Aller au contenu

RaiZdOe

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    22

  • Inscription

  • Dernière visite

RaiZdOe's Achievements

Member

Member (4/12)

0

Réputation sur la communauté

  1. RaiZdOe
    Ok pour l'antivirus, je vais essayé d'en obtenir un gratuit. Pour ce qui est des fichiers, impossible de trouver le "SetWallpaper.cmd " quand à "covcnt.exe " quand je vais dans le dossier system32, je le vois bien il est là, par contre quand je parcoure mon ordi depuis le site virustotal le "covcnt.exe " n'apparait pas dans la liste... Que faire ? RaiZdOe.
  2. RaiZdOe
    Combo fix passé, problème toujours présent dont voici le rapport : ComboFix 11-12-19.03 - Raphael 20/12/2011 12:46:19.1.8 - x64 Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.4021.2343 [GMT 1:00] Lancé depuis: c:\users\Raphael\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Lavasoft Ad-Watch Live! *Disabled/Updated* {24938260-56EE-C1E5-047B-DC2BDD234BAB} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Un nouveau point de restauration a été créé . . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\FullRemove.exe c:\users\Raphael\AppData\Roaming\PropMgrAsync c:\users\Raphael\AppData\Roaming\PropMgrAsync\PropMgrAsync.cfg c:\users\Raphael\AppData\Roaming\PropMgrAsync\PropMgrAsync.log c:\users\Raphael\AppData\Roaming\Raphaellog.dat c:\users\Raphael\AppData\Roaming\test-bs-nofud5.exe c:\users\Raphael\AppData\Roaming\Win-32\winl32.exe D:\install.exe . . ((((((((((((((((((((((((((((( Fichiers créés du 2011-11-20 au 2011-12-20 )))))))))))))))))))))))))))))))))))) . . 2011-12-20 11:53 . 2011-12-20 11:53 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-12-20 08:08 . 2011-11-21 11:40 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7075C546-0F8D-424B-A511-5A831C58C5DA}\mpengine.dll 2011-12-19 22:12 . 2011-12-20 09:34 -------- d-----w- C:\UsbFix 2011-12-19 21:30 . 2011-12-20 10:17 512 ----a-w- C:\PhysicalDisk0_MBR.bin 2011-12-19 21:27 . 2011-12-20 11:25 -------- d-----w- C:\ZHP 2011-12-19 21:25 . 2011-12-20 11:23 -------- d-----w- c:\program files (x86)\ZHPDiag 2011-12-19 13:12 . 2011-12-19 13:12 -------- d-----w- c:\users\Raphael\AppData\Roaming\Malwarebytes 2011-12-19 13:12 . 2011-12-19 13:12 -------- d-----w- c:\programdata\Malwarebytes 2011-12-19 13:11 . 2011-12-19 13:12 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2011-12-19 13:11 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-12-19 00:00 . 2011-12-18 23:19 16432 ----a-w- c:\windows\system32\lsdelete.exe 2011-12-18 23:19 . 2011-12-18 23:19 55384 ----a-w- c:\windows\system32\drivers\SBREDrv.sys 2011-12-18 23:12 . 2011-12-18 23:12 -------- d-----w- c:\program files (x86)\Lavasoft 2011-12-18 23:12 . 2011-12-18 23:13 -------- d-----w- c:\programdata\Lavasoft 2011-12-16 19:50 . 2011-11-21 04:04 134104 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll 2011-12-16 19:50 . 2011-11-21 04:04 89048 ----a-w- c:\program files (x86)\Mozilla Firefox\libEGL.dll 2011-12-16 19:50 . 2011-11-21 04:04 801752 ----a-w- c:\program files (x86)\Mozilla Firefox\mozsqlite3.dll 2011-12-16 19:50 . 2011-11-21 04:04 478168 ----a-w- c:\program files (x86)\Mozilla Firefox\libGLESv2.dll 2011-12-16 19:50 . 2011-11-21 04:04 1989592 ----a-w- c:\program files (x86)\Mozilla Firefox\mozjs.dll 2011-12-16 19:50 . 2011-11-21 04:04 15832 ----a-w- c:\program files (x86)\Mozilla Firefox\mozalloc.dll 2011-12-16 19:50 . 2011-11-21 01:04 2106216 ----a-w- c:\program files (x86)\Mozilla Firefox\D3DCompiler_43.dll 2011-12-16 19:50 . 2011-11-21 01:04 1998168 ----a-w- c:\program files (x86)\Mozilla Firefox\d3dx9_43.dll 2011-12-15 13:45 . 1997-11-19 14:49 303616 ----a-w- c:\windows\IsUninst.exe 2011-12-14 10:31 . 2011-12-14 10:31 -------- d-----w- c:\users\Raphael\AppData\Local\Nik Software 2011-12-14 10:31 . 2011-12-14 10:31 -------- d-----w- c:\program files\Nik Software 2011-12-14 10:18 . 2011-12-14 10:18 -------- d-----w- c:\users\Raphael\AppData\Local\VS Revo Group 2011-12-14 10:18 . 2009-12-30 09:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys 2011-12-14 10:18 . 2011-12-14 10:18 -------- d-----w- c:\program files\VS Revo Group 2011-12-14 09:39 . 2011-12-14 09:39 -------- d-----w- c:\programdata\Nik Software 2011-12-14 08:54 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll 2011-11-30 14:30 . 2011-12-03 16:05 -------- d-----w- c:\users\Raphael\riotsGamesLogs 2011-11-30 14:28 . 2011-11-30 14:28 -------- d-----w- c:\users\Raphael\AppData\Roaming\LolClient 2011-11-30 13:47 . 2008-07-12 07:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll 2011-11-30 13:47 . 2008-07-12 07:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll 2011-11-30 13:47 . 2008-07-12 07:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll 2011-11-30 09:00 . 2011-12-03 17:14 -------- d-----w- c:\users\Raphael\AppData\Local\PMB Files 2011-11-30 08:59 . 2011-12-03 17:14 -------- d-----w- c:\programdata\PMB Files 2011-11-30 08:59 . 2011-11-30 08:59 -------- d-----w- c:\program files (x86)\Pando Networks 2011-11-30 03:57 . 2011-11-30 03:57 -------- d-----w- c:\users\Raphael\AppData\Local\eSupport.com 2011-11-30 03:57 . 2011-11-30 03:57 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS 2011-11-25 22:08 . 2011-11-25 22:08 158056 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10139.bin 2011-11-24 22:13 . 2011-12-13 20:44 -------- d-----w- c:\program files (x86)\Steam 2011-11-24 11:18 . 2011-11-24 11:30 -------- d-----w- c:\program files (x86)\JDownloader 2011-11-22 23:01 . 2011-11-23 10:34 -------- d-----w- c:\users\Raphael\AppData\Local\ManyCam 2011-11-22 22:58 . 2011-11-23 10:40 -------- d-----w- c:\program files (x86)\Ask.com . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2011-12-20 11:25 . 2010-06-23 21:45 45056 ----a-w- c:\windows\system32\acovcnt.exe 2011-12-20 09:34 . 2011-12-20 09:33 423963438 ----a-w- C:\UsbFix_Upload_Me_RAPHAEL-PORTABL.zip 2011-12-14 10:07 . 2010-08-29 17:54 639312 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll 2011-11-18 07:17 . 2011-05-24 05:52 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2011-11-13 19:25 . 2011-11-01 16:12 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys 2011-11-03 01:19 . 2011-11-04 10:42 708608 ----a-w- c:\users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Crack_V3.exe 2011-11-03 01:17 . 2011-11-04 10:42 454656 ----a-w- c:\users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Avast Pro 6.0-CrackNoblacklist_v1.exe 2011-11-01 16:12 . 2011-11-01 16:12 53248 ----a-r- c:\users\Raphael\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe 2011-10-17 02:58 . 2011-10-17 02:58 10207232 ----a-w- c:\windows\system32\drivers\atikmdag.sys 2011-10-17 02:16 . 2011-10-17 02:16 24998912 ----a-w- c:\windows\system32\atio6axx.dll 2011-10-17 02:07 . 2011-10-17 02:07 159744 ----a-w- c:\windows\system32\atiapfxx.exe 2011-10-17 02:06 . 2011-10-17 02:06 736768 ----a-w- c:\windows\SysWow64\aticfx32.dll 2011-10-17 02:05 . 2010-07-07 01:53 867328 ----a-w- c:\windows\system32\aticfx64.dll 2011-10-17 02:03 . 2011-07-28 21:36 466944 ----a-w- c:\windows\system32\ATIDEMGX.dll 2011-10-17 02:02 . 2011-10-17 02:02 487936 ----a-w- c:\windows\system32\atieclxx.exe 2011-10-17 02:02 . 2011-10-17 02:02 204288 ----a-w- c:\windows\system32\atiesrxx.exe 2011-10-17 02:01 . 2011-10-17 02:01 120320 ----a-w- c:\windows\system32\atitmm64.dll 2011-10-17 02:00 . 2011-07-28 21:34 423424 ----a-w- c:\windows\system32\atipdl64.dll 2011-10-17 02:00 . 2011-10-17 02:00 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll 2011-10-17 02:00 . 2011-10-17 02:00 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll 2011-10-17 02:00 . 2011-10-17 02:00 21504 ----a-w- c:\windows\system32\atimuixx.dll 2011-10-17 02:00 . 2011-10-17 02:00 59392 ----a-w- c:\windows\system32\atiedu64.dll 2011-10-17 02:00 . 2011-10-17 02:00 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll 2011-10-17 02:00 . 2011-10-17 02:00 18837504 ----a-w- c:\windows\SysWow64\atioglxx.dll 2011-10-17 01:57 . 2011-10-17 01:57 4231680 ----a-w- c:\windows\SysWow64\atidxx32.dll 2011-10-17 01:47 . 2011-07-28 21:20 4960768 ----a-w- c:\windows\system32\atidxx64.dll 2011-10-17 01:44 . 2011-10-17 01:44 1113088 ----a-w- c:\windows\system32\atiumd6v.dll 2011-10-17 01:44 . 2011-10-17 01:44 1828864 ----a-w- c:\windows\SysWow64\atiumdmv.dll 2011-10-17 01:44 . 2011-01-05 02:32 4023296 ----a-w- c:\windows\system32\atiumd6a.dll 2011-10-17 01:39 . 2011-10-17 01:39 51200 ----a-w- c:\windows\system32\aticalrt64.dll 2011-10-17 01:39 . 2011-10-17 01:39 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll 2011-10-17 01:39 . 2011-10-17 01:39 44544 ----a-w- c:\windows\system32\aticalcl64.dll 2011-10-17 01:39 . 2011-10-17 01:39 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll 2011-10-17 01:39 . 2011-10-17 01:39 9809920 ----a-w- c:\windows\system32\aticaldd64.dll 2011-10-17 01:36 . 2011-10-17 01:36 4289024 ----a-w- c:\windows\SysWow64\atiumdag.dll 2011-10-17 01:36 . 2011-10-17 01:36 8390656 ----a-w- c:\windows\SysWow64\aticaldd.dll 2011-10-17 01:34 . 2011-10-17 01:34 4174848 ----a-w- c:\windows\SysWow64\atiumdva.dll 2011-10-17 01:31 . 2011-07-28 21:01 58880 ----a-w- c:\windows\system32\coinst.dll 2011-10-17 01:30 . 2011-01-05 02:27 5431808 ----a-w- c:\windows\system32\atiumd64.dll 2011-10-17 01:24 . 2011-07-28 20:54 479744 ----a-w- c:\windows\system32\atiadlxx.dll 2011-10-17 01:24 . 2011-10-17 01:24 335872 ----a-w- c:\windows\SysWow64\atiadlxy.dll 2011-10-17 01:23 . 2011-10-17 01:23 17408 ----a-w- c:\windows\system32\atig6pxx.dll 2011-10-17 01:23 . 2011-10-17 01:23 14336 ----a-w- c:\windows\SysWow64\atiglpxx.dll 2011-10-17 01:23 . 2011-10-17 01:23 14336 ----a-w- c:\windows\system32\atiglpxx.dll 2011-10-17 01:23 . 2011-10-17 01:23 39936 ----a-w- c:\windows\system32\atig6txx.dll 2011-10-17 01:23 . 2011-10-17 01:23 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll 2011-10-17 01:23 . 