Sujet Précédent Sujet Suivant

2 Virus qui reviennet malgré la suppression

Fermé
Thaeter - 8 nov. 2009 à 21:25
totobetourne Messages postés 5592 Date d'inscription dimanche 23 mars 2008 Statut Membre Dernière intervention 6 juin 2012 - 9 nov. 2009 à 20:57
Bonjour,
Voilà, je vous expose mon problème.

J'ai récemment été attaqué par un virus qui s'appelle Security Tool après avoir reçu de nombreuses alertes de virus par avast.
J'ai réussi à me débarrasser de Security Tool en passant par le mode sans échec et en utilisant Malwarebytes.

Mais, problème, dès que je re démarre sous XP normal, je reçois deux alertes à la suite d'avast signalant :

-Un Trojan Cheval de Troie
-Un Virus malware Vers

J'ai déjà essayé pas mal de manoeuvre, aucun moyen de s'en débarasser.
Est-ce une fausse alerte ? Que faire ?

Merci de votre aide, je ne suis qu'un novice dans ce domaine.
A voir également:

8 réponses

Réponse 1 / 8
totobetourne Messages postés 5592 Date d'inscription dimanche 23 mars 2008 Statut Membre Dernière intervention 6 juin 2012 65
8 nov. 2009 à 21:44
bonsoir

on va regarder ton systeme.
Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.

-> http://images.malwareremoval.com/random/RSIT.exe

! Déconnecte toi et ferme toutes tes applications en cours !

Double-clique sur " RSIT.exe " pour le lancer .

-> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .

* Devant l'option "List files/folders created ..." , tu choisis : 2 months

* clique ensuite sur " Continue " pour lancer l'analyse ...


-> laisse faire le scan et ne touche pas au PC ...


Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).

Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...

Important : poste un rapport, puis l'autre dans la réponse suivante
Si tu essaies de poster les deux en même temps, cela risque d'être trop long pour le forum


( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )
0
Réponse 2 / 8
Thaeter
9 nov. 2009 à 12:25
Je fais tout ceci en rentrant ce soir, merci beaucoup pour ton aide !
0
Réponse 3 / 8
Thaeter
9 nov. 2009 à 16:23
Voilà le premier rapport log.txt :

