Msn virolé et pc au ralenti
Forum Sécurité - Virus : Msn virolé et pc au ralenti
hier j ai nettoyé mon pc defragmenter scanné et tout pensant que ca cesserai enfin de ramer comme on dit et la je decouvre que mon msn est pirater par une saleté de virus alors que je cliquie pas sur les liens msn (pas cool quoi mdr) je vous mets à la suite le rapport hjackthis que jai fais je sais plus quoi faire (je suis en plein scan spybot je vous dirais ce qu il en est aussi)
merci d avance
(configuration windows XP SP2
antivirus : avira antivir
parefeu comodo firewall)
*************************
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:58:29, on 07/07/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\PCHButton.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Compaq_Propriétaire\Bureau\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie8
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {3A8E42B4-AC46-4D7E-9190-D30C8C108065} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\PCHButton.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Assistant Smart Wizard NETGEAR pour WG311v3.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: www.secuser.com
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/re [...] oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/bina [...] b47946.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A28B820F-F8BF-425C-B782-837D5A13EE45}: NameServer = 192.168.1.1
O20 - Winlogon Notify: PermissionResearch - C:\Program Files\PermissionResearch\prls.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
--
End of file - 8813 bytes
***********
si quelqu'un peut m aider ca serai super gentil
(si je peux abusée je suis assez pressée je m'explique je suis modératrice sur un jeu et le ralenti est plus que gênant pour venir en aide aux joueurs de plus mon msn sert aussi de service d entre aide alors si c est pour viroler tout le monde pas cool non plus merci beaucoup)
spybot a juste trouvé un cookies que j ai supprimé par contre tune up maintenance en 1 clic a trouver beaucoup de problèmes :
composant système 63 problèmes
programme 897 problème (je me demande comme il arrive a ce nombre mais bon....)
historique 9 problèmes
le reste est ok
Message édité par wildrosen le 07-07-2009 à 14:35:06
Bonjour,
Pas lié à une infection.
Télécharge MalwareByte's Anti-Malware sur ton Bureau.
- Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
- Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
- Afin de lancer la recherche, clic sur"Rechercher".
- Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
~~~~ Fais redémarrer ton ordinateur normalement et poste le rapport dans ta prochaine réponse.
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.
Note : Si tu ne parviens à télécharger MBAM à part de MajorGeeks, tu peux le télécharger ici!
Aide :
Répondre à Angeldark
Malwarebytes' Anti-Malware 1.38
Version de la base de données: 2387
Windows 5.1.2600 Service Pack 2
07/07/2009 22:15:41
mbam-log-2009-07-07 (22-15-41).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 176050
Temps écoulé: 2 hour(s), 8 minute(s), 27 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 25
Fichier(s) infecté(s): 213
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\2m solitaires collection (Adware.WebHancer) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Trymedia Systems (Adware.Trymedia) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\Program Files\2M Games (Adware.WebHancer) -> Delete on reboot.
c:\program files\2M Games\Solitaires Collection (Adware.WebHancer) -> Delete on reboot.
c:\program files\2M Games\solitaires collection\doc (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\doc\en (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\doc\en (Adware.WebHancer) -> Files: 446 -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\doc\images (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\doc\images (Adware.WebHancer) -> Files: 449 -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\games (Adware.WebHancer) -> Delete on reboot.
c:\program files\2M Games\solitaires collection\games (Adware.WebHancer) -> Files: 430 -> Delete on reboot.
c:\program files\2M Games\solitaires collection\icons (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\hotspot (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib\applet (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib\audio (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib\cmm (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib\ext (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib\fonts (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib\images (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib\images\cursors (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\lib\security (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\sounds (Adware.WebHancer) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\documents and settings\compaq_propriétaire\local settings\application data\ygyim_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
c:\documents and settings\compaq_propriétaire\local settings\application data\ygyim_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
c:\documents and settings\compaq_propriétaire\local settings\application data\ygyim.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\Config2.cfg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\ErrorLog.txt (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\Hiscores.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\LicenseUS.txt (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\ReadmeUS.txt (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\solitaires.jar (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\Stats.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\uninstall.exe (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\uninstall.ini (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\Cancel.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\CancelSelected.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\DlgNameIcon.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\DlgScoreIcon.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\Help.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\HelpBack.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\HelpHome.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\HelpNext.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\HelpSelected.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\Joker.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\Level1.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\Level2.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\Level3.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\OK.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\OKSelected.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\Pause.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ProgramIcon.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\Register.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\RegisterSelected.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\SplashAP.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\StatReset.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\StatResetOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\StatScore.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\StatScoreOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAbout.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAboutOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAboutPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAuto.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAutoOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAutoplay.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAutoplayOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAutoplayPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolAutoPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolConfig.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolConfigOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolConfigPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolEnd.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolEndOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolEndPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolHelp.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolHelpOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolHelpPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolPause.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolPauseOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolPausePressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRecord.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRecordOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRecordPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRegister.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRegisterOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRegisterPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRestart.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRestartOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRestartPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRestartSame.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRestartSameOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolRestartSamePressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolStart.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolStartOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolStartPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolStat.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolStatOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolStatPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolUndo.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolUndoOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolUndoPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolUndoRecord.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolUndoRecordDisabled.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolUndoRecordOver.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\icons\ToolUndoRecordPressed.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Backs.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-Birds.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-Bleus.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-Bonaparte.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-Classic.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-Elizabeth.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-LouisXV.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-Samourai.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-Vendee.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Cards-Versailles.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\DragOver-1.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\DragOver-2.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\DragOver-3.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Piles-Black.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Piles-Gold.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\Piles-Silver.dat (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Battle01.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Battle02.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Battle03.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Battle04.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nantes01.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nantes02.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nantes03.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nature01.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nature02.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nature03.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nature04.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nature05.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nature06.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Nature07.jpg (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture01.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture02.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture03.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture04.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture05.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture06.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture07.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture08.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\images\textures\Texture09.gif (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\ActPanel.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\awt.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\beans.ocx (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\cmm.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\dcpr.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\dt_socket.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\fontmanager.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\game.ico (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\hpi.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\hprof.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\ioser12.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\java.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\java.exe (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\javaw.exe (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\jawt.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\jcov.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\JdbcOdbc.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\jdwp.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\jpeg.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\jpins32.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
c:\program files\2M Games\solitaires collection\jre\bin\jpishare.dll (Adware.WebHancer) -> Quarantined and deleted successfully.
voilà par contre certain fichier n ont pas pu etre supprimés
Reposte un rapport Hijackthis.
Répondre à Angeldark
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:11:01, on 08/07/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\PCHButton.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com/?fr=fp-yie8
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {3A8E42B4-AC46-4D7E-9190-D30C8C108065} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\PCHButton.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: Assistant Smart Wizard NETGEAR pour WG311v3.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: www.secuser.com
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/re [...] oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/bina [...] b47946.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A28B820F-F8BF-425C-B782-837D5A13EE45}: NameServer = 192.168.1.1
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: PermissionResearch - C:\Program Files\PermissionResearch\prls.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
--
End of file - 8561 bytes
voilà
Re,
Télécharge ComboFix (de sUBs) sur ton Bureau.
- Désactive temporairement toute protection résidente ! (Antivirus, antispywares..)
- Double clique sur ComboFix.exe.
- Accepte la licence en cliquant sur Oui.
- Le programme va te demander si tu souhaites installer la Console de Récupération. C'est une précaution, au cas où l'ordinateur tomberait en panne. Je te conseille donc de l'installer, ça ne coûte rien, et ça pourrait potentiellement servir !
- Lorsque l'opération sera terminée, un rapport apparaîtra. Poste ce rapport dans ta prochaine réponse.
Le rapport se trouve ici : %SystemDrive%\ComboFix.txt (%systemdrive% étant la partition où est installée Windows; C:\ en général)
Aide : Comment utiliser ComboFix.
