll
- 2007-12-07 02:08:32 384,512 -c----w E:\WINDOWS\system32\dllcache\iedkcs32.dll
+ 2008-03-01 12:58:07 384,512 -c----w E:\WINDOWS\system32\dllcache\iedkcs32.dll
- 2007-12-07 02:08:33 6,066,176 -c----w E:\WINDOWS\system32\dllcache\ieframe.dll
+ 2008-03-01 12:58:08 6,066,176 -c----w E:\WINDOWS\system32\dllcache\ieframe.dll
- 2007-12-07 02:08:33 44,544 -c----w E:\WINDOWS\system32\dllcache\iernonce.dll
+ 2008-03-01 12:58:08 44,544 -c----w E:\WINDOWS\system32\dllcache\iernonce.dll
- 2007-12-07 02:08:33 267,776 -c----w E:\WINDOWS\system32\dllcache\iertutil.dll
+ 2008-03-01 12:58:08 267,776 -c----w E:\WINDOWS\system32\dllcache\iertutil.dll
- 2007-12-06 11:00:58 13,824 -c----w E:\WINDOWS\system32\dllcache\ieudinit.exe
+ 2008-02-22 10:00:51 13,824 -c----w E:\WINDOWS\system32\dllcache\ieudinit.exe
- 2007-12-06 11:03:16 625,664 -c----w E:\WINDOWS\system32\dllcache\iexplore.exe
+ 2008-02-29 08:57:05 625,664 -c----w E:\WINDOWS\system32\dllcache\iexplore.exe
- 2007-12-07 02:08:33 27,648 -c----w E:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2008-03-01 12:58:08 27,648 -c----w E:\WINDOWS\system32\dllcache\jsproxy.dll
- 2007-12-07 02:08:33 459,264 -c----w E:\WINDOWS\system32\dllcache\msfeeds.dll
+ 2008-03-01 12:58:08 459,264 -c----w E:\WINDOWS\system32\dllcache\msfeeds.dll
- 2007-12-07 02:08:33 52,224 -c----w E:\WINDOWS\system32\dllcache\msfeedsbs.dll
+ 2008-03-01 12:58:08 52,224 -c----w E:\WINDOWS\system32\dllcache\msfeedsbs.dll
- 2007-12-08 09:38:36 3,592,192 -c----w E:\WINDOWS\system32\dllcache\mshtml.dll
+ 2008-03-01 16:28:10 3,591,680 -c----w E:\WINDOWS\system32\dllcache\mshtml.dll
- 2007-12-07 02:08:34 478,208 -c----w E:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2008-03-01 12:58:09 478,208 -c----w E:\WINDOWS\system32\dllcache\mshtmled.dll
- 2007-12-07 02:08:34 193,024 -c----w E:\WINDOWS\system32\dllcache\msrating.dll
+ 2008-03-01 12:58:10 193,024 -c----w E:\WINDOWS\system32\dllcache\msrating.dll
- 2007-12-07 02:08:34 671,232 -c----w E:\WINDOWS\system32\dllcache\mstime.dll
+ 2008-03-01 12:58:10 671,232 -c----w E:\WINDOWS\system32\dllcache\mstime.dll
- 2007-12-07 02:08:34 102,912 -c----w E:\WINDOWS\system32\dllcache\occache.dll
+ 2008-03-01 12:58:10 102,912 -c----w E:\WINDOWS\system32\dllcache\occache.dll
- 2008-01-11 05:36:55 44,544 -c----w E:\WINDOWS\system32\dllcache\pngfilt.dll
+ 2008-03-01 12:58:10 44,544 -c----w E:\WINDOWS\system32\dllcache\pngfilt.dll
- 2007-12-07 02:08:34 105,984 -c----w E:\WINDOWS\system32\dllcache\url.dll
+ 2008-03-01 12:58:10 105,984 -c----w E:\WINDOWS\system32\dllcache\url.dll
- 2007-12-07 02:08:34 1,159,680 -c----w E:\WINDOWS\system32\dllcache\urlmon.dll
+ 2008-03-01 12:58:10 1,159,680 -c----w E:\WINDOWS\system32\dllcache\urlmon.dll
- 2007-12-07 02:08:34 233,472 -c----w E:\WINDOWS\system32\dllcache\webcheck.dll
+ 2008-03-01 12:58:11 233,472 -c----w E:\WINDOWS\system32\dllcache\webcheck.dll
- 2007-03-08 15:45:59 1,844,096 -c----w E:\WINDOWS\system32\dllcache\win32k.sys
+ 2008-03-20 07:56:50 1,846,016 -c----w E:\WINDOWS\system32\dllcache\win32k.sys
- 2007-12-07 02:08:34 824,832 -c----w E:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-03-01 12:58:11 826,368 -c----w E:\WINDOWS\system32\dllcache\wininet.dll
- 2006-06-26 17:41:32 148,480 ----a-w E:\WINDOWS\system32\dnsapi.dll
+ 2008-02-20 05:35:05 148,992 ----a-w E:\WINDOWS\system32\dnsapi.dll
+ 2004-08-03 21:07:58 2,944 ----a-w E:\WINDOWS\system32\drivers\drmkaud.sys
+ 2001-08-28 12:00:00 2,944 ----a-w E:\WINDOWS\system32\drivers\null.sys
- 2007-12-19 22:53:23 347,136 ------w E:\WINDOWS\system32\dxtmsft.dll
+ 2008-03-01 12:58:06 347,136 ----a-w E:\WINDOWS\system32\dxtmsft.dll
- 2007-12-07 02:08:32 214,528 ------w E:\WINDOWS\system32\dxtrans.dll
+ 2008-03-01 12:58:06 214,528 ----a-w E:\WINDOWS\system32\dxtrans.dll
- 2007-12-07 02:08:32 133,120 ------w E:\WINDOWS\system32\extmgr.dll
+ 2008-03-01 12:58:06 133,120 ------w E:\WINDOWS\system32\extmgr.dll
- 2008-04-03 07:10:23 135,664 ----a-w E:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-04-12 08:10:04 135,664 ----a-w E:\WINDOWS\system32\FNTCACHE.DAT
- 2007-12-07 02:08:32 63,488 ----a-w E:\WINDOWS\system32\icardie.dll
+ 2008-03-01 12:58:06 63,488 ----a-w E:\WINDOWS\system32\icardie.dll
- 2007-12-06 11:02:31 70,656 ------w E:\WINDOWS\system32\ie4uinit.exe
+ 2008-02-29 08:56:41 70,656 ------w E:\WINDOWS\system32\ie4uinit.exe
- 2007-12-07 02:08:32 153,088 ------w E:\WINDOWS\system32\ieakeng.dll
+ 2008-03-01 12:58:06 153,088 ------w E:\WINDOWS\system32\ieakeng.dll
- 2007-12-07 02:08:32 230,400 ------w E:\WINDOWS\system32\ieaksie.dll
+ 2008-03-01 12:58:06 230,400 ------w E:\WINDOWS\system32\ieaksie.dll
