Avast! Message suspect

Dernière réponse : 11 Novembre 2009 21:25 dans Sécurité

kamachi-kuno

30 Octobre 2009 19:26:51

Bonjour à tous.

J'en est vraiment marre de ce problème, toutes les 10 secondes, une fenêtre venant d'Avast m'alerte en me disant qu'il y a trop de mails identiques envoyés dans un faible intervalle de temps, cette fenêtre s'affiche en permanence.

C'est sûrement un virus, j'ai même essayé d'arrêter le processus des gestionnaire des tâches mais ils disent que c'est impossible...

J'aimerai résoudre ce problème en comptant sur vous, merci d'avance.

Autres pages sur : avast message suspect

| Etre averti des réponses
| Alerter

Répondre à kamachi-kuno

Lassé par la pub ? Créez un compte

Angeldark

31 Octobre 2009 13:06:48

Bonjour,

Certainement une infection. Faut penser par remplacer Avast! par AntiVir.

Télécharge Random's System Information Tool (RSIT) (de random/random) et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Clique Continue à l'écran Disclaimer.

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (qui sera affiché)
ainsi que de info.txt (qui sera réduit dans la Barre des Tâches)

NB : Les rapports sont sauvegardés dans le dossier C:\rsit

Veille bien à me poster l'intégralité des rapports, vérifie qu'ils soient complets une fois que tu les as postés.

| Alerter

Répondre à Angeldark

kamachi-kuno

31 Octobre 2009 15:09:54

Je te remercie, voilà ce que j'ai trouvé concernant log.txt :

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrateur at 2009-10-31 16:02:12
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 3 GB (8%) free of 38 GB
Total RAM: 1023 MB (43% free)
 
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:02:18, on 31/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20861)
Boot mode: Normal
 
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\Administrateur\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Administrateur.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = <a href="http://go.microsoft.com/fwlink/?LinkId=54896" target="_blank">http://go.microsoft.com/fwlink/?LinkId=54896</a>
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = <a href="http://fmz.qiwa.com" target="_blank">http://fmz.qiwa.com</a>
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = <a href="http://go.microsoft.com/fwlink/?LinkId=54896" target="_blank">http://go.microsoft.com/fwlink/?LinkId=54896</a>
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = <a href="http://go.microsoft.com/fwlink/?LinkId=54896" target="_blank">http://go.microsoft.com/fwlink/?LinkId=54896</a>
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = <a href="http://www.yoower.com/" target="_blank">http://www.yoower.com/</a>
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\Program Files\Fichiers communs\svchost.exe,
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QT Lite\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] "c:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Device Detector] DevDetect.exe -autorun
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [VMSnap5] C:\WINDOWS\VMSnap5.EXE
O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.EXE
O4 - HKLM\..\Run: [BigDog305] C:\WINDOWS\VM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [Win32Update] C:\WINDOWS\system32\accwizm.exe
O4 - HKLM\..\RunServices: [Win32Update] C:\WINDOWS\system32\accwizm.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKUS\S-1-5-19\..\RunOnce: [JkDefrag] rundll32 advpack.dll,LaunchINFSection JKDEFRAG.INF,RunOnce,1,N (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [SweetRegistry] rundll32 advpack.dll,LaunchINFSection SweetReg.inf,PerUserStub (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [JkDefrag] rundll32 advpack.dll,LaunchINFSection JKDEFRAG.INF,RunOnce,1,N (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [autochk] rundll32.exe C:\DOCUME~1\LOCALS~1\protect.dll,_IWMPEvents@16 (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [JkDefrag] rundll32 advpack.dll,LaunchINFSection JKDEFRAG.INF,RunOnce,1,N (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunServices: [Win32Update] C:\WINDOWS\system32\accwizm.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [autochk] rundll32.exe C:\DOCUME~1\LOCALS~1\protect.dll,_IWMPEvents@16 (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [JkDefrag] rundll32 advpack.dll,LaunchINFSection JKDEFRAG.INF,RunOnce,1,N (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunServices: [Win32Update] C:\WINDOWS\system32\accwizm.exe (User 'Default user')
O4 - Startup: Free Music Zilla.lnk = C:\Program Files\Free Music Zilla\FMZilla.exe
O4 - Startup: H3 The Shadow of Death(TM).lnk = C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Heroes of Might and Magic III Complete\RegisterSOD\Remind32.exe
O4 - Startup: hamachi.lnk = C:\Program Files\Hamachi\hamachi.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Phone Remote Control.lnk = C:\Documents and Settings\Administrateur\Mes documents\Bluetooth\PhoneRemoteControl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - <a href="http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab" target="_blank">http://messenger.zone.msn.com/binary/msgrchkr.cab56986....</a>
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - <a href="http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab" target="_blank">http://messenger.zone.msn.com/MessengerGamesContent/Gam...</a>
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - <a href="http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab" target="_blank">http://messenger.zone.msn.com/binary/MessengerStatsPACl...</a>
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: avast! Antivirus avast!PlugPlay (avast!PlugPlay) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Services de cryptographie CryptSvcsrservice (CryptSvcsrservice) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: Service de rapport d'erreurs ERSvcusnjsvc (ERSvcusnjsvc) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: Service HP CUE DeviceDiscovery hpqddsvcHTTPFilter (hpqddsvcHTTPFilter) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision                                                     - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Net Driver HPZ12 Netwscsvc (Netwscsvc) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plug-and-Play PlugPlayNetman (PlugPlayNetman) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Accès à distance au Registre RemoteRegistryLmHosts (RemoteRegistryLmHosts) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: StarWind AE Service StarWindServiceAEnapagent (StarWindServiceAEnapagent) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: Telnet TlntSvrRemoteRegistry (TlntSvrRemoteRegistry) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: Portable Media Serial Number Service WmdmPmSNBITS (WmdmPmSNBITS) - Unknown owner - C:\WINDOWS\system32\advpackw.exe (file missing)
O23 - Service: Service Partage réseau du Lecteur Windows Media WMPNetworkSvcAlerter (WMPNetworkSvcAlerter) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: Configuration automatique sans fil WZCSVC Driver HPZ12 (WZCSVC Driver HPZ12) - Unknown owner - C:\WINDOWS\system32\accwizm.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
 
--
End of file - 10958 bytes
 
======Scheduled tasks folder======
 
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
 
======Registry dump======
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll []
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll []
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll []
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-07-19 78008]
"EoEngine"= []
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2008-03-25 49152]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-03-13 81920]
"QuickTime Task"=C:\Program Files\QT Lite\qttask.exe [2009-01-05 413696]
"ISUSPM Startup"=c:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe -startup []
"ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2005-08-11 81920]
"Device Detector"=DevDetect.exe -autorun []
"nwiz"=nwiz.exe /install []
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2008-07-07 167936]
"UnlockerAssistant"=C:\Program Files\Unlocker\UnlockerAssistant.exe [2008-05-02 15872]
"VMSnap5"=C:\WINDOWS\VMSnap5.EXE [2007-01-08 49152]
"Domino"=C:\WINDOWS\Domino.EXE [2007-01-08 49152]
"BigDog305"=C:\WINDOWS\VM305_STI.EXE VIMICRO USB PC Camera (ZC0305) []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-10-22 86016]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
"Win32Update"=C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2008-01-21 5724184]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-07-26 323392]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 691656]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-06-25 1414144]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Download Manager]
C:\Program Files\Free Download Manager\fdm.exe [2008-05-20 2474031]
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ6.5\ICQ.exe silent []
 
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Administrateur^Menu Démarrer^Programmes^Démarrage^MagicDisc.lnk]
C:\PROGRA~1\MAGICD~1\MAGICD~1.EXE [2008-07-28 575488]
 
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Phone Remote Control.lnk - C:\Documents and Settings\Administrateur\Mes documents\Bluetooth\PhoneRemoteControl.exe
 
C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage
Free Music Zilla.lnk - C:\Program Files\Free Music Zilla\FMZilla.exe
H3 The Shadow of Death(TM).lnk - C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Heroes of Might and Magic III Complete\RegisterSOD\Remind32.exe
hamachi.lnk - C:\Program Files\Hamachi\hamachi.exe
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 200064]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=1
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0
 
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDesktopCleanupWizard"=1
"NoInstrumentation"=1
"NoResolveSearch"=1
"NoResolveTrack"=1
"NoSMBalloonTip"=1
"NoSMConfigurePrograms"=1
"NoStartMenuMFUprogramsList"=1
"NoStrCmpLogical"=0
"NoWelcomeScreen"=1
"NoDrives"=0
 
