Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Infection aide analyse rapport combofix

blackjack22

Par blackjack22
dans Analyses et éradication malwares

 Partager

Messages recommandés

blackjack22 Junior Member

blackjack22

Posté(e)
Posté(e)

Bonjour,

 

Depuis peu, mon système d'exploitation "rame". Après quelques heures d'utilisation de mon PC, il m'est impossible d'executer le moindre logiciel (IE, gestionnaire des tâches, etc.).

J'ai essayé en vain de d'exécuter Malware anti-bytes Free ou mon antivirus Antivir Free mais ceux rament et se bloquent

 

Cerise sur le gâteau, j'ai constaté aujourd'hui la disparition de certains de mes raccourcis situés sur mon bureau.

 

J'ai par conséquent exécuter Combofix pour trouver une solution.

Ce logiciel a créée un rapport pour lequel j'aurai besoin de votre aide.

A cet effet, ce rapport sera présent dans le second poste.

Je pense savoir que l'on poste un rapport sur base d'une demande d'un de vos collaborateurs, mais pour des raisons de gain de temps j'ai pris cette liberté (n'y voyez aucun manque de respect aux régles propre à ce forum)

 

J'éspère que la source des mes problèmes sera vite éradiquée (ne souhaitant pas que les choses s'empirent).

 

Je vous remercie d'avance pour votre aide

 

ComboFix 10-11-12.06 - Bart 14/11/2010 0:56.2.2 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.32.1033.18.1023.471 [GMT 1:00]

Lancé depuis: c:\documents and settings\Bart\Desktop\ComboFix.exe

AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}

FW: Sunbelt Personal Firewall *disabled* {82B1150E-9B37-49FC-83EB-D52197D900D0}

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat

c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat

C:\Thumbs.db

c:\windows\notepad.exe

c:\windows\system32\404Fix.exe

c:\windows\system32\arp.exe

c:\windows\system32\dumphive.exe

c:\windows\system32\IEDFix.C.exe

c:\windows\system32\IEDFix.exe

c:\windows\system32\Process.exe

c:\windows\system32\SrchSTS.exe

c:\windows\system32\Thumbs.db

c:\windows\system32\tmp.reg

c:\windows\system32\VACFix.exe

c:\windows\system32\VCCLSID.exe

c:\windows\system32\WS2Fix.exe

 

----- Cloneurs de fichier -----

 

c:\ati\SUPPORT\8-7_xp32_dd_ccc_wdm_enu_65993\CCC\setup.exe

c:\ati\SUPPORT\9-8_legacy_xp32-64_dd_ccc\CCC\setup.exe

c:\copy2.06f\Disk1\Setup.exe

c:\documents and settings\Bart\Application Data\Microsoft\Installer\{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}\ARPPRODUCTICON.exe

c:\documents and settings\Bart\desktop\NEW XP SP3\perfection 3170 photo\SMART PANEL 3.03\Setup.exe

c:\epp164f\Setup.exe

c:\esp3.0p03f\Setup.exe

c:\esp3.10p02f\Setup.exe

c:\program files\Creative Installation Information\CREATIVE_MEDIASOURCE_U\setup.exe

c:\program files\Creative Installation Information\E-CENTER_NET_CONTENT_U\setup.exe

c:\program files\Creative Installation Information\E-CENTER_PLUGIN_CDBURNER_U\setup.exe

c:\program files\Creative Installation Information\MEDIASOURCE_PLAYER_SKINPACK_U\setup.exe

c:\program files\InstallShield Installation Information\{02CAD0B6-C706-4981-A09A-08C088B9233F}\Setup.exe

c:\program files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe

c:\program files\InstallShield Installation Information\{057B1FBC-DA65-4FE3-ADC7-C1476E19F392}\Setup.exe

c:\program files\InstallShield Installation Information\{0E0131B2-CF18-40D9-A331-60A3746C1204}\Setup.exe

c:\program files\InstallShield Installation Information\{11E83B33-972B-4512-A447-FF0FD0246EE9}\Setup.exe

c:\program files\InstallShield Installation Information\{236FADD8-58FD-11D6-A285-00A0CC51B2FE}\Setup.exe

c:\program files\InstallShield Installation Information\{23EFDB58-0874-4883-9810-EDA510B19FAE}\Setup.exe

c:\program files\InstallShield Installation Information\{2670895A-4E6C-4450-B868-7B7DB80A3357}\setup.exe

c:\program files\InstallShield Installation Information\{27B9131D-CEFA-42C5-8D7D-56EFD80BAA25}\Setup.exe

c:\program files\InstallShield Installation Information\{2BB79C8D-9DCC-4861-8A23-AE1B0B45E2B6}\Setup.exe

c:\program files\InstallShield Installation Information\{2BFBC62A-3353-443D-93BE-7AC641D9F342}\Setup.exe

c:\program files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\Setup.exe

c:\program files\InstallShield Installation Information\{44267176-A318-447F-A62A-0A5FD608C34F}\setup.exe

c:\program files\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\Setup.exe

c:\program files\InstallShield Installation Information\{56F3E1FF-54FE-4384-A153-6CCABA097814}\Setup.exe

c:\program files\InstallShield Installation Information\{57FA4E0F-82C9-417D-87BC-0186D6CB7A44}\setup.exe

c:\program files\InstallShield Installation Information\{5CDDF96A-BC34-4D72-9ABA-E1FFF0C39977}\Setup.exe

c:\program files\InstallShield Installation Information\{5D1A81AA-ED90-11D6-86D3-00055DF3561E}\Setup.exe

c:\program files\InstallShield Installation Information\{6C11D561-620B-47DA-A693-4C597F3CDF40}\Setup.exe

c:\program files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe

c:\program files\InstallShield Installation Information\{7201B853-5833-11D6-A285-00A0CC51B2FE}\Setup.exe

c:\program files\InstallShield Installation Information\{72A810B1-EE62-455A-A086-E1C9FEDE7F29}\Setup.exe

c:\program files\InstallShield Installation Information\{77ACE67A-0D21-4CEF-8A97-ED20A61B978B}\Setup.exe

c:\program files\InstallShield Installation Information\{7B9AE66C-2A8F-4FB2-85D7-416AFFAE8408}\setup.exe

c:\program files\InstallShield Installation Information\{87499F38-FD69-4A2B-B41A-BAB8DE9B94FE}\Setup.exe

c:\program files\InstallShield Installation Information\{8B026740-A400-48FF-8F6B-B37C4F61C937}\setup.exe

c:\program files\InstallShield Installation Information\{9154ED7C-926E-49CC-B677-0CF3C5267457}\Setup.exe

c:\program files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\Setup.exe

c:\program files\InstallShield Installation Information\{9E2514D9-DC24-4634-B348-61F3EF0F1628}\Setup.exe

c:\program files\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\Setup.exe

c:\program files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\Setup.exe

c:\program files\InstallShield Installation Information\{B100B05B-E290-41EF-9366-8BC4C76D7769}\Setup.exe

c:\program files\InstallShield Installation Information\{B14F9B26-D695-4C4A-8B11-0FE6CDCC797B}\Setup.exe

c:\program files\InstallShield Installation Information\{B3549608-69D3-11D7-AB2D-0090271A23A2}\Setup.exe

c:\program files\InstallShield Installation Information\{B69CC1A5-0404-11D6-ABCB-005004C21D30}\Setup.exe

c:\program files\InstallShield Installation Information\{BDFC3C8D-823E-4FCF-870B-E756B27CB57E}\Setup.exe

c:\program files\InstallShield Installation Information\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}\setup.exe

c:\program files\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\Setup.exe

c:\program files\InstallShield Installation Information\{E213C271-AEFA-481D-A9B4-914D88925B8D}\Setup.exe