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrateur at 2009-11-09 16:14:12
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 37 GB (8%) free of 477 GB
Total RAM: 2047 MB (72% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore1ca59a2cb333dec.job
C:\WINDOWS\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-08 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-08 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - Veoh Web Player Video Finder - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll [2008-12-16 429816]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\Program Files\Alwil Software\Avast4\ashDisp.exe [2009-02-05 81000]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-03-24 13524992]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-03-24 86016]
"ANIWZCS2Service"=C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe [2007-01-19 69632]
"D-Link D-Link Wireless G DWA-110"=C:\Program Files\D-Link\D-Link Wireless G DWA-110\AirGCFG.exe [2007-05-04 1683456]
"AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-07-10 116040]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-05-27 434176]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-07-10 289064]
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE [2005-07-19 241664]
"LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 479232]
"LogitechVideoTray"=C:\Program Files\Logitech\Video\LogiTray.exe [2005-06-08 237568]
"Adobe Photo Downloader"=C:\Program Files\Adobe\Adobe Photoshop Lightroom 1.4\apdproxy.exe [2008-04-01 81920]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-04-11 56080]
"lsdefrag"=C:\DOCUME~1\Administrateur\Local Settings\Temp\aeomrnwcxs.tmp []
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
"ter8m"=C:\WINDOWS\system32\msxm192z.dll [2009-11-07 61440]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-11-08 149280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2009-02-06 3885408]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-03 35328]
"LDM"=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe []
"LogitechSoftwareUpdate"=C:\Program Files\Logitech\Video\ManifestEngine.exe [2005-06-08 217088]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe [2009-03-28 3346432]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-10-07 323392]
"VeohPlugin"=C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe [2008-12-16 3528440]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-06-15 39408]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2009-04-23 708608]
"PeerGuardian"=C:\Program Files\PeerGuardian2\pg2.exe [2005-09-18 1441792]
"Steam"=c:\steam acceuil\steam.exe [2009-10-26 1217808]
"xisbcom"=C:\WINDOWS\system32\lmssspr.exe [2009-11-09 63488]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sysfldr]
sysfldr.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-06-27 3584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"ClearDocsOnExit"=64
"MemCheckBoxInRunDlg"=1
"NoSMBalloonTip"=1
"NoDesktopCleanupWizard"=1
"NoWelcomeScreen"=1
"NoAutoUpdate"=1
"MaxRecentDocs"=6
"NoRecentDocsNetHood"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoStrCmpLogical"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Steam\SteamApps\absente\team fortress 2\hl2.exe"="C:\Program Files\Steam\SteamApps\absente\team fortress 2\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Steam\SteamApps\absente\counter-strike source\hl2.exe"="C:\Program Files\Steam\SteamApps\absente\counter-strike source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Steam\SteamApps\absente\counter-strike\hl.exe"="C:\Program Files\Steam\SteamApps\absente\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\TmNationsForever\TmForever.exe"="C:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"
"C:\Program Files\Steam\SteamApps\absente\day of defeat source\hl2.exe"="C:\Program Files\Steam\SteamApps\absente\day of defeat source\hl2.exe:*:Enabled:hl2"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application"
"C:\Program Files\Sierra\FEARCombat\fpupdate.exe"="C:\Program Files\Sierra\FEARCombat\fpupdate.exe:*:Enabled:fpupdate"
"C:\Program Files\Sierra\FEARCombat\FEARMP.exe"="C:\Program Files\Sierra\FEARCombat\FEARMP.exe:*:Enabled:FEAR Combat"
"C:\Program Files\Steam\SteamApps\absente\condition zero\hl.exe"="C:\Program Files\Steam\SteamApps\absente\condition zero\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\Steam\SteamApps\absente\the ship\ship.exe"="C:\Program Files\Steam\SteamApps\absente\the ship\ship.exe:*:Enabled:ship"
"C:\Program Files\Steam\SteamApps\absente\garrysmod\hl2.exe"="C:\Program Files\Steam\SteamApps\absente\garrysmod\hl2.exe:*:Enabled:hl2"
"C:\Program Files\THQ\Dawn Of War\W40kWA.exe"="C:\Program Files\THQ\Dawn Of War\W40kWA.exe:*:Enabled:W40kWA"
"C:\Program Files\Electronic Arts\Battlefield 2142\BF2142.exe"="C:\Program Files\Electronic Arts\Battlefield 2142\BF2142.exe:*:Enabled:Battlefield 2"
"C:\Program Files\Unreal Tournament 3 Demo\Binaries\UT3Demo.exe"="C:\Program Files\Unreal Tournament 3 Demo\Binaries\UT3Demo.exe:*:Enabled:Unreal Tournament 3 Demo"
"C:\Program Files\Electronic Arts\Crytek\Crysis SP Demo\Bin32\Crysis.exe"="C:\Program Files\Electronic Arts\Crytek\Crysis SP Demo\Bin32\Crysis.exe:*:Enabled:Crysis_32_sp_demo"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Red Storm Entertainment\RavenShield\system\RavenShield.exe"="C:\Program Files\Red Storm Entertainment\RavenShield\system\RavenShield.exe:*:Enabled:RavenShield"
"C:\Program Files\Steam\SteamApps\absente\half-life 2 deathmatch\hl2.exe"="C:\Program Files\Steam\SteamApps\absente\half-life 2 deathmatch\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Cyanide\GameCenter\GameCenter.exe"="C:\Program Files\Cyanide\GameCenter\GameCenter.exe:*:Enabled:GameCenter"
"C:\Program Files\Cyanide\Loki\Loki.exe"="C:\Program Files\Cyanide\Loki\Loki.exe:*:Enabled:Loki"
"C:\Program Files\Cyanide\Loki\Autorun\AutoRun.exe"="C:\Program Files\Cyanide\Loki\Autorun\AutoRun.exe:*:Enabled:Loki - AutoRun"
"C:\Program Files\World of Warcraft\BackgroundDownloader.exe"="C:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Codemasters\GRID Demo\GRID.exe"="C:\Program Files\Codemasters\GRID Demo\GRID.exe:*:Enabled:GRID Demo"
"C:\Program Files\Steam\SteamApps\absente\age of chivalry\hl2.exe"="C:\Program Files\Steam\SteamApps\absente\age of chivalry\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Steam\SteamApps\absente\zombie panic! source\hl2.exe"="C:\Program Files\Steam\SteamApps\absente\zombie panic! source\hl2.exe:*:Enabled:hl2"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Steam\SteamApps\absente\synergy\hl2.exe"="C:\Program Files\Steam\SteamApps\absente\synergy\hl2.exe:*:Enabled:hl2"
"C:\Documents and Settings\Administrateur\Local Settings\Application Data\F4\ClientUpdater\ClientUpdater.exe"="C:\Documents and Settings\Administrateur\Local Settings\Application Data\F4\ClientUpdater\ClientUpdater.exe:*:Enabled:F4 Game Client Updater"
"C:\Program Files\Empire of Sports\NetworkDiagnostic.exe"="C:\Program Files\Empire of Sports\NetworkDiagnostic.exe:*:Enabled:Empire of Sports Network Diagnostic"
"C:\Program Files\Empire of Sports\EmpireOfSports.exe"="C:\Program Files\Empire of Sports\EmpireOfSports.exe:*:Enabled:Empire of Sports"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Enabled:EA Download Manager"
"C:\Program Files\Electronic Arts\Dead Space\Dead Space.exe"="C:\Program Files\Electronic Arts\Dead Space\Dead Space.exe:*:Enabled:Dead Space ™"
"C:\Program Files\NCsoft\Exteel (US)\System\Exteel.exe"="C:\Program Files\NCsoft\Exteel (US)\System\Exteel.exe:*:Enabled:Exteel"
"C:\Program Files\Activision\Call of Duty - World at War Beta\CoDWaWbeta.exe"="C:\Program Files\Activision\Call of Duty - World at War Beta\CoDWaWbeta.exe:*:Enabled:Call of Duty(R): World at War Multiplayer"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe"="C:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editeur"