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"HideRunAsVerb"=
"NoActiveDesktop"=
"NoDriveTypeAutoRun"=
"NoInstrumentation"=
"NoResolveTrack"=
"NoSetActiveDesktop"=
"NoStartMenuMFUprogramsList"=
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Document de Samir\Azureus\Azureus\Azureus.exe"="C:\Document de Samir\Azureus\Azureus\Azureus.exe:*:Enabled:Azureus"
"C:\Document de Samir\UltraVNC\winvnc.exe"="C:\Document de Samir\UltraVNC\winvnc.exe:*:Enabled:Serveur VNC pour Win32"
"C:\Program Files\eMule\eMule.exe"="C:\Program Files\eMule\eMule.exe:*:Enabled:eMule Plus"
"C:\Program Files\eChanblard\emule.exe"="C:\Program Files\eChanblard\emule.exe:*:Enabled:eChanblard"
"C:\Program Files\Ubisoft\Heroes of Might and Magic V - Tribes of the East\bin\H5_Game.exe"="C:\Program Files\Ubisoft\Heroes of Might and Magic V - Tribes of the East\bin\H5_Game.exe:*:Enabled:Heroes of Might and Magic V"
"C:\Program Files\Ascaron Entertainment\Sacred\Sacred.exe"="C:\Program Files\Ascaron Entertainment\Sacred\Sacred.exe:*:Enabled:Sacred"
"C:\Documents and Settings\Administrateur\Mes documents\StapMania 4.0\StepMania CVS\Program\StepMania.exe"="C:\Documents and Settings\Administrateur\Mes documents\StapMania 4.0\StepMania CVS\Program\StepMania.exe:*:Enabled:StepMania"
"C:\Documents and Settings\Administrateur\Mes documents\Téléchargement emule\Diablo II\[PC game] Diablo II + Lord of Destruction + editor (items and skills  editor) FULL\Diablo II Lord of destruction\D2Loader-1.12.exe"="C:\Documents and Settings\Administrateur\Mes documents\Téléchargement emule\Diablo II\[PC game] Diablo II + Lord of Destruction + editor (items and skills  editor) FULL\Diablo II Lord of destruction\D2Loader-1.12.exe:*:Enabled:Diablo II"
"C:\Documents and Settings\Administrateur\Mes documents\jeux gba\VBA Link\VisualBoyAdvance.exe"="C:\Documents and Settings\Administrateur\Mes documents\jeux gba\VBA Link\VisualBoyAdvance.exe:*:Enabled:VisualBoyAdvance emulator"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\setup\HPZnui01.exe"="D:\setup\HPZnui01.exe:*:Enabled:hpznui01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
"C:\Program Files\FRoG Creator V0.4\Serveur\Server.exe"="C:\Program Files\FRoG Creator V0.4\Serveur\Server.exe:*:Enabled:Server"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Documents and Settings\Administrateur\Mes documents\LimeWire\LimeWire.exe"="C:\Documents and Settings\Administrateur\Mes documents\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Wolfenstein - Enemy Territory\ET.exe"="C:\Program Files\Wolfenstein - Enemy Territory\ET.exe:*:Enabled:ET"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\Metin2_France\metin2.bin"="C:\Program Files\Metin2_France\metin2.bin:*:Enabled:metin2"
"C:\Program Files\The Game Creators\FPS Creator\FPSC-Game.exe"="C:\Program Files\The Game Creators\FPS Creator\FPSC-Game.exe:*:Enabled:FPSC Game"
"C:\Documents and Settings\Administrateur\Mes documents\Hamachi+Zsnes\zsnesw.exe"="C:\Documents and Settings\Administrateur\Mes documents\Hamachi+Zsnes\zsnesw.exe:*:Enabled:zsnesw"
"C:\Documents and Settings\Administrateur\Mes documents\Jeux DS\Homebrew\Server.exe"="C:\Documents and Settings\Administrateur\Mes documents\Jeux DS\Homebrew\Server.exe:*:Enabled:Server"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Pvm\Piano virtuel midi.exe"="C:\Program Files\Pvm\Piano virtuel midi.exe:*:Enabled:Piano virtuel midi"
""="\??\C:\WINDOWS\system32\winlogon.exe:*:Enabled:rundll32"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Solid State Networks Browser Plugin"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player "
"C:\Documents and Settings\Administrateur\Mes documents\SNES\snes9x.exe"="C:\Documents and Settings\Administrateur\Mes documents\SNES\snes9x.exe:*:Enabled:Snes9XW"
"C:\Documents and Settings\Administrateur\Mes documents\SNES\Snes9k\Snes9K.exe"="C:\Documents and Settings\Administrateur\Mes documents\SNES\Snes9k\Snes9K.exe:*:Enabled:Snes9K"
"C:\Documents and Settings\Administrateur\Mes documents\Kaillera\kaillerasrv.exe"="C:\Documents and Settings\Administrateur\Mes documents\Kaillera\kaillerasrv.exe:*:Enabled:kaillerasrv"
"C:\World of Warcraft\WoW-3.2.0-frFR-downloader.exe"="C:\World of Warcraft\WoW-3.2.0-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\World of Warcraft\Launcher.exe"="C:\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\World of Warcraft\World of Warcraft\WoW-3.2.0-frFR-downloader.exe"="C:\World of Warcraft\World of Warcraft\WoW-3.2.0-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\World of Warcraft\World of Warcraft\Launcher.exe"="C:\World of Warcraft\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Documents and Settings\Administrateur\Mes documents\Bluetooth\BlueSoleil\BlueSoleil.exe"="C:\Documents and Settings\Administrateur\Mes documents\Bluetooth\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\Program Files\Free Music Zilla\FMZilla.exe"="C:\Program Files\Free Music Zilla\FMZilla.exe:*:Enabled:FMZilla"
"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Heroes of Might and Magic III Complete\Heroes3.exe"="C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Heroes of Might and Magic III Complete\Heroes3.exe:*:Enabled:Heroes of Might and Magic® III"
"C:\Program Files\GameSpy Arcade\Aphex.exe"="C:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
 
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"D:\setup\HPZnui01.exe"="D:\setup\HPZnui01.exe:*:Enabled:hpznui01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe:*:Enabled:hpqgpc01.exe"
 
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7e9996cd-f62e-11dd-94d6-000423313c54}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL NoLimit.exe
 
 
======List of files/folders created in the last 1 months======
 
2009-10-31 16:02:12 ----D---- C:\rsit
2009-10-27 02:02:16 ----D---- C:\Program Files\GameSpy Arcade
2009-10-27 01:17:08 ----D---- C:\Program Files\MP3
2009-10-27 01:15:28 ----D---- C:\Program Files\Warlords of the Wasteland
2009-10-27 01:15:28 ----D---- C:\Program Files\Fichiers communs\3DO Shared
2009-10-27 01:15:28 ----D---- C:\Program Files\Data
2009-10-26 23:47:50 ----D---- C:\Program Files\Mplayer
2009-10-26 23:47:35 ----D---- C:\WINDOWS\wb
2009-10-26 23:43:11 ----D---- C:\Program Files\3DO
2009-10-26 23:42:44 ----A---- C:\WINDOWS\IsUninst.exe
2009-10-25 23:53:45 ----D---- C:\Program Files\Divine Divinity
2009-10-25 23:53:34 ----A---- C:\WINDOWS\WININIT.INI
2009-10-24 19:11:08 ----D---- C:\Documents and Settings\Administrateur\Application Data\FMZilla
2009-10-24 19:10:55 ----D---- C:\Program Files\Free Music Zilla
2009-10-24 01:11:42 ----AT---- C:\WINDOWS\system32\SIntfNT.dll
2009-10-24 01:11:42 ----AT---- C:\WINDOWS\system32\SIntf32.dll
2009-10-24 01:11:42 ----AT---- C:\WINDOWS\system32\SIntf16.dll
2009-10-24 01:03:01 ----D---- C:\Program Files\Diablo II
2009-10-14 21:39:01 ----D---- C:\Documents and Settings\Administrateur\Application Data\Malwarebytes
2009-10-14 21:38:52 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-10-14 21:38:52 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-10-14 21:31:17 ----D---- C:\Program Files\Trend Micro
2009-10-09 16:38:12 ----A---- C:\WINDOWS\system32\geyekrehwmqbrp.dll
2009-10-04 10:59:52 ----D---- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
2009-10-04 10:59:36 ----D---- C:\Program Files\PC Drivers HeadQuarters
2009-10-04 10:56:38 ----D---- C:\Documents and Settings\Administrateur\Application Data\Nokia
2009-10-04 10:56:36 ----D---- C:\Documents and Settings\Administrateur\Application Data\PC Suite
2009-10-04 10:56:35 ----D---- C:\Documents and Settings\All Users\Application Data\PC Suite
2009-10-04 10:53:22 ----D---- C:\Program Files\Fichiers communs\PCSuite
2009-10-04 10:53:18 ----D---- C:\Program Files\Fichiers communs\Nokia
2009-10-04 10:53:00 ----D---- C:\Program Files\DIFX
2009-10-04 10:52:35 ----D---- C:\Program Files\PC Connectivity Solution
2009-10-04 10:51:52 ----A---- C:\WINDOWS\system32\nmwcdcls.dll
2009-10-04 10:51:51 ----D---- C:\Program Files\Nokia
2009-10-04 10:50:27 ----D---- C:\Documents and Settings\All Users\Application Data\Installations
 