- 2007-12-06 04:59:51 161,792 ------w E:\WINDOWS\system32\ieakui.dll
+ 2008-02-15 05:44:25 161,792 ------w E:\WINDOWS\system32\ieakui.dll
- 2007-12-07 02:08:32 383,488 ----a-w E:\WINDOWS\system32\ieapfltr.dll
+ 2008-03-01 12:58:07 383,488 ----a-w E:\WINDOWS\system32\ieapfltr.dll
- 2007-12-07 02:08:32 384,512 ------w E:\WINDOWS\system32\iedkcs32.dll
+ 2008-03-01 12:58:07 384,512 ------w E:\WINDOWS\system32\iedkcs32.dll
- 2007-12-07 02:08:33 6,066,176 ----a-w E:\WINDOWS\system32\ieframe.dll
+ 2008-03-01 12:58:08 6,066,176 ----a-w E:\WINDOWS\system32\ieframe.dll
- 2007-12-07 02:08:33 44,544 ------w E:\WINDOWS\system32\iernonce.dll
+ 2008-03-01 12:58:08 44,544 ------w E:\WINDOWS\system32\iernonce.dll
- 2007-12-07 02:08:33 267,776 ----a-w E:\WINDOWS\system32\iertutil.dll
+ 2008-03-01 12:58:08 267,776 ----a-w E:\WINDOWS\system32\iertutil.dll
- 2007-12-06 11:00:58 13,824 ----a-w E:\WINDOWS\system32\ieudinit.exe
+ 2008-02-22 10:00:51 13,824 ----a-w E:\WINDOWS\system32\ieudinit.exe
- 2007-12-07 02:08:33 27,648 ------w E:\WINDOWS\system32\jsproxy.dll
+ 2008-03-01 12:58:08 27,648 ------w E:\WINDOWS\system32\jsproxy.dll
+ 2001-08-28 12:00:00 2,000 ----a-w E:\WINDOWS\system32\keyboard.drv
+ 2001-08-28 12:00:00 2,560 ----a-w E:\WINDOWS\system32\lz32.dll
+ 2001-08-28 12:00:00 2,032 ----a-w E:\WINDOWS\system32\mouse.drv
- 2008-03-05 16:30:54 19,148,408 ----a-w E:\WINDOWS\system32\mrt.exe
+ 2008-04-06 05:56:20 19,836,024 ----a-w E:\WINDOWS\system32\mrt.exe
- 2007-12-07 02:08:33 459,264 ----a-w E:\WINDOWS\system32\msfeeds.dll
+ 2008-03-01 12:58:08 459,264 ----a-w E:\WINDOWS\system32\msfeeds.dll
- 2007-12-07 02:08:33 52,224 ----a-w E:\WINDOWS\system32\msfeedsbs.dll
+ 2008-03-01 12:58:08 52,224 ----a-w E:\WINDOWS\system32\msfeedsbs.dll
- 2007-12-08 09:38:36 3,592,192 ----a-w E:\WINDOWS\system32\mshtml.dll
+ 2008-03-01 16:28:10 3,591,680 ----a-w E:\WINDOWS\system32\mshtml.dll
- 2007-12-07 02:08:34 478,208 ------w E:\WINDOWS\system32\mshtmled.dll
+ 2008-03-01 12:58:09 478,208 ----a-w E:\WINDOWS\system32\mshtmled.dll
- 2007-12-07 02:08:34 193,024 ------w E:\WINDOWS\system32\msrating.dll
+ 2008-03-01 12:58:10 193,024 ------w E:\WINDOWS\system32\msrating.dll
- 2007-12-07 02:08:34 671,232 ------w E:\WINDOWS\system32\mstime.dll
+ 2008-03-01 12:58:10 671,232 ------w E:\WINDOWS\system32\mstime.dll
+ 2001-08-28 12:00:00 2,656 ----a-w E:\WINDOWS\system32\netware.drv
- 2007-12-07 02:08:34 102,912 ------w E:\WINDOWS\system32\occache.dll
+ 2008-03-01 12:58:10 102,912 ------w E:\WINDOWS\system32\occache.dll
- 2008-01-11 05:36:55 44,544 ------w E:\WINDOWS\system32\pngfilt.dll
+ 2008-03-01 12:58:10 44,544 ----a-w E:\WINDOWS\system32\pngfilt.dll
+ 2001-08-28 12:00:00 1,744 ----a-w E:\WINDOWS\system32\sound.drv
- 2007-12-07 02:08:34 105,984 ----a-w E:\WINDOWS\system32\url.dll
+ 2008-03-01 12:58:10 105,984 ----a-w E:\WINDOWS\system32\url.dll
- 2007-12-07 02:08:34 1,159,680 ----a-w E:\WINDOWS\system32\urlmon.dll
+ 2008-03-01 12:58:10 1,159,680 ----a-w E:\WINDOWS\system32\urlmon.dll
+ 2001-08-28 12:00:00 2,176 ----a-w E:\WINDOWS\system32\vga.drv
- 2007-12-07 02:08:34 233,472 ----a-w E:\WINDOWS\system32\webcheck.dll
+ 2008-03-01 12:58:11 233,472 ----a-w E:\WINDOWS\system32\webcheck.dll
+ 2001-08-28 12:00:00 2,864 ----a-w E:\WINDOWS\system32\winsock.dll
+ 2001-08-28 12:00:00 2,112 ----a-w E:\WINDOWS\system32\winspool.exe
+ 2001-08-28 12:00:00 2,736 ----a-w E:\WINDOWS\system32\wowdeb.exe
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="E:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 12:34 5724184]
"MSMSGS"="E:\Program Files\Messenger\msmsgs.exe" [2004-10-13 18:24 1694208]
"ctfmon.exe"="E:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:54 15360]
"swg"="E:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [ ]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Look 'n' Stop"="E:\Program Files\Soft4Ever\looknstop\looknstop.exe" [2008-03-10 10:16 516164]
"nod32kui"="E:\Program Files\Eset\nod32kui.exe" [2008-04-11 13:21 921600]
"StartCCC"="E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 13:35 90112]
"Adobe Reader Speed Launcher"="E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 23:16 39792]
"DSP24"="Dsp24Set.exe" [2004-10-21 16:59 2588672 E:\WINDOWS\system32\Dsp24Set.exe]
"H2O"="E:\Program Files\SyncroSoft\Pos\H2O\cledx.exe" [2005-10-23 01:00 385024]
"SunJavaUpdateSched"="E:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784]
"snp2std"="E:\WINDOWS\vsnp2std.exe" [2006-09-15 14:21 675840]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="E:\Program Files\MSN Messenger\MsnMsgr.exe" [ ]