Répondre à Angeldark
ComboFix 09-07-07.A7 - Compaq_Propriétaire 08/07/2009 15:21.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.33.1036.18.511.125 [GMT 2:00]
Lancé depuis: c:\documents and settings\Compaq_Propriétaire\Bureau\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FW: COMODO Firewall *disabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Compaq_Propriétaire\Local Settings\Application Data\uieowiy_navfx.dat
c:\program files\Seekmo Programs
c:\windows\Installer\103b8f3.msp
c:\windows\Installer\1045ef7.msp
c:\windows\Installer\10ea75a.msp
c:\windows\Installer\1162a15.msp
c:\windows\Installer\11802dc.msp
c:\windows\Installer\11ad640.msp
c:\windows\Installer\11d6bb0.msp
c:\windows\Installer\11ed1c.msp
c:\windows\Installer\125467d.msp
c:\windows\Installer\137ebaf.msp
c:\windows\Installer\13829a2.msp
c:\windows\Installer\13cd679.msp
c:\windows\Installer\13df20b.msp
c:\windows\Installer\13f104c.msp
c:\windows\Installer\1469086.msp
c:\windows\Installer\14b01cb.msp
c:\windows\Installer\14cda15.msp
c:\windows\Installer\14e5a7b.msp
c:\windows\Installer\150e934.msp
c:\windows\Installer\152d1ab.msp
c:\windows\Installer\1556ba0.msp
c:\windows\Installer\155d612.msp
c:\windows\Installer\156c0c0.msp
c:\windows\Installer\15e64ce.msp
c:\windows\Installer\15f7311.msp
c:\windows\Installer\161aad1.msp
c:\windows\Installer\163a0a6.msp
c:\windows\Installer\1642efb.msp
c:\windows\Installer\16a6c46.msp
c:\windows\Installer\16c355d.msp
c:\windows\Installer\16e581e.msp
c:\windows\Installer\170c93d.msp
c:\windows\Installer\17342c9.msp
c:\windows\Installer\177b94d.msp
c:\windows\Installer\1781538.msp
c:\windows\Installer\17be5e.msp
c:\windows\Installer\181d83e.msp
c:\windows\Installer\1835cdb.msp
c:\windows\Installer\183e3ae.msp
c:\windows\Installer\183fb7c.msp
c:\windows\Installer\185e24d.msp
c:\windows\Installer\19d93f.msp
c:\windows\Installer\19dc896.msp
c:\windows\Installer\19fd61a.msp
c:\windows\Installer\1a00d08.msp
c:\windows\Installer\1a7706.msp
c:\windows\Installer\1aa2b3e.msp
c:\windows\Installer\1af2124.msp
c:\windows\Installer\1b1712e.msp
c:\windows\Installer\1b5b73c.msp
c:\windows\Installer\1bb3aeb.msp
c:\windows\Installer\1bc7119.msp
c:\windows\Installer\1bfecf2.msp
c:\windows\Installer\1bff6b6.msp
c:\windows\Installer\1c007cd.msp
c:\windows\Installer\1c00888.msp
c:\windows\Installer\1c074ee.msp
c:\windows\Installer\1c0d994.msp
c:\windows\Installer\1c2ddc0.msp
c:\windows\Installer\1c31829.msp
c:\windows\Installer\1c59bd7.msp
c:\windows\Installer\1c77097.msp
c:\windows\Installer\1ceecd9.msp
c:\windows\Installer\1d0c497.msp
c:\windows\Installer\1d0cdde.msp
c:\windows\Installer\1d102f.msp
c:\windows\Installer\1d444a5.msp
c:\windows\Installer\1d50f39.msp
c:\windows\Installer\1d8f526.msp
c:\windows\Installer\1d91ce1.msp
c:\windows\Installer\1de6a3e.msp
c:\windows\Installer\1dfc9ed.msp
c:\windows\Installer\1e09b2.msp
c:\windows\Installer\1e306f7.msp
c:\windows\Installer\1e94e83.msp
c:\windows\Installer\1e98959.msp
c:\windows\Installer\1ebb5ee.msp
c:\windows\Installer\1ed426a.msp
c:\windows\Installer\1ed83b8.msp
c:\windows\Installer\1ed886b.msp
c:\windows\Installer\1edbf98.msp
c:\windows\Installer\1effb8e.msp
c:\windows\Installer\1f157f2.msp
c:\windows\Installer\1f16b0c.msp
c:\windows\Installer\1f1ab5.msp
c:\windows\Installer\1f39c06.msp
c:\windows\Installer\1f4e8f8.msp
c:\windows\Installer\1f55be6.msp
c:\windows\Installer\1f58d47.msp
c:\windows\Installer\1f6a32b.msp
c:\windows\Installer\1f89557.msp
c:\windows\Installer\1faabc3.msp
c:\windows\Installer\1fcaff0.msp
c:\windows\Installer\1fdeb3e.msp
c:\windows\Installer\1fdfb5b.msp
c:\windows\Installer\1ff463b.msp
c:\windows\Installer\200046a.msp
c:\windows\Installer\202c9b4.msp
c:\windows\Installer\204dbbc.msp
c:\windows\Installer\20a52d8.msp
c:\windows\Installer\20cc677.msp
c:\windows\Installer\20d1802.msp
c:\windows\Installer\20e065a.msp
c:\windows\Installer\20f60f8.msp
c:\windows\Installer\210285f.msp
c:\windows\Installer\211eff0.msp
c:\windows\Installer\2133198.msp
c:\windows\Installer\21467d6.msp
c:\windows\Installer\21723ba.msp
c:\windows\Installer\219754b.msp
c:\windows\Installer\21b132c.msp
c:\windows\Installer\21b448d.msp
c:\windows\Installer\21b52a6.msp
c:\windows\Installer\21b5b8f.msp
c:\windows\Installer\21dde04.msp
c:\windows\Installer\220ca7d.msp
c:\windows\Installer\2241459.msp
c:\windows\Installer\2249fef.msp
c:\windows\Installer\224c2d9.msp
c:\windows\Installer\2251956.msp
c:\windows\Installer\2251cd0.msp
c:\windows\Installer\2253b26.msp
c:\windows\Installer\22556eb.msp
c:\windows\Installer\225b9eb.msp
c:\windows\Installer\225dc67.msp
c:\windows\Installer\22642f1.msp
c:\windows\Installer\2275e92.msp
c:\windows\Installer\22ab762.msp
c:\windows\Installer\22d745f.msp
c:\windows\Installer\22d747f.msp
c:\windows\Installer\22d7dd5.msp
c:\windows\Installer\22d7edf.msp
c:\windows\Installer\22e7535.msp
c:\windows\Installer\22fa151.msp
c:\windows\Installer\230780a.msp
c:\windows\Installer\2375984.msp
c:\windows\Installer\2378873.msp
c:\windows\Installer\238b904.msp
c:\windows\Installer\23a9f87.msp
c:\windows\Installer\23c65df.msp
c:\windows\Installer\23d7963.msp
c:\windows\Installer\23df8c4.msp
c:\windows\Installer\23e0d17.msp
c:\windows\Installer\23f9741.msp
c:\windows\Installer\23fc4e9.msp
c:\windows\Installer\24056c9.msp
c:\windows\Installer\241b8e9.msp
c:\windows\Installer\241ed86.msp
c:\windows\Installer\241ee03.msp
c:\windows\Installer\242cce9.msp
c:\windows\Installer\243d2ff.msp
c:\windows\Installer\2446e83.msp
c:\windows\Installer\244df00.msp
c:\windows\Installer\246a8c4.msp
c:\windows\Installer\246b44d.msp
c:\windows\Installer\24918e9.msp
c:\windows\Installer\24925f9.msp
c:\windows\Installer\24a8673.msp
c:\windows\Installer\24ab728.msp
c:\windows\Installer\24c41ee.msp
c:\windows\Installer\24c7449.msp
c:\windows\Installer\24dcc38.msp
c:\windows\Installer\24e61e0.msp
c:\windows\Installer\24eb996.msp
c:\windows\Installer\24f9bd7.msp
c:\windows\Installer\250a96f.msp
c:\windows\Installer\25205f2.msp
c:\windows\Installer\2520824.msp
c:\windows\Installer\2526076.msp
c:\windows\Installer\2552543.msp
c:\windows\Installer\2560a53.msp
c:\windows\Installer\256692d.msp
