[résolu] Pc vraiment trop lent.
Dernière réponse : dans Sécurité
Bonjour,
Je reviens cette fois pour un problème que j'ai sur un autre pc de la maison. Je le trouve vraiment lent.
J'ai d'abord fait des tests matériel avec memtest+ pour la ram ou CrystalDiskInfo pour le DD mais il n'y a pas d'erreur.
Je me tourne donc vers la possibilité d'un où plusieurs "virus".
Voila la config du pc fait avec PcWizard :
PC Wizard 2008 Version 1.82
------------------------------------------------------------------------------------------
Propriétaire: BERNARD
Utilisateur: BERNARD
Système d'Exploitation: Microsoft Windows XP Edition Familiale 5.01.2600 Service Pack 3
Date de rapport: dimanche 08 mai 2011 à 15:51
------------------------------------------------------------------------------------------
<<< Résumé Système >>>
> Constructeur : MEDION
> Carte Mère : MSI MS-7042
> Chipset : VIA PT880
> Processeur : Intel Pentium 4 @ 3000 MHz
> Mémoire physique : 1024 Mo (2 x 512 DDR-SDRAM )
> Carte graphique : Nvidia Corp GeForce 6200
> Disque dur : ST3200021A (200 Go)
> Lecteur DVD-Rom : SONY DVD-ROM DDU1612
> Lecteur DVD-Rom : PIONEER DVD RW DVR-107D
> Lecteur CD-Rom : DTSoftBusCd00
> Lecteur CD-Rom : DTSoftBusCd01
> Lecteur CD-Rom : DTSoftBusCd02
> Type de moniteur : LG Electronics 19LS4D-ZB - 22 pouces
> Carte réseau : VT82C570 MV IDE Controller VT6102 Rhine II Fast Ethernet Adapter
> Système d'Exploitation : Microsoft Windows XP Edition Familiale 5.01.2600 Service Pack 3
> DirectX : Version 9.0c (mars 2006)
------------------------------------------------------------------------------------------
***** Fin du rapport *****
Je sais que ce n'est pas une bête mais il ramait pas autant que ça avant.
J’espère donc que ce n'est pas trop grave.
Merci d'avance
Je reviens cette fois pour un problème que j'ai sur un autre pc de la maison. Je le trouve vraiment lent.
J'ai d'abord fait des tests matériel avec memtest+ pour la ram ou CrystalDiskInfo pour le DD mais il n'y a pas d'erreur.
Je me tourne donc vers la possibilité d'un où plusieurs "virus".
Voila la config du pc fait avec PcWizard :
PC Wizard 2008 Version 1.82
------------------------------------------------------------------------------------------
Propriétaire: BERNARD
Utilisateur: BERNARD
Système d'Exploitation: Microsoft Windows XP Edition Familiale 5.01.2600 Service Pack 3
Date de rapport: dimanche 08 mai 2011 à 15:51
------------------------------------------------------------------------------------------
<<< Résumé Système >>>
> Constructeur : MEDION
> Carte Mère : MSI MS-7042
> Chipset : VIA PT880
> Processeur : Intel Pentium 4 @ 3000 MHz
> Mémoire physique : 1024 Mo (2 x 512 DDR-SDRAM )
> Carte graphique : Nvidia Corp GeForce 6200
> Disque dur : ST3200021A (200 Go)
> Lecteur DVD-Rom : SONY DVD-ROM DDU1612
> Lecteur DVD-Rom : PIONEER DVD RW DVR-107D
> Lecteur CD-Rom : DTSoftBusCd00
> Lecteur CD-Rom : DTSoftBusCd01
> Lecteur CD-Rom : DTSoftBusCd02
> Type de moniteur : LG Electronics 19LS4D-ZB - 22 pouces
> Carte réseau : VT82C570 MV IDE Controller VT6102 Rhine II Fast Ethernet Adapter
> Système d'Exploitation : Microsoft Windows XP Edition Familiale 5.01.2600 Service Pack 3
> DirectX : Version 9.0c (mars 2006)
------------------------------------------------------------------------------------------
***** Fin du rapport *****
Je sais que ce n'est pas une bête mais il ramait pas autant que ça avant.
J’espère donc que ce n'est pas trop grave.
Merci d'avance
Autres pages sur : resolu vraiment lent
Lassé par la pub ? Créez un compte
Bonjour
je me suis dit "pas déjà" quand j'ai vu ton pseudo![:lol:]( ":lol:")
+++++++++
1
Télécharge![]()
DDS et sauvegarde-le sur ton bureau.
Désactive tout script bloquant, tels qu'un antivirus, un logiciel comme ad-block, noscript etc.
Double-clique sur dds.scr pour lancer l'outil.
Une fois le scan fini, un document texte, DDS.txt, va s'ouvrir .
Clique Oui à la prochaine invite Optional Scan.
Sauvegarde les deux rapports sur ton bureau et poste-moi uniquement le DDS.txt.
<@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**
2
Télécharge GMER à partir de ce lien : http://www.gmer.net/files.php – clic sur « Download EXE » et télécharge le fichier sur ton bureau.
Voir le tutorial GMER, ça peut peut-être t’aider : http://www.malekal.com/tutorial_GMER.php
Désactive tes logiciels de protection (antivirus, antispyware etc) et ferme tous les programmes ouverts.
Double-clic sur le fichier GMER téléchargé.
Une fois lancé, fais un clic droit sur le fond blanc (comme ci-dessus) et clic sur « Only Non MS files »
Clic en bas à droite sur le bouton « Scan » pour lancer le scan.
![]()
Lorsque le scan est terminé, clic sur « Copy »
Ouvre le bloc-note et clic sur le Menu Edition / Coller
Le rapport doit alors apparaître.
Enregistre le fichier sur ton bureau et copie/colle le contenu ici.
+++++++++++++++++++++++++++++++++++++
je me suis dit "pas déjà" quand j'ai vu ton pseudo
+++++++++
1
Télécharge
DDS et sauvegarde-le sur ton bureau.<@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**
2
Télécharge GMER à partir de ce lien : http://www.gmer.net/files.php – clic sur « Download EXE » et télécharge le fichier sur ton bureau.
Voir le tutorial GMER, ça peut peut-être t’aider : http://www.malekal.com/tutorial_GMER.php
Désactive tes logiciels de protection (antivirus, antispyware etc) et ferme tous les programmes ouverts.
Double-clic sur le fichier GMER téléchargé.
Une fois lancé, fais un clic droit sur le fond blanc (comme ci-dessus) et clic sur « Only Non MS files »
Clic en bas à droite sur le bouton « Scan » pour lancer le scan.
Lorsque le scan est terminé, clic sur « Copy »
Ouvre le bloc-note et clic sur le Menu Edition / Coller
Le rapport doit alors apparaître.
Enregistre le fichier sur ton bureau et copie/colle le contenu ici.
+++++++++++++++++++++++++++++++++++++
Mdr, je suis comme ça moi, à peine parti déjà revenue ![:bounce:]( ":bounce:")
Voila le rapport dds :
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by BERNARD at 18:27:14,89 on 08/05/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.1023.537 [GMT 2:00]
.
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LanSchool\student.exe
C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\TwonkyMedia\twonkymediaserverwatchdog.exe
C:\WINDOWS\System32\UTSCSI.EXE
C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
C:\Program Files\TwonkyMedia\TwonkyMediaServer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Hercules\WiFi Station\WifiStation.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\LanSchool\lsproxy\lskproxy.exe
C:\Documents and Settings\BERNARD\Bureau\dds.scr
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.fr/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\fichiers communs\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: lsk_WebBlk Class: {1935e690-1ac1-4aa5-ba23-3d9d0ceb3a00} - c:\windows\system32\Lsk_iBlk.dll
BHO: ECarteBleueBrowserHelper Class: {2e03c0fd-4c48-43a7-9a54-00240c70ff16} - c:\windows\system32\BhoECart.dll
BHO: FlpLauncher Class: {4401fdc3-7996-4774-8d2b-c1ae9cd6cc25} - c:\program files\e-book systems\flipviewer\fplaunch.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: EWPBrowseObject Class: {68f9551e-0411-48e4-9aaf-4bc42a6a46be} - c:\program files\canon\easy-webprint\EWPBrowseLoader.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\fichiers communs\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Easy-WebPrint: {327c2873-e90d-4c37-aa9d-10ac9baba46c} - c:\program files\canon\easy-webprint\Toolband.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
mRun: [WD Drive Manager] c:\program files\western digital\wd drive manager\WDBtnMgrUI.exe
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
StartupFolder: c:\docume~1\alluse~1\menudm~1\progra~1\dmarra~1\wifist~1.lnk - c:\program files\hercules\wifi station\WifiStation.exe
IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~3\office10\EXCEL.EXE/3000
IE: Easy-WebPrint Ajouter à la liste d'impressions - c:\program files\canon\easy-webprint\Toolband.dll/RC_AddToList.html
IE: Easy-WebPrint Impression rapide - c:\program files\canon\easy-webprint\Toolband.dll/RC_HSPrint.html
IE: Easy-WebPrint Imprimer - c:\program files\canon\easy-webprint\Toolband.dll/RC_Print.html
IE: Easy-WebPrint Prévisualiser - c:\program files\canon\easy-webprint\Toolband.dll/RC_Preview.html
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
LSP: c:\windows\system32\lskproxy.dll
DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: teleir_cert - hxxps://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/swdir.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc.cab
DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1255268238296
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} - hxxp://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38027.2133564815
DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} - hxxps://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab
DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://messenger.zone.msn.com/binary/ZIntro.cab53083.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {C79F0120-EF94-4FAC-8248-6F30B92E9524} - hxxp://www.journal-officiel.gouv.fr/verifier/AdValiderWeb_DJO....
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} - hxxps://www.fnacmusic.com/telechargementFnacmusic/FnacComposant...
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\docume~1\bernard\applic~1\mozilla\firefox\profiles\cjdfmkjw.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2304157&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.startup.homepage - hxxp://www.20minutes.fr/
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npvirtools.dll
.