c:\program files\InstallShield Installation Information\{E2D27B84-6365-11D6-9BAF-0090271AF8A4}\Setup.exe

c:\program files\InstallShield Installation Information\{FAD9402A-1A9B-4ABE-A410-393A3622FA5A}\Setup.exe

c:\program files\InstallShield Installation Information\{FB2292C6-1F0A-11D7-AB2D-0090271A23A2}\Setup.exe

c:\program files\InstallShield Installation Information\{FD549B7B-3532-4160-80D4-3E3DD39A9AE5}\Setup.exe

c:\program files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\Setup.exe

c:\windows\Installer\{0893078B-8A9A-84D6-D393-119B9B0B033A}\ARPPRODUCTICON.exe

c:\windows\Installer\{0E2A60F7-2907-5718-FF16-7D8FAF70051E}\ARPPRODUCTICON.exe

c:\windows\Installer\{135BFFD7-D9C1-4374-B18C-BEB64FC7851C}\ARPPRODUCTICON.exe

c:\windows\Installer\{14FAE013-AE19-4FC9-B5BF-E56ADC01ECE6}\ARPPRODUCTICON.exe

c:\windows\Installer\{17BB2784-6EE4-D7FF-FE63-58A3AD2B3708}\ARPPRODUCTICON.exe

c:\windows\Installer\{1B54FF9E-5FDD-11DE-8B01-005056C00008}\ARPPRODUCTICON.exe

c:\windows\Installer\{233588CF-96D5-46AF-EF74-7EC382662791}\ARPPRODUCTICON.exe

c:\windows\Installer\{3260ECBC-9DDF-E7A3-0863-449473BC7BD5}\ARPPRODUCTICON.exe

c:\windows\Installer\{39C6C229-CFFD-639E-229A-E463FCD87478}\ARPPRODUCTICON.exe

c:\windows\Installer\{485DF5E7-8379-4BFA-BAE1-9B8DBFE0D6B4}\ARPPRODUCTICON.exe

c:\windows\Installer\{4D83E500-4D0C-11DF-A750-005056C00008}\ARPPRODUCTICON.exe

c:\windows\Installer\{4F11FC80-CE8C-1BD4-5C39-EBE5744E5135}\ARPPRODUCTICON.exe

c:\windows\Installer\{4FAB2BA7-E16C-95D2-F326-60A68409373F}\ARPPRODUCTICON.exe

c:\windows\Installer\{529AA9A8-5020-6CFB-A809-BC5943C87077}\ARPPRODUCTICON.exe

c:\windows\Installer\{53604297-26FD-516D-6FF7-1063BA64A0A4}\ARPPRODUCTICON.exe

c:\windows\Installer\{55BD3B0B-F054-9341-514F-295A5F7EA450}\ARPPRODUCTICON.exe

c:\windows\Installer\{5A4FA9C8-ED56-08C3-153B-FC5C19256290}\ARPPRODUCTICON.exe

c:\windows\Installer\{6C390D51-E5F0-4FCD-24C4-731ACAF34571}\ARPPRODUCTICON.exe

c:\windows\Installer\{7AA8FA9A-1656-7DBD-633B-FE7A62BBED0C}\ARPPRODUCTICON.exe

c:\windows\Installer\{8C22131B-8634-CECF-F0D1-A2ECC160B450}\ARPPRODUCTICON.exe

c:\windows\Installer\{90FBE4D0-2ACA-A8A8-2CC4-CFFBAE528504}\ARPPRODUCTICON.exe

c:\windows\Installer\{9D74375E-3012-E7D2-9229-B220C91F326A}\ARPPRODUCTICON.exe

c:\windows\Installer\{9EE8BDCA-7505-4895-D91E-8108DD16292E}\ARPPRODUCTICON.exe

c:\windows\Installer\{A8AF8BD3-61B5-7945-4D1B-217421F604FC}\ARPPRODUCTICON.exe

c:\windows\Installer\{AA46E1C5-A709-6D9B-D99D-92E4C6E042A9}\ARPPRODUCTICON.exe

c:\windows\Installer\{AA62A33C-9E5E-3913-7D88-7E58A8CB1493}\ARPPRODUCTICON.exe

c:\windows\Installer\{B653F643-A1B4-9936-2DB6-FEA9A3110D8D}\ARPPRODUCTICON.exe

c:\windows\Installer\{B71C4637-0247-78CE-6A3D-D61645CB8921}\ARPPRODUCTICON.exe

c:\windows\Installer\{BC2E7C0B-1AC6-5F6C-F31D-E1E72D8E0B5C}\ARPPRODUCTICON.exe

c:\windows\Installer\{BF8C7DA7-2DE6-ED67-6C82-6BE82F8BA8D3}\ARPPRODUCTICON.exe

c:\windows\Installer\{C409F338-BB20-6C4A-F40D-20CA07AF714C}\ARPPRODUCTICON.exe

c:\windows\Installer\{D4B7B2DC-E688-A9D6-6EC0-56AE540E074C}\ARPPRODUCTICON.exe

c:\windows\Installer\{D9CD701B-3F04-FC69-D974-F3A7F5E9BA30}\ARPPRODUCTICON.exe

c:\windows\Installer\{D9D93D74-107D-4BD3-87D0-AABCF7C98BD5}\ARPPRODUCTICON.exe

c:\windows\Installer\{E213321B-1E88-B38D-DAB2-D8CB9355984A}\ARPPRODUCTICON.exe

c:\windows\Installer\{F4148D8F-ED3A-3097-509C-04D5560220F9}\ARPPRODUCTICON.exe

c:\windows\Installer\{F7E68997-E626-952B-A7BF-F72066CD5D77}\ARPPRODUCTICON.exe

c:\windows\Installer\{F8013DD1-574B-4921-A473-88A2F7A34D16}\ARPPRODUCTICON.exe

c:\windows\Installer\{FA36C82B-464D-51F2-A6A1-0BC9140BE067}\ARPPRODUCTICON.exe

d:\ati\SUPPORT\8-2_xp32_dd_ccc_wdm_enu_58128\Driver\CCC\setup.exe

d:\ati\SUPPORT\8-7_xp32_dd_ccc_wdm_enu_65993\CCC\setup.exe

d:\documents and settings\Bart\Application Data\Microsoft\Installer\{098122AB-C605-4853-B441-C0A4EB359B75}\ARPPRODUCTICON.exe

d:\documents and settings\Bart\Application Data\Microsoft\Installer\{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}\ARPPRODUCTICON.exe

d:\program files\Creative Installation Information\CREATIVE_MEDIASOURCE_U\setup.exe

d:\program files\Creative Installation Information\CTCMSGO\setup.exe

d:\program files\Creative Installation Information\E-CENTER_NET_CONTENT_U\setup.exe

d:\program files\Creative Installation Information\E-CENTER_PLUGIN_MINIDISC_U\setup.exe

d:\program files\Creative Installation Information\E-CENTER_PLUGIN_ONLINESTORE_U\setup.exe

d:\program files\Creative Installation Information\MEDIASOURCE_PLAYER_SKINPACK_U\setup.exe

d:\program files\InstallShield Installation Information\{02CAD0B6-C706-4981-A09A-08C088B9233F}\Setup.exe

d:\program files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe

d:\program files\InstallShield Installation Information\{0E0131B2-CF18-40D9-A331-60A3746C1204}\Setup.exe

d:\program files\InstallShield Installation Information\{11E83B33-972B-4512-A447-FF0FD0246EE9}\Setup.exe

d:\program files\InstallShield Installation Information\{236FADD8-58FD-11D6-A285-00A0CC51B2FE}\Setup.exe

d:\program files\InstallShield Installation Information\{23EFDB58-0874-4883-9810-EDA510B19FAE}\Setup.exe

