melo302
-
Compteur de contenus
9 -
Inscription
-
Dernière visite
Type de contenu
Profils
Forums
Blogs
Tout ce qui a été posté par melo302
-
PC infecté par Internet Security
melo302 a répondu à un(e) sujet de melo302 dans Analyses et éradication malwares
Bonsoir, Excuse-moi, là je suis perdue. Qu'est ce qu'un scan zhpdiag ? Merci -
PC infecté par Internet Security
melo302 a répondu à un(e) sujet de melo302 dans Analyses et éradication malwares
Bonsoir Apollo, Merci beaucoup pour ta réponse. Voici le rapport : # AdwCleaner v1.408 - Rapport créé le 06/02/2012 à 20:28:22 # Mis à jour le 29/01/2012 par Xplode # Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits) # Nom d'utilisateur : MéloTomy - LENOVO-D0DAC8D8 (Administrateur) # Exécuté depuis : C:\Documents and Settings\MéloTomy\Bureau\adwcleaner.exe # Option [suppression] ***** [services] ***** ***** [Fichiers / Dossiers] ***** Dossier Supprimé : C:\Documents and Settings\MéloTomy\Application Data\PriceGong Dossier Supprimé : C:\Documents and Settings\MéloTomy\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} Dossier Supprimé : C:\Documents and Settings\MéloTomy\Local Settings\Application Data\Conduit Dossier Supprimé : C:\Documents and Settings\MéloTomy\Local Settings\Application Data\DVDVideoSoftTB Dossier Supprimé : C:\Program Files\Conduit Dossier Supprimé : C:\Documents and Settings\MéloTomy\Application Data\Mozilla\Firefox\Profiles\zgoqdj5g.default\Conduit Dossier Supprimé : C:\Documents and Settings\MéloTomy\Application Data\Mozilla\Firefox\Profiles\zgoqdj5g.default\ConduitCommon Dossier Supprimé : C:\Documents and Settings\MéloTomy\Application Data\Mozilla\Firefox\Profiles\zgoqdj5g.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} Fichier Supprimé : C:\Program Files\Mozilla Firefox\.autoreg Fichier Supprimé : C:\WINDOWS\system32\conduitEngine.tmp Fichier Supprimé : C:\Documents and Settings\MéloTomy\Application Data\Mozilla\Firefox\Profiles\zgoqdj5g.default\searchplugins\Conduit.xml ***** [Registre] ***** [*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT1060933 [*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2269050 [*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2542115 Clé Supprimée : HKCU\Toolbar Clé Supprimée : HKCU\Software\Conduit Clé Supprimée : HKCU\Software\DVDVideoSoftTB Clé Supprimée : HKCU\Software\pdfforge.org Clé Supprimée : HKCU\Software\PriceGong Clé Supprimée : HKLM\SOFTWARE\Conduit Clé Supprimée : HKLM\SOFTWARE\DVDVideoSoftTB Clé Supprimée : HKLM\SOFTWARE\pdfforge.org Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.Engine Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.DllInfo Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.PDF.PDF Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.PDF.PDFEncryptor Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.PDF.PDFText Clé Supprimée : HKLM\SOFTWARE\Classes\pdfforge.Tools Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5} Clé Supprimée : HKLM\SOFTWARE\Microsoft\RFC1156Agent Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212 Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872b5b88-9db5-4310-bdd0-ac189557e5f5}] Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1392b8d2-5c05-419f-a8f6-b9f15a596612}] Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}] Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{1392B8D2-5C05-419F-A8F6-B9F15A596612}] Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{872b5b88-9db5-4310-bdd0-ac189557e5f5}] ***** [Navigateurs] ***** -\\ Internet Explorer v7.0.5730.11 Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&ctid=CT2269050 --> hxxp://www.google.fr -\\ Mozilla Firefox v3.6.25 (fr) Profil : zgoqdj5g.default Fichier : C:\Documents and Settings\MéloTomy\Application Data\Mozilla\Firefox\Profiles\zgoqdj5g.default\prefs.js C:\Documents and Settings\MéloTomy\Application Data\Mozilla\Firefox\Profiles\zgoqdj5g.default\user.js ... Supprimé ! Supprimée : user_pref("CT2269050..clientLogIsEnabled", false); Supprimée : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...] Supprimée : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...] Supprimée : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx"); Supprimée : user_pref("CT2269050.AppTrackingLastCheckTime", "Sun Feb 05 2012 20:44:04 GMT+0100"); Supprimée : user_pref("CT2269050.BrowserCompStateIsOpen_129575150554007677", true); Supprimée : user_pref("CT2269050.BrowserCompStateIsOpen_129681780741097243", true); Supprimée : user_pref("CT2269050.BrowserCompStateIsOpen_129705015340022508", true); Supprimée : user_pref("CT2269050.CTID", "CT2269050"); Supprimée : user_pref("CT2269050.CurrentServerDate", "5-2-2012"); Supprimée : user_pref("CT2269050.DialogsAlignMode", "LTR"); Supprimée : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sun Feb 05 2012 20:43:51 GMT+0100"); Supprimée : user_pref("CT2269050.DownloadReferralCookieData", ""); Supprimée : user_pref("CT2269050.EMailNotifierPollDate", "Sun Feb 05 2012 21:48:52 GMT+0100"); Supprimée : user_pref("CT2269050.FirstServerDate", "7-11-2010"); Supprimée : user_pref("CT2269050.FirstTime", true); Supprimée : user_pref("CT2269050.FirstTimeFF3", true); Supprimée : user_pref("CT2269050.FirstTimeSettingsDone", true); Supprimée : user_pref("CT2269050.FixPageNotFoundErrors", true); Supprimée : user_pref("CT2269050.GroupingServerCheckInterval", 1440); Supprimée : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/"); Supprimée : user_pref("CT2269050.HasUserGlobalKeys", true); Supprimée : user_pref("CT2269050.HomePageProtectorEnabled", false); Supprimée : user_pref("CT2269050.HomepageBeforeUnload", "www.doneo.org"); Supprimée : user_pref("CT2269050.Initialize", true); Supprimée : user_pref("CT2269050.InitializeCommonPrefs", true); Supprimée : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3); Supprimée : user_pref("CT2269050.InstallationType", "UnknownIntegration"); Supprimée : user_pref("CT2269050.InstalledDate", "Sun Nov 07 2010 21:51:55 GMT+0100"); Supprimée : user_pref("CT2269050.InvalidateCache", false); Supprimée : user_pref("CT2269050.IsAlertDBUpdated", true); Supprimée : user_pref("CT2269050.IsGrouping", false); Supprimée : user_pref("CT2269050.IsMulticommunity", false); Supprimée : user_pref("CT2269050.IsOpenThankYouPage", false); Supprimée : user_pref("CT2269050.IsOpenUninstallPage", false); Supprimée : user_pref("CT2269050.LanguagePackLastCheckTime", "Sun Feb 05 2012 20:43:51 GMT+0100"); Supprimée : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440); Supprimée : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...] Supprimée : user_pref("CT2269050.LastLogin_2.7.0.14", "Tue Sep 27 2011 20:31:54 GMT+0200"); Supprimée : user_pref("CT2269050.LastLogin_3.7.0.6", "Sun Feb 05 2012 20:43:51 GMT+0100"); Supprimée : user_pref("CT2269050.LatestVersion", "3.9.0.3"); Supprimée : user_pref("CT2269050.Locale", "en"); Supprimée : user_pref("CT2269050.LoginCache", 4); Supprimée : user_pref("CT2269050.MCDetectTooltipHeight", "83"); Supprimée : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1"); Supprimée : user_pref("CT2269050.MCDetectTooltipWidth", "295"); Supprimée : user_pref("CT2269050.MyStuffEnabledAtInstallation", true); Supprimée : user_pref("CT2269050.RadioIsPodcast", false); Supprimée : user_pref("CT2269050.RadioLastCheckTime", "Sun Feb 05 2012 20:43:57 GMT+0100"); Supprimée : user_pref("CT2269050.RadioLastUpdateIPServer", "3"); Supprimée : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000"); Supprimée : user_pref("CT2269050.RadioMediaID", "12473383"); Supprimée : user_pref("CT2269050.RadioMediaType", "Media Player"); Supprimée : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383"); Supprimée : user_pref("CT2269050.RadioShrinkedFromSetup", false); Supprimée : user_pref("CT2269050.RadioStationName", "Hotmix%20108"); Supprimée : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082"); Supprimée : user_pref("CT2269050.SavedHomepage", "hxxp://www.igoogle.com"); Supprimée : user_pref("CT2269050.SearchBoxWidth", 150); Supprimée : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER[...] Supprimée : user_pref("CT2269050.SearchEngineBeforeUnload", "Google"); Supprimée : user_pref("CT2269050.SearchFromAddressBarIsInit", true); Supprimée : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT226[...] Supprimée : user_pref("CT2269050.SearchInNewTabEnabled", true); Supprimée : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440); Supprimée : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sun Feb 05 2012 20:43:46 GMT+0100"); Supprimée : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...] Supprimée : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...] Supprimée : user_pref("CT2269050.SearchProtectorEnabled", false); Supprimée : user_pref("CT2269050.SearchProtectorToolbarDisabled", false); Supprimée : user_pref("CT2269050.ServiceMapLastCheckTime", "Sun Feb 05 2012 20:43:45 GMT+0100"); Supprimée : user_pref("CT2269050.SettingsCheckIntervalMin", 120); Supprimée : user_pref("CT2269050.SettingsLastCheckTime", "Sun Feb 05 2012 20:43:45 GMT+0100"); Supprimée : user_pref("CT2269050.SettingsLastUpdate", "1327227404"); Supprimée : user_pref("CT2269050.ThirdPartyComponentsInterval", 504); Supprimée : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Fri Jan 27 2012 07:36:47 GMT+0100"); Supprimée : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1312887586"); Supprimée : user_pref("CT2269050.ToolbarShrinkedFromSetup", false); Supprimée : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050"); Supprimée : user_pref("CT2269050.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...] Supprimée : user_pref("CT2269050.UserID", "UN46981606703318081"); Supprimée : user_pref("CT2269050.ValidationData_Search", 0); Supprimée : user_pref("CT2269050.ValidationData_Toolbar", 2); Supprimée : user_pref("CT2269050.WeatherNetwork", ""); Supprimée : user_pref("CT2269050.WeatherPollDate", "Sun Feb 05 2012 21:43:57 GMT+0100"); Supprimée : user_pref("CT2269050.WeatherUnit", "C"); Supprimée : user_pref("CT2269050.alertChannelId", "666138"); Supprimée : user_pref("CT2269050.backendstorage./9b+7e+x305", "247E27413334363379453A3D2A722C797A7E7A3128333B4D4[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e,x305", "247E28412F3F3E3779453A3D2A722C797B787D3128333C474[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e-x305", "247E2936303C363679453A3D2A722C797A207B3128333D462[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e.:2z527", "247E6F727174354379453A3D2A722C757A787D312833232[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e.x305", "247E2A4137374434337A463B3E2B732D7A7D7C213229343F5[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e/x305", "247E2B413536327844393C29712B787C7B773027323E4C434[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e06cg5el8:", "6E6D6F6F6D746F707276"); Supprimée : user_pref("CT2269050.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A74737575737A7576787C242F4B4947[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e0x305", "247E2C403A407743383B28702A777C757D2F26313E4129554[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e1x305", "247E2D41313D403279453A3D2A722C7A77797E31283341473[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e2x305", "247E2E3542313D3D393A7B473C3F2C742E79207D322934435[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cj7fk;kg#ncep@mc+vkn", "247E61393F236B25737471712A212C6[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cj86gi9ladenbrq*rg", "247E61393F236B25737677732A212C6E4[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cj86gii<hbefob)til", "247E61393F236B25737677722A212C6E4[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cj:9cjibgci@@pd*ujm", "247E61393F236B25747071762A212C6E[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cj<<idlj#k@", "247E61393F236B25747278752A212C6E414F444D[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cja@gl!lad", "247E61393F236B25757277742A212C6E414F444D3[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cjc8gab\"j?", "247E61393F236B25757675782A212C6E414F444D[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cjc<=fbj#k@", "247E61393F236B25757674712A212C6E414F444D[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cjc<=fbj#ncf", "247E61393F236B25757677712A212C6E414F444[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cjeik4!i>", "247E61393F236B257671757A2A212C6E414F444D32[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cjg?k;ea=$odg", "247E61393F236B25767773782A212C6E414F44[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cji5gim\"mbe", "247E61393F236B2576707929202B6D404E434C3[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e31;cji>k3?a#k@", "247E61393F236B257674287E2A6C3F4D424B3078[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e3x305", "247E2F413F3B36333F47463F7D493E412E76307E222421352[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e4x305", "247E302C407642373A276F29777B74762E2530413E4F494A5[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e5x305", "247E3136422B7743383B28702A79757A772F2631434B3D495[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e6x305", "247E322C3E32323238453E7C483D402D752F7E7B2424342B3[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e7x305", "247E333D2C3F3E3F79453A3D2A722C7B7A797A31283347474[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e8x305", "247E343D3F3B35373B3F367C47472C742E7E7823322934495[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e9x305", "247E35332C3F327844393C29712B7B757979302732484C4F4[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e:x305", "247E36333B38327844393C29712B7B76797A3027324948554[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e;x305", "247E373F333F3738422F7B473C3F2C742E7E7A7A22332A354[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e<x305", "247E38343030442F463644377D493E412E7630217D2426352[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e=x305", "247E3933363F41413739357C483D402D752F207E2022342B3[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e>x305", "247E3A41363F323238387B473C3F2C742E7E20217C332A355[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e?x305", "247E3B2D2F2F334134403A3A7D494C2D752F2023207E342B3[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7e@x305", "247E3C40422B7743383B28702A7B767E782F26314E52543D2[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7eax305", "247E3D3D37387743383B28702A7B7A757E2F26314F4F544A5[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B26[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7ebx305", "247E3E393141303D33454036327E4A3F422F77317B7D23352[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7ecx305", "247E3F3D303043312E7A463B3E2B732D7B207E31283353515[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7edx305", "247E4035422A363879453A3D2A722C7D202F26315247543C4[...] Supprimée : user_pref("CT2269050.backendstorage./9b+7etx305", "247E6E2F2E3B323342357B44392B732D7A7B7B7C322934215[...] Supprimée : user_pref("CT2269050.backendstorage./9b-0?3g>d", "6D3F6C71713E716E7A7879767B2076774A4C25237B234F2A20[...] Supprimée : user_pref("CT2269050.backendstorage./9b-0?3g@6:5;", ""); Supprimée : user_pref("CT2269050.backendstorage./9b-0?3gfa7ef", "2B2E2C3D"); Supprimée : user_pref("CT2269050.