============= SERVICES / DRIVERS ===============
.
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2011-3-5 11608]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-4-12 218688]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2011-3-5 136360]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2011-3-5 269480]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2011-3-5 61960]
R2 LanSchoolStudent;Service étudiant LanSchool;c:\program files\lanschool\student.exe [2010-11-30 1353008]
R2 LogWatch;Event Log Watch;c:\program files\ca\sharedcomponents\ca_lic\LogWatNT.exe [2002-9-20 53248]
R2 TwonkyMedia;TwonkyMedia;c:\program files\twonkymedia\twonkymediaserverwatchdog.exe -serviceversion 0 --> c:\program files\twonkymedia\twonkymediaserverwatchdog.exe -serviceversion 0 [?]
R2 WDBtnMgrSvc.exe;WD Drive Manager Service;c:\program files\western digital\wd drive manager\WDBtnMgrSvc.exe [2008-5-16 102400]
R3 LskProxy;LskProxy;c:\program files\lanschool\lsproxy\LskProxy.exe [2010-11-30 3508528]
R3 PhTVTune;MEDION TV-TUNER 7134 MK2/3;c:\windows\system32\drivers\PhTVTune.sys [2004-2-10 24704]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2009-1-31 11520]
S0 Lbd;Lbd;c:\windows\system32\drivers\lbd.sys --> c:\windows\system32\drivers\Lbd.sys [?]
S3 CA_LIC_CLNT;Client de licence CA;c:\program files\ca\sharedcomponents\ca_lic\lic98rmt.exe [2002-9-20 77824]
S3 CA_LIC_SRVR;Serveur de licence CA;c:\program files\ca\sharedcomponents\ca_lic\lic98rmtd.exe [2002-9-20 77824]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\lavasoft\ad-aware\kernexplorer.sys --> c:\program files\lavasoft\ad-aware\KernExplorer.sys [?]
S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-1-24 310640]
S3 PortTalk;PortTalk;c:\windows\system32\drivers\PortTalk.sys [2010-9-13 3567]
S3 UsbSagCom;SAGEM Full USB Driver;c:\windows\system32\drivers\UsbSagCom.sys [2006-3-27 51456]
.
=============== Created Last 30 ================
.
2011-05-08 13:49:43 27136 ----a-w- c:\windows\system32\PCWizard.cpl
2011-05-08 13:49:41 -------- d-----w- c:\program files\PC Wizard 2008
2011-05-08 13:49:23 -------- d-----w- c:\program files\CrystalDiskInfo
2011-05-06 19:58:55 781272 ----a-w- c:\program files\mozilla firefox\mozsqlite3.dll
2011-05-06 19:58:55 1874904 ----a-w- c:\program files\mozilla firefox\mozjs.dll
2011-05-06 19:58:54 89048 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2011-05-06 19:58:54 465880 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2011-05-06 19:58:54 15832 ----a-w- c:\program files\mozilla firefox\mozalloc.dll
2011-05-06 19:58:53 1974616 ----a-w- c:\program files\mozilla firefox\D3DCompiler_42.dll
2011-05-06 19:58:53 1892184 ----a-w- c:\program files\mozilla firefox\d3dx9_42.dll
2011-05-06 19:58:53 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-04-12 20:09:24 -------- d-----w- c:\docume~1\bernard\applic~1\Canneverbe Limited
2011-04-12 20:09:21 -------- d-----w- c:\docume~1\alluse~1\applic~1\Canneverbe Limited
2011-04-12 20:00:00 7168 ----a-w- c:\windows\system32\drivers\StarOpen.sys
2011-04-12 19:45:25 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-04-12 19:44:53 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-04-12 19:44:40 -------- d-----w- c:\docume~1\bernard\applic~1\DAEMON Tools Lite
2011-04-12 19:44:40 -------- d-----w- c:\docume~1\alluse~1\applic~1\DAEMON Tools Lite
.
==================== Find3M ====================
.
2011-03-07 05:33:47 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-03-04 06:36:19 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-03-03 13:53:37 1858048 ----a-w- c:\windows\system32\win32k.sys
2011-02-22 23:05:48 916480 ----a-w- c:\windows\system32\wininet.dll
2011-02-22 23:05:47 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-02-22 23:05:47 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-02-22 11:42:13 385024 ----a-w- c:\windows\system32\html.iec
2011-02-17 12:54:06 5632 ----a-w- c:\windows\system32\xpsp4res.dll
2011-02-15 12:56:39 290432 ----a-w- c:\windows\system32\atmfd.dll
2011-02-14 18:22:24 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-02-14 18:22:24 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-02-11 14:44:39 239104 ----a-w- c:\windows\system32\fxscover.exe
2011-02-09 13:54:09 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:54:09 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-08 13:34:11 978944 ----a-w- c:\windows\system32\mfc42.dll
2011-02-08 13:34:11 974848 ----a-w- c:\windows\system32\mfc42u.dll
.
============= FINISH: 18:33:59,95 ===============
Et le rapport gmer :
GMER 1.0.15.15627 - http://www.gmer.net
Rootkit scan 2011-05-08 18:40:08
Windows 5.1.2600 Service Pack 3
Running: mpgqtmbh.exe; Driver: C:\DOCUME~1\BERNARD\LOCALS~1\Temp\ugtdypod.sys
---- Modules - GMER 1.0.15 ----
Module viaide.sys (Generic PCI IDE Bus Driver/Microsoft Corporation) F7B72000-F7B74000 (8192 bytes)
Module PxHelp20.sys (Px Engine Device Driver for Windows 2000/XP/Sonic Solutions) F76DE000-F76E7000 (36864 bytes)
Module viaagp1.sys (VIA NT AGP Filter/VIA Technologies, Inc.) F78FE000-F7905000 (28672 bytes)
Module \SystemRoot\System32\DRIVERS\nv4_mini.sys (NVIDIA Compatible Windows 2000 Miniport Driver, Version 260.99 /NVIDIA Corporation) F65E7000-F6F15000 (9625600 bytes)
Module \SystemRoot\System32\DRIVERS\Cap7134.sys (cap7134/Philips Semiconductors) F657D000-F65D3000 (352256 bytes)
Module \SystemRoot\System32\DRIVERS\ctxs51.sys (Intel V.92 Modem/Intel Corporation) F64BE000-F655A000 (638976 bytes)
Module \SystemRoot\System32\DRIVERS\wdcsam.sys (WD SCSI Architecture Model (SAM) driver/Western Digital Technologies) F7B32000-F7B35000 (12288 bytes)
Module \SystemRoot\System32\Drivers\vulfnth.sys (VIA USB Host Controller Lower Filter Driver/VIA Technologies, Inc.) F7BA6000-F7BA8000 (8192 bytes)
Module \SystemRoot\system32\drivers\cmuda.sys (C-Media Audio WDM Driver/C-Media Inc) F634C000-F649A000 (1368064 bytes)
Module \SystemRoot\system32\DRIVERS\fetnd5bv.sys (NDIS 5.0 miniport driver/VIA Technologies, Inc. ) F78BE000-F78CA000 (49152 bytes)
Module \SystemRoot\System32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) F7A36000-F7A3B000 (20480 bytes)
Module \SystemRoot\system32\drivers\WmBEnum.sys (Logitech WingMan Virtual Bus Enumerator Driver /Logitech Inc.) F7B52000-F7B55000 (12288 bytes)
Module \SystemRoot\system32\drivers\WmXlCore.sys (Logitech WingMan Translation Driver/Logitech Inc.) F7224000-F722E000 (40960 bytes)
Module \SystemRoot\system32\DRIVERS\dtsoftbus01.sys (DAEMON Tools Virtual Bus Driver/DT Soft Ltd) F6219000-F6254000 (241664 bytes)
Module \SystemRoot\System32\DRIVERS\PhTVTune.sys (WDM Video TV Tuner MiniDriver/Philips Semiconductors) F7A66000-F7A6D000 (28672 bytes)
Module \SystemRoot\System32\Drivers\vulfntr.sys (VIA USB Roothub Lower Filter Driver/VIA Technologies, Inc.) F745E000-F7461000 (12288 bytes)
Module \SystemRoot\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) F7946000-F794C000 (24576 bytes)
Module \SystemRoot\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) F17A6000-F17CC000 (155648 bytes)
Module \??\C:\Program_Files\Avira\AntiVir_Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) F7BF6000-F7BF8000 (8192 bytes)
Module \SystemRoot\system32\DRIVERS\rt73.sys (Ralink 802.11 USB Wireless Adapter Driver/Ralink Technology, Corp.) F16F1000-F175A000 (430080 bytes)
Module \SystemRoot\System32\nv4_disp.dll (NVIDIA Compatible Windows 2000 Display driver, Version 260.99 /NVIDIA Corporation) BD012000-BD623000 (6361088 bytes)
Module \SystemRoot\System32\ATMFD.DLL (Windows NT OpenType/Type 1 Font Driver/Adobe Systems Incorporated) BD623000-BD66A000 (290816 bytes)
Module \SystemRoot\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) B7E71000-B7E86000 (86016 bytes)
Module \SystemRoot\system32\DRIVERS\AegisP.sys (IEEE 802.1X Protocol Driver/Meetinghouse Data Communications) F79F6000-F79FB000 (20480 bytes)
Module \SystemRoot\System32\DRIVERS\secdrv.sys (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) B7C09000-B7C13000 (40960 bytes)
Module \??\C:\WINDOWS\system32\drivers\LVPrcMon.sys F7986000-F798B000 (20480 bytes)
Module \??\C:\DOCUME~1\BERNARD\LOCALS~1\Temp\mbr.sys B68C7000-B68CE000 (28672 bytes)
Module \??\C:\DOCUME~1\BERNARD\LOCALS~1\Temp\ugtdypod.sys (GMER) B653B000-B6554000 (102400 bytes)
---- Processes - GMER 1.0.15 ----
Process C:\Program Files\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) 124
Library C:\Program Files\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\Program Files\LanSchool\student.exe (LanSchool Student/LanSchool Technologies, llc) 172
Library C:\Program Files\LanSchool\student.exe (LanSchool Student/LanSchool Technologies, llc) 0x00400000
Library C:\Program Files\LanSchool\FRAStudent.dll (LanSchool Étudiant/LanSchool Technologies, llc) 0x10000000
Library C:\WINDOWS\system32\LSKHOOK.DLL 0x01100000
Library C:\Program Files\LanSchool\lsproxy\pcproxydll.dll (pcproxydll/LanSchool) 0x01140000
Library C:\WINDOWS\system32\Lsk_iblk.dll (LanSchool Web Blocker/LanSchool Technologies, llc) 0x01290000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x012E0000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\Program Files\TwonkyMedia\twonkymediaserverwatchdog.exe (TwonkyMedia watchdog/PacketVideo) 184
Library C:\Program Files\TwonkyMedia\twonkymediaserverwatchdog.exe (TwonkyMedia watchdog/PacketVideo) 0x00400000
Process C:\Program Files\CDBurnerXP\NMSAccessU.exe 332
Library C:\Program Files\CDBurnerXP\NMSAccessU.exe 0x00400000
Process C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe (LogWatNT/Computer Associates) 404
Library C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe (LogWatNT/Computer Associates) 0x00400000
Library C:\Program Files\CA\SharedComponents\CA_LIC\lic98.dll (Lic98 DLL/Computer Associates) 0x10000000
Process C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe (WD Drive Manager/WDC) 536
