steffgl

oups j ai oublié "formaté" je colle le reste : Antivirus Version Dernière mise à jour Résultat a-squared 4.5.0.50 2010.02.05 - AhnLab-V3 5.0.0.2 2010.02.05 - AntiVir 7.9.1.158 2010.02.05 - Antiy-AVL 2.0.3.7 2010.02.05 - Authentium 5.2.0.5 2010.02.05 - Avast 4.8.1351.0 2010.02.04 - AVG 9.0.0.730 2010.02.05 - BitDefender 7.2 2010.02.05 - CAT-QuickHeal 10.00 2010.02.05 - ClamAV 0.96.0.0-git 2010.02.04 - Comodo 3828 2010.02.05 - DrWeb 5.0.1.12222 2010.02.05 - eSafe 7.0.17.0 2010.02.04 - eTrust-Vet 35.2.7285 2010.02.05 - F-Prot 4.5.1.85 2010.02.05 - F-Secure 9.0.15370.0 2010.02.05 - Fortinet 4.0.14.0 2010.02.05 - GData 19 2010.02.05 - Ikarus T3.1.1.80.0 2010.02.05 - K7AntiVirus 7.10.966 2010.02.03 - Kaspersky 7.0.0.125 2010.02.05 - McAfee 5882 2010.02.04 - McAfee+Artemis 5882 2010.02.04 - McAfee-GW-Edition 6.8.5 2010.02.05 - Microsoft 1.5406 2010.02.05 - NOD32 4837 2010.02.05 - Norman 6.04.03 2010.02.04 - nProtect 2009.1.8.0 2010.02.05 - Panda 10.0.2.2 2010.02.05 - PCTools 7.0.3.5 2010.02.05 - Prevx 3.0 2010.02.05 - Rising 22.33.04.04 2010.02.05 - Sophos 4.50.0 2010.02.05 - Sunbelt 3.2.1858.2 2010.02.05 - TheHacker 6.5.1.0.180 2010.02.05 - TrendMicro 9.120.0.1004 2010.02.05 - VBA32 3.12.12.1 2010.02.05 - ViRobot 2010.2.5.2174 2010.02.05 - VirusBuster 5.0.21.0 2010.02.04 - Information additionnelle File size: 90112 bytes MD5...: 52ba0be41c086035241c4ccb6526ae41 SHA1..: 3861bb86c2866a5f8f2ce5192fc54e611f129c94 SHA256: e99a12a20799710e514d2642fc7090ac09d229d45efd097142ed01a0c1e0150f ssdeep: 1536:Xxdbul6fNgRwPY5W5C7QPI3KZygKxCU/R+NjaGU:BNCW54A3yl8jU<br> PEiD..: - PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x16abe<br>timedatestamp.....: 0x4b448515 (Wed Jan 06 12:41:57 2010)<br>machinetype.......: 0x14c (I386)<br><br>( 4 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x2000 0x14ac4 0x14c00 6.08 2672865b233a0715cd656721faf3104b<br>.sdata 0x18000 0x5b 0x200 1.31 4d570fd3bda58ad2f5e380f0d8d5943a<br>.rsrc 0x1a000 0xa50 0xc00 3.66 3f8614c6c9e59be1c45009602afb1fee<br>.reloc 0x1c000 0xc 0x200 0.10 64486924e503cee72270e139a32b7580<br><br>( 1 imports ) <br>> mscoree.dll: _CorExeMain<br><br>( 0 exports ) <br> RDS...: NSRL Reference Data Set<br>- pdfid.: - trid..: Generic CIL Executable (.NET, Mono, etc.) (79.2%)<br>Windows Screen Saver (14.1%)<br>Win16/32 Executable Delphi generic (2.2%)<br>Generic Win/DOS Executable (2.1%)<br>DOS Executable Generic (2.1%) sigcheck:<br>publisher....: n/a<br>copyright....: Copyright © 2009<br>product......: WindowsApplication1<br>description..: WindowsApplication1<br>original name: bucks.exe<br>internal name: bucks.exe<br>file version.: 1.0.0.0<br>comments.....: n/a<br>signers......: -<br>signing date.: -<br>verified.....: Unsigned<br>

RAS le rapport n indique rien apparement Fichier bucks.exe reçu le 2010.02.05 11:11:32 (UTC) Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE Résultat: 0/39 (0%) en train de charger les informations du serveur... Votre fichier est dans la file d'attente, en position: 1. L'heure estimée de démarrage est entre 40 et 57 secondes. Ne fermez pas la fenêtre avant la fin de l'analyse. L'analyseur qui traitait votre fichier est actuellement stoppé, nous allons attendre quelques secondes pour tenter de récupérer vos résultats. Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre fichier. Votre fichier est, en ce moment, en cours d'analyse par VirusTotal, les résultats seront affichés au fur et à mesure de leur génération. Formaté Formaté Impression des résultats Impression des résultats Votre fichier a expiré ou n'existe pas. Le service est en ce moment, stoppé, votre fichier attend d'être analysé (position : ) depuis une durée indéfinie. Vous pouvez attendre une réponse du Web (re-chargement automatique) ou taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande" pour que le système vous envoie une notification quand l'analyse sera terminée. Email: Antivirus Version Dernière mise à jour Résultat a-squared 4.5.0.50 2010.02.05 - AhnLab-V3 5.0.0.2 2010.02.05 - AntiVir 7.9.1.158 2010.02.05 - Antiy-AVL 2.0.3.7 2010.02.05 - Authentium 5.2.0.5 2010.02.05 - Avast 4.8.1351.0 2010.02.04 - AVG 9.0.0.730 2010.02.05 - BitDefender 7.2 2010.02.05 - CAT-QuickHeal 10.00 2010.02.05 - ClamAV 0.96.0.0-git 2010.02.04 - Comodo 3828 2010.02.05 - DrWeb 5.0.1.12222 2010.02.05 - eSafe 7.0.17.0 2010.02.04 - eTrust-Vet 35.2.7285 2010.02.05 - F-Prot 4.5.1.85 2010.02.05 - F-Secure 9.0.15370.0 2010.02.05 - Fortinet 4.0.14.0 2010.02.05 - GData 19 2010.02.05 - Ikarus T3.1.1.80.0 2010.02.05 - K7AntiVirus 7.10.966 2010.02.03 - Kaspersky 7.0.0.125 2010.02.05 - McAfee 5882 2010.02.04 - McAfee+Artemis 5882 2010.02.04 - McAfee-GW-Edition 6.8.5 2010.02.05 - Microsoft 1.5406 2010.02.05 - NOD32 4837 2010.02.05 - Norman 6.04.03 2010.02.04 - nProtect 2009.1.8.0 2010.02.05 - Panda 10.0.2.2 2010.02.05 - PCTools 7.0.3.5 2010.02.05 - Prevx 3.0 2010.02.05 - Rising 22.33.04.04 2010.02.05 - Sophos 4.50.0 2010.02.05 - Sunbelt 3.2.1858.2 2010.02.05 - TheHacker 6.5.1.0.180 2010.02.05 - TrendMicro 9.120.0.1004 2010.02.05 - VBA32 3.12.12.1 2010.02.05 - ViRobot 2010.2.5.2174 2010.02.05 - VirusBuster 5.0.21.0 2010.02.04 - Information additionnelle File size: 90112 bytes MD5...: 52ba0be41c086035241c4ccb6526ae41 SHA1..: 3861bb86c2866a5f8f2ce5192fc54e611f129c94 SHA256: e99a12a20799710e514d2642fc7090ac09d229d45efd097142ed01a0c1e0150f ssdeep: 1536:Xxdbul6fNgRwPY5W5C7QPI3KZygKxCU/R+NjaGU:BNCW54A3yl8jU PEiD..: - PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x16abe timedatestamp.....: 0x4b448515 (Wed Jan 06 12:41:57 2010) machinetype.......: 0x14c (I386) ( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x2000 0x14ac4 0x14c00 6.08 2672865b233a0715cd656721faf3104b .sdata 0x18000 0x5b 0x200 1.31 4d570fd3bda58ad2f5e380f0d8d5943a .rsrc 0x1a000 0xa50 0xc00 3.66 3f8614c6c9e59be1c45009602afb1fee .reloc 0x1c000 0xc 0x200 0.10 64486924e503cee72270e139a32b7580 ( 1 imports ) > mscoree.dll: _CorExeMain ( 0 exports ) RDS...: NSRL Reference Data Set - pdfid.: - trid..: Generic CIL Executable (.NET, Mono, etc.) (79.2%) Windows Screen Saver (14.1%) Win16/32 Executable Delphi generic (2.2%) Generic Win/DOS Executable (2.1%) DOS Executable Generic (2.1%) sigcheck: publisher....: n/a copyright....: Copyright © 2009 product......: WindowsApplication1 description..: WindowsApplication1 original name: bucks.exe internal name: bucks.exe file version.: 1.0.0.0 comments.....: n/a signers......: - signing date.: - verified.....: Unsigned ATENTION ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.

