[Résolu] Un virus?

[lenab01]

le poste va quand même plus vite, il me semble

[Falkra]

Passe à IE7 puis au SP3, ensuite on fera quelques tests complets.

[lenab01]

pour IE7 je ne trouve pas de version pour sp1

il faut d'abord installer sp2 ?

[Falkra]

Le site a évolué et le setup d'IE aussi.

Passe directement au SP3. Ensuite tu pourras prendre le IE7 pour SP2/SP3.

[lenab01]

ok

[lenab01]

Salut

j'ai téléchargé le sp3

j'ai lancé la mise à jour

la première étape consiste à l'inspection de la config. ça n'avance pas !

depuis 30 mn, la barre de progression est toujours à 0%

l'activité sur le poste semble nulle

[lenab01]

SP3 installé, pour une grosse installe.... 4h00

 

par contre impossible d'installer IE7,

une fois cliqué sur técharger, une petite fenêtre, s'affiche en haut à gauche, l'affichage switche tout seul en permanence de cette fenêtre à la fenêtre principale, sans démarrer le téléchargement

 

....

[lenab01]

c'est encore pire qu'avant

le poste rame encore plus

je ne peux même pas l'éteindre sans couper le courant

...

[Falkra]

Huh, pas normal du tout.

Fais un rapport RSIT stp.

[lenab01]

rapport RSIT

 

Logfile of random's system information tool 1.02 (written by random/random)

Run by Maison at 2008-10-06 07:49:37

Microsoft Windows XP Professionnel Service Pack 3

System drive C: has 43 GB (56%) free of 76 GB

Total RAM: 511 MB (32% free)

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 07:50:27, on 06/10/2008

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\McAfee.com\Agent\mcagent.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe

C:\Program Files\PerSono\perstray.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\WINDOWS\System32\Ati2evxx.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe

c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe

c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe

C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe

C:\Program Files\McAfee\MPF\MPFSrv.exe

C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe

C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe

C:\Documents and Settings\Maison\Bureau\RSIT.exe

c:\PROGRA~1\mcafee.com\agent\mcupdate.exe

C:\Download\Maison.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')

O4 - Global Startup: Perstray.lnk = ?

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe

O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe

O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe

O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe

O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe

 

--

End of file - 7851 bytes

 

======Scheduled tasks folder======

 

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

C:\WINDOWS\tasks\McDefragTask.job

C:\WINDOWS\tasks\McQcTask.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]

Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]

RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-04-21 308856]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]

scriptproxy - C:\Program Files\McAfee\VirusScan\scriptsn.dll [2008-06-20 58688]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-06-09 2436160]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]

McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2008-07-23 120608]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2007-06-09 2436160]

{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2008-07-23 120608]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"ATIModeChange"=C:\WINDOWS\system32\Ati2mdxx.exe [2001-09-04 28672]

"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

"NeroFilterCheck"=C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2008-04-21 185896]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]

"AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-09-03 111936]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-09-10 289576]

"mcagent_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2008-07-11 641208]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe [2007-06-01 153136]

 

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage

Perstray.lnk - C:\Program Files\PerSono\perstray.exe

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]

"authentication packages"=

scecli

scecli

scecli

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDrives"=0

"NoDriveTypeAutoRun"=145

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=

"NoDrives"=

"NoDriveAutoRun"=

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"

"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"

"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

"C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe"="C:\Program Files\Fichiers communs\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"c:\efes.exe"="c:\efes.exe:*:Enabled:Server"

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

 

======List of files/folders created in the last 1 months======

 

2008-10-05 19:28:52 ----D---- C:\Program Files\Fichiers communs\McAfee

2008-10-05 19:28:32 ----D---- C:\Program Files\McAfee.com

2008-10-05 19:27:12 ----D---- C:\Program Files\McAfee

2008-10-05 12:00:18 ----D---- C:\WINDOWS\Prefetch

2008-10-05 11:48:41 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$

2008-10-05 11:12:27 ----N---- C:\WINDOWS\system32\msxml6r.dll

2008-10-05 11:12:27 ----N---- C:\WINDOWS\system32\msxml6.dll

2008-10-05 11:12:16 ----N---- C:\WINDOWS\system32\aaclient.dll

2008-10-05 11:12:15 ----N---- C:\WINDOWS\system32\credssp.dll

2008-10-05 11:12:15 ----N---- C:\WINDOWS\system32\bitsprx4.dll

2008-10-05 11:12:15 ----N---- C:\WINDOWS\system32\azroles.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dot3ui.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dot3svc.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dot3msm.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dot3dlg.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dot3cfg.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dot3api.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dimsroam.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dimsntfy.dll

