Aller au contenu

jean6060

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    27

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par jean6060

  1. jean6060
  2. jean6060
    Bonjour, Depuis quelques temps mon pc me fait des siennes... Impossible de me connecter avec internet explorer, outlook et firefox fonctionnent. Impossible de me connecter avec ma clé 3G. Avast, spybot et Malwarebytes ne signalent rien. Que faire ? Voici un rapport combofix. Votre aide sera la bienvenue, merci d'avance. ComboFix 09-08-04.03 - jean.quiniou 05/08/2009 19:45.4.2 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.2046.1477 [GMT 2:00] Running from: c:\documents and settings\jean.quiniou\Bureau\ComboFix.exe AV: avast! antivirus 4.8.1335 [VPS 090804-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\Installer\18e8a5.msi . ((((((((((((((((((((((((( Files Created from 2009-07-05 to 2009-08-05 ))))))))))))))))))))))))))))))) . 2009-08-05 06:32 . 2009-08-05 06:32 152576 ----a-w- c:\documents and settings\jean.quiniou\Application Data\Sun\Java\jre1.6.0_15\lzma.dll 2009-08-04 13:53 . 2009-02-05 20:06 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2009-08-04 13:53 . 2009-02-05 20:06 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2009-08-04 13:53 . 2009-02-05 20:05 26944 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2009-08-04 13:53 . 2009-02-05 20:08 93296 ----a-w- c:\windows\system32\drivers\aswmon.sys 2009-08-04 13:53 . 2009-02-05 20:08 94032 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2009-08-04 13:53 . 2009-02-05 20:07 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys 2009-08-04 13:53 . 2009-02-05 20:07 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2009-08-04 13:53 . 2009-02-05 20:04 97480 ----a-w- c:\windows\system32\AvastSS.scr 2009-08-04 13:53 . 2009-02-05 20:11 1256296 ----a-w- c:\windows\system32\aswBoot.exe 2009-08-03 18:37 . 2009-08-03 18:37 -------- d-----w- c:\windows\system32\Žc 2009-08-02 17:16 . 2009-08-02 17:16 -------- d-----w- c:\windows\system32\Žc• 2009-08-02 17:15 . 2009-08-02 17:15 -------- d-----w- c:\windows\system32\Žc´ 2009-08-02 17:15 . 2009-08-02 17:15 -------- d-----w- c:\windows\system32\Žc¨ 2009-08-02 17:15 . 2009-08-02 17:15 -------- d-----w- c:\windows\system32\Žcx 2009-08-02 15:59 . 2009-08-02 15:59 61440 ----a-w- c:\windows\system32\drivers\otey.sys 2009-08-02 14:40 . 2009-08-02 14:40 -------- d-----w- c:\windows\system32\wbem\Repository 2009-08-02 14:39 . 2009-08-02 17:16 -------- d-----w- C:\_OTM 2009-08-02 10:55 . 2009-08-02 10:55 -------- d-sh--w- c:\documents and settings\jean.quiniou\PrivacIE 2009-08-02 08:36 . 2009-08-02 17:15 -------- d-----w- c:\program files\CardDetector 2009-08-01 07:41 . 2009-08-01 07:41 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache 2009-07-30 16:49 . 2009-07-30 16:48 102664 ----a-w- c:\windows\system32\drivers\tmcomm.sys 2009-07-30 16:48 . 2009-08-02 17:14 -------- d-----w- c:\documents and settings\jean.quiniou\.housecall6.6 2009-07-29 04:46 . 2009-07-03 16:57 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll 2009-07-29 04:45 . 2009-07-03 16:57 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll 2009-07-26 16:35 . 2008-04-13 17:34 50688 -c--a-w- c:\windows\system32\dllcache\proquota.exe 2009-07-26 16:35 . 2008-04-13 17:34 50688 ----a-w- c:\windows\system32\proquota.exe 2009-07-25 08:57 . 2009-07-25 08:57 -------- d-----w- c:\windows\system32\Žcö 2009-07-22 17:26 . 2009-07-22 17:26 -------- d-----w- c:\windows\system32\Žcù 2009-07-22 13:19 . 