Je n' arrive pas a trouver se fichier , il n'est pas dans C: et quand je lance une recherche sur le pc il ne le trouve pas non plus Oups , excuse moi je me suis trompé de PC ^^ je suis sur deux pc et je fais la recherche sur celui qui fonctionne ... No Comment Je te fais ce de suite

Voici le rapport e TDSSKiller et Le rapport HijackThisV2 11:36:28:863 4048 TDSS rootkit removing tool 2.2.2 Jan 13 2010 08:42:25 11:36:28:863 4048 ================================================================================ 11:36:28:863 4048 SystemInfo: 11:36:28:863 4048 OS Version: 6.1.7600 ServicePack: 0.0 11:36:28:863 4048 Product type: Workstation 11:36:28:863 4048 ComputerName: ACER-PC 11:36:28:869 4048 UserName: ACER 11:36:28:869 4048 Windows directory: C:\Windows 11:36:28:869 4048 Processor architecture: Intel x86 11:36:28:869 4048 Number of processors: 2 11:36:28:869 4048 Page size: 0x1000 11:36:28:873 4048 Boot type: Normal boot 11:36:28:873 4048 ================================================================================ 11:36:28:877 4048 UnloadDriverW: NtUnloadDriver error 2 11:36:28:877 4048 ForceUnloadDriverW: UnloadDriverW(klmd21) error 2 11:36:28:879 4048 MyNtCreateFileW: NtCreateFile(\??\C:\Windows\system32\drivers\klmd.sys) returned status 00000000 11:36:28:893 4048 UtilityInit: KLMD drop and load success 11:36:28:893 4048 KLMD_OpenDevice: Trying to open KLMD Device(KLMD201000) 11:36:28:893 4048 UtilityInit: KLMD open success 11:36:28:893 4048 UtilityInit: Initialize success 11:36:28:893 4048 11:36:28:894 4048 Scanning Services ... 11:36:28:894 4048 CreateRegParser: Registry parser init started 11:36:28:894 4048 CreateRegParser: DisableWow64Redirection error 11:36:28:894 4048 wfopen_ex: Trying to open file C:\Windows\system32\config\system 11:36:28:894 4048 MyNtCreateFileW: NtCreateFile(\??\C:\Windows\system32\config\system) returned status C0000043 11:36:28:895 4048 wfopen_ex: MyNtCreateFileW error 32 (C0000043) 11:36:28:895 4048 wfopen_ex: Trying to KLMD file open 11:36:28:895 4048 KLMD_CreateFileW: Trying to open file C:\Windows\system32\config\system 11:36:28:895 4048 wfopen_ex: File opened ok (Flags 2) 11:36:28:909 4048 CreateRegParser: HIVE_ADAPTER(C:\Windows\system32\config\system) init success: 541520 11:36:28:909 4048 wfopen_ex: Trying to open file C:\Windows\system32\config\software 11:36:28:909 4048 MyNtCreateFileW: NtCreateFile(\??\C:\Windows\system32\config\software) returned status C0000043 11:36:28:909 4048 wfopen_ex: MyNtCreateFileW error 32 (C0000043) 11:36:28:909 4048 wfopen_ex: Trying to KLMD file open 11:36:28:909 4048 KLMD_CreateFileW: Trying to open file C:\Windows\system32\config\software 11:36:28:909 4048 wfopen_ex: File opened ok (Flags 2) 11:36:28:923 4048 CreateRegParser: HIVE_ADAPTER(C:\Windows\system32\config\software) init success: 541548 11:36:28:923 4048 CreateRegParser: EnableWow64Redirection error 11:36:28:923 4048 CreateRegParser: RegParser init completed 11:36:29:529 4048 GetAdvancedServicesInfo: Raw services enum returned 455 services 11:36:29:535 4048 fclose_ex: Trying to close file C:\Windows\system32\config\system 11:36:29:536 4048 fclose_ex: Trying to close file C:\Windows\system32\config\software 11:36:29:537 4048 11:36:29:537 4048 Scanning Kernel memory ... 11:36:29:538 4048 KLMD_GetSystemObjectAddressByNameW: Trying to get system object address by name \Driver\Disk 11:36:29:538 4048 DetectCureTDL3: \Driver\Disk PDRIVER_OBJECT: 8562F140 11:36:29:538 4048 DetectCureTDL3: KLMD_GetDeviceObjectList returned 2 DevObjects 11:36:29:538 4048 11:36:29:538 4048 DetectCureTDL3: DEVICE_OBJECT: 86151030 11:36:29:538 4048 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86151030 11:36:29:538 4048 DetectCureTDL3: DEVICE_OBJECT: 85B0E7A0 11:36:29:538 4048 KLMD_GetLowerDeviceObject: Trying to get lower device object for 85B0E7A0 11:36:29:538 4048 KLMD_ReadMem: Trying to ReadMemory 0x85B0E7A0[0x38] 11:36:29:538 4048 DetectCureTDL3: DRIVER_OBJECT: 85F7C630 11:36:29:538 4048 KLMD_ReadMem: Trying to ReadMemory 0x85F7C630[0xA8] 11:36:29:538 4048 KLMD_ReadMem: Trying to ReadMemory 0x84CE8A58[0x1E] 11:36:29:538 4048 DetectCureTDL3: DRIVER_OBJECT name: \Driver\USBSTOR, Driver Name: USBSTOR 11:36:29:538 4048 DetectCureTDL3: IrpHandler (0) addr: 9696EA02 11:36:29:538 4048 DetectCureTDL3: IrpHandler (1) addr: 828B9437 11:36:29:538 4048 DetectCureTDL3: IrpHandler (2) addr: 9696EA7A 11:36:29:538 4048 DetectCureTDL3: IrpHandler (3) addr: 9696EAF2 11:36:29:539 4048 DetectCureTDL3: IrpHandler (4) addr: 9696EAF2 11:36:29:539 4048 DetectCureTDL3: IrpHandler (5) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (6) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (7) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler ( addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (9) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (10) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (11) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (12) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (13) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (14) addr: 9696E5FE 11:36:29:539 4048 DetectCureTDL3: IrpHandler (15) addr: 96961656 11:36:29:539 4048 DetectCureTDL3: IrpHandler (16) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (17) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (18) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (19) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (20) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (21) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (22) addr: 9696C9BA 11:36:29:539 4048 DetectCureTDL3: IrpHandler (23) addr: 9696988E 11:36:29:539 4048 DetectCureTDL3: IrpHandler (24) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (25) addr: 828B9437 11:36:29:539 4048 DetectCureTDL3: IrpHandler (26) addr: 828B9437 11:36:29:539 4048 KLMD_ReadMem: Trying to ReadMemory 0x96963EA2[0x400] 11:36:29:539 4048 TDL3_StartIoHookDetect: CheckParameters: 4, 96968000, 0 11:36:29:539 4048 TDL3_FileDetect: Processing driver: USBSTOR 11:36:29:540 4048 TDL3_FileDetect: Processing driver file: C:\Windows\system32\DRIVERS\USBSTOR.SYS 11:36:29:540 4048 KLMD_CreateFileW: Trying to open file C:\Windows\system32\DRIVERS\USBSTOR.SYS 11:36:29:551 4048 TDL3_FileDetect: C:\Windows\system32\DRIVERS\USBSTOR.SYS - Verdict: Clean 11:36:29:552 4048 11:36:29:552 4048 DetectCureTDL3: DEVICE_OBJECT: 85631030 11:36:29:552 4048 KLMD_GetLowerDeviceObject: Trying to get lower device object for 85631030 11:36:29:552 4048 DetectCureTDL3: DEVICE_OBJECT: 848A55E0 11:36:29:552 4048 KLMD_GetLowerDeviceObject: Trying to get lower device object for 848A55E0 11:36:29:552 4048 