======List of files/folders modified in the last 1 months======
 
2009-10-31 12:35:29 ----D---- C:\WINDOWS\Temp
2009-10-31 12:03:53 ----D---- C:\WINDOWS\system32\CatRoot2
2009-10-31 09:55:49 ----D---- C:\WINDOWS\system32
2009-10-31 00:27:24 ----D---- C:\WINDOWS\Minidump
2009-10-31 00:27:24 ----D---- C:\WINDOWS
2009-10-30 20:52:49 ----D---- C:\Documents and Settings\Administrateur\Application Data\DNA
2009-10-30 18:38:15 ----D---- C:\Documents and Settings\Administrateur\Application Data\Hamachi
2009-10-30 16:42:20 ----D---- C:\Program Files\DNA
2009-10-29 15:13:36 ----D---- C:\WINDOWS\system32\drivers
2009-10-29 15:03:55 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2009-10-29 04:03:08 ----D---- C:\Documents and Settings\Administrateur\Application Data\uTorrent
2009-10-27 15:50:27 ----D---- C:\Program Files\Mozilla Firefox
2009-10-27 02:49:04 ----D---- C:\WINDOWS\system
2009-10-27 02:02:16 ----RD---- C:\Program Files
2009-10-27 01:15:28 ----D---- C:\Program Files\Fichiers communs
2009-10-25 09:18:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-10-25 03:11:15 ----A---- C:\WINDOWS\win.ini
2009-10-24 01:04:41 ----HD---- C:\WINDOWS\inf
2009-10-23 21:21:53 ----SHD---- C:\WINDOWS\Installer
2009-10-23 21:21:52 ----HD---- C:\Config.Msi
2009-10-23 21:14:04 ----D---- C:\Program Files\Project64 1.6
2009-10-20 16:08:59 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-10-19 11:48:57 ----D---- C:\Program Files\Pvm
2009-10-18 08:34:53 ----D---- C:\Program Files\Unlocker
2009-10-15 12:40:55 ----RSD---- C:\WINDOWS\Fonts
2009-10-04 11:00:39 ----RSD---- C:\WINDOWS\assembly
2009-10-04 10:54:10 ----DC---- C:\WINDOWS\system32\DRVSTORE
 
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-07-19 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-07-19 42912]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2008-07-07 56108]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-07-19 94416]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-08-08 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-08-08 25888]
R2 rspndr;Répondeur de découverte de topologie de la couche de liaison; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2008-05-29 62848]
R2 vnccom;vnccom; C:\WINDOWS\System32\Drivers\vnccom.SYS [2004-06-26 6016]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2006-08-15 100224]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-07-19 23152]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2007-11-16 165496]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-05-31 25544]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2008-04-16 49920]
R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2008-04-16 16496]
R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2008-04-16 21568]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys [2008-07-28 116736]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-09-27 12288]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2006-08-15 578304]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-09-27 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-24 30336]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-09-27 25856]
R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-09-27 15104]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-09-27 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 vncdrv;vncdrv; C:\WINDOWS\system32\DRIVERS\vncdrv.sys [2004-06-26 4736]
R3 ZSMC0305;Vimicro USB PC Camera (VC0305); C:\WINDOWS\System32\Drivers\usbVM305.sys [2007-01-08 391737]
S1 Dup;Dup; \??\C:\WINDOWS\System32\DRIVERS\dup.sys []
S3 a2rww5zu;a2rww5zu; C:\WINDOWS\system32\drivers\a2rww5zu.sys []
S3 a7l9ydxa;a7l9ydxa; C:\WINDOWS\system32\drivers\a7l9ydxa.sys []
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2006-06-23 31488]
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2005-08-31 20480]
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2006-01-19 10068]
S3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2005-07-30 11988]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-09-27 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-09-27 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-09-27 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-09-27 10880]
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-14 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2004-05-14 32896]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-09-27 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-09-27 15232]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2006-02-28 84836]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-09-13 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-09-27 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-09-13 82944]
S3 XDva279;XDva279; \??\C:\WINDOWS\system32\XDva279.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
 
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
 
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-07-19 16056]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-07-19 147640]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 hpqddsvc;Service HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-03-06 66872]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 avast!PlugPlay;avast! Antivirus avast!PlugPlay; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 CryptSvcsrservice;Services de cryptographie CryptSvcsrservice; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 Dot3svcose;Configuration automatique de réseau câblé Dot3svcose; C:\WINDOWS\system32\advpack.dll [2008-08-28 124928]
S2 ERSvcusnjsvc;Service de rapport d'erreurs ERSvcusnjsvc; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 hpqddsvcHTTPFilter;Service HP CUE DeviceDiscovery hpqddsvcHTTPFilter; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 Netwscsvc;Net Driver HPZ12 Netwscsvc; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
S2 PlugPlayNetman;Plug-and-Play PlugPlayNetman; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 RemoteRegistryLmHosts;Accès à distance au Registre RemoteRegistryLmHosts; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 StarWindServiceAEnapagent;StarWind AE Service StarWindServiceAEnapagent; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 TlntSvrRemoteRegistry;Telnet TlntSvrRemoteRegistry; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 WmdmPmSNBITS;Portable Media Serial Number Service WmdmPmSNBITS; C:\WINDOWS\system32\advpackw.exe srv []
S2 WmdmPmSNThemes;Portable Media Serial Number Service WmdmPmSNThemes; C:\WINDOWS\system32\1041r.exe [2008-04-14 63488]
S2 WMPNetworkSvcAlerter;Service Partage réseau du Lecteur Windows Media WMPNetworkSvcAlerter; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S2 WZCSVC Driver HPZ12;Configuration automatique sans fil WZCSVC Driver HPZ12; C:\WINDOWS\system32\accwizm.exe [2008-04-14 61952]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-07-19 250040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-07-23 348344]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 InstallShield Licensing Service;InstallShield Licensing Service; C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe [2009-03-14 69632]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2009-06-12 2837916]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-29 89136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2004-05-14 86016]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-06-02 637952]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S4 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]
S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S4 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2008-09-13 918016]
 
-----------------EOF-----------------

Puis concernant info.txt :