2009-07-22 13:19 -------- d-----w- c:\windows\system32\Žcø 2009-07-21 20:03 . 2009-07-21 20:03 -------- d-----w- c:\windows\system32\Žc÷ 2009-07-21 20:02 . 2009-07-21 20:02 -------- d-----w- c:\windows\system32\Žch 2009-07-21 20:02 . 2009-07-21 20:02 -------- d-----w- c:\windows\system32\Žc 2009-07-21 20:02 . 2009-07-21 20:02 -------- d-----w- c:\windows\system32\Žcû 2009-07-21 20:02 . 2009-07-21 20:02 -------- d-----w- c:\windows\system32\Žcå 2009-07-21 11:29 . 2009-07-21 11:29 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache 2009-07-21 10:34 . 2009-07-21 10:34 -------- d-----w- c:\windows\ServicePackFiles 2009-07-21 10:18 . 2009-07-21 10:18 -------- d-sh--w- c:\documents and settings\jean.quiniou\IETldCache 2009-07-21 10:15 . 2009-07-21 10:15 -------- d-----w- c:\windows\ie8updates 2009-07-21 10:14 . 2009-07-19 16:45 11067392 -c----w- c:\windows\system32\dllcache\ieframe.dll 2009-07-21 10:14 . 2009-07-03 16:57 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2009-07-21 10:14 . 2009-07-03 16:57 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll 2009-07-21 10:14 . 2009-07-03 16:57 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2009-07-21 10:13 . 2009-07-21 19:52 -------- dc-h--w- c:\windows\ie8 2009-07-20 17:38 . 2009-07-20 17:38 3775175 ----a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-07-20 17:38 . 2009-07-20 17:38 -------- d-----w- c:\documents and settings\jean.quiniou\Application Data\Malwarebytes 2009-07-20 17:38 . 2009-07-13 11:36 19096 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-07-20 17:38 . 2009-07-13 11:36 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-07-20 17:38 . 2009-07-21 19:53 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-07-20 17:38 . 2009-07-20 17:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-07-19 18:35 . 2009-07-21 19:53 -------- d-----w- c:\program files\Fighters 2009-07-19 18:35 . 2009-07-19 18:35 -------- d-----w- c:\documents and settings\All Users\Application Data\Fighters 2009-07-19 08:23 . 2009-07-21 19:58 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2 2009-07-19 08:22 . 2009-07-19 08:22 -------- d-----w- c:\program files\MSXML 6.0 2009-07-19 07:54 . 2008-10-03 10:03 247326 -c----w- c:\windows\system32\dllcache\strmdll.dll 2009-07-19 07:54 . 2008-06-14 17:33 272768 -c----w- c:\windows\system32\dllcache\bthport.sys 2009-07-19 07:54 . 2008-06-14 17:33 272768 ------w- c:\windows\system32\drivers\bthport.sys 2009-07-19 07:48 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys 2009-07-19 07:48 . 2008-10-24 11:21 455296 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2009-07-19 07:48 . 2008-12-11 10:57 333952 -c----w- c:\windows\system32\dllcache\srv.sys 2009-07-19 07:48 . 2008-05-01 14:36 331776 -c----w- c:\windows\system32\dllcache\msadce.dll 2009-07-19 07:47 . 2008-04-11 19:05 691712 -c----w- c:\windows\system32\dllcache\inetcomm.dll 2009-07-19 07:44 . 2008-12-16 12:31 354304 -c----w- c:\windows\system32\dllcache\winhttp.dll 2009-07-19 07:39 . 2008-10-15 16:35 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll 2009-07-19 07:39 . 2008-09-04 17:16 1106944 -c----w- c:\windows\system32\dllcache\msxml3.dll 2009-07-19 07:38 . 2008-04-21 21:15 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe 2009-07-19 07:31 . 2008-10-16 12:06 268648 ----a-w- c:\windows\system32\mucltui.dll 2009-07-18 18:42 . 2007-11-05 07:37 34688 ----a-w- c:\windows\system32\pcampr5.sys 2009-07-18 18:42 . 2007-10-30 16:31 94208 ----a-w- c:\windows\system32\w32n50.dll 2009-07-18 18:42 . 2007-10-30 16:31 32128 ----a-w- c:\windows\system32\pcandis5.sys 2009-07-18 18:41 . 