DetectCureTDL3: DEVICE_OBJECT: 8554D030 11:36:29:552 4048 KLMD_GetLowerDeviceObject: Trying to get lower device object for 8554D030 11:36:29:552 4048 KLMD_ReadMem: Trying to ReadMemory 0x8554D030[0x38] 11:36:29:552 4048 DetectCureTDL3: DRIVER_OBJECT: 8554CA38 11:36:29:552 4048 KLMD_ReadMem: Trying to ReadMemory 0x8554CA38[0xA8] 11:36:29:552 4048 KLMD_ReadMem: Trying to ReadMemory 0x8554B848[0x1A] 11:36:29:552 4048 DetectCureTDL3: DRIVER_OBJECT name: \Driver\atapi, Driver Name: atapi 11:36:29:552 4048 DetectCureTDL3: IrpHandler (0) addr: 82FBD8C4 11:36:29:552 4048 DetectCureTDL3: IrpHandler (1) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (2) addr: 82FBD8C4 11:36:29:552 4048 DetectCureTDL3: IrpHandler (3) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (4) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (5) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (6) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (7) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler ( addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (9) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (10) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (11) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (12) addr: 828B9437 11:36:29:552 4048 DetectCureTDL3: IrpHandler (13) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (14) addr: 82FA947C 11:36:29:553 4048 DetectCureTDL3: IrpHandler (15) addr: 82FA944E 11:36:29:553 4048 DetectCureTDL3: IrpHandler (16) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (17) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (18) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (19) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (20) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (21) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (22) addr: 82FA94AA 11:36:29:553 4048 DetectCureTDL3: IrpHandler (23) addr: 82FB8DB2 11:36:29:553 4048 DetectCureTDL3: IrpHandler (24) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (25) addr: 828B9437 11:36:29:553 4048 DetectCureTDL3: IrpHandler (26) addr: 828B9437 11:36:29:553 4048 TDL3_FileDetect: Processing driver: atapi 11:36:29:553 4048 TDL3_FileDetect: Processing driver file: C:\Windows\system32\DRIVERS\atapi.sys 11:36:29:553 4048 KLMD_CreateFileW: Trying to open file C:\Windows\system32\DRIVERS\atapi.sys 11:36:29:567 4048 TDL3_FileDetect: C:\Windows\system32\DRIVERS\atapi.sys - Verdict: Clean 11:36:29:567 4048 11:36:29:567 4048 Completed 11:36:29:568 4048 11:36:29:568 4048 Results: 11:36:29:569 4048 Memory objects infected / cured / cured on reboot: 0 / 0 / 0 11:36:29:569 4048 Registry objects infected / cured / cured on reboot: 0 / 0 / 0 11:36:29:569 4048 File objects infected / cured / cured on reboot: 0 / 0 / 0 11:36:29:570 4048 11:36:29:572 4048 MyNtCreateFileW: NtCreateFile(\??\C:\Windows\system32\drivers\klmd.sys) returned status 00000000 11:36:29:573 4048 UtilityDeinit: KLMD(ARK) unloaded successfully Le rapport HijackThisV2 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:44:37, on 05/02/2010 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskhost.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe C:\bucks.exe C:\Program Files\Internet Download Manager\IDMan.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Internet Download Manager\IEMonitor.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil10d.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\taskhost.exe C:\Program Files\trend micro\HijackThis\HijackThis.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\wuauclt.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: IE AdBlock - {46B37057-5BA8-4014-B28D-6448FD171A3E} - C:\Program Files\IE AdBlock\IE AdBlock.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: IE AdBlock - {BE1B1F92-AC2E-4AFB-BC9D-07FE272C1373} - C:\Program Files\IE AdBlock\IE AdBlock.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [Firefox] C:\Bucks.exe O4 - HKCU\..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O13 - Gopher Prefix: O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- End of file - 6793 bytes voila merci

quand je clique sur RSIT.exe pour le lancer ( essyer aussi de lancer an admi) je clique sur continuer ,il y a running hijack this ... et ensuite message erreur : Line -1: Error variable used without being declared

rapport apres suppression : --------------------\\ Lop S&D 4.2.5-0 XP/Vista Microsoft Windows 7 Édition Intégrale ( v6.1.7600 ) X86-based PC ( Multiprocessor Free : Genuine Intel® CPU T2060 @ 1.60GHz ) BIOS : Ver 1.00PARTTBLP USER : ACER ( Administrator ) BOOT : Normal boot C:\ (Local Disk) - NTFS - Total:149 Go (Free:107 Go) D:\ (CD or DVD) E:\ (Local Disk) - NTFS - Total:232 Go (Free:61 Go) "C:\Lop SD" ( MAJ : 19-12-2008|23:40 ) Option : [2] ( 05/02/2010|10:54 ) [ UAC => 1 ] \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION - [ Fichier Hosts ] .. Restaure! \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans Local [20/01/2010|21:46] C:\Users\ACER\AppData\Local\Application Data [20/01/2010|23:43] C:\Users\ACER\AppData\Local\GDIPFONTCACHEV1.DAT [28/01/2010|18:35] C:\Users\ACER\AppData\Local\Google [20/01/2010|21:46] C:\Users\ACER\AppData\Local\Historique [05/02/2010|08:57] C:\Users\ACER\AppData\Local\IconCache.db [04/02/2010|18:37] C:\Users\ACER\AppData\Local\Microsoft [20/01/2010|22:46] C:\Users\ACER\AppData\Local\Microsoft Help [28/01/2010|18:35] C:\Users\ACER\AppData\Local\Mozilla [05/02/2010|10:54] C:\Users\ACER\AppData\Local\Temp [20/01/2010|21:46] C:\Users\ACER\AppData\Local\Temporary Internet Files [20/01/2010|22:45] C:\Users\ACER\AppData\Local\VirtualStore --------------------\\ Tâches planifiées dans C:\Windows\tasks [05/02/2010 10:17][--a------] C:\Windows\tasks\Google Software Updater.job [05/02/2010 08:58][--ah-----] C:\Windows\tasks\SA.DAT [14/07/2009 05:53][--a------] C:\Windows\tasks\SCHEDLGU.TXT --------------------\\ Listing des dossiers dans C:\ProgramData [28/01/2010|21:11] C:\ProgramData\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6} [28/01/2010|18:37] C:\ProgramData\Adobe [14/07/2009|05:53] C:\ProgramData\Application Data [20/01/2010|22:38] C:\ProgramData\Avira [20/01/2010|21:46] C:\ProgramData\Bureau [14/07/2009|05:53] C:\ProgramData\Desktop [14/07/2009|05:53] C:\ProgramData\Documents [20/01/2010|21:46] C:\ProgramData\Favoris [14/07/2009|05:53] C:\ProgramData\Favorites [28/01/2010|18:34] C:\ProgramData\Google [28/01/2010|18:37] C:\ProgramData\Google Updater [28/01/2010|21:13] C:\ProgramData\Lavasoft [20/01/2010|21:46] C:\ProgramData\Menu D‚marrer [28/01/2010|18:33] C:\ProgramData\Microsoft [28/01/2010|20:55] C:\ProgramData\Microsoft Help [20/01/2010|21:46] C:\ProgramData\ModŠles [04/02/2010|16:15] C:\ProgramData\Spybot - Search & Destroy [14/07/2009|05:53] C:\ProgramData\Start Menu [14/07/2009|05:53] C:\ProgramData\Templates --------------------\\ Listing des dossiers dans C:\Program Files [28/01/2010|18:36] C:\Program Files\Adobe [20/01/2010|22:38] C:\Program Files\Avira [20/01/2010|22:39] C:\Program Files\CCleaner [28/01/2010|18:36] C:\Program Files\Common Files [14/07/2009|10:01] C:\Program Files\DVD Maker [20/01/2010|21:46] C:\Program Files\Fichiers communs [C:\Program Files\Common Files] [28/01/2010|18:33] C:\Program Files\Google [04/02/2010|18:33] C:\Program Files\IE AdBlock [28/01/2010|18:28] C:\Program Files\Internet Download Manager [05/02/2010|08:57] C:\Program Files\Internet Explorer [28/01/2010|18:37] C:\Program Files\Java [28/01/2010|18:51] C:\Program Files\JDownloader [28/01/2010|21:11] C:\Program Files\Lavasoft [28/01/2010|18:40] C:\Program Files\Microsoft [14/07/2009|10:01] C:\Program Files\Microsoft Games [20/01/2010|22:49] C:\Program Files\Microsoft Office [20/01/2010|22:49] C:\Program Files\Microsoft Visual Studio [20/01/2010|22:49] C:\Program Files\Microsoft Works [20/01/2010|22:49] C:\Program Files\Microsoft.NET [28/01/2010|18:40] C:\Program Files\Mozilla Firefox [05/02/2010|08:57] C:\Program Files\MSBuild [20/01/2010|22:54] C:\Program Files\MSECache [05/02/2010|08:57] C:\Program Files\Reference Assemblies [29/01/2010|11:57] C:\Program Files\Spybot - Search & Destroy [04/02/2010|17:13] C:\Program Files\trend micro [14/07/2009|05:53] C:\Program Files\Uninstall Information [14/07/2009|09:39] C:\Program Files\Windows Defender [14/07/2009|10:01] C:\Program Files\Windows Journal [28/01/2010|18:40] C:\Program Files\Windows Live [28/01/2010|18:40] C:\Program Files\Windows Live SkyDrive [14/07/2009|09:39] C:\Program Files\Windows Mail [28/01/2010|19:03] C:\Program Files\Windows Media Player [20/01/2010|21:46] C:\Program Files\Windows NT [14/07/2009|09:39] C:\Program Files\Windows Photo Viewer [14/07/2009|05:52] C:\Program Files\Windows Portable Devices [14/07/2009|09:39] C:\Program Files\Windows Sidebar [20/01/2010|22:36] C:\Program Files\WinRAR [05/02/2010|09:10] C:\Program Files\ZHPDiag --------------------\\ Listing des dossiers dans C:\Program Files\Common Files [28/01/2010|18:36] C:\Program Files\Common Files\Adobe [20/01/2010|22:49] C:\Program Files\Common Files\DESIGNER [28/01/2010|18:40] C:\Program Files\Common Files\microsoft shared [28/01/2010|18:33] C:\Program Files\Common Files\PX Storage Engine [14/07/2009|03:37] C:\Program Files\Common Files\Services [14/07/2009|03:37] C:\Program Files\Common Files\SpeechEngines [14/07/2009|09:39] C:\Program Files\Common Files\System [28/01/2010|18:34] C:\Program Files\Common Files\Windows Live --------------------\\ Process ( 53 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-02-05 10:54:42 Windows 6.1.7600 NTFS detected NTDLL code modification: ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! [F:13][D:3]-> C:\Users\ACER\AppData\Local\Temp [F:38][D:1]-> C:\Users\ACER\AppData\Roaming\MICROS~1\Windows\Cookies [F:529][D:4]-> C:\Users\ACER\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5 [F:1][D:1]-> C:\$Recycle.Bin 1 - "C:\Lop SD\LopR_1.txt" - 05/02/2010|10:20 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - 05/02/2010|10:55 - Option : [2] --------------------\\ Fin du rapport a 10:55:01 [ UAC => 1 ]

voici le rapport Lop S&D : --------------------\\ Lop S&D 4.2.5-0 XP/Vista Microsoft Windows 7 Édition Intégrale ( v6.1.7600 ) X86-based PC ( Multiprocessor Free : Genuine Intel® CPU T2060 @ 1.60GHz ) BIOS : Ver 1.00PARTTBLP USER : ACER ( Administrator ) BOOT : Normal boot C:\ (Local Disk) - NTFS - Total:149 Go (Free:107 Go) D:\ (CD or DVD) E:\ (Local Disk) - NTFS - Total:232 Go (Free:61 Go) "C:\Lop SD" ( MAJ : 19-12-2008|23:40 ) Option : [1] ( 05/02/2010|10:19 ) [ UAC => 0 ] --------------------\\ Listing des dossiers dans Local [20/01/2010|21:46] C:\Users\ACER\AppData\Local\Application Data [20/01/2010|23:43] C:\Users\ACER\AppData\Local\GDIPFONTCACHEV1.DAT [28/01/2010|18:35] C:\Users\ACER\AppData\Local\Google [20/01/2010|21:46] C:\Users\ACER\AppData\Local\Historique [05/02/2010|08:57] C:\Users\ACER\AppData\Local\IconCache.db [04/02/2010|18:37] C:\Users\ACER\AppData\Local\Microsoft [20/01/2010|22:46] C:\Users\ACER\AppData\Local\Microsoft Help [28/01/2010|18:35] C:\Users\ACER\AppData\Local\Mozilla [05/02/2010|10:19] C:\Users\ACER\AppData\Local\Temp [20/01/2010|21:46] C:\Users\ACER\AppData\Local\Temporary Internet Files [20/01/2010|22:45] C:\Users\ACER\AppData\Local\VirtualStore --------------------\\ Tâches planifiées dans C:\Windows\tasks [05/02/2010 10:17][--a------] C:\Windows\tasks\Google Software Updater.job [05/02/2010 08:58][--ah-----] C:\Windows\tasks\SA.DAT [14/07/2009 05:53][--a------] C:\Windows\tasks\SCHEDLGU.TXT --------------------\\ Listing des dossiers dans C:\ProgramData [28/01/2010|21:11] C:\ProgramData\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6} [28/01/2010|18:37] C:\ProgramData\Adobe [14/07/2009|05:53] C:\ProgramData\Application Data [20/01/2010|22:38] C:\ProgramData\Avira [20/01/2010|21:46] C:\ProgramData\Bureau [14/07/2009|05:53] C:\ProgramData\Desktop [14/07/2009|05:53] C:\ProgramData\Documents [20/01/2010|21:46] C:\ProgramData\Favoris [14/07/2009|05:53] C:\ProgramData\Favorites [28/01/2010|18:34] C:\ProgramData\Google [28/01/2010|18:37] C:\ProgramData\Google Updater [28/01/2010|21:13] C:\ProgramData\Lavasoft [20/01/2010|21:46] C:\ProgramData\Menu D‚marrer [28/01/2010|18:33] C:\ProgramData\Microsoft [28/01/2010|20:55] C:\ProgramData\Microsoft Help [20/01/2010|21:46] C:\ProgramData\ModŠles [04/02/2010|16:15] C:\ProgramData\Spybot - Search & Destroy [14/07/2009|05:53] C:\ProgramData\Start Menu [14/07/2009|05:53] C:\ProgramData\Templates --------------------\\ Listing des dossiers dans C:\Program Files [28/01/2010|18:36] C:\Program Files\Adobe [20/01/2010|22:38] C:\Program Files\Avira [20/01/2010|22:39] C:\Program Files\CCleaner [28/01/2010|18:36] C:\Program Files\Common Files [14/07/2009|10:01] C:\Program Files\DVD Maker [20/01/2010|21:46] C:\Program Files\Fichiers communs [C:\Program Files\Common Files] [28/01/2010|18:33] C:\Program Files\Google [04/02/2010|18:33] C:\Program Files\IE AdBlock [28/01/2010|18:28] C:\Program Files\Internet Download Manager [05/02/2010|08:57] C:\Program Files\Internet Explorer [28/01/2010|18:37] C:\Program Files\Java [28/01/2010|18:51] C:\Program Files\JDownloader [28/01/2010|21:11] C:\Program Files\Lavasoft [28/01/2010|18:40] C:\Program Files\Microsoft [14/07/2009|10:01] C:\Program Files\Microsoft Games [20/01/2010|22:49] C:\Program