Sujet Précédent Sujet Suivant

JE suis infecté comment faire

Fermé
benoit - 11 avril 2009 à 16:42
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 11 avril 2009 à 17:27
Bonjour,
voila un rapport de ZHPZeb Help Process 2 by Nicolas Coolman - Rapport de synthèse du 2009-04-11 16:38:28

INFORMATION


INFECTION IDENTIFIEE
Liste disponible seulement en version Helper


PROCESSUS MALWARE (Rootkit, trojan, ver, spyware, adware,...)
O44 - LFC:Last File Created - C:\Windows\System32\tmp.reg -->2009-01-18
O44 - LFC:Last File Created - C:\Windows\System32\tmp.txt -->2009-01-18

PROCESSUS SUPERFLU DU SYSTEME
C:\Windows\system32\igfxpers.exe
O20 - Winlogon Notify: C:\Windows\System32\igfxdev.dll
O44 - LFC:Last File Created - C:\Windows\System32\igfxdev.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxpers.exe -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\perfc009.dat -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\perfc00C.dat -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\perfh009.dat -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\perfh00C.dat -->2009-04-11

PROCESSUS D'ACTION INCONNUE
O42 - Logiciel: MSVCRT

PROCESSUS INUTILE (Au démarrage du système)
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

PROTECTION DU SYSTEME (Antivirus, FireWall, Anti-Malwares)
Crawler®Spyware Terminator
Avira®AntiVir PersonalEdition
Emsi Software®A-Squared Free Anti-malware
Avira®AntiVir PersonalEdition/Desktop
Avira AntiVir PersonalEdition
Online Armor Firewall
a-squared Free Antivirus
a-squared Hijacker
Avira Antivir Personal Free
Sophos AntiRootkit
Spyware Terminator