info.txt logfile of random's system information tool 1.06 2009-10-31 16:02:22
 
======Uninstall list======
 
-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
32 Bit HP CIO Components Installer-->MsiExec.exe /I{F7B0E599-C114-4493-BC4D-D8FC7CBBABBB}
ACDSee for PENTAX 3.0-->MsiExec.exe /X{82515476-A57B-4C43-B642-5F396E20C648}
Adobe Color Common Settings-->C:\Program Files\Fichiers communs\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\Setup.exe
Adobe Color Common Settings-->MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
Adobe ExtendScript Toolkit 2-->C:\Program Files\Fichiers communs\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A90000000001}
Adobe Setup-->MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
Adobe Setup-->MsiExec.exe /I{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
Adobe Shockwave Player-->MsiExec.exe /X{54E4B63C-D252-454C-BE4F-468F102B331C}
Apple Mobile Device Support-->MsiExec.exe /I{EC4455AB-F155-4CC1-A4C5-88F3777F9886}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Audacity 1.2.6-->"C:\Documents and Settings\Administrateur\Mes documents\audacity\Audacity\unins000.exe"
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
BlueSoleil-->MsiExec.exe /X{996D8BB8-9B47-46C7-92DC-DCCE64467AB8}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
CamStudio-->C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{EB371786-9449-4ED8-B47A-032467A58CAD} anything\anything
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
ClearType Tuning-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,ClearTypeCPL.Uninstall
Collab-->C:\Program Files\Image-Line\Collab\uninstall.exe
Complément Microsoft Enregistrer en tant que PDF ou XPS pour programmes Microsoft Office 2007-->MsiExec.exe /X{90120000-00B2-040C-0000-0000000FF1CE}
CPU-Z-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,CPUZ.Uninstall
CurrPorts-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,CurrPorts.Uninstall
DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
Dance eJay 7 Demo-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0D74C204-0451-463E-8B8E-F2E11504A675}\setup.exe" -l0x40c  -removeonly
Dev-C++ 5 beta 9 release (4.9.9.2)-->"C:\Dev-Cpp\uninstall.exe"
Divine Divinity-->C:\PROGRA~1\DIVINE~1\UNINST~1\UNWISE.EXE C:\PROGRA~1\DIVINE~1\UNINST~1\INSTALL.LOG
Driver Detective-->MsiExec.exe /X{5721A8EA-A30F-4F66-9046-3F40C43AE1DC}
ePSXe-->"C:\Documents and Settings\Administrateur\Mes documents\ePSXe\ePSXe 1.6.0\desinstall\lancermoi.bat" "C:\Documents and Settings\Administrateur\Mes documents\ePSXe\ePSXe 1.6.0\desinstall\install.log" "C:\Documents and Settings\Administrateur\Mes documents\ePSXe\ePSXe 1.6.0"
Favorit-->"c:\documents and settings\administrateur\local settings\application data\dzigvtq.exe" -uninstall
Fichiers de prise en charge de l'installation de Microsoft SQL Server (Français)-->MsiExec.exe /X{3380F354-C5F7-4E71-8F51-EEE6C3F06C62}
Free Download Manager 2.5 build 758-->C:\Program Files\Free Download Manager\uninst.exe
Free Music Zilla-->"C:\Program Files\Free Music Zilla\unins000.exe"
GameSpy Arcade-->C:\PROGRA~1\GAMESP~1\UNWISE.EXE C:\PROGRA~1\GAMESP~1\INSTALL.LOG
GoRC-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,GoRC.Uninstall
GPU-Z-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,GPUZ.Uninstall
Hamachi 1.0.2.2-->C:\Program Files\Hamachi\uninstall.exe
HD Tune-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,HDTune.Uninstall
Heroes Chronicles: Warlords of the Wasteland-->C:\WINDOWS\IsUninst.exe -f"c:\program files\Warlords of the Wasteland\Heroes Chronicles Warlords of the Wasteland.isu" -c"C:\Program Files\Fichiers communs\3DO Shared\3DOUnInst.dll
Heroes of Might and Magic V - Tribes of the East-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{66FF4C48-0083-4E60-8556-B883AB200092}\setup.exe" -l0x9 
Heroes of Might and Magic® III The Shadow of Death(TM)-->C:\WINDOWS\IsUninst.exe -f"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Heroes of Might and Magic III Complete\Uninst.isu" -c"C:\Documents and Settings\Administrateur\Mes documents\Azureus Downloads\Heroes of Might and Magic III Complete\uninst.dll
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HP Customer Participation Program 11.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat -forcereboot
HP Imaging Device Functions 11.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart C4500 All-In-One Driver Software 11.0 Rel .4-->C:\Program Files\HP\Digital Imaging\{BED1705F-7558-40f7-9F52-6C6FBD58EA2E}\setup\hpzscr01.exe -datfile hposcr30.dat -onestop
HP Photosmart Essential 3.0-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat -forcereboot
HP Smart Web Printing-->C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpzscr01.exe -datfile hpqbud15.dat
HP Solution Center 11.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat -forcereboot
HP Update-->MsiExec.exe /X{D063F201-FAC4-4D5C-B10B-615058ADE5A7}
HWMonitor-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,HWMonitor.Uninstall
HyperCam 2-->"C:\Program Files\HyCam2\UnHyCam2.exe"
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
JkDefrag-->rundll32.exe advpack.dll,LaunchINFSection JKDEFRAG.INF,JkDefrag.Uninstall
K-Lite Codec Pack 5.1.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Magic ISO Maker v5.3 (build 0214)-->C:\PROGRA~1\MagicISO\UNWISE.EXE C:\PROGRA~1\MagicISO\INSTALL.LOG
MagicDisc 2.7.105-->C:\PROGRA~1\MAGICD~1\UNWISE.EXE C:\PROGRA~1\MAGICD~1\INSTALL.LOG
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MemTest-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,MemTest.Uninstall
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Micrografx PhotoMagic 6-->C:\WINDOWS\mgxclean.exe Magic6.app
Micrografx Windows Draw 6-->C:\WINDOWS\MGXCLEAN.EXE DRAW6.APP FONTS.APP
Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - FRA-->MsiExec.exe /I{3F7924B9-D148-3141-87B1-68F36043A940}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - FRA-->MsiExec.exe /I{511DF669-2930-30C0-8EB6-552887E29EC8}
Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783}
Microsoft .NET Framework 3.5 Language Pack - fra-->MsiExec.exe /I{5B76AEA2-D4E5-3B55-B965-ACC36AE0EAFC}
Microsoft .NET Framework 3.5-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\setup.exe
Microsoft .NET Framework 3.5-->MsiExec.exe /I{2FC099BD-AC9B-33EB-809C-D332E1B27C40}
Microsoft DirectX Control Panel 9.0c-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,DirectXCPL.Uninstall
Microsoft Office PowerPoint Viewer 2007 (French)-->MsiExec.exe /X{95120000-00AF-040C-0000-0000000FF1CE}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server Native Client-->MsiExec.exe /I{9C7E944F-4502-40B8-A0AB-66B2FA9EE829}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework-->MsiExec.exe /X{AB47EEE8-507B-331F-AA28-B7C7257F014C}
Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32-->MsiExec.exe /X{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries-->MsiExec.exe /X{842FAF7C-50EF-4463-9B8F-6222E1384D7D}
Module linguistique Microsoft .NET Framework 3.5 - fra-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack - fra\setup.exe
Mozilla Firefox (3.5.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mplayer.com-->"C:\Program Files\Mplayer\System\UNWISE32.EXE" /a C:\PROGRA~1\Mplayer\System\install.log
MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
Nero Info Tool-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,InfoTool.Uninstall
Nokia Connectivity Cable Driver-->MsiExec.exe /I{52D02A2B-03D2-4E34-A358-DC5D951FD296}
Nokia PC Suite-->C:\Documents and Settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_fre_web.exe
Nokia PC Suite-->MsiExec.exe /I{3D39E775-DDDA-4327-B747-0BDC5F191331}
Notepad++-->C:\Program Files\Notepad++\uninstall.exe
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
OCR Software by I.R.I.S. 11.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
Open Command Prompt Shell Extension-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,CmdOpen.Uninstall
Opera 10.00-->MsiExec.exe /X{2085F05D-24C5-4E27-B7B4-A51DE890FFC9}
Package de pilotes Windows - Nokia Modem  (06/01/2009 4.1)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_C08496D7A0050438DFE13C55799AE2D4157A8E7A\nokia_bluetooth.inf
Package de pilotes Windows - Nokia Modem  (06/01/2009 7.01.0.3)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_9C48E34C57B7D4AAE5FFF5FB9B476B538394FD30\nokbtmdm.inf
Package de pilotes Windows - Nokia pccsmcfd  (08/22/2008 7.0.0.0)-->C:\PROGRA~1\DIFX\B4723E9A0713E5B1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.inf
PC Connectivity Solution-->MsiExec.exe /I{0C973594-7DDF-4BD0-84ED-3517F7622037}
Phone Remote Control-->MsiExec.exe /I{F3B6CF89-B918-4DDE-A7F7-B4D4C3E6D033}
PhotoFiltre Studio-->"C:\Program Files\PhotoFiltre Studio\Uninst.exe"
Pilote de clavier français enrichi-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\KBDFRAC2.INF, DefaultUninstall.ntx86
PoiZone-->C:\Program Files\Image-Line\PoiZone\uninstall.exe
PowerISO-->"C:\Program Files\PowerISO\uninstall.exe"
Project64 1.6-->MsiExec.exe /X{9559F7CA-5E34-4237-A2D9-D856464AD727}
Pserv-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,Pserv.Uninstall
QT Lite 2.7.0-->"C:\Program Files\QT Lite\unins000.exe"
Quicksys RegDefrag-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,RegDefrag.Uninstall
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
Real Alternative 1.8.4 Lite-->"C:\Program Files\Real Alternative\unins000.exe"
RegScanner-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,RegScanner.Uninstall
RPG Maker VX 1.02-->"C:\Program Files\RPG Maker VX Vrai\unins000.exe"
Shop for HP Supplies-->C:\Program Files\HP\Digital Imaging\HPSSupply\hpzscr01.exe -datfile hpqbud16.dat
SoftwareUpdate 1.0-->"C:\Documents and Settings\Administrateur\Application Data\eoRezo\SoftwareUpdate\unins000.exe"
Sysinternals Suite-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,Sysinternals.Uninstall
System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
Toxic Biohazard-->C:\Program Files\Image-Line\Toxic Biohazard\uninstall.exe
Tweak UI-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,TweakUI.Uninstall
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
Utilitaires Gnu Unix-->rundll32.exe advpack.dll,LaunchINFSection KALUNIX.INF,Uninstall
Vimicro USB PC Camera (VC0305)-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8AD824A5-1CCC-4BB7-82C9-E6FB25CC0479}\setup.exe" -l0x40c 
VLC media player 0.9.6-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Installer CleanUp-->rundll32.exe advpack.dll,LaunchINFSection SWTUTILS.INF,MSI.Uninstall
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live Safety Scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
WinHTTrack Website Copier 3.43-5-->"C:\Program Files\WinHTTrack\unins000.exe"
WinPcap 3.1 beta3-->"C:\Program Files\WinPcap\Uninstall.exe" "C:\Program Files\WinPcap\install.log"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
Yahoo! Software Update-->C:\PROGRA~1\Yahoo!\SOFTWA~1\UNINST~1.EXE
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
 