c:\windows\Installer\256b067.msp
c:\windows\Installer\256ec09.msp
c:\windows\Installer\257153c.msp
c:\windows\Installer\257443b.msp
c:\windows\Installer\2583486.msp
c:\windows\Installer\25854a1.msp
c:\windows\Installer\258aef6.msp
c:\windows\Installer\258cbf4.msp
c:\windows\Installer\25976ab.msp
c:\windows\Installer\25a3b53.msp
c:\windows\Installer\25a8099.msp
c:\windows\Installer\25b5435.msp
c:\windows\Installer\25c0361.msp
c:\windows\Installer\25c2c65.msp
c:\windows\Installer\25c3389.msp
c:\windows\Installer\25d07a2.msp
c:\windows\Installer\25d3a1c.msp
c:\windows\Installer\25d804d.msp
c:\windows\Installer\25d86f4.msp
c:\windows\Installer\25dc18c.msp
c:\windows\Installer\25e24ca.msp
c:\windows\Installer\25e8c5e.msp
c:\windows\Installer\25ec35c.msp
c:\windows\Installer\25fc9cf.msp
c:\windows\Installer\25fd894.msp
c:\windows\Installer\2606266.msp
c:\windows\Installer\261db89.msp
c:\windows\Installer\264ec53.msp
c:\windows\Installer\2654996.msp
c:\windows\Installer\265c02d.msp
c:\windows\Installer\2670772.msp
c:\windows\Installer\2670abe.msp
c:\windows\Installer\2674863.msp
c:\windows\Installer\269b2cc.msp
c:\windows\Installer\26a1501.msp
c:\windows\Installer\26a2a.msp
c:\windows\Installer\26b0c80.msp
c:\windows\Installer\26b1be1.msp
c:\windows\Installer\26bd677.msp
c:\windows\Installer\26c73ff.msp
c:\windows\Installer\26e056d.msp
c:\windows\Installer\26ed744.msp
c:\windows\Installer\2701c76.msp
c:\windows\Installer\2714016.msp
c:\windows\Installer\271a79a.msp
c:\windows\Installer\271c96a.msp
c:\windows\Installer\2727942.msp
c:\windows\Installer\272a3ec.msp
c:\windows\Installer\2734491.msp
c:\windows\Installer\273b7cd.msp
c:\windows\Installer\274f221.msp
c:\windows\Installer\2758c8d.msp
c:\windows\Installer\2758fa9.msp
c:\windows\Installer\2767382.msp
c:\windows\Installer\2782df3.msp
c:\windows\Installer\27836bd.msp
c:\windows\Installer\27a7f65.msp
c:\windows\Installer\27ad526.msp
c:\windows\Installer\27ba816.msp
c:\windows\Installer\27bfec2.msp
c:\windows\Installer\27c0394.msp
c:\windows\Installer\27c15a5.msp
c:\windows\Installer\27c8900.msp
c:\windows\Installer\27df022.msp
c:\windows\Installer\27e3430.msp
c:\windows\Installer\27e8415.msp
c:\windows\Installer\27ec15c.msp
c:\windows\Installer\28031e4.msp
c:\windows\Installer\2806b24.msp
c:\windows\Installer\280abb8.msp
c:\windows\Installer\28153ee.msp
c:\windows\Installer\283310b.msp
c:\windows\Installer\283a37c.msp
c:\windows\Installer\2858480.msp
c:\windows\Installer\285dc35.msp
c:\windows\Installer\286c57c.msp
c:\windows\Installer\2873c13.msp
c:\windows\Installer\2889450.msp
c:\windows\Installer\288e2fd.msp
c:\windows\Installer\28a306c.msp
c:\windows\Installer\28ae063.msp
c:\windows\Installer\28b230a.msp
c:\windows\Installer\28c4562.msp
c:\windows\Installer\28dfe1e.msp
c:\windows\Installer\28ec92e.msp
c:\windows\Installer\28f07dd.msp
c:\windows\Installer\28f3d74.msp
c:\windows\Installer\28f511b.msp
c:\windows\Installer\2903fb1.msp
c:\windows\Installer\2916555.msp
c:\windows\Installer\291b5d7.msp
c:\windows\Installer\292c64d.msp
c:\windows\Installer\293df4e.msp
c:\windows\Installer\2953336.msp
c:\windows\Installer\29686cf.msp
c:\windows\Installer\296e868.msp
c:\windows\Installer\2977343.msp
c:\windows\Installer\297a520.msp
c:\windows\Installer\297fbbc.msp
c:\windows\Installer\2988678.msp
c:\windows\Installer\298f06d.msp
c:\windows\Installer\299e481.msp
c:\windows\Installer\29a1d25.msp
c:\windows\Installer\29a65a8.msp
c:\windows\Installer\29a6828.msp
c:\windows\Installer\29af852.msp
c:\windows\Installer\29ba04a.msp
c:\windows\Installer\29bc9bc.msp
c:\windows\Installer\29d744f.msp
c:\windows\Installer\29e9ce1.msp
c:\windows\Installer\2a07182.msp
c:\windows\Installer\2a0fe12.msp
c:\windows\Installer\2a1daa7.msp
c:\windows\Installer\2a2b48c.msp
c:\windows\Installer\2a49f83.msp
c:\windows\Installer\2a53e73.msp
c:\windows\Installer\2a54a5a.msp
c:\windows\Installer\2a60a.msp
c:\windows\Installer\2a6a508.msp
c:\windows\Installer\2a7333e.msp
c:\windows\Installer\2a7ba02.msp
c:\windows\Installer\2aa83e0.msp
c:\windows\Installer\2abe286.msp
c:\windows\Installer\2ac885b.msp
c:\windows\Installer\2acf770.msp
c:\windows\Installer\2ae69fc.msp
c:\windows\Installer\2afbe80.msp
c:\windows\Installer\2b099dc.msp
c:\windows\Installer\2b13c27.msp
c:\windows\Installer\2b15e16.msp
c:\windows\Installer\2b1c1d1.msp
c:\windows\Installer\2b1dd39.msp
c:\windows\Installer\2b530b9.msp
c:\windows\Installer\2b5476e.msp
c:\windows\Installer\2b5954f.msp
c:\windows\Installer\2b5b1b1.msp
c:\windows\Installer\2b73dc0.msp
c:\windows\Installer\2b75290.msp
c:\windows\Installer\2b77105.msp
c:\windows\Installer\2b958d0.msp
c:\windows\Installer\2b97b3c.msp
c:\windows\Installer\2b9e948.msp
c:\windows\Installer\2ba5792.msp
c:\windows\Installer\2ba6781.msp
c:\windows\Installer\2ba9a77.msp
c:\windows\Installer\2bb3a03.msp
c:\windows\Installer\2bb59c0.msp
c:\windows\Installer\2bbb1d3.msp
c:\windows\Installer\2bc62c4.msp
c:\windows\Installer\2bdf21e.msp
c:\windows\Installer\2be86ae.msp
c:\windows\Installer\2bf381b.msp
c:\windows\Installer\2bfdd25.msp
c:\windows\Installer\2c09c7e.msp
c:\windows\Installer\2c16924.msp
c:\windows\Installer\2c27804.msp
c:\windows\Installer\2c37ce1.msp
c:\windows\Installer\2c54adb.msp
c:\windows\Installer\2c5b32e.msp
c:\windows\Installer\2c69f6f.msp
c:\windows\Installer\2c7319c.msp
c:\windows\Installer\2c7b5d0.msp
c:\windows\Installer\2c7f9ee.msp
c:\windows\Installer\2c809.msp
c:\windows\Installer\2c815f2.msp
c:\windows\Installer\2c9233b.msp
c:\windows\Installer\2c9d47a.msp
c:\windows\Installer\2ca0185.msp
c:\windows\Installer\2ca1cae.msp
c:\windows\Installer\2ca56aa.msp
c:\windows\Installer\2ca9087.msp
c:\windows\Installer\2caede9.msp
c:\windows\Installer\2cc09b9.msp
c:\windows\Installer\2cc32ae.msp
c:\windows\Installer\2cc6dc3.msp
c:\windows\Installer\2cca0aa.msp
c:\windows\Installer\2cce1ca.msp
c:\windows\Installer\2ce08d5.msp
c:\windows\Installer\2ce5e29.msp
c:\windows\Installer\2cf7c2b.msp
c:\windows\Installer\2d00466.msp
c:\windows\Installer\2d039ee.msp
c:\windows\Installer\2d10339.msp
c:\windows\Installer\2d11068.msp
c:\windows\Installer\2d1ab6f.msp
c:\windows\Installer\2d1d399.msp