Files\Microsoft Office [20/01/2010|22:49] C:\Program Files\Microsoft Visual Studio [20/01/2010|22:49] C:\Program Files\Microsoft Works [20/01/2010|22:49] C:\Program Files\Microsoft.NET [28/01/2010|18:40] C:\Program Files\Mozilla Firefox [05/02/2010|08:57] C:\Program Files\MSBuild [20/01/2010|22:54] C:\Program Files\MSECache [05/02/2010|08:57] C:\Program Files\Reference Assemblies [29/01/2010|11:57] C:\Program Files\Spybot - Search & Destroy [04/02/2010|17:13] C:\Program Files\trend micro [14/07/2009|05:53] C:\Program Files\Uninstall Information [14/07/2009|09:39] C:\Program Files\Windows Defender [14/07/2009|10:01] C:\Program Files\Windows Journal [28/01/2010|18:40] C:\Program Files\Windows Live [28/01/2010|18:40] C:\Program Files\Windows Live SkyDrive [14/07/2009|09:39] C:\Program Files\Windows Mail [28/01/2010|19:03] C:\Program Files\Windows Media Player [20/01/2010|21:46] C:\Program Files\Windows NT [14/07/2009|09:39] C:\Program Files\Windows Photo Viewer [14/07/2009|05:52] C:\Program Files\Windows Portable Devices [14/07/2009|09:39] C:\Program Files\Windows Sidebar [20/01/2010|22:36] C:\Program Files\WinRAR [05/02/2010|09:10] C:\Program Files\ZHPDiag --------------------\\ Listing des dossiers dans C:\Program Files\Common Files [28/01/2010|18:36] C:\Program Files\Common Files\Adobe [20/01/2010|22:49] C:\Program Files\Common Files\DESIGNER [28/01/2010|18:40] C:\Program Files\Common Files\microsoft shared [28/01/2010|18:33] C:\Program Files\Common Files\PX Storage Engine [14/07/2009|03:37] C:\Program Files\Common Files\Services [14/07/2009|03:37] C:\Program Files\Common Files\SpeechEngines [14/07/2009|09:39] C:\Program Files\Common Files\System [28/01/2010|18:34] C:\Program Files\Common Files\Windows Live --------------------\\ Process ( 53 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-02-05 10:20:15 Windows 6.1.7600 NTFS detected NTDLL code modification: ZwEnumerateKey 0 != 116, ZwQueryKey 0 != 244, ZwOpenKey 0 != 182, ZwClose 0 != 50, ZwEnumerateValueKey 0 != 119, ZwQueryValueKey 0 != 266, ZwOpenFile 0 != 179, ZwQueryDirectoryFile 0 != 223, ZwQuerySystemInformation 0 != 261Initialization error --------------------\\ Recherche d'autres infections Aucune autre infection trouvée ! [F:13][D:3]-> C:\Users\ACER\AppData\Local\Temp [F:37][D:1]-> C:\Users\ACER\AppData\Roaming\MICROS~1\Windows\Cookies [F:453][D:4]-> C:\Users\ACER\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5 [F:1][D:1]-> C:\$Recycle.Bin 1 - "C:\Lop SD\LopR_1.txt" - 05/02/2010|10:20 - Option : [1] --------------------\\ Fin du rapport a 10:20:38 [ UAC => 1 ]

Bonjour j'ai essayé de m'en sortir tous seul mais je c'est au dessus de mes compétence ... J'ai enormement de pub sur mon pc de ad.xtendmedia , CID ... J'ai telechargé ZHPDiag et fais un analyse . Je post le rapport si quelqu'un pourrait m aider Merci d avance Rapport de ZHPDiag v1.25.10 par Nicolas Coolman Run by ACER at 05/02/2010 09:08:50 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html ---\\ Web Browser MSIE: Internet Explorer v8.0.7600.16385 MFIE: Mozilla Firefox (3.6) ---\\ System Information Platform : Windows 7 Ultimate (6.1.7600) Processor: x86 Family 6 Model 14 Stepping 12, GenuineIntel Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 2038 MB (38% free) System drive C: has 107 GB (72%) free of 149 GB ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 107 Go of 149 Go) D:\ CD-ROM drive (Not Inserted) ---\\ Processus lancés [MD5.29680A793F690EEF4AAA68479D2A6DF8] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [MD5.5D24868CAC87DCD70C5B71101D39B0DE] - (.Google Inc. - Google Quick Search Box.) -- C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe [MD5.452FA961163EF4AEE4815796A13AB2CF] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [MD5.52BA0BE41C086035241C4CCB6526AE41] - (.Pas de propriétaire - WindowsApplication1.) -- C:\Bucks.exe [MD5.0DB55A06A2CCBC1A6FE272A091E1D87C] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [MD5.C135072F1DFFCFAFD0026CDEDCFC92C8] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\ccleaner.exe [MD5.18B4B12358EFCF68D76812058A26181F] - (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe [MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [MD5.EA6EADF6314E43783BA8EEE79F93F73C] - (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe [MD5.BBA1A5B86134F496B926DDAF247DB871] - (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe [MD5.9015BC03F62940527EC92D45EE89E46F] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [MD5.B8720A787C1223492E6F319465E996CE] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [MD5.54A47F6B5E09A77E61649109C6A08866] - (.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe [MD5.D88040F816FDA31C3B466F0FA0918F29] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [MD5.ABDDBCCDF5B03B03FFDE3CE3CB1A4184] - (.Google - gusvc.) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [MD5.1B78333441B6F23CE23D3C1C031B28DB] - (.Lavasoft - Ad-Aware Service Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [MD5.FE2AA5A684B0DD9B1FAE57B7817C198B] - (.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [MD5.F42309C4191C506B71DB5D1126D26318] - (.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe [MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [MD5.49B6DD6AB3715B7A67965F17194E98A9] - (.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\System32\spoolsv.exe [MD5.4C287F9069FEDBD791178876EE9DE536] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\Windows\system32\sppsvc.exe [MD5.622D95520182F6D3D05310D5810CA8B3] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) -- C:\Windows\system32\SearchIndexer.exe ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=userinit.exe F2 - REG:system.ini: Shell=explorer.exe ---\\ Pages de démarrage d'Internet Explorer (R0) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 ---\\ Pages de recherche d'Internet Explorer (R1) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 ---\\ Internet Explorer URLSearchHook (R3) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Tonec Inc. - IDM BHO Module.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: IE AdBlock - {46B37057-5BA8-4014-B28D-6448FD171A3E} . (.CatenaLogic - Internet Explorer Browser Extension to bloc.) -- C:\Program Files\IE AdBlock\IE AdBlock.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: IE AdBlock - {BE1B1F92-AC2E-4AFB-BC9D-07FE272C1373} . (.CatenaLogic - Internet Explorer Browser Extension to bloc.) -- C:\Program Files\IE AdBlock\IE AdBlock.dll ---\\ Applications démarrées automatiquement par le registre (O4) O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [Google Quick Search Box] . (.Google Inc. - Google Quick Search Box.) -- C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKCU\..