======Security center information======
 
AV: avast! antivirus 4.8.1229 [VPS 091030-0] (disabled)
 
======System event log======
 
Computer Name: SWEET-20DBC2A34
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).
 
Record Number: 5
Source Name: Service Control Manager
Time Written: 20091017175940.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
 
Computer Name: SWEET-20DBC2A34
Event Code: 7026
Message: Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se charger : 
eowxlx
 
Record Number: 4
Source Name: Service Control Manager
Time Written: 20091017175940.000000+120
Event Type: erreur
User: 
 
Computer Name: SWEET-20DBC2A34
Event Code: 7022
Message: Le service Service HP CUE DeviceDiscovery est en attente de démarrage.
 
Record Number: 3
Source Name: Service Control Manager
Time Written: 20091017175940.000000+120
Event Type: erreur
User: 
 
Computer Name: SWEET-20DBC2A34
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.
 
Record Number: 2
Source Name: EventLog
Time Written: 20091017175632.000000+120
Event Type: Informations
User: 
 
Computer Name: SWEET-20DBC2A34
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Service Pack 3 Uniprocessor Free.
 
Record Number: 1
Source Name: EventLog
Time Written: 20091017175632.000000+120
Event Type: Informations
User: 
 
=====Application event log=====
 
Computer Name: SWEET-20DBC2A34
Event Code: 0
Message: 
Record Number: 5
Source Name: hpqcxs08
Time Written: 20091017185634.000000+120
Event Type: Informations
User: 
 
Computer Name: SWEET-20DBC2A34
Event Code: 0
Message: 
Record Number: 4
Source Name: HPSLPSVC
Time Written: 20091017185443.000000+120
Event Type: Informations
User: 
 
Computer Name: SWEET-20DBC2A34
Event Code: 0
Message: 
Record Number: 3
Source Name: YahooAUService
Time Written: 20091017185442.000000+120
Event Type: Informations
User: 
 
Computer Name: SWEET-20DBC2A34
Event Code: 0
Message: 
Record Number: 2
Source Name: HPSLPSVC
Time Written: 20091017185440.000000+120
Event Type: Informations
User: 
 
Computer Name: SWEET-20DBC2A34
Event Code: 1
Message: 
Record Number: 1
Source Name: Bonjour Service
Time Written: 20091017185430.000000+120
Event Type: Informations
User: 
 
======Environment variables======
 
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\GnuWin32;C:\Program Files\Smart Projects\IsoBuster;C:\Program Files\QT Lite\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 4, GenuineIntel
"PROCESSOR_REVISION"=0204
"NUMBER_OF_PROCESSORS"=1
"LANG"=EN
"LANGUAGE"=EN
"WGETRC"=C:\WINDOWS\system32\GnuWin32\etc\wgetrc
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip
 
-----------------EOF-----------------

Edit : J'ai mis en Code pour ne pas avoir de problème de Smiley, et on se repère mieux.

| Alerter

Répondre à kamachi-kuno

Angeldark

3 Novembre 2009 22:00:49

Désolé pour le retard

Télécharge ComboFix (de sUBs) sur ton Bureau.

Désactive temporairement toute protection résidente ! (Antivirus, antispywares..)

Double clique sur ComboFix.exe.

Accepte la licence en cliquant sur Oui.

Le programme va te demander si tu souhaites installer la Console de Récupération. C'est une précaution, au cas où l'ordinateur tomberait en panne. Je te conseille donc de l'installer, ça ne coûte rien, et ça pourrait potentiellement servir !

Lorsque l'opération sera terminée, un rapport apparaîtra. Poste ce rapport dans ta prochaine réponse.

Le rapport se trouve ici : %SystemDrive%\ComboFix.txt (%systemdrive% étant la partition où est installée Windows; C:\ en général)

Aide : Comment utiliser ComboFix.

| Alerter

Répondre à Angeldark

kamachi-kuno

4 Novembre 2009 17:34:50

Merci pour la réponse.

Voici son contenu :

ComboFix 09-11-03.03 - Administrateur 04/11/2009 18:07.1.1 - NTFSx86
Microsoft Windows XP Professionnel  5.1.2600.3.1252.33.1036.18.1023.391 [GMT 1:00]
Lancé depuis: c:\documents and settings\Administrateur\Bureau\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Outdated) {AD166499-45F9-482A-A743-FDD3350758C7}
AV: avast! antivirus 4.8.1229 [VPS 091103-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
 * Un nouveau point de restauration a été créé
.
 
((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))
.
 
c:\documents and settings\Administrateur\Application Data\Desktopicon
c:\documents and settings\Administrateur\Application Data\Desktopicon\eBayShortcuts.exe
c:\program files\autorun.inf
c:\program files\WinPCap
c:\program files\WinPCap\daemon_mgm.exe
c:\program files\WinPCap\INSTALL.LOG
c:\program files\WinPCap\NetMonInstaller.exe
c:\program files\WinPCap\npf_mgm.exe
c:\program files\WinPCap\rpcapd.exe
c:\program files\WinPCap\Uninstall.exe
c:\windows\system32\2317921052.dat
c:\windows\system32\accwizm.exe
c:\windows\system32\advpack.dllo.exe
c:\windows\system32\api.dat
c:\windows\system32\drivers\npf.sys
c:\windows\system32\geyekrdwyakspw.dat
c:\windows\system32\geyekrehwmqbrp.dll
c:\windows\system32\geyekrwdtvfnwu.dat
c:\windows\system32\Packet.dll
c:\windows\system32\pthreadVC.dll
c:\windows\system32\WanPacket.dll
c:\windows\system32\win.ini
c:\windows\system32\wpcap.dll
 
.
(((((((((((((((((((((((((((((((((((((((   Pilotes/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
 
-------\Legacy_DOT3SVCOSE
-------\Legacy_ERSVCUSNJSVC
-------\Legacy_geyekrwbltdmub
-------\Legacy_HPQDDSVCHTTPFILTER
-------\Legacy_NPF
-------\Legacy_PLUGPLAYNETMAN
-------\Legacy_REMOTEREGISTRYLMHOSTS
-------\Legacy_STARWINDSERVICEAENAPAGENT
-------\Legacy_TLNTSVRREMOTEREGISTRY
-------\Legacy_WMDMPMSNBITS
-------\Legacy_WMPNETWORKSVCALERTER
-------\Legacy_WZCSVC_DRIVER_HPZ12
-------\Service_Dot3svcose
-------\Service_ERSvcusnjsvc
-------\Service_geyekrwbltdmub
-------\Service_hpqddsvcHTTPFilter
-------\Service_NPF
-------\Service_PlugPlayNetman
-------\Service_RemoteRegistryLmHosts
-------\Service_StarWindServiceAEnapagent
-------\Service_TlntSvrRemoteRegistry
-------\Service_WmdmPmSNBITS
-------\Service_WMPNetworkSvcAlerter
-------\Service_WZCSVC Driver HPZ12
-------\Legacy_avast!PlugPlay
-------\Legacy_CryptSvcsrservice
-------\Legacy_Netwscsvc
-------\Service_avast!PlugPlay
-------\Service_CryptSvcsrservice
-------\Service_Netwscsvc
 
 
(((((((((((((((((((((((((((((   Fichiers créés du 2009-10-04 au 2009-11-04  ))))))))))))))))))))))))))))))))))))
.
 