2008-10-05 11:12:14 ----N---- C:\WINDOWS\system32\dhcpqec.dll

2008-10-05 11:12:13 ----N---- C:\WINDOWS\system32\eapsvc.dll

2008-10-05 11:12:13 ----N---- C:\WINDOWS\system32\eapqec.dll

2008-10-05 11:12:13 ----N---- C:\WINDOWS\system32\eappprxy.dll

2008-10-05 11:12:13 ----N---- C:\WINDOWS\system32\eapphost.dll

2008-10-05 11:12:13 ----N---- C:\WINDOWS\system32\eappgnui.dll

2008-10-05 11:12:13 ----N---- C:\WINDOWS\system32\eappcfg.dll

2008-10-05 11:12:13 ----N---- C:\WINDOWS\system32\eapp3hst.dll

2008-10-05 11:12:13 ----N---- C:\WINDOWS\system32\eapolqec.dll

2008-10-05 11:12:11 ----N---- C:\WINDOWS\system32\kbdiultn.dll

2008-10-05 11:12:11 ----N---- C:\WINDOWS\system32\kbdbhc.dll

2008-10-05 11:12:10 ----N---- C:\WINDOWS\system32\mmcex.dll

2008-10-05 11:12:10 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll

2008-10-05 11:12:10 ----N---- C:\WINDOWS\system32\l2gpstore.dll

2008-10-05 11:12:10 ----N---- C:\WINDOWS\system32\kmsvc.dll

2008-10-05 11:12:10 ----N---- C:\WINDOWS\system32\kbdpash.dll

2008-10-05 11:12:10 ----N---- C:\WINDOWS\system32\kbdnepr.dll

2008-10-05 11:12:09 ----N---- C:\WINDOWS\system32\mmcperf.exe

2008-10-05 11:12:09 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll

2008-10-05 11:12:08 ----N---- C:\WINDOWS\system32\napstat.exe

2008-10-05 11:12:08 ----N---- C:\WINDOWS\system32\napmontr.dll

2008-10-05 11:12:08 ----N---- C:\WINDOWS\system32\napipsec.dll

2008-10-05 11:12:08 ----N---- C:\WINDOWS\system32\msshavmsg.dll

2008-10-05 11:12:08 ----N---- C:\WINDOWS\system32\mssha.dll

2008-10-05 11:12:07 ----N---- C:\WINDOWS\system32\photometadatahandler.dll

2008-10-05 11:12:07 ----N---- C:\WINDOWS\system32\onex.dll

2008-10-05 11:12:06 ----N---- C:\WINDOWS\system32\setupn.exe

2008-10-05 11:12:06 ----N---- C:\WINDOWS\system32\rhttpaa.dll

2008-10-05 11:12:06 ----N---- C:\WINDOWS\system32\rasqec.dll

2008-10-05 11:12:06 ----N---- C:\WINDOWS\system32\qutil.dll

2008-10-05 11:12:06 ----N---- C:\WINDOWS\system32\qcliprov.dll

2008-10-05 11:12:06 ----N---- C:\WINDOWS\system32\qagentrt.dll

2008-10-05 11:12:06 ----N---- C:\WINDOWS\system32\qagent.dll

2008-10-05 11:12:04 ----N---- C:\WINDOWS\system32\tspkg.dll

2008-10-05 11:12:04 ----N---- C:\WINDOWS\system32\tsgqec.dll

2008-10-05 11:12:03 ----N---- C:\WINDOWS\system32\wlanapi.dll

2008-10-05 11:12:03 ----N---- C:\WINDOWS\system32\windowscodecsext.dll

2008-10-05 11:12:03 ----N---- C:\WINDOWS\system32\windowscodecs.dll

2008-10-05 11:12:02 ----N---- C:\WINDOWS\system32\wmphoto.dll

2008-10-05 11:11:56 ----D---- C:\WINDOWS\system32\fr

2008-10-05 11:11:56 ----D---- C:\WINDOWS\l2schemas

2008-10-05 10:55:54 ----A---- C:\WINDOWS\003103_.tmp