d:\program files\InstallShield Installation Information\{27B9131D-CEFA-42C5-8D7D-56EFD80BAA25}\Setup.exe

d:\program files\InstallShield Installation Information\{2BB79C8D-9DCC-4861-8A23-AE1B0B45E2B6}\Setup.exe

d:\program files\InstallShield Installation Information\{2BFBC62A-3353-443D-93BE-7AC641D9F342}\Setup.exe

d:\program files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\Setup.exe

d:\program files\InstallShield Installation Information\{44267176-A318-447F-A62A-0A5FD608C34F}\setup.exe

d:\program files\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\Setup.exe

d:\program files\InstallShield Installation Information\{56F3E1FF-54FE-4384-A153-6CCABA097814}\Setup.exe

d:\program files\InstallShield Installation Information\{5CDDF96A-BC34-4D72-9ABA-E1FFF0C39977}\Setup.exe

d:\program files\InstallShield Installation Information\{5D1A81AA-ED90-11D6-86D3-00055DF3561E}\Setup.exe

d:\program files\InstallShield Installation Information\{6C11D561-620B-47DA-A693-4C597F3CDF40}\Setup.exe

d:\program files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe

d:\program files\InstallShield Installation Information\{7201B853-5833-11D6-A285-00A0CC51B2FE}\Setup.exe

d:\program files\InstallShield Installation Information\{72A810B1-EE62-455A-A086-E1C9FEDE7F29}\Setup.exe

d:\program files\InstallShield Installation Information\{77ACE67A-0D21-4CEF-8A97-ED20A61B978B}\Setup.exe

d:\program files\InstallShield Installation Information\{7B9AE66C-2A8F-4FB2-85D7-416AFFAE8408}\setup.exe

d:\program files\InstallShield Installation Information\{87499F38-FD69-4A2B-B41A-BAB8DE9B94FE}\Setup.exe

d:\program files\InstallShield Installation Information\{8B026740-A400-48FF-8F6B-B37C4F61C937}\setup.exe

d:\program files\InstallShield Installation Information\{9154ED7C-926E-49CC-B677-0CF3C5267457}\Setup.exe

d:\program files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\Setup.exe

d:\program files\InstallShield Installation Information\{9E2514D9-DC24-4634-B348-61F3EF0F1628}\Setup.exe

d:\program files\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\Setup.exe

d:\program files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe

d:\program files\InstallShield Installation Information\{AC157741-3285-4D6A-B934-9174587A3493}\Setup.exe

d:\program files\InstallShield Installation Information\{B100B05B-E290-41EF-9366-8BC4C76D7769}\Setup.exe

d:\program files\InstallShield Installation Information\{B14F9B26-D695-4C4A-8B11-0FE6CDCC797B}\Setup.exe

d:\program files\InstallShield Installation Information\{B3549608-69D3-11D7-AB2D-0090271A23A2}\Setup.exe

d:\program files\InstallShield Installation Information\{B69CC1A5-0404-11D6-ABCB-005004C21D30}\Setup.exe

d:\program files\InstallShield Installation Information\{BDFC3C8D-823E-4FCF-870B-E756B27CB57E}\Setup.exe

d:\program files\InstallShield Installation Information\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}\setup.exe

d:\program files\InstallShield Installation Information\{C24FE0B8-0A25-42E6-8532-A4ABAA1FA400}\Setup.exe

d:\program files\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\Setup.exe

d:\program files\InstallShield Installation Information\{E213C271-AEFA-481D-A9B4-914D88925B8D}\Setup.exe

d:\program files\InstallShield Installation Information\{E2D27B84-6365-11D6-9BAF-0090271AF8A4}\Setup.exe

d:\program files\InstallShield Installation Information\{FAD9402A-1A9B-4ABE-A410-393A3622FA5A}\Setup.exe

d:\program files\InstallShield Installation Information\{FB2292C6-1F0A-11D7-AB2D-0090271A23A2}\Setup.exe

d:\program files\InstallShield Installation Information\{FD549B7B-3532-4160-80D4-3E3DD39A9AE5}\Setup.exe

d:\program files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\Setup.exe

d:\windows\Installer\{0004D4C8-7F6C-BA20-32B2-5C861FA340CB}\ARPPRODUCTICON.exe

d:\windows\Installer\{10053F59-0765-163D-F759-155E6DA35AB6}\ARPPRODUCTICON.exe

d:\windows\Installer\{101E4225-8983-7850-3E8C-00C5E0A13B40}\ARPPRODUCTICON.exe

d:\windows\Installer\{3F555374-449A-0734-73EA-5FF6207FA30F}\ARPPRODUCTICON.exe

d:\windows\Installer\{485DF5E7-8379-4BFA-BAE1-9B8DBFE0D6B4}\ARPPRODUCTICON.exe

d:\windows\Installer\{5141D667-6FE0-DFD6-FDC8-C981DC06520C}\ARPPRODUCTICON.exe

d:\windows\Installer\{51C9B6D6-BF0F-3BA5-1EA4-17C6190DBE07}\ARPPRODUCTICON.exe

d:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF010}\ARPPRODUCTICON.exe

d:\windows\Installer\{7F05E704-30A6-421A-97A7-8EEB1C7FF017}\ARPPRODUCTICON.exe

d:\windows\Installer\{86F68693-A637-1F4D-5D4F-4D58486A4601}\ARPPRODUCTICON.exe

d:\windows\Installer\{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}\ARPPRODUCTICON.exe

d:\windows\Installer\{AE888E0F-6727-0045-A966-CFB975AC15BA}\ARPPRODUCTICON.exe

d:\windows\Installer\{C952BD03-9AC6-F898-B17F-9352638EC93C}\ARPPRODUCTICON.exe

d:\windows\Installer\{CADF1911-C4FB-8651-36E0-FF06DAA75F28}\ARPPRODUCTICON.exe

d:\windows\Installer\{CE2DA11A-917F-4CF5-AB55-755EC115DD10}\ARPPRODUCTICON.exe

d:\windows\Installer\{F8013DD1-574B-4921-A473-88A2F7A34D16}\ARPPRODUCTICON.exe

d:\windows\Installer\{FA3A247D-437A-455E-A88F-7EB6E5F9E799}\ARPPRODUCTICON.exe

e:\program files\Creative Installation Information\CREATIVE_MEDIASOURCE_U\setup.exe

e:\program files\Creative Installation Information\E-CENTER_NET_CONTENT_U\setup.exe

e:\program files\Creative Installation Information\E-CENTER_PLUGIN_DTSNEO6_U\setup.exe

e:\program files\Creative Installation Information\E-CENTER_PLUGIN_ONLINESTORE_U\setup.exe

e:\program files\Creative Installation Information\MEDIASOURCE_PLAYER_SKINPACK_U\setup.exe

e:\program files\InstallShield Installation Information\{0E0131B2-CF18-40D9-A331-60A3746C1204}\Setup.exe

e:\program files\InstallShield Installation Information\{11E83B33-972B-4512-A447-FF0FD0246EE9}\Setup.exe

e:\program files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe

e:\program files\InstallShield Installation Information\{236FADD8-58FD-11D6-A285-00A0CC51B2FE}\Setup.exe

e:\program files\InstallShield Installation Information\{23EFDB58-0874-4883-9810-EDA510B19FAE}\Setup.exe

e:\program files\InstallShield Installation Information\{2670895A-4E6C-4450-B868-7B7DB80A3357}\setup.exe

e:\program files\InstallShield Installation Information\{27B9131D-CEFA-42C5-8D7D-56EFD80BAA25}\Setup.exe

e:\program files\InstallShield Installation Information\{2BB79C8D-9DCC-4861-8A23-AE1B0B45E2B6}\Setup.exe