2011-10-17 01:23 317952 ----a-w- c:\windows\system32\drivers\atikmpag.sys 2011-10-17 01:22 . 2010-07-07 01:15 40960 ----a-w- c:\windows\system32\atiuxp64.dll 2011-10-17 01:22 . 2011-10-17 01:22 31744 ----a-w- c:\windows\SysWow64\atiuxpag.dll 2011-10-17 01:22 . 2010-07-07 01:14 38912 ----a-w- c:\windows\system32\atiu9p64.dll 2011-10-17 01:22 . 2011-10-17 01:22 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll 2011-10-17 01:21 . 2011-10-17 01:21 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll 2011-10-17 01:20 . 2011-10-17 01:20 54784 ----a-w- c:\windows\system32\atimpc64.dll 2011-10-17 01:20 . 2011-10-17 01:20 54784 ----a-w- c:\windows\system32\amdpcom64.dll 2011-10-17 01:20 . 2011-10-17 01:20 53760 ----a-w- c:\windows\SysWow64\atimpc32.dll 2011-10-17 01:20 . 2011-10-17 01:20 53760 ----a-w- c:\windows\SysWow64\amdpcom32.dll 2011-10-16 21:19 . 2011-10-16 21:19 66048 ----a-w- c:\windows\system32\OpenVideo64.dll 2011-10-16 21:19 . 2011-10-16 21:19 56832 ----a-w- c:\windows\SysWow64\OpenVideo.dll 2011-10-16 21:19 . 2011-10-16 21:19 16787456 ----a-w- c:\windows\system32\amdocl64.dll 2011-10-16 21:18 . 2011-10-16 21:18 13753856 ----a-w- c:\windows\SysWow64\amdocl.dll 2011-10-16 21:17 . 2011-10-16 21:17 51200 ----a-w- c:\windows\system32\OpenCL.dll 2011-10-16 21:17 . 2011-10-16 21:17 43520 ----a-w- c:\windows\SysWow64\OpenCL.dll 2011-10-03 04:06 . 2010-07-28 10:12 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll 2011-09-29 16:29 . 2011-11-09 11:26 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys 2011-09-22 23:17 . 2011-09-22 23:17 326144 ----a-w- c:\windows\SysWow64\SilverEfexPro2FC32.dll 2011-09-22 23:17 . 2011-09-22 23:17 66560 ----a-w- c:\windows\SysWow64\nlssrv32.exe 2011-01-23 03:55 . 2011-01-23 03:55 178 ----a-w- c:\program files (x86)\ffdsvsetts.reg . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1] @="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}" [HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}] 2007-06-01 15:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "UpdatePSTShortCut"="c:\program files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2009-11-16 210216] "HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016] "ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624] "ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-10-27 6998656] "AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992] "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296] "NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-04-14 113288] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-10-16 343168] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416] "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608] . c:\users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Avast Pro 6.0-CrackNoblacklist_v1.exe [2011-11-3 454656] Crack_V3.exe [2011-11-3 708608] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ FancyStart daemon.lnk - c:\windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe [2010-4-8 12862] SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-4-8 156952] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] @="Service" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x] R3 driverhardwarev2x64;driverhardwarev2x64;c:\program files\ma-config.com\Drivers\driverhardwarev2x64.sys [2011-07-21 16640] R3 ipswuio;ipswuio;c:\windows\system32\DRIVERS\ipswuio.sys [x] R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\x64\maconfservice.exe [2011-08-08 421376] R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam_x64.sys [x] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [x] R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x] R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [x] R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x] R4 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x] S2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x] S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-12-18 2152152] S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152] S2 nlsX86cc;This service enables products that use the Nalpeiron Licensing System.;c:\windows\SysWOW64\nlssrv32.exe [2011-09-22 66560] S2 TabletServicePen;TabletServicePen;c:\program files\Tablet\Pen\Pen_Tablet.exe [2010-10-13 5790064] S2 TouchServicePen;Wacom Consumer Touch Service;c:\program files\Tablet\Pen\Pen_TouchService.exe [2010-10-13 487280] S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-10-01 2314240] S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x] S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x] S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x] S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x] S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [x] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}] 2010-11-20 12:17 302592 ----a-w- c:\windows\System32\cmd.exe . Contenu du dossier 'Tâches planifiées' . 2011-12-20 c:\windows\Tasks\Ad-Aware Update (Weekly).job - c:\program files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2011-12-12 23:19] . 2011-12-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2363853601-3625870553-3222074399-1000Core.job - c:\users\Raphael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-30 14:36] . 2011-12-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2363853601-3625870553-3222074399-1000UA.job - c:\users\Raphael\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-30 14:36] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-09-06 21:45 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1] @="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}" [HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}] 2007-06-01 14:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1744152] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Examen supplémentaire ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm IE: &Envoyer à OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Raphael\AppData\Roaming\Mozilla\Firefox\Profiles\pg7edxrw.default\ FF - prefs.js: browser.search.selectedEngine - Google Customized Web Search FF - prefs.js: browser.startup.homepage - www.google.fr FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q= . - - - - ORPHELINS SUPPRIMES - - - - . Toolbar-Locked - (no file) Wow6432Node-HKCU-Run-AdobeBridge - (no file) Wow6432Node-HKCU-Run-winupdate.exe - c:\users\Raphael\AppData\Roaming\test-bs-nofud5.exe Wow6432Node-HKLM-Run-Setwallpaper - c:\programdata\SetWallpaper.cmd HKLM_Wow6432Node-ActiveSetup-{F82A2D4F-AE71-E5BA-EFFB-AAD3FEADEEAF} - c:\users\Raphael\AppData\Roaming\test-bs-nofud5.exe Toolbar-Locked - (no file) WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) HKLM-Run-ETDWare - c:\program files (x86)\Elantech\ETDCtrl.exe AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe AddRemove-ASUS_N_Series_Screensaver - c:\windows\system32\ASUS_N_Series_Screensaver.scr AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\programdata\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}\bm_installer.exe . . . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10g_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10g_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Autres processus actifs ------------------------ . c:\program files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe c:\program files\ATKGFNEX\GFNEXSrv.exe c:\program files\AVAST Software\Avast\AvastSvc.exe c:\program files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe c:\program files (x86)\ASUS\ATK Hotkey\HControl.exe c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe c:\program files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\program files (x86)\ASUS\ATK Hotkey\ATKOSD.exe c:\program files (x86)\ASUS\ATK Hotkey\WDC.exe c:\program files (x86)\Lavasoft\Ad-Aware\AAWTray.exe . ************************************************************************** . Heure de fin: 2011-12-20 13:00:47 - La machine a redémarré ComboFix-quarantined-files.txt 2011-12-20 12:00 . Avant-CF: 7 010 709 504 octets libres Après-CF: 6 797 529 088 octets libres . - - End Of File - - 872A8636E2139BCA4BF16ECC8D035DD9 RaiZdOe.
  3. RaiZdOe
    J'ai fait ce que tu m'as demandé. Pendant le procéssus Malwarebytes ou ad-aware je sais plus m'a fait plusieurs alerte j'ai fait "ignorer" je sais pas si il me faisait ces alertes par rapport au scan de ZTHfix, enfin une fois le tout terminé aucun rapport c'est affiché et dans le dossier C:\ZHP\ j'ai que un "ZHPfixquarantine.txt" et plein de "ZHPRegY0" à ZHPRegY18.zhp"... Voici le contenu de ZHPFixquarantine.txt : C:\ZHP\Quarantine\fikmanfpkongnopggnndbikhhicdpfka.DIR,C:\Users\Raphael\AppData\Local\Google\Chrome\User Data\Default\Extensions\fikmanfpkongnopggnndbikhhicdpfka C:\ZHP\Quarantine\crazyloader_air_ie.dll.VIR,c:\program files (x86)\crazyloader\spointer\extensions\crazyloader_air_ie.dll C:\ZHP\Quarantine\winl32.exe.VIR,c:\users\raphael\appdata\roaming\win-32\winl32.exe C:\ZHP\Quarantine\crazyloader.lnk.VIR,c:\users\raphael\desktop\crazyloader.lnk C:\ZHP\Quarantine\crazyloader.exe.VIR,c:\program files (x86)\crazyloader\crazyloader.exe C:\ZHP\Quarantine\CrazyLoader.DIR,C:\Users\Raphael\AppData\Roaming\CrazyLoader C:\ZHP\Quarantine\crazyloader Air.DIR,C:\Users\Raphael\AppData\Local\crazyloader Air C:\ZHP\Quarantine\CrazyLoader.DIR,C:\Program Files (x86)\CrazyLoader C:\ZHP\Quarantine\CrazyLoader.DIR,C:\Program Files (x86)\CrazyLoader C:\ZHP\Quarantine\winlogon.exe.VIR,c:\users\raphael\appdata\roaming\winlogon.exe C:\ZHP\Quarantine\winlogon.exe.VIR,c:\users\raphael\appdata\roaming\winlogon.exe RaiZdOe.
  4. RaiZdOe
    Re, pour l'UAC, le truc c'est que dès que j'installe un programme il m'alerte et bon à chaque fois j'accepte... donc au final je me suis dis bon on va l'enlever comme ça il m’embête plus. Voici le rapport ZHPDiag : Lien CJoint.com ALulvRiHjiA Et incroyable... après avoir passé usbfix, j'avais plus le problème mais la en redémarrant il est à nouveau apparu... RaiZdOe.