2008-10-05 10:09:43 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$

2008-10-05 00:58:22 ----D---- C:\8585dea14008ce1e205db27d4260

2008-10-04 23:41:22 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest

2008-10-04 23:40:49 ----A---- C:\WINDOWS\system32\safrslv.dll

2008-10-04 23:40:49 ----A---- C:\WINDOWS\system32\safrdm.dll

2008-10-04 23:40:49 ----A---- C:\WINDOWS\system32\safrcdlg.dll

2008-10-04 23:40:49 ----A---- C:\WINDOWS\system32\racpldlg.dll

2008-10-04 23:40:48 ----A---- C:\WINDOWS\system32\isrdbg32.dll

2008-10-04 23:40:47 ----A---- C:\WINDOWS\system32\mnmsrvc.exe

2008-10-04 23:40:46 ----A---- C:\WINDOWS\system32\inetres.dll

2008-10-04 23:40:45 ----A---- C:\WINDOWS\system32\isign32.dll

2008-10-04 23:40:45 ----A---- C:\WINDOWS\system32\inetcfg.dll

2008-10-04 23:40:45 ----A---- C:\WINDOWS\system32\icwphbk.dll

2008-10-04 23:40:45 ----A---- C:\WINDOWS\system32\icwdial.dll

2008-10-04 23:40:37 ----A---- C:\WINDOWS\system32\qmgrprxy.dll

2008-10-04 23:40:37 ----A---- C:\WINDOWS\system32\qmgr.dll

2008-10-04 23:40:30 ----A---- C:\WINDOWS\system32\srsvc.dll

2008-10-04 23:40:30 ----A---- C:\WINDOWS\system32\srrstr.dll

2008-10-04 23:40:30 ----A---- C:\WINDOWS\system32\srclient.dll

2008-10-04 23:40:29 ----A---- C:\WINDOWS\system32\ils.dll

2008-10-04 23:40:28 ----A---- C:\WINDOWS\system32\nmmkcert.dll

2008-10-04 23:40:28 ----A---- C:\WINDOWS\system32\msconf.dll

2008-10-04 23:40:28 ----A---- C:\WINDOWS\system32\mnmdd.dll

2008-10-04 23:40:24 ----A---- C:\WINDOWS\system32\msoert2.dll

2008-10-04 23:40:24 ----A---- C:\WINDOWS\system32\msoeacct.dll

2008-10-04 23:40:23 ----A---- C:\WINDOWS\system32\inetcomm.dll

2008-10-04 23:40:22 ----A---- C:\WINDOWS\system32\schedsvc.dll

2008-10-04 23:40:22 ----A---- C:\WINDOWS\system32\mstinit.exe

2008-10-04 23:40:22 ----A---- C:\WINDOWS\system32\mstask.dll

2008-10-04 23:38:54 ----A---- C:\WINDOWS\system32\accwiz.exe

2008-10-04 23:38:53 ----A---- C:\WINDOWS\system32\sndrec32.exe

2008-10-04 23:38:53 ----A---- C:\WINDOWS\system32\hypertrm.dll

2008-10-04 23:38:52 ----A---- C:\WINDOWS\system32\rdshost.exe

2008-10-04 23:38:52 ----A---- C:\WINDOWS\system32\qprocess.exe

2008-10-04 23:38:52 ----A---- C:\WINDOWS\system32\mtxoci.dll

2008-10-04 23:38:52 ----A---- C:\WINDOWS\system32\msdtcuiu.dll

2008-10-04 23:38:51 ----A---- C:\WINDOWS\system32\xolehlp.dll

2008-10-04 23:38:51 ----A---- C:\WINDOWS\system32\msdtctm.dll

2008-10-04 23:38:51 ----A---- C:\WINDOWS\system32\msdtclog.dll

2008-10-04 23:38:51 ----A---- C:\WINDOWS\system32\msdtc.exe

2008-10-04 23:38:50 ----A---- C:\WINDOWS\system32\comrepl.dll

2008-10-04 23:38:50 ----A---- C:\WINDOWS\system32\colbact.dll

2008-10-04 23:38:50 ----A---- C:\WINDOWS\system32\clbcatex.dll