e:\program files\InstallShield Installation Information\{2BFBC62A-3353-443D-93BE-7AC641D9F342}\Setup.exe

e:\program files\InstallShield Installation Information\{44267176-A318-447F-A62A-0A5FD608C34F}\setup.exe

e:\program files\InstallShield Installation Information\{5210ED6D-52A9-11D6-A285-00A0CC51B2FE}\Setup.exe

e:\program files\InstallShield Installation Information\{5CDDF96A-BC34-4D72-9ABA-E1FFF0C39977}\Setup.exe

e:\program files\InstallShield Installation Information\{5D1A81AA-ED90-11D6-86D3-00055DF3561E}\Setup.exe

e:\program files\InstallShield Installation Information\{6C11D561-620B-47DA-A693-4C597F3CDF40}\Setup.exe

e:\program files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe

e:\program files\InstallShield Installation Information\{72A810B1-EE62-455A-A086-E1C9FEDE7F29}\Setup.exe

e:\program files\InstallShield Installation Information\{87499F38-FD69-4A2B-B41A-BAB8DE9B94FE}\Setup.exe

e:\program files\InstallShield Installation Information\{9154ED7C-926E-49CC-B677-0CF3C5267457}\Setup.exe

e:\program files\InstallShield Installation Information\{9A4D2983-4662-4387-BE3D-4CFC2FA9C100}\Setup.exe

e:\program files\InstallShield Installation Information\{9E2514D9-DC24-4634-B348-61F3EF0F1628}\Setup.exe

e:\program files\InstallShield Installation Information\{A1185190-514F-11D6-A285-00A0CC51B2FE}\Setup.exe

e:\program files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe

e:\program files\InstallShield Installation Information\{B100B05B-E290-41EF-9366-8BC4C76D7769}\Setup.exe

e:\program files\InstallShield Installation Information\{B14F9B26-D695-4C4A-8B11-0FE6CDCC797B}\Setup.exe

e:\program files\InstallShield Installation Information\{B3549608-69D3-11D7-AB2D-0090271A23A2}\Setup.exe

e:\program files\InstallShield Installation Information\{B69CC1A5-0404-11D6-ABCB-005004C21D30}\Setup.exe

e:\program files\InstallShield Installation Information\{BDFC3C8D-823E-4FCF-870B-E756B27CB57E}\Setup.exe

e:\program files\InstallShield Installation Information\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}\setup.exe

e:\program files\InstallShield Installation Information\{C24FE0B8-0A25-42E6-8532-A4ABAA1FA400}\Setup.exe

e:\program files\InstallShield Installation Information\{CC3D3A93-C433-4329-AC3A-7EFC52A332C2}\setup.exe

e:\program files\InstallShield Installation Information\{DEBD7BF3-5856-11D6-A285-00A0CC51B2FE}\Setup.exe

e:\program files\InstallShield Installation Information\{E213C271-AEFA-481D-A9B4-914D88925B8D}\Setup.exe

e:\program files\InstallShield Installation Information\{E2D27B84-6365-11D6-9BAF-0090271AF8A4}\Setup.exe

e:\program files\InstallShield Installation Information\{FAD9402A-1A9B-4ABE-A410-393A3622FA5A}\Setup.exe

e:\program files\InstallShield Installation Information\{FB2292C6-1F0A-11D7-AB2D-0090271A23A2}\Setup.exe

e:\program files\InstallShield Installation Information\{FD851F7E-F887-405D-9E1C-488811113EF3}\Setup.exe

e:\windows\Temp\CRF000\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\ASUS_9600XT_X1050\01_Asus_VGA_Drive_8.454\Unpacked_Files\CCC\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\ASUS_9600XT_X1050\01_Asus_VGA_Drive_8.454\Unpacked_Files\HDAudioDrv\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Install\Install.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Setup\CMStore\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Setup\CTEngine\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Setup\CTShared\CTRedist\Auddvsel\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Setup\CTShared\CTRedist\Cadi\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Setup\MediaDet\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Setup\PlayOrg\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Setup\Setup\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\006\Setup\SkinPack\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\007\Install\Install.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\007\Setup\CTEngine\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\007\Setup\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\008\Install\Install.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\008\Setup\CTEngine\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\008\Setup\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\009\Install\Install.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\009\Setup\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\013\CTShared\CTRedist\CADI\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\013\CTXInst\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\013\Install\Install.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\013\PIDInst\Setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\013\Setup\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\014\CTXInst\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\014\PIDInst\Setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\014\Setup\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\015\CTShared\CTRedist\CADI\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\015\CTXInst\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\015\PIDInst\Setup.exe

k:\__tuto__s\_Mes_Peripheriques_\CREATIVE_Audigy2ZS\Pilotes_Logiciels\015\Setup\setup.exe

k:\__tuto__s\_Mes_Peripheriques_\EPSON_R200\FR_anciens\PRINTCD\SETUP.EXE

.

----- BITS: Il y a peut-être des sites infectés -----

 

hxxp://au.download.j+|Cv+@J:NGD_DQ{zcxLJS@iAeAaWU Client DownloadS-1-5-18`HT4?? 6VwoQZCDHM6VwoQZCDHMXu8XcxLJS@GD_DQ{zGD_DQ{zGD_DQ{z+@J:Nj+|Cvte.com

.

((((((((((((((((((((((((((((( Fichiers créés du 2010-10-14 au 2010-11-14 ))))))))))))))))))))))))))))))))))))

.

 

2010-11-13 10:29 . 2010-04-29 14:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-11-13 10:28 . 2010-11-13 10:29 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2010-11-13 10:28 . 2010-04-29 14:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-11-13 10:20 . 2010-11-13 10:20 388096 ----a-r- c:\documents and settings\Bart\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2010-11-07 14:52 . 2010-11-13 09:53 -------- d-----w- c:\documents and settings\Bart\Application Data\vlc

2010-10-26 22:14 . 2010-10-26 22:14 -------- d-----w- c:\program files\Replisting

2010-10-26 22:14 . 2004-07-15 22:20 733184 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll

2010-10-26 22:14 . 2004-07-15 22:20 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll

2010-10-26 22:14 . 2004-07-15 22:19 266240 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll

2010-10-26 22:14 . 2004-07-15 22:18 172032 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll

2010-10-26 22:14 . 2004-07-15 22:18 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe

2010-10-26 22:14 . 2010-10-26 22:14 303236 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll

2010-10-26 22:14 . 2010-10-26 22:14 180356 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-11-11 15:05 . 2009-04-15 08:13 60936 ----a-w- c:\windows\system32\drivers\avgntflt.sys

2010-11-11 15:05 . 2009-04-15 08:13 126856 ----a-w- c:\windows\system32\drivers\avipbb.sys

2010-11-11 10:17 . 2009-12-06 19:07 66 ----a-w- c:\documents and settings\Bart\Application Data\ispro4_0.tmp

2010-11-04 13:00 . 2010-05-04 11:00 7480 ----a-w- c:\documents and settings\Lisa NN\Local Settings\Application Data\d3d9caps.tmp

2010-09-18 10:23 . 2004-08-04 01:07 974848 ----a-w- c:\windows\system32\mfc42u.dll

2010-09-18 06:53 . 2004-08-04 01:07 974848 ----a-w- c:\windows\system32\mfc42.dll

2010-09-18 06:53 . 2004-08-04 01:07 954368 ----a-w- c:\windows\system32\mfc40.dll

2010-09-18 06:53 . 2004-08-04 01:07 953856 ----a-w- c:\windows\system32\mfc40u.dll

2010-09-15 02:50 . 2010-04-15 05:35 472808 ----a-w- c:\windows\system32\deployJava1.dll