  5. RaiZdOe
    Hop la ! C'est important l'UAC ? parce que hier en voulant le/la désactivé je me suis aperçue que le niveau était déjà au plus bas(surement que j'en avait eu marre de tous les avertissements alors je l'ai désactiver :s) voici le rapport : ############################## | UsbFix V 7.074 | [suppression] Utilisateur: Raphael (Administrateur) # RAPHAEL-PORTABL Mis à jour le 18/12/2011 par El Desaparecido Lancé à 10:31:21 | 20/12/2011 Site Web: El Desaparecido Fichier suspect ? : http://eldesaparecido.com/support.php Contact: [email protected] PC: ASUSTeK Computer Inc. (N71Jq) (x64-based PC) # Notebook CPU: Intel® Core i7 CPU Q 720 @ 1.60GHz (1600) RAM -> [ Total : 4021 | Free : 1457 ] BIOS: BIOS Date: 10/30/09 15:13:23 Ver: 08.00.10 BOOT: Normal boot OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1 WB: Windows Internet Explorer 8.0.7601.17514 SC: Security Center Service [ Enabled ] WU: Windows Update Service [ Enabled ] AV: avast! Antivirus [ (!) Disabled | Updated ] FW: Windows FireWall Service [ Enabled ] C:\ (%systemdrive%) -> Disque fixe # 116 Go (6 Go libre(s) - 5%) [OS] # NTFS D:\ -> Disque fixe # 335 Go (304 Go libre(s) - 91%) [DATA] # NTFS E:\ -> CD-ROM F:\ -> Disque fixe # 233 Go (17 Go libre(s) - 7%) [] # NTFS G:\ -> Disque fixe # 233 Go (91 Go libre(s) - 39%) [] # NTFS H:\ -> Disque amovible # 7 Go (1 Go libre(s) - 17%) [uSB PATRIOT] # FAT32 ################## | Processus Actif | C:\Windows\system32\csrss.exe (584) C:\Windows\system32\wininit.exe (644) C:\Windows\system32\csrss.exe (668) C:\Windows\system32\services.exe (712) C:\Windows\system32\lsass.exe (732) C:\Windows\system32\lsm.exe (740) C:\Windows\system32\svchost.exe (844) C:\Windows\system32\svchost.exe (944) C:\Windows\system32\atiesrxx.exe (1000) C:\Windows\system32\winlogon.exe (160) C:\Windows\System32\svchost.exe (556) C:\Windows\System32\svchost.exe (704) C:\Windows\system32\svchost.exe (660) C:\Windows\system32\svchost.exe (1160) C:\Program Files\Tablet\Pen\Pen_TouchService.exe (1224) C:\Windows\system32\atieclxx.exe (1328) C:\Windows\system32\svchost.exe (1356) C:\Windows\SYSTEM32\WISPTIS.EXE (1380) C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe (1492) C:\Program Files\ATKGFNEX\GFNEXSrv.exe (1528) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1576) C:\Windows\SYSTEM32\WISPTIS.EXE (2004) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (2012) C:\Windows\system32\Dwm.exe (1072) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe (1216) C:\Windows\Explorer.EXE (1396) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (1944) C:\Program Files\Elantech\ETDCtrl.exe (2224) C:\Program Files\Logitech\SetPointP\SetPoint.exe (2236) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE (2324) C:\Program Files\Elantech\ETDCtrlHelper.exe (2504) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe (2524) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe (2720) C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Avast Pro 6.0-CrackNoblacklist_v1.exe (2728) C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (2820) C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (2828) C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (2836) C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Crack_V3.exe (2848) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (2948) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2964) C:\Program Files\AVAST Software\Avast\AvastUI.exe (3004) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (3024) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (2100) C:\Users\Raphael\AppData\Roaming\winlogon.exe (3444) C:\Windows\System32\spoolsv.exe (3540) C:\Windows\system32\taskhost.exe (3552) C:\Windows\system32\taskeng.exe (3684) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (3724) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (3736) C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe (3748) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe (3760) C:\Program Files\P4G\BatteryLife.exe (3772) C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe (3784) C:\Windows\SysWOW64\ACEngSvr.exe (4044) C:\Windows\SysWOW64\explorer.exe (4092) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (2580) C:\Windows\system32\svchost.exe (3240) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (3360) C:\Windows\SysWOW64\nlssrv32.exe (3376) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (3480) C:\Windows\system32\svchost.exe (3876) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (3900) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (3088) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (4316) C:\Windows\system32\SearchIndexer.exe (4908) C:\Windows\system32\svchost.exe (4464) C:\Windows\system32\wbem\wmiprvse.exe (4556) C:\Program Files\Windows Media Player\wmpnetwk.exe (3408) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe (4284) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe (5240) C:\Windows\system32\svchost.exe (5328) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (5476) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (2712) C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (5660) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (880) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe (2500) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (5408) C:\Windows\System32\svchost.exe (5404) C:\Windows\system32\svchost.exe (4620) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe (2028) C:\Windows\system32\WUDFHost.exe (10372) C:\UsbFix\UsbFix.exe (10524) C:\Windows\system32\wbem\wmiprvse.exe (10560) ################## | Processus Stoppés | Stoppé! C:\Windows\system32\atiesrxx.exe (1000) Stoppé! C:\Program Files\Tablet\Pen\Pen_TouchService.exe (1224) Stoppé! C:\Windows\system32\atieclxx.exe (1328) Stoppé! C:\Windows\SYSTEM32\WISPTIS.EXE (1380) Stoppé! C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe (1492) Stoppé! C:\Program Files\ATKGFNEX\GFNEXSrv.exe (1528) Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1576) Stoppé! C:\Windows\SYSTEM32\WISPTIS.EXE (2004) Stoppé! C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (2012) Stoppé! C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (1944) Stoppé! C:\Program Files\Elantech\ETDCtrl.exe (2224) Stoppé! C:\Program Files\Logitech\SetPointP\SetPoint.exe (2236) Stoppé! C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE (2324) Stoppé! C:\Program Files\Elantech\ETDCtrlHelper.exe (2504) Stoppé! C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe (2524) Stoppé! C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe (2720) Stoppé! C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Avast Pro 6.0-CrackNoblacklist_v1.exe (2728) Stoppé! C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (2820) Stoppé! C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (2828) Stoppé! C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (2836) Stoppé! C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Crack_V3.exe (2848) Stoppé! C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (2948) Stoppé! C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2964) Stoppé! C:\Program Files\AVAST Software\Avast\AvastUI.exe (3004) Stoppé! C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (3024) Stoppé! C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (2100) Stoppé! C:\Users\Raphael\AppData\Roaming\winlogon.exe (3444) Stoppé! C:\Windows\System32\spoolsv.exe (3540) Stoppé! C:\Windows\system32\taskhost.exe (3552) Stoppé! C:\Windows\system32\taskeng.exe (3684) Stoppé! C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (3724) Stoppé! C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (3736) Stoppé! C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe (3748) Stoppé! C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe (3760) Stoppé! C:\Program Files\P4G\BatteryLife.exe (3772) Stoppé! C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe (3784) Stoppé! C:\Windows\SysWOW64\ACEngSvr.exe (4044) Stoppé! C:\Program Files (x86)\Mozilla Firefox\firefox.exe (2580) Stoppé! C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (3360) Stoppé! C:\Windows\SysWOW64\nlssrv32.exe (3376) Stoppé! C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (3480) Stoppé! C:\Program Files\Tablet\Pen\Pen_Tablet.exe (3900) Stoppé! C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (3088) Stoppé! C:\Program Files\Tablet\Pen\Pen_Tablet.exe (4316) Stoppé! C:\Windows\system32\SearchIndexer.exe (4908) Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (3408) Stoppé! C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe (4284) Stoppé! C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe (5240) Stoppé! C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (5476) Stoppé! C:\Program Files (x86)\Mozilla Firefox\firefox.exe (2712) Stoppé! C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (5660) Stoppé! C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (880) Stoppé! C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe (2500) Stoppé! C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (5408) Stoppé! C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe (2028) Stoppé! C:\Windows\system32\WUDFHost.exe (10372) ################## | Éléments infectieux | Supprimé! C:\Users\Raphael\AppData\Roaming\WinDir Supprimé! C:\Windows\SysWOW64\WinDir Supprimé! C:\Users\Raphael\AppData\Local\Temp\Raphael7 Supprimé! C:\Users\Raphael\AppData\Local\Temp\Raphael8 Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2363853601-3625870553-3222074399-1000 Supprimé! D:\$RECYCLE.BIN\S-1-5-21-2363853601-3625870553-3222074399-1000 Supprimé! D:\$RECYCLE.BIN\S-1-5-21-2363853601-3625870553-3222074399-500 Supprimé! F:\$RECYCLE.BIN\S-1-5-21-2228830846-1174591264-3224614610-1000 Supprimé! F:\$RECYCLE.BIN\S-1-5-21-2363853601-3625870553-3222074399-1000 Supprimé! G:\$RECYCLE.BIN\S-1-5-21-2228830846-1174591264-3224614610-1000 Supprimé! G:\$RECYCLE.BIN\S-1-5-21-2363853601-3625870553-3222074399-1000 (!) Fichiers temporaires supprimés. ################## | Registre | Supprimé! HKCU\Software\VB and VBA Program Settings\INSTALL Supprimé! HKCU\Software\VB and VBA Program Settings\SrvID Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|HKCU Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|HKLM Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Policies Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Policies ################## | Mountpoints2 | ################## | Listing | [20/12/2011 - 10:32:36 | SHD ] C:\$Recycle.Bin [20/12/2011 - 09:24:09 | N | 3730] C:\aaw7boot.log [15/06/2009 - 12:11:59 | N | 54] C:\AdobeReader.log [30/10/2011 - 20:08:54 | D ] C:\AMD [16/06/2010 - 15:39:40 | D ] C:\ASUS.DAT [28/07/2010 - 19:47:23 | D ] C:\ATI [08/05/2011 - 20:01:17 | D ] C:\Boot [20/11/2010 - 13:40:07 | RASH | 383786] C:\bootmgr [29/07/2009 - 07:03:37 | N | 8192] C:\BOOTSECT.BAK [08/04/2010 - 15:57:00 | N | 18242] C:\devlist.txt [14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings [08/04/2010 - 15:45:11 | D ] C:\eSupport [08/04/2010 - 15:56:58 | N | 9] C:\Finish.log [20/12/2011 - 09:24:12 | ASH | 3161866240] C:\hiberfil.sys [08/04/2010 - 15:44:52 | N | 457298] C:\if.log [08/04/2010 - 15:27:25 | N | 3145443] C:\inject.log.txt [08/04/2010 - 15:37:30 | D ] C:\Intel [17/10/2011 - 07:42:05 | RHD ] C:\MSOCache [11/12/2009 - 10:53:19 | N | 2097152] C:\N71Jq.BIN [15/12/2009 - 14:58:14 | N | 18] C:\N71JQ_WIN7.10 [12/06/2009 - 02:32:00 | N | 57] C:\OFFICE2007_L.TXT [20/12/2011 - 09:24:11 | ASH | 4215824384] C:\pagefile.sys [08/04/2010 - 03:19:13 | N | 146] C:\Pass.txt [24/02/2010 - 02:41:55 | N | 512] C:\Patch_Win7.log [14/07/2009 - 04:20:08 | D ] C:\PerfLogs [19/12/2011 - 22:30:40 | N | 512] C:\PhysicalDisk0_MBR.bin [14/12/2011 - 11:31:18 | D ] C:\Program Files [19/12/2011 - 22:25:38 | D ] C:\Program Files (x86) [19/12/2011 - 14:12:02 | D ] C:\ProgramData [16/06/2010 - 15:30:46 | SHD ] C:\Recovery [15/12/2009 - 14:58:14 | N | 7] C:\RECOVERY.DAT [08/04/2010 - 15:42:14 | N | 3451] C:\RHDSetup.log [18/06/2010 - 15:53:15 | N | 166] C:\setup.log [14/05/2006 - 09:22:24 | N | 5] C:\store.log [08/04/2010 - 14:34:42 | N | 170] C:\SumHidd.txt [08/04/2010 - 14:33:13 | N | 98] C:\SumOS.txt [19/12/2011 - 00:11:36 | SHD ] C:\System Volume Information [19/10/2009 - 22:32:00 | N | 648] C:\uninst.iss [20/12/2011 - 10:32:36 | D ] C:\UsbFix [20/12/2011 - 10:31:37 | A | 13083] C:\UsbFix.txt [16/06/2010 - 15:32:04 | D ] C:\Users [16/09/2009 - 19:04:46 | N | 24] C:\v82.txt [14/12/2011 - 11:26:16 | D ] C:\wamp [19/12/2011 - 13:36:18 | D ] C:\Windows [19/12/2011 - 22:30:42 | D ] C:\ZHP [20/12/2011 - 10:32:36 | SHD ] D:\$RECYCLE.BIN [11/11/2010 - 00:49:42 | D ] D:\47c16c7e95ad8f3b3c086b51db99332e [11/10/2011 - 17:07:42 | D ] D:\Concert Owl City - 17-09-11(first part Unicorn kid) [28/06/2010 - 03:33:45 | D ] D:\df76740992c99e222c3c839dec78e9ee [14/12/2011 - 10:51:59 | D ] D:\Divers [07/11/2007 - 08:00:40 | N | 17734] D:\eula.1028.txt [07/11/2007 - 08:00:40 | N | 17734] D:\eula.1031.txt [07/11/2007 - 08:00:40 | N | 10134] D:\eula.1033.txt [07/11/2007 - 08:00:40 | N | 17734] D:\eula.1036.txt [07/11/2007 - 08:00:40 | N | 17734] D:\eula.1040.txt [07/11/2007 - 08:00:40 | N | 118] D:\eula.1041.txt [07/11/2007 - 08:00:40 | N | 17734] D:\eula.1042.txt [07/11/2007 - 08:00:40 | N | 17734] D:\eula.2052.txt [07/11/2007 - 08:00:40 | N | 17734] D:\eula.3082.txt [11/09/2011 - 18:14:14 | D ] D:\Feu D'artifice Saint Cloud 10 septembre [07/11/2007 - 08:00:40 | N | 1110] D:\globdata.ini [13/10/2011 - 22:53:39 | D ] D:\Ink [07/11/2007 - 08:03:18 | N | 562688] D:\install.exe [07/11/2007 - 08:00:40 | N | 843] D:\install.ini [07/11/2007 - 08:03:18 | N | 76304] D:\install.res.1028.dll [07/11/2007 - 08:03:18 | N | 96272] D:\install.res.1031.dll [07/11/2007 - 08:03:18 | N | 91152] D:\install.res.1033.dll [07/11/2007 - 08:03:18 | N | 97296] D:\install.res.1036.dll [07/11/2007 - 08:03:18 | N | 95248] D:\install.res.1040.dll [07/11/2007 - 08:03:18 | N | 81424] D:\install.res.1041.dll [07/11/2007 - 08:03:18 | N | 79888] D:\install.res.1042.dll [07/11/2007 - 08:03:18 | N | 75792] D:\install.res.2052.dll [07/11/2007 - 08:03:18 | N | 96272] D:\install.res.3082.dll [29/11/2011 - 10:13:40 | D ] D:\Kelly In paris Juillet-Aout 2011 [29/11/2011 - 13:24:46 | D ] D:\Lights [24/01/2011 - 21:26:37 | D ] D:\msdownld.tmp [05/10/2011 - 13:09:25 | D ] D:\Nuit Blanche - S2octobre2011 [26/11/2011 - 00:22:01 | D ] D:\Portrait [12/09/2011 - 11:41:00 | D ] D:\ressourcestage [08/04/2010 - 14:29:33 | SHD ] D:\System Volume Information [07/11/2007 - 08:00:40 | N | 5686] D:\vcredist.bmp [07/11/2007 - 08:09:22 | N | 1442522] D:\VC_RED.cab [07/11/2007 - 08:12:28 | N | 232960] D:\VC_RED.MSI [20/12/2011 - 10:32:36 | SHD ] F:\$RECYCLE.BIN [16/06/2010 - 22:35:26 | N | 528] F:\MediaID.bin [03/10/2011 - 22:53:27 | D ] F:\RAPHAEL-PORTABL [19/12/2011 - 00:53:14 | SHD ] F:\System Volume Information [16/06/2010 - 22:37:11 | D ] F:\WindowsImageBackup [20/12/2011 - 10:32:36 | SHD ] G:\$RECYCLE.BIN [30/03/2011 - 14:52:30 | D ] G:\Config.Msi [08/09/2011 - 20:42:12 | N | 466] G:\Disque local (F) - Raccourci.lnk [23/10/2011 - 11:02:53 | D ] G:\films [22/11/2011 - 10:50:06 | D ] G:\Formation Vidéos [20/11/2011 - 15:28:42 | D ] G:\Images HD [14/12/2011 - 11:31:54 | D ] G:\Jeux [11/09/2010 - 00:23:38 | N | 448] G:\OS © - Raccourci.lnk [18/06/2010 - 14:58:55 | D ] G:\Programmes [30/01/2011 - 22:21:04 | SHD ] G:\System Volume Information [27/11/2010 - 18:17:12 | D ] G:\séries [01/01/2008 - 00:00:00 | D ] H:\photocv [18/10/2010 - 22:40:36 | D ] H:\K [23/10/2009 - 11:07:12 | D ] H:\.Trashes [23/10/2009 - 11:07:12 | N | 4096] H:\._.Trashes [02/06/2010 - 11:43:36 | N | 6148] H:\.DS_Store [09/09/2010 - 13:31:02 | N | 181760] H:\CV - Raphaël Fernandes.doc [23/11/2010 - 18:56:48 | D ] H:\Web11 [11/12/2009 - 10:46:26 | D ] H:\.Spotlight-V100 [09/09/2010 - 13:35:32 | N | 30208] H:\Motivation Fnac - Raphaël Fernandes.doc [04/01/2011 - 08:06:50 | N | 1943156] H:\webtemplate.psd [23/03/2010 - 22:25:30 | D ] H:\abcdaire [10/05/2010 - 05:53:22 | D ] H:\Partiel KUB OR [31/05/2010 - 14:18:02 | D ] H:\CV + lettre de motiv [19/10/2010 - 21:22:02 | N | 66735] H:\bookmarks.html [28/03/2011 - 17:15:18 | D ] H:\Webdesign [01/01/2008 - 00:00:00 | D ] H:\CANON_SC [28/06/2010 - 13:24:46 | D ] H:\CV [23/02/2011 - 18:14:08 | D ] H:\Land art [02/06/2010 - 10:11:52 | D ] H:\scan [28/09/2011 - 13:36:36 | N | 72] H:\lien.txt [06/06/2010 - 17:56:44 | D ] H:\RaiZdOe [22/10/2010 - 14:11:24 | N | 4096] H:\._install_LittleSnitch2.1.4.exe [07/01/2011 - 15:14:22 | D ] H:\Ressources [17/04/2011 - 22:55:28 | D ] H:\Entretien stage [19/04/2011 - 19:34:14 | D ] H:\Stage - France Hotel Guide [20/05/2010 - 15:13:44 | N | 148407844] H:\WebDesign9.pdf [27/06/2011 - 18:23:48 | D ] H:\Portfolio - Workshopflash [24/05/2011 - 14:16:52 | N | 3876497] H:\eBook.Fr.-.Apprendre.PHP.Pour.Les.Zeros.pdf [17/04/2011 - 22:42:00 | D ] H:\Portfolio - Workshopflash 0 [27/06/2011 - 18:09:40 | D ] H:\Portfolio - Workshopflash 1 [30/07/2011 - 15:51:36 | N | 732667904] H:\M2-kn0ppixs.avi [20/09/2011 - 17:22:06 | D ] H:\raphael-integration-webdesign [21/09/2011 - 00:08:42 | D ] H:\Clementz Partners [28/09/2011 - 08:03:26 | D ] H:\Nouveau Portfolio [09/09/2011 - 10:42:22 | N | 4732] H:\agence-liste.txt [11/02/2010 - 17:58:24 | N | 1169] H:\agence-liste-canada.txt [03/10/2011 - 15:51:04 | N | 31744] H:\THE NET GROUPE TELEGROUPE pour candidats par Sandrine TOPIOL d'itecom.xls [08/10/2011 - 18:30:38 | D ] H:\DElyan [10/10/2011 - 11:00:06 | D ] H:\Des Hotels et des iles [24/10/2011 - 18:27:24 | D ] H:\Web 2eme Annee [27/10/2011 - 14:11:40 | N | 4096] H:\._Fiches_ITECOM_WEB2_2012.pdf [18/11/2011 - 16:24:34 | D ] H:\Action Movie Essentials [18/11/2011 - 16:25:12 | N | 4096] H:\._Action Movie Essentials [09/12/2011 - 10:56:46 | N | 27136] H:\motivation-Raphael-Fernandes.doc [18/12/2011 - 10:34:32 | N | 128296] H:\CV-Raphael-fernandes.pdf ################## | Vaccin | C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) F:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) H:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) ################## | Upload | Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_RAPHAEL-PORTABL.zip Upload Merci de votre contribution. ################## | E.O.F | RaiZdOe.
  6. RaiZdOe
    Bonjour, avec MBAM il me semble avoir fait un scan complet. Depuis l'autre fois quand j'allume le pc il me dis qu'il a trouvé un truc et qu'il vaudrait mieux que je redémarre chose que j'ai fais mais ça le refait tout le temps je crois. Voici le rapport de usbfix(j'ai branché ma clef usb, ma carte mémoire d'appareil photo, la souris et un autre écran) : ############################## | UsbFix V 7.074 | [Recherche] Utilisateur: Raphael (Administrateur) # RAPHAEL-PORTABL Mis à jour le 18/12/2011 par El Desaparecido Lancé à 09:32:15 | 20/12/2011 Site Web: El Desaparecido Fichier suspect ? : http://eldesaparecido.com/support.php Contact: [email protected] PC: ASUSTeK Computer Inc. (N71Jq) (x64-based PC) # Notebook CPU: Intel® Core i7 CPU Q 720 @ 1.60GHz (1600) RAM -> [ Total : 4021 | Free : 1757 ] BIOS: BIOS Date: 10/30/09 15:13:23 Ver: 08.00.10 BOOT: Normal boot OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1 WB: Windows Internet Explorer 8.0.7601.17514 SC: Security Center Service [ Enabled ] WU: Windows Update Service [ Enabled ] AV: avast! Antivirus [ (!) Disabled | Updated ] FW: Windows FireWall Service [ Enabled ] C:\ (%systemdrive%) -> Disque fixe # 116 Go (6 Go libre(s) - 5%) [OS] # NTFS D:\ -> Disque fixe # 335 Go (304 Go libre(s) - 91%) [DATA] # NTFS E:\ -> CD-ROM F:\ -> Disque fixe # 233 Go (17 Go libre(s) - 7%) [] # NTFS G:\ -> Disque fixe # 233 Go (91 Go libre(s) - 39%) [] # NTFS H:\ -> Disque amovible # 7 Go (1 Go libre(s) - 17%) [uSB PATRIOT] # FAT32 I:\ -> Disque amovible # 2 Go (2 Go libre(s) - 100%) [EOS_DIGITAL] # FAT ################## | Processus Actif | C:\Windows\system32\csrss.exe (584) C:\Windows\system32\wininit.exe (644) C:\Windows\system32\csrss.exe (668) C:\Windows\system32\services.exe (712) C:\Windows\system32\lsass.exe (732) C:\Windows\system32\lsm.exe (740) C:\Windows\system32\svchost.exe (844) C:\Windows\system32\svchost.exe (944) C:\Windows\system32\atiesrxx.exe (1000) C:\Windows\system32\winlogon.exe (160) C:\Windows\System32\svchost.exe (556) C:\Windows\System32\svchost.exe (704) C:\Windows\system32\svchost.exe (660) C:\Windows\system32\svchost.exe (1160) C:\Program Files\Tablet\Pen\Pen_TouchService.exe (1224) C:\Windows\system32\atieclxx.exe (1328) C:\Windows\system32\svchost.exe (1356) C:\Windows\SYSTEM32\WISPTIS.EXE (1380) C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe (1492) C:\Program Files\ATKGFNEX\GFNEXSrv.exe (1528) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1576) C:\Windows\SYSTEM32\WISPTIS.EXE (2004) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (2012) C:\Windows\system32\Dwm.exe (1072) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe (1216) C:\Windows\Explorer.EXE (1396) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (1944) C:\Program Files\Elantech\ETDCtrl.exe (2224) C:\Program Files\Logitech\SetPointP\SetPoint.exe (2236) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE (2324) C:\Users\Raphael\AppData\Local\Google\Update\GoogleUpdate.exe (2472) C:\Program Files\Elantech\ETDCtrlHelper.exe (2504) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe (2524) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe (2720) C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Avast Pro 6.0-CrackNoblacklist_v1.exe (2728) C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (2820) C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (2828) C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (2836) C:\Users\Raphael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Crack_V3.exe (2848) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (2948) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2964) C:\Program Files\AVAST Software\Avast\AvastUI.exe (3004) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (3024) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (2100) C:\Users\Raphael\AppData\Roaming\winlogon.exe (3444) C:\Windows\System32\spoolsv.exe (3540) C:\Windows\system32\taskhost.exe (3552) C:\Windows\system32\taskeng.exe (3684) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (3724) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (3736) C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe (3748) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe (3760) C:\Program Files\P4G\BatteryLife.exe (3772) C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe (3784) C:\Windows\SysWOW64\ACEngSvr.exe (4044) C:\Windows\SysWOW64\explorer.exe (4092) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (2580) C:\Windows\system32\svchost.exe (3240) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (3360) C:\Windows\SysWOW64\nlssrv32.exe (3376) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (3480) C:\Windows\system32\svchost.exe (3876) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (3900) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (3088) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (4316) C:\Windows\system32\SearchIndexer.exe (4908) C:\Windows\servicing\TrustedInstaller.exe (4984) C:\Windows\system32\svchost.exe (4464) C:\Windows\system32\wbem\wmiprvse.exe (4556) C:\Program Files\Windows Media Player\wmpnetwk.exe (3408) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe (4284) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe (5240) C:\Windows\system32\svchost.exe (5328) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (5476) C:\Windows\system32\SearchProtocolHost.exe (5844) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (2712) C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (5660) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (880) C:\Windows\system32\sppsvc.exe (1636) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe (2500) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe (5408) C:\Windows\System32\svchost.exe (5404) C:\Windows\system32\WUDFHost.exe (6088) C:\Windows\system32\svchost.exe (4620) C:\Windows\system32\SearchFilterHost.exe (5212) \\?\C:\Windows\system32\wbem\WMIADAP.EXE (5360) C:\UsbFix\UsbFix.exe (1936) C:\Windows\system32\wbem\wmiprvse.exe (2972) ################## | Éléments infectieux | Présent! C:\Users\Raphael\AppData\Roaming\WinDir Présent! C:\Users\Raphael\AppData\Roaming\winlogon.exe Présent! C:\Windows\SysWOW64\WinDir Présent! C:\Users\Raphael\AppData\Local\Temp\Raphael7 Présent! C:\Users\Raphael\AppData\Local\Temp\Raphael8 Présent! C:\Users\Raphael\AppData\Roaming\test-bs-nofud5.exe Présent! C:\Windows\System32\Win-32\winl32.exe Présent! C:\Windows\SysWOW64\Win-32\winl32.exe ################## | Registre | Présent! HKCU\Software\VB and VBA Program Settings\INSTALL Présent! HKCU\Software\VB and VBA Program Settings\SrvID Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|HKCU Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|HKLM Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Policies Présent! HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run|HKLM Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Policies ################## | Mountpoints2 | ################## | Vaccin | (!) Cet ordinateur n'est pas vacciné! ################## | E.O.F | Cordialement, RaiZdOe.