2009-11-01 01:16 . 2009-11-01 01:51	--------	d-----w-	c:\documents and settings\Administrateur\Local Settings\Application Data\Battle for Wesnoth 1.7.7
2009-11-01 00:19 . 2009-11-01 00:33	--------	d-----w-	c:\documents and settings\Administrateur\Local Settings\Application Data\Dictionnaire Freelang
2009-10-31 19:29 . 2009-11-01 01:29	--------	d-----w-	c:\documents and settings\Administrateur\Local Settings\Application Data\Battle for Wesnoth 1.5.12-1.6rc1
2009-10-31 15:16 . 2009-10-31 15:16	--------	d-----w-	c:\windows\LastGood.Tmp
2009-10-31 15:16 . 2009-11-01 15:51	55656	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2009-10-31 15:16 . 2009-03-30 09:32	96104	----a-w-	c:\windows\system32\drivers\avipbb.sys
2009-10-31 15:16 . 2009-02-13 11:28	22360	----a-w-	c:\windows\system32\drivers\avgntmgr.sys
2009-10-31 15:16 . 2009-02-13 11:17	45416	----a-w-	c:\windows\system32\drivers\avgntdd.sys
2009-10-31 15:16 . 2009-10-31 15:16	--------	d-----w-	c:\program files\Avira
2009-10-31 15:16 . 2009-10-31 15:16	--------	d-----w-	c:\documents and settings\All Users\Application Data\Avira
2009-10-31 15:02 . 2009-10-31 15:02	--------	d-----w-	C:\rsit
2009-10-27 01:02 . 2009-10-27 01:12	--------	d-----w-	c:\program files\GameSpy Arcade
2009-10-27 00:17 . 2009-10-27 00:17	--------	d-----w-	c:\program files\MP3
2009-10-27 00:15 . 2009-10-27 00:17	--------	d-----w-	c:\program files\Warlords of the Wasteland
2009-10-27 00:15 . 2009-10-27 00:17	--------	d-----w-	c:\program files\Fichiers communs\3DO Shared
2009-10-27 00:15 . 2009-10-27 00:17	--------	d-----w-	c:\program files\Data
2009-10-26 22:47 . 2009-10-26 22:47	--------	d-----w-	c:\program files\Mplayer
2009-10-26 22:47 . 2009-10-26 22:47	--------	d-----w-	c:\windows\wb
2009-10-26 22:47 . 1996-09-30 19:32	9728	----a-r-	c:\windows\system\rnaph.dll
2009-10-26 22:47 . 1996-08-16 20:44	87552	----a-r-	c:\windows\system\url.dll
2009-10-26 22:43 . 2009-10-27 00:17	--------	d-----w-	c:\program files\3DO
2009-10-26 22:42 . 1998-10-29 15:45	306688	----a-w-	c:\windows\IsUninst.exe
2009-10-25 22:53 . 2009-10-26 00:21	--------	d-----w-	c:\program files\Divine Divinity
2009-10-24 18:11 . 2009-10-24 18:11	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\FMZilla
2009-10-24 18:10 . 2009-11-01 23:44	--------	d-----w-	c:\program files\Free Music Zilla
2009-10-24 00:11 . 2009-10-24 23:22	21840	----atw-	c:\windows\system32\SIntfNT.dll
2009-10-24 00:11 . 2009-10-24 23:22	17212	----atw-	c:\windows\system32\SIntf32.dll
2009-10-24 00:11 . 2009-10-24 23:22	12067	----atw-	c:\windows\system32\SIntf16.dll
2009-10-24 00:03 . 2009-10-31 17:35	--------	d-----w-	c:\program files\Diablo II
2009-10-14 20:39 . 2009-10-14 20:39	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\Malwarebytes
2009-10-14 20:38 . 2009-09-10 12:54	38224	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-14 20:38 . 2009-10-14 20:38	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2009-10-14 20:38 . 2009-10-14 20:38	--------	d-----w-	c:\documents and settings\All Users\Application Data\Malwarebytes
2009-10-14 20:38 . 2009-09-10 12:53	19160	----a-w-	c:\windows\system32\drivers\mbam.sys
2009-10-14 20:31 . 2009-10-14 20:31	--------	d-----w-	c:\program files\Trend Micro
2009-10-13 21:04 . 2009-10-14 21:08	4457	----a-w-	c:\documents and settings\Administrateur\Local Settings\Application Data\dzigvtq.dat
2009-10-11 18:48 . 2009-10-11 18:48	21376	----a-w-	c:\windows\system32\drivers\dup.sys
2009-10-08 12:39 . 2009-10-08 12:39	--------	d-----r-	c:\documents and settings\LocalService\Mes documents
 
.
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-04 17:17 . 2009-11-04 17:17	32	--s-a-w-	c:\windows\system32\2317921052.dat
2009-10-31 17:35 . 2008-11-07 20:08	--------	d-----w-	c:\program files\Free Download Manager
2009-10-30 19:52 . 2009-07-26 22:12	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\DNA
2009-10-30 17:38 . 2009-05-31 12:58	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\Hamachi
2009-10-30 15:42 . 2009-07-26 22:12	--------	d-----w-	c:\program files\DNA
2009-10-29 14:03 . 2008-11-01 12:20	--------	d-----w-	c:\documents and settings\All Users\Application Data\nView_Profiles
2009-10-29 03:03 . 2008-12-28 18:30	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\uTorrent
2009-10-25 08:18 . 2008-04-14 12:00	80508	----a-w-	c:\windows\system32\perfc00C.dat
2009-10-25 08:18 . 2008-04-14 12:00	500454	----a-w-	c:\windows\system32\perfh00C.dat
2009-10-23 20:14 . 2009-01-11 16:25	--------	d-----w-	c:\program files\Project64 1.6
2009-10-20 15:08 . 2008-11-02 18:45	--------	d-----w-	c:\program files\Fichiers communs\InstallShield
2009-10-19 10:48 . 2008-11-26 19:47	--------	d-----w-	c:\program files\Pvm
2009-10-18 07:34 . 2009-07-31 23:23	--------	d-----w-	c:\program files\Unlocker
2009-10-09 18:19 . 2009-10-04 09:51	--------	d-----w-	c:\program files\Nokia
2009-10-04 09:59 . 2009-10-04 09:59	--------	d-----w-	c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters
2009-10-04 09:59 . 2009-10-04 09:59	--------	d-----w-	c:\program files\PC Drivers HeadQuarters
2009-10-04 09:56 . 2009-10-04 09:56	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\Nokia
2009-10-04 09:56 . 2009-10-04 09:56	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\PC Suite
2009-10-04 09:56 . 2009-10-04 09:56	--------	d-----w-	c:\documents and settings\All Users\Application Data\PC Suite
2009-10-04 09:54 . 2009-10-04 09:53	--------	d-----w-	c:\program files\DIFX
2009-10-04 09:53 . 2009-10-04 09:53	--------	d-----w-	c:\program files\Fichiers communs\PCSuite
2009-10-04 09:53 . 2009-10-04 09:53	--------	d-----w-	c:\program files\Fichiers communs\Nokia
2009-10-04 09:52 . 2009-10-04 09:52	--------	d-----w-	c:\program files\PC Connectivity Solution
2009-10-04 09:50 . 2009-10-04 09:50	--------	d-----w-	c:\documents and settings\All Users\Application Data\Installations
2009-09-30 20:41 . 2008-11-07 20:08	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\Free Download Manager
2009-09-30 20:41 . 2009-09-30 20:41	--------	d-----w-	c:\program files\Opera
2009-09-29 18:47 . 2009-07-29 22:31	--------	d-----w-	c:\program files\Sword of The New World
2009-09-28 17:19 . 2009-09-28 17:19	--------	d-----w-	c:\documents and settings\All Users\Application Data\Bluetooth
2009-09-28 17:16 . 2009-02-19 00:53	--------	d-----w-	c:\program files\DivX
2009-09-28 16:39 . 2009-09-28 16:39	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\PhoneRemoteControl
2009-09-27 23:18 . 2009-09-27 02:45	--------	d-----w-	c:\program files\Fichiers communs\Blizzard Entertainment
2009-09-27 20:47 . 2009-09-27 20:47	--------	d-----w-	c:\documents and settings\All Users\Application Data\Blizzard Entertainment.temp
2009-09-27 02:47 . 2009-09-27 02:47	--------	d-----w-	c:\documents and settings\All Users\Application Data\Blizzard
2009-09-24 18:14 . 2008-12-30 03:16	--------	d-----w-	c:\program files\CamStudio
2009-09-24 18:11 . 2009-09-12 23:05	--------	d-----w-	c:\program files\Chatango
2009-09-24 17:16 . 2009-09-18 17:12	--------	d-----w-	c:\program files\MAME32k
2009-09-24 17:15 . 2009-08-01 22:29	--------	d-----w-	c:\program files\Mario Forever Toolbar
2009-09-24 17:04 . 2009-09-24 17:04	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\Media Player Classic
2009-09-24 17:03 . 2009-09-24 17:03	--------	d-----w-	c:\program files\K-Lite Codec Pack
2009-09-23 17:39 . 2008-11-24 16:07	--------	d-----w-	c:\program files\gPotato.eu
2009-09-21 17:37 . 2009-08-01 23:12	--------	d-----w-	c:\program files\softendo.com
2009-09-21 17:31 . 2009-08-01 22:29	--------	d-----w-	c:\program files\Mario Forever
2009-09-21 17:31 . 2009-09-05 02:37	--------	d-----w-	c:\program files\Dofus
2009-09-20 18:05 . 2008-11-17 16:54	--------	d-----w-	c:\documents and settings\Administrateur\Application Data\dvdcss
2009-09-18 22:14 . 2009-09-18 22:14	--------	d-----w-	c:\program files\RPG Maker VX Vrai
2009-09-09 20:32 . 2008-12-28 18:30	--------	d-----w-	c:\program files\uTorrent
2009-08-30 15:22 . 2009-08-30 03:00	96	---ha-w-	c:\windows\system32\HsInfo.dat
2009-08-16 15:08 . 2009-09-24 17:03	178176	----a-w-	c:\windows\system32\unrar.dll
2009-08-08 15:13 . 2009-08-08 15:13	721904	----a-w-	c:\windows\system32\drivers\sptd.sys
2009-08-08 15:02 . 2009-08-08 15:02	281760	----a-w-	c:\windows\system32\drivers\atksgt.sys
2009-08-08 15:02 . 2009-08-08 15:02	25888	----a-w-	c:\windows\system32\drivers\lirsgt.sys
2006-04-11 16:15 . 2006-04-11 16:15	323584	----a-w-	c:\program files\AutoRun.exe
2006-04-10 22:11 . 2006-04-10 22:11	921656	----a-w-	c:\program files\Setup.bmp
2006-04-05 17:38 . 2006-04-05 17:38	50534	----a-w-	c:\program files\AutoRun.ico
2004-09-01 02:11 . 2004-09-01 02:11	245408	----a-w-	c:\program files\unicows.dll
2008-04-14 12:00 . 2008-04-14 12:00	63488	--sh--r-	c:\windows\system32\1041r.exe
.
 