RAPPORT SIMPLIFIE
C:\Windows\system32\igfxpers.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [eRecoveryService]
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [fsm]
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKLM\..\policies\Explorer: [EnableShellExecuteHooks] Data="1"
O5 - control.ini: inetcpl.cpl=no
O20 - Winlogon Notify: C:\Windows\System32\igfxdev.dll
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Google Software Updater.job
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O41 - Driver: (no object) (JMCR) - C:\WINDOWS\system32\DRIVERS\jmcr.sys
O41 - Driver: Pilote de carte Intel Wireless WiFi Link pour Windows Vista 32 bits (NETw5v32) - C:\WINDOWS\system32\DRIVERS\NETw5v32.sys
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O41 - Driver: (no object) (JMCR) - C:\WINDOWS\system32\DRIVERS\jmcr.sys
O41 - Driver: Pilote de carte Intel Wireless WiFi Link pour Windows Vista 32 bits (NETw5v32) - C:\WINDOWS\system32\DRIVERS\NETw5v32.sys
O41 - Driver: AlfaFF File System mini-filter (AlfaFF) - C:\WINDOWS\system32\Drivers\AlfaFF.sys
O41 - Driver: GDPkIcpt (GDPkIcpt) - C:\Windows\system32\drivers\PktIcpt.sys
O41 - Driver: G DATA WFP CD (gdwfpcd) - C:\WINDOWS\system32\drivers\gdwfpcd32.sys
O41 - Driver: G DATA Rootkit Detector Driver (GRD) - C:\Windows\system32\drivers\GRD.sys
O41 - Driver: (no object) (JMCR) - C:\WINDOWS\system32\DRIVERS\jmcr.sys
O41 - Driver: Pilote de carte Intel Wireless WiFi Link pour Windows Vista 32 bits (NETw5v32) - C:\WINDOWS\system32\DRIVERS\NETw5v32.sys
O42 - Logiciel: Acer Bio Protection
AAA 6.0.00.17
O42 - Logiciel: Advanced SystemCare 3
O42 - Logiciel: Revo Uninstaller 1.80
O42 - Logiciel: Software Informer 1.0 BETA
O42 - Logiciel: SpywareBlaster 4.2
O42 - Logiciel: TomTom HOME 2.5.2.60
O42 - Logiciel: Intel TV Wizard
O42 - Logiciel: WIDCOMM Bluetooth Software 6.0.1.6400
O42 - Logiciel: Acer VCM
O42 - Logiciel: JkDefrag 3.36
O42 - Logiciel: AutoMz Ultimate Tweaker v4.4
O42 - Logiciel: MSVCRT
O42 - Logiciel: Kit d’installation automatisée (Windows AIK)
O42 - Logiciel: Acer Crystal Eye
O42 - Logiciel: Orion
O42 - Logiciel: Acer eRecovery Management
O42 - Logiciel: Realtek 8169 8168 8101E 8102E Ethernet Driver
O42 - Logiciel: TomTom HOME Visual Studio Merge Modules
O42 - Logiciel: Windows Live Sync
O42 - Logiciel: Acer Crystal Eye Webcam 3.0.5.1
O42 - Logiciel: PhotoNow!
O42 - Logiciel: Ralink Wireless LAN Installation Program for VISTA v2.0.8.0
O43 - CFD:Common File Directory - C:\Program Files\Common Files\Services
O44 - LFC:Last File Created - C:\Windows\System32\agent.log -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\BIN_STRSBW.SPT -->2009-03-28
O44 - LFC:Last File Created - C:\Windows\System32\CF18725.exe -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\dummy019file -->2009-01-18
O44 - LFC:Last File Created - C:\Windows\System32\ggco.txt -->2009-02-28
O44 - LFC:Last File Created - C:\Windows\System32\ig4dev32.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\ig4icd32.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igd10umd32.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igdumd32.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igdumdx32.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfcg500m.bin -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxCoIn_v1666.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxcpl.cpl -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxdev.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxpers.exe -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrara.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrchs.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrcht.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrcsy.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrdan.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrdeu.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrell.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrenu.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxresp.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrfin.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrfra.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrheb.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrhun.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrita.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrjpn.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrkor.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrnld.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrnor.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrplk.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrptb.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrptg.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrrus.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrsky.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrslv.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrsve.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrtha.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxrtrk.lrc -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxTMM.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igfxtvcx.dll -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\iglhxs32.vp -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\igxpun.exe -->2009-03-10
O44 - LFC:Last File Created - C:\Windows\System32\IScrNB.bmp -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\LogConfigTemp.xml -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\perfc009.dat -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\perfc00C.dat -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\perfh009.dat -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\perfh00C.dat -->2009-04-11
O44 - LFC:Last File Created - C:\Windows\System32\results.xml -->2009-02-06
O44 - LFC:Last File Created - C:\Windows\System32\tmp.reg -->2009-01-18
O44 - LFC:Last File Created - C:\Windows\System32\tmp.txt -->2009-01-18
O44 - LFC:Last File Created - C:\Windows\System32\TVWizudlg.exe -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\TVWSetup.exe -->2009-02-26
O44 - LFC:Last File Created - C:\Windows\System32\wininet.dll -->2009-01-15
O44 - LFC:Last File Created - C:\Windows\System32\drivers\gdwfpcd32.sys -->2009-01-21
O44 - LFC:Last File Created - C:\Windows\System32\drivers\GRD.sys -->2009-01-21
O44 - LFC:Last File Created - C:\Windows\System32\drivers\hzkxhddy.sys -->2009-02-28
O44 - LFC:Last File Created - C:\Windows\System32\drivers\PktIcpt.sys -->2009-01-21
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\A2FREE.EXE-86BF1460.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\A2SERVICE.EXE-74D73443.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\A2UPD.EXE-54A4767B.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ACER CRYSTAL EYE WEBCAM.EXE-D0A6384D.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgAppLaunch.db -->2009-01-31
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-4153635103-241992502-2931499995-1000.snp.db -->2009-02-01
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC1.db -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC1.db.trx -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgCx_SC3_6427C546.db -->2009-02-01
