Bonjour,

il y a quelque jour, j'ai subi l'installation forcé de antivir Xp et grâce à different forum, j'ai réussi à m'en sortir.

J'ai donc installé AVG, Avast, Spybot et ccleaner donc j'ai tout nettoyé et mon ordi remarche correctement.

Cependant j'ai encore des problèmes car des que je lance un jeux qui précedemment tournait correctement me pose enormement de probleme maintenant car il n'arrete pas de ramer donc je ne peux plus du tout jouer (Titan Quest, RF online,Age of mytholog : 'est pour dire)

Comme je n'ai pas réussi à regler le problemes via tous les logiciels précedent, j'en appelle a vos connaissances.

Voici ma config :
Aspire 9420 ACER
Intel Core 2 CPU T5200 1.6 Ghz
2 Go ram ddr2
Ge force 7300

Voici aussi mon rapport :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:35:27, on 09/07/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe
C:\Program Files\Launch Manager\LaunchAp.exe
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\OSDCtrl.exe
C:\Program Files\Launch Manager\Wbutton.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\rsvp.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashQuick.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\eden.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [EOUApp] "C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe"
O4 - HKLM\..\Run: [LaunchAp] "C:\Program Files\Launch Manager\LaunchAp.exe"
O4 - HKLM\..\Run: [LManager] "C:\Program Files\Launch Manager\HotkeyApp.exe"
O4 - HKLM\..\Run: [CtrlVol] "C:\Program Files\Launch Manager\CtrlVol.exe"
O4 - HKLM\..\Run: [LMgrOSD] "C:\Program Files\Launch Manager\OSDCtrl.exe"
O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr/
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
End of file - 7875 bytes


Merci de votre aide

Bonsoir,

Pas d'infection visible.

Dac donc c plus un virus

alors est ce que antivir aurait pu changer la config de mon PC ou modifer des driver, une connerie dans le genre;

En tant normal, j'aurai formater mon PC, mais la je suis en deplacement pour 2 mois donc aucun autre moyen

Euh je ne pense pas )

Tu peux toujours faire ceci :

Désinstalle via Ajout/Suppression de Programmes (si présents) :

• Avast!

Télécharge et exécute : http://www.avast.com/eng/avast-uninstall-utility.html

Télécharge Ccleaner sur ton Bureau.

• Clique sur download the latest version.
• Installe-le en laissant seulement les options suivantes cochées :

- Ajouter un raccourci sur le Bureau.
- Contrôler automatiquement les mises à jour de CCleaner.

• Lance le Nettoyage.
• Clique sur Chercher des erreurs et sauvegarde si tu le souhaites.

Aide : Comment utiliser CCleaner.

***************

Télécharge AntiVir sur ton Bureau.

• Double clique sur l'exécutable téléchargé pour lancer l'installation.
• A la fin de l'installation, clique sur Finish.
• Ouvre Antivir, assure-toi qu’il soit bien à jour !
• Dans l'onglet Local Protection, choisis Scanner.
• Active la recherche de rootkits via le + de rootkit search, puis dans manual selection, coche tout (tes partitions de disque dur).
• Clique sur la loupe du milieu pour lancer le scan en tant qu'Administrateur.
• Poste moi le rapport généré : Pour cela, clique sur l'onglet Overview, puis choisis Reports, tu trouveras son rapport..

Note : Pour une éradication des menaces plus efficace, lance le scan en mode sans échec.

Pourquoi changer ? Avast vs Antivir.

Aide : Comment installer et utiliser AntiVir.

voila le rapport


Avira AntiVir Personal
Report file date: vendredi 11 juillet 2008 10:46

Scanning for 1418048 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 3) [5.1.2600]
Boot mode: Normally booted
Username: Julien
Computer name: COCO