2010-09-15 00:29 . 2008-02-10 15:35 73728 ----a-w- c:\windows\system32\javacpl.cpl

2010-09-10 05:58 . 2004-08-04 01:07 916480 ----a-w- c:\windows\system32\wininet.dll

2010-09-10 05:58 . 2004-08-04 01:07 43520 ----a-w- c:\windows\system32\licmgr10.dll

2010-09-10 05:58 . 2004-08-04 01:07 1469440 ------w- c:\windows\system32\inetcpl.cpl

2010-09-01 11:51 . 2004-08-04 01:07 285824 ----a-w- c:\windows\system32\atmfd.dll

2010-08-31 13:42 . 2004-08-04 01:07 1852800 ----a-w- c:\windows\system32\win32k.sys

2010-08-27 08:02 . 2004-08-04 01:07 119808 ----a-w- c:\windows\system32\t2embed.dll

2010-08-27 05:57 . 2004-08-04 01:07 99840 ----a-w- c:\windows\system32\srvsvc.dll

2010-08-26 13:39 . 2004-08-04 01:07 357248 ----a-w- c:\windows\system32\drivers\srv.sys

2010-08-26 12:52 . 2009-11-15 13:03 5120 ----a-w- c:\windows\system32\xpsp4res.dll

2010-08-23 16:12 . 2004-08-04 01:07 617472 ----a-w- c:\windows\system32\comctl32.dll

2010-08-17 13:17 . 2004-08-04 01:07 58880 ----a-w- c:\windows\system32\spoolsv.exe

2010-08-16 08:45 . 2004-08-04 01:07 590848 ----a-w- c:\windows\system32\rpcrt4.dll

2008-02-10 22:21 . 2008-02-10 22:21 278528 ----a-w- c:\program files\Common Files\FDEUnInstaller.exe

2009-05-13 21:55 . 2009-05-13 21:55 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll

2009-05-13 21:55 . 2009-05-13 21:55 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll

2006-05-03 09:06 163328 --sh--r- c:\windows\system32\flvDX.dll

2007-02-21 10:47 31232 --sh--r- c:\windows\system32\msfDX.dll

2008-03-16 12:30 216064 --sh--r- c:\windows\system32\nbDX.dll

.

 

------- Sigcheck -------

 

[7] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windows\ERDNT\cache\sfcfiles.dll

[7] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll

[7] 2004-08-04 . 30A609E00BD1D4FFC49D6B5A432BE7F2 . 1580544 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll

 

c:\windows\System32\sfcfiles.dll ... manque !!

.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Linkman"="c:\program files\Linkman\Linkman.exe" [2009-04-20 1198592]

"SoftAuto.exe"="c:\program files\Creative\Software Update 3\SoftAuto.exe" [2008-08-13 405504]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2007-10-07 2620336]

"AcronisTimounterMonitor"="c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe" [2007-10-07 904880]

"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2009-10-27 365560]

"SBDrvDet"="c:\program files\Creative\SB Drive Det\SBDrvDet.exe" [2002-12-03 45056]

"CTHelper"="CTHELPER.EXE" [2008-06-27 19456]

"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-11-11 281768]

"USBToolTip"="c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe" [2007-02-20 199752]

"UpdatePDRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-01-04 222504]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-21 61440]

"TomcatStartup"="c:\program files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe" [2003-03-31 155648]

"ProcessLassoManagementConsole"="c:\program files\Process Lasso\processlasso.exe" [2010-05-19 414736]

"ProcessGovernor"="c:\program files\Process Lasso\processgovernor.exe" [2010-05-19 252944]

"Service Planificateur2 Acronis"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2009-10-27 365560]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

"QuickTime Task"="c:\program files\QuickTime Alternative\qttask.exe" [2008-05-27 413696]

 

c:\documents and settings\All Users\Start Menu\Programs\Startup\

Q-Type Pro.lnk - c:\program files\Q-Type Pro\MagicKey.exe [2008-2-19 176128]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"NoResolveTrack"= 1 (0x1)

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoRecentDocsNetHood"= 1 (0x1)

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk /r \??\f:\0autocheck autochk /r \??\f:\0autocheck autochk /r \??\m:\0autocheck autochk *\0OODBS

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Bluetooth Manager.lnk]

backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]

backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Image Zone Fast Start.lnk]

backup=c:\windows\pss\HP Image Zone Fast Start.lnkCommon Startup

 

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Philips GoGear SA018 Device Manager.lnk]

path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Philips GoGear SA018 Device Manager.lnk

backup=c:\windows\pss\Philips GoGear SA018 Device Manager.lnkCommon Startup

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]

c:\windows\system32\dumprep 0 -k [X]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TCASUTIEXE]

TCAUDIAG.exe -on [X]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

2008-06-12 00:38 34672 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSDVCRAgent]

2002-05-30 13:56 1043968 ----a-w- c:\program files\ASUS\ASUS Digital VCR\Schedule.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTDVDDET]

2003-06-17 23:00 45056 ------w- c:\program files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]

2008-04-14 00:12 15360 ----a-w- c:\windows\system32\ctfmon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTHelper]

2008-06-27 15:24 19456 ----a-w- c:\windows\system32\CtHelper.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTRegRun]

2006-10-06 06:17 53248 ------w- c:\windows\Ctregrun.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]

2003-09-17 09:43 57344 ----a-w- c:\program files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTxfiHlp]

2006-08-11 13:56 18944 ----a-w- c:\windows\system32\CTXFIHLP.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTXFIREG]

2006-08-11 13:53 42496 ----a-w- c:\windows\system32\CTXFIREG.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]

2010-06-11 10:00 427328 ----a-w- c:\program files\DAEMON Tools Pro\DTAgent.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus Photo R200 Series]

2003-09-11 03:00 99840 ----a-w- c:\windows\system32\spool\drivers\w32x86\3\E_S4I0H2.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]

2004-09-13 13:49 49152 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MOBKIT]

2004-08-23 13:50 122880 ----a-w- c:\progra~1\Mobistar\Shell.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MOBTASKBARICON]

2004-10-14 15:55 32768 ------w- c:\progra~1\Mobistar\GestMAJ.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MOBWATCH]

2004-08-23 13:49 20480 ------w- c:\progra~1\Mobistar\Watch.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

2009-07-26 14:44 3883856 ----a-w- c:\progra~1\WI1F86~1\MESSEN~1\msnmsgr.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

2008-05-27 08:50 413696 ----a-w- c:\program files\QuickTime Alternative\QTTask.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SB Audigy 2 Startup Menu]

2002-11-13 00:00 45056 ----a-w- c:\program files\Creative\SBAudigy2ZS\Program\Startup Menu\ChkColor.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SlovoEd 7]

2009-06-29 15:24 5066752 ----a-w- c:\program files\Paragon Software\SlovoEd 7\SlovoEd.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoftAuto.exe]

2008-08-13 03:49 405504 ----a-w- c:\program files\Creative\Software Update 3\SoftAuto.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]

2003-05-30 08:42 585728 ----a-w- c:\program files\Analog Devices\SoundMAX\SMax4.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]

2003-05-29 15:28 790528 ----a-w- c:\program files\Analog Devices\SoundMAX\SMax4PNP.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Start WingMan Profiler]

2007-09-25 14:03 93208 ----a-w- c:\program files\Logitech\Gaming Software\LWEMon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]

2009-07-21 09:00 61440 ----a-w- c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StatusClient]

2002-12-16 15:51 36864 ----a-w- c:\program files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB2Check]

2006-11-06 11:31 81920 ----a-w- c:\windows\system32\PCLECoInst.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\V0220Mon.exe]

2006-06-29 00:01 32768 ----a-w- c:\windows\V0220Mon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vspdfprsrv.exe]