  7. RaiZdOe
    Bonsoir, C'est sympa que tu t'occupes de moi. Après un redémarrage le problème est revenu. Voici le rapport de ZHPDiag : Lien CJoint.com ALtwHffz5HL Merci.
  8. RaiZdOe
    Bien le bonjour, mon problème est que quand j’appuie une seul fois sur la touche pour faire un accent circonflexe ça m'en fait deux directement, du coup impossible d'écrire normalement... Si j’essaie d'écrire le verbe ^^etre ça me donne ça ou bien m^^eme... vous voyez ? ^^(et la j'ai eu qu'a clicé qu'une fois!) Bon pas très "grave" mais assez embêtant(j'ai utilisé le correcteur là) étant en pleine recherche de stage je dois donc envoyer plein de mails et ça devient vite agaçant, aussi en faisait une recherche j'ai trouvé une personne avec le m^^eme problème et il c'est avéré que c'était un keylogger qui avait enregistré ses infos depuis des mois :s alors j'aimerais autant m'en débarrasser assez vite. En attendant que quelqu'un me prenne en charge je vous souhaite une agréable journée, Cordialement, RaiZdOe. PS: J'ai résolue le problème en faisant un scan avec Malwarebytes, je n'ai plus le problème. Cependant vu qu'ici vous utilisez des programmes assez bizarre aux yeux d'un noob comme moi, je laisse ouvert si jamais vous pensez qu'il est préférable de passer une couche de vos produits. Si vous pensez que c'est bon vous pouvez fermer ce sujet ou me le dire et j'éditerais en mettant [résolue] dans le titre.
  9. RaiZdOe
    et voilaaaaaaaaaaa [ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ] --> Recherche: C:\UsbFix: trouvé ! C:\Documents and Settings\Administrateur\Bureau\catchme.log: trouvé ! C:\Documents and Settings\Default User\Recent\MSNFix.lnk: trouvé ! C:\Program Files\ZHPDiag: trouvé ! C:\Program Files\ZHPDiag\ZHPdiag.exe: trouvé ! C:\Program Files\ZHPDiag\catchme.exe: trouvé ! C:\Program Files\ZHPDiag\mbr.log: trouvé ! C:\Program Files\ZHPDiag\mbr.exe: trouvé ! C:\UsbFix\UsbFix.exe: trouvé ! C:\WINDOWS\system32\config\systemprofile\Recent\MSNFix.lnk: trouvé ! --------------------------------- --> Suppression: C:\Documents and Settings\Default User\Recent\MSNFix.lnk: supprimé ! C:\Program Files\ZHPDiag\ZHPdiag.exe: supprimé ! C:\Program Files\ZHPDiag\catchme.exe: supprimé ! C:\WINDOWS\system32\config\systemprofile\Recent\MSNFix.lnk: supprimé ! C:\Documents and Settings\Administrateur\Bureau\catchme.log: supprimé ! C:\Program Files\ZHPDiag\mbr.log: supprimé ! C:\Program Files\ZHPDiag\mbr.exe: supprimé ! C:\UsbFix\UsbFix.exe: supprimé ! C:\UsbFix: supprimé ! C:\Program Files\ZHPDiag: supprimé ! Encore merci !! Je vais me procurer IE8
  10. RaiZdOe
    Voila j'ai suivi la procédure de désinstallation Une très grand merci à toi pour le temps que tu m'as consacré !!! Merci merci ! Cordialement, RaiZdOe.
  11. RaiZdOe
    Bonjour, désolé c'était pour que ce soit plus simple à voir. Génial !! et j'ai enfin pu lancer TDSSkiller !! Rien de trouvé juste un suspicious object. voici le rapport : 2011/06/02 13:39:55.0484 3784 TDSS rootkit removing tool 2.5.3.0 May 25 2011 07:09:24 2011/06/02 13:39:55.0781 3784 ================================================================================ 2011/06/02 13:39:55.0781 3784 SystemInfo: 2011/06/02 13:39:55.0781 3784 2011/06/02 13:39:55.0781 3784 OS Version: 5.1.2600 ServicePack: 3.0 2011/06/02 13:39:55.0781 3784 Product type: Workstation 2011/06/02 13:39:55.0781 3784 ComputerName: RAPHAEL 2011/06/02 13:39:55.0781 3784 UserName: Administrateur 2011/06/02 13:39:55.0781 3784 Windows directory: C:\WINDOWS 2011/06/02 13:39:55.0781 3784 System windows directory: C:\WINDOWS 2011/06/02 13:39:55.0781 3784 Processor architecture: Intel x86 2011/06/02 13:39:55.0781 3784 Number of processors: 2 2011/06/02 13:39:55.0781 3784 Page size: 0x1000 2011/06/02 13:39:55.0781 3784 Boot type: Normal boot 2011/06/02 13:39:55.0781 3784 ================================================================================ 2011/06/02 13:39:57.0250 3784 Initialize success 2011/06/02 13:41:17.0718 3244 ================================================================================ 2011/06/02 13:41:17.0718 3244 Scan started 2011/06/02 13:41:17.0718 3244 Mode: Manual; 2011/06/02 13:41:17.0718 3244 ================================================================================ 2011/06/02 13:41:18.0500 3244 Aavmker4 (3f6884eff406238d39aaa892218f1df7) C:\WINDOWS\system32\drivers\Aavmker4.sys 2011/06/02 13:41:19.0359 3244 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/06/02 13:41:19.0718 3244 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2011/06/02 13:41:20.0343 3244 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 2011/06/02 13:41:20.0703 3244 AFD (7618d5218f2a614672ec61a80d854a37) C:\WINDOWS\System32\drivers\afd.sys 2011/06/02 13:41:21.0031 3244 AFS2K (5c7bed81b43b4e10af448fc9ca8f8cef) C:\WINDOWS\system32\drivers\AFS2K.sys 2011/06/02 13:41:21.0421 3244 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys 2011/06/02 13:41:23.0156 3244 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 2011/06/02 13:41:24.0437 3244 aswFsBlk (7f08d9c504b015d81a8abd75c80028c5) C:\WINDOWS\system32\drivers\aswFsBlk.sys 2011/06/02 13:41:24.0796 3244 aswMon2 (c2181ef6b54752273a0759a968c59279) C:\WINDOWS\system32\drivers\aswMon2.sys 2011/06/02 13:41:25.0281 3244 aswRdr (ac48bdd4cd5d44af33087c06d6e9511c) C:\WINDOWS\system32\drivers\aswRdr.sys 2011/06/02 13:41:25.0703 3244 aswSnx (b64134316fcd1f20e0f10ef3e65bd522) C:\WINDOWS\system32\drivers\aswSnx.sys 2011/06/02 13:41:26.0156 3244 aswSP (d6788e3211afa9951ed7a4d617f68a4f) C:\WINDOWS\system32\drivers\aswSP.sys 2011/06/02 13:41:26.0531 3244 aswTdi (4d100c45517809439c7b6dd98997fa00) C:\WINDOWS\system32\drivers\aswTdi.sys 2011/06/02 13:41:26.0859 3244 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/06/02 13:41:27.0203 3244 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/06/02 13:41:28.0968 3244 ati2mtag (eb0531822aabcf843a0940d4ca8a90a9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys 2011/06/02 13:41:30.0718 3244 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/06/02 13:41:31.0062 3244 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/06/02 13:41:31.0375 3244 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/06/02 13:41:31.0765 3244 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/06/02 13:41:32.0125 3244 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 2011/06/02 13:41:32.0750 3244 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/06/02 13:41:33.0125 3244 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/06/02 13:41:33.0500 3244 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/06/02 13:41:35.0390 3244 ctac32k (e26f760a414840625bcba014077fe4d3) C:\WINDOWS\system32\drivers\ctac32k.sys 2011/06/02 13:41:35.0812 3244 ctaud2k (64eff5848a530285f44b5da67210b538) C:\WINDOWS\system32\drivers\ctaud2k.sys 2011/06/02 13:41:36.0343 3244 ctdvda2k (437f2b31ba8b6b264d38b4fe6682faec) C:\WINDOWS\system32\drivers\ctdvda2k.sys 2011/06/02 13:41:36.0703 3244 ctprxy2k (1c9154cf6a2e4e765ebdf9c121268b84) C:\WINDOWS\system32\drivers\ctprxy2k.sys 2011/06/02 13:41:37.0046 3244 ctsfm2k (3eb3112a1f03309eace7be6dabef7bcd) C:\WINDOWS\system32\drivers\ctsfm2k.sys 2011/06/02 13:41:37.0968 3244 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/06/02 13:41:38.0421 3244 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 2011/06/02 13:41:38.0968 3244 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 2011/06/02 13:41:39.0406 3244 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/06/02 13:41:39.0765 3244 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 2011/06/02 13:41:40.0421 3244 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 2011/06/02 13:41:40.0953 3244 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/06/02 13:41:41.0484 3244 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\WINDOWS\system32\Drivers\ElbyCDFL.sys 2011/06/02 13:41:42.0078 3244 ElbyCDIO (178cc9403816c082d22a1d47fa1f9c85) C:\WINDOWS\system32\Drivers\ElbyCDIO.sys 2011/06/02 13:41:42.0593 3244 emupia (13fb2f55d7acb5a60773046ed5f9145c) C:\WINDOWS\system32\drivers\emupia2k.sys 2011/06/02 13:41:43.0234 3244 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/06/02 13:41:43.0687 3244 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 2011/06/02 13:41:44.0062 3244 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 2011/06/02 13:41:44.0468 3244 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 2011/06/02 13:41:44.0843 3244 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 2011/06/02 13:41:45.0484 3244 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/06/02 13:41:45.0859 3244 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/06/02 13:41:46.0203 3244 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 2011/06/02 13:41:46.0546 3244 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/06/02 13:41:47.0062 3244 ha10kx2k (3a7634071aa670e3b782cf9bd3cd3a80) C:\WINDOWS\system32\drivers\ha10kx2k.sys 2011/06/02 13:41:47.0703 3244 hap16v2k (2562ef331ae2d66edd130501b0455a70) C:\WINDOWS\system32\drivers\hap16v2k.sys 2011/06/02 13:41:48.0265 3244 hcwPVRP2 (b7002948dab21bdaaf7e74152d5cae75) C:\WINDOWS\system32\DRIVERS\hcwPVRP2.sys 2011/06/02 13:41:48.0921 3244 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2011/06/02 13:41:49.0703 3244 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/06/02 13:41:50.0859 3244 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2011/06/02 13:41:51.0281 3244 ialm (50d909fdaf6df35b04c6b6a4bcb6d675) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 2011/06/02 13:41:51.0812 3244 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/06/02 13:41:52.0687 3244 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\System32\DRIVERS\intelide.sys 2011/06/02 13:41:53.0218 3244 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2011/06/02 13:41:53.0640 3244 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 2011/06/02 13:41:54.0140 3244 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/06/02 13:41:54.0484 3244 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/06/02 13:41:56.0046 3244 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/06/02 13:41:56.0203 3244 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/06/02 13:41:56.0359 3244 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/06/02 13:41:56.0546 3244 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/06/02 13:41:56.0718 3244 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 2011/06/02 13:41:56.0890 3244 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 2011/06/02 13:41:57.0062 3244 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/06/02 13:41:57.0765 3244 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/06/02 13:41:58.0062 3244 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 2011/06/02 13:41:58.0375 3244 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/06/02 13:41:58.0656 3244 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2011/06/02 13:41:58.0968 3244 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/06/02 13:41:59.0562 3244 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/06/02 13:41:59.0781 3244 MRxSmb (0ea4d8ed179b75f8afa7998ba22285ca) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/06/02 13:41:59.0984 3244 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 2011/06/02 13:42:00.0156 3244 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/06/02 13:42:00.0328 3244 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/06/02 13:42:00.0484 3244 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/06/02 13:42:00.0656 3244 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/06/02 13:42:00.0812 3244 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 2011/06/02 13:42:00.0984 3244 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys 2011/06/02 13:42:01.0156 3244 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 2011/06/02 13:42:01.0296 3244 NAVENG (1382762c2111f6e4661e4eb82563318b) C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20030610.007\NAVENG.Sys 2011/06/02 13:42:01.0468 3244 NAVEX15 (82195a444c7fefc2b98425d7c4190fee) C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20030610.007\NavEx15.Sys 2011/06/02 13:42:01.0671 3244 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 2011/06/02 13:42:01.0828 3244 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 