Version information:
BUILD.DAT : 8.1.00.295 16479 Bytes 09/04/2008 16:24:00
AVSCAN.EXE : 8.1.2.12 311553 Bytes 18/03/2008 10:02:56
AVSCAN.DLL : 8.1.1.0 53505 Bytes 07/02/2008 09:43:37
LUKE.DLL : 8.1.2.9 151809 Bytes 28/02/2008 09:41:23
LUKERES.DLL : 8.1.2.1 12033 Bytes 21/02/2008 09:28:40
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 11:33:34
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 09:43:47
ANTIVIR2.VDF : 7.0.5.86 547840 Bytes 09/07/2008 09:43:50
ANTIVIR3.VDF : 7.0.5.101 223232 Bytes 11/07/2008 09:43:52
Engineversion : 8.1.0.64
AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 10:58:21
AESCRIPT.DLL : 8.1.0.46 283002 Bytes 11/07/2008 09:44:07
AESCN.DLL : 8.1.0.22 119157 Bytes 11/07/2008 09:44:06
AERDL.DLL : 8.1.0.20 418165 Bytes 11/07/2008 09:44:05
AEPACK.DLL : 8.1.1.6 364918 Bytes 11/07/2008 09:44:01
AEOFFICE.DLL : 8.1.0.20 192891 Bytes 11/07/2008 09:44:00
AEHEUR.DLL : 8.1.0.35 1298806 Bytes 11/07/2008 09:43:59
AEHELP.DLL : 8.1.0.15 115063 Bytes 11/07/2008 09:43:56
AEGEN.DLL : 8.1.0.29 307573 Bytes 11/07/2008 09:43:55
AEEMU.DLL : 8.1.0.6 430451 Bytes 11/07/2008 09:43:54
AECORE.DLL : 8.1.0.32 168311 Bytes 11/07/2008 09:43:53
AVWINLL.DLL : 1.0.0.7 14593 Bytes 23/01/2008 18:07:53
AVPREF.DLL : 8.0.0.1 25857 Bytes 18/02/2008 11:37:50
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 14:26:47
AVREG.DLL : 8.0.0.0 30977 Bytes 23/01/2008 18:07:49
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 09:29:23
AVEVTLOG.DLL : 8.0.0.11 114945 Bytes 28/02/2008 09:31:31
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 18:28:02
SMTPLIB.DLL : 1.2.0.19 28929 Bytes 23/01/2008 18:08:39
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 13:05:10
RCIMAGE.DLL : 8.0.0.35 2371841 Bytes 10/03/2008 15:37:25
RCTEXT.DLL : 8.0.32.0 86273 Bytes 06/03/2008 13:02:11

Configuration settings for the scan:
Jobname..........................: Manual Selection
Configuration file...............: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir PersonalEdition Classic\PROFILES\folder.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:, E:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: vendredi 11 juillet 2008 10:46

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'usnsvc.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'Dot1XCfg.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'RegSrvc.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'NMIndexStoreSvr.exe' - '1' Module(s) have been scanned
Scan process 'cvpnd.exe' - '1' Module(s) have been scanned
Scan process 'guard.exe' - '0' Module(s) have been scanned
Scan process 'NMBgMonitor.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'SuperCopier2.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'avgas.exe' - '1' Module(s) have been scanned
Scan process 'LVCOMSX.EXE' - '1' Module(s) have been scanned
Scan process 'WButton.exe' - '1' Module(s) have been scanned
Scan process 'OSDCtrl.exe' - '1' Module(s) have been scanned
Scan process 'HotkeyApp.exe' - '1' Module(s) have been scanned
Scan process 'LaunchAp.exe' - '1' Module(s) have been scanned
Scan process 'EOUWiz.exe' - '1' Module(s) have been scanned
Scan process 'LVPrcSrv.exe' - '1' Module(s) have been scanned
Scan process 'iFrmewrk.exe' - '1' Module(s) have been scanned
Scan process 'ZCfgSvc.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'ashServ.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'S24EvMon.exe' - '1' Module(s) have been scanned
Scan process 'EvtEng.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
46 processes with 46 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan the registry.
The registry was scanned ( '27' files ).


Starting the file scan:

Begin scan in 'C:\' <DISQUE LOCAL>
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\WINDOWS\axrfgvek.dll
[DETECTION] Is the Trojan horse TR/Drop.Agen.344064
[NOTE] The file was deleted!
C:\WINDOWS\system32\kytpvyxp.dll
[DETECTION] Is the Trojan horse TR/Trash.Gen
[NOTE] The file was deleted!
C:\WINDOWS\system32\vnubuydm.dll
[DETECTION] Is the Trojan horse TR/Trash.Gen
[NOTE] The file was deleted!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <Stockage>
Begin scan in 'E:\' <TQIT>


End of the scan: vendredi 11 juillet 2008 11:25
Used time: 39:16 min

The scan has been done completely.

4310 Scanning directories
123096 Files were scanned
3 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
3 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
123093 Files not concerned
2043 Archives were scanned
2 Warnings
3 Notes

Ah !