c:\windows\Installer\2d1d3e7.msp
c:\windows\Installer\2d2c6b3.msp
c:\windows\Installer\2d3a4e.msp
c:\windows\Installer\2d485c8.msp
c:\windows\Installer\2d4e04c.msp
c:\windows\Installer\2d4e0f8.msp
c:\windows\Installer\2d4ed4c.msp
c:\windows\Installer\2d537b3.msp
c:\windows\Installer\2d63b77.msp
c:\windows\Installer\2d97564.msp
c:\windows\Installer\2d97b9e.msp
c:\windows\Installer\2da205a.msp
c:\windows\Installer\2db0c50.msp
c:\windows\Installer\2db50cc.msp
c:\windows\Installer\2dba0e0.msp
c:\windows\Installer\2dbee63.msp
c:\windows\Installer\2dc5d79.msp
c:\windows\Installer\2ddfb6a.msp
c:\windows\Installer\2de877d.msp
c:\windows\Installer\2de8a1d.msp
c:\windows\Installer\2e088db.msp
c:\windows\Installer\2e0ebdb.msp
c:\windows\Installer\2e17acc.msp
c:\windows\Installer\2e18f3f.msp
c:\windows\Installer\2e3b487.msp
c:\windows\Installer\2e4955b.msp
c:\windows\Installer\2e4b287.msp
c:\windows\Installer\2e64e07.msp
c:\windows\Installer\2e6556a.msp
c:\windows\Installer\2e6c5e7.msp
c:\windows\Installer\2e78bb7.msp
c:\windows\Installer\2eb9e90.msp
c:\windows\Installer\2ebf3b5.msp
c:\windows\Installer\2edce32.msp
c:\windows\Installer\2edfc75.msp
c:\windows\Installer\2ee2838.msp
c:\windows\Installer\2ee74d2.msp
c:\windows\Installer\2eeda23.msp
c:\windows\Installer\2eefd3c.msp
c:\windows\Installer\2f0cd49.msp
c:\windows\Installer\2f26afb.msp
c:\windows\Installer\2f3a550.msp
c:\windows\Installer\2f4060d.msp
c:\windows\Installer\2f6ba.msp
c:\windows\Installer\2f6c5e9.msp
c:\windows\Installer\2f79adc.msp
c:\windows\Installer\2f84ad3.msp
c:\windows\Installer\2f8c439.msp
c:\windows\Installer\2fc1b82.msp
c:\windows\Installer\2fd45f9.msp
c:\windows\Installer\2fda781.msp
c:\windows\Installer\2ff654e.msp
c:\windows\Installer\2ff84.msp
c:\windows\Installer\2ff86b1.msp
c:\windows\Installer\301f6c7.msp
c:\windows\Installer\3020abc.msp
c:\windows\Installer\3020b0a.msp
c:\windows\Installer\302af3a.msp
c:\windows\Installer\303157.msp
c:\windows\Installer\305b6ad.msp
c:\windows\Installer\3076ebe.msp
c:\windows\Installer\30a361b.msp
c:\windows\Installer\30acb66.msp
c:\windows\Installer\30c7c81.msp
c:\windows\Installer\30eee0d.msp
c:\windows\Installer\30f0cf0.msp
c:\windows\Installer\30fa392.msp
c:\windows\Installer\3101b14.msp
c:\windows\Installer\31121e5.msp
c:\windows\Installer\311bf6d.msp
c:\windows\Installer\311e564.msp
c:\windows\Installer\312c370.msp
c:\windows\Installer\3140b32.msp
c:\windows\Installer\314ae38.msp
c:\windows\Installer\31609d1.msp
c:\windows\Installer\31adf5d.msp
c:\windows\Installer\31ccd04.msp
c:\windows\Installer\31e23f9.msp
c:\windows\Installer\31e6cf9.msp
c:\windows\Installer\320e348.msp
c:\windows\Installer\321f312.msp
c:\windows\Installer\323a556.msp
c:\windows\Installer\3259167.msp
c:\windows\Installer\326ef41.msp
c:\windows\Installer\32891c6.msp
c:\windows\Installer\328a35a.msp
c:\windows\Installer\32917de.msp
c:\windows\Installer\32d10d6.msp
c:\windows\Installer\32ddf80.msp
c:\windows\Installer\32f83d9.msp
c:\windows\Installer\32fa00c.msp
c:\windows\Installer\3300c3.msp
c:\windows\Installer\336d449.msp
c:\windows\Installer\3385e1.msp
c:\windows\Installer\33fe16d.msp
c:\windows\Installer\3410a6c.msp
c:\windows\Installer\3431947.msp
c:\windows\Installer\343933a.msp
c:\windows\Installer\34dc90e.msp
c:\windows\Installer\350d4e7.msp
c:\windows\Installer\35257.msp
c:\windows\Installer\352aaef.msp
c:\windows\Installer\35323d8.msp
c:\windows\Installer\356e77.msp
c:\windows\Installer\35937ff.msp
c:\windows\Installer\35d41b0.msp
c:\windows\Installer\379c908.msp
c:\windows\Installer\38a9cb6.msp
c:\windows\Installer\38eae37.msp
c:\windows\Installer\390cdea.msp
c:\windows\Installer\39fbb25.msp
c:\windows\Installer\3acf8cb.msp
c:\windows\Installer\3ae7f2c.msp
c:\windows\Installer\3b1d4fe.msp
c:\windows\Installer\3c4341e.msp
c:\windows\Installer\3c5550.msp
c:\windows\Installer\3ca37.msp
c:\windows\Installer\3dc71f.msp
c:\windows\Installer\3f91644.msp
c:\windows\Installer\40cfa8d.msp
c:\windows\Installer\410ad1.msp
c:\windows\Installer\4342fe.msp
c:\windows\Installer\43f09.msp
c:\windows\Installer\4454db.msp
c:\windows\Installer\48d4b6.msp
c:\windows\Installer\49b051.msp
c:\windows\Installer\4cbff3.msp
c:\windows\Installer\4ee73.msp
c:\windows\Installer\50268.msp
c:\windows\Installer\512fd90.msp
c:\windows\Installer\513edcc.msp
c:\windows\Installer\51f57.msp
c:\windows\Installer\567d9.msp
c:\windows\Installer\597d2.msp
c:\windows\Installer\605d7e.msp
c:\windows\Installer\641dc2.msp
c:\windows\Installer\65fa62.msp
c:\windows\Installer\69af9a.msp
c:\windows\Installer\6a651f.msp
c:\windows\Installer\6d58cc.msp
c:\windows\Installer\701711.msp
c:\windows\Installer\7278b.msp
c:\windows\Installer\72c818.msp
c:\windows\Installer\7cfef85.msp
c:\windows\Installer\7fb0f7.msp
c:\windows\Installer\83199f6.msp
c:\windows\Installer\842d28.msp
c:\windows\Installer\84b999.msp
c:\windows\Installer\85992c.msp
c:\windows\Installer\87f173.msp
c:\windows\Installer\94c2e2.msp
c:\windows\Installer\95049e.msp
c:\windows\Installer\95cb59.msp
c:\windows\Installer\9a2221.msp
c:\windows\Installer\9c6887.msp
c:\windows\Installer\9d82ff.msp
c:\windows\Installer\9ee464.msp
c:\windows\Installer\a21e03.msp
c:\windows\Installer\a5b0f.msp
c:\windows\Installer\a7efb3.msp
c:\windows\Installer\ab16d.msp
c:\windows\Installer\b0b1a4.msp
c:\windows\Installer\b2e51e.msp
c:\windows\Installer\b5be7d.msp
c:\windows\Installer\b7912a.msp
c:\windows\Installer\b9f28.msp
c:\windows\Installer\bc5783.msp
c:\windows\Installer\c3580e.msp
c:\windows\Installer\c4dcba.msp
c:\windows\Installer\c5f85b.msp
c:\windows\Installer\c6a5a3.msp
c:\windows\Installer\c81909.msp
c:\windows\Installer\cc060a.msp
c:\windows\Installer\cda95a.msp
c:\windows\Installer\d07b1.msp
c:\windows\Installer\d32fa8.msp
c:\windows\Installer\d92c8e.msp
c:\windows\Installer\da1ad6.msp
c:\windows\Installer\dffeb6.msp
c:\windows\Installer\e08a2d.msp
c:\windows\Installer\e6f11.msp
c:\windows\Installer\e94e61.msp
c:\windows\Installer\f708e7.msp
c:\windows\Installer\fb6d8a.msp
c:\windows\Installer\fd96e2.msp
c:\windows\Installer\fdad48.msp
c:\windows\Installer\ffb3d6.msp
c:\windows\patch.exe
D:\Autorun.inf
.