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlFaultHistory.db -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlFgAppHistory.db -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlGlobalHistory.db -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-4153635103-241992502-2931499995-1000.db -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-4153635103-241992502-2931499995-1000.db -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AgRobust.db -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ALERTMODULE.EXE-E4B297A5.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ATTRIB.CFEXE-54625609.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ATTRIB.EXE-A990CB86.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AU_.EXE-115FA154.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVCENTER.EXE-AF580B74.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVCONFIG.EXE-CC95D0BD.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVNOTIFY.EXE-E96C2D4C.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVSCAN.EXE-4CFCA428.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AVWSC.EXE-18A3FCA0.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\AWC.EXE-C9EE81F1.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CF18725.EXE-48AF4348.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CHCP.COM-61043047.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CMD.EXECF-C5C11419.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\COMBOFIX.EXE-83005379.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CONIME.EXE-9781FD5F.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CONTROL.EXE-817F8F1D.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\CSCRIPT.EXE-D1EF4768.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-6BCB9FAA.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DLLHOST.EXE-7ED62AA2.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\DWM.EXE-6FFD3DA8.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EHMSAS.EXE-2D3B2F21.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\FINDSTR.CFEXE-2C31CDB5.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\FINDSTR.EXE-2E9C6FE2.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\FLASHUTIL10B.EXE-06DAF439.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GOOGLETOOLBARUSER.EXE-CECE70EE.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GOOGLEUPDATER.EXE-39628337.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GOOGLEUPDATERSERVICE.EXE-09540BCD.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GREP.CFEXE-AF5B8A31.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GREP.CFEXE-F2435294.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GRPCONV.EXE-B823222B.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\GSAR.CFEXE-7118702F.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\HANDLE.CFEXE-29220A7A.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\HIDEC.EXE-0F1FADFA.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IEUSER.EXE-7C0FE221.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INFDEFAULTINSTALL.EXE-39AFC5CD.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INITIALIZE.EXE-7DCDC37F.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INSTALL_FLASH_PLAYER_10_ACTIV-0F16DAA7.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INSTALL_FLASH_PLAYER_10_ACTIV-CCFFA7CE.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\INTEGRATOR.EXE-84638148.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IOBITUPDATE.EXE-751C957C.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\IZARC.EXE-432FE040.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LMANAGER.EXE-9D025777.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MBAM-DOR.EXE-547CF556.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MBAM-SETUP.EXE-A9F8D519.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MBAM-SETUP.TMP-1002A005.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MBAM.EXE-305FF92C.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MBAMGUI.EXE-4FE652ED.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MPAS-FE.EXE-6BCBD37D.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MPSIGSTUB.EXE-19CC8351.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\N.COM-F61C6F88.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NIRCMD.CFEXE-5DB93D84.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NIRCMD.CFEXE-E3BBAAB7.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NS10F8.TMP-5039363A.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NS1858.TMP-D1B0E6D8.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NS4378.TMP-D783CD80.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NS67AA.TMP-5B2D0179.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NS6F0B.TMP-12FD43D0.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NSF3E6.TMP-18B3FC86.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\OPERA.EXE-103FF2EC.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PfSvPerfStats.bin -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PREUPD.EXE-A30DA2EC.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PV.CFEXE-1E6D6CAC.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\PV.CFEXE-CDA21619.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\QTTASK.EXE-A6BC4AB2.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\QUICKTIMEINSTALLER.EXE-34422B59.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\QUICKTIMEINSTALLERADMIN.EXE-0874F1D6.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-4C984D0D.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-68B74ECA.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNDLL32.EXE-70A53FFC.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\RUNONCE.EXE-D0649312.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SED.CFEXE-428C1ABF.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SED.CFEXE-51EE12DA.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SOFTWAREUPDATE.EXE-631B74E4.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWAREBLASTER.EXE-30ACFBE6.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWAREBLASTERSETUP42.EXE-091088DA.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWAREBLASTERSETUP42.TMP-5634A822.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWARETERMINATOR.EXE-2FF014AE.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SPYWARETERMINATORSHIELD.EXE-6798B02B.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SWREG.EXE-599818A6.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SWREG.EXE-68FA10C1.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SWXCACLS.CFEXE-8A6F12E6.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYNTPENH.EXE-E6DC1353.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\SYNTPHELPER.EXE-0A20AAC4.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFGUI.EXE-CAB5CF47.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFNOTICE.EXE-350B55C8.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFUD.EXE-488203EB.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TFUN.EXE-09DB4D1D.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UNINSTALL_ACTIVEX.EXE-266487A7.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UNSECAPP.EXE-A02905A6.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UNZIP.CFEXE-CAB59F0C.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UPDATE.EXE-6CE0A11B.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\UPDATECHECKER.EXE-DF356CBF.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VERCLSID.EXE-7C52E31C.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WEBUPDATE.EXE-3395CEAA.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERCON.EXE-E36BD04E.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WLCOMM.EXE-272FF9F7.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WRP.CFEXE-928AA458.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf -->2009-04-11
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\WUSA.EXE-F04B35C8.pf -->2009-04-05
O45 - LFCP:Last File Created Prefetch - C:\Windows\Prefetch\ZHP2.EXE-2B098B11.pf -->2009-04-11
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\procexp90.Sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\procexp90.Sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Minimal\procexp90.Sys
O49 - CSB:Control Safe Boot HKLM\...\CS1\Network\procexp90.Sys

1 réponse

Réponse 1 / 1
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
11 avril 2009 à 17:27
slt,


Télécharge et installe UsbFix de C_XX & Chiquitine29

Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d avoir été infectés sans les ouvrir</gras>

# Double clic sur le raccourci UsbFix présent sur ton bureau .

# Choisi l option 1 ( Recherche )

# Laisse travailler l outil.

# Ensuite post le rapport UsbFix.txt qui apparaitra.

# Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

# Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0

Discussions similaires

Menace détectée TrojanSMS-PA sur Google Huawei/Android
Outmost -
bazfile -

6 réponses
Virus détecté
Koony -
MisteryBean -

6 réponses
y a t'il des virus qu'avast ne detecte pas
davivid -
Utilisateur anonyme -

24 réponses
Mon ordinateur a été infecté par un virus ou
henry4002 -
jorginho67 -

6 réponses
Virus non détecté par mon anti-virus ?
F2L -
cabrier -

12 réponses