Télécharge ComboFix (de sUBs) sur ton Bureau.

• Désactive temporairement toute protection résidente ! (Antivirus, antispywares..)
• Double clique sur ComboFix.exe.
• Accepte la licence en cliquant sur Oui.
• Lorsque l'opération sera terminée, un rapport apparaîtra. Poste ce rapport dans ta prochaine réponse.

Le rapport se trouve ici : %systemdrive%\ComboFix.txt (%systemdrive% étant la partition où est installée Windows; C:\ en général)

Aide : Comment utiliser ComboFix.

voila le rapport :

ComboFix 08-07-10.1 - Julien 2008-07-11 12:44:31.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.1414 [GMT 1:00]
Endroit: C:\Documents and Settings\Julien\Bureau\ComboFix.exe
* Création d'un nouveau point de restauration

[color=red]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\hnlmaeoh.ini
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\SDJQYcfe.ini
C:\WINDOWS\system32\SDJQYcfe.ini2

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_CLBDRIVER
-------\Service_clbdriver


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-06-11 to 2008-07-11 ))))))))))))))))))))))))))))))))))))
.

2008-07-11 10:42 . 2008-07-11 10:42 <REP> d-------- C:\Program Files\Avira
2008-07-10 18:45 . 2008-07-10 18:45 <REP> d-------- C:\Documents and Settings\NetworkService\Application Data\Xfire
2008-07-10 18:43 . 2008-07-10 18:43 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-07-10 18:43 . 2008-07-10 18:43 1,409 --a------ C:\WINDOWS\QTFont.for
2008-07-10 18:39 . 2007-01-01 20:03 40,960 -ra------ C:\WINDOWS\system32\psfind.dll
2008-07-10 18:30 . 2008-07-10 18:30 <REP> d-------- C:\WINDOWS\NV34003388.TMP
2008-07-10 18:14 . 2008-07-10 18:14 <REP> d-------- C:\WINDOWS\Drivers
2008-07-09 15:39 . 2008-07-10 12:18 <REP> d-------- C:\Program Files\World of Warcraft Trial
2008-07-09 15:39 . 2008-07-09 15:39 <REP> d-------- C:\Program Files\Fichiers communs\Blizzard Entertainment
2008-07-09 13:33 . 2008-07-09 13:33 <REP> d-------- C:\Program Files\Trend Micro
2008-07-08 00:47 . 2008-07-08 11:04 <REP> d-------- C:\Program Files\Cyanide
2008-07-07 22:38 . 2008-07-07 22:38 <REP> d-------- C:\Program Files\Spybot - Search & Destroy
2008-07-07 22:38 . 2008-07-11 10:34 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-07-07 22:23 . 2008-07-11 10:29 <REP> d-------- C:\Program Files\CCleaner
2008-07-07 11:48 . 2008-07-07 11:48 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Grisoft
2008-07-07 11:47 . 2008-07-07 11:47 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-07-07 11:47 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-07-07 11:44 . 2008-07-07 11:53 <REP> d-------- C:\Program Files\TuneUp Utilities 2008
2008-07-07 11:44 . 2008-07-07 11:44 <REP> d-------- C:\Documents and Settings\Julien\Application Data\TuneUp Software
2008-07-07 11:44 . 2008-07-07 11:44 <REP> d-------- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2008-07-07 11:44 . 2008-07-07 11:44 355,584 --a------ C:\WINDOWS\system32\TuneUpDefragService.exe
2008-07-07 11:44 . 2008-05-29 09:28 28,416 --a------ C:\WINDOWS\system32\uxtuneup.dll
2008-07-07 11:43 . 2008-07-07 11:43 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-07-07 11:43 . 2008-07-07 11:43 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-07-07 11:43 . 2008-07-07 11:43 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Malwarebytes
2008-07-07 11:43 . 2008-07-07 11:43 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-07-07 11:43 . 2008-06-28 14:16 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys
2008-07-07 11:43 . 2008-06-28 14:16 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-07-07 11:19 . 2008-07-07 11:19 <REP> d--h----- C:\WINDOWS\system32\GroupPolicy
2008-07-07 10:04 . 2008-07-07 10:04 <REP> d-------- C:\Program Files\Alcohol Soft
2008-07-07 09:19 . 2008-04-13 19:33 54,784 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2008-07-07 09:19 . 2008-04-13 19:33 54,784 --a--c--- C:\WINDOWS\system32\dllcache\vfwwdm32.dll
2008-07-07 09:19 . 2008-04-13 19:34 20,992 --a------ C:\WINDOWS\system32\dshowext.ax