2009-08-02 17:15 -------- d-----w- c:\program files\OrangeBS 2009-07-18 18:41 . 2009-07-18 18:41 -------- d-----w- c:\program files\Fichiers communs\France Telecom 2009-07-18 18:40 . 2007-03-30 14:38 8064 ----a-r- c:\windows\system32\drivers\gtptser.sys 2009-07-18 18:40 . 2007-07-09 15:17 95744 ----a-r- c:\windows\system32\drivers\Gt51Ip.sys 2009-07-18 18:40 . 2007-06-26 14:38 51968 ----a-r- c:\windows\system32\drivers\gt72ubus.sys 2009-07-18 08:40 . 2009-07-18 08:40 -------- d-----w- c:\windows\system32\Žc¯ 2009-07-16 20:39 . 2009-07-16 20:39 -------- d-----w- C:\Temp 2009-07-16 20:00 . 2009-07-18 11:40 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-07-16 17:31 . 2009-07-16 19:38 -------- d-----w- c:\program files\Lavasoft 2009-07-16 17:31 . 2009-07-16 19:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Lavasoft 2009-07-15 20:32 . 2009-07-15 20:32 -------- d-----w- c:\program files\Panda Security 2009-07-15 19:15 . 2009-07-15 19:15 -------- d-----w- c:\windows\system32\Žcõ 2009-07-15 16:29 . 2009-07-15 16:29 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\ATI 2009-07-15 16:29 . 2009-07-15 16:29 -------- d-----w- c:\documents and settings\LocalService\Application Data\ATI 2009-07-12 15:54 . 2009-07-12 15:54 -------- d-s---w- c:\documents and settings\jean.quiniou\UserData 2009-07-09 11:38 . 2009-07-09 11:38 -------- d-----w- c:\program files\Letmin 2009-07-09 07:51 . 2009-07-09 07:51 -------- d-----w- c:\documents and settings\LocalService\Application Data\Nero 2009-07-09 07:51 . 2009-07-22 12:58 105792 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-07-09 07:51 . 2009-07-22 12:57 -------- d-----r- c:\documents and settings\LocalService\Favoris 2009-07-09 07:51 . 2009-07-22 12:57 -------- d-----r- c:\documents and settings\LocalService\Mes documents 2009-07-09 07:51 . 2009-07-09 07:51 -------- d--h--w- c:\documents and settings\LocalService\Voisinage réseau 2009-07-09 07:51 . 2009-07-09 07:51 -------- d-----w- c:\documents and settings\LocalService\Bureau 2009-07-09 07:51 . 2009-07-09 07:51 -------- d-----w- c:\documents and settings\LocalService\Menu Démarrer 2009-07-09 07:50 . 2009-07-09 07:50 -------- d-----w- c:\documents and settings\jean.quiniou\Application Data\Icones 2009-07-07 10:25 . 2009-08-03 21:32 -------- d-----w- c:\documents and settings\jean.quiniou\Application Data\vlc . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-08-05 15:36 . 2009-03-17 12:36 1089624 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat 2009-08-05 06:33 . 2007-11-08 07:56 -------- d-----w- c:\program files\Java 2009-08-04 14:23 . 2009-03-17 10:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Kaspersky Lab 2009-08-04 12:59 . 2007-11-08 07:58 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-08-04 12:59 . 2009-03-17 10:52 -------- d-----w- c:\program files\Fichiers communs\Kaspersky Lab 2009-08-04 12:59 . 2009-03-17 10:21 -------- d-----w- c:\program files\Kaspersky Lab 2009-08-02 19:13 . 2009-03-18 12:35 -------- d-----w- c:\program files\eMule 2009-08-02 17:14 . 2009-03-17 13:01 -------- d-----w- c:\program files\Spybot - Search & Destroy 2009-07-25 03:23 . 2009-04-28 08:59 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-07-21 19:58 . 2007-11-08 08:35 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2009-07-21 19:49 . 2009-07-21 17:53 -------- d-----w- c:\program files\Registry Winner 2009-07-21 17:35 . 2007-11-08 07:07 85834 ----a-w- c:\windows\system32\perfc00C.dat 2009-07-21 17:35 . 