((((((((((((((((((((((((((((( Fichiers créés du 2009-06-08 au 2009-07-08 ))))))))))))))))))))))))))))))))))))
.
2009-07-08 07:14 . 2009-07-08 07:14 -------- d-----w- c:\program files\denouvel
2009-07-08 07:14 . 2009-07-08 07:14 796672 ----a-w- c:\windows\GPInstall.exe
2009-07-07 18:02 . 2009-06-17 09:27 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-07-07 18:02 . 2009-07-07 18:03 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-07-07 18:02 . 2009-07-07 18:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-07-07 18:02 . 2009-06-17 09:27 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-07-07 12:28 . 2009-04-27 12:21 28928 ----a-w- c:\windows\system32\uxtuneup.dll
2009-07-07 12:28 . 2009-07-07 12:28 361216 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-07-06 08:52 . 2009-07-06 08:52 -------- d-----w- C:\OEMSettings
2009-07-06 08:51 . 2009-07-06 08:51 21035 ----a-w- c:\windows\system32\drivers\AegisP.sys
2009-07-06 08:50 . 2009-07-06 08:50 -------- d-----w- c:\program files\NETGEAR
2009-07-04 06:55 . 2009-07-04 06:55 -------- d-----w- c:\documents and settings\LocalService\Menu Démarrer
2009-07-04 06:54 . 2009-03-30 08:32 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys
2009-07-04 06:54 . 2009-03-24 14:07 55640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2009-07-04 06:54 . 2009-02-13 10:28 22360 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2009-07-04 06:54 . 2009-02-13 10:17 45416 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2009-07-04 06:53 . 2009-07-04 06:53 -------- d-----w- c:\program files\Avira
2009-07-04 06:53 . 2009-07-04 06:53 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2009-06-28 18:49 . 2003-04-02 02:00 40960 ----a-r- c:\windows\P1110cfg.exe
2009-06-28 18:49 . 2003-03-06 02:00 118784 ----a-r- c:\windows\system32\P1110vfw.dll
2009-06-28 18:48 . 2003-08-08 02:01 40960 ----a-r- c:\windows\system32\P1110hwx.dll
2009-06-28 18:48 . 2003-05-05 02:04 65536 ----a-r- c:\windows\system32\CtCamMgr.dll
2009-06-28 18:48 . 2003-04-10 03:01 73728 ----a-r- c:\windows\ctdrvins.exe
2009-06-28 18:48 . 2003-03-26 02:00 32768 ----a-r- c:\windows\system32\P1110pin.dll
2009-06-28 18:48 . 2003-03-05 04:03 69632 ----a-r- c:\windows\system32\P1110Sti.dll
2009-06-28 18:48 . 2003-05-14 03:57 90357 ----a-r- c:\windows\system32\drivers\P1110Vid.sys
2009-06-28 17:51 . 2009-03-24 09:10 114688 ----a-w- c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
2009-06-28 17:51 . 2006-12-12 15:07 161976 ----a-w- c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylomgamesplayer.dll
2009-06-21 07:52 . 2009-06-21 10:24 -------- d-----w- c:\program files\PermissionResearch
2009-06-18 16:12 . 2009-06-18 16:12 -------- d-----w- c:\windows\system32\wbem\Repository
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-07 20:26 . 2009-05-22 15:34 179792 ----a-w- c:\windows\system32\guard32.dll
2009-07-07 20:26 . 2009-05-22 15:34 132040 ----a-w- c:\windows\system32\drivers\cmdguard.sys
2009-07-07 17:58 . 2004-01-01 23:55 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-07-07 13:23 . 2006-05-05 10:07 -------- d-----w- c:\program files\Fichiers communs\Ahead
2009-07-07 12:28 . 2009-03-07 16:57 -------- d-----w- c:\program files\TuneUp Utilities 2009
2009-07-07 12:28 . 2009-03-07 16:58 604416 ----a-w- c:\windows\system32\TUProgSt.exe
2009-07-04 14:07 . 2006-08-09 21:24 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-07-04 14:07 . 2006-08-09 21:24 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-07-04 06:49 . 2009-05-22 15:34 86976 ----a-w- c:\windows\system32\drivers\inspect.sys
2009-07-04 06:49 . 2009-05-22 15:34 25160 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2009-06-28 18:11 . 2006-05-26 11:58 -------- d-----w- c:\documents and settings\All Users\Application Data\Zylom
2009-06-28 17:51 . 2007-08-11 21:22 -------- d-----w- c:\program files\Zylom Games
2009-06-21 08:03 . 2008-03-20 14:21 -------- d-----w- c:\program files\Navilog1
2009-05-29 11:04 . 2009-05-29 11:04 1024 ----a-w- c:\documents and settings\All Users\Application Data\imgpdf2.dll
2009-05-29 11:04 . 2009-05-29 11:04 1024 ----a-w- c:\documents and settings\All Users\Application Data\imgpdf2.dll
2009-05-29 11:04 . 2009-05-29 11:04 -------- d-----w- c:\program files\psconvert
2009-05-28 20:12 . 2009-05-28 20:12 -------- d-----w- c:\program files\Enlight
2009-05-27 08:39 . 2009-03-07 16:05 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-05-23 07:22 . 2009-04-13 13:52 -------- d-----w- c:\program files\Yahoo!
2009-05-22 16:19 . 2009-05-22 15:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Comodo
2009-05-22 15:34 . 2009-05-22 15:34 -------- d-----w- c:\program files\COMODO
2009-05-21 12:18 . 2009-05-21 12:18 78352 ----a-w- c:\windows\system32\GDIPFONTCACHEV1.DAT
2009-05-21 12:11 . 2008-10-31 14:22 -------- d-----w- c:\program files\Messenger Plus! Live
2009-05-21 12:11 . 2008-10-31 14:10 -------- d-----w- c:\program files\Windows Live
2009-05-21 11:17 . 2009-05-21 11:17 -------- d-----w- c:\program files\Fichiers communs\Windows Live
2009-05-07 15:43 . 2004-01-02 05:39 347136 ----a-w- c:\windows\system32\localspl.dll
2009-04-29 04:52 . 2004-01-02 05:39 663552 ----a-w- c:\windows\system32\wininet.dll
2009-04-29 04:52 . 2009-04-13 13:50 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-04-19 20:09 . 2004-01-02 05:39 1846784 ----a-w- c:\windows\system32\win32k.sys
2009-04-17 08:10 . 2004-01-02 05:39 64484 ----a-w- c:\windows\system32\perfc00C.dat
2009-04-17 08:10 . 2004-01-02 05:39 446566 ----a-w- c:\windows\system32\perfh00C.dat
2009-04-15 15:17 . 2004-01-02 05:39 584192 ----a-w- c:\windows\system32\rpcrt4.dll
2006-05-12 16:17 . 2006-05-12 16:17 32768 -c--a-w- c:\program files\mozilla firefox\plugins\MsnChat40fr-fr.dll
2006-11-12 16:06 . 2006-05-20 09:11 56 -csh--r- c:\windows\system32\F5B23CD04F.sys
2007-01-09 20:05 . 2006-11-02 14:17 11690 --sha-w- c:\windows\system32\KGyGaAvL.sys
.