2008-07-07 09:19 . 2008-04-13 19:34 20,992 --a--c--- C:\WINDOWS\system32\dllcache\dshowext.ax
2008-07-07 09:16 . 2006-06-23 10:39 245,824 -ra------ C:\WINDOWS\system32\InstExec.exe
2008-07-07 09:16 . 2006-06-23 10:40 245,824 --a------ C:\WINDOWS\Instexec.exe
2008-07-07 09:16 . 2006-06-23 10:39 719 -ra------ C:\WINDOWS\system32\InstExec.ini
2008-07-07 09:15 . 2008-07-07 09:17 <REP> d-------- C:\Program Files\Fichiers communs\Logitech
2008-07-07 09:15 . 2008-07-07 09:15 <REP> d-------- C:\Program Files\Fichiers communs\Acer
2008-07-07 09:15 . 2006-06-19 12:20 1,097,728 --a------ C:\WINDOWS\system32\drivers\lv321av.sys
2008-07-07 09:15 . 2006-06-19 12:18 380,928 --a------ C:\WINDOWS\system32\LVUI2RC.dll
2008-07-07 09:15 . 2003-02-21 05:42 348,160 --a------ C:\WINDOWS\system\msvcr71.dll
2008-07-07 09:15 . 2006-06-19 12:15 221,184 --a------ C:\WINDOWS\system32\LVUI2.dll
2008-07-07 09:15 . 2006-06-19 12:15 204,800 --a------ C:\WINDOWS\system32\lvcodec2.dll
2008-07-07 09:15 . 2006-06-19 12:11 110,592 --a------ C:\WINDOWS\system32\lvcoinst.dll
2008-07-07 09:15 . 2006-06-19 12:16 39,424 --a------ C:\WINDOWS\system32\drivers\LVUSBSta.sys
2008-07-07 09:15 . 2006-06-19 11:59 13,227 --a------ C:\WINDOWS\system32\lvcoinst.ini
2008-07-07 09:15 . 2006-06-19 11:58 2,760 --a------ C:\WINDOWS\system32\Repository.reg
2008-07-07 09:14 . 1998-11-13 14:16 308,224 --a------ C:\WINDOWS\IsUn040c.exe
2008-07-07 09:13 . 2008-07-07 09:13 264 --a------ C:\WINDOWS\_delis32.ini
2008-07-06 22:00 . 2008-07-06 22:00 <REP> d-------- C:\Program Files\Alwil Software
2008-07-06 22:00 . 2003-02-21 04:42 348,160 --a------ C:\WINDOWS\system32\MSVCR71.dll
2008-07-06 21:47 . 2008-07-06 21:47 <REP> d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-07-06 21:34 . 2008-07-07 11:33 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-07-06 21:06 . 2008-07-06 21:13 <REP> d-------- C:\Program Files\VS Revo Group
2008-07-06 17:43 . 2008-07-11 10:42 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
2008-07-06 16:28 . 2001-08-28 15:00 4,224 --a------ C:\WINDOWS\system32\beep.sys
2008-07-06 14:32 . 2008-07-06 14:32 <REP> d-------- C:\Program Files\uTorrent
2008-07-06 14:32 . 2008-07-06 14:53 <REP> d-------- C:\Documents and Settings\Julien\Application Data\uTorrent
2008-07-06 14:04 . 2008-07-06 14:04 <REP> d-------- C:\Program Files\Microsoft Games
2008-07-04 15:28 . 2008-04-13 11:47 25,856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2008-07-04 15:28 . 2008-04-13 11:47 25,856 --a--c--- C:\WINDOWS\system32\dllcache\usbprint.sys
2008-07-01 08:38 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-07-01 08:38 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-07-01 08:38 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-07-01 00:57 . 2008-07-01 00:57 <REP> d-------- C:\Documents and Settings\Julien\Contacts
2008-07-01 00:56 . 2008-07-01 00:56 268 --ah----- C:\sqmdata00.sqm
2008-07-01 00:56 . 2008-07-01 00:56 244 --ah----- C:\sqmnoopt00.sqm
2008-07-01 00:49 . 2008-07-01 00:55 <REP> d-------- C:\Program Files\Windows Live
2008-07-01 00:49 . 2008-07-01 00:55 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-07-01 00:49 . 2008-07-01 00:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-06-28 19:57 . 2008-06-28 19:57 <REP> d-------- C:\Documents and Settings\Julien\Application Data\dvdcss
2008-06-26 21:10 . 2008-06-26 21:10 42,320 --a------ C:\WINDOWS\system32\xfcodec.dll
2008-06-25 17:00 . 2008-06-25 17:00 <REP> d-------- C:\Program Files\MSXML 4.0
2008-06-15 23:46 . 2008-06-15 23:46 <REP> d-------- C:\Program Files\GameTribe
2008-06-14 11:43 . 2008-06-14 11:43 <REP> d-------- C:\Documents and Settings\Julien\Application Data\Ahead
2008-06-12 17:46 . 2008-06-12 17:46 <REP> d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2008-06-11 13:31 . 2008-06-14 18:33 272,768 --------- C:\WINDOWS\system32\drivers\bthport.sys
2008-06-11 13:31 . 2008-06-14 18:33 272,768 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-10 17:44 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-07-10 17:44 --------- d-----w C:\Program Files\THQ