2008-10-04 23:38:50 ----A---- C:\WINDOWS\system32\catsrvps.dll

2008-10-04 23:38:50 ----A---- C:\WINDOWS\system32\catsrv.dll

2008-10-04 23:38:49 ----A---- C:\WINDOWS\system32\comuid.dll

2008-10-04 23:38:49 ----A---- C:\WINDOWS\system32\clbcatq.dll

2008-10-04 23:38:44 ----A---- C:\WINDOWS\system32\servdeps.dll

2008-10-04 23:38:44 ----A---- C:\WINDOWS\system32\mmfutil.dll

2008-10-04 23:38:44 ----A---- C:\WINDOWS\system32\cmprops.dll

2008-10-04 23:38:43 ----A---- C:\WINDOWS\system32\mspaint.exe

2008-10-04 23:38:43 ----A---- C:\WINDOWS\system32\mplay32.exe

2008-10-04 23:38:42 ----A---- C:\WINDOWS\system32\wuauclt.exe

2008-10-04 23:38:42 ----A---- C:\WINDOWS\system32\spider.exe

2008-10-04 23:38:42 ----A---- C:\WINDOWS\system32\clipbrd.exe

2008-10-04 23:38:41 ----A---- C:\WINDOWS\system32\wuauserv.dll

2008-10-04 23:38:41 ----A---- C:\WINDOWS\system32\wuaueng.dll

2008-10-04 23:38:41 ----A---- C:\WINDOWS\system32\tscfgwmi.dll

2008-10-04 23:38:41 ----A---- C:\WINDOWS\system32\remotepg.dll

2008-10-04 23:38:41 ----A---- C:\WINDOWS\system32\mstscax.dll

2008-10-04 23:38:41 ----A---- C:\WINDOWS\system32\mstsc.exe

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\tscupgrd.exe

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\termsrv.dll

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\sessmgr.exe

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\rdsaddin.exe

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\rdpwsx.dll

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\rdpsnd.dll

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\rdpclip.exe

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\rdchost.dll

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\icaapi.dll

2008-10-04 23:38:40 ----A---- C:\WINDOWS\system32\cfgbkend.dll

2008-10-04 23:38:39 ----A---- C:\WINDOWS\system32\msdtcprx.dll

2008-10-04 23:38:39 ----A---- C:\WINDOWS\system32\catsrvut.dll

2008-10-04 23:38:38 ----A---- C:\WINDOWS\system32\comsvcs.dll

2008-10-04 23:38:33 ----A---- C:\WINDOWS\system32\licwmi.dll

2008-10-04 23:34:23 ----A---- C:\WINDOWS\system32\ksuser.dll

2008-10-04 23:31:21 ----A---- C:\WINDOWS\system32\irclass.dll

2008-10-04 23:31:20 ----A---- C:\WINDOWS\system32\spxcoins.dll

2008-10-04 23:31:18 ----A---- C:\WINDOWS\system32\storprop.dll

2008-10-04 23:30:54 ----RA---- C:\WINDOWS\SET111.tmp

2008-10-04 23:30:52 ----RA---- C:\WINDOWS\SETF3.tmp

2008-10-04 23:30:49 ----RA---- C:\WINDOWS\SETDE.tmp

2008-10-04 18:10:21 ----D---- C:\WINDOWS\system32\CatRoot2

2008-10-04 18:07:00 ----D---- C:\WINDOWS\temp

2008-10-03 23:01:43 ----D---- C:\Program Files\Avira GmbH

2008-10-02 23:44:16 ----A---- C:\ComboFix.txt