Library C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe (WD Drive Manager/WDC) 0x00400000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x00AD0000
Process C:\WINDOWS\system32\lsass.exe (LSA Shell (Export Version)/Microsoft Corporation) 696
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Driver Helper Service, Version 260.99/NVIDIA Corporation) 884
Library C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Driver Helper Service, Version 260.99/NVIDIA Corporation) 0x00400000
Library C:\WINDOWS\system32\nvapi.dll (NVIDIA NVAPI Library, Version 260.99 /NVIDIA Corporation) 0x009B0000
Library C:\WINDOWS\system32\NVRSFR.DLL (NVIDIA French language resource library/NVIDIA Corporation) 0x00960000
Process C:\WINDOWS\system32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1004
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\WINDOWS\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1156
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\WINDOWS\system32\PnkBstrA.exe 1216
Library C:\WINDOWS\system32\PnkBstrA.exe 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\WINDOWS\system32\PnkBstrB.exe 1252
Library C:\WINDOWS\system32\PnkBstrB.exe 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\WINDOWS\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1308
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\WINDOWS\System32\UTSCSI.EXE 1316
Library C:\WINDOWS\System32\UTSCSI.EXE 0x00400000
Process C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe (WD Drive Manager Service/WDC) 1340
Library C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe (WD Drive Manager Service/WDC) 0x00400000
Process C:\WINDOWS\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1412
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\WINDOWS\system32\LEXBCES.EXE (LexBce Service/Lexmark International, Inc.) 1476
Library C:\WINDOWS\system32\LEXBCES.EXE (LexBce Service/Lexmark International, Inc.) 0x00400000
Library C:\WINDOWS\system32\lexp2p32.dll (LEXP2P32 DLL/Lexmark International, Inc.) 0x10000000
Library C:\WINDOWS\system32\lex2kusb.dll (LEX2KUSB DLL/Lexmark International, Inc.) 0x01550000
Process C:\WINDOWS\system32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 1512
Library C:\WINDOWS\system32\CNMLM47.DLL (BJ Language Monitor/CANON INC.) 0x66F40000
Library C:\WINDOWS\system32\CNMLM88.DLL (IJ Language Monitor/CANON INC.) 0x67380000
Library C:\WINDOWS\system32\CNMNPPM.DLL (Canon BJNP Communication Module/CANON INC.) 0x00D40000
Library C:\WINDOWS\system32\LEXLMPM.DLL (LEXLMPM DLL/Lexmark International, Inc.) 0x10000000
Library C:\WINDOWS\system32\LexBce.dll (LexBce Client/Lexmark International, Inc.) 0x00DA0000
Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD47.DLL (Canon BJ Print Processor Dispatcher/CANON INC.) 0x00F60000
Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD88.DLL (IJ Print Processor Dispatcher/CANON INC.) 0x67200000
Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\lxagpp.dll (lmprint/Lexmark International) 0x00F70000
Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll (Print Filter Pipeline Proxy/Microsoft Corporation) 0x3F420000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\WINDOWS\system32\LEXPPS.EXE (LEXPPS.EXE/Lexmark International, Inc.) 1520
Library C:\WINDOWS\system32\LEXPPS.EXE (LEXPPS.EXE/Lexmark International, Inc.) 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Library C:\WINDOWS\system32\LEXBCE.DLL (LexBce Client/Lexmark International, Inc.) 0x01990000
Process c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe (Logitech LVPrcSrv Module./Logitech Inc.) 1552
Library c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe (Logitech LVPrcSrv Module./Logitech Inc.) 0x00400000
Process C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) 1636
Library C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) 0x00400000
Library C:\Program Files\Avira\AntiVir Desktop\schedr.dll (avschdr Dynamic Link Library/Avira GmbH) 0x10000000
Library C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll (Event Logger/Avira GmbH) 0x00BD0000
Library C:\Program Files\Avira\AntiVir Desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00D20000
Library C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll 0x00D40000
Process C:\Program Files\TwonkyMedia\TwonkyMediaServer.exe 1708
Library C:\Program Files\TwonkyMedia\TwonkyMediaServer.exe 0x00400000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 1884
Library C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 0x00400000
Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x10000000
Process C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) 1936
Library C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) 0x00400000
Library C:\Program Files\Avira\AntiVir Desktop\libdb44.dll (Berkeley DB 4.4 DLL/Sleepycat Software) 0x13000000
Library C:\Program Files\Avira\AntiVir Desktop\AVEvtLog.dll (Event Logger/Avira GmbH) 0x10000000
Library C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll (AntiVir Guard Messages (Deutsch)/Avira GmbH) 0x00D40000
Library C:\Program Files\Avira\AntiVir Desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00D50000
Library C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll 0x00D70000
Library C:\Program Files\Avira\AntiVir Desktop\AVPREF.DLL (Prefix DLL/Avira GmbH) 0x00EE0000
Library C:\Program Files\Avira\AntiVir Desktop\avsmtp.dll (Antivirus email sender library/Avira GmbH) 0x00F00000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Library C:\Program Files\Avira\AntiVir Desktop\AVGIO.DLL (On-access scan support/Avira GmbH) 0x01000000
Library C:\Program Files\Avira\AntiVir Desktop\aecore.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01130000
Library C:\Program Files\Avira\AntiVir Desktop\aevdf.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01180000
Library C:\Program Files\Avira\AntiVir Desktop\aescript.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x011B0000
Library C:\Program Files\Avira\AntiVir Desktop\aescn.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01300000
Library C:\Program Files\Avira\AntiVir Desktop\aesbx.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01330000
Library C:\Program Files\Avira\AntiVir Desktop\aerdl.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01380000
Library C:\Program Files\Avira\AntiVir Desktop\aepack.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01430000
Library C:\Program Files\Avira\AntiVir Desktop\unacev2.dll (UNACE Dynamic Link Library/ACE Compression Software) 0x014D0000
Library C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01530000
Library C:\Program Files\Avira\AntiVir Desktop\aeheur.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01580000
Library C:\Program Files\Avira\AntiVir Desktop\aehelp.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x018F0000
Library C:\Program Files\Avira\AntiVir Desktop\aegen.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01B40000
Library C:\Program Files\Avira\AntiVir Desktop\aeemu.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01BC0000
Library C:\Program Files\Avira\AntiVir Desktop\aebb.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01C40000
Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x01FC0000
Process C:\WINDOWS\Explorer.EXE (Explorateur Windows/Microsoft Corporation) 1944
Library C:\WINDOWS\system32\FPAP-EXL600\FileptcIconOverlay.dll (Arachnoid Biometrics Identification Group Corp.) 0x00DE0000
Library C:\PROGRA~1\WINDOW~2\wmpband.dll (Barre de Bureau du Lecteur Windows Media/Microsoft Corporation) 0x13420000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x01D40000
Library C:\WINDOWS\System32\DragnDropCopyHook.dll 0x10000000
Library C:\WINDOWS\system32\Lsk_iBlk.dll (LanSchool Web Blocker/LanSchool Technologies, llc) 0x02290000
Library C:\Program Files\E-Book Systems\FlipViewer\fplaunch.dll 0x022C0000
Library C:\Program Files\WinRAR\rarext.dll 0x02B70000
Library C:\Program Files\OpenOffice.org 2.3\program\shlxthdl.dll (Sun Microsystems, Inc.) 0x62350000
Library C:\Program Files\OpenOffice.org 2.3\program\uwinapi.dll (Sun Microsystems, Inc.) 0x60400000
Library C:\Program Files\OpenOffice.org 2.3\program\stlport_vc7145.dll (STLport/STLport Consulting, Inc.) 0x61E70000
Library C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll (PDF Shell Extension/Adobe Systems, Inc.) 0x02930000
Library C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA 0x029A0000
Process C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 1960
Library C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 1980
Library C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Antivirus System Tray Tool/Avira GmbH) 2320
Library C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Antivirus System Tray Tool/Avira GmbH) 0x00400000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x003D0000
Library C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll (Antivirus Control Center Common Worker Library/Avira GmbH) 0x10000000
Library c:\program files\avira\antivir desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00AC0000
Library c:\program files\avira\antivir desktop\ccgen.dll (Control Center General Plugin/Avira GmbH) 0x00B50000
Library c:\program files\avira\antivir desktop\ccgenrc.dll (Control Center General Plugin Resources/Avira GmbH) 0x00C50000
Library c:\program files\avira\antivir desktop\ccguard.dll (Control Center Guard Plugin/Avira GmbH) 0x00E60000
Library c:\program files\avira\antivir desktop\ccgrdrc.dll (Control Center Guard Plugin Resources/Avira GmbH) 0x00EF0000
Library c:\program files\avira\antivir desktop\ccgrdw.dll (Control Center Guard Worker Plugin/Avira GmbH) 0x00F00000
Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x00F30000