2008-07-09 17:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-07-07 12:36 --------- d-----w C:\Program Files\Teamspeak2_RC2
2008-07-06 22:59 --------- d-----w C:\Documents and Settings\Julien\Application Data\teamspeak2
2008-06-20 17:47 247,808 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-04 21:55 --------- d-----w C:\Program Files\Common Files
2008-06-04 21:28 --------- d-----w C:\Program Files\Gpotato.eu
2008-05-30 13:18 --------- d-----w C:\Program Files\Fichiers communs\Deterministic Networks
2008-05-30 13:18 --------- d-----w C:\Program Files\Cisco Systems
2008-05-23 07:47 717,296 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2008-05-23 07:47 --------- d-----w C:\Documents and Settings\Julien\Application Data\DAEMON Tools
2008-05-19 20:35 --------- d-----w C:\Program Files\QuickTime
2008-05-19 20:35 --------- d-----w C:\Program Files\iTunes
2008-05-19 20:35 --------- d-----w C:\Program Files\iPod
2008-05-19 20:35 --------- d-----w C:\Documents and Settings\Julien\Application Data\Apple Computer
2008-05-19 20:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-05-19 20:33 --------- d-----w C:\Program Files\Fichiers communs\Apple
2008-05-19 20:33 --------- d-----w C:\Program Files\Apple Software Update
2008-05-19 20:33 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple
2008-05-09 10:55 90,112 ----a-w C:\WINDOWS\system32\wshext.dll
2008-05-09 10:55 430,080 ----a-w C:\WINDOWS\system32\vbscript.dll
2008-05-09 10:55 180,224 ----a-w C:\WINDOWS\system32\scrobj.dll
2008-05-09 10:55 172,032 ----a-w C:\WINDOWS\system32\scrrun.dll
2008-05-08 11:24 155,648 ----a-w C:\WINDOWS\system32\wscript.exe
2008-05-07 09:07 135,168 ----a-w C:\WINDOWS\system32\cscript.exe
2008-05-07 05:11 1,294,336 ----a-w C:\WINDOWS\system32\quartz.dll
2008-04-23 04:16 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-04-13 19:33 76,800 ----a-w C:\WINDOWS\system32\storprop.dll
2008-04-13 18:47 1,246,130 ----a-r C:\WINDOWS\SET3.tmp
2008-04-13 18:38 16,825 ----a-r C:\WINDOWS\SET8.tmp
2008-04-13 18:38 1,088,840 ----a-r C:\WINDOWS\SET4.tmp
2008-04-13 17:50 1,804 ----a-w C:\WINDOWS\system32\Dcache.bin
2008-04-13 17:47 58,880 ----a-w C:\WINDOWS\system32\dmutil.dll
2008-04-13 17:47 52,736 ----a-w C:\WINDOWS\system32\wzcsapi.dll
2008-04-13 17:47 50,688 ----a-w C:\WINDOWS\system32\cnbjmon.dll
2008-04-13 17:47 483,840 ----a-w C:\WINDOWS\system32\wzcsvc.dll
2008-04-13 17:47 47,616 ----a-w C:\WINDOWS\system32\iyuv_32.dll
2008-04-13 17:47 35,328 ----a-w C:\WINDOWS\system32\pid.dll
2008-04-13 17:47 294,912 ----a-w C:\WINDOWS\system32\msh263.drv
2008-04-13 17:47 20,992 ----a-w C:\WINDOWS\system32\hid.dll
2008-04-13 17:47 2,025,984 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe
2008-04-13 17:47 16,896 ----a-w C:\WINDOWS\system32\msyuv.dll
2008-04-13 17:47 15,360 ----a-w C:\WINDOWS\system32\pjlmon.dll
2008-04-13 17:37 332,800 ----a-w C:\WINDOWS\system32\netsetup.exe
2008-04-13 17:33 98,816 ----a-w C:\WINDOWS\system32\psbase.dll
2008-04-13 17:32 764,416 ----a-w C:\WINDOWS\system32\winntbbu.dll
2008-04-13 17:32 61,471 ----a-w C:\WINDOWS\system32\odbcji32.dll
2008-04-13 17:32 5,632 ----a-w C:\WINDOWS\system32\wmi.dll
2008-04-13 17:32 24,064 ----a-w C:\WINDOWS\system32\pidgen.dll
2008-04-13 17:07 2,147,328 ----a-w C:\WINDOWS\system32\ntoskrnl.exe
2008-04-13 17:06 4,096 ----a-w C:\WINDOWS\system32\dsprpres.dll
2008-04-13 17:04 93,184 ----a-w C:\WINDOWS\system32\msxml6r.dll
2008-04-13 17:03 81,920 ----a-w C:\WINDOWS\system32\msshavmsg.dll
2008-04-13 17:02 50,688 ----a-w C:\WINDOWS\system32\inetres.dll
2008-04-13 17:02 2,985,984 ----a-w C:\WINDOWS\system32\wmploc.dll
2008-04-13 17:01 572,416 ----a-w C:\WINDOWS\system32\shdoclc.dll
2008-04-13 16:59 200,704 ----a-w C:\WINDOWS\system32\wmerror.dll
2008-04-13 16:59 10,240 ----a-w C:\WINDOWS\system32\gpkrsrc.dll
2008-04-13 16:58 1,845,760 ----a-w C:\WINDOWS\system32\win32k.sys
2008-04-13 16:58 1,647,616 ----a-w C:\WINDOWS\system32\winbrand.dll