2008-09-29 22:38:40 ----SH---- C:\Boot.bak

2008-09-29 22:38:25 ----D---- C:\cmdcons

2008-09-28 23:40:58 ----D---- C:\WINDOWS\erdnt

2008-09-28 23:21:54 ----D---- C:\QooBox

2008-09-28 23:21:44 ----A---- C:\WINDOWS\zip.exe

2008-09-28 23:21:44 ----A---- C:\WINDOWS\VFind.exe

2008-09-28 23:21:44 ----A---- C:\WINDOWS\swxcacls.exe

2008-09-28 23:21:44 ----A---- C:\WINDOWS\SWSC.exe

2008-09-28 23:21:44 ----A---- C:\WINDOWS\swreg.exe

2008-09-28 23:21:44 ----A---- C:\WINDOWS\sed.exe

2008-09-28 23:21:44 ----A---- C:\WINDOWS\Nircmd.exe

2008-09-28 23:21:44 ----A---- C:\WINDOWS\grep.exe

2008-09-28 23:21:44 ----A---- C:\WINDOWS\fdsv.exe

2008-09-28 18:23:46 ----A---- C:\WINDOWS\gmer.ini

2008-09-28 18:23:27 ----A---- C:\WINDOWS\gmer_uninstall.cmd

2008-09-28 18:23:27 ----A---- C:\WINDOWS\gmer.dll

2008-09-28 18:23:26 ----A---- C:\WINDOWS\gmer.exe

2008-09-28 11:21:49 ----D---- C:\WINDOWS\BDOSCAN8

2008-09-27 17:04:55 ----D---- C:\rsit

2008-09-27 11:52:24 ----A---- C:\WINDOWS\system32\muweb.dll

2008-09-27 11:52:23 ----A---- C:\WINDOWS\system32\mucltui.dll.mui

2008-09-27 11:52:22 ----A---- C:\WINDOWS\system32\mucltui.dll

2008-09-26 21:31:24 ----D---- C:\Utilitaires

2008-09-26 19:02:05 ----SHDC---- C:\Program Files\Fichiers communs\WindowsLiveInstaller

2008-09-26 19:01:17 ----D---- C:\Program Files\Windows Live

2008-09-26 18:57:28 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller

2008-09-21 08:45:57 ----A---- C:\WINDOWS\system32\javaws.exe

2008-09-21 08:45:57 ----A---- C:\WINDOWS\system32\javaw.exe

2008-09-21 08:45:57 ----A---- C:\WINDOWS\system32\java.exe

2008-09-20 08:45:51 ----D---- C:\Program Files\iPod

2008-09-20 08:45:38 ----D---- C:\Program Files\iTunes

2008-09-20 08:45:38 ----D---- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}

2008-09-20 08:43:24 ----D---- C:\Program Files\Bonjour

2008-09-20 08:41:14 ----D---- C:\Program Files\QuickTime

 

======List of files/folders modified in the last 1 months======

 

2008-10-06 07:49:54 ----D---- C:\Download

2008-10-05 20:31:22 ----D---- C:\WINDOWS

2008-10-05 19:46:05 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee

2008-10-05 19:45:51 ----D---- C:\WINDOWS\system32

2008-10-05 19:44:23 ----HD---- C:\WINDOWS\inf

2008-10-05 19:36:27 ----D---- C:\WINDOWS\system32\drivers

2008-10-05 19:30:51 ----SD---- C:\WINDOWS\Tasks

2008-10-05 19:28:52 ----D---- C:\Program Files\Fichiers communs

2008-10-05 19:28:32 ----RD---- C:\Program Files

2008-10-05 17:02:11 ----D---- C:\WINDOWS\Debug

2008-10-05 17:00:25 ----A---- C:\WINDOWS\SchedLgU.Txt

2008-10-05 12:06:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2008-10-05 12:02:15 ----SHD---- C:\WINDOWS\Installer