E:\Documents and Settings\mizot\Menu D‚marrer\Programmes\D‚marrage\
OpenOffice.org 2.3.lnk - E:\Program Files\OpenOffice.org 2.3\program\quickstart.exe [2007-08-17 22:57:56 393216]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"E:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"E:\\Program Files\\eMule\\emule.exe"=

R1 Asapi;Asapi;E:\WINDOWS\system32\drivers\Asapi.sys [2002-04-17 21:27]
R1 lnsfw1;lnsfw1;E:\WINDOWS\system32\drivers\lnsfw1.sys [2008-03-10 10:16]
R2 RVIEG01;VSC Engine;E:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys [2001-04-13 20:16]
R3 CLEDX;Team H2O CLEDX service;E:\WINDOWS\system32\DRIVERS\cledx.sys [2005-10-23 01:00]
R3 DSP24_VL;Service for DSP24 Value Driver (EWDM);E:\WINDOWS\system32\drivers\d24.sys [2004-10-21 16:59]
R3 ICM2_01;Service for DSP24 Audio Driver (EWDM);E:\WINDOWS\system32\drivers\D24Wdm.sys [2004-10-21 16:59]
R3 SNP2STD;USB2.0 PC Camera (SNP2STD);E:\WINDOWS\system32\DRIVERS\snp2sxp.sys [2007-04-09 12:38]
R3 USBSTOR;Pilote de stockage de masse USB;E:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 23:08]
S3 SetupNTGLM7X;SetupNTGLM7X;D:\NTGLM7X.sys []
S3 usbscan;Pilote de scanneur USB;E:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 22:58]