"C:\Program Files\Sega\Universe At War Earth Assault (DEMO)\UAWEA.exe"="C:\Program Files\Sega\Universe At War Earth Assault (DEMO)\UAWEA.exe:*:Enabled:Universe at War: Earth Assault Application"
"C:\Program Files\Tortun\gui.exe"="C:\Program Files\Tortun\gui.exe:*:Enabled:gui"
"C:\Program Files\Unreal Tournament 3\Binaries\UT3.exe"="C:\Program Files\Unreal Tournament 3\Binaries\UT3.exe:*:Enabled:Unreal Tournament 3"
"C:\Program Files\THQ\Dawn of War - Dark Crusade\DarkCrusade.exe"="C:\Program Files\THQ\Dawn of War - Dark Crusade\DarkCrusade.exe:*:Enabled:DarkCrusade"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Disabled:LimeWire"
"C:\Program Files\Sierra Entertainment\World in Conflict\wic.exe"="C:\Program Files\Sierra Entertainment\World in Conflict\wic.exe:*:Enabled:World in Conflict"
"C:\Program Files\Sierra Entertainment\World in Conflict\wic_online.exe"="C:\Program Files\Sierra Entertainment\World in Conflict\wic_online.exe:*:Enabled:World in Conflict - En ligne uniquement"
"C:\Program Files\Sierra Entertainment\World in Conflict\wic_ds.exe"="C:\Program Files\Sierra Entertainment\World in Conflict\wic_ds.exe:*:Enabled:World in Conflict - Serveur dédié"
"C:\Program Files\WBGames\Monolith Productions\F.E.A.R. 2 SP Demo\FEAR2SPDemo.exe"="C:\Program Files\WBGames\Monolith Productions\F.E.A.R. 2 SP Demo\FEAR2SPDemo.exe:*:Enabled:FEAR2SPDemo.exe"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\ijji\ENGLISH\u_gbound.exe"="C:\ijji\ENGLISH\u_gbound.exe:*:Enabled:<ijji Downloader>"
"C:\ijji\ENGLISH\Gunbound Revolution\GunBound.gme"="C:\ijji\ENGLISH\Gunbound Revolution\GunBound.gme:*:Enabled:GunBound"
"C:\Documents and Settings\Administrateur\Local Settings\Temp\Blizzard Launcher Temporary - 7d25e998\Launcher.exe"="C:\Documents and Settings\Administrateur\Local Settings\Temp\Blizzard Launcher Temporary - 7d25e998\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Steam\SteamApps\common\left 4 dead demo\left4dead.exe"="C:\Program Files\Steam\SteamApps\common\left 4 dead demo\left4dead.exe:*:Enabled:Left 4 Dead Demo"
"C:\Program Files\Steam\SteamApps\common\bioshock demo\Builds\Release\Bioshock.exe"="C:\Program Files\Steam\SteamApps\common\bioshock demo\Builds\Release\Bioshock.exe:*:Enabled:Bioshock Demo"
"C:\Program Files\Steam\SteamApps\common\hitman blood money demo\HitmanBloodMoney.exe"="C:\Program Files\Steam\SteamApps\common\hitman blood money demo\HitmanBloodMoney.exe:*:Enabled:Hitman: Blood Money Demo"
"C:\Program Files\Steam\SteamApps\common\trials 2 second edition demo\launcher.exe"="C:\Program Files\Steam\SteamApps\common\trials 2 second edition demo\launcher.exe:*:Enabled:Trials 2: Second Edition Demo"
"C:\Documents and Settings\Administrateur\Local Settings\Temp\Blizzard Launcher Temporary - 51e283f0\Launcher.exe"="C:\Documents and Settings\Administrateur\Local Settings\Temp\Blizzard Launcher Temporary - 51e283f0\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\pandora.exe"="C:\Program Files\Ubisoft\Splinter Cell Pandora Tomorrow\pandora.exe:*:Enabled:pandora"
"C:\Program Files\Steam\SteamApps\common\the graveyard demo\TheGraveyard.exe"="C:\Program Files\Steam\SteamApps\common\the graveyard demo\TheGraveyard.exe:*:Enabled:The Graveyard Demo"
"C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player "
"C:\Program Files\World of Warcraft\Launcher.exe"="C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Steam\SteamApps\common\empire total war demo\Empire.exe"="C:\Program Files\Steam\SteamApps\common\empire total war demo\Empire.exe:*:Enabled:Empire: Total War Demo"
"C:\ijji\ENGLISH\u_gunz.exe"="C:\ijji\ENGLISH\u_gunz.exe:*:Enabled:<ijji Downloader>"
"C:\ijji\ENGLISH\Gunz\Gunz.exe"="C:\ijji\ENGLISH\Gunz\Gunz.exe:*:Enabled:Gunz"
"C:\ijji\ENGLISH\u_skid.exe"="C:\ijji\ENGLISH\u_skid.exe:*:Enabled:<ijji Downloader>"
"C:\Program Files\DriftCity\DriftCity.exe"="C:\Program Files\DriftCity\DriftCity.exe:*:Enabled:DriftCity"
"C:\Program Files\Steam\SteamApps\common\eve online\eve.exe"="C:\Program Files\Steam\SteamApps\common\eve online\eve.exe:*:Enabled:EVE Online Demo"
"C:\Program Files\Steam\SteamApps\common\eve online\bin\ExeFile.exe"="C:\Program Files\Steam\SteamApps\common\eve online\bin\ExeFile.exe:*:Enabled:CCP ExeFile"
"C:\Program Files\Steam\SteamApps\common\dawn of war ii - spd\DOW2.exe"="C:\Program Files\Steam\SteamApps\common\dawn of war ii - spd\DOW2.exe:*:Enabled:Warhammer 40,000: Dawn of War II - Single-player Demo"
"C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe"="C:\Program Files\Cyanide\Dungeon Party\DungeonParty.exe:*:Enabled:Dungeon Party"
"C:\Program Files\Persona\Persona.exe"="C:\Program Files\Persona\Persona.exe:*:Enabled:Persona"
"C:\Program Files\Codemasters\Grid\GRID.exe"="C:\Program Files\Codemasters\Grid\GRID.exe:*:Enabled:Grid"
"C:\Program Files\Steam\SteamApps\common\red orchestra\System\RedOrchestra.exe"="C:\Program Files\Steam\SteamApps\common\red orchestra\System\RedOrchestra.exe:*:Enabled:Red Orchestra"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\World of Warcraft\WoW-3.1.3.9947-to-3.2.0.10192-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.1.3.9947-to-3.2.0.10192-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.2.0.10314-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.2.0.10314-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Hamachi\hamachi.exe"="C:\Program Files\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"C:\Program Files\Steam\SteamApps\common\left 4 dead\left4dead.exe"="C:\Program Files\Steam\SteamApps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead"
"C:\Program Files\Bohemia Interactive\ArmA 2 Demo\ArmA2Demo.exe"="C:\Program Files\Bohemia Interactive\ArmA 2 Demo\ArmA2Demo.exe:*:Enabled:ArmA 2 Demo"
"C:\Program Files\Steam\SteamApps\common\arma 2 demo\ArmA2Demo.exe"="C:\Program Files\Steam\SteamApps\common\arma 2 demo\ArmA2Demo.exe:*:Enabled:ARMA 2 Demo"
"C:\Program Files\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.2.0.10314-to-3.2.2.10482-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-frFR-downloader.exe"="C:\Program Files\World of Warcraft\WoW-3.2.2.10482-to-3.2.2.10505-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"C:\Program Files\Codemasters\OF Dragon Rising\OFDR.exe"="C:\Program Files\Codemasters\OF Dragon Rising\OFDR.exe:*:Enabled:OF Dragon Rising"
"C:\Program Files\Steam\SteamApps\common\dragon age orgins character creator\DAOriginsLauncher.exe"="C:\Program Files\Steam\SteamApps\common\dragon age orgins character creator\DAOriginsLauncher.exe:*:Enabled:Dragon Age: Origins - Character Creator"
"C:\Program Files\CAPCOM\RESIDENT EVIL 5\RE5DX9.EXE"="C:\Program Files\CAPCOM\RESIDENT EVIL 5\RE5DX9.EXE:*:Enabled:RESIDENT EVIL 5 (DX9)"
"C:\Program Files\CAPCOM\RESIDENT EVIL 5\RE5DX10.EXE"="C:\Program Files\CAPCOM\RESIDENT EVIL 5\RE5DX10.EXE:*:Enabled:RESIDENT EVIL 5 (DX10)"
"C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx9.exe"="C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx9.exe:*:Enabled:Assassin's Creed Dx9"
"C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx10.exe"="C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx10.exe:*:Enabled:Assassin's Creed Dx10"
"C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Launcher.exe"="C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Launcher.exe:*:Enabled:Assassin's Creed Update"
"C:\STEAM ACCEUIL\Steam.exe"="C:\STEAM ACCEUIL\Steam.exe:*:Enabled:Steam"
"C:\STEAM ACCEUIL\SteamApps\common\left 4 dead\left4dead.exe"="C:\STEAM ACCEUIL\SteamApps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\NCsoft\Exteel (US)\System\Exteel.exe"="C:\Program Files\NCsoft\Exteel (US)\System\Exteel.exe:*:Enabled:Exteel"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b762cd20-1819-11dd-89c6-001e8c853db0}]
shell\AutoRun\command - explorer.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b762cd21-1819-11dd-89c6-001e8c853db0}]
shell\AutoRun\command - J:\bootcd\wintools\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{eeeb0b3d-1c2e-11dd-89fa-001e8c853db0}]
shell\AutoRun\command - K:\PStart.exe