Library c:\program files\avira\antivir desktop\ccupdate.dll (Control Center Updater Plugin/Avira GmbH) 0x00F60000
Library c:\program files\avira\antivir desktop\ccupdrc.dll (Control Center Updater Plugin Resources/Avira GmbH) 0x00FD0000
Library c:\program files\avira\antivir desktop\cclic.dll (Control Center License Plugin/Avira GmbH) 0x00FE0000
Library c:\program files\avira\antivir desktop\cclicrc.dll (Control Center License Plugin Resources/Avira GmbH) 0x01130000
Library c:\program files\avira\antivir desktop\ccmsg.dll (Control Center Message Plugin/Avira GmbH) 0x01140000
Library c:\program files\avira\antivir desktop\ccmsgrc.dll (Control Center MSG Plugin Resources/Avira GmbH) 0x011B0000
Library C:\Program Files\Avira\AntiVir Desktop\rcimage.dll (Avira AntiVir PersonalEdition Classic Master Resource File (English)/Avira GmbH) 0x014D0000
Library c:\program files\avira\antivir desktop\ccmainrc.dll (Control Center Resources/Avira GmbH) 0x01780000
Process C:\Program Files\Hercules\WiFi Station\WifiStation.exe (WiFi Station Utility/Hercules) 2372
Library C:\Program Files\Hercules\WiFi Station\WifiStation.exe (WiFi Station Utility/Hercules) 0x00400000
Library C:\Program Files\Hercules\WiFi Station\AegisE5.dll (IEEE 802.1X Protocol/Meetinghouse Data Communications) 0x10000000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x01280000
Process C:\WINDOWS\system32\wscntfy.exe (Windows Security Center Notification App/Microsoft Corporation) 2396
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x008E0000
Process C:\Program Files\LanSchool\lsproxy\lskproxy.exe (LanSchool) 2436
Library C:\Program Files\LanSchool\lsproxy\lskproxy.exe (LanSchool) 0x00400000
Library c:\program files\lanschool\lsproxy\pcproxydll.dll (pcproxydll/LanSchool) 0x10000000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x032E0000
Process C:\Documents and Settings\BERNARD\Bureau\mpgqtmbh.exe 4804
Library C:\Documents and Settings\BERNARD\Bureau\mpgqtmbh.exe 0x00400000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x00800000
---- Services - GMER 1.0.15 ----
Service C:\WINDOWS\system32\DRIVERS\AegisP.sys (IEEE 802.1X Protocol Driver/Meetinghouse Data Communications) [AUTO] AegisP
Service C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek AC'97 Audio Driver (WDM)/Realtek Semiconductor Corp.) [MANUAL] ALCXWDM
Service C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) [AUTO] AntiVirSchedulerService
Service C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) [AUTO] AntiVirService
Service C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) [AUTO] Apple Mobile Device
Service C:\Program Files\Avira\AntiVir Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) [SYSTEM] avgio
Service C:\WINDOWS\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) [AUTO] avgntflt
Service C:\WINDOWS\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) [SYSTEM] avipbb
Service C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) [AUTO] Bonjour Service
Service C:\WINDOWS\System32\DRIVERS\Cap7134.sys (cap7134/Philips Semiconductors) [MANUAL] Cap7134
Service C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe (lic98rmt/Computer Associates) [MANUAL] CA_LIC_CLNT
Service C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe (lic98rmtd/Computer Associates) [MANUAL] CA_LIC_SRVR
Service C:\WINDOWS\system32\drivers\cmuda.sys (C-Media Audio WDM Driver/C-Media Inc) [MANUAL] cmuda
Service C:\WINDOWS\System32\Drivers\SQcaptur.sys (Universal Serial Bus Camera Driver/Service & Quality Technology.) [MANUAL] DCamUSBSQTECH
Service C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys (Driver NT Ma-Config.com/CybelSoft) [MANUAL] driverhardwarev2
Service C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys (DAEMON Tools Virtual Bus Driver/DT Soft Ltd) [SYSTEM] dtsoftbus01
Service C:\WINDOWS\System32\DRIVERS\el90xbc5.sys (3Com EtherLink PCI Driver/3Com Corporation) [MANUAL] EL90XBC
Service C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys (NDIS 5.0 miniport driver/VIA Technologies, Inc. ) [MANUAL] FET5X86V
Service C:\WINDOWS\System32\DRIVERS\fetnd5.sys (NDIS 5.0 miniport driver/VIA Technologies, Inc. ) [MANUAL] FETNDIS
Service C:\WINDOWS\System32\DRIVERS\fetnd5b.sys (NDIS 5.0 miniport driver/VIA Technologies, Inc. ) [MANUAL] FETNDISB
Service System32\Drivers\GEARAspiWDM.sys [MANUAL] GEARAspiWDM
Service C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (IDriverT Module/Macrovision Corporation) [MANUAL] IDriverT
Service C:\WINDOWS\System32\DRIVERS\ctxs51.sys (Intel V.92 Modem/Intel Corporation) [MANUAL] Intels51
Service C:\Program Files\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) [AUTO] JavaQuickStarterService
Service C:\Program Files\LanSchool\student.exe (LanSchool Student/LanSchool Technologies, llc) [AUTO] LanSchoolStudent
Service C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [MANUAL] Lavasoft Kernexplorer
Service system32\DRIVERS\Lbd.sys [BOOT] Lbd
Service C:\WINDOWS\system32\LEXBCES.EXE (LexBce Service/Lexmark International, Inc.) [AUTO] LexBceS
Service C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe (LogWatNT/Computer Associates) [AUTO] LogWatch
Service C:\Program Files\LanSchool\lsproxy\lskproxy.exe (LanSchool) [MANUAL] LskProxy
Service C:\WINDOWS\system32\drivers\Lvckap.sys [MANUAL] Lvckap
Service C:\WINDOWS\system32\drivers\lvmvdrv.sys [MANUAL] lvmvdrv
Service C:\WINDOWS\system32\drivers\LVPrcMon.sys [MANUAL] LVPrcMon
Service c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe (Logitech LVPrcSrv Module./Logitech Inc.) [AUTO] LVPrcSrv
Service C:\WINDOWS\system32\drivers\lvusbsta.sys (USB Statistic Driver/Logitech Inc.) [MANUAL] LVUSBSta
Service C:\Program Files\ma-config.com\maconfservice.exe (Service de détection matériel/CybelSoft) [MANUAL] maconfservice
Service MSDTC Bridge 3.0.0.0
Service nm
Service C:\Program Files\CDBurnerXP\NMSAccessU.exe [AUTO] NMSAccess
Service C:\WINDOWS\System32\DRIVERS\nv4_mini.sys (NVIDIA Compatible Windows 2000 Miniport Driver, Version 260.99 /NVIDIA Corporation) [MANUAL] nv
Service nv4
Service C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Driver Helper Service, Version 260.99/NVIDIA Corporation) [AUTO] NVSvc
Service PageDefrag
Service System32\Drivers\PCASp50.sys [MANUAL] PCASp50
Service C:\WINDOWS\System32\DRIVERS\PhTVTune.sys (WDM Video TV Tuner MiniDriver/Philips Semiconductors) [MANUAL] PhTVTune
Service C:\WINDOWS\system32\PnkBstrA.exe [AUTO] PnkBstrA
Service C:\WINDOWS\system32\PnkBstrB.exe [AUTO] PnkBstrB
Service C:\WINDOWS\System32\Drivers\PortTalk.sys (PortTalk - Beyond Logic I/O Port Driver/Beyond Logic http://www.beyondlogic.org) [MANUAL] PortTalk
Service C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) [MANUAL] Ptilink
Service C:\WINDOWS\System32\Drivers\PxHelp20.sys (Px Engine Device Driver for Windows 2000/XP/Sonic Solutions) [BOOT] PxHelp20
Service C:\WINDOWS\System32\DRIVERS\LVCM.sys [MANUAL] QCMerced
Service System32\Drivers\RimUsb.sys [MANUAL] RimUsb
Service C:\WINDOWS\System32\DRIVERS\RimSerial.sys (RIM Virtual Serial Driver/Research in Motion Ltd) [MANUAL] RimVSerPort
Service C:\WINDOWS\system32\DRIVERS\rt73.sys (Ralink 802.11 USB Wireless Adapter Driver/Ralink Technology, Corp.) [MANUAL] RT73
Service C:\WINDOWS\System32\DRIVERS\secdrv.sys (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [AUTO] Secdrv
Service ServiceModelEndpoint 3.0.0.0
Service ServiceModelOperation 3.0.0.0
Service ServiceModelService 3.0.0.0
Service SMSvcHost 3.0.0.0
Service C:\WINDOWS\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) [SYSTEM] ssmdrv
Service [MANUAL] StarOpen
Service C:\WINDOWS\System32\DRIVERS\StreamIP.sys (Microsoft IP Test Driver/Microsoft Corporation) [MANUAL] streamip
Service C:\Program [AUTO] TwonkyMedia
Service C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple Mobile Device USB Driver/Apple, Inc.) [MANUAL] USBAAPL
Service C:\WINDOWS\System32\DRIVERS\UsbSagCom.sys (USB CDC ACM Driver/Sagem Communication) [MANUAL] UsbSagCom
Service C:\WINDOWS\System32\UTSCSI.EXE [AUTO] UTSCSI
Service VIA Codec Default
Service C:\WINDOWS\System32\DRIVERS\viaagp1.sys (VIA NT AGP Filter/VIA Technologies, Inc.) [BOOT] viaagp1
Service C:\WINDOWS\System32\DRIVERS\viaide.sys (Generic PCI IDE Bus Driver/Microsoft Corporation) [BOOT] ViaIde
Service C:\WINDOWS\system32\drivers\vinyl97.sys [MANUAL] VIAudio
Service C:\WINDOWS\System32\Drivers\vulfnth.sys (VIA USB Host Controller Lower Filter Driver/VIA Technologies, Inc.) [MANUAL] vulfnths
Service C:\WINDOWS\System32\Drivers\vulfntr.sys (VIA USB Roothub Lower Filter Driver/VIA Technologies, Inc.) [MANUAL] vulfntrs
Service C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe (WD Drive Manager Service/WDC) [AUTO] WDBtnMgrSvc.exe
Service C:\WINDOWS\System32\DRIVERS\wdcsam.sys (WD SCSI Architecture Model (SAM) driver/Western Digital Technologies) [MANUAL] WDC_SAM
Service Windows Workflow Foundation 3.0.0.0
Service C:\WINDOWS\system32\drivers\WmBEnum.sys (Logitech WingMan Virtual Bus Enumerator Driver /Logitech Inc.) [MANUAL] WmBEnum
Service C:\WINDOWS\system32\drivers\WmFilter.sys (Logitech WingMan Hid Filter Driver/Logitech Inc.) [MANUAL] WmFilter
Service Wmi
Service C:\WINDOWS\system32\drivers\WmVirHid.sys (Logitech WingMan Virtual Hid Device Driver/Logitech Inc.) [MANUAL] WmVirHid
Service C:\WINDOWS\system32\drivers\WmXlCore.sys (Logitech WingMan Translation Driver/Logitech Inc.) [MANUAL] WmXlCore
Service C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe (X10 Module/X10) [MANUAL] x10nets
Service C:\WINDOWS\System32\Drivers\x10uif.sys (X10 USB Control Interface/X10 Wireless Technology, Inc.) [MANUAL] X10UIF
---- EOF - GMER 1.0.15 ----
Voila le rapport dds :
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by BERNARD at 18:27:14,89 on 08/05/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.1023.537 [GMT 2:00]
.