2006-05-04 04:58 998912 ----a-w- c:\program files\Visagesoft\eXPert PDF\vspdfprsrv.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"gusvc"=3 (0x3)

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"QuickTime Task"="c:\program files\QuickTime Alternative\qttask.exe" -atboottime

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]

"QuickTime Task"="c:\program files\QuickTime Alternative\qttask.exe" -atboottime

"KernelFaultCheck"=%systemroot%\system32\dumprep 0 -k

"OODefragTray"=c:\windows\system32\oodtray.exe

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"c:\\WINDOWS\\system32\\sessmgr.exe"=

"c:\\Program Files\\IEPro\\MiniDM.exe"=

"c:\\WINDOWS\\system32\\dpvsetup.exe"=

"c:\\Program Files\\Hewlett-Packard\\Toolbox2.0\\Javasoft\\JRE\\1.3.1\\bin\\javaw.exe"=

"c:\\Program Files\\KONAMI\\Pro Evolution Soccer 2008\\PES2008.exe"=

"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

"c:\\Program Files\\Sierra\\FEARCombat\\FEARMP.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"%windir%\\system32\\sessmgr.exe"=

"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"c:\\Program Files\\KONAMI\\Pro Evolution Soccer 2010\\pes2010.exe"=

"c:\\Program Files\\Sony Ericsson\\SEMC OMSI Module\\SEMC OMSI Module.exe"=

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"3587:TCP"= 3587:TCP:Windows Peer-to-Peer Grouping

"3540:UDP"= 3540:UDP:Peer Name Resolution Protocol (PNRP)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]

"AllowInboundEchoRequest"= 1 (0x1)

 

R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [31/07/2008 20:45 20616]

R0 fsbts;fsbts;c:\windows\system32\drivers\fsbts.sys [31/10/2009 13:27 33920]

R0 hotcore3;Hotcore helper;c:\windows\system32\drivers\hotcore3.sys [8/04/2009 9:47 40368]

R0 viaraid;viaraid;c:\windows\system32\drivers\viaraid.sys [13/02/2008 10:46 70272]

R1 kbfilter;Keyboard Filter Driver;c:\windows\system32\drivers\kbfilter.sys [19/02/2008 17:12 13696]

R1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [8/04/2009 9:01 270888]

R1 sbhips;Sunbelt HIPS Driver;c:\windows\system32\drivers\sbhips.sys [21/06/2008 3:54 66600]

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [15/04/2009 9:13 135336]

R2 Iprip;RIP Listener;c:\windows\System32\svchost.exe -k netsvcs [4/08/2004 2:07 14336]

R2 PfDetNT;PfDetNT;c:\windows\system32\drivers\pfmodnt.sys [7/07/2008 9:37 15896]

R2 SBKUPNT;SBKUPNT;c:\windows\system32\drivers\SBKUPNT.SYS [27/03/2008 1:08 14976]

R2 SbPF.Launcher;SbPF.Launcher;c:\program files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [31/10/2008 6:24 95528]

R2 SPF4;Sunbelt Personal Firewall 4;c:\program files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [31/10/2008 6:24 1365288]

R2 tcaicchg;tcaicchg;c:\windows\system32\TCAICCHG.SYS [6/06/2000 11:08 21233]

R2 TCAITDI;TCAITDI Protocol;c:\windows\system32\drivers\TCAITDI.SYS [4/09/2001 4:22 19534]

R2 thdudf;TOSHIBA UDF2.5 Reader File System Driver;c:\windows\system32\drivers\thdudf.sys [20/08/2010 18:47 66944]

R3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\system32\drivers\COMMONFX.sys [27/06/2008 18:21 99352]

R3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\system32\drivers\CTAUDFX.sys [27/06/2008 18:21 555032]

R3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\system32\drivers\CTSBLFX.sys [27/06/2008 18:21 566296]

R3 DrmRAudio;DrmRAudio;c:\windows\system32\drivers\DrmRAudio.sys [22/07/2009 8:13 23096]

R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [8/04/2009 9:01 65576]

R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [16/05/2010 20:57 27632]

R3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [14/05/2009 14:03 16640]

S3 AsAudioDevice_349;AsAudioDevice_349;c:\windows\system32\drivers\AsAudioDevice_349.sys [3/04/2009 9:04 16640]

S3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.sys [27/06/2008 18:21 99352]

S3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.sys [27/06/2008 18:21 555032]

S3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\system32\drivers\CTERFXFX.sys [27/06/2008 18:21 100888]

S3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.sys [27/06/2008 18:21 100888]

S3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.sys [27/06/2008 18:21 566296]

S3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [21/05/2008 12:42 64000]

S3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 2010\DfSdkS.exe [16/11/2009 11:19 406016]

S3 EmmaDevMgmtSvc;Emma Device Management;c:\program files\Common Files\Sony Ericsson\Emma Core\Services\EmmaDeviceMgmt.exe [1/07/2010 16:43 306296]

S3 EmmaUpdMgmtSvc;Emma Update Management;c:\program files\Common Files\Sony Ericsson\Emma Core\Services\EmmaUpdateMgmt.exe [1/07/2010 16:43 162936]

S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [3/04/2009 8:25 8704]

S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [3/04/2009 8:25 3072]

S3 F-Secure Standalone Minifilter;F-Secure Standalone Minifilter; [x]

S3 FileMysterSrv;FileMyster Service;c:\program files\FileMyster\SyncService.exe [2/09/2009 12:23 36864]

S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\MAGIX\Common\Database\bin\fbserver.exe [27/02/2008 17:08 1527900]

S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [6/09/2008 13:34 13224]

S3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2/07/2008 14:58 26248]

S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [6/11/2007 21:22 34064]

S3 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [16/05/2010 20:56 90112]

S3 rkhdrv40;Rootkit Unhooker Driver; [x]

S3 SMServer;SMServer;c:\windows\system32\snmvtsvc.exe [22/07/2009 8:13 245760]

S3 UPnPService;UPnPService;c:\program files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [27/02/2008 17:07 544768]

S3 V0220Dev;Live! Cam Video IM;c:\windows\system32\drivers\V0220Dev.sys [17/02/2008 13:01 146112]

S3 V0220Vfx;V0220VFX;c:\windows\system32\drivers\V0220Vfx.sys [17/02/2008 13:01 6272]

S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [17/06/2010 22:49 697328]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc

 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

.

Contenu du dossier 'Tâches planifiées'

 

2010-11-14 c:\windows\Tasks\GlaryInitialize.job

- c:\program files\Glary Utilities\initialize.exe [2009-01-12 11:09]

 

2010-11-14 c:\windows\Tasks\Maintenance en 1 clic.job

- c:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2009-11-16 15:04]

 

2010-11-13 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job

- c:\program files\Ask.com\UpdateTask.exe [2009-09-02 13:56]

.

.