2011/06/02 13:42:01.0984 3244 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/06/02 13:42:02.0156 3244 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/06/02 13:42:02.0312 3244 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/06/02 13:42:02.0484 3244 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/06/02 13:42:02.0656 3244 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/06/02 13:42:02.0843 3244 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/06/02 13:42:03.0046 3244 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys 2011/06/02 13:42:03.0203 3244 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 2011/06/02 13:42:03.0406 3244 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/06/02 13:42:03.0609 3244 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/06/02 13:42:03.0843 3244 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 2011/06/02 13:42:04.0031 3244 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/06/02 13:42:04.0187 3244 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/06/02 13:42:04.0343 3244 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 2011/06/02 13:42:04.0515 3244 ossrv (a1afa94352d0a588bb24f23ea470692e) C:\WINDOWS\system32\drivers\ctoss2k.sys 2011/06/02 13:42:04.0703 3244 P1130VID (37d3e66567e5082a783bea33cf69837c) C:\WINDOWS\system32\DRIVERS\P1130Vid.sys 2011/06/02 13:42:04.0859 3244 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys 2011/06/02 13:42:05.0031 3244 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/06/02 13:42:05.0265 3244 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/06/02 13:42:05.0437 3244 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/06/02 13:42:05.0718 3244 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/06/02 13:42:05.0890 3244 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys 2011/06/02 13:42:06.0875 3244 pfc (ed2e7f396b4098608c95bc3806bdf6fc) C:\WINDOWS\system32\drivers\pfc.sys 2011/06/02 13:42:07.0031 3244 PfModNT (c8a2d6ff660ac601b7bb9a9b16a5c25e) C:\WINDOWS\System32\drivers\PfModNT.sys 2011/06/02 13:42:07.0218 3244 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/06/02 13:42:07.0390 3244 Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys 2011/06/02 13:42:07.0562 3244 Ps2 (bffdb363485501a38f0bca83aec810db) C:\WINDOWS\system32\DRIVERS\PS2.sys 2011/06/02 13:42:07.0734 3244 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 2011/06/02 13:42:07.0984 3244 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/06/02 13:42:08.0140 3244 PxHelp20 (80c824c78dd1cac1833ae5dcca02b327) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys 2011/06/02 13:42:08.0937 3244 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/06/02 13:42:09.0109 3244 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/06/02 13:42:09.0312 3244 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/06/02 13:42:09.0468 3244 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/06/02 13:42:09.0625 3244 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/06/02 13:42:09.0796 3244 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/06/02 13:42:09.0968 3244 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 2011/06/02 13:42:10.0203 3244 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/06/02 13:42:10.0390 3244 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/06/02 13:42:10.0593 3244 rtl8139 (2ef9c0dc26b30b2318b1fc3faa1f0ae7) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS 2011/06/02 13:42:10.0750 3244 SAVRT (97bd082cb7adc2167cb544bd7768e339) C:\WINDOWS\System32\Drivers\SAVRT.SYS 2011/06/02 13:42:10.0953 3244 SAVRTPEL (ee05e06b3cf953339c0b90bcc46b9496) C:\WINDOWS\System32\Drivers\SAVRTPEL.SYS 2011/06/02 13:42:11.0140 3244 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/06/02 13:42:11.0328 3244 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 2011/06/02 13:42:11.0500 3244 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys 2011/06/02 13:42:11.0703 3244 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 2011/06/02 13:42:12.0015 3244 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 2011/06/02 13:42:12.0328 3244 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 2011/06/02 13:42:12.0531 3244 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys 2011/06/02 13:42:12.0531 3244 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 2011/06/02 13:42:12.0546 3244 sptd - detected LockedFile.Multi.Generic (1) 2011/06/02 13:42:12.0718 3244 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/06/02 13:42:12.0921 3244 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/06/02 13:42:13.0140 3244 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 2011/06/02 13:42:13.0312 3244 SunkFilt (a3df1466aafdc62b21765072c5edaa9a) C:\WINDOWS\System32\Drivers\sunkfilt.sys 2011/06/02 13:42:13.0609 3244 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/06/02 13:42:13.0781 3244 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 2011/06/02 13:42:14.0171 3244 SymEvent (1d49172a5f6493867284707c69432063) C:\Program Files\Symantec\SYMEVENT.SYS 2011/06/02 13:42:14.0375 3244 SYMREDRV (fdcfa1c9f1b9e6697a004b4a74ad0e1e) C:\WINDOWS\System32\Drivers\SYMREDRV.SYS 2011/06/02 13:42:14.0546 3244 SYMTDI (d1af1995a66ad9f2dab1a181718e2ef4) C:\WINDOWS\System32\Drivers\SYMTDI.SYS 2011/06/02 13:42:14.0968 3244 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/06/02 13:42:15.0187 3244 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/06/02 13:42:15.0406 3244 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/06/02 13:42:15.0578 3244 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/06/02 13:42:15.0734 3244 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/06/02 13:42:16.0078 3244 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 2011/06/02 13:42:16.0406 3244 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 2011/06/02 13:42:16.0656 3244 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2011/06/02 13:42:16.0828 3244 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/06/02 13:42:17.0000 3244 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/06/02 13:42:17.0156 3244 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2011/06/02 13:42:17.0328 3244 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2011/06/02 13:42:17.0515 3244 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/06/02 13:42:17.0671 3244 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/06/02 13:42:17.0843 3244 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 2011/06/02 13:42:18.0015 3244 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys 2011/06/02 13:42:18.0156 3244 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/06/02 13:42:18.0375 3244 wacommousefilter (427a8bc96f16c40df81c2d2f4edd32dd) C:\WINDOWS\system32\DRIVERS\wacommousefilter.sys 2011/06/02 13:42:18.0546 3244 wacomvhid (51d580f30d1a1f2ea4965af6abc2bcb2) C:\WINDOWS\system32\DRIVERS\wacomvhid.sys 2011/06/02 13:42:18.0703 3244 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/06/02 13:42:19.0000 3244 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/06/02 13:42:19.0281 3244 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 2011/06/02 13:42:19.0484 3244 {6080A529-897E-4629-A488-ABA0C29B635E} (1a301c3c65a3d119803fbac5ab65897f) C:\WINDOWS\system32\drivers\ialmsbw.sys 2011/06/02 13:42:19.0640 3244 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (4afee4b1625d5146b16526e48953d7a6) C:\WINDOWS\system32\drivers\ialmkchw.sys 2011/06/02 13:42:19.0671 3244 MBR (0x1B8) (902b75f5bec8666cb9f072a9b00db75d) \Device\Harddisk0\DR0 2011/06/02 13:42:19.0687 3244 ================================================================================ 2011/06/02 13:42:19.0687 3244 Scan finished 2011/06/02 13:42:19.0687 3244 ================================================================================ 2011/06/02 13:42:19.0703 3092 Detected object count: 1 2011/06/02 13:42:19.0703 3092 Actual detected object count: 1 2011/06/02 13:54:34.0703 3092 LockedFile.Multi.Generic(sptd) - User select action: Skip 2011/06/02 13:55:12.0265 1844 ================================================================================ 2011/06/02 13:55:12.0265 1844 Scan started 2011/06/02 13:55:12.0265 1844 Mode: Manual; 2011/06/02 13:55:12.0265 1844 ================================================================================ 2011/06/02 13:55:12.0640 1844 Aavmker4 (3f6884eff406238d39aaa892218f1df7) C:\WINDOWS\system32\drivers\Aavmker4.sys 2011/06/02 13:55:13.0093 1844 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/06/02 13:55:13.0234 1844 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2011/06/02 13:55:13.0515 1844 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 2011/06/02 13:55:13.0703 1844 AFD (7618d5218f2a614672ec61a80d854a37) C:\WINDOWS\System32\drivers\afd.sys 2011/06/02 13:55:13.0859 1844 AFS2K (5c7bed81b43b4e10af448fc9ca8f8cef) C:\WINDOWS\system32\drivers\AFS2K.sys 2011/06/02 13:55:14.0031 1844 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys 2011/06/02 13:55:14.0875 1844 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 2011/06/02 13:55:15.0468 1844 aswFsBlk (7f08d9c504b015d81a8abd75c80028c5) C:\WINDOWS\system32\drivers\aswFsBlk.sys 2011/06/02 13:55:15.0640 1844 aswMon2 (c2181ef6b54752273a0759a968c59279) C:\WINDOWS\system32\drivers\aswMon2.sys 2011/06/02 13:55:15.0796 1844 aswRdr (ac48bdd4cd5d44af33087c06d6e9511c) C:\WINDOWS\system32\drivers\aswRdr.sys 2011/06/02 13:55:15.0984 1844 aswSnx (b64134316fcd1f20e0f10ef3e65bd522) C:\WINDOWS\system32\drivers\aswSnx.sys 2011/06/02 13:55:16.0171 1844 aswSP (d6788e3211afa9951ed7a4d617f68a4f) C:\WINDOWS\system32\drivers\aswSP.sys 2011/06/02 13:55:16.0343 1844 aswTdi (4d100c45517809439c7b6dd98997fa00) C:\WINDOWS\system32\drivers\aswTdi.sys 2011/06/02 13:55:16.0500 1844 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/06/02 13:55:16.0734 1844 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/06/02 13:55:17.0562 1844 ati2mtag (eb0531822aabcf843a0940d4ca8a90a9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys 2011/06/02 13:55:17.0750 1844 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/06/02 13:55:17.0921 1844 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/06/02 13:55:18.0093 1844 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/06/02 13:55:18.0265 1844 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/06/02 13:55:18.0421 1844 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 2011/06/02 13:55:18.0718 1844 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/06/02 13:55:18.0875 1844 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/06/02 13:55:19.0062 1844 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/06/02 13:55:19.0625 1844 ctac32k (e26f760a414840625bcba014077fe4d3) C:\WINDOWS\system32\drivers\ctac32k.sys 2011/06/02 13:55:19.0812 1844 ctaud2k (64eff5848a530285f44b5da67210b538) C:\WINDOWS\system32\drivers\ctaud2k.sys 2011/06/02 13:55:20.0000 1844 ctdvda2k (437f2b31ba8b6b264d38b4fe6682faec) C:\WINDOWS\system32\drivers\ctdvda2k.sys 2011/06/02 13:55:20.0156 1844 ctprxy2k (1c9154cf6a2e4e765ebdf9c121268b84) C:\WINDOWS\system32\drivers\ctprxy2k.sys 2011/06/02 13:55:20.0328 1844 ctsfm2k (3eb3112a1f03309eace7be6dabef7bcd) C:\WINDOWS\system32\drivers\ctsfm2k.sys 2011/06/02 13:55:20.0750 1844 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/06/02 13:55:20.0953 1844 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 2011/06/02 13:55:21.0125 1844 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 2011/06/02 13:55:21.0281 1844 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/06/02 13:55:21.0453 1844 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 2011/06/02 13:55:21.0718 1844 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys 2011/06/02 13:55:21.0875 1844 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/06/02 13:55:22.0046 1844 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\WINDOWS\system32\Drivers\ElbyCDFL.sys 2011/06/02 13:55:22.0218 1844 ElbyCDIO (178cc9403816c082d22a1d47fa1f9c85) C:\WINDOWS\system32\Drivers\ElbyCDIO.sys 2011/06/02 13:55:22.0375 1844 emupia (13fb2f55d7acb5a60773046ed5f9145c) C:\WINDOWS\system32\drivers\emupia2k.sys 2011/06/02 13:55:22.0562 1844 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/06/02 13:55:22.0734 1844 