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LanSchool\student.exe
C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\TwonkyMedia\twonkymediaserverwatchdog.exe
C:\WINDOWS\System32\UTSCSI.EXE
C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
C:\Program Files\TwonkyMedia\TwonkyMediaServer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Hercules\WiFi Station\WifiStation.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\LanSchool\lsproxy\lskproxy.exe
C:\Documents and Settings\BERNARD\Bureau\dds.scr
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.fr/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\fichiers communs\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: lsk_WebBlk Class: {1935e690-1ac1-4aa5-ba23-3d9d0ceb3a00} - c:\windows\system32\Lsk_iBlk.dll
BHO: ECarteBleueBrowserHelper Class: {2e03c0fd-4c48-43a7-9a54-00240c70ff16} - c:\windows\system32\BhoECart.dll
BHO: FlpLauncher Class: {4401fdc3-7996-4774-8d2b-c1ae9cd6cc25} - c:\program files\e-book systems\flipviewer\fplaunch.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: EWPBrowseObject Class: {68f9551e-0411-48e4-9aaf-4bc42a6a46be} - c:\program files\canon\easy-webprint\EWPBrowseLoader.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\fichiers communs\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Easy-WebPrint: {327c2873-e90d-4c37-aa9d-10ac9baba46c} - c:\program files\canon\easy-webprint\Toolband.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
mRun: [WD Drive Manager] c:\program files\western digital\wd drive manager\WDBtnMgrUI.exe
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
StartupFolder: c:\docume~1\alluse~1\menudm~1\progra~1\dmarra~1\wifist~1.lnk - c:\program files\hercules\wifi station\WifiStation.exe
IE: E&xporter vers Microsoft Excel - c:\progra~1\micros~3\office10\EXCEL.EXE/3000
IE: Easy-WebPrint Ajouter à la liste d'impressions - c:\program files\canon\easy-webprint\Toolband.dll/RC_AddToList.html
IE: Easy-WebPrint Impression rapide - c:\program files\canon\easy-webprint\Toolband.dll/RC_HSPrint.html
IE: Easy-WebPrint Imprimer - c:\program files\canon\easy-webprint\Toolband.dll/RC_Print.html
IE: Easy-WebPrint Prévisualiser - c:\program files\canon\easy-webprint\Toolband.dll/RC_Preview.html
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\jp2iexp.dll
LSP: c:\windows\system32\lskproxy.dll
DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: teleir_cert - hxxps://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/swdir.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc.cab
DPF: {5D6F45B3-9043-443D-A792-115447494D24} - hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1255268238296
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} - hxxp://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38027.2133564815
DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} - hxxps://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab
DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://messenger.zone.msn.com/binary/ZIntro.cab53083.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {C79F0120-EF94-4FAC-8248-6F30B92E9524} - hxxp://www.journal-officiel.gouv.fr/verifier/AdValiderWeb_DJO....
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {D28C3640-A6D7-4668-A53C-07A9CF67D157} - hxxps://www.fnacmusic.com/telechargementFnacmusic/FnacComposant...
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\docume~1\bernard\applic~1\mozilla\firefox\profiles\cjdfmkjw.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2304157&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.startup.homepage - hxxp://www.20minutes.fr/
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npvirtools.dll
.
============= SERVICES / DRIVERS ===============
.
R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2011-3-5 11608]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2011-4-12 218688]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2011-3-5 136360]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2011-3-5 269480]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2011-3-5 61960]
R2 LanSchoolStudent;Service étudiant LanSchool;c:\program files\lanschool\student.exe [2010-11-30 1353008]
R2 LogWatch;Event Log Watch;c:\program files\ca\sharedcomponents\ca_lic\LogWatNT.exe [2002-9-20 53248]
R2 TwonkyMedia;TwonkyMedia;c:\program files\twonkymedia\twonkymediaserverwatchdog.exe -serviceversion 0 --> c:\program files\twonkymedia\twonkymediaserverwatchdog.exe -serviceversion 0 [?]
R2 WDBtnMgrSvc.exe;WD Drive Manager Service;c:\program files\western digital\wd drive manager\WDBtnMgrSvc.exe [2008-5-16 102400]
R3 LskProxy;LskProxy;c:\program files\lanschool\lsproxy\LskProxy.exe [2010-11-30 3508528]
R3 PhTVTune;MEDION TV-TUNER 7134 MK2/3;c:\windows\system32\drivers\PhTVTune.sys [2004-2-10 24704]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2009-1-31 11520]
S0 Lbd;Lbd;c:\windows\system32\drivers\lbd.sys --> c:\windows\system32\drivers\Lbd.sys [?]
S3 CA_LIC_CLNT;Client de licence CA;c:\program files\ca\sharedcomponents\ca_lic\lic98rmt.exe [2002-9-20 77824]
S3 CA_LIC_SRVR;Serveur de licence CA;c:\program files\ca\sharedcomponents\ca_lic\lic98rmtd.exe [2002-9-20 77824]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\lavasoft\ad-aware\kernexplorer.sys --> c:\program files\lavasoft\ad-aware\KernExplorer.sys [?]
S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-1-24 310640]
S3 PortTalk;PortTalk;c:\windows\system32\drivers\PortTalk.sys [2010-9-13 3567]
S3 UsbSagCom;SAGEM Full USB Driver;c:\windows\system32\drivers\UsbSagCom.sys [2006-3-27 51456]
.
=============== Created Last 30 ================
.
2011-05-08 13:49:43 27136 ----a-w- c:\windows\system32\PCWizard.cpl
2011-05-08 13:49:41 -------- d-----w- c:\program files\PC Wizard 2008
2011-05-08 13:49:23 -------- d-----w- c:\program files\CrystalDiskInfo
2011-05-06 19:58:55 781272 ----a-w- c:\program files\mozilla firefox\mozsqlite3.dll
2011-05-06 19:58:55 1874904 ----a-w- c:\program files\mozilla firefox\mozjs.dll
2011-05-06 19:58:54 89048 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2011-05-06 19:58:54 465880 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2011-05-06 19:58:54 15832 ----a-w- c:\program files\mozilla firefox\mozalloc.dll
2011-05-06 19:58:53 1974616 ----a-w- c:\program files\mozilla firefox\D3DCompiler_42.dll
2011-05-06 19:58:53 1892184 ----a-w- c:\program files\mozilla firefox\d3dx9_42.dll
2011-05-06 19:58:53 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-04-12 20:09:24 -------- d-----w- c:\docume~1\bernard\applic~1\Canneverbe Limited
2011-04-12 20:09:21 -------- d-----w- c:\docume~1\alluse~1\applic~1\Canneverbe Limited
2011-04-12 20:00:00 7168 ----a-w- c:\windows\system32\drivers\StarOpen.sys
2011-04-12 19:45:25 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-04-12 19:44:53 -------- d-----w- c:\program files\DAEMON Tools Lite
2011-04-12 19:44:40 -------- d-----w- c:\docume~1\bernard\applic~1\DAEMON Tools Lite
2011-04-12 19:44:40 -------- d-----w- c:\docume~1\alluse~1\applic~1\DAEMON Tools Lite
.
==================== Find3M ====================
.
2011-03-07 05:33:47 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-03-04 06:36:19 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-03-03 13:53:37 1858048 ----a-w- c:\windows\system32\win32k.sys
2011-02-22 23:05:48 916480 ----a-w- c:\windows\system32\wininet.dll
2011-02-22 23:05:47 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-02-22 23:05:47 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-02-22 11:42:13 385024 ----a-w- c:\windows\system32\html.iec
2011-02-17 12:54:06 5632 ----a-w- c:\windows\system32\xpsp4res.dll
2011-02-15 12:56:39 290432 ----a-w- c:\windows\system32\atmfd.dll
2011-02-14 18:22:24 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-02-14 18:22:24 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-02-11 14:44:39 239104 ----a-w- c:\windows\system32\fxscover.exe
2011-02-09 13:54:09 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:54:09 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-08 13:34:11 978944 ----a-w- c:\windows\system32\mfc42.dll
2011-02-08 13:34:11 974848 ----a-w- c:\windows\system32\mfc42u.dll
.