------- Examen supplémentaire -------

.

uStart Page = hxxp://www.google.be/

IE: >Search in Linkman - file://c:\documents and settings\Bart\My Documents\Linkman\iescript_search.htm

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: Add to Linkman - file://c:\documents and settings\Bart\My Documents\Linkman\iescript_add.htm

IE: Add to Linkman (all tabs) - file://c:\documents and settings\Bart\My Documents\Linkman\iescript_addall.htm

IE: Add to Linkman and Edit - file://c:\documents and settings\Bart\My Documents\Linkman\iescript_edit.htm

IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000

IE: Show Linkman - file://c:\documents and settings\Bart\My Documents\Linkman\iescript_show.htm

IE: Sothink SWF Catcher - c:\program files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm

IE: Tout télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm

IE: Télécharger avec Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm

IE: Télécharger la sélection avec Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm

IE: Télécharger la vidéo avec Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm

IE: { - c:\program files\Messenger\msmsgs.exe

Trusted Zone: creative.com\forums

Trusted Zone: myprogression.com\www

DPF: {C1029C96-C060-44EA-9752-502B62E6C8C4} - hxxp://www.myprogression.com/student/plugins/pgldr.cab

FF - ProfilePath - c:\documents and settings\Bart\Application Data\Mozilla\Firefox\Profiles\ta53akj1.default\

FF - prefs.js: browser.startup.homepage - http:/www.google.com

FF - component: c:\program files\Free Download Manager\Firefox\Extension\components\vmsfdmff.dll

FF - component: c:\program files\Mozilla Firefox\extensions\{A81031F3-6CEE-4A19-809F-4E26C1D9C1D1}\components\LinkmanFox.dll

FF - plugin: c:\documents and settings\Bart\Local Settings\Application Data\Yahoo!\BrowserPlus\2.5.1\Plugins\npybrowserplus_2.5.1.dll

FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll

FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll

FF - plugin: c:\program files\Photosynth\npPhotosynthMozilla.dll

FF - plugin: c:\program files\TVUPlayer\npTVUAx.dll

FF - plugin: c:\program files\Veetle\Player\npvlc.dll

FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll

FF - plugin: c:\program files\Veetle\VLCBroadcast\npvbp.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

 

---- PARAMETRES FIREFOX ----

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional

c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified

c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);

.

- - - - ORPHELINS SUPPRIMES - - - -

 

AddRemove-Creative MediaSource CD-ROM Burner Plugin Unicode - c:\program files\Creative Installation Information\E-CENTER_PLUGIN_CDBURNER_U\Setup.exe

AddRemove-Creative MediaSource Net Content Plugin Unicode - c:\program files\Creative Installation Information\E-CENTER_NET_CONTENT_U\Setup.exe

AddRemove-Creative MediaSource Player Skin Pack Unicode - c:\program files\Creative Installation Information\MEDIASOURCE_PLAYER_SKINPACK_U\Setup.exe

AddRemove-Creative MediaSource Unicode - c:\program files\Creative Installation Information\CREATIVE_MEDIASOURCE_U\Setup.exe

 

 

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover

Rootkit scan 2010-11-14 01:26

Windows 5.1.2600 Service Pack 3 NTFS

 

Recherche de processus cachés ...

 

Recherche d'éléments en démarrage automatique cachés ...

 

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

CTHelper = CTHELPER.EXE?

 

Recherche de fichiers cachés ...

 

Scan terminé avec succès

Fichiers cachés: 0

 

**************************************************************************

.

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

 

[HKEY_USERS\S-1-5-21-1454471165-1202660629-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{D342BE15-D061-06F4-9118-48EB0CFA47D5}*]

@Allowed: (Read) (RestrictedCode)

@Allowed: (Read) (RestrictedCode)

"abhlobljlnjaebbbdnaipknbaecnimemdd"=hex:69,61,65,6d,6e,61,61,67,69,61,65,6d,

6e,6e,6c,6d,62,6e,00,00

"maglponpmccoeebjphfehkpigm"=hex:6f,61,6c,6a,65,69,65,68,64,64,66,68,6f,6d,6f,

6b,6c,6c,6c,65,64,63,66,66,6b,68,70,6f,6b,6f,00,00

 

[HKEY_USERS\S-1-5-21-1454471165-1202660629-839522115-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]

"??"=hex:72,b5,0a,a2,1c,07,b4,62,69,f4,58,25,e0,4b,92,5c,7d,9a,d6,1c,23,92,63,

82,0e,21,f9,1b,28,7b,97,cc,da,67,a3,6e,1f,88,cb,be,2b,30,d3,0a,86,48,e8,70,\

"??"=hex:eb,08,18,e0,13,8a,e4,c5,c3,97,9f,2b,0a,97,64,d2

 

[HKEY_USERS\S-1-5-21-1454471165-1202660629-839522115-1004\Software\SecuROM\License information*]

"datasecu"=hex:b7,ad,55,02,7f,de,6f,da,ab,63,27,9e,05,8c,c3,5c,3d,74,6f,f6,e4,

70,b0,c1,7d,e9,8c,b5,b5,02,5b,2b,6b,f7,d8,5a,d1,a2,c3,d3,f7,ed,ff,ba,51,c1,\

"rkeysecu"=hex:e0,ca,f5,ac,12,b0,11,2d,4c,06,42,41,5b,37,d8,48

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"

 

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

 

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

 

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]

"OODEFRAG10.00.00.01WORKSTATION"="D36AF5898425CE2C4275B3850142103ACF14383414A61F7DB93E8B3CA4F705F1B3D30A84F714B1BC8B45F0AA31041AB10CCF2B192B813A6EBD44EE1D9A07DAF6F766319C0373A478B3D4E5CF7B3A928540031014BFA99FF1BDC522FEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CA6A0AC4980AC7933A6171C11EC38DE3DA2D97226D213B5558EDD5E5BE2F6E6676C905F63F37C48A984B7590AA7234622FA2178413EBCB2BDC5A12D7D835A739E9566260998A368FB280D933A46DBFD05218778FC6129BF927F4F0E2DC73488A4966D363CDF8F3A341D4AFC2B32FC07D55155ACD290EED1A31F79EEFC4CEF11086460004B7C46CD43BD86707050762DD5E3A0F8BA008D8C291F525BE937B928133B2ED757254058A9240C2AF18AB15D5C7731220269F6B56CBC3E43C534B28CA71BF775D8966B337B315B4CEA4D0529D36D8254C88B13394EFA56F837F06EA439C615761A11A7DA620A295BEA8841C63AE8C61D0426BB25429FE8343720F276D0C411DAB9D64A709C165A425631A610A1D3E16DFB01C12ECE35781294F73F2E0A612987AAAF9B397A010C4DE4BFEC82305CEB1ECEE467A81089390F6F34C09C152ACFC233695A1D61BB8DAE22B1BCC0217331E86C1FE290B3AE1490BF93DD3436732D3B6E51B629CB79637A6E07B390C14DB3EB1A816006FEFB29DD4DD76C0E46D41A014BBAD41045B3432B7C44E45B74E3A7296F617E4AC70A47213648B966312825880D7FCF24EF26991ED571D62FAE73F3075A98D0457938F46B6CAF069BF78D92284A79B2DF01CF8514549D023F7D7EB6D01B06DC809327ECAF375A05322DE6D61FEB09FE5F42755BB2A856555F7CC93F35C60A1F2D2ABE1BC32E1FDD53F95C1D8C3412AAE40F2022045533338ADE5D13C44689859C632721E440512D489BD94573B2FB9DD3DA9B947535C9F05FEA07EA76D6EF74C4FBD0D5322F4D0404618DDF3FCFB235362A77A457F0B9D89E7B5832A607A9424341EC41AE90706418AFE9B43AC4A4C337968873DF8A2229ADFD260A11BD2A39D496F02141CE1FC8BD7E27BC9523C60BA94DE6D82854279398F489C7593364995D75186736A5BD9AD05BC029654B1148020E6E622E75723E8B7660F28674D31563675F3ABC29B8BB50E4F45A2274FD2558313E4DD1EB3143D72DCBC78261F5D3128C0A72E73EFD7FDFD046E7A7AA0DC46B1D3C8D5A0612B075572E389A30CCF0B7971D1EAF9E802FC8667E1CB8CB43BA995010CB7068CB08FCC7B46703E75BFAC8CFE3FC6F5837057681A6F4768AA790E8DCA562210A95BFACE24A2E51E62FF4D910EC86E54C1CB1F8930EA46A6D454482652D615D372D4266A5211A7FDCD355274988643632ADD883A14893824FAC4534A69A8C7C8ED2EC301CAC69ECCE5B"

.