------- Sigcheck -------
[-] 2008-04-14 02:34 14336 E4BDF223CD75478BF44567B4D5C2634D c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\svchost.exe
[-] 2008-04-14 02:34 14336 E4BDF223CD75478BF44567B4D5C2634D c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\svchost.exe
[-] 2004-08-05 10:00 14336 1BD6C2F707A275CB7C16FD99FE0F31CA c:\windows\system32\svchost.exe
[-] 2004-08-05 10:00 14336 1BD6C2F707A275CB7C16FD99FE0F31CA c:\windows\system32\dllcache\svchost.exe
[-] 2005-03-02 18:20 578048 C34920EB988CE98910BD6B0417F334EB c:\windows\$hf_mig$\KB890859\SP2QFE\user32.dll
[-] 2007-03-08 15:50 579072 4D88AAF39ADABFE45958EA1384E2C4FF c:\windows\$hf_mig$\KB925902\SP2QFE\user32.dll
[-] 2008-04-14 02:33 579584 E853F84D3CE2FAA2A802E33CF89AC023 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\user32.dll
[-] 2008-04-14 02:33 579584 E853F84D3CE2FAA2A802E33CF89AC023 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\user32.dll
[-] 2007-03-08 15:37 578560 753354F594809A9B96F73999B435A533 c:\windows\system32\user32.dll
[-] 2007-03-08 15:37 578560 753354F594809A9B96F73999B435A533 c:\windows\system32\dllcache\user32.dll
[-] 2008-04-14 02:33 82432 FB836F9E62D82904C983AD21296A5D9C c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\ws2_32.dll
[-] 2008-04-14 02:33 82432 FB836F9E62D82904C983AD21296A5D9C c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\ws2_32.dll
[-] 2004-08-05 10:00 82944 BC41F51A39D3B255805FDB759B7814AE c:\windows\system32\ws2_32.dll
[-] 2004-08-05 10:00 82944 BC41F51A39D3B255805FDB759B7814AE c:\windows\system32\dllcache\ws2_32.dll
[-] 2006-01-13 17:07 360448 5562CC0A47B2AEF06D3417B733F3C195 c:\windows\$hf_mig$\KB913446\SP2QFE\tcpip.sys
[-] 2006-04-20 12:18 360576 B2220C618B42A2212A59D91EBD6FC4B4 c:\windows\$hf_mig$\KB917953\SP2QFE\tcpip.sys
[-] 2007-10-30 16:53 360832 64798ECFA43D78C7178375FCDD16D8C8 c:\windows\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[-] 2008-06-20 10:44 360960 744E57C99232201AE98C49168B918F48 c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[-] 2008-06-20 11:51 361600 9AEFA14BD6B182D61E3119FA5F436D3D c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[-] 2008-06-20 11:59 361600 AD978A1B783B5719720CFF204B666C8E c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[-] 2008-04-13 19:20 361344 93EA8D04EC73A85DB02EB8805988F733 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\tcpip.sys
[-] 2008-04-13 19:20 361344 93EA8D04EC73A85DB02EB8805988F733 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\tcpip.sys
[-] 2008-06-20 10:45 360320 2A5554FC5B1E04E131230E3CE035C3F9 c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 10:45 360320 2A5554FC5B1E04E131230E3CE035C3F9 c:\windows\system32\drivers\tcpip.sys
[-] 2008-04-14 02:34 512000 DD73D6B9F6B4CB630CF35B438B540174 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\winlogon.exe
[-] 2008-04-14 02:34 512000 DD73D6B9F6B4CB630CF35B438B540174 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\winlogon.exe
[-] 2004-08-05 10:00 506368 D2DE785AEAB0BB8CA4C14A8A199DBE4E c:\windows\system32\winlogon.exe
[-] 2004-08-05 10:00 506368 D2DE785AEAB0BB8CA4C14A8A199DBE4E c:\windows\system32\dllcache\winlogon.exe
[-] 2008-04-13 19:20 182656 1DF7F42665C94B825322FAE71721130D c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\ndis.sys
[-] 2008-04-13 19:20 182656 1DF7F42665C94B825322FAE71721130D c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\ndis.sys
[-] 2004-08-05 10:00 182912 558635D3AF1C7546D26067D5D9B6959E c:\windows\system32\dllcache\ndis.sys
[-] 2004-08-05 10:00 182912 558635D3AF1C7546D26067D5D9B6959E c:\windows\system32\drivers\ndis.sys
[-] 2008-04-13 18:53 36608 3BB22519A194418D5FEC05D800A19AD0 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\ip6fw.sys
[-] 2008-04-13 18:53 36608 3BB22519A194418D5FEC05D800A19AD0 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\ip6fw.sys
[-] 2004-08-05 10:00 29056 4448006B6BC60E6C027932CFC38D6855 c:\windows\system32\dllcache\ip6fw.sys
[-] 2004-08-05 10:00 29056 4448006B6BC60E6C027932CFC38D6855 c:\windows\system32\drivers\ip6fw.sys
[-] 2005-03-02 18:13 2059008 5311776074B6C13F983DC75BAEAC9C0C c:\windows\$hf_mig$\KB890859\SP2QFE\ntkrnlpa.exe
[-] 2006-12-19 18:45 2061440 8B039EFBE4C9AA23F152FFA0E238B8FA c:\windows\$hf_mig$\KB929338\SP2QFE\ntkrnlpa.exe
[-] 2007-02-28 16:08 2061440 7A56A64EB50399613587E90292DD2AAB c:\windows\$hf_mig$\KB931784\SP2QFE\ntkrnlpa.exe
[-] 2009-02-09 11:42 2065024 0150FE5C1E07F8AE422FEC6C8E8A0C98 c:\windows\$hf_mig$\KB956572\SP2QFE\ntkrnlpa.exe
[-] 2009-02-10 17:06 2068096 F751E041E682F53EAF34F7FAEA78994D c:\windows\$hf_mig$\KB956572\SP3GDR\ntkrnlpa.exe
[-] 2009-02-09 11:17 2068224 ED5E20AE4AC5A63A4FF43FFE704A5153 c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe
[-] 2008-08-14 13:39 2065024 DCBC1A6D150B5EE1BD6257186157B0F3 c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlpa.exe
[-] 2008-08-14 13:23 2068096 8DA71F1900721E1E4FCB5B02D55FB771 c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe
[-] 2008-08-14 17:26 2068096 755B50949D0DBC0F0136B0DB58765331 c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
[-] 2009-02-09 11:50 2059776 663D7167ED065786EC9DCFF2569A39F7 c:\windows\Driver Cache\i386\ntkrnlpa.exe
[-] 2008-04-14 02:07 2067968 B71A8F101CEFAF82FC5EC16130A54A3F c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\ntkrnlpa.exe
[-] 2008-04-14 02:07 2067968 B71A8F101CEFAF82FC5EC16130A54A3F c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\ntkrnlpa.exe
[-] 2009-02-09 11:50 2059776 663D7167ED065786EC9DCFF2569A39F7 c:\windows\system32\ntkrnlpa.exe
[-] 2009-02-09 11:50 2059776 663D7167ED065786EC9DCFF2569A39F7 c:\windows\system32\dllcache\ntkrnlpa.exe
[-] 2005-03-02 18:13 2181632 3E2A0A4A0C0B19FC113618A9562A3B2A c:\windows\$hf_mig$\KB890859\SP2QFE\ntoskrnl.exe
[-] 2006-12-19 18:45 2184064 1F3FA2065E6E043A1D82A487B5DA309C c:\windows\$hf_mig$\KB929338\SP2QFE\ntoskrnl.exe
[-] 2007-02-28 16:08 2184192 8E244108562E0E452EB68DFF64CB08A9 c:\windows\$hf_mig$\KB931784\SP2QFE\ntoskrnl.exe
[-] 2009-02-09 11:43 2188160 B55AA66BC9269BC5257B915FFDAA790B c:\windows\$hf_mig$\KB956572\SP2QFE\ntoskrnl.exe
[-] 2009-02-09 11:24 2191104 AB896577F35CF5FED7A9F87D3C3205ED c:\windows\$hf_mig$\KB956572\SP3GDR\ntoskrnl.exe
[-] 2009-02-10 17:16 2191232 BEF458B8424553279E95E250D1E0CE7E c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
[-] 2008-08-14 13:39 2188032 C6649255E51F145B6E15C505AB68E459 c:\windows\$hf_mig$\KB956841\SP2QFE\ntoskrnl.exe
[-] 2008-08-14 13:23 2191232 C8D4D5974F9671DA0A37175650912960 c:\windows\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
[-] 2008-08-14 17:26 2191232 D79210549BBF09B7638E860440504299 c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
[-] 2009-02-09 11:50 2182528 4183ED119200F8520F5E834498AFB927 c:\windows\Driver Cache\i386\ntoskrnl.exe
[-] 2008-04-14 02:08 2191104 099D639DA1EF6968D4E41795BB507E6B c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\ntoskrnl.exe