======List of files/folders created in the last 2 months======

2009-11-09 16:14:12 ----D---- C:\rsit
2009-11-09 16:06:20 ----RSH---- C:\WINDOWS\system32\lmssspr.exe
2009-11-09 16:06:17 ----A---- C:\WINDOWS\system32\5E.tmp
2009-11-09 16:06:03 ----A---- C:\WINDOWS\system32\5B.tmp
2009-11-09 16:05:56 ----A---- C:\seg5ywfxwx108.bat
2009-11-09 16:05:47 ----A---- C:\WINDOWS\system32\59.tmp
2009-11-09 16:05:46 ----A---- C:\WINDOWS\system32\58.tmp
2009-11-09 16:05:43 ----A---- C:\WINDOWS\system32\8573,984.exe
2009-11-09 16:05:41 ----A---- C:\WINDOWS\system32\32222625.BAT
2009-11-09 16:05:38 ----A---- C:\WINDOWS\system32\1559,346.exe
2009-11-09 16:05:36 ----A---- C:\WINDOWS\system32\6377,68.exe
2009-11-09 12:44:50 ----A---- C:\WINDOWS\system32\flags.ini
2009-11-09 07:13:14 ----A---- C:\WINDOWS\system32\11.tmp
2009-11-09 07:12:59 ----A---- C:\WINDOWS\system32\E.tmp
2009-11-08 20:57:58 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-11-08 20:22:28 ----A---- C:\WINDOWS\system32\67.tmp
2009-11-08 20:21:47 ----A---- C:\WINDOWS\system32\63.tmp
2009-11-08 19:22:19 ----A---- C:\WINDOWS\system32\D.tmp
2009-11-08 19:21:53 ----A---- C:\WINDOWS\system32\9.tmp
2009-11-08 19:09:58 ----D---- C:\VundoFix Backups
2009-11-08 19:09:58 ----A---- C:\VundoFix.txt
2009-11-08 19:03:30 ----D---- C:\Program Files\Navilog1
2009-11-08 18:53:00 ----A---- C:\WINDOWS\system32\C.tmp
2009-11-08 18:52:27 ----A---- C:\WINDOWS\system32\8.tmp
2009-11-08 18:41:29 ----D---- C:\Program Files\Trend Micro
2009-11-07 23:56:29 ----A---- C:\WINDOWS\system32\2756,419.exe
2009-11-07 23:56:24 ----A---- C:\WINDOWS\system32\msxm192z.dll
2009-11-07 23:56:19 ----A---- C:\WINDOWS\system32\6844,904.exe
2009-11-07 21:30:58 ----D---- C:\Documents and Settings\Administrateur\Application Data\Malwarebytes
2009-11-07 21:30:50 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-11-07 21:30:50 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-11-07 21:04:08 ----D---- C:\WINDOWS\CSC
2009-11-07 20:23:48 ----A---- C:\WINDOWS\ntbtlog.txt
2009-11-07 11:35:39 ----D---- C:\WINDOWS\pss
2009-11-07 10:51:46 ----A---- C:\wuhj108.bat
2009-11-07 10:51:33 ----A---- C:\WINDOWS\system32\1571,726.exe
2009-11-07 10:51:24 ----A---- C:\WINDOWS\system32\678531.BAT
2009-11-07 10:51:13 ----A---- C:\WINDOWS\system32\9236,872.exe
2009-11-06 13:26:19 ----A---- C:\WINDOWS\system32\6134,104.exe
2009-11-06 13:26:01 ----A---- C:\WINDOWS\system32\4742,243.exe
2009-11-05 15:16:44 ----A---- C:\WINDOWS\War3Unin.exe
2009-11-05 15:15:02 ----D---- C:\Program Files\Warcraft III
2009-10-29 19:33:59 ----D---- C:\Program Files\Eufloria
2009-10-29 10:40:45 ----D---- C:\Program Files\LogMeIn Hamachi
2009-10-28 09:04:47 ----D---- C:\Program Files\Steam recup
2009-10-26 19:47:48 ----D---- C:\STEAM ACCEUIL
2009-10-26 08:44:10 ----D---- C:\Documents and Settings\All Users\Application Data\Electronic Arts
2009-10-26 08:39:53 ----D---- C:\Program Files\Microsoft WSE
2009-10-25 18:35:36 ----D---- C:\WINDOWS\system32\appmgmt
2009-10-25 18:13:46 ----D---- C:\37bea89bc0dc46178e688a4bf284e83c
2009-10-25 12:56:08 ----D---- C:\Documents and Settings\Administrateur\Application Data\Ubisoft
2009-10-25 12:52:44 ----D---- C:\Documents and Settings\All Users\Application Data\Ubisoft
2009-10-25 09:00:19 ----A---- C:\WINDOWS\system32\CmdLineExt03.dll
2009-10-25 08:23:17 ----D---- C:\Program Files\CAPCOM
2009-10-24 16:56:10 ----D---- C:\Program Files\PeerGuardian2
2009-10-24 16:46:59 ----D---- C:\Program Files\Bluetack
2009-10-21 12:38:13 ----D---- C:\Program Files\Machinarium
2009-10-17 13:45:54 ----D---- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
2009-10-17 13:44:15 ----D---- C:\Program Files\DAEMON Tools Toolbar
2009-10-17 13:44:12 ----D---- C:\Program Files\DAEMON Tools Lite
2009-10-17 11:43:15 ----D---- C:\Documents and Settings\Administrateur\Application Data\DAEMON Tools Lite
2009-10-12 20:33:50 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2009-10-12 20:33:50 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2009-10-12 20:33:50 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2009-10-12 20:33:50 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2009-10-12 20:33:50 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2009-10-12 20:33:49 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2009-10-12 20:33:49 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2009-10-12 10:33:56 ----D---- C:\Program Files\Bohemia Interactive
2009-09-11 15:28:28 ----D---- C:\Documents and Settings\All Users\Application Data\Fallout3
2009-09-11 15:28:26 ----D---- C:\Program Files\Bethesda Softworks