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F292A212C393D44307832332[...] Supprimée : user_pref("CT2269050.backendstorage./9b/>01=9a6k6<im;krie@pdawm", "6A696B7273747576"); Supprimée : user_pref("CT2269050.backendstorage./9b3=>@44i48?", "372C2D326975763342363341484779213F3E484F4E4D464[...] Supprimée : user_pref("CT2269050.backendstorage./9b5ba==9cjag", "3E69406E6D7044407A7174794949744C4C7B4D7A4F"); Supprimée : user_pref("CT2269050.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6F6F6D746F6F7676767372"); Supprimée : user_pref("CT2269050.backendstorage./9b9643g3/9e", "6A"); Supprimée : user_pref("CT2269050.backendstorage./9b<:222h64<", "393F352F3E"); Supprimée : user_pref("CT2269050.backendstorage./9b=+03eh8h8j?:", "4443"); Supprimée : user_pref("CT2269050.backendstorage./9b?+e2a52d8", "372C2D326975762E3A3C7B3A39434A494841434B26514649[...] Supprimée : user_pref("CT2269050.backendstorage./9b?b0d:8aj62<h", "6D"); Supprimée : user_pref("CT2269050.backendstorage./9ba@0<0bi6a7gn:6@l?", "6E6B"); Supprimée : user_pref("CT2269050.backendstorage.autocompletepro_enable", "31"); Supprimée : user_pref("CT2269050.backendstorage.autocompletepro_enable_auto", "31"); Supprimée : user_pref("CT2269050.backendstorage.cb_firstuse0100", "31"); Supprimée : user_pref("CT2269050.backendstorage.cbfirsttime", "5475652044656320313320323031312031303A30353A30392[...] Supprimée : user_pref("CT2269050.backendstorage.shoppingapp.gk.exipres", "4672692046656220313020323031322032303A[...] Supprimée : user_pref("CT2269050.backendstorage.shoppingapp.gk.geolocation", "6672616E6365"); Supprimée : user_pref("CT2269050.backendstorage.url_history", "687474703A2F2F7777772E796F75747562652E636F6D2F776[...] Supprimée : user_pref("CT2269050.backendstorage.url_history_time", "31333237363436363938353236"); Supprimée : user_pref("CT2269050.backendstorage.youtube_user_first_login_date", "30322F31382F32303131"); Supprimée : user_pref("CT2269050.backendstorage.youtube_user_survey_visit", "4E4F545F56495349544544"); Supprimée : user_pref("CT2269050.clientLogIsEnabled", true); Supprimée : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...] Supprimée : user_pref("CT2269050.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...] Supprimée : user_pref("CT2269050.globalFirstTimeInfoLastCheckTime", "Sun Feb 05 2012 20:43:51 GMT+0100"); Supprimée : user_pref("CT2269050.homepageProtectorEnableByLogin", true); Supprimée : user_pref("CT2269050.initDone", true); Supprimée : user_pref("CT2269050.isAppTrackingManagerOn", true); Supprimée : user_pref("CT2269050.isFirstRadioInstallation", false); Supprimée : user_pref("CT2269050.myStuffEnabled", true); Supprimée : user_pref("CT2269050.myStuffPublihserMinWidth", 400); Supprimée : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...] Supprimée : user_pref("CT2269050.myStuffServiceIntervalMM", 1440); Supprimée : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...] Supprimée : user_pref("CT2269050.oldAppsList", "128834881989343894,128834881989343895,111,129466585399606892,129[...] Supprimée : user_pref("CT2269050.revertSettingsEnabled", true); Supprimée : user_pref("CT2269050.searchProtectorDialogDelayInSec", 10); Supprimée : user_pref("CT2269050.searchProtectorEnableByLogin", true); Supprimée : user_pref("CT2269050.testingCtid", ""); Supprimée : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sun Feb 05 2012 20:43:51 GMT+0100"); Supprimée : user_pref("CT2269050.toolbarContextMenuLastCheckTime", "Mon Jan 23 2012 07:46:51 GMT+0100"); Supprimée : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...] Supprimée : user_pref("CT2269050.usagesFlag", 2); Supprimée : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT2269050/CT2269050[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/666138/661999/FR", "\"0\"")[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2269050", [...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2269050",[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2269050&octid=[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/equalizer[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/minimize.[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/play.gif"[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/stop.gif"[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Bluenote/vol.gif",[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE",[...] Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"cde[...] Supprimée : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Documents and Settings\\MéloTomy\\Applicat[...] Supprimée : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.7.0.6"); Supprimée : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://pgcff.pricegong.com/agreement/agree.html#pg_e[...] Supprimée : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://storage.conduit.com/50/226/CT2269050/Gadgets/[...] Supprimée : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://storage.conduit.com/MarketPlace/07/dd/07caac7[...] Supprimée : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://mystart.incredimail.com/?loc=ff_a[...] Supprimée : user_pref("CommunityToolbar.ToolbarsList", "CT2269050"); Supprimée : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050"); Supprimée : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Thu Dec 30 2010 19:38:12 GMT+0100"); Supprimée : user_pref("CommunityToolbar.globalUserId", "213f9940-e854-4239-ab1e-f3b39e66dfdd"); Supprimée : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true); Supprimée : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true); Supprimée : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050"); Supprimée : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sun Feb 05 2012 20:43:5[...] Supprimée : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440); Supprimée : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sun Feb 05 2012 20:43:59 GMT+010[...] Supprimée : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com"); Supprimée : user_pref("CommunityToolbar.notifications.locale", "en"); Supprimée : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440); Supprimée : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sun Feb 05 2012 20:43:46 GMT+0100"); Supprimée : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611"); Supprimée : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20); Supprimée : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com"); Supprimée : user_pref("CommunityToolbar.notifications.showTrayIcon", false); Supprimée : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300); Supprimée : user_pref("CommunityToolbar.notifications.userId", "6e6ea817-2b57-40cd-afb2-80d8c586ee57"); Supprimée : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&Sea[...] -\\ Google Chrome v [impossible d'obtenir la version] Fichier : C:\Documents and Settings\MéloTomy\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences [OK] Le fichier ne contient aucune entrée illégitime. ************************* AdwCleaner[s1].txt - [25815 octets] - [06/02/2012 20:28:22] ************************* Dossier Temporaire : 5 dossier(s) et 2 fichier(s) supprimés ########## EOF - C:\AdwCleaner[s1].txt - [26036 octets] ########## -
PC infecté par Internet Security
melo302 a répondu à un(e) sujet de melo302 dans Analyses et éradication malwares