2008-10-05 12:01:45 ----D---- C:\WINDOWS\system32\inetsrv

2008-10-05 12:01:29 ----A---- C:\WINDOWS\OEWABLog.txt

2008-10-05 12:00:28 ----A---- C:\WINDOWS\setuplog.txt

2008-10-05 11:59:32 ----D---- C:\WINDOWS\system32\Setup

2008-10-05 11:59:31 ----D---- C:\WINDOWS\system32\bits

2008-10-05 11:59:31 ----D---- C:\WINDOWS\AppPatch

2008-10-05 11:59:31 ----D---- C:\Program Files\Outlook Express

2008-10-05 11:59:30 ----D---- C:\WINDOWS\system32\wbem

2008-10-05 11:59:30 ----D---- C:\Program Files\Fichiers communs\System

2008-10-05 11:59:28 ----RSD---- C:\WINDOWS\Fonts

2008-10-05 11:55:17 ----A---- C:\WINDOWS\imsins.BAK

2008-10-05 11:44:28 ----D---- C:\WINDOWS\system32\CatRoot

2008-10-05 11:44:14 ----D---- C:\WINDOWS\security

2008-10-05 11:38:54 ----RASH---- C:\boot.ini

2008-10-05 11:12:39 ----D---- C:\WINDOWS\WinSxS

2008-10-05 11:12:32 ----D---- C:\Program Files\Messenger

2008-10-05 11:12:30 ----D---- C:\WINDOWS\Help

2008-10-05 11:12:27 ----RSHDC---- C:\WINDOWS\system32\dllcache

2008-10-05 11:12:27 ----D---- C:\WINDOWS\EHome

2008-10-05 11:12:24 ----D---- C:\WINDOWS\network diagnostic

2008-10-05 11:12:23 ----D---- C:\WINDOWS\ime

2008-10-05 11:12:01 ----D---- C:\WINDOWS\system32\fr-fr

2008-10-05 11:12:00 ----D---- C:\WINDOWS\system32\usmt

2008-10-05 11:11:54 ----D---- C:\WINDOWS\peernet

2008-10-05 11:11:54 ----D---- C:\Program Files\Movie Maker

2008-10-05 11:07:33 ----D---- C:\Program Files\Internet Explorer

2008-10-05 11:07:32 ----D---- C:\WINDOWS\system32\Restore

2008-10-05 11:07:32 ----D---- C:\WINDOWS\system32\npp

2008-10-05 11:07:29 ----D---- C:\WINDOWS\msagent

2008-10-05 11:07:26 ----D---- C:\WINDOWS\srchasst

2008-10-05 11:07:22 ----D---- C:\Program Files\NetMeeting

2008-10-05 11:07:19 ----D---- C:\WINDOWS\system32\Com

2008-10-05 11:07:15 ----D---- C:\Program Files\Windows Media Player

2008-10-05 11:07:14 ----D---- C:\Program Files\Windows NT

2008-10-05 11:06:16 ----D---- C:\WINDOWS\system32\oobe

2008-10-05 11:06:12 ----D---- C:\WINDOWS\system

2008-10-05 11:03:09 ----RD---- C:\WINDOWS\Web

2008-10-05 11:02:32 ----RASH---- C:\NTDETECT.COM

2008-10-05 10:54:54 ----D---- C:\WINDOWS\system32\ReinstallBackups

2008-10-05 01:24:06 ----D---- C:\WINDOWS\system32\1036

2008-10-05 01:24:01 ----D---- C:\WINDOWS\Media

2008-10-05 01:23:56 ----D---- C:\WINDOWS\twain_32

2008-10-05 01:23:32 ----D---- C:\WINDOWS\system32\icsxml

2008-10-05 01:22:38 ----D---- C:\WINDOWS\system32\1033

2008-10-05 01:20:57 ----D---- C:\WINDOWS\Driver Cache

2008-10-04 23:56:40 ----D---- C:\WINDOWS\SoftwareDistribution

2008-10-04 23:56:29 ----HD---- C:\Program Files\WindowsUpdate

2008-10-04 23:52:22 ----D---- C:\WINDOWS\Registration

2008-10-04 23:51:21 ----SHD---- C:\System Volume Information

2008-10-04 23:48:30 ----D---- C:\WINDOWS\system32\config

2008-10-04 23:42:56 ----A---- C:\WINDOWS\win.ini

2008-10-04 23:42:37 ----SD---- C:\WINDOWS\Downloaded Program Files

2008-10-04 23:42:34 ----A---- C:\WINDOWS\ODBCINST.INI

2008-10-04 23:42:05 ----D---- C:\WINDOWS\system32\ias

2008-10-04 23:41:14 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest

2008-10-04 23:31:28 ----A---- C:\WINDOWS\system.ini

2008-10-04 23:31:00 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini

2008-10-04 23:00:11 ----A---- C:\WINDOWS\NeroDigital.ini

2008-10-03 23:01:43 ----HD---- C:\Program Files\InstallShield Installation Information