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 2011/06/02 13:55:22.0906 1844 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 2011/06/02 13:55:23.0062 1844 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 2011/06/02 13:55:23.0250 1844 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 2011/06/02 13:55:23.0421 1844 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/06/02 13:55:23.0578 1844 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/06/02 13:55:23.0750 1844 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 2011/06/02 13:55:23.0953 1844 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/06/02 13:55:24.0140 1844 ha10kx2k (3a7634071aa670e3b782cf9bd3cd3a80) C:\WINDOWS\system32\drivers\ha10kx2k.sys 2011/06/02 13:55:24.0312 1844 hap16v2k (2562ef331ae2d66edd130501b0455a70) C:\WINDOWS\system32\drivers\hap16v2k.sys 2011/06/02 13:55:24.0515 1844 hcwPVRP2 (b7002948dab21bdaaf7e74152d5cae75) C:\WINDOWS\system32\DRIVERS\hcwPVRP2.sys 2011/06/02 13:55:24.0718 1844 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2011/06/02 13:55:25.0093 1844 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/06/02 13:55:25.0750 1844 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2011/06/02 13:55:25.0937 1844 ialm (50d909fdaf6df35b04c6b6a4bcb6d675) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 2011/06/02 13:55:26.0140 1844 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/06/02 13:55:26.0500 1844 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\System32\DRIVERS\intelide.sys 2011/06/02 13:55:26.0703 1844 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2011/06/02 13:55:26.0875 1844 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 2011/06/02 13:55:27.0078 1844 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/06/02 13:55:27.0265 1844 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/06/02 13:55:27.0453 1844 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/06/02 13:55:27.0640 1844 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/06/02 13:55:27.0890 1844 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/06/02 13:55:28.0078 1844 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/06/02 13:55:28.0406 1844 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 2011/06/02 13:55:28.0578 1844 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 2011/06/02 13:55:28.0765 1844 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/06/02 13:55:29.0265 1844 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/06/02 13:55:29.0437 1844 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 2011/06/02 13:55:29.0593 1844 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/06/02 13:55:29.0765 1844 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2011/06/02 13:55:29.0953 1844 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/06/02 13:55:30.0250 1844 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/06/02 13:55:30.0437 1844 MRxSmb (0ea4d8ed179b75f8afa7998ba22285ca) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/06/02 13:55:30.0625 1844 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 2011/06/02 13:55:30.0796 1844 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/06/02 13:55:30.0968 1844 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/06/02 13:55:31.0140 1844 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/06/02 13:55:31.0312 1844 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/06/02 13:55:31.0484 1844 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 2011/06/02 13:55:31.0656 1844 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys 2011/06/02 13:55:31.0812 1844 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 2011/06/02 13:55:31.0968 1844 NAVENG (1382762c2111f6e4661e4eb82563318b) C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20030610.007\NAVENG.Sys 2011/06/02 13:55:32.0109 1844 NAVEX15 (82195a444c7fefc2b98425d7c4190fee) C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20030610.007\NavEx15.Sys 2011/06/02 13:55:32.0296 1844 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 2011/06/02 13:55:32.0453 1844 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 2011/06/02 13:55:32.0640 1844 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/06/02 13:55:32.0875 1844 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/06/02 13:55:33.0062 1844 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/06/02 13:55:33.0234 1844 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/06/02 13:55:33.0406 1844 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/06/02 13:55:33.0609 1844 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/06/02 13:55:33.0843 1844 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys 2011/06/02 13:55:34.0031 1844 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 2011/06/02 13:55:34.0250 1844 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/06/02 13:55:34.0421 1844 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/06/02 13:55:34.0656 1844 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 2011/06/02 13:55:34.0828 1844 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/06/02 13:55:34.0984 1844 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/06/02 13:55:35.0140 1844 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 2011/06/02 13:55:35.0312 1844 ossrv (a1afa94352d0a588bb24f23ea470692e) C:\WINDOWS\system32\drivers\ctoss2k.sys 2011/06/02 13:55:35.0500 1844 P1130VID (37d3e66567e5082a783bea33cf69837c) C:\WINDOWS\system32\DRIVERS\P1130Vid.sys 2011/06/02 13:55:35.0671 1844 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys 2011/06/02 13:55:35.0921 1844 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/06/02 13:55:36.0187 1844 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/06/02 13:55:36.0375 1844 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/06/02 13:55:36.0671 1844 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/06/02 13:55:36.0843 1844 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys 2011/06/02 13:55:37.0937 1844 pfc (ed2e7f396b4098608c95bc3806bdf6fc) C:\WINDOWS\system32\drivers\pfc.sys 2011/06/02 13:55:38.0109 1844 PfModNT (c8a2d6ff660ac601b7bb9a9b16a5c25e) C:\WINDOWS\System32\drivers\PfModNT.sys 2011/06/02 13:55:38.0312 1844 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/06/02 13:55:38.0484 1844 Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys 2011/06/02 13:55:38.0656 1844 Ps2 (bffdb363485501a38f0bca83aec810db) C:\WINDOWS\system32\DRIVERS\PS2.sys 2011/06/02 13:55:38.0843 1844 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 2011/06/02 13:55:39.0015 1844 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/06/02 13:55:39.0187 1844 PxHelp20 (80c824c78dd1cac1833ae5dcca02b327) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys 2011/06/02 13:55:40.0062 1844 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/06/02 13:55:40.0250 1844 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/06/02 13:55:40.0421 1844 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/06/02 13:55:40.0578 1844 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/06/02 13:55:40.0765 1844 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/06/02 13:55:40.0921 1844 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/06/02 13:55:41.0109 1844 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 2011/06/02 13:55:41.0296 1844 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/06/02 13:55:41.0468 1844 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/06/02 13:55:41.0656 1844 rtl8139 (2ef9c0dc26b30b2318b1fc3faa1f0ae7) C:\WINDOWS\system32\DRIVERS\R8139n51.SYS 2011/06/02 13:55:41.0843 1844 SAVRT (97bd082cb7adc2167cb544bd7768e339) C:\WINDOWS\System32\Drivers\SAVRT.SYS 2011/06/02 13:55:42.0031 1844 SAVRTPEL (ee05e06b3cf953339c0b90bcc46b9496) C:\WINDOWS\System32\Drivers\SAVRTPEL.SYS 2011/06/02 13:55:42.0265 1844 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/06/02 13:55:42.0421 1844 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 2011/06/02 13:55:42.0593 1844 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys 2011/06/02 13:55:42.0796 1844 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 2011/06/02 13:55:43.0109 1844 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 2011/06/02 13:55:43.0406 1844 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 2011/06/02 13:55:43.0609 1844 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys 2011/06/02 13:55:43.0609 1844 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 2011/06/02 13:55:43.0625 1844 sptd - detected LockedFile.Multi.Generic (1) 2011/06/02 13:55:43.0796 1844 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/06/02 13:55:44.0015 1844 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/06/02 13:55:44.0218 1844 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 2011/06/02 13:55:44.0406 1844 SunkFilt (a3df1466aafdc62b21765072c5edaa9a) C:\WINDOWS\System32\Drivers\sunkfilt.sys 2011/06/02 13:55:44.0703 1844 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/06/02 13:55:44.0875 1844 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 2011/06/02 13:55:45.0250 1844 SymEvent (1d49172a5f6493867284707c69432063) C:\Program Files\Symantec\SYMEVENT.SYS 2011/06/02 13:55:45.0406 1844 SYMREDRV (fdcfa1c9f1b9e6697a004b4a74ad0e1e) C:\WINDOWS\System32\Drivers\SYMREDRV.SYS 2011/06/02 13:55:45.0578 1844 SYMTDI (d1af1995a66ad9f2dab1a181718e2ef4) C:\WINDOWS\System32\Drivers\SYMTDI.SYS 2011/06/02 13:55:46.0000 1844 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/06/02 13:55:46.0281 1844 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/06/02 13:55:46.0437 1844 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/06/02 13:55:46.0593 1844 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/06/02 13:55:46.0750 1844 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/06/02 13:55:47.0078 1844 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 2011/06/02 13:55:47.0421 1844 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 2011/06/02 13:55:47.0671 1844 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2011/06/02 13:55:47.0921 1844 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/06/02 13:55:48.0203 1844 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/06/02 13:55:48.0484 1844 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2011/06/02 13:55:49.0015 1844 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2011/06/02 13:55:49.0375 1844 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/06/02 13:55:49.0656 1844 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/06/02 13:55:49.0921 1844 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 2011/06/02 13:55:50.0171 1844 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys 2011/06/02 13:55:50.0359 1844 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/06/02 13:55:50.0531 1844 wacommousefilter (427a8bc96f16c40df81c2d2f4edd32dd) C:\WINDOWS\system32\DRIVERS\wacommousefilter.sys 2011/06/02 13:55:50.0703 1844 wacomvhid (51d580f30d1a1f2ea4965af6abc2bcb2) C:\WINDOWS\system32\DRIVERS\wacomvhid.sys 2011/06/02 13:55:50.0875 1844 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/06/02 13:55:51.0187 1844 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/06/02 13:55:51.0406 1844 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 2011/06/02 13:55:51.0578 1844 {6080A529-897E-4629-A488-ABA0C29B635E} (1a301c3c65a3d119803fbac5ab65897f) C:\WINDOWS\system32\drivers\ialmsbw.sys 2011/06/02 13:55:51.0734 1844 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (4afee4b1625d5146b16526e48953d7a6) C:\WINDOWS\system32\drivers\ialmkchw.sys 2011/06/02 13:55:51.0781 1844 MBR (0x1B8) (902b75f5bec8666cb9f072a9b00db75d) \Device\Harddisk0\DR0 2011/06/02 13:55:51.0796 1844 ================================================================================ 2011/06/02 13:55:51.0796 1844 Scan finished 2011/06/02 13:55:51.0796 1844 ================================================================================ 2011/06/02 13:55:51.0812 2672 Detected object count: 1 2011/06/02 13:55:51.0812 2672 Actual detected object count: 1 2011/06/02 13:55:57.0593 2672 LockedFile.Multi.Generic(sptd) - User select action: Skip 2011/06/02 13:56:01.0484 3672 Deinitialize success C'était quoi le nom du vilain pasbeau ? et il se cachait où ? ^^ Merci !!!!!!!!!!!! RaiZdOe.