======List of files/folders modified in the last 2 months======

2009-11-09 16:13:57 ----D---- C:\Program Files\Mozilla Firefox
2009-11-09 16:13:54 ----D---- C:\WINDOWS\system32
2009-11-09 16:10:50 ----D---- C:\Documents and Settings\Administrateur\Application Data\DNA
2009-11-09 16:09:54 ----D---- C:\WINDOWS\Temp
2009-11-09 16:06:06 ----RSHD---- C:\RECYCLER
2009-11-09 07:12:48 ----D---- C:\WINDOWS\system32\CatRoot2
2009-11-09 07:11:41 ----SD---- C:\WINDOWS\Tasks
2009-11-09 07:09:56 ----D---- C:\Program Files\DNA
2009-11-08 20:58:03 ----SHD---- C:\WINDOWS\Installer
2009-11-08 20:57:49 ----A---- C:\WINDOWS\system32\javaws.exe
2009-11-08 20:57:49 ----A---- C:\WINDOWS\system32\javaw.exe
2009-11-08 20:57:49 ----A---- C:\WINDOWS\system32\java.exe
2009-11-08 20:57:47 ----D---- C:\Program Files\Java
2009-11-08 19:03:30 ----D---- C:\Program Files
2009-11-08 18:52:09 ----D---- C:\WINDOWS
2009-11-08 13:27:54 ----HD---- C:\WINDOWS\inf
2009-11-08 13:27:54 ----D---- C:\Program Files\Windows Live Safety Center
2009-11-08 00:29:40 ----D---- C:\WINDOWS\system32\wbem
2009-11-08 00:28:47 ----D---- C:\WINDOWS\system32\npp
2009-11-08 00:28:07 ----D---- C:\WINDOWS\system32\DllCache
2009-11-08 00:26:40 ----D---- C:\WINDOWS\msagent
2009-11-07 23:55:44 ----D---- C:\WINDOWS\system32\drivers
2009-11-07 14:21:19 ----RSH---- C:\boot.ini
2009-11-07 14:21:19 ----A---- C:\WINDOWS\win.ini
2009-11-07 14:21:19 ----A---- C:\WINDOWS\system.ini
2009-11-06 13:46:37 ----D---- C:\Program Files\Internet Explorer
2009-11-06 13:44:51 ----D---- C:\Program Files\Windows Media Player
2009-11-05 16:00:15 ----D---- C:\Documents and Settings\Administrateur\Application Data\BitTorrent
2009-11-05 14:19:43 ----D---- C:\WINDOWS\system32\CatRoot
2009-11-05 14:18:57 ----D---- C:\WINDOWS\system32\DirectX
2009-11-05 14:18:43 ----RSD---- C:\WINDOWS\assembly
2009-11-05 13:58:31 ----HD---- C:\Program Files\InstallShield Installation Information
2009-11-05 13:58:31 ----D---- C:\Program Files\Rockstar Games
2009-10-29 10:40:24 ----D---- C:\Documents and Settings\Administrateur\Application Data\Hamachi
2009-10-28 09:04:25 ----D---- C:\Program Files\Steam
2009-10-26 23:28:28 ----D---- C:\Program Files\Activision
2009-10-26 08:40:29 ----D---- C:\Program Files\Electronic Arts
2009-10-26 08:39:47 ----D---- C:\WINDOWS\WinSxS
2009-10-25 20:26:55 ----D---- C:\WINDOWS\Microsoft.NET
2009-10-25 20:08:07 ----D---- C:\Documents and Settings\Administrateur\Application Data\LimeWire
2009-10-25 18:14:28 ----D---- C:\WINDOWS\system32\XPSViewer
2009-10-25 18:14:26 ----D---- C:\WINDOWS\system32\en-us
2009-10-25 18:14:23 ----RSD---- C:\WINDOWS\Fonts
2009-10-25 18:13:04 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-10-25 12:39:01 ----D---- C:\Program Files\Ubisoft
2009-10-25 09:41:32 ----D---- C:\Program Files\SystemRequirementsLab
2009-10-25 09:41:24 ----D---- C:\Documents and Settings\Administrateur\Application Data\SystemRequirementsLab
2009-10-23 17:32:21 ----D---- C:\Documents and Settings\Administrateur\Application Data\dvdcss
2009-10-17 13:46:54 ----D---- C:\Documents and Settings\Administrateur\Application Data\DAEMON Tools
2009-10-17 13:27:44 ----D---- C:\Program Files\Codemasters
2009-10-16 18:03:00 ----D---- C:\Program Files\World of Warcraft
2009-09-11 15:24:19 ----A---- C:\WINDOWS\system32\CmdLineExt.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-02-05 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-02-05 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-02-05 51376]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-03 40320]
R2 ANIO;ANIO Service; \??\C:\WINDOWS\system32\ANIO.SYS []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-02-05 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-02-05 94032]
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-08-24 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-08-24 55936]
R2 TBPanel;TBPanel; C:\WINDOWS\system32\drivers\TBPanel.sys [2007-03-16 12256]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-02-05 23152]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l151x86.sys [2007-11-01 36864]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-09-23 26176]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-24 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-10-02 4613120]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2007-04-11 20496]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2007-04-11 34832]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2007-04-11 36112]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-03-24 6547872]
R3 pgfilter;pgfilter; \??\C:\Program Files\PeerGuardian2\pgfilter.sys []
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S1 lusbaudio;Microphone USB Logitech; C:\WINDOWS\system32\drivers\OVSound2.sys [2001-08-17 25216]
S3 a0w4ha6p;a0w4ha6p; C:\WINDOWS\system32\drivers\a0w4ha6p.sys []
S3 Cardex;Cardex; \??\C:\WINDOWS\system32\drivers\TBPANEL.SYS []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
S3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2005-09-20 10368]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-05-27 22016]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 pepifilter;Volume Adapter; C:\WINDOWS\system32\DRIVERS\lv302af.sys [2005-05-27 7136]
S3 PID_08A0;QuickCam IM(PID_08A0); C:\WINDOWS\system32\DRIVERS\LV302AV.SYS [2005-05-27 913280]
S3 PnkBstrK;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 ProtoWall;ProtoWall Network Service; C:\WINDOWS\system32\DRIVERS\ProtoWall.sys []
S3 QCEmerald;QuickCam Web Logitech; C:\WINDOWS\system32\DRIVERS\OVCE.sys [2001-08-17 31872]
S3 RT73;D-Link USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\Dr71WU.sys [2006-12-21 429440]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2008-07-10 32000]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2007-07-11 12416]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys [2007-07-11 19840]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2007-07-11 21632]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sr;Pilote de filtre de restauration système; C:\WINDOWS\system32\DRIVERS\sr.sys [2004-08-03 73600]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-07-10 116040]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-02-05 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-02-05 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 249856]
R2 BtwSrv;BtwSrv; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336]
R2 fastnetsrv;fastnetsrv Service; C:\WINDOWS\system32\FastNetSrv.exe [2001-08-24 67584]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2009-10-09 1078664]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-08 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe [2001-02-23 290816]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-03-24 176128]
R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-04-10 75064]
R2 UxTuneUp;TuneUp Extension de thème; C:\WINDOWS\System32\svchost.exe [2004-08-03 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-02-05 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-02-05 352920]
R3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-07-10 532264]
S2 ANIWZCSdService;ANIWZCSd Service; C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe [2007-01-19 69632]
S2 gupdate1c9edccdfe4afec;Service Google Update (gupdate1c9edccdfe4afec); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-06-15 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-15 183280]
S2 pr2agqwc;Loki Drivers Auto Removal (pr2agqwc); C:\WINDOWS\system32\pr2agqwc.exe [2007-05-18 407152]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 90112]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2009-04-27 2870429]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2008-05-02 354560]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2004-08-03 14336]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 937984]
S4 NetTcpPortSharing;Service de partage de ports Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
0
Réponse 4 / 8
Thaeter Messages postés 3 Date d'inscription lundi 9 novembre 2009 Statut Membre Dernière intervention 9 novembre 2009
9 nov. 2009 à 16:26
Et le deuxième rapport info.txt