\Run: [Firefox] . (.Pas de propriétaire - WindowsApplication1.) -- C:\Bucks.exe O4 - HKCU\..\Run: [iDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ccleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\ccleaner.exe O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\Run: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\Run: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: Add to Google Photos Screensa&ver - (.not file.) - C:\Windows\system32\GPhotos.scr\200 O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE O8 - Extra context menu item: Google Sidewiki... - (.not file.) - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll\cmsidewiki.html O8 - Extra context menu item: Télécharger avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEExt.htm O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEGetVL.htm O8 - Extra context menu item: Télécharger tous les liens avec IDM . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Internet Download Manager\IEGetAll.htm ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.not file.) - ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (.not file.) ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: (Lavasoft Ad-Aware Service) . (.Lavasoft - Ad-Aware Service Application.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Google Software Updater.job ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r42.) -- C:\Windows\system32\Macromed\Flash\Flash10d.ocx ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for RootKit Detection.) - C:\Windows\system32\DRIVERS\avipbb.sys O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\system32\DRIVERS\ssmdrv.sys ---\\ Logiciels installés (O42) O42 - Logiciel: 2007 Microsoft Office Suite Service Pack 1 (SP1) - (.Microsoft.) O42 - Logiciel: Acer OrbiCam - (.Pas de propriétaire.) O42 - Logiciel: Ad-Aware - (.Lavasoft.) O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) O42 - Logiciel: Adobe Reader 9.1 - Français - (.Adobe Systems Incorporated.) O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) O42 - Logiciel: CCleaner - (.Piriform.) O42 - Logiciel: Complément Microsoft Enregistrer en tant que PDF ou XPS pour programmes Microsoft Office 2007 - (.Microsoft Corporation.) O42 - Logiciel: Google Toolbar for Firefox - (.Google Inc..) O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) O42 - Logiciel: IE AdBlock - (.CatenaLogic.) O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) O42 - Logiciel: JDownloader - (.AppWork UG (haftungsbeschränkt).) O42 - Logiciel: Java 6 Update 18 - (.Sun Microsystems, Inc..) O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) O42 - Logiciel: MSVCRT - (.Microsoft.) O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 - (.Microsoft Corporation.) O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) O42 - Logiciel: Mozilla Firefox (3.6) - (.Mozilla.) O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) O42 - Logiciel: Picasa 3 - (.Google, Inc..) O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB951550) - (.Microsoft.) O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB951944) - (.Microsoft.) O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB973704) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB973593) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office OneNote 2007 (KB950130) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office Outlook 2007 (KB972363) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB957789) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB969693) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB969613) - (.Microsoft.) O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) O42 - Logiciel: Update for Microsoft Office InfoPath 2007 (KB976416) - (.Microsoft.) O42 - Logiciel: Update for Microsoft Office Word 2007 (KB974561) - (.Microsoft.) O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (kb977839) - (.Microsoft.) O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) ---\\ Contenu des dossiers Fichiers Communs (O43) O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Avira O43 - CFD:Common File Directory ----D- C:\Program Files\CCleaner O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files O43 - CFD:Common File Directory ----D- C:\Program Files\DVD Maker O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers communs O43 - CFD:Common File Directory ----D- C:\Program Files\Google O43 - CFD:Common File Directory ----D- C:\Program Files\IE AdBlock O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Download Manager O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer O43 - CFD:Common File Directory ----D- C:\Program Files\Java O43 - CFD:Common File Directory ----D- C:\Program Files\JDownloader O43 - CFD:Common File Directory ----D- C:\Program Files\Lavasoft O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Games O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild O43 - CFD:Common File Directory ----D- C:\Program Files\MSECache O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies O43 - CFD:Common File Directory ----D- C:\Program Files\Spybot - Search & Destroy O43 - CFD:Common File Directory ----D- C:\Program Files\trend micro O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Defender O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Journal O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Mail O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Photo Viewer O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Portable Devices O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Sidebar O43 - CFD:Common File Directory ----D- C:\Program Files\WinRAR O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\DESIGNER O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\microsoft shared O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\PX Storage Engine O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Services O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\SpeechEngines O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\System O43 - CFD:Common File Directory ----D- C:\Program Files\Common Files\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.3A40C21F4F1ED2BDD7DF2BC81447D859] - 05/02/2010 - 09:03:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\PerfStringBackup.INI O44 - LFC:[MD5.13B61C4DDD6C667DF554943D67908F66] - 05/02/2010 - 09:03:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfc009.dat O44 - LFC:[MD5.EB6C41CA6C8FAC57F931ADB236B98CE0] - 05/02/2010 - 09:03:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfc00C.dat