2008-09-28 07:34:38 ----D---- C:\Documents and Settings\All Users\Application Data\SiteAdvisor

2008-09-27 18:03:38 ----D---- C:\Program Files\SlySoft

2008-09-26 19:05:28 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft

2008-09-26 19:05:27 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared

2008-09-26 08:20:19 ----D---- C:\Documents and Settings\Maison\Application Data\OpenOffice.org2

2008-09-23 07:53:16 ----D---- C:\Films Molière

2008-09-21 08:45:56 ----D---- C:\Program Files\Java

2008-09-20 08:46:24 ----DC---- C:\WINDOWS\system32\DRVSTORE

2008-09-20 08:41:24 ----D---- C:\Program Files\Fichiers communs\Apple

2008-09-20 08:26:26 ----D---- C:\Program Files\Adobe

2008-09-11 15:01:09 ----HD---- C:\WINDOWS\$hf_mig$

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2007-03-22 43584]

R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 40576]

R1 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2008-06-27 207656]

R1 MPFP;MPFP; C:\WINDOWS\System32\Drivers\Mpfp.sys [2008-06-02 120136]

R1 OMCI;OMCI; C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS [2001-08-22 13632]

R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-05 28352]

R2 uacFlt;Plantronics USB Audio Adapter EQ Filter Driver; C:\WINDOWS\system32\DRIVERS\uacflt.sys [2002-05-03 21276]

R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]

R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2002-09-25 531584]

R3 E100B;Intel® PRO Adapter Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2002-09-19 139776]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]

R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]

R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2008-06-27 79240]

R3 mfebopk;McAfee Inc. mfebopk; C:\WINDOWS\system32\drivers\mfebopk.sys [2008-06-27 35240]

R3 mfesmfk;McAfee Inc. mfesmfk; C:\WINDOWS\system32\drivers\mfesmfk.sys [2008-06-27 40488]

R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2002-08-05 545208]

R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]

R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]

R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]

R3 usbhub;Concentrateur USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]

R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]

S3 ATICDSDr;ATICDSDr; \??\C:\Dell\Drivers\R50874\bin\atiicdxx.sys []

S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []

S3 gmer;gmer; C:\WINDOWS\System32\DRIVERS\gmer.sys [2008-09-28 85969]

S3 mbr;mbr; \??\C:\DOCUME~1\Maison\LOCALS~1\Temp\mbr.sys []

S3 mferkdk;McAfee Inc. mferkdk; C:\WINDOWS\system32\drivers\mferkdk.sys [2008-06-20 34152]

S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]

S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]

S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]

S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]

S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-10 116040]

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\System32\Ati2evxx.exe [2002-09-25 147456]

R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]

R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2008-07-23 206112]

R2 mcmscsvc;McAfee Services; C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe [2008-06-21 792184]

R2 McNASvc;McAfee Network Agent; c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe [2008-07-18 2482848]

R2 McProxy;McAfee Proxy Service; c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe [2008-07-09 358736]

R2 McShield;McAfee Real-time Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [2008-06-20 144704]

R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2008-07-09 884360]

R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-09-10 536872]

R3 McSysmon;McAfee SystemGuards; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [2008-06-20 605512]

R3 NMIndexingService;NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [2007-06-01 271920]

S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-06-09 138168]

S3 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [2007-05-15 79400]

S3 McODS;McAfee Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe [2008-06-20 361800]

S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]

S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]

 

-----------------EOF-----------------

 

hier j'ai réinstallé mcafee

j'ai réussi à faire une analyse rapide qui n'a rien donné

je n'ai pas réussi à faire l'analyse complète

 

A+