2008-04-13 16:57 70,144 ----a-w C:\WINDOWS\system32\browselc.dll
2008-04-13 16:55 8,704 ----a-w C:\WINDOWS\system32\asferror.dll
2008-04-13 16:53 70,688 ----a-w C:\WINDOWS\system32\mmsystem.dll
2008-04-13 09:45 17,664 ----a-w C:\WINDOWS\system32\watchdog.sys
2008-04-13 09:43 12,800 ----a-w C:\WINDOWS\system32\spiisupd.exe
2008-04-13 09:40 445,440 ----a-w C:\WINDOWS\system32\xpob2res.dll
2008-04-13 09:36 2,986,496 ----a-w C:\WINDOWS\system32\xpsp2res.dll
2008-04-13 09:35 197,632 ----a-w C:\WINDOWS\system32\xpsp1res.dll
2008-04-13 09:31 7,424 ----a-w C:\WINDOWS\system32\kd1394.dll
2008-04-13 09:30 61,440 ----a-w C:\WINDOWS\system32\msvcrt40.dll
2008-04-13 08:38 306,176 ----a-w C:\WINDOWS\system32\slbcsp.dll
2008-04-13 08:38 169,984 ----a-w C:\WINDOWS\system32\sccbase.dll
2008-04-13 08:38 101,888 ----a-w C:\WINDOWS\system32\gpkcsp.dll
2008-04-13 08:37 208,384 ----a-w C:\WINDOWS\system32\rsaenh.dll
2008-04-13 08:37 138,752 ----a-w C:\WINDOWS\system32\dssenh.dll
2008-04-13 08:26 12,288 ----a-w C:\WINDOWS\system32\odbcp32r.dll
2008-04-13 08:26 12,288 ----a-w C:\WINDOWS\system32\mscpx32r.dLL
2008-04-13 08:21 733,696 ----a-w C:\WINDOWS\system32\qedwipes.dll
2008-04-13 07:54 54,080 ----a-w C:\WINDOWS\system32\dosx.exe
2008-04-13 07:54 5,120 ----a-w C:\WINDOWS\system32\winnls.dll
2008-04-13 07:53 92,608 ----a-w C:\WINDOWS\system32\krnl386.exe
2008-04-13 07:52 3,352 ----a-w C:\WINDOWS\system32\redir.exe
2008-04-13 07:50 42,537 ----a-w C:\WINDOWS\system32\keyboard.sys
2008-04-13 07:49 35,648 ----a-w C:\WINDOWS\system32\ntio411.sys
2008-04-13 07:49 35,424 ----a-w C:\WINDOWS\system32\ntio412.sys
2008-04-13 07:49 34,560 ----a-w C:\WINDOWS\system32\ntio804.sys
2008-04-13 07:49 34,560 ----a-w C:\WINDOWS\system32\ntio404.sys
2008-04-13 07:49 34,000 ----a-w C:\WINDOWS\system32\ntio.sys
2008-04-13 07:45 216,064 ----a-w C:\WINDOWS\system32\moricons.dll
2008-04-13 07:23 48,128 ----a-w C:\WINDOWS\system32\msprivs.dll
2008-04-13 06:39 884,736 ----a-w C:\WINDOWS\system32\msimsg.dll
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SuperCopier2.exe"="C:\Program Files\SuperCopier2\SuperCopier2.exe" [2006-07-07 17:45 1052672]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-13 18:34 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2006-11-16 18:04 139264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-01-19 07:43 7397376]
"IntelZeroConfig"="C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" [2005-11-28 10:41 667718]
"IntelWireless"="C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" [2005-11-28 10:41 602182]
"EOUApp"="C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe" [2005-11-28 10:47 569413]
"LaunchAp"="C:\Program Files\Launch Manager\LaunchAp.exe" [2005-07-25 12:36 32768]
"LManager"="C:\Program Files\Launch Manager\HotkeyApp.exe" [2006-02-21 08:46 69632]
"CtrlVol"="C:\Program Files\Launch Manager\CtrlVol.exe" [2003-09-16 13:28 20480]
"LMgrOSD"="C:\Program Files\Launch Manager\OSDCtrl.exe" [2005-07-25 09:45 241664]
"Wbutton"="C:\Program Files\Launch Manager\Wbutton.exe" [2006-03-14 13:33 86016]
"NeroFilterCheck"="C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe" [2006-01-12 14:40 155648]
"LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2006-06-23 10:39 225280]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25 6731312]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2006-01-19 08:43 86016]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-12 10:06 262401]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-13 18:34 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.XFR1"= xfcodec.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 21:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2007-07-10 08:18 270648 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2007-06-29 05:24 286720 C:\Program Files\QuickTime\QTTask.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Microsoft Games\\Age of Mythology\\aom.exe"=
"C:\\Program Files\\Cyanide\\GameCenter\\GameCenter.exe"=
"C:\\Program Files\\Cyanide\\Chaos-League MS\\ChaosLeagueEx.exe"=