2007-11-08 07:07 512628 ----a-w- c:\windows\system32\perfh00C.dat 2009-07-21 11:32 . 2007-11-08 07:24 105792 ----a-w- c:\documents and settings\Administrateur\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-07-21 10:41 . 2007-11-08 07:15 86999 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2009-07-16 20:14 . 2009-03-17 13:01 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-07-14 11:25 . 2009-03-18 10:18 -------- d-----w- c:\program files\adslTV 2009-07-10 18:20 . 2009-04-30 18:05 -------- d-----w- c:\documents and settings\jean.quiniou\Application Data\dvdcss 2009-07-03 16:57 . 2007-11-08 07:07 915456 ----a-w- c:\windows\system32\wininet.dll 2009-06-24 12:13 . 2009-06-24 12:13 152576 ----a-w- c:\documents and settings\jean.quiniou\Application Data\Sun\Java\jre1.6.0_14\lzma.dll 2009-06-20 20:33 . 2009-06-20 20:33 4096 ----a-w- c:\windows\d3dx.dat 2009-06-20 20:33 . 2009-06-20 20:11 -------- d-----w- c:\program files\Hitchcock 2009-06-20 20:11 . 2009-06-20 20:11 -------- d-----w- c:\program files\directx 2009-06-16 14:40 . 2007-11-08 07:07 119808 ----a-w- c:\windows\system32\t2embed.dll 2009-06-16 14:40 . 2007-11-08 07:06 81920 ----a-w- c:\windows\system32\fontsub.dll 2009-06-09 12:09 . 2009-06-09 12:09 826856 ----a-w- c:\documents and settings\jean.quiniou\Application Data\MSNInstaller\msnauins.exe 2009-06-09 12:09 . 2009-06-09 12:09 -------- d-----w- c:\documents and settings\jean.quiniou\Application Data\MSNInstaller 2009-06-09 09:53 . 2009-03-22 17:06 278984 ----a-w- c:\windows\system32\drivers\atksgt.sys 2009-06-09 09:48 . 2009-06-09 09:48 -------- d-----w- c:\program files\Deep Silver 2009-06-06 20:08 . 2009-06-06 20:05 -------- d-----w- c:\program files\Carte Blanche 2009-06-06 07:49 . 2009-06-06 07:49 75048 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe 2009-06-03 19:10 . 2007-11-08 07:06 1297408 ----a-w- c:\windows\system32\quartz.dll . ((((((((((((((((((((((((((((( SnapShot@2009-08-04_20.06.06 ))))))))))))))))))))))))))))))))))))))))) . + 2009-08-05 17:39 . 2009-08-05 17:39 16384 c:\windows\Temp\Perflib_Perfdata_774.dat + 2009-08-05 17:38 . 2009-08-05 17:38 16384 c:\windows\Temp\Perflib_Perfdata_10c.dat + 2009-08-05 06:33 . 2009-07-25 03:23 149280 c:\windows\system32\javaws.exe + 2009-08-05 06:33 . 2009-07-25 03:23 145184 c:\windows\system32\javaw.exe + 2009-08-05 06:33 . 2009-07-25 03:23 145184 c:\windows\system32\java.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LtMoh"="c:\program files\ltmoh\Ltmoh.exe" [2007-01-09 191552] "TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\toscdspd.exe" [2005-04-11 65536] "H/PC Connection Agent"="c:\progra~1\MI3AA1~1\wcescomm.exe" [2006-06-26 1211176] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" [2008-12-12 1840424] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "CeEKEY"="c:\program files\TOSHIBA\E-KEY\CeEKey.exe" [2007-07-06 651264] "HWSetup"="c:\program files\TOSHIBA\TOSHIBA Applet\HWSetup.exe" [2004-05-01 28672] "SVPWUTIL"="c:\program files\Toshiba\Windows Utilities\SVPWUTIL.exe" [2006-05-25 65536] "TPNF"="c:\program files\TOSHIBA\TouchPad\TPTray.exe" [2007-06-01 53248] "DDWMon"="c:\program files\TOSHIBA\TOSHIBA Direct Disc Writer\\ddwmon.exe" [2007-04-26 495616] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-06-28 888832] "Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2007-05-22 413696] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792] "AGEIA PhysX SysTray"="c:\program files\AGEIA Technologies\bin\TrayIcon.exe" [2006-11-10 344064] "NeroFilterCheck"="c:\program files\Fichiers