============= FINISH: 18:33:59,95 ===============
Et le rapport gmer :
GMER 1.0.15.15627 - http://www.gmer.net
Rootkit scan 2011-05-08 18:40:08
Windows 5.1.2600 Service Pack 3
Running: mpgqtmbh.exe; Driver: C:\DOCUME~1\BERNARD\LOCALS~1\Temp\ugtdypod.sys
---- Modules - GMER 1.0.15 ----
Module viaide.sys (Generic PCI IDE Bus Driver/Microsoft Corporation) F7B72000-F7B74000 (8192 bytes)
Module PxHelp20.sys (Px Engine Device Driver for Windows 2000/XP/Sonic Solutions) F76DE000-F76E7000 (36864 bytes)
Module viaagp1.sys (VIA NT AGP Filter/VIA Technologies, Inc.) F78FE000-F7905000 (28672 bytes)
Module \SystemRoot\System32\DRIVERS\nv4_mini.sys (NVIDIA Compatible Windows 2000 Miniport Driver, Version 260.99 /NVIDIA Corporation) F65E7000-F6F15000 (9625600 bytes)
Module \SystemRoot\System32\DRIVERS\Cap7134.sys (cap7134/Philips Semiconductors) F657D000-F65D3000 (352256 bytes)
Module \SystemRoot\System32\DRIVERS\ctxs51.sys (Intel V.92 Modem/Intel Corporation) F64BE000-F655A000 (638976 bytes)
Module \SystemRoot\System32\DRIVERS\wdcsam.sys (WD SCSI Architecture Model (SAM) driver/Western Digital Technologies) F7B32000-F7B35000 (12288 bytes)
Module \SystemRoot\System32\Drivers\vulfnth.sys (VIA USB Host Controller Lower Filter Driver/VIA Technologies, Inc.) F7BA6000-F7BA8000 (8192 bytes)
Module \SystemRoot\system32\drivers\cmuda.sys (C-Media Audio WDM Driver/C-Media Inc) F634C000-F649A000 (1368064 bytes)
Module \SystemRoot\system32\DRIVERS\fetnd5bv.sys (NDIS 5.0 miniport driver/VIA Technologies, Inc. ) F78BE000-F78CA000 (49152 bytes)
Module \SystemRoot\System32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) F7A36000-F7A3B000 (20480 bytes)
Module \SystemRoot\system32\drivers\WmBEnum.sys (Logitech WingMan Virtual Bus Enumerator Driver /Logitech Inc.) F7B52000-F7B55000 (12288 bytes)
Module \SystemRoot\system32\drivers\WmXlCore.sys (Logitech WingMan Translation Driver/Logitech Inc.) F7224000-F722E000 (40960 bytes)
Module \SystemRoot\system32\DRIVERS\dtsoftbus01.sys (DAEMON Tools Virtual Bus Driver/DT Soft Ltd) F6219000-F6254000 (241664 bytes)
Module \SystemRoot\System32\DRIVERS\PhTVTune.sys (WDM Video TV Tuner MiniDriver/Philips Semiconductors) F7A66000-F7A6D000 (28672 bytes)
Module \SystemRoot\System32\Drivers\vulfntr.sys (VIA USB Roothub Lower Filter Driver/VIA Technologies, Inc.) F745E000-F7461000 (12288 bytes)
Module \SystemRoot\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) F7946000-F794C000 (24576 bytes)
Module \SystemRoot\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) F17A6000-F17CC000 (155648 bytes)
Module \??\C:\Program_Files\Avira\AntiVir_Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) F7BF6000-F7BF8000 (8192 bytes)
Module \SystemRoot\system32\DRIVERS\rt73.sys (Ralink 802.11 USB Wireless Adapter Driver/Ralink Technology, Corp.) F16F1000-F175A000 (430080 bytes)
Module \SystemRoot\System32\nv4_disp.dll (NVIDIA Compatible Windows 2000 Display driver, Version 260.99 /NVIDIA Corporation) BD012000-BD623000 (6361088 bytes)
Module \SystemRoot\System32\ATMFD.DLL (Windows NT OpenType/Type 1 Font Driver/Adobe Systems Incorporated) BD623000-BD66A000 (290816 bytes)
Module \SystemRoot\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) B7E71000-B7E86000 (86016 bytes)
Module \SystemRoot\system32\DRIVERS\AegisP.sys (IEEE 802.1X Protocol Driver/Meetinghouse Data Communications) F79F6000-F79FB000 (20480 bytes)
Module \SystemRoot\System32\DRIVERS\secdrv.sys (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) B7C09000-B7C13000 (40960 bytes)
Module \??\C:\WINDOWS\system32\drivers\LVPrcMon.sys F7986000-F798B000 (20480 bytes)
Module \??\C:\DOCUME~1\BERNARD\LOCALS~1\Temp\mbr.sys B68C7000-B68CE000 (28672 bytes)
Module \??\C:\DOCUME~1\BERNARD\LOCALS~1\Temp\ugtdypod.sys (GMER) B653B000-B6554000 (102400 bytes)
---- Processes - GMER 1.0.15 ----
Process C:\Program Files\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) 124
Library C:\Program Files\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\Program Files\LanSchool\student.exe (LanSchool Student/LanSchool Technologies, llc) 172
Library C:\Program Files\LanSchool\student.exe (LanSchool Student/LanSchool Technologies, llc) 0x00400000
Library C:\Program Files\LanSchool\FRAStudent.dll (LanSchool Étudiant/LanSchool Technologies, llc) 0x10000000
Library C:\WINDOWS\system32\LSKHOOK.DLL 0x01100000
Library C:\Program Files\LanSchool\lsproxy\pcproxydll.dll (pcproxydll/LanSchool) 0x01140000
Library C:\WINDOWS\system32\Lsk_iblk.dll (LanSchool Web Blocker/LanSchool Technologies, llc) 0x01290000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x012E0000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\Program Files\TwonkyMedia\twonkymediaserverwatchdog.exe (TwonkyMedia watchdog/PacketVideo) 184
Library C:\Program Files\TwonkyMedia\twonkymediaserverwatchdog.exe (TwonkyMedia watchdog/PacketVideo) 0x00400000
Process C:\Program Files\CDBurnerXP\NMSAccessU.exe 332
Library C:\Program Files\CDBurnerXP\NMSAccessU.exe 0x00400000
Process C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe (LogWatNT/Computer Associates) 404
Library C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe (LogWatNT/Computer Associates) 0x00400000
Library C:\Program Files\CA\SharedComponents\CA_LIC\lic98.dll (Lic98 DLL/Computer Associates) 0x10000000
Process C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe (WD Drive Manager/WDC) 536
Library C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe (WD Drive Manager/WDC) 0x00400000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x00AD0000
Process C:\WINDOWS\system32\lsass.exe (LSA Shell (Export Version)/Microsoft Corporation) 696
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Driver Helper Service, Version 260.99/NVIDIA Corporation) 884
Library C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Driver Helper Service, Version 260.99/NVIDIA Corporation) 0x00400000
Library C:\WINDOWS\system32\nvapi.dll (NVIDIA NVAPI Library, Version 260.99 /NVIDIA Corporation) 0x009B0000
Library C:\WINDOWS\system32\NVRSFR.DLL (NVIDIA French language resource library/NVIDIA Corporation) 0x00960000
Process C:\WINDOWS\system32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1004
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\WINDOWS\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1156
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\WINDOWS\system32\PnkBstrA.exe 1216
Library C:\WINDOWS\system32\PnkBstrA.exe 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\WINDOWS\system32\PnkBstrB.exe 1252
Library C:\WINDOWS\system32\PnkBstrB.exe 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\WINDOWS\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1308
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\WINDOWS\System32\UTSCSI.EXE 1316
Library C:\WINDOWS\System32\UTSCSI.EXE 0x00400000
Process C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe (WD Drive Manager Service/WDC) 1340
Library C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe (WD Drive Manager Service/WDC) 0x00400000
Process C:\WINDOWS\System32\svchost.exe (Generic Host Process for Win32 Services/Microsoft Corporation) 1412
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\WINDOWS\system32\LEXBCES.EXE (LexBce Service/Lexmark International, Inc.) 1476
Library C:\WINDOWS\system32\LEXBCES.EXE (LexBce Service/Lexmark International, Inc.) 0x00400000
Library C:\WINDOWS\system32\lexp2p32.dll (LEXP2P32 DLL/Lexmark International, Inc.) 0x10000000
Library C:\WINDOWS\system32\lex2kusb.dll (LEX2KUSB DLL/Lexmark International, Inc.) 0x01550000
Process C:\WINDOWS\system32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 1512
Library C:\WINDOWS\system32\CNMLM47.DLL (BJ Language Monitor/CANON INC.) 0x66F40000
Library C:\WINDOWS\system32\CNMLM88.DLL (IJ Language Monitor/CANON INC.) 0x67380000
Library C:\WINDOWS\system32\CNMNPPM.DLL (Canon BJNP Communication Module/CANON INC.) 0x00D40000
Library C:\WINDOWS\system32\LEXLMPM.DLL (LEXLMPM DLL/Lexmark International, Inc.) 0x10000000
Library C:\WINDOWS\system32\LexBce.dll (LexBce Client/Lexmark International, Inc.) 0x00DA0000
Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD47.DLL (Canon BJ Print Processor Dispatcher/CANON INC.) 0x00F60000
Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD88.DLL (IJ Print Processor Dispatcher/CANON INC.) 0x67200000
Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\lxagpp.dll (lmprint/Lexmark International) 0x00F70000
Library C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll (Print Filter Pipeline Proxy/Microsoft Corporation) 0x3F420000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Process C:\WINDOWS\system32\LEXPPS.EXE (LEXPPS.EXE/Lexmark International, Inc.) 1520
Library C:\WINDOWS\system32\LEXPPS.EXE (LEXPPS.EXE/Lexmark International, Inc.) 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Library C:\WINDOWS\system32\LEXBCE.DLL (LexBce Client/Lexmark International, Inc.) 0x01990000
Process c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe (Logitech LVPrcSrv Module./Logitech Inc.) 1552
Library c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe (Logitech LVPrcSrv Module./Logitech Inc.) 0x00400000