R1 Hotkey;Hotkey;C:\WINDOWS\system32\drivers\Hotkey.sys [2003-04-28 10:27]
R2 UxTuneUp;TuneUp Extension de thème;C:\WINDOWS\System32\svchost.exe [2008-04-13 18:34]
R3 lv321av;Logitech USB PC Camera (VC0321);C:\WINDOWS\system32\DRIVERS\lv321av.sys [2006-06-19 12:20]
R3 LVPrcMon;Logitech LVPrcMon Driver;C:\WINDOWS\system32\drivers\LVPrcMon.sys [2006-06-23 10:40]
S1 Wbutton;Wbutton;C:\WINDOWS\system32\drivers\Wbutton.sys []
S3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\WINDOWS\System32\TuneUpDefragService.exe [2008-07-07 11:44]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

*Newly Created Service* - SSMDRV
.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'
"2008-07-11 11:48:46 C:\WINDOWS\Tasks\Maintenance en 1 clic.job"
- C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-11 12:49:25
Windows 5.1.2600 Service Pack 3 NTFS

Balayage processus cach‚s ...

Balayage cach‚ autostart entries ...

Balayage des fichiers cach‚s ...


**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\mchInjDrv]
"ImagePath"="\??\C:\DOCUME~1\Julien\LOCALS~1\Temp\mc22.tmp"
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\wscntfy.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-07-11 13:41:03 - machine was rebooted
ComboFix-quarantined-files.txt 2008-07-11 11:52:06

Pre-Run: 33,701,416,960 octets libres
Post-Run: 33,651,032,064 octets libres

293 --- E O F --- 2008-07-09 18:19:44