--------------------- DLLs chargées dans les processus actifs ---------------------

 

- - - - - - - > 'winlogon.exe'(1752)

c:\windows\system32\Ati2evxx.dll

 

- - - - - - - > 'explorer.exe'(1528)

c:\windows\system32\WININET.dll

c:\windows\system32\ieframe.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\WPDShServiceObj.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

.

------------------------ Autres processus actifs ------------------------

.

c:\windows\system32\Ati2evxx.exe

c:\windows\system32\Ati2evxx.exe

c:\program files\Avira\AntiVir Desktop\avguard.exe

c:\program files\Avira\AntiVir Desktop\avshadow.exe

c:\program files\Common Files\Acronis\Schedule2\schedul2.exe

c:\program files\Creative\Shared Files\CTDevSrv.exe

c:\windows\System32\FTRTSVC.exe

c:\program files\Java\jre6\bin\jqs.exe

c:\windows\system32\tcpsvcs.exe

c:\windows\System32\snmp.exe

c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

c:\program files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe

c:\program files\Inventel\Gateway\wlancfg.exe

c:\program files\Canon\CAL\CALMAIN.exe

c:\program files\Sunbelt Software\Personal Firewall\SbPFCl.exe

c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

c:\program files\Q-Type Pro\OSD.EXE

c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe

.

**************************************************************************

.

Heure de fin: 2010-11-14 01:42:48 - La machine a redémarré

ComboFix-quarantined-files.txt 2010-11-14 00:42

ComboFix2.txt 2010-09-02 19:34

 

Avant-CF: 138.512.760.832 bytes free

Après-CF: 139.014.201.344 bytes free

 

- - End Of File - - 3A6811EF7A363DDBD9CBA1F4B9C832C8

blackjack22 Junior Member

blackjack22

Posté(e)
  • Auteur
Posté(e)

Je viens de lire quelques une des règles de ce forum, je vous envoie dès lors le log généré par hijackthis :

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 12:53:54, on 14/11/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe

C:\Program Files\Creative\Shared Files\CTDevSrv.exe

C:\WINDOWS\System32\FTRTSVC.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe

C:\WINDOWS\system32\tcpsvcs.exe

C:\WINDOWS\System32\snmp.exe

C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe

C:\Program Files\Inventel\Gateway\wlancfg.exe

C:\Program Files\Canon\CAL\CALMAIN.exe

C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe

C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe

C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe

C:\WINDOWS\system32\CTHELPER.EXE

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\Process Lasso\processlasso.exe

C:\Program Files\Process Lasso\processgovernor.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe

C:\Program Files\Linkman\Linkman.exe

C:\Program Files\Creative\Software Update 3\SoftAuto.exe

C:\Program Files\Q-Type Pro\MagicKey.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe

C:\Program Files\Q-Type Pro\OSD.EXE

C:\Program Files\Q-Type Pro\MulMouse.exe

c:\program files\avira\antivir desktop\avcenter.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Program Files\Windows NT\Accessories\wordpad.exe

C:\WINDOWS\system32\msiexec.exe

C:\Program Files\HijackThis\Trend Micro\HiJackThis\HiJackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll

O3 - Toolbar: &Linkman - {5C9DCA26-CEC4-4280-A831-D622D4DBF113} - C:\PROGRA~1\Linkman\LINKMA~1.DLL

O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe

O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe

O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"

O4 - HKLM\..\Run: [sBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe /r

O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [uSBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe

O4 - HKLM\..\Run: [updatePDRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\7.0"

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [TomcatStartup] C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe

O4 - HKLM\..\Run: [ProcessLassoManagementConsole] C:\Program Files\Process Lasso\processlasso.exe

O4 - HKLM\..\Run: [ProcessGovernor] C:\Program Files\Process Lasso\processgovernor.exe

O4 - HKLM\..\Run: [service Planificateur2 Acronis] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime

O4 - HKCU\..\Run: [Linkman] C:\Program Files\Linkman\Linkman.exe

O4 - HKCU\..\Run: [softAuto.exe] "C:\Program Files\Creative\Software Update 3\SoftAuto.exe"

O4 - Global Startup: Q-Type Pro.lnk = C:\Program Files\Q-Type Pro\MagicKey.exe

O8 - Extra context menu item: >Search in Linkman - file://C:\Documents and Settings\Bart\My Documents\Linkman\iescript_search.htm

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200

O8 - Extra context menu item: Add to Linkman - file://C:\Documents and Settings\Bart\My Documents\Linkman\iescript_add.htm

O8 - Extra context menu item: Add to Linkman (all tabs) - file://C:\Documents and Settings\Bart\My Documents\Linkman\iescript_addall.htm

O8 - Extra context menu item: Add to Linkman and Edit - file://C:\Documents and Settings\Bart\My Documents\Linkman\iescript_edit.htm

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Show Linkman - file://C:\Documents and Settings\Bart\My Documents\Linkman\iescript_show.htm

O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm

O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm

O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm

O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm

O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm

O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll

O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll

O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll

O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll

O9 - Extra button: Rip YouTube File - {38E51477-DDB4-4aed-9D61-D0C193E10749} - C:\Program Files\DrmRemoval\YouTubeRipper.dll

O9 - Extra 'Tools' menuitem: Rip YouTube file embedded in this page - {38E51477-DDB4-4aed-9D61-D0C193E10749} - C:\Program Files\DrmRemoval\YouTubeRipper.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm

O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O15 - Trusted Zone: Creative Labs - Creative Labs

O15 - Trusted Zone: Myprogression.com

O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.systemrequirementslab.com/srl_bin/sysreqlab_srl.cab

O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1202778716156

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1202683753937

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1258287008109

O16 - DPF: {A796D216-2DE1-4EA8-BABB-FE6E7C959098} (HPSDDX Class) - http://www.hp.com/cpso-support-new/SDD/hpsddObjSigned.cab

O16 - DPF: {C1029C96-C060-44EA-9752-502B62E6C8C4} (PGLoader Class) - http://www.myprogression.com/student/plugins/pgldr.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O23 - Service: Service Planificateur2 Acronis (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe

O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe

O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTDevSrv.exe

O23 - Service: Creative Centrale Media Server (CTUPnPSv) - Creative Technology Ltd - C:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe

O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2010\Dfsdks.exe

O23 - Service: Emma Device Management (EmmaDevMgmtSvc) - Sony Ericsson Mobile Communications - C:\Program Files\Common Files\Sony Ericsson\Emma Core\Services\EmmaDeviceMgmt.exe

O23 - Service: Emma Update Management (EmmaUpdMgmtSvc) - Sony Ericsson Mobile Communications - C:\Program Files\Common Files\Sony Ericsson\Emma Core\Services\EmmaUpdateMgmt.exe

O23 - Service: FileMyster Service (FileMysterSrv) - Bateel Software - C:\Program Files\FileMyster\SyncService.exe

O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe

O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe

O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe

O23 - Service: SMServer - SMServer - C:\WINDOWS\system32\snmvtsvc.exe

O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe

O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe

O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe

O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

O23 - Service: UPnPService - Magix AG - C:\Program Files\Common Files\MAGIX Shared\UPnPService\UPnPService.exe

O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe

O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

 

--

End of file - 14948 bytes

blackjack22 Junior Member

blackjack22

Posté(e)
  • Auteur
Posté(e)

Pour terminer, je reçois ce message lorsque le système ne répond plus (impossible de lancer une application basique)

 

"The application failed to initialize properly (0XC000012d)"

 

Je vous remercie d'avance pour votre aide.

 

Je rame comme mon pc.

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...