info.txt logfile of random's system information tool 1.06 2009-11-09 16:14:29

======Uninstall list======

-->MsiExec /X{45235788-142C-44BE-8A4D-DDE9A84492E5}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Age of Chivalry-->"C:\Program Files\Steam\steam.exe" steam://uninstall/17510
Age of Empires III Trial-->C:\PROGRA~1\FICHIE~1\InstallShield\Driver\11\Intel 32\IDriver.exe /M{25B25C84-6132-4662-972B-4E4DC1B00C98}
AGEIA PhysX v7.09.13-->MsiExec.exe /X{45235788-142C-44BE-8A4D-DDE9A84492E5}
Albatross18 (OGPlanet)-->C:\Program Files\OGPlanet\Albatross18\uninstall.exe
ANIO Service-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\engine\6\Intel 32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7B5CE976-C7A9-4E38-A7F3-6C8EF025DD8E}\Setup.exe"
ANIWZCS2 Service-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\engine\6\Intel 32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4C590030-7469-453E-8589-D15DA9D03F52}\Setup.exe"
Apple Mobile Device Support-->MsiExec.exe /I{35B91753-5789-4517-9CF1-2CCE3A8CF4F1}
Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ARMA 2 Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/33920
ArmA2 Demo Uninstall-->C:\Program files\Bohemia Interactive\ArmA 2 Demo\UnInstall.exe
Assassin's Creed-->C:\Program Files\InstallShield Installation Information\{8CFA9151-6404-409A-AF22-4632D04582FD}\setup.exe -runfromtemp -l0x040c -removeonly
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ASUSUpdate-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\engine\6\Intel 32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\Setup.exe" -l0x40c
Atheros Communications Inc.(R) L1 Gigabit Ethernet Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6E19F210-3813-4002-B561-94D66AA182B6}\Setup.exe" -l0x9 -removeonly
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Battlefield 2142-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ED50ECE9-EC54-4C05-B5ED-EE4741A9F2EC}\setup.exe" -l0x40c -removeonly
Bioshock Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/7710
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
CABAL Online-->"C:\Program Files\OGPlanet\CABAL Online\unins000.exe"
Call of Duty(R) - World at War(TM) Beta-->C:\Program Files\InstallShield Installation Information\{B7698C49-18E2-458F-87A0-65570B8E02DA}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch-->C:\Program Files\InstallShield Installation Information\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM) Demo-->C:\Program Files\InstallShield Installation Information\{6734CA10-8FB8-4C7F-B8C7-75317C617DC5}\setup.exe -runfromtemp -l0x0409
Call of Duty(R) 4 - Modern Warfare(TM)-->C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x040c
Carom3D-->C:\WINDOWS\NeoUninstall.exe "C:\Program Files\Neoact\Carom3D\Uninstall.ini"
CDDRV_Installer-->MsiExec.exe /I{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Combined Community Codec Pack 2007-07-22-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
Command & Conquer™ Red Alert™ 3 Demo-->MsiExec.exe /X{DBD1FF41-F438-4D0A-A3F1-999930B5BC52}
Condition Zero-->"C:\Program Files\Steam\steam.exe" steam://uninstall/80
Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB921411)-->"C:\WINDOWS\$NtUninstallKB921411$\spuninst\spuninst.exe"
Counter-Strike(TM)-->MsiExec.exe /I{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}
Counter-Strike: Source-->"C:\STEAM ACCEUIL\steam.exe" steam://uninstall/240
Counter-Strike: Source-->MsiExec.exe /I{9580813D-94B1-4C28-9426-A441E2BB29A5}
Crysis(R) SP Demo-->MsiExec.exe /I{92AF2F5A-4407-4A03-A80A-5A2582264746}
DAEMON Tools Toolbar-->C:\Program Files\DAEMON Tools Toolbar\uninst.exe
Dark Messiah Singleplayer Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/2120
Dawn of War - Dark Crusade-->C:\Program Files\InstallShield Installation Information\{FF39FC01-819B-42E4-AE49-1968AF12DDD4}\setup.exe -runfromtemp -l0x040c -removeonly
Dawn Of War - Winter Assault-->MsiExec.exe /X{DD8408E9-9421-484F-979D-DB6361E3E828}
Dawn Of War-->MsiExec.exe /X{83F12F73-D52E-40C0-93B1-463C311C4E17}
Dead Space™-->MsiExec.exe /X{4D87DC92-C328-46EC-A7B4-9C88129DC696}
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
D-Link Wireless G DWA-110-->C:\Program Files\InstallShield Installation Information\{5F753314-628E-4C13-B8AE-BFA7FD514CBE}\setup.exe -runfromtemp -l0x040c -removeonly
docXConverter 3.1.2-->"C:\Program Files\docXConverter3\unins000.exe"
Dragon Age: Origins - Character Creator-->"C:\Program Files\Steam\steam.exe" steam://uninstall/24920
Drift City-->"C:\Program Files\DriftCity\uninstall.exe"
Dungeon Party 1.0.0.1-->"C:\Program Files\Cyanide\Dungeon Party\unins000.exe"
EA Download Manager-->C:\Program Files\Electronic Arts\EADM\Uninstall.exe
EAX4 Unified Redist-->MsiExec.exe /X{89661B04-C646-4412-B6D3-5E19F02F1F37}
Empire of Sports 1.42-->C:\Program Files\Empire of Sports\Uninstall.exe
Empire: Total War Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/10620
Entropia Universe-->"C:\WINDOWS\Entropia Universe\uninstall.exe" "/U:C:\Program Files\Entropia Universe\Uninstall\uninstall.xml"
EVE Online Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/8510
EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
F.E.A.R. 2 SP Demo-->"C:\Program Files\InstallShield Installation Information\{F73D18C1-F4DA-4B9F-9C46-5185F5D3DB7C}\setup.exe" -runfromtemp -l0x0009 -removeonly