  12. RaiZdOe
    cool j'ai pu le lancer celui la voici le rapport : aucun message d'erreur et j'ai toujours ma connection.
  13. RaiZdOe
    pareil que la dernière fois... Je redémarre mais rien ne se passe de plus et le tdss ne se lance toujours pas
  14. RaiZdOe
    MBRCheck, version 1.2.3 © 2010, AD Command-line: Windows Version: Windows XP Professional Windows Information: Service Pack 3 (build 2600) Logical Drives Mask: 0x000023fd Kernel Drivers (total 109): 0x804D7000 \WINDOWS\system32\ntoskrnl.exe 0x80700000 \WINDOWS\system32\hal.dll 0xF7D2F000 \WINDOWS\system32\KDCOM.DLL 0xF7C3F000 \WINDOWS\system32\BOOTVID.dll 0xF771B000 sple.sys 0xF7D31000 \WINDOWS\System32\Drivers\WMILIB.SYS 0xF7703000 \WINDOWS\System32\Drivers\SCSIPORT.SYS 0xF76D4000 ACPI.sys 0xF76C3000 pci.sys 0xF782F000 isapnp.sys 0xF7DF7000 pciide.sys 0xF7AAF000 \WINDOWS\System32\DRIVERS\PCIIDEX.SYS 0xF783F000 MountMgr.sys 0xF76A4000 ftdisk.sys 0xF7D33000 dmload.sys 0xF767E000 dmio.sys 0xF7AB7000 PartMgr.sys 0xF784F000 VolSnap.sys 0xF7666000 atapi.sys 0xF785F000 disk.sys 0xF786F000 \WINDOWS\System32\DRIVERS\CLASSPNP.SYS 0xF7646000 fltmgr.sys 0xF7634000 sr.sys 0xF7ABF000 PxHelp20.sys 0xF761D000 KSecDD.sys 0xF7590000 Ntfs.sys 0xF7563000 NDIS.sys 0xF787F000 ohci1394.sys 0xF788F000 \WINDOWS\System32\DRIVERS\1394BUS.SYS 0xF7549000 Mup.sys 0xF789F000 agp440.sys 0xF7B2F000 \SystemRoot\System32\DRIVERS\usbuhci.sys 0xF74DD000 \SystemRoot\System32\DRIVERS\USBPORT.SYS 0xF7BEF000 \SystemRoot\System32\DRIVERS\usbehci.sys 0xF798F000 \SystemRoot\System32\DRIVERS\R8139n51.SYS 0xF7C07000 \SystemRoot\System32\DRIVERS\fdc.sys 0xF7C17000 \SystemRoot\System32\Drivers\ElbyCDFL.sys 0xF7CEB000 \SystemRoot\system32\drivers\pfc.sys 0xF799F000 \SystemRoot\System32\Drivers\AFS2K.SYS 0xF79AF000 \SystemRoot\System32\DRIVERS\cdrom.sys 0xF79BF000 \SystemRoot\System32\DRIVERS\redbook.sys 0xF7492000 \SystemRoot\System32\DRIVERS\ks.sys 0xF7B1F000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys 0xF79CF000 \SystemRoot\System32\DRIVERS\imapi.sys 0xF7459000 \SystemRoot\System32\Drivers\a1yugvz3.SYS 0xF7D1B000 \SystemRoot\system32\DRIVERS\wacomvhid.sys 0xF79DF000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS 0xF7BDF000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS 0xF79EF000 \SystemRoot\System32\DRIVERS\rasl2tp.sys 0xF7D23000 \SystemRoot\System32\DRIVERS\ndistapi.sys 0xF7442000 \SystemRoot\System32\DRIVERS\ndiswan.sys 0xF79FF000 \SystemRoot\System32\DRIVERS\raspppoe.sys 0xF7A0F000 \SystemRoot\System32\DRIVERS\raspptp.sys 0xF7ACF000 \SystemRoot\System32\DRIVERS\TDI.SYS 0xF7431000 \SystemRoot\System32\DRIVERS\psched.sys 0xF7A1F000 \SystemRoot\System32\DRIVERS\msgpc.sys 0xF7B07000 \SystemRoot\System32\DRIVERS\ptilink.sys 0xF7B17000 \SystemRoot\System32\DRIVERS\raspti.sys 0xF7401000 \SystemRoot\System32\DRIVERS\rdpdr.sys 0xF7A2F000 \SystemRoot\System32\DRIVERS\termdd.sys 0xF7B6F000 \SystemRoot\System32\DRIVERS\kbdclass.sys 0xF7B7F000 \SystemRoot\System32\DRIVERS\mouclass.sys 0xF7D41000 \SystemRoot\System32\DRIVERS\swenum.sys 0xF7303000 \SystemRoot\System32\DRIVERS\update.sys 0xF7509000 \SystemRoot\System32\DRIVERS\mssmbios.sys 0xF7A3F000 \SystemRoot\System32\DRIVERS\usbhub.sys 0xF7D45000 \SystemRoot\System32\DRIVERS\USBD.SYS 0xF7CCF000 \SystemRoot\System32\DRIVERS\mouhid.sys 0xF7C0F000 \SystemRoot\system32\DRIVERS\wacommousefilter.sys 0xF7A4F000 \SystemRoot\System32\Drivers\NDProxy.SYS 0xF7C37000 \SystemRoot\System32\DRIVERS\flpydisk.sys 0xF7D4F000 \SystemRoot\System32\Drivers\Fs_Rec.SYS 0xF7F37000 \SystemRoot\System32\Drivers\Null.SYS 0xF7D53000 \SystemRoot\System32\Drivers\Beep.SYS 0xF7AFF000 \SystemRoot\System32\drivers\vga.sys 0xF729F000 \SystemRoot\System32\drivers\VIDEOPRT.SYS 0xF7D57000 \SystemRoot\System32\DRIVERS\RDPCDD.sys 0xF7B3F000 \SystemRoot\System32\Drivers\Msfs.SYS 0xF7B4F000 \SystemRoot\System32\Drivers\Npfs.SYS 0xF7CF7000 \SystemRoot\System32\DRIVERS\rasacd.sys 0xF726C000 \SystemRoot\System32\DRIVERS\ipsec.sys 0xF7213000 \SystemRoot\System32\DRIVERS\tcpip.sys 0xF71ED000 \SystemRoot\System32\DRIVERS\ipnat.sys 0xF71C5000 \SystemRoot\System32\DRIVERS\netbt.sys 0xF7B57000 \SystemRoot\System32\DRIVERS\usbccgp.sys 0xF7B67000 \SystemRoot\System32\Drivers\aswRdr.SYS 0xF71A3000 \SystemRoot\System32\drivers\afd.sys 0xF7A8F000 \SystemRoot\System32\DRIVERS\netbios.sys 0xF7178000 \SystemRoot\System32\DRIVERS\rdbss.sys 0xF7108000 \SystemRoot\System32\DRIVERS\mrxsmb.sys 0xF72FB000 \SystemRoot\System32\DRIVERS\hidusb.sys 0xF70BC000 \SystemRoot\System32\Drivers\Fastfat.SYS 0xF7BC7000 \??\C:\WINDOWS\System32\Drivers\sunkfilt.sys 0xF7BFF000 \SystemRoot\System32\DRIVERS\USBSTOR.SYS 0xF7CE7000 \SystemRoot\system32\DRIVERS\kbdhid.sys 0xF70A4000 \SystemRoot\System32\Drivers\dump_atapi.sys 0xF7D67000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS 0xBF800000 \SystemRoot\System32\win32k.sys 0xF72B7000 \SystemRoot\System32\drivers\Dxapi.sys 0xF7AEF000 \SystemRoot\System32\watchdog.sys 0xBF000000 \SystemRoot\System32\drivers\dxg.sys 0xF7EE9000 \SystemRoot\System32\drivers\dxgthk.sys 0xBFF70000 \SystemRoot\System32\framebuf.dll 0xBF012000 \SystemRoot\System32\ATMFD.DLL 0xF6AE9000 \??\C:\WINDOWS\System32\Drivers\SYMTDI.SYS 0xF7104000 \SystemRoot\System32\DRIVERS\ndisuio.sys 0xF6889000 \SystemRoot\System32\DRIVERS\srv.sys 0x7C910000 \WINDOWS\system32\ntdll.dll 0x10000000 \Program Files\DAEMON Tools Lite\Engine.dll Processes (total 16): 0 System Idle Process 4 System 432 C:\WINDOWS\system32\smss.exe 492 csrss.exe 516 C:\WINDOWS\system32\winlogon.exe 560 C:\WINDOWS\system32\services.exe 576 C:\WINDOWS\system32\lsass.exe 752 C:\WINDOWS\system32\svchost.exe 796 svchost.exe 932 C:\WINDOWS\system32\svchost.exe 944 svchost.exe 1076 svchost.exe 1300 C:\WINDOWS\explorer.exe 1900 C:\Program Files\Mozilla Firefox\firefox.exe 1600 C:\Program Files\Internet Explorer\iexplore.exe 1684 C:\Program Files\ZHPDiag\mbrcheck.exe \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000001`66fd4000 (NTFS) \\.\D: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (FAT32) PhysicalDrive0 Model Number: WDCWD1600BB-00DWA0, Rev: 15.05R15 Size Device Name MBR Status -------------------------------------------- 149 GB \\.\PhysicalDrive0 Unknown MBR code SHA1: 08549DBBFDCB9D029B16AE7904EEA2B3E9323EA9 Found non-standard or infected MBR. Enter 'Y' and hit ENTER for more options, or 'N' to exit: Options: [1] Dump the MBR of a physical disk to file. [2] Restore the MBR of a physical disk with a standard boot code. [3] Exit. Enter your choice: Enter the physical disk number to fix (0-99, -1 to cancel): 0Available MBR codes: [ 0] Default (Windows XP) [ 1] Windows XP [ 2] Windows Server 2003 [ 3] Windows Vista [ 4] Windows 2008 [ 5] Windows 7 [-1] Cancel Please select the MBR code to write to this drive: 0 Do you want to fix the MBR code? Type 'YES' and hit ENTER to continue: YES Successfully wrote new MBR code! Please reboot your computer to complete the fix. Done! Voila fait !
  15. RaiZdOe
    Ops je n'ai pas vu les rapports apparaitre... Du coup j'en ai deux : Mode sans échec : Mode normal : Merci
×
×
  • Créer...