------- Sigcheck -------
 
[-] 2008-09-27 . 4BB6301D634C857A5089E8B24C5555E4 . 593408 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
 
[-] 2008-09-27 . AAC42FD16A1976DE9A0773E740597644 . 693248 . . [5.82] . . c:\windows\system32\comctl32.dll
 
[-] 2008-09-27 . B6BC3773B01BF85B880F56C198EEA90B . 3774464 . . [7.00.6000.20861] . . c:\windows\system32\mshtml.dll
 
[-] 2008-09-27 . 65A2D2BD594EB3E670CECFFEED75FB69 . 2331008 . . [5.1.2600.5586] . . c:\windows\system32\ntoskrnl.exe
 
[-] 2008-09-27 . EF31A8266AF7996746392E4F45502536 . 517632 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
 
[-] 2008-09-27 . 90B16FF3ACEC94B95BA95AA686442A47 . 879616 . . [7.00.6000.20861] . . c:\windows\system32\wininet.dll
 
[-] 2008-09-27 . BFBBBFE0913E6C9706F97598A6588B8F . 1573888 . . [6.00.2900.5634] . . c:\windows\explorer.exe
 
[-] 2008-09-27 . B3D95BCB6D0B033BEBFB81FADDA8B8AC . 37376 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
 
[-] 2008-09-27 . A3CA2B158B645447964ADC84FA7E6EE6 . 2207872 . . [5.1.2600.5586] . . c:\windows\system32\ntkrnlpa.exe
.
(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés 
REGEDIT4
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2008-01-21 5724184]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-07-26 323392]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-04-24 203928]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-03-25 49152]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-03-13 81920]
"QuickTime Task"="c:\program files\QT Lite\qttask.exe" [2009-01-05 413696]
"ISUSScheduler"="c:\program files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2005-08-11 81920]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2008-07-07 167936]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2008-05-02 15872]
"VMSnap5"="c:\windows\VMSnap5.EXE" [2007-01-08 49152]
"Domino"="c:\windows\Domino.EXE" [2007-01-08 49152]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-22 86016]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2006-10-22 1622016]
 
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"JkDefrag"="advpack.dll" - c:\windows\system32\advpack.dll [2008-08-28 124928]
"SweetRegistry"="advpack.dll" - c:\windows\system32\advpack.dll [2008-08-28 124928]
 
c:\documents and settings\Administrateur\Menu D‚marrer\Programmes\D‚marrage\
Free Music Zilla.lnk - c:\program files\Free Music Zilla\FMZilla.exe [2009-10-24 732352]
H3 The Shadow of Death(TM).lnk - c:\documents and settings\Administrateur\Mes documents\Azureus Downloads\Heroes of Might and Magic III Complete\RegisterSOD\Remind32.exe [2009-10-26 67584]
hamachi.lnk - c:\program files\Hamachi\hamachi.exe [2009-5-31 619048]
 
c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-3-25 214360]
 
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HideRunAsVerb"= 1 (0x1)
"NoNetConnectDisconnect"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)
 
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoSMConfigurePrograms"= 1 (0x1)
"NoStrCmpLogical"= 0 (0x0)
"NoWelcomeScreen"= 1 (0x1)
 
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoSMConfigurePrograms"= 1 (0x1)
"NoSMHelp"= 1 (0x1)
"NoStrCmpLogical"= 0 (0x0)
"NoWelcomeScreen"= 1 (0x1)
 
[HKLM\~\startupfolder\C:^Documents and Settings^Administrateur^Menu Démarrer^Programmes^Démarrage^MagicDisc.lnk]
path=c:\documents and settings\Administrateur\Menu Démarrer\Programmes\Démarrage\MagicDisc.lnk
backup=c:\windows\pss\MagicDisc.lnkStartup
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Documents and Settings\\Administrateur\\Mes documents\\jeux gba\\VBA Link\\VisualBoyAdvance.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Documents and Settings\\Administrateur\\Mes documents\\Hamachi+Zsnes\\zsnesw.exe"=
"c:\\Documents and Settings\\Administrateur\\Mes documents\\Jeux DS\\Homebrew\\Server.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\Pvm\\Piano virtuel midi.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Documents and Settings\\Administrateur\\Mes documents\\SNES\\snes9x.exe"=
"c:\\Documents and Settings\\Administrateur\\Mes documents\\SNES\\Snes9k\\Snes9K.exe"=
"c:\\Documents and Settings\\Administrateur\\Mes documents\\Kaillera\\kaillerasrv.exe"=
"c:\\Program Files\\Free Music Zilla\\FMZilla.exe"=
"c:\\Documents and Settings\\Administrateur\\Mes documents\\Azureus Downloads\\Heroes of Might and Magic III Complete\\Heroes3.exe"=
"c:\\Program Files\\GameSpy Arcade\\Aphex.exe"=
 
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"427:UDP"= 427:UDP:SLP_Port(427)
"18831:TCP"= 18831:TCP:*:Disabled:SolidNetworkManager
"18831:UDP"= 18831:UDP:*:Disabled:SolidNetworkManager
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
 
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [19/10/2008 11:43 78416]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [31/10/2009 16:16 108289]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [19/10/2008 11:43 20560]
R2 vnccom;vnccom;c:\windows\system32\drivers\vnccom.SYS [01/11/2008 21:00 6016]
R3 ZSMC0305;Vimicro USB PC Camera (VC0305);c:\windows\system32\drivers\usbVM305.sys [08/08/2009 18:16 391737]
S0 eowxlx;eowxlx;c:\windows\system32\drivers\bsskfst.sys --> c:\windows\system32\drivers\bsskfst.sys [?]
S1 Dup;Dup;c:\windows\system32\drivers\dup.sys [11/10/2009 19:48 21376]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 XDva279;XDva279;\??\c:\windows\system32\XDva279.sys --> c:\windows\system32\XDva279.sys [?]
 