Fallout 3-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{974C4B12-4D02-4879-85E0-61C95CC63E9E}\setup.exe" -l0x40c -removeonly
FantasyTennis-->C:\Program Files\alaplaya\FantasyTennis\Uninstall.exe
Far Cry 2-->"C:\Program Files\InstallShield Installation Information\{F2835483-37F2-4123-B4FE-0E77D58447F2}\setup.exe" -runfromtemp -l0x040c -removeonly
Far Cry-->C:\PROGRA~1\FICHIE~1\InstallShield\Driver\9\Intel 32\IDriver.exe /M{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC} /l1036
FEARCombat-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{75E607CF-7BAE-4B88-84B3-97F3DF44BA28}\setup.exe" -l0x40c /zU -removeonly
Frets On Fire-->"C:\Program Files\Frets on Fire\Uninstall.exe"
GameCenter-->C:\Program Files\Cyanide\GameCenter\uninstall.exe
Garry's Mod-->"C:\Program Files\Steam\steam.exe" steam://uninstall/4000
Google Chrome-->"C:\Program Files\Google\Chrome\Application\3.0.195.27\Installer\setup.exe" --uninstall --system-level
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Earth-->MsiExec.exe /X{CC016F21-3970-11DE-B878-005056806466}
Grand Theft Auto IV-->"C:\Program Files\InstallShield Installation Information\{579BA58C-F33D-4970-9953-B94B43768AC3}\setup.exe" -runfromtemp -l0x040c -removeonly
GRID Demo-->"C:\Program Files\InstallShield Installation Information\{3C850287-4CD5-4FAD-BE39-A4AF7851A7C6}\setup.exe" -runfromtemp -l0x040c -removeonly
Grid-->"C:\Program Files\Codemasters\Grid\unins000.exe"
GRID-->"C:\Program Files\InstallShield Installation Information\{5A0B7BA5-4682-4273-81C2-69B17E649103}\setup.exe" -runfromtemp -l0x040c -removeonly
GUILD WARS-->"C:\Program Files\GUILD WARS\Gw.exe" -uninstall
Guitar Pro 5.2-->"C:\Program Files\Guitar Pro 5\unins000.exe"
Gunbound Revolution-->"c:\ijji\ENGLISH\Gunbound Revolution\unins000.exe"
Hattrick Organizer (remove only)-->C:\HattrickOrganizer\Uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hitman: Blood Money Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/6950
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
Hybrid Downloader 1,0,2,6-->C:\Program Files\Persona\uninst.exe
I-Fluid 1.0-->"C:\Program Files\I-Fluid Demo\unins000.exe"
ijji - Gunz-->C:\ijji\ENGLISH\Gunz\Uninstall.exe
ijji Auto Installer-->"C:\Program Files\InstallShield Installation Information\{1DCC7418-2089-4BDD-B321-3771956160FC}\setup.exe" -runfromtemp -l0x0009 -removeonly
Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
InterVideo DVDCopy5-->"C:\Program Files\InstallShield Installation Information\{C167A588-87AA-47BF-A88E-5B0F9A14480D}\setup.exe" --u:{C167A588-87AA-47BF-A88E-5B0F9A14480D}
iTunes-->MsiExec.exe /I{EF6C4600-306D-4F6A-A119-C2A877D25B4A}
Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216017FF}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
KhalInstallWrapper-->MsiExec.exe /I{56918C0C-0D87-4CA6-92BF-4975A43AC719}
le Parrain® LE JEU VIDEO-->C:\Program Files\Electronic Arts\le Parrain® LE JEU VIDEO\EAUninstall.exe
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Left 4 Dead Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/530
Left 4 Dead-->"C:\STEAM ACCEUIL\steam.exe" steam://uninstall/500
Les Sims Deluxe-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\engine\6\Intel 32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{10798AE3-DCBB-43C3-9C93-C23512427E25}\setup.exe" -l040c
Les Sims™ 3-->"C:\Program Files\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\Sims3Setup.exe" -runfromtemp -l0x040c -removeonly
LG PC Suite-->C:\Program Files\InstallShield Installation Information\{993960EE-CA4D-443F-8F88-E24260DD5FD2}\setup.exe -runfromtemp -l0x040c -removeonly
LG USB Modem driver-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3ABE126-2BB2-4246-BFE1-6797679B3579}\setup.exe" -l0x40c LG -removeonly
Lightroom-->MsiExec.exe /I{D4134B0B-EA9B-4835-A77A-60BEE6277101}
LimeWire 5.1.3-->"C:\Program Files\LimeWire\uninstall.exe"
Logiciel QuickCam de Logitech-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}\setup.exe" -l0x40c
Logitech Desktop Messenger-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\engine\6\Intel 32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x40c UNINSTALL
Logitech Print Service-->C:\PROGRA~1\Logitech\Print Service\UNWISE.EXE C:\PROGRA~1\Logitech\Print Service\INSTALL.LOG
Logitech Registration-->MsiExec.exe /I{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
Logitech SetPoint-->C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe -runfromtemp -l0x040c -removeonly
LogMeIn Hamachi-->C:\WINDOWS\system32\\msiexec.exe /i {9DF8C1F2-DE26-49D3-909B-132C3C5ACEB6} REMOVE=ALL
LogMeIn Hamachi-->MsiExec.exe /I{9DF8C1F2-DE26-49D3-909B-132C3C5ACEB6}
Loki-->"C:\Program Files\Cyanide\Loki\unins000.exe"
Loki-->C:\Program Files\Cyanide\Loki\unins000.exe
Machinarium-->C:\Program Files\Machinarium\uninst.exe
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Manhunt-->MsiExec.exe /X{8A62C8DA-2DB7-4D94-B5BA-1D38FC36E830}
MediaMonkey 3.0-->"C:\Program Files\MediaMonkey\unins000.exe"
Messenger Plus! Live-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 French Language Pack-->MsiExec.exe /X{E3C080B0-23F5-49AF-89F8-8E8DBC89E659}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{B578C85A-A84C-4230-A177-C5B2AF565B8C}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{B45FABE7-D101-4D99-A671-E16DA40AF7F0}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office XP Professional with FrontPage-->MsiExec.exe /I{90280409-6000-11D3-8CFE-0050048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13}