Process C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) 1636
Library C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) 0x00400000
Library C:\Program Files\Avira\AntiVir Desktop\schedr.dll (avschdr Dynamic Link Library/Avira GmbH) 0x10000000
Library C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll (Event Logger/Avira GmbH) 0x00BD0000
Library C:\Program Files\Avira\AntiVir Desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00D20000
Library C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll 0x00D40000
Process C:\Program Files\TwonkyMedia\TwonkyMediaServer.exe 1708
Library C:\Program Files\TwonkyMedia\TwonkyMediaServer.exe 0x00400000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 1884
Library C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (AntiVir shadow copy service/Avira GmbH) 0x00400000
Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x10000000
Process C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) 1936
Library C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) 0x00400000
Library C:\Program Files\Avira\AntiVir Desktop\libdb44.dll (Berkeley DB 4.4 DLL/Sleepycat Software) 0x13000000
Library C:\Program Files\Avira\AntiVir Desktop\AVEvtLog.dll (Event Logger/Avira GmbH) 0x10000000
Library C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll (AntiVir Guard Messages (Deutsch)/Avira GmbH) 0x00D40000
Library C:\Program Files\Avira\AntiVir Desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00D50000
Library C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll 0x00D70000
Library C:\Program Files\Avira\AntiVir Desktop\AVPREF.DLL (Prefix DLL/Avira GmbH) 0x00EE0000
Library C:\Program Files\Avira\AntiVir Desktop\avsmtp.dll (Antivirus email sender library/Avira GmbH) 0x00F00000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x64000000
Library C:\Program Files\Avira\AntiVir Desktop\AVGIO.DLL (On-access scan support/Avira GmbH) 0x01000000
Library C:\Program Files\Avira\AntiVir Desktop\aecore.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01130000
Library C:\Program Files\Avira\AntiVir Desktop\aevdf.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01180000
Library C:\Program Files\Avira\AntiVir Desktop\aescript.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x011B0000
Library C:\Program Files\Avira\AntiVir Desktop\aescn.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01300000
Library C:\Program Files\Avira\AntiVir Desktop\aesbx.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01330000
Library C:\Program Files\Avira\AntiVir Desktop\aerdl.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01380000
Library C:\Program Files\Avira\AntiVir Desktop\aepack.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01430000
Library C:\Program Files\Avira\AntiVir Desktop\unacev2.dll (UNACE Dynamic Link Library/ACE Compression Software) 0x014D0000
Library C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01530000
Library C:\Program Files\Avira\AntiVir Desktop\aeheur.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01580000
Library C:\Program Files\Avira\AntiVir Desktop\aehelp.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x018F0000
Library C:\Program Files\Avira\AntiVir Desktop\aegen.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01B40000
Library C:\Program Files\Avira\AntiVir Desktop\aeemu.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01BC0000
Library C:\Program Files\Avira\AntiVir Desktop\aebb.dll (AntiVir Engine Module for Windows/Avira GmbH) 0x01C40000
Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x01FC0000
Process C:\WINDOWS\Explorer.EXE (Explorateur Windows/Microsoft Corporation) 1944
Library C:\WINDOWS\system32\FPAP-EXL600\FileptcIconOverlay.dll (Arachnoid Biometrics Identification Group Corp.) 0x00DE0000
Library C:\PROGRA~1\WINDOW~2\wmpband.dll (Barre de Bureau du Lecteur Windows Media/Microsoft Corporation) 0x13420000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x01D40000
Library C:\WINDOWS\System32\DragnDropCopyHook.dll 0x10000000
Library C:\WINDOWS\system32\Lsk_iBlk.dll (LanSchool Web Blocker/LanSchool Technologies, llc) 0x02290000
Library C:\Program Files\E-Book Systems\FlipViewer\fplaunch.dll 0x022C0000
Library C:\Program Files\WinRAR\rarext.dll 0x02B70000
Library C:\Program Files\OpenOffice.org 2.3\program\shlxthdl.dll (Sun Microsystems, Inc.) 0x62350000
Library C:\Program Files\OpenOffice.org 2.3\program\uwinapi.dll (Sun Microsystems, Inc.) 0x60400000
Library C:\Program Files\OpenOffice.org 2.3\program\stlport_vc7145.dll (STLport/STLport Consulting, Inc.) 0x61E70000
Library C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll (PDF Shell Extension/Adobe Systems, Inc.) 0x02930000
Library C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA 0x029A0000
Process C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 1960
Library C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 1980
Library C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 0x00400000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x10000000
Process C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Antivirus System Tray Tool/Avira GmbH) 2320
Library C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Antivirus System Tray Tool/Avira GmbH) 0x00400000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x003D0000
Library C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll (Antivirus Control Center Common Worker Library/Avira GmbH) 0x10000000
Library c:\program files\avira\antivir desktop\cfglib.dll (Antivirus configuration library/Avira GmbH) 0x00AC0000
Library c:\program files\avira\antivir desktop\ccgen.dll (Control Center General Plugin/Avira GmbH) 0x00B50000
Library c:\program files\avira\antivir desktop\ccgenrc.dll (Control Center General Plugin Resources/Avira GmbH) 0x00C50000
Library c:\program files\avira\antivir desktop\ccguard.dll (Control Center Guard Plugin/Avira GmbH) 0x00E60000
Library c:\program files\avira\antivir desktop\ccgrdrc.dll (Control Center Guard Plugin Resources/Avira GmbH) 0x00EF0000
Library c:\program files\avira\antivir desktop\ccgrdw.dll (Control Center Guard Worker Plugin/Avira GmbH) 0x00F00000
Library C:\Program Files\Avira\AntiVir Desktop\avipc.dll (AVIRA IPC Library/Avira GmbH) 0x00F30000
Library c:\program files\avira\antivir desktop\ccupdate.dll (Control Center Updater Plugin/Avira GmbH) 0x00F60000
Library c:\program files\avira\antivir desktop\ccupdrc.dll (Control Center Updater Plugin Resources/Avira GmbH) 0x00FD0000
Library c:\program files\avira\antivir desktop\cclic.dll (Control Center License Plugin/Avira GmbH) 0x00FE0000
Library c:\program files\avira\antivir desktop\cclicrc.dll (Control Center License Plugin Resources/Avira GmbH) 0x01130000
Library c:\program files\avira\antivir desktop\ccmsg.dll (Control Center Message Plugin/Avira GmbH) 0x01140000
Library c:\program files\avira\antivir desktop\ccmsgrc.dll (Control Center MSG Plugin Resources/Avira GmbH) 0x011B0000
Library C:\Program Files\Avira\AntiVir Desktop\rcimage.dll (Avira AntiVir PersonalEdition Classic Master Resource File (English)/Avira GmbH) 0x014D0000
Library c:\program files\avira\antivir desktop\ccmainrc.dll (Control Center Resources/Avira GmbH) 0x01780000
Process C:\Program Files\Hercules\WiFi Station\WifiStation.exe (WiFi Station Utility/Hercules) 2372
Library C:\Program Files\Hercules\WiFi Station\WifiStation.exe (WiFi Station Utility/Hercules) 0x00400000
Library C:\Program Files\Hercules\WiFi Station\AegisE5.dll (IEEE 802.1X Protocol/Meetinghouse Data Communications) 0x10000000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x01280000
Process C:\WINDOWS\system32\wscntfy.exe (Windows Security Center Notification App/Microsoft Corporation) 2396
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x008E0000
Process C:\Program Files\LanSchool\lsproxy\lskproxy.exe (LanSchool) 2436
Library C:\Program Files\LanSchool\lsproxy\lskproxy.exe (LanSchool) 0x00400000
Library c:\program files\lanschool\lsproxy\pcproxydll.dll (pcproxydll/LanSchool) 0x10000000
Library C:\WINDOWS\system32\lskproxy.dll (LanSchool) 0x032E0000
Process C:\Documents and Settings\BERNARD\Bureau\mpgqtmbh.exe 4804
Library C:\Documents and Settings\BERNARD\Bureau\mpgqtmbh.exe 0x00400000
Library C:\Program Files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (Logitech Helper Library./Logitech Inc.) 0x00800000
---- Services - GMER 1.0.15 ----
Service C:\WINDOWS\system32\DRIVERS\AegisP.sys (IEEE 802.1X Protocol Driver/Meetinghouse Data Communications) [AUTO] AegisP
Service C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek AC'97 Audio Driver (WDM)/Realtek Semiconductor Corp.) [MANUAL] ALCXWDM
Service C:\Program Files\Avira\AntiVir Desktop\sched.exe (Antivirus Scheduler/Avira GmbH) [AUTO] AntiVirSchedulerService
Service C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Antivirus On-Access Service/Avira GmbH) [AUTO] AntiVirService
Service C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) [AUTO] Apple Mobile Device
Service C:\Program Files\Avira\AntiVir Desktop\avgio.sys (Avira AntiVir Support for Minifilter/Avira GmbH) [SYSTEM] avgio