[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{582610B8-E496-4813-993C-4B027173FE38}]
E:\Program Files\PixiePack Codec Pack\InstallerHelper.exe
.
**************************************************************************

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-14 14:22:15
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs a chargé sous des processus courants ---------------------

PROCESS: E:\WINDOWS\system32\lsass.exe
-> E:\Program Files\Eset\pr_imon.dll
.
Temps d'accomplissement: 2008-04-14 14:22:36
ComboFix-quarantined-files.txt 2008-04-14 12:22:28
ComboFix2.txt 2008-04-11 11:31:14

Pre-Run: 57,739,587,584 octets libres
Post-Run: 57,723,985,920 octets libres
.
2008-04-11 21:29:24 --- E O F ---

Egwene
Profil : Helper
Plus d'informations
n°301541
14-04-2008 à 15:10:51

Re,

  • Fais un scan en ligne Kaspersky avec Internet Explorer :
  • Clique sur http://pictures.kaspersky.fr/bouton-scann1.jpg
  • Clique maintenant sur J'accepte.
  • Valide l'installation d'un ou de plusieurs ActiveX si c'est nécessaire.
  • Patiente pendant l'installation des Mises à jour.
  • Choisis par la suite l'analyse du Poste de travail
  • Sauvegarde puis colle le rapport généré en fin d'analyse.


AIDE : Tuto sur le scan en ligne

NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.

;)


---------------
Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité / Prévention
mizot 59
Profil : IDNaute
Plus d'informations
n°301562
14-04-2008 à 17:14:24

voila j envoie le rapport kaspersky sachant que j'ai scaner le poste de travail et que mon dd primaire est le E et pas le C (esclave)
merci

KASPERSKY ON-LINE SCANNER REPORT
Monday, April 14, 2008 5:09:10 PM
Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.98.0
Dernière mise à jour de la base antivirus Kaspersky : 14/04/2008
Enregistrements dans la base antivirus Kaspersky : 703628


Paramètres d'analyse
Analyser avec la base antivirus suivante étendue
Analyser les archives vrai
Analyser les bases de messagerie vrai

Cible de l'analyse Poste de travail
A:\
C:\
D:\
E:\
F:\
G:\
H:\
I:\
J:\
K:\
L:\

Statistiques de l'analyse
Total d'objets analysés 217220
Nombre de virus trouvés 17
Nombre d'objets infectés 92
Nombre d'objets suspects 0
Durée de l'analyse 01:39:30

Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\a\Mes documents\mspass_fr.zip/mspass_fr_install.exe/mspass.exe Infecté : not-a-virus:PSWTool.Win32.Messen.g ignoré

C:\Documents and Settings\a\Mes documents\mspass_fr.zip/mspass_fr_install.exe Infecté : not-a-virus:PSWTool.Win32.Messen.g ignoré

C:\Documents and Settings\a\Mes documents\mspass_fr.zip ZIP: infecté - 2 ignoré

C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp L'objet est verrouillé igno