mIRC-->C:\Program Files\mIRC\uninstall.exe _?=C:\Program Files\mIRC
Mise à jour pour Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - FRA\install.exe
Module de prise en charge linguistique du français de Microsoft .NET Framework 3.0-->c:\WINDOWS\Microsoft.NET\Framework\v3.0\Microsoft .NET Framework 3.0 French Language Pack\setup.exe
Mozilla Firefox (3.5.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 6.0 Parser (KB925673)-->MsiExec.exe /I{FE9126DB-5F84-495A-BB46-3C724F1C2D08}
Mumble and Murmur-->C:\Program Files\Mumble\Uninstall.exe
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
OCCT Perestroika 2.0.0a-->"C:\Program Files\OCCT\unins000.exe"
OF Dragon Rising-->"C:\Program Files\InstallShield Installation Information\{1A4052AB-BA77-44F7-8EE7-9F9131BFD7A6}\setup.exe" -runfromtemp -l0x040c -removeonly
OpenAL-->"C:\Program Files\OpenAL\OalinstGridRelease.exe" /U
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Pangya (Ntreev USA)-->C:\Ntreev USA\Pangya\uninstall.exe
PangYa_Eu (Goa)-->C:\Program Files\Goa\PangYa_Eu\uninstall.exe
PeerGuardian 2.0-->"C:\Program Files\PeerGuardian2\unins000.exe"
PlayNC Launcher-->C:\Program Files\InstallShield Installation Information\{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}\setup.exe -runfromtemp -l0x040c -removeonly
Portal-->"C:\Program Files\Steam\steam.exe" steam://uninstall/400
Postal 2 Share The Pain Demo-->C:\WINDOWS\unvise32.exe C:\Program Files\Postal2STPDemo\uninstal.log
Programme de gestion Camera de Logitech®-->"C:\Program Files\Fichiers communs\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
Quantum of Solace(TM) Demo-->C:\Program Files\InstallShield Installation Information\{52F9F670-546B-4D36-8C73-DBFA528B0EFB}\setup.exe -runfromtemp -l0x0409
QuickTime-->MsiExec.exe /I{08CA9554-B5FE-4313-938F-D4A417B81175}
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x40c -removeonly
Red Orchestra-->"C:\Program Files\Steam\steam.exe" steam://uninstall/1200
RESIDENT EVIL 5-->MsiExec.exe /X{AC08BBA0-96B9-431A-A7D0-D8598E493775}
Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x040c -removeonly
Rumble Fighter-->"C:\Program Files\OGPlanet\RumbleFighter\uninstall.exe"
Sabotage demo ( remove only)-->"C:\Program Files\InsaneLogics\Sabotage\uninstall.exe"
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SILENT HILL 4-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{00BD992A-D4C7-447D-8AA1-60B5759EA30D}\setup.exe" -l0x40c
Splinter Cell Pandora Tomorrow-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{084A9731-D05B-4ADA-B4A0-0ADD25FD7152}\setup.exe" -l0x40c
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Sudoku Infini-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\engine\6\Intel 32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{39345B45-A64A-4BA2-A235-F3632281A5A5}\Setup.exe" -l0x40c
SWAT 4-->C:\PROGRA~1\FICHIE~1\InstallShield\Driver\10\Intel 32\IDriver.exe /M{8E1CCF20-9E12-4824-BD59-7AD9E0486DD8} uninstall
Synergy-->"C:\Program Files\Steam\steam.exe" steam://uninstall/17520
System Requirements Lab-->C:\Program Files\SystemRequirementsLab\Uninstall.exe
System Requirements Lab-->MsiExec.exe /I{1E99F5D7-4262-4C7C-9135-F066E7485811}
Team Fortress 2-->"C:\STEAM ACCEUIL\steam.exe" steam://uninstall/440
TeamSpeak 2 RC2-->"C:\Program Files\Teamspeak2_RC2\unins000.exe"
The Graveyard Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/27030
The Ship-->"C:\Program Files\Steam\steam.exe" steam://uninstall/2400
TmNationsForever-->"C:\Program Files\TmNationsForever\unins000.exe"
Tom Clancy's Rainbow Six 3: Raven Shield 1.60.412-->RunDll32 C:\PROGRA~1\FICHIE~1\InstallShield\Professional\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AF131494-F5D8-45C5-938C-D5F020CF1B0D}\setup.exe" -l0x40c
Tomb Raider: Underworld Demo 1.0-->C:\Program Files\Eidos\Tomb Raider - Underworld Demo\uninst.exe
Tortun 0.8-->"C:\Program Files\Tortun\unins000.exe"
Trials 2: Second Edition Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/16610
Universe at War Earth Assault (DEMO)-->"C:\Program Files\InstallShield Installation Information\{389E2A0A-403D-4DDC-B2FA-269D26999395}\setup.exe" -runfromtemp -l0x0409 -removeonly
Universe at War Earth Assault (DEMO)-->MsiExec.exe /X{389E2A0A-403D-4DDC-B2FA-269D26999395}
Unreal Tournament 3 Demo-->MsiExec.exe /X{3266FEA9-98E9-448B-B235-DAC63D4CE781}
Unreal Tournament 3-->MsiExec.exe /X{BFA90209-7AFF-4DB6-8E4B-E57305751AD7}
VDOTool 6.1-->"C:\Program Files\VDOTool\unins000.exe"
Veoh Web Player Beta-->"C:\Program Files\Veoh Networks\VeohWebPlayer\uninst.exe"
VideoLAN VLC media player 0.8.6i-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Warhammer 40,000: Dawn of War II - Single-player Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/15680
Windows Imaging Component-->"C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Presentation Foundation Language Pack (FRA)-->MsiExec.exe /X{6901DD22-527A-41EF-9059-E81FEDE9E494}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Workflow Foundation FR Language Pack-->MsiExec.exe /I{B84C141C-9A13-44BE-9A69-301D7B11D836}
Wolfenstein(TM) Demo-->C:\Program Files\InstallShield Installation Information\{6BB2B