O44 - LFC:[MD5.AEED4409F42936E418574E38B52EF266] - 05/02/2010 - 09:03:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfh009.dat O44 - LFC:[MD5.D6426AE33601C4FA5303B7F1A95E4EF6] - 05/02/2010 - 09:03:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\perfh00C.dat O44 - LFC:[MD5.00000000000000000000000000000000] - 05/02/2010 - 09:02:58 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\WindowsUpdate.log O44 - LFC:[MD5.3FFDB54F3733AA73A5E3B6F1466081B1] - 05/02/2010 - 08:58:28 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\bootstat.dat O44 - LFC:[MD5.7E7125905CA10157B93DBB45DA5D1AE6] - 05/02/2010 - 08:58:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\aaw7boot.log O44 - LFC:[MD5.B10B3A616AE361BB83CF293735186254] - 04/02/2010 - 17:46:12 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\ZHPExportRegistry-04-02-2010-17-46-12.txt O44 - LFC:[MD5.1DA93C4B323B34E38F5E7F43D9C65788] - 28/01/2010 - 21:13:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\lsdelete.exe O44 - LFC:[MD5.DF0018CD28CC8C9288EFA1E35EBB1EEE] - 28/01/2010 - 20:31:36 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\UsbFix.txt O44 - LFC:[MD5.7F10166E73D04C73C59A561F90EEC8E9] - 28/01/2010 - 19:04:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\FNTCACHE.DAT O44 - LFC:[MD5.E0BBCEC12A1DE6E25C612AD205B719B4] - 28/01/2010 - 18:38:01 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\deploytk.dll O44 - LFC:[MD5.AD3A2226B72F6E161425254276670117] - 28/01/2010 - 18:38:01 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\java.exe O44 - LFC:[MD5.B427962BDB196D132AF50F6C7B78380D] - 28/01/2010 - 18:38:01 ---A- . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Windows\System32\javaw.exe O44 - LFC:[MD5.C8824405C4E358A2FE4D97C83101079A] - 28/01/2010 - 18:38:01 ---A- . (.Sun Microsystems, Inc. - Java Web Start Launcher.) -- C:\Windows\System32\javaws.exe O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 28/01/2010 - 18:35:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\nsreg.dat O44 - LFC:[MD5.C3727A0867CFC3E057080C321DB58A15] - 20/01/2010 - 21:25:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\System32\license.rtf O44 - LFC:[MD5.550B3178203EB1AA0EDDD9D9FE8FA1F9] - 20/01/2010 - 21:20:47 RSHA- . (.Pas de propriétaire - Pas de description.) -- C:\BOOTSECT.BAK O44 - LFC:[MD5.52BA0BE41C086035241C4CCB6526AE41] - 06/01/2010 - 13:41:57 --HA- . (.Pas de propriétaire - WindowsApplication1.) -- C:\bucks.exe ---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"wdmaud.drv"="Pilote de fonction UAA 1.1 Microsoft pour High Definition Audio" . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - "SecurityProviders"=credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - "SecurityProviders"=credssp.dll ---\\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ---\\ Liste des Drivers Système (SDL) (O58) O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys O58 - SDL:[MD5.0C676BC278D5B59FF5ABD57BBE9123F2] - 14/07/2009 - 02:26:17 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys O58 - SDL:[MD5.7C7B5EE4B7B822EC85321FE23A27DB33] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys O58 - SDL:[MD5.0D40BCF52EA90FC7DF2AEAB6503DEA44] - 14/07/2009 - 02:26:15 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys O58 - SDL:[MD5.2101A86C25C154F8314B24EF49D7FBC2] - 14/07/2009 - 02:26:15 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys O58 - SDL:[MD5.EA43AF0C423FF267355F74E7A53BDABA] - 14/07/2009 - 02:26:15 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\system32\drivers\amdsbs.sys O58 - SDL:[MD5.B81C2B5616F6420A9941EA093A92B150] - 14/07/2009 - 02:26:15 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys O58 - SDL:[MD5.2932004F49677BD84DBC72EDB754FFB3] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys O58 - SDL:[MD5.5D6F36C46FD283AE1B57BD2E9FEB0BC7] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys O58 - SDL:[MD5.76BAB0C824E2D05B940C4DD40A9B08BF] - 13/07/2009 - 23:02:46 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athr.sys O58 - SDL:[MD5.14FE36D8F2C6A2435275338D061A0B66] - 25/11/2009 - 11:19:02 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys O58 - SDL:[MD5.AD9BD66A862116E79CB45BB6BE46055F] - 30/03/2009 - 09:32:47 ---A- . (.Avira GmbH - Avira Driver for RootKit Detection.) -- C:\Windows\system32\drivers\avipbb.sys O58 - SDL:[MD5.BD8869EB9CDE6BBE4508D869929869EE] - 13/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gigabit Ethernet..) -- C:\Windows\system32\drivers\b57nd60x.sys O58 - SDL:[MD5.82DD21BFA8BBE0A3A3833A1BD8E86158] - 13/07/2009 - 23:02:49 ---A- . (.Broadcom Corporation - Pilote Ethernet 5.1 NDIS Broadcom Corporation.) -- C:\Windows\system32\drivers\bcm4sbxp.sys O58 - SDL:[MD5.D55F57BF8717C0C0870C771D6E921AF8] - 27/12/2006 - 16:57:30 ---A- . (.Bison Electronics. Inc. - Universal Serial Bus Camera Driver.) -- C:\Windows\system32\drivers\BisonCam.sys O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 13/07/2009 - 23:53:28 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys O58 - SDL:[MD5.845B8CE732E67F3B4133164868C666EA] - 14/07/2009 - 01:57:25 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 13/07/2009 - 23:53:32 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 13/07/2009 - 23:53:33 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys O58 - SDL:[MD5.1A231ABEC60FD316EC54C66715543CEC] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbdx.sys O58 - SDL:[MD5.C537B1DB64D495B9B4717B4D6D9EDBF2] - 14/07/2009 - 02:26:21 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys O58 - SDL:[MD5.8B30250D573A8F6B4BD23195160D8707] - 14/07/2009 - 02:20:28 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys O58 - SDL:[MD5.0ED67910C8C326796FAA00B2BF6D9D3C] - 14/07/2009 - 02:20:28 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys O58 - SDL:[MD5.8EFD7F0094B2015D836D9DD87F77DC44] - 16/02/2006 - 10:55:12 ---A- . (.ENE Technology Inc. - ENE PCI Memory Stick Card Reader Driver.) -- C:\Windows\system32\drivers\EMS7SK.sys O58 - SDL:[MD5.9C7487253AAD6BF61F9BC83D50E32CCC] - 25/10/2006 - 21:36:48 ---A- . (.ENE Technology Inc. - ENE PCI Secure Digital / MMC Card Reader Driver.) -- C:\Windows\system32\drivers\ESD7SK.sys O58 - SDL:[MD5.A18AD596FC91A05EA61945D856DD86DC] - 16/02/2006 - 10:55:16 ---A- . (.ENE Technology Inc. - ENE PCI SmartMedia / XD Card Reader Driver.) -- C:\Windows\system32\drivers\ESM7SK.sys O58 - SDL:[MD5.024E1B5CAC09731E4D868E64DBFB4AB0] - 13/07/2009 - 23:02:48 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbdx.sys O58 - SDL:[MD5.C44E3C2BAB6837DB337DDEE7544736DB] - 13/07/2009 - 23:54:14 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys O58 - SDL:[MD5.295FDC419039090EB8B49FFDBB374549] - 14/07/2009 - 02:20:28 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys O58 - SDL:[MD5.934AF4D7C5F457B9F0743F4299B77B67] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\system32\drivers\iaStorV.sys O58 - SDL:[MD5.AD626F6964F4D364D226C39E06872DD3] - 10/06/2009 - 22:19:30 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\system32\drivers\igdkmd32.sys O58 - SDL:[MD5.4173FF5708F3236CF25195FECD742915] - 14/07/2009 - 02:20:36 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys O58 - SDL:[MD5.713CD5267ABFB86FE90A72E384E82A38] - 23/09/2009 - 13:55:23 ---A- . (.Lavasoft AB - Boot Driver.) -- C:\Windows\system32\drivers\Lbd.sys O58 - SDL:[MD5.EB119A53CCF2ACC000AC71B065B78FEF] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys O58 - SDL:[MD5.8ADE1C877256A22E49B75D1CC9161F9C] - 14/07/2009 - 02:20:37 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys O58 - SDL:[MD5.DC9DC3D3DAA0E276FD2EC262E38B11E9] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys O58 - SDL:[MD5.0A036C7D7CAB643A7F07135AC47E0524] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys O58 - SDL:[MD5.0FFF5B045293002AB38EB1FD1FC2FB74] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7 for x86.) -- C:\Windows\system32\drivers\megasas.sys O58 - SDL:[MD5.DCBAB2920C75F390CAF1D29F675D03D6] - 14/07/2009 - 02:20:36 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys O58 - SDL:[MD5.1D85C4B390B0EE09C7A46B91EFB2C097] - 14/07/2009 - 02:20:44 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys O58 - SDL:[MD5.3F3D04B1D08D43C16EA7963954EC768D] - 14/07/2009 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys O58 - SDL:[MD5.C99F251A5DE63C6F129CF71933ACED0F] - 14/07/2009 - 02:20:44 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys O58 - SDL:[MD5.49452BFCEC22F36A7A9B9C2181BC3042] - 20/11/2008 - 20:19:06 ---A- . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\system32\drivers\pxhelp20.sys O58 - SDL:[MD5.AB95ECF1F6659A60DDC166D8315B0751] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys O58 - SDL:[MD5.B4DD51DD25182244B86737DC51AF2270] - 14/07/2009 - 02:19:04 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/07/2009 - 21:50:20 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys O58 - SDL:[MD5.A9F0486851BECB6DDA1D89D381E71055] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys O58 - SDL:[MD5.3727097B55738E2F554972C3BE5BC1AA] - 14/07/2009 - 02:19:04 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys O58 - SDL:[MD5.3AD0362CF68DE3AC500E981700242CCA] - 11/05/2009 - 09:11:52 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys O58 - SDL:[MD5.DB32D325C192B801DF274BFD12A7E72B] - 14/07/2009 - 02:19:04 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys O58 - SDL:[MD5.E43574F6A56A0EE11809B48C09E4FD3C] - 14/07/2009 - 02:19:10 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys O58 - SDL:[MD5.9DFA0CC2F8855A04816729651175B631] - 14/07/2009 - 02:19:11 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys O58 - SDL:[MD5.E00FDFAFF025E94F9821153750C35A6D] - 13/07/2009 - 23:13:45 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\system32\drivers\VSTAZL3.SYS O58 - SDL:[MD5.BC0C7EA89194C299F051C24119000E17] - 13/07/2009 - 23:13:45 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\system32\drivers\VSTCNXT3.SYS O58 - SDL:[MD5.CEB4E3B6890E1E42DCA6694D9E59E1A0] - 13/07/2009 - 23:13:46 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\system32\drivers\VSTDPV3.SYS O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\ANSI.SYS O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 13/07/2009 - 22:40:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\country.sys O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 13/07/2009 - 22:40:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\HIMEM.SYS O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 13/07/2009 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEY01.SYS O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 13/07/2009 - 22:40:43 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\KEYBOARD.SYS O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 13/07/2009 - 22:40:23 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS.SYS O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 13/07/2009 - 22:40:31 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS404.SYS O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 13/07/2009 - 22:40:35 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS411.SYS O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 13/07/2009 - 22:40:39 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS412.SYS O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 13/07/2009 - 22:40:27 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTDOS804.SYS O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 13/07/2009 - 22:40:11 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO.SYS O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 13/07/2009 - 22:40:15 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO404.SYS O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 13/07/2009 - 22:40:17 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO411.SYS O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 13/07/2009 - 22:40:19 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO412.SYS O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 13/07/2009 - 22:40:13 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\Windows\system32\NTIO804.SYS ---\\ Liste des outils de nettoyage (LATC) (O63) O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) O63 - Logiciel: ZHPDiag 1.25 - (.Nicolas Coolman.) ---\\ Liste des services Legacy (LALS) (O64) O64 - Services: - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio (avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO O64 - Services: - C:\Windows\system32\DRIVERS\avgntflt.sys - avgntflt (avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: - C:\Windows\system32\DRIVERS\avipbb.sys - avipbb (avipbb) .(.Avira GmbH - Avira Driver for RootKit Detection.) - LEGACY_AVIPBB O64 - Services: - C:\Windows\system32\DRIVERS\Lbd.sys - Lbd (Lbd) .(.Lavasoft AB - Boot Driver.) - LEGACY_LBD O64 - Services: - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: - C:\Windows\system32\Drivers\SECDRV.sys - (.not file.) - Security Driver (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: - C:\Windows\system32\DRIVERS\ssmdrv.sys - ssmdrv (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV O64 - Services: - C:\Windows\system32\DRIVERS\ssmdrv.sys - ssmdrv (ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV End of the scan (410 lines)