[-] 2008-04-14 02:08 2191104 099D639DA1EF6968D4E41795BB507E6B c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\ntoskrnl.exe
[-] 2009-02-09 11:50 2182528 4183ED119200F8520F5E834498AFB927 c:\windows\system32\ntoskrnl.exe
[-] 2009-02-09 11:50 2182528 4183ED119200F8520F5E834498AFB927 c:\windows\system32\dllcache\ntoskrnl.exe
[-] 2007-06-13 13:22 1037312 D0288319660EDCFED07C7E74C4EA38A5 c:\windows\explorer.exe
[-] 2007-06-13 13:10 1037312 B795475444D6D57A572C14B9E1A29839 c:\windows\$hf_mig$\KB938828\SP2QFE\explorer.exe
[-] 2008-04-14 02:34 1037824 F2317622D29F9FF0F88AEECD5F60F0DD c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\explorer.exe
[-] 2008-04-14 02:34 1037824 F2317622D29F9FF0F88AEECD5F60F0DD c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\explorer.exe
[-] 2007-06-13 13:22 1037312 D0288319660EDCFED07C7E74C4EA38A5 c:\windows\system32\dllcache\explorer.exe
[-] 2009-02-09 09:53 111104 51A24094F076961A7FF73E5F7E991D68 c:\windows\$hf_mig$\KB956572\SP2QFE\services.exe
[-] 2009-02-09 11:23 111104 C3FB1D70CB88722267949694BA51759E c:\windows\$hf_mig$\KB956572\SP3GDR\services.exe
[-] 2009-02-09 11:16 111104 62789101F9C2401ED598AA2CDE7450C0 c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe
[-] 2008-04-14 02:34 109056 54CB50058851D95E56EC70D09F70857F c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\services.exe
[-] 2008-04-14 02:34 109056 54CB50058851D95E56EC70D09F70857F c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\services.exe
[-] 2009-02-09 10:08 111104 9D6BF82FE50D55F20F8E10E0F6653886 c:\windows\system32\services.exe
[-] 2009-02-09 10:08 111104 9D6BF82FE50D55F20F8E10E0F6653886 c:\windows\system32\dllcache\services.exe
[-] 2008-04-14 02:34 13312 91E6024D6D4DCDECDB36C43ECF9BBECB c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\lsass.exe
[-] 2008-04-14 02:34 13312 91E6024D6D4DCDECDB36C43ECF9BBECB c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\lsass.exe
[-] 2004-08-05 10:00 13312 9F3744A5C6F49291A7A685040A013399 c:\windows\system32\lsass.exe
[-] 2004-08-05 10:00 13312 9F3744A5C6F49291A7A685040A013399 c:\windows\system32\dllcache\lsass.exe
[-] 2008-04-14 02:33 15360 59DC5BB82E4C8E0B3EADCFDBC44BA6E4 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\ctfmon.exe
[-] 2008-04-14 02:33 15360 59DC5BB82E4C8E0B3EADCFDBC44BA6E4 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\ctfmon.exe
[-] 2004-08-05 10:00 15360 5584247B568C2E53934873F4B655FE6A c:\windows\system32\ctfmon.exe
[-] 2004-08-05 10:00 15360 5584247B568C2E53934873F4B655FE6A c:\windows\system32\dllcache\ctfmon.exe
[-] 2005-06-11 00:17 57856 AD3D9D191AEA7B5445FE1D82FFBB4788 c:\windows\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
[-] 2008-04-14 02:34 57856 460E4CE148BD07218DA0B6A3D31885A9 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\spoolsv.exe
[-] 2008-04-14 02:34 57856 460E4CE148BD07218DA0B6A3D31885A9 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\spoolsv.exe
[-] 2005-06-10 23:53 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F c:\windows\system32\spoolsv.exe
[-] 2005-06-10 23:53 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F c:\windows\system32\dllcache\spoolsv.exe
[-] 2008-04-14 02:34 26624 E74DDB12188C2FF57A78624DBF7332FC c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\userinit.exe
[-] 2008-04-14 02:34 26624 E74DDB12188C2FF57A78624DBF7332FC c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\userinit.exe
[-] 2004-08-05 10:00 25088 D6D65EA32B190401B57EDB6706F29669 c:\windows\system32\userinit.exe
[-] 2004-08-05 10:00 25088 D6D65EA32B190401B57EDB6706F29669 c:\windows\system32\dllcache\userinit.exe
[-] 2008-04-14 02:33 297984 710BC85A8C22626EE094439E3EA0D38C c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\termsrv.dll
[-] 2008-04-14 02:33 297984 710BC85A8C22626EE094439E3EA0D38C c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\termsrv.dll
[-] 2004-08-05 10:00 297984 7D521B8CF926459E270D18C559323815 c:\windows\system32\termsrv.dll
[-] 2004-08-05 10:00 297984 7D521B8CF926459E270D18C559323815 c:\windows\system32\dllcache\termsrv.dll
[-] 2006-07-05 10:58 1050112 FB85EF2A6713E3A58A497E093626B93C c:\windows\$hf_mig$\KB917422\SP2QFE\kernel32.dll
[-] 2007-04-16 16:11 1051136 62E3F0E9ABFCBCEE62C51546F622C455 c:\windows\$hf_mig$\KB935839\SP2QFE\kernel32.dll
[-] 2009-03-21 13:58 1054208 2087E2764822A8D93A4CA7FA0FED35E8 c:\windows\$hf_mig$\KB959426\SP2QFE\kernel32.dll
[-] 2009-03-21 14:07 1054720 98F08549604D090B6B2514AF845F329F c:\windows\$hf_mig$\KB959426\SP3GDR\kernel32.dll
[-] 2009-03-21 14:00 1056768 C3AF0EEE26B59484E674673E3016AAB7 c:\windows\$hf_mig$\KB959426\SP3QFE\kernel32.dll
[-] 2008-04-14 02:33 1054720 3AC8886DFA5AB641417DF4D3B7F5512E c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\kernel32.dll
[-] 2008-04-14 02:33 1054720 3AC8886DFA5AB641417DF4D3B7F5512E c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\kernel32.dll
[-] 2009-03-21 14:20 1051136 534040750B9E70B156A98F5D0E8F6D2A c:\windows\system32\kernel32.dll
[-] 2009-03-21 14:20 1051136 534040750B9E70B156A98F5D0E8F6D2A c:\windows\system32\dllcache\kernel32.dll
[-] 2008-04-14 02:33 17408 9F2C862E39BF8E8FC51C3F6A6BCEB415 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\powrprof.dll
[-] 2008-04-14 02:33 17408 9F2C862E39BF8E8FC51C3F6A6BCEB415 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\powrprof.dll
[-] 2004-08-05 10:00 17408 B02E4DDBE0E98F42F3B61292DDB3A104 c:\windows\system32\powrprof.dll
[-] 2004-08-05 10:00 17408 B02E4DDBE0E98F42F3B61292DDB3A104 c:\windows\system32\dllcache\powrprof.dll
[-] 2008-04-14 02:33 110080 0469B73DB32E5520F342C5E163AA3CCA c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\imm32.dll
[-] 2008-04-14 02:33 110080 0469B73DB32E5520F342C5E163AA3CCA c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\imm32.dll
[-] 2004-08-05 10:00 110080 39EE5FAF56260EBB8D77A08F525EBBB4 c:\windows\system32\imm32.dll
[-] 2004-08-05 10:00 110080 39EE5FAF56260EBB8D77A08F525EBBB4 c:\windows\system32\dllcache\imm32.dll
[-] 2008-04-14 02:33 1571840 E17C85D5B5CF477638433B851A98499E c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\sfcfiles.dll
[-] 2008-04-14 02:33 1571840 E17C85D5B5CF477638433B851A98499E c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\sfcfiles.dll
[-] 2004-08-05 10:00 1548288 ACF04FB3448D2C2CD3A851C138EC8AB6 c:\windows\system32\sfcfiles.dll
[-] 2004-08-05 10:00 1548288 ACF04FB3448D2C2CD3A851C138EC8AB6 c:\windows\system32\dllcache\sfcfiles.dll
[-] 2008-04-14 02:05 25216 16813155807C6881F4BFBF6657424659 c:\windows\SoftwareDistribution\Download\23ec66f2314a80d718b5483ab6e865af\kbdclass.sys
[-] 2008-04-14 02:05 25216 16813155807C6881F4BFBF6657424659 c:\windows\SoftwareDistribution\Download\44b6174a4a693136d02d4a7ecd7cbd54\kbdclass.sys
[-] 2004-08-04 06:45 25216 E798705E8DC7FAB596EF6BFDF167E007 c:\windows\system32\dllcache\kbdclass.sys
[-] 2004-08-03 22:45 25216 E798705E8DC7FAB596EF6BFDF167E007 c:\windows\system32\drivers\kbdclass.sys
[-] 2004-08-04 06:45 25216 E798705E8DC7FAB596EF6BFDF167E007 c:\windows\system32\ReinstallBackups\0001\DriverFiles\i386\kbdclass.sys