--- Autres Services/Pilotes en mémoire ---
 
*NewlyCreated* - 00005D3B
*NewlyCreated* - HELPSVC
*NewlyCreated* - MBR
*Deregistered* - 00005D3B
*Deregistered* - mbr
 
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
HPService	REG_MULTI_SZ   	HPSLPSVC
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
 
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{D10A0BD6-DEAB-423e-8A6B-373B4BDB3C7B}]
rundll32.exe advpack.dll,LaunchINFSection c:\windows\INF\firefox.inf,PerUserStub
 
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}]
rundll32 advpack.dll,LaunchINFSection c:\windows\INF\ie.inf,IE7Stub
 
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{Y101Y238-S37I-3BV5-F7I2-R5O5YR7RPE2W}]
c:\program files\Fichiers communs\svchost.exe
.
Contenu du dossier 'Tâches planifiées'
 
2009-02-08 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://fmz.qiwa.com
mStart Page = hxxp://<a href="http://www.yoower.com/" target="_blank">www.yoower.com/</a>
uInternet Settings,ProxyOverride = *.local
IE: &Search
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Tout télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: Télécharger la sélection avec Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Télécharger la vidéo avec Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
FF - ProfilePath - c:\documents and settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\mteietq8.default\
FF - prefs.js: browser.startup.homepage - hxxp://fmz.qiwa.com
 
---- PARAMETRES FIREFOX ----
FF - user.js: yahoo.homepage.dontask - true.
- - - - ORPHELINS SUPPRIMES - - - -
 
HKLM-Run-ISUSPM Startup - c:\program files\Fichiers communs\InstallShield\UpdateService\isuspm.exe
HKLM-Run-BigDog305 - c:\windows\VM305_STI.EXE
HKLM-Run-EoEngine - (no file)
HKLM-Run-Device Detector - DevDetect.exe
HKU-Default-Run-autochk - c:\docume~1\LOCALS~1\protect.dll
HKU-Default-Run-Win32Update - c:\windows\system32\accwizm.exe
HKU-Default-RunServices-Win32Update - c:\windows\system32\accwizm.exe
AddRemove-DAEMON Tools Toolbar - c:\program files\DAEMON Tools Toolbar\uninst.exe
AddRemove-dzigvtq - c:\documents and settings\administrateur\local settings\application data\dzigvtq.exe
AddRemove-Free Download Manager - c:\program files\Free Download Manager\uninst.exe
AddRemove-WinPcapInst - c:\program files\WinPcap\Uninstall.exe
AddRemove-Yahoo! Companion - c:\progra~1\Yahoo!\Common\UNYT_W~1.EXE
AddRemove-Yahoo! Software Update - c:\progra~1\Yahoo!\SOFTWA~1\UNINST~1.EXE
AddRemove-Yahoo! Toolbar - c:\progra~1\Yahoo!\Common\UNYT_W~1.EXE
AddRemove-NCsoft-Aion - c:\documents and settings\Administrateur\Mes documents\Downloads\Aion-Online-MMO-Full-Client-and-Patches-to-v1.0.2.13\NCSoft\Launcher\NCLauncher.exe
 
 
 
**************************************************************************
 
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, <a href="http://www.gmer.net" target="_blank">http://www.gmer.net</a>
Rootkit scan 2009-11-04 18:19
Windows 5.1.2600 Service Pack 3 NTFS
 
Recherche de processus cachés ... 
 
Recherche d'éléments en démarrage automatique cachés ... 
 
Recherche de fichiers cachés ... 
 
Scan terminé avec succès
Fichiers cachés: 0
 
**************************************************************************
 
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, <a href="http://www.gmer.net" target="_blank">http://www.gmer.net</a>
 
device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spgg.sys >>UNKNOWN [0x8678B938]<< 
kernel: MBR read successfully
user & kernel MBR OK 
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, <a href="http://www.gmer.net" target="_blank">http://www.gmer.net</a>
 
atapi.sys @ 0x0 0x0 bytes
 
\Driver\atapi [ IRP_MJ_CREATE ] 0xA6F2 != 0xF7660B40 atapi.sys
\Driver\atapi [ IRP_MJ_CLOSE ] 0xA6F2 != 0xF7660B40 atapi.sys
\Driver\atapi [ IRP_MJ_DEVICE_CONTROL ] 0xA712 != 0xF7660B40 atapi.sys
\Driver\atapi [ IRP_MJ_INTERNAL_DEVICE_CONTROL ] 0x6852 != 0xF7660B40 atapi.sys
\Driver\atapi [ IRP_MJ_POWER ] 0xA73C != 0xF7660B40 atapi.sys
\Driver\atapi [ IRP_MJ_SYSTEM_CONTROL ] 0x11336 != 0xF7660B40 atapi.sys
\Driver\atapi IRP hooks detected !
 
**************************************************************************
 
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- DLLs chargées dans les processus actifs ---------------------
 
- - - - - - - > 'winlogon.exe'(1236)
c:\windows\system32\SETUPAPI.dll
c:\windows\system32\COMRes.dll
c:\windows\system32\cscui.dll
 
- - - - - - - > 'lsass.exe'(1436)
c:\windows\system32\scecli.dll
c:\windows\system32\SETUPAPI.dll
 
- - - - - - - > 'explorer.exe'(496)
c:\windows\system32\SHDOCVW.dll
c:\windows\system32\nview.dll
c:\windows\system32\NVWRSFR.DLL
c:\program files\Unlocker\UnlockerHook.dll
c:\windows\system32\COMRes.dll
c:\windows\System32\cscui.dll
c:\windows\system32\msi.dll
c:\windows\system32\SETUPAPI.dll
c:\windows\system32\NETSHELL.dll
c:\windows\system32\credui.dll
c:\windows\system32\MSVCP60.dll
c:\windows\system32\eappprxy.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_fre.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\windows\PCHealth\HelpCtr\Binaries\HelpSvc.exe
c:\program files\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\program files\Fichiers communs\ACD Systems\FR\DevDetect.exe
c:\windows\system32\rundll32.exe
c:\program files\Avira\AntiVir Desktop\update.exe
c:\docume~1\ADMINI~1\MESDOC~1\AZUREU~1\HEROES~1\REGIST~1\ITP32.EXE
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\windows\system32\wscntfy.exe
c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\HP\Digital Imaging\bin\hpqbam08.exe
c:\program files\HP\Digital Imaging\bin\hpqgpc01.exe
.
**************************************************************************
.
Heure de fin: 2009-11-04 18:27 - La machine a redémarré
ComboFix-quarantined-files.txt  2009-11-04 17:27
 
Avant-CF: 1 049 178 112 octets libres
Après-CF: 1 115 557 888 octets libres
 
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect

| Alerter

Répondre à kamachi-kuno

Angeldark

8 Novembre 2009 20:24:10

Vraiment désolé, j'ai du mal niveau temps dernièrement.

Fais une analyse antivirus en ligne sur Kaspersky avec Internet Explorer.

Autorise les Active x.

Clique sur Démarrer Online Scanner.

Sélectionne le poste de travail comme analyse. Enregistres sous le rapport en format .txt.

Colle son rapport ici.

Poste un nouveau rapport Hijackthis.

Aide : Comment faire un scan en ligne avec Kaspersky .

| Alerter

Répondre à Angeldark

kamachi-kuno

9 Novembre 2009 14:18:46

Non ce n'est pas grave, j'ai mon temps.

J'ai un problème : quand je vais sur le lien suivant http://www.kaspersky.com/kos/eng/partner/default/pages/... "Accept" est grisé, je ne peux pas cliquer dessus. J'ai désactiver mon antivirus et même le firewall mais ils ne veulent toujours pas que j'y accède.

| Alerter

Répondre à kamachi-kuno

Angeldark

11 Novembre 2009 21:25:11

Refais un scan Combofix. Tu utilises bien IE ?

| Alerter

Répondre à Angeldark

Lassé par la pub ? Créez un compte

Répondre Créer un nouveau sujet

Contenus similaires :

Tom's guide dans le monde