Service C:\WINDOWS\system32\DRIVERS\avgntflt.sys (Avira Minifilter Driver/Avira GmbH) [AUTO] avgntflt
Service C:\WINDOWS\system32\DRIVERS\avipbb.sys (Avira Driver for Security Enhancement/Avira GmbH) [SYSTEM] avipbb
Service C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) [AUTO] Bonjour Service
Service C:\WINDOWS\System32\DRIVERS\Cap7134.sys (cap7134/Philips Semiconductors) [MANUAL] Cap7134
Service C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe (lic98rmt/Computer Associates) [MANUAL] CA_LIC_CLNT
Service C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe (lic98rmtd/Computer Associates) [MANUAL] CA_LIC_SRVR
Service C:\WINDOWS\system32\drivers\cmuda.sys (C-Media Audio WDM Driver/C-Media Inc) [MANUAL] cmuda
Service C:\WINDOWS\System32\Drivers\SQcaptur.sys (Universal Serial Bus Camera Driver/Service & Quality Technology.) [MANUAL] DCamUSBSQTECH
Service C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys (Driver NT Ma-Config.com/CybelSoft) [MANUAL] driverhardwarev2
Service C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys (DAEMON Tools Virtual Bus Driver/DT Soft Ltd) [SYSTEM] dtsoftbus01
Service C:\WINDOWS\System32\DRIVERS\el90xbc5.sys (3Com EtherLink PCI Driver/3Com Corporation) [MANUAL] EL90XBC
Service C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys (NDIS 5.0 miniport driver/VIA Technologies, Inc. ) [MANUAL] FET5X86V
Service C:\WINDOWS\System32\DRIVERS\fetnd5.sys (NDIS 5.0 miniport driver/VIA Technologies, Inc. ) [MANUAL] FETNDIS
Service C:\WINDOWS\System32\DRIVERS\fetnd5b.sys (NDIS 5.0 miniport driver/VIA Technologies, Inc. ) [MANUAL] FETNDISB
Service System32\Drivers\GEARAspiWDM.sys [MANUAL] GEARAspiWDM
Service C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (IDriverT Module/Macrovision Corporation) [MANUAL] IDriverT
Service C:\WINDOWS\System32\DRIVERS\ctxs51.sys (Intel V.92 Modem/Intel Corporation) [MANUAL] Intels51
Service C:\Program Files\Java\jre6\bin\jqs.exe (Java(TM) Quick Starter Service/Sun Microsystems, Inc.) [AUTO] JavaQuickStarterService
Service C:\Program Files\LanSchool\student.exe (LanSchool Student/LanSchool Technologies, llc) [AUTO] LanSchoolStudent
Service C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys [MANUAL] Lavasoft Kernexplorer
Service system32\DRIVERS\Lbd.sys [BOOT] Lbd
Service C:\WINDOWS\system32\LEXBCES.EXE (LexBce Service/Lexmark International, Inc.) [AUTO] LexBceS
Service C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe (LogWatNT/Computer Associates) [AUTO] LogWatch
Service C:\Program Files\LanSchool\lsproxy\lskproxy.exe (LanSchool) [MANUAL] LskProxy
Service C:\WINDOWS\system32\drivers\Lvckap.sys [MANUAL] Lvckap
Service C:\WINDOWS\system32\drivers\lvmvdrv.sys [MANUAL] lvmvdrv
Service C:\WINDOWS\system32\drivers\LVPrcMon.sys [MANUAL] LVPrcMon
Service c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe (Logitech LVPrcSrv Module./Logitech Inc.) [AUTO] LVPrcSrv
Service C:\WINDOWS\system32\drivers\lvusbsta.sys (USB Statistic Driver/Logitech Inc.) [MANUAL] LVUSBSta
Service C:\Program Files\ma-config.com\maconfservice.exe (Service de détection matériel/CybelSoft) [MANUAL] maconfservice
Service MSDTC Bridge 3.0.0.0
Service nm
Service C:\Program Files\CDBurnerXP\NMSAccessU.exe [AUTO] NMSAccess
Service C:\WINDOWS\System32\DRIVERS\nv4_mini.sys (NVIDIA Compatible Windows 2000 Miniport Driver, Version 260.99 /NVIDIA Corporation) [MANUAL] nv
Service nv4
Service C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Driver Helper Service, Version 260.99/NVIDIA Corporation) [AUTO] NVSvc
Service PageDefrag
Service System32\Drivers\PCASp50.sys [MANUAL] PCASp50
Service C:\WINDOWS\System32\DRIVERS\PhTVTune.sys (WDM Video TV Tuner MiniDriver/Philips Semiconductors) [MANUAL] PhTVTune
Service C:\WINDOWS\system32\PnkBstrA.exe [AUTO] PnkBstrA
Service C:\WINDOWS\system32\PnkBstrB.exe [AUTO] PnkBstrB
Service C:\WINDOWS\System32\Drivers\PortTalk.sys (PortTalk - Beyond Logic I/O Port Driver/Beyond Logic http://www.beyondlogic.org) [MANUAL] PortTalk
Service C:\WINDOWS\System32\DRIVERS\ptilink.sys (Parallel Technologies DirectParallel IO Library/Parallel Technologies, Inc.) [MANUAL] Ptilink
Service C:\WINDOWS\System32\Drivers\PxHelp20.sys (Px Engine Device Driver for Windows 2000/XP/Sonic Solutions) [BOOT] PxHelp20
Service C:\WINDOWS\System32\DRIVERS\LVCM.sys [MANUAL] QCMerced
Service System32\Drivers\RimUsb.sys [MANUAL] RimUsb
Service C:\WINDOWS\System32\DRIVERS\RimSerial.sys (RIM Virtual Serial Driver/Research in Motion Ltd) [MANUAL] RimVSerPort
Service C:\WINDOWS\system32\DRIVERS\rt73.sys (Ralink 802.11 USB Wireless Adapter Driver/Ralink Technology, Corp.) [MANUAL] RT73
Service C:\WINDOWS\System32\DRIVERS\secdrv.sys (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [AUTO] Secdrv
Service ServiceModelEndpoint 3.0.0.0
Service ServiceModelOperation 3.0.0.0
Service ServiceModelService 3.0.0.0
Service SMSvcHost 3.0.0.0
Service C:\WINDOWS\system32\DRIVERS\ssmdrv.sys (AVIRA SnapShot Driver/Avira GmbH) [SYSTEM] ssmdrv
Service [MANUAL] StarOpen
Service C:\WINDOWS\System32\DRIVERS\StreamIP.sys (Microsoft IP Test Driver/Microsoft Corporation) [MANUAL] streamip
Service C:\Program [AUTO] TwonkyMedia
Service C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple Mobile Device USB Driver/Apple, Inc.) [MANUAL] USBAAPL
Service C:\WINDOWS\System32\DRIVERS\UsbSagCom.sys (USB CDC ACM Driver/Sagem Communication) [MANUAL] UsbSagCom
Service C:\WINDOWS\System32\UTSCSI.EXE [AUTO] UTSCSI
Service VIA Codec Default
Service C:\WINDOWS\System32\DRIVERS\viaagp1.sys (VIA NT AGP Filter/VIA Technologies, Inc.) [BOOT] viaagp1
Service C:\WINDOWS\System32\DRIVERS\viaide.sys (Generic PCI IDE Bus Driver/Microsoft Corporation) [BOOT] ViaIde
Service C:\WINDOWS\system32\drivers\vinyl97.sys [MANUAL] VIAudio
Service C:\WINDOWS\System32\Drivers\vulfnth.sys (VIA USB Host Controller Lower Filter Driver/VIA Technologies, Inc.) [MANUAL] vulfnths
Service C:\WINDOWS\System32\Drivers\vulfntr.sys (VIA USB Roothub Lower Filter Driver/VIA Technologies, Inc.) [MANUAL] vulfntrs
Service C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe (WD Drive Manager Service/WDC) [AUTO] WDBtnMgrSvc.exe
Service C:\WINDOWS\System32\DRIVERS\wdcsam.sys (WD SCSI Architecture Model (SAM) driver/Western Digital Technologies) [MANUAL] WDC_SAM
Service Windows Workflow Foundation 3.0.0.0
Service C:\WINDOWS\system32\drivers\WmBEnum.sys (Logitech WingMan Virtual Bus Enumerator Driver /Logitech Inc.) [MANUAL] WmBEnum
Service C:\WINDOWS\system32\drivers\WmFilter.sys (Logitech WingMan Hid Filter Driver/Logitech Inc.) [MANUAL] WmFilter
Service Wmi
Service C:\WINDOWS\system32\drivers\WmVirHid.sys (Logitech WingMan Virtual Hid Device Driver/Logitech Inc.) [MANUAL] WmVirHid
Service C:\WINDOWS\system32\drivers\WmXlCore.sys (Logitech WingMan Translation Driver/Logitech Inc.) [MANUAL] WmXlCore
Service C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe (X10 Module/X10) [MANUAL] x10nets
Service C:\WINDOWS\System32\Drivers\x10uif.sys (X10 USB Control Interface/X10 Wireless Technology, Inc.) [MANUAL] X10UIF
---- EOF - GMER 1.0.15 ----
re
Télécharge MalwareByte's Anti-Malware sur ton Bureau.
Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
Une fois l'installation et la mise à jour effectuées :
Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
Afin de lancer la recherche, clic sur"Rechercher".
Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
Poste ce rapport.
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]
Note : Si tu ne parviens à télécharger MBAM à partir de MajorGeeks, tu peux le télécharger ici!
[#FF0000]Aide : Comment utiliser MBAM.
+++
Télécharge MalwareByte's Anti-Malware sur ton Bureau.
Une fois l'installation et la mise à jour effectuées :
~ Si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
~~ Si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau.
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.[/#f]
Note : Si tu ne parviens à télécharger MBAM à partir de MajorGeeks, tu peux le télécharger ici!
[#FF0000]Aide :
+++
Bonsoir
à priori, rien d'infectieux dans tout ça...
~Télécharge CCleaner:
http://www.filehippo.com/download_ccleaner/
~Lors de l'installation décoche: "Ajouter la Barre d'Outils Yahoo! Ccleaner"
Clique sur le bouton nettoyeur, tu fais " lancer le nettoyage "
Clique sur le bouton erreurs, tu fais "chercher les erreurs ", puis "réparer les erreurs".
Tuto de CCleaner: (merci à Malekal) .
http://www.malekal.com/tutorial_CCleaner.html
+++++++++++++++++++
Défragmente ton disque dur:
http://www.vulgarisation-informatique.com/defragmenter....
à priori, rien d'infectieux dans tout ça...
~Télécharge CCleaner:
http://www.filehippo.com/download_ccleaner/
~Lors de l'installation décoche: "Ajouter la Barre d'Outils Yahoo! Ccleaner"
Clique sur le bouton nettoyeur, tu fais " lancer le nettoyage "
Clique sur le bouton erreurs, tu fais "chercher les erreurs ", puis "réparer les erreurs".
Tuto de CCleaner: (merci à Malekal) .
http://www.malekal.com/tutorial_CCleaner.html
+++++++++++++++++++
Défragmente ton disque dur:
http://www.vulgarisation-informatique.com/defragmenter....
Lassé par la pub ? Créez un compte