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acme.PCHButton"="c:\progra~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\PCHButton.exe" [2004-01-02 159744]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-05 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2004-07-01 4112384]
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2006-06-02 180269]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-23 136600]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2009-07-04 1793808]
c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Assistant Smart Wizard NETGEAR pour WG311v3.lnk - c:\program files\NETGEAR\WG111v3\WG111v3.exe [2008-12-11 1925120]
NETGEAR WG111v3 Smart Wizard.lnk - c:\program files\NETGEAR\WG111v3\WG111v3.exe [2008-12-11 1925120]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Acme.PCHButton"=c:\progra~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\pchbutton.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"AGRSMMSG"=AGRSMMSG.exe
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe"
"HP Software Update"=c:\program files\HP\HP Software Update\HPWuSchd2.exe
"hpsysdrv"=c:\windows\system\hpsysdrv.exe
"iTunesHelper"=c:\program files\iTunes\iTunesHelper.exe
"KBD"=c:\hp\KBD\KBD.EXE
"NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
"nwiz"=nwiz.exe /installquiet /keeploaded /nodetect
"PS2"=c:\windows\system32\ps2.exe
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" -atboottime
"Recguard"=c:\windows\SMINST\RECGUARD.EXE
"Reminder"="c:\windows\Creator\Remind_XP.exe"
"SiS Windows KeyHook"=c:\windows\system32\keyhook.exe
"SunJavaUpdateSched"=c:\program files\Java\jre1.5.0_06\bin\jusched.exe
"TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [07/03/2009 18:05 130424]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [22/05/2009 17:34 132040]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [22/05/2009 17:34 25160]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [04/07/2009 08:53 108289]
R2 EAPPkt;Realtek EAPPkt Protocol;c:\windows\system32\drivers\EAPPkt.sys [09/10/2007 13:13 38144]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service;c:\windows\system32\TUProgSt.exe [07/03/2009 18:58 604416]
R3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver;c:\windows\system32\drivers\wg111v3.sys [28/12/2007 15:02 287232]
S3 CAM1210;SM0121 USB 2.0 Video Camera;c:\windows\system32\drivers\cam1210.sys [24/07/2006 17:49 89856]
S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [07/03/2009 18:05 348752]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,LaunchINFSectionEx c:\program files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12
.
Contenu du dossier 'Tâches planifiées'
2009-07-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-06-03 11:42]
2009-07-08 c:\windows\Tasks\Maintenance en 1 clic.job
- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2009-04-27 13:42]
2009-07-05 c:\windows\Tasks\Spybot - Search & Destroy - Scheduled Task.job
- c:\program files\Spybot - Search & Destroy\SpybotSD.exe [2009-07-04 13:31]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://fr.yahoo.com/?fr=fp-yie8
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=presario&pf=desktop
mStart Page = hxxp://fr.yahoo.com
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=presario&pf=desktop
uInternet Connection Wizard,ShellNext = iexplore
Trusted Zone: secuser.com\www
TCP: {A28B820F-F8BF-425C-B782-837D5A13EE45} = 192.168.1.1
FF - ProfilePath - c:\documents and settings\Compaq_Propriétaire\Application Data\Mozilla\Firefox\Profiles\ywx7ukew.default\
FF - prefs.js: browser.search.defaulturl - hxxp://fr.search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://fr.search.yahoo.com/search?ei=UTF-8&fr=ytff-stage6&p=
FF - plugin: c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPPGWrap.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
---- PARAMETRES FIREFOX ----
FF - user.js: network.proxy.type - 0
FF - user.js: network.proxy.http -
user_pref(network.proxy.http_port,);
FF - user.js: network.proxy.no_proxies_on -
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: yahoo.homepage.dontask - true.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-08 15:32
Windows 5.1.2600 Service Pack 2 NTFS
Recherche de processus cachés ...
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------
- - - - - - - > 'winlogon.exe'(1576)
c:\windows\system32\guard32.dll
c:\program files\PermissionResearch\prls.dll
- - - - - - - > 'lsass.exe'(1656)
c:\windows\system32\guard32.dll
.
Heure de fin: 2009-07-08 15:35
ComboFix-quarantined-files.txt 2009-07-08 13:35
Avant-CF: 128 455 696 384 octets libres
Après-CF: 128 582 868 992 octets libres
882 --- E O F --- 2009-07-07 21:14
voilà comme tu le demande j espere que c ets normal tous les installer qui ont été viré erci de ton aide en tout cas
Reposte un rapport Hijackthis.
Répondre à Angeldark
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:31:01, on 08/07/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\PCHButton.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/?fr=fp-yie8
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {3A8E42B4-AC46-4D7E-9190-D30C8C108065} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\PCHButton.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Assistant Smart Wizard NETGEAR pour WG311v3.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: www.secuser.com
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/re [...] oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/bina [...] b47946.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/bina [...] b31267.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A28B820F-F8BF-425C-B782-837D5A13EE45}: NameServer = 192.168.1.1
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe
--
End of file - 8071 bytes
Encore des soucis ?
Répondre à Angeldark
on a l impression que ca rame moins mais c ets pas encore ca
apres pour le virus msn en lui meme je dois attendre que quelqu'un se plaigne mdrrrrrrr
je suis dsl de t'ennuyer comme ca :$ j aimerai bien y comprendre un peu plus quelque chose pour eviter de te soliciter autant mais bon je suis pas doué me contente un peu des truc basique (genre pas cliquer sur un lien qu on connait pas scanner regulierement le pc mettre un bon pare feu etc )
Les ralentissements ne sont pas liés à des infections.
| Citation : je suis dsl de t'ennuyer comme ca :$ j aimerai bien y comprendre un peu plus quelque chose pour eviter de te soliciter autant mais bon je suis pas doué me contente un peu des truc basique (genre pas cliquer sur un lien qu on connait pas scanner regulierement le pc mettre un bon pare feu etc ) |
Pour éviter des probs > http://www.infos-du-net.com/forum/ [...] protection
Répondre à Angeldark
ok merci beaucoup de ton aide en tout cas
Bon surf 
Répondre à Angeldark
Il y a 2098 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