communs\Nero\Lib\NeroCheck.exe" [2008-11-06 570664] "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-12-02 2221352] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-05-30 292136] "CardDetector"="c:\program files\CardDetector\ICON225\CardDetector.exe" [2007-10-18 241664] "BEWINTERNET-FR-DMESessionManager"="c:\program files\OrangeBS\BEWInternet\SessionManager\SessionManager.exe" [2009-05-05 135920] "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280] "TFncKy"="TFncKy.exe" [bU] "TDispVol"="TDispVol.exe" - c:\windows\system32\TDispVol.exe [2005-12-27 73728] "NDSTray.exe"="NDSTray.exe" [bU] "TPSMain"="TPSMain.exe" - c:\windows\system32\TPSMain.exe [2005-08-12 266240] "TCtryIOHook"="TCtrlIOHook.exe" - c:\windows\system32\TCtrlIOHook.exe [2007-06-30 28672] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2007-09-03 16841216] "Zooming"="ZoomingHook.exe" - c:\windows\system32\ZoomingHook.exe [2005-06-06 24576] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "SmoothView"=c:\program files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe "topi"=c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"= "c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager "c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application "c:\\Program Files\\eMule\\emule.exe"= "c:\\Program Files\\Nero\\Nero8\\Nero Home\\NeroHome.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "%windir%\\system32\\lsass.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\OrangeBS\\BEWInternet\\Connectivity\\ConnectivityManager.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [04/08/2009 15:53 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [04/08/2009 15:53 20560] R2 tdudf;TOSHIBA UDF File System Driver;c:\windows\system32\drivers\tdudf.sys [26/03/2007 13:22 105856] R2 trudf;TOSHIBA DVD-RAM UDF File System Driver;c:\windows\system32\drivers\trudf.sys [19/02/2007 13:15 134016] S3 GT72NDISIPXP;GT 72 IP NDIS;c:\windows\system32\drivers\Gt51Ip.sys [18/07/2009 20:40 95744] S3 GT72UBUS;GT 72 U BUS;c:\windows\system32\drivers\gt72ubus.sys [18/07/2009 20:40 51968] S3 GTPTSER;GT PT SER;c:\windows\system32\drivers\gtptser.sys [18/07/2009 20:40 8064] S3 TpChoice;Touch Pad Detection Filter driver;c:\windows\system32\DRIVERS\TpChoice.sys --> c:\windows\system32\DRIVERS\TpChoice.sys [?] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] "c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP . Contents of the 'Scheduled Tasks' folder 2009-08-01 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34] . . ------- Supplementary Scan ------- . uStart Page = about:blank uInternet Settings,ProxyOverride = *.local IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\jean.quiniou\Application Data\Mozilla\Firefox\Profiles\is4hi1ht.default\ FF - component: c:\documents and settings\jean.quiniou\Application Data\Mozilla\Firefox\Profiles\is4hi1ht.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\WINNT_x86-msvc\components\ipc.dll FF - plugin: c:\program files\adslTV\npvlc.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll ---- FIREFOX POLICIES ---- FF - user.js: yahoo.homepage.dontask - true. ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-08-05 19:49 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'winlogon.exe'(1096) c:\windows\system32\Ati2evxx.dll . Completion time: 2009-08-05 19:50 ComboFix-quarantined-files.txt 2009-08-05 17:50 ComboFix2.txt 2009-08-04 20:08 Pre-Run: 90 809 991 168 octets libres Post-Run: 90 731 380 736 octets libres 259 --- E O F --- 2009-07-29 17:52 Jean
×
×
  • Créer...