Voici le rapport MBAM : Malwarebytes Anti-Malware 1.60.1.1000 www.malwarebytes.org Version de la base de données: v2012.02.05.03 Windows XP Service Pack 3 x86 NTFS Internet Explorer 7.0.5730.11 MéloTomy :: LENOVO-D0DAC8D8 [administrateur] 05/02/2012 21:50:54 mbam-log-2012-02-05 (21-50-54).txt Type d'examen: Examen complet Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM Options d'examen désactivées: P2P Elément(s) analysé(s): 267203 Temps écoulé: 1 heure(s), 29 minute(s), 30 seconde(s) Processus mémoire détecté(s): 0 (Aucun élément nuisible détecté) Module(s) mémoire détecté(s): 0 (Aucun élément nuisible détecté) Clé(s) du Registre détectée(s): 2 HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Mis en quarantaine et supprimé avec succès. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} (Rogue.WinAntiVirus) -> Mis en quarantaine et supprimé avec succès. Valeur(s) du Registre détectée(s): 1 HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|{2B507570-30B1-AD7B-295E-189511E13B87} (Trojan.ZbotR.Gen) -> Données: "C:\Documents and Settings\MéloTomy\Application Data\Jolyeg\ecun.exe" -> Mis en quarantaine et supprimé avec succès. Elément(s) de données du Registre détecté(s): 0 (Aucun élément nuisible détecté) Dossier(s) détecté(s): 6 C:\Documents and Settings\All Users\Application Data\Solt Lake Software (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009 (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\BASE (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\DELETED (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\SAVED (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. Fichier(s) détecté(s): 14 C:\Documents and Settings\All Users\Application Data\isecurity.exe (Trojan.FakeAlert) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Application Data\Sun\Java\Deployment\cache\6.0\46\661c1aae-128109a0 (Trojan.Downloader) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Application Data\Sun\Java\Deployment\cache\6.0\6\33b5046-12070542 (Trojan.Agent) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Bureau\RK_Quarantine\isecurity.exe.vir (Trojan.FakeAlert) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Local Settings\Temp\66.tmp (Trojan.FakeAlert) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Local Settings\Temp\yr0.15943163154954565.exe (Trojan.Agent) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Local Settings\Temp\yr0.5086283738088563.exe (Trojan.Agent) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Local Settings\Temp\~!#62.tmp (Trojan.Downloader) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Local Settings\Temp\~!#64.tmp (Trojan.FakeAlert) -> Mis en quarantaine et supprimé avec succès. C:\RECYCLER\S-1-5-21-1720325122-2594813349-1095243140-500\Dc9.exe (Trojan.Shutdowner) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\MéloTomy\Application Data\Jolyeg\ecun.exe (Trojan.ZbotR.Gen) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20081021104545796.log (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20081021105628640.log (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. C:\Documents and Settings\All Users\Application Data\Solt Lake Software\Pro Antispyware 2009\LOG\20081021184946156.log (Rogue.ProAntiSpyware) -> Mis en quarantaine et supprimé avec succès. (fin) Merci -
PC infecté par Internet Security
melo302 a répondu à un(e) sujet de melo302 dans Analyses et éradication malwares
Merci beaucoup pour ton aide, je vais suivre la procédure. Je risque de ne pas trop donner de signe de vie demain car j'aurai très peu accès à mon ordinateur mais je viendrai dès que possible lire ta réponse. Merci encore! Bonne soirée -
PC infecté par Internet Security
melo302 a répondu à un(e) sujet de melo302 dans Analyses et éradication malwares
Voici le rapport : 21:06:31.0265 1212 TDSS rootkit removing tool 2.7.9.0 Feb 1 2012 09:28:49 21:06:31.0515 1212 ============================================================ 21:06:31.0515 1212 Current date / time: 2012/02/05 21:06:31.0515 21:06:31.0515 1212 SystemInfo: 21:06:31.0515 1212 21:06:31.0515 1212 OS Version: 5.1.2600 ServicePack: 3.0 21:06:31.0515 1212 Product type: Workstation 21:06:31.0515 1212 ComputerName: LENOVO-D0DAC8D8 21:06:31.0515 1212 UserName: MéloTomy 21:06:31.0515 1212 Windows directory: C:\WINDOWS 21:06:31.0515 1212 System windows directory: C:\WINDOWS 21:06:31.0515 1212 Processor architecture: Intel x86 21:06:31.0515 1212 Number of processors: 1 21:06:31.0515 1212 Page size: 0x1000 21:06:31.0515 1212 Boot type: Normal boot 21:06:31.0515 1212 ============================================================ 21:06:33.0359 1212 Drive \Device\Harddisk0\DR0 - Size: 0x12A2480000 (74.54 Gb), SectorSize: 0x200, Cylinders: 0x2602, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 21:06:33.0359 1212 Drive \Device\Harddisk1\DR7 - Size: 0x78000000 (1.88 Gb), SectorSize: 0x200, Cylinders: 0xF4, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 21:06:33.0359 1212 \Device\Harddisk0\DR0: 21:06:33.0359 1212 MBR used 21:06:33.0359 1212 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8DDECED 21:06:33.0359 1212 \Device\Harddisk1\DR7: 21:06:33.0359 1212 MBR used 21:06:33.0359 1212 \Device\Harddisk1\DR7\Partition0: MBR, Type 0x6, StartLBA 0x4DC, BlocksNum 0x3BFB24 21:06:33.0406 1212 Initialize success 21:06:33.0406 1212 ============================================================ 21:07:00.0843 0528 ============================================================ 21:07:00.0843 0528 Scan started 21:07:00.0843 0528 Mode: Manual; SigCheck; TDLFS; 21:07:00.0843 0528 ============================================================ 21:07:01.0156 0528 Abiosdsk - ok 21:07:01.0171 0528 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS 21:07:01.0734 0528 abp480n5 - ok 21:07:01.0812 0528 ac97intc (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys 21:07:01.0984 0528 ac97intc - ok 21:07:02.0015 0528 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 21:07:02.0218 0528 ACPI - ok 21:07:02.0250 0528 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 21:07:02.0484 0528 ACPIEC - ok 21:07:02.0562 0528 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys 21:07:02.0750 0528 adpu160m - ok 21:07:02.0781 0528 aeaudio (9f59ae2de835641fbb0c6afd80d8fa9b) C:\WINDOWS\system32\drivers\aeaudio.sys 21:07:02.0968 0528 aeaudio - ok 21:07:03.0078 0528 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 21:07:03.0265 0528 aec - ok 21:07:03.0343 0528 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys 21:07:03.0437 0528 AFD - ok 21:07:03.0531 0528 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys 21:07:03.0718 0528 agp440 - ok 21:07:03.0750 0528 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys 21:07:03.0906 0528 agpCPQ - ok 21:07:03.0937 0528 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys 21:07:04.0031 0528 Aha154x - ok 21:07:04.0109 0528 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys 21:07:04.0296 0528 aic78u2 - ok 21:07:04.0312 0528 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys 21:07:04.0484 0528 aic78xx - ok 21:07:04.0515 0528 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys 21:07:04.0687 0528 AliIde - ok 21:07:04.0796 0528 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys 21:07:05.0000 0528 alim1541 - ok 21:07:05.0015 0528 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys 21:07:05.0203 0528 amdagp - ok 21:07:05.0218 0528 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys 21:07:05.0312 0528 amsint - ok 21:07:05.0343 0528 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys 21:07:05.0515 0528 asc - ok 21:07:05.0593 0528 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys 21:07:05.0687 0528 asc3350p - ok 21:07:05.0718 0528 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys 21:07:05.0890 0528 asc3550 - ok 21:07:05.0937 0528 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 21:07:06.0140 0528 AsyncMac - ok 21:07:06.0218 0528 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 21:07:06.0437 0528 atapi - ok 21:07:06.0453 0528 Atdisk - ok 21:07:06.0484 0528 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 21:07:06.0734 0528 Atmarpc - ok 21:07:06.0781 0528 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 21:07:06.0968 0528 audstub - ok 21:07:07.0000 0528 b57w2k (e5359a62ef537c4c25e364029272b439) C:\WINDOWS\system32\DRIVERS\b57xp32.sys 21:07:07.0062 0528 b57w2k - ok 21:07:07.0125 0528 Beep - ok 21:07:07.0156 0528 Blfp (60b1b203b5b2fb69b7dcec28a93f7342) C:\WINDOWS\system32\DRIVERS\baspxp32.sys 21:07:07.0421 0528 Blfp - ok 21:07:07.0437 0528 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys 21:07:07.0625 0528 cbidf - ok 21:07:07.0687 0528 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 21:07:07.0859 0528 cbidf2k - ok 21:07:07.0890 0528 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys 21:07:07.0984 0528 cd20xrnt - ok 21:07:08.0015 0528 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 21:07:08.0187 0528 Cdaudio - ok 21:07:08.0234 0528 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 21:07:08.0421 0528 Cdfs - ok 21:07:08.0484 0528 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 21:07:08.0671 0528 Cdrom - ok 21:07:08.0703 0528 Changer - ok 21:07:08.0718 0528 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys 21:07:08.0906 0528 CmdIde - ok 21:07:08.0937 0528 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys 21:07:09.0109 0528 Cpqarray - ok 21:07:09.0140 0528 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys 21:07:09.0296 0528 dac2w2k - ok 21:07:09.0343 0528 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys 21:07:09.0515 0528 dac960nt - ok 21:07:09.0578 0528 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 21:07:09.0734 0528 Disk - ok 21:07:09.0781 0528 DLABOIOM (efae981c8ba3dad4103a76bcb5955b07) C:\WINDOWS\system32\DLA\DLABOIOM.SYS 21:07:09.0890 0528 DLABOIOM ( UnsignedFile.Multi.Generic ) - warning 21:07:09.0890 0528 DLABOIOM - detected UnsignedFile.Multi.Generic (1) 21:07:09.0953 0528 DLACDBHM (8d45ac148fd8c1a25204aeca1397fa7e) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS 21:07:10.0062 0528 DLACDBHM ( UnsignedFile.Multi.Generic ) - warning 21:07:10.0062 0528 DLACDBHM - detected UnsignedFile.Multi.Generic (1) 21:07:10.0109 0528 DLADResN (566361f88b2930e49eb40089268fb936) C:\WINDOWS\system32\DLA\DLADResN.SYS 21:07:10.0234 0528 DLADResN ( UnsignedFile.Multi.Generic ) - warning 21:07:10.0234 0528 DLADResN - detected UnsignedFile.Multi.Generic (1) 21:07:10.0312 0528 DLAIFS_M (2aef49904bde7398d0f09b6a603738ef) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS 21:07:10.0453 0528 DLAIFS_M ( UnsignedFile.Multi.Generic ) - warning 21:07:10.0453 0528 DLAIFS_M - detected UnsignedFile.Multi.Generic (1) 21:07:10.0500 0528 DLAOPIOM (46fa268a829384256179f4ccb6eb308f) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS 21:07:10.0625 0528 DLAOPIOM ( UnsignedFile.Multi.Generic ) - warning 21:07:10.0625 0528 DLAOPIOM - detected UnsignedFile.Multi.Generic (1) 21:07:10.0671 0528 DLAPoolM (26e89839af248625a4e7c4cf5873375d) C:\WINDOWS\system32\DLA\DLAPoolM.SYS 21:07:10.0828 0528 DLAPoolM ( UnsignedFile.Multi.Generic ) - warning 21:07:10.0828 0528 DLAPoolM - detected UnsignedFile.Multi.Generic (1) 21:07:10.0875 0528 DLARTL_N (94accf8f7b87fbeaa27266927319e6ba) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS 21:07:10.0984 0528 DLARTL_N ( UnsignedFile.Multi.Generic ) - warning 21:07:10.0984 0528 DLARTL_N - detected UnsignedFile.Multi.Generic (1) 21:07:11.0078 0528 DLAUDFAM (5e914bd7f68dde3fb4bffe005162c1e6) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS 21:07:11.0203 0528 DLAUDFAM ( UnsignedFile.Multi.Generic ) - warning 21:07:11.0203 0528 DLAUDFAM - detected UnsignedFile.Multi.Generic (1) 21:07:11.0250 0528 DLAUDF_M (8c3cfb22a7fb3be67e0c321fa10b8b50) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS 21:07:11.0390 0528 DLAUDF_M ( UnsignedFile.Multi.Generic ) - warning 21:07:11.0390 0528 DLAUDF_M - detected UnsignedFile.Multi.Generic (1) 21:07:11.0484 0528 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 21:07:11.0703 0528 dmboot - ok 21:07:11.0765 0528 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 21:07:11.0921 0528 dmio - ok 21:07:11.0953 0528 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 21:07:12.0125 0528 dmload - ok 21:07:12.0140 0528 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 21:07:12.0328 0528 DMusic - ok 21:07:12.0375 0528 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys 21:07:12.0546 0528 dpti2o - ok 21:07:12.0593 0528 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 21:07:12.0765 0528 drmkaud - ok 21:07:12.0812 0528 DRVMCDB (ab6c5c26fff9b3c456aeaf7e0093c2fe) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS 21:07:12.0906 0528 DRVMCDB ( UnsignedFile.Multi.Generic ) - warning 21:07:12.0906 0528 DRVMCDB - detected UnsignedFile.Multi.Generic (1) 21:07:12.0921 0528 DRVNDDM (4a307ade1638d9358b6eb90076481cc6) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS 21:07:13.0046 0528 DRVNDDM ( UnsignedFile.Multi.Generic ) - warning 21:07:13.0046 0528 DRVNDDM - detected UnsignedFile.Multi.Generic (1) 21:07:13.0109 0528 E100B (1961f8b618e3c20df54c146b294efd2a) C:\WINDOWS\system32\DRIVERS\e100b325.sys 21:07:13.0265 0528 E100B - ok 21:07:13.0281 0528 EGATHDRV (2d0fc676d159525f6cd74c3302c7a61c) C:\WINDOWS\SYSTEM32\EGATHDRV.SYS 21:07:13.0406 0528 EGATHDRV ( UnsignedFile.Multi.Generic ) - warning 21:07:13.0406 0528 EGATHDRV - detected UnsignedFile.Multi.Generic (1) 21:07:13.0484 0528 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 21:07:13.0656 0528 Fastfat - ok 21:07:13.0671 0528 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 21:07:13.0859 0528 Fdc - ok 21:07:13.0906 0528 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 21:07:14.0093 0528 Fips - ok 21:07:14.0125 0528 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 21:07:14.0312 0528 Flpydisk - ok 21:07:14.0343 0528 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 21:07:14.0562 0528 FltMgr - ok 21:07:14.0609 0528 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 21:07:14.0890 0528 Fs_Rec - ok 21:07:14.0953 0528 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 21:07:15.0125 0528 Ftdisk - ok 21:07:15.0156 0528 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys 21:07:15.0265 0528 GEARAspiWDM - ok 21:07:15.0328 0528 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 21:07:15.0500 0528 Gpc - ok 21:07:15.0609 0528 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 21:07:15.0796 0528 HidUsb - ok 21:07:15.0843 0528 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys 21:07:16.0015 0528 hpn - ok 21:07:16.0046 0528 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys 21:07:16.0218 0528 HTTP - ok 21:07:16.0343 0528 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys 21:07:16.0531 0528 i2omgmt - ok 21:07:16.0562 0528 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys 21:07:16.0734 0528 i2omp - ok 21:07:16.0765 0528 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 21:07:16.0937 0528 i8042prt - ok 21:07:16.0984 0528 ialm (4007984827e19e6a5b6faf8532eaefba) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 21:07:17.0250 0528 ialm - ok 21:07:17.0343 0528 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 21:07:17.0531 0528 Imapi - ok 21:07:17.0562 0528 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys 21:07:17.0718 0528 ini910u - ok 21:07:17.0734 0528 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys 21:07:17.0921 0528 IntelIde - ok 21:07:18.0000 0528 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 21:07:18.0203 0528 intelppm - ok 21:07:18.0250 0528 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 21:07:18.0437 0528 Ip6Fw - ok 21:07:18.0468 0528 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 21:07:18.0687 0528 IpFilterDriver - ok 21:07:18.0750 0528 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 21:07:18.0921 0528 IpInIp - ok 21:07:19.0000 0528 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 21:07:19.0156 0528 IpNat - ok 21:07:19.0171 0528 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 21:07:19.0343 0528 IPSec - ok 21:07:19.0359 0528 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 21:07:19.0453 0528 IRENUM - ok 21:07:19.0484 0528 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 21:07:19.0656 0528 isapnp - ok 21:07:19.0703 0528 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 21:07:19.0859 0528 Kbdclass - ok 21:07:19.0937 0528 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 21:07:20.0109 0528 kmixer - ok 21:07:20.0125 0528 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys 21:07:20.0281 0528 KSecDD - ok 21:07:20.0296 0528 lbrtfdc - ok 21:07:20.0375 0528 mfeapfk (fb8536dce0009ecd4f72a173276cded3) C:\WINDOWS\system32\drivers\mfeapfk.sys 21:07:21.0031 0528 mfeapfk - ok 21:07:21.0125 0528 mfeavfk (876fce4b0ee84c7530ab22e8a60322ea) C:\WINDOWS\system32\drivers\mfeavfk.sys 21:07:21.0156 0528 mfeavfk - ok 21:07:21.0171 0528 mfebopk (87e2482fd7ad621c8b2009e3c4046b72) C:\WINDOWS\system32\drivers\mfebopk.sys 21:07:21.0203 0528 mfebopk - ok 21:07:21.0218 0528 mfehidk (9ed75df41a13784455effaf5ee1130c4) C:\WINDOWS\system32\drivers\mfehidk.sys 21:07:21.0250 0528 mfehidk - ok 21:07:21.0265 0528 mfetdik (03cc70c8f848e70a1725925d8fce0f7b) C:\WINDOWS\system32\drivers\mfetdik.sys 21:07:21.0296 0528 mfetdik - ok 21:07:21.0343 0528 MidiSyn (8c7d037a53b495e7c250fd70b158b581) C:\WINDOWS\system32\drivers\MidiSyn.sys 21:07:21.0500 0528 MidiSyn - ok 21:07:21.0578 0528 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 21:07:21.0765 0528 mnmdd - ok 21:07:21.0812 0528 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 21:07:21.0968 0528 Modem - ok 21:07:22.0031 0528 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 21:07:22.0250 0528 Mouclass - ok 21:07:22.0296 0528 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 21:07:22.0500 0528 mouhid - ok 21:07:22.0515 0528 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 21:07:22.0734 0528 MountMgr - ok 21:07:22.0765 0528 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys 21:07:22.0937 0528 mraid35x - ok 21:07:23.0015 0528 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 21:07:23.0171 0528 MRxDAV - ok 21:07:23.0234 0528 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 21:07:23.0375 0528 MRxSmb - ok 21:07:23.0453 0528 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 21:07:23.0625 0528 Msfs - ok 21:07:23.0656 0528 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 21:07:23.0828 0528 MSKSSRV - ok 21:07:23.0859 0528 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 21:07:24.0031 0528 MSPCLOCK - ok 21:07:24.0046 0528 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 21:07:24.0203 0528 MSPQM - ok 21:07:24.0218 0528 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 21:07:24.0390 0528 mssmbios - ok 21:07:24.0484 0528 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys 21:07:24.0640 0528 Mup - ok 21:07:24.0656 0528 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 21:07:24.0828 0528 NDIS - ok 21:07:24.0859 0528 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 21:07:25.0031 0528 NdisTapi - ok 21:07:25.0046 0528 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 21:07:25.0203 0528 Ndisuio - ok 21:07:25.0296 0528 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 21:07:25.0468 0528 NdisWan - ok 21:07:25.0500 0528 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys 21:07:25.0671 0528 NDProxy - ok 21:07:25.0703 0528 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 21:07:25.0859 0528 NetBIOS - ok 21:07:25.0984 0528 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 21:07:26.0156 0528 NetBT - ok 21:07:26.0265 0528 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 21:07:26.0500 0528 Npfs - ok 21:07:26.0750 0528 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 21:07:26.0984 0528 Ntfs - ok 21:07:27.0218 0528 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 21:07:27.0390 0528 Null - ok 21:07:28.0031 0528 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 21:07:28.0312 0528 nv - ok 21:07:28.0390 0528 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 21:07:28.0562 0528 NwlnkFlt - ok 21:07:28.0578 0528 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 21:07:28.0734 0528 NwlnkFwd - ok 21:07:28.0765 0528 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys 21:07:28.0937 0528 Parport - ok 21:07:28.0953 0528 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 21:07:29.0109 0528 PartMgr - ok 21:07:29.0187 0528 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 21:07:29.0343 0528 ParVdm - ok 21:07:29.0359 0528 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 21:07:29.0515 0528 PCI - ok 21:07:29.0531 0528 PCIDump - ok 21:07:29.0562 0528 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 21:07:29.0718 0528 PCIIde - ok 21:07:29.0750 0528 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys 21:07:29.0921 0528 Pcmcia - ok 21:07:29.0953 0528 PDCOMP - ok 21:07:29.0968 0528 PDFRAME - ok 21:07:29.0968 0528 PDRELI - ok 21:07:29.0984 0528 PDRFRAME - ok 21:07:30.0015 0528 pelmouse (e541a80cdffd6077c761b4578efc0450) C:\WINDOWS\system32\DRIVERS\pelmouse.sys 21:07:30.0203 0528 pelmouse - ok 21:07:30.0234 0528 pelusblf (6432858a4493e906a7d61b9b17a0672a) C:\WINDOWS\system32\DRIVERS\pelusblf.sys 21:07:30.0406 0528 pelusblf - ok 21:07:30.0468 0528 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys 21:07:30.0656 0528 perc2 - ok 21:07:30.0703 0528 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys 21:07:30.0890 0528 perc2hib - ok 21:07:30.0937 0528 pmem (fa292805788528c083f416e151b60ab6) C:\WINDOWS\System32\drivers\pmemnt.sys 21:07:30.0953 0528 pmem ( UnsignedFile.Multi.Generic ) - warning 21:07:30.0953 0528 pmem - detected UnsignedFile.Multi.Generic (1) 21:07:31.0031 0528 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 21:07:31.0203 0528 PptpMiniport - ok 21:07:31.0234 0528 Processor (e19c9632ac828f6f214391e2bdda11cb) C:\WINDOWS\system32\DRIVERS\processr.sys 21:07:31.0406 0528 Processor - ok 21:07:31.0421 0528 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 21:07:31.0593 0528 PSched - ok 21:07:31.0609 0528 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 21:07:31.0781 0528 Ptilink - ok 21:07:31.0828 0528 PxHelp20 (183ef96bcc2ec3d5294cb2c2c0ecbcd1) C:\WINDOWS\system32\Drivers\PxHelp20.sys 21:07:31.0953 0528 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning 21:07:31.0953 0528 PxHelp20 - detected UnsignedFile.Multi.Generic (1) 21:07:32.0000 0528 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys 21:07:32.0156 0528 ql1080 - ok 21:07:32.0218 0528 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys 21:07:32.0375 0528 Ql10wnt - ok 21:07:32.0390 0528 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys 21:07:32.0546 0528 ql12160 - ok 21:07:32.0593 0528 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys 21:07:32.0750 0528 ql1240 - ok 21:07:32.0812 0528 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys 21:07:32.0953 0528 ql1280 - ok 21:07:32.0984 0528 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 21:07:33.0187 0528 RasAcd - ok 21:07:33.0234 0528 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 21:07:33.0390 0528 Rasl2tp - ok 21:07:33.0421 0528 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 21:07:33.0562 0528 RasPppoe - ok 21:07:33.0578 0528 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 21:07:33.0718 0528 Raspti - ok 21:07:33.0750 0528 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 21:07:33.0906 0528 Rdbss - ok 21:07:33.0953 0528 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 21:07:34.0109 0528 RDPCDD - ok 21:07:34.0156 0528 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 21:07:34.0375 0528 rdpdr - ok 21:07:34.0421 0528 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 21:07:34.0625 0528 RDPWD - ok 21:07:34.0671 0528 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 21:07:34.0843 0528 redbook - ok 21:07:34.0921 0528 s716bus (d7a84ef8f953a2d704580e4e73e00011) C:\WINDOWS\system32\DRIVERS\s716bus.sys 21:07:35.0031 0528 s716bus - ok 21:07:35.0078 0528 s716mdfl (c5b509cdeeb733efafadc2d93bc77712) C:\WINDOWS\system32\DRIVERS\s716mdfl.sys 21:07:35.0187 0528 s716mdfl - ok 21:07:35.0250 0528 s716mdm (dc3dec64860878540b374dc7d15d921f) C:\WINDOWS\system32\DRIVERS\s716mdm.sys 21:07:35.0375 0528 s716mdm - ok 21:07:35.0421 0528 s716mgmt (047fd555d897333ad9f61b1d4cc7c114) C:\WINDOWS\system32\DRIVERS\s716mgmt.sys 21:07:35.0546 0528 s716mgmt - ok 21:07:35.0625 0528 s716nd5 (2858193e91eef964e41b6a032e1e4418) C:\WINDOWS\system32\DRIVERS\s716nd5.sys 21:07:35.0734 0528 s716nd5 - ok 21:07:35.0781 0528 s716obex (cc6c212585891614cc2059ba48d27a86) C:\WINDOWS\system32\DRIVERS\s716obex.sys 21:07:35.0906 0528 s716obex - ok 21:07:35.0937 0528 s716unic (aaaeeba9fa0ecb0de6bba59f955cdefb) C:\WINDOWS\system32\DRIVERS\s716unic.sys 21:07:36.0046 0528 s716unic - ok 21:07:36.0171 0528 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 21:07:36.0265 0528 Secdrv - ok 21:07:36.0312 0528 senfilt (7a05f0bc834446c72ebc0ed846f37847) C:\WINDOWS\system32\drivers\senfilt.sys 21:07:36.0421 0528 senfilt - ok 21:07:36.0468 0528 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 21:07:36.0625 0528 serenum - ok 21:07:36.0703 0528 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys 21:07:36.0859 0528 Serial - ok 21:07:36.0890 0528 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys 21:07:37.0062 0528 Sfloppy - ok 21:07:37.0109 0528 silabenm (3ead8e1668ce42a0afe41d56e7157bcf) C:\WINDOWS\system32\DRIVERS\silabenm.sys 21:07:37.0234 0528 silabenm - ok 21:07:37.0296 0528 silabser (177d3ebf3e236a272d769c14f73ecc3e) C:\WINDOWS\system32\DRIVERS\silabser.sys 21:07:37.0484 0528 silabser - ok 21:07:37.0500 0528 Simbad - ok 21:07:37.0546 0528 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys 21:07:37.0703 0528 sisagp - ok 21:07:37.0765 0528 smwdm (1319ea66a96250d59665d133c0ff7cd0) C:\WINDOWS\system32\drivers\smwdm.sys 21:07:38.0000 0528 smwdm - ok 21:07:38.0046 0528 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS 21:07:38.0203 0528 SONYPVU1 - ok 21:07:38.0296 0528 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys 21:07:38.0421 0528 Sparrow - ok 21:07:38.0468 0528 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 21:07:38.0687 0528 splitter - ok 21:07:38.0718 0528 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 21:07:38.0843 0528 sr - ok 21:07:38.0953 0528 Srv (3bb03f2ba89d2be417206c373d2af17c) C:\WINDOWS\system32\DRIVERS\srv.sys 21:07:39.0031 0528 Srv - ok 21:07:39.0078 0528 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 21:07:39.0218 0528 swenum - ok 21:07:39.0250 0528 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 21:07:39.0421 0528 swmidi - ok 21:07:39.0500 0528 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys 21:07:39.0656 0528 symc810 - ok 21:07:39.0687 0528 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys 21:07:39.0843 0528 symc8xx - ok 21:07:39.0875 0528 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys 21:07:40.0031 0528 sym_hi - ok 21:07:40.0109 0528 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys 21:07:40.0250 0528 sym_u3 - ok 21:07:40.0296 0528 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 21:07:40.0468 0528 sysaudio - ok 21:07:40.0531 0528 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 21:07:40.0625 0528 Tcpip - ok 21:07:40.0703 0528 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 21:07:40.0859 0528 TDPIPE - ok 21:07:40.0890 0528 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 21:07:41.0031 0528 TDTCP - ok 21:07:41.0062 0528 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 21:07:41.0203 0528 TermDD - ok 21:07:41.0250 0528 TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys 21:07:41.0421 0528 TosIde - ok 21:07:41.0484 0528 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys 21:07:41.0515 0528 TrueSight ( UnsignedFile.Multi.Generic ) - warning 21:07:41.0515 0528 TrueSight - detected UnsignedFile.Multi.Generic (1) 21:07:41.0546 0528 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 21:07:41.0718 0528 Udfs - ok 21:07:41.0750 0528 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys 21:07:41.0843 0528 ultra - ok 21:07:41.0937 0528 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 21:07:42.0109 0528 Update - ok 21:07:42.0156 0528 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys 21:07:42.0406 0528 USBAAPL - ok 21:07:42.0500 0528 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 21:07:42.0656 0528 usbccgp - ok 21:07:42.0703 0528 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 21:07:42.0890 0528 usbehci - ok 21:07:42.0921 0528 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 21:07:43.0093 0528 usbhub - ok 21:07:43.0125 0528 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 21:07:43.0281 0528 usbscan - ok 21:07:43.0390 0528 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 21:07:43.0562 0528 USBSTOR - ok 21:07:43.0593 0528 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 21:07:43.0750 0528 usbuhci - ok 21:07:43.0781 0528 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 21:07:43.0937 0528 VgaSave - ok 21:07:43.0984 0528 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys 21:07:44.0140 0528 viaagp - ok 21:07:44.0234 0528 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys 21:07:44.0390 0528 ViaIde - ok 21:07:44.0406 0528 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 21:07:44.0562 0528 VolSnap - ok 21:07:44.0609 0528 wacmoumonitor (8724531219ae3f9e3729012b61dce527) C:\WINDOWS\system32\DRIVERS\wacmoumonitor.sys 21:07:44.0718 0528 wacmoumonitor - ok 21:07:44.0750 0528 wacommousefilter (427a8bc96f16c40df81c2d2f4edd32dd) C:\WINDOWS\system32\DRIVERS\wacommousefilter.sys 21:07:44.0859 0528 wacommousefilter - ok 21:07:44.0937 0528 wacomvhid (51d580f30d1a1f2ea4965af6abc2bcb2) C:\WINDOWS\system32\DRIVERS\wacomvhid.sys 21:07:45.0046 0528 wacomvhid - ok 21:07:45.0093 0528 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 21:07:45.0250 0528 Wanarp - ok 21:07:45.0312 0528 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys 21:07:45.0531 0528 Wdf01000 - ok 21:07:45.0593 0528 WDICA - ok 21:07:45.0640 0528 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 21:07:45.0796 0528 wdmaud - ok 21:07:45.0875 0528 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 21:07:45.0984 0528 WpdUsb - ok 21:07:46.0062 0528 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 21:07:46.0125 0528 WudfPf - ok 21:07:46.0187 0528 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 21:07:46.0250 0528 WudfRd - ok 21:07:46.0312 0528 MBR (0x1B8) (ca85022d1d4861393f7d75b84f8e9755) \Device\Harddisk0\DR0 21:07:46.0390 0528 \Device\Harddisk0\DR0 - ok 21:07:46.0390 0528 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk1\DR7 21:07:46.0703 0528 \Device\Harddisk1\DR7 - ok 21:07:46.0718 0528 Boot (0x1200) (648d8746c511461a93c88185c51887b0) \Device\Harddisk0\DR0\Partition0 21:07:46.0718 0528 \Device\Harddisk0\DR0\Partition0 - ok 21:07:46.0734 0528 Boot (0x1200) (b828d73358eed79ce88f802a457a533c) \Device\Harddisk1\DR7\Partition0 21:07:46.0734 0528 \Device\Harddisk1\DR7\Partition0 - ok 21:07:46.0734 0528 ============================================================ 21:07:46.0734 0528 Scan finished 21:07:46.0734 0528 ============================================================ 21:07:46.0875 1208 Detected object count: 15 21:07:46.0875 1208 Actual detected object count: 15 21:15:45.0906 1208 DLABOIOM ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0906 1208 DLABOIOM ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0906 1208 DLACDBHM ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0906 1208 DLACDBHM ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0906 1208 DLADResN ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0906 1208 DLADResN ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0906 1208 DLAIFS_M ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0906 1208 DLAIFS_M ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0906 1208 DLAOPIOM ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0906 1208 DLAOPIOM ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0906 1208 DLAPoolM ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0906 1208 DLAPoolM ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 DLARTL_N ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 DLARTL_N ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 DLAUDFAM ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 DLAUDFAM ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 DLAUDF_M ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 DLAUDF_M ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 DRVMCDB ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 DRVMCDB ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 DRVNDDM ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 DRVNDDM ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 EGATHDRV ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 EGATHDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 pmem ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 pmem ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:15:45.0921 1208 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user 21:15:45.0921 1208 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip -
PC infecté par Internet Security
melo302 a répondu à un(e) sujet de melo302 dans Analyses et éradication malwares
Je n'ai que des menaces de type "Unsigned file suspicious object, medium risk", qu'est ce que je mets dans ces cas là ? -
PC infecté par Internet Security
melo302 a répondu à un(e) sujet de melo302 dans Analyses et éradication malwares
Voici le rapport : RogueKiller V7.0.2 [30/01/2012] par Tigzy mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/45) Blog: tigzy-RK Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 3) 32 bits version Demarrage : Mode normal Utilisateur: MéloTomy [Droits d'admin] Mode: Suppression -- Date : 05/02/2012 20:54:48 ¤¤¤ Processus malicieux: 0 ¤¤¤ ¤¤¤ Entrees de registre: 3 ¤¤¤ [sUSP PATH] HKCU\[...]\Run : {2B507570-30B1-AD7B-295E-189511E13B87} ("C:\Documents and Settings\MéloTomy\Application Data\Jolyeg\ecun.exe") -> DELETED [sUSP PATH] HKCU\[...]\Run : Internet Security (C:\Documents and Settings\All Users\Application Data\isecurity.exe) -> DELETED [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ ¤¤¤ Driver: [CHARGE] ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ 127.0.0.1 localhost ¤¤¤ MBR Verif: ¤¤¤ +++++ PhysicalDrive0: HDS728080PLA380 40Y9028LEN +++++ --- User --- [MBR] 4326181629898dac4b72d6cae3411c7b [bSP] afe3a443e6d3373549f7b440697974cb : MBR Code unknown Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 72637 Mo 1 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 148761900 | Size: 3686 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: Generic Flash Disk USB Device +++++ --- User --- [MBR] 40db5fd37207cad9c6c635437c739998 [bSP] 987616d449f03a976a8ec4c4dd3f67e4 : MBR Code unknown Partition table: 0 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 1244 | Size: 1919 Mo User = LL1 ... OK! Error reading LL2 MBR! Termine : << RKreport[4].txt >> RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt -
PC infecté par Internet Security
melo302 a répondu à un(e) sujet de melo302 dans Analyses et éradication malwares
Bonsoir Apollo, Merci pour cette réponse rapide. J'ai effectué la manip que tu m'as conseillée. Voici le rapport: RogueKiller V7.0.2 [30/01/2012] par Tigzy mail: tigzyRK<at>gmail<dot>com Remontees: [RogueKiller] Remontées (1/45) Blog: tigzy-RK Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 3) 32 bits version Demarrage : Mode normal Utilisateur: MéloTomy [Droits d'admin] Mode: Recherche -- Date : 05/02/2012 20:41:28 ¤¤¤ Processus malicieux: 1 ¤¤¤ [sUSP PATH] isecurity.exe -- C:\Documents and Settings\All Users\Application Data\isecurity.exe -> KILLED [TermProc] ¤¤¤ Entrees de registre: 5 ¤¤¤ [sUSP PATH] HKCU\[...]\Run : {2B507570-30B1-AD7B-295E-189511E13B87} ("C:\Documents and Settings\MéloTomy\Application Data\Jolyeg\ecun.exe") -> FOUND [sUSP PATH] HKCU\[...]\Run : Internet Security (C:\Documents and Settings\All Users\Application Data\isecurity.exe) -> FOUND [sUSP PATH] HKUS\S-1-5-21-1720325122-2594813349-1095243140-1005[...]\Run : {2B507570-30B1-AD7B-295E-189511E13B87} ("C:\Documents and Settings\MéloTomy\Application Data\Jolyeg\ecun.exe") -> FOUND [sUSP PATH] HKUS\S-1-5-21-1720325122-2594813349-1095243140-1005[...]\Run : Internet Security (C:\Documents and Settings\All Users\Application Data\isecurity.exe) -> FOUND [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ ¤¤¤ Driver: [CHARGE] ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ 127.0.0.1 localhost ¤¤¤ MBR Verif: ¤¤¤ +++++ PhysicalDrive0: HDS728080PLA380 40Y9028LEN +++++ --- User --- [MBR] 4326181629898dac4b72d6cae3411c7b [bSP] afe3a443e6d3373549f7b440697974cb : MBR Code unknown Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 72637 Mo 1 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 148761900 | Size: 3686 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: Generic Flash Disk USB Device +++++ --- User --- [MBR] 40db5fd37207cad9c6c635437c739998 [bSP] 987616d449f03a976a8ec4c4dd3f67e4 : MBR Code unknown Partition table: 0 - [XXXXXX] FAT16 (0x06) [VISIBLE] Offset (sectors): 1244 | Size: 1919 Mo User = LL1 ... OK! Error reading LL2 MBR! Termine : << RKreport[1].txt >> RKreport[1].txt J'ai l'impression que le virus a disparu ? -
Bonjour, Mon PC est infecté par le virus Internet Security. Je crois que je suis sous Windows XP. J'ai vu qu'il y avait déjà un post récent sur le forum qui traitait du virus Internet Security, dois-je suivre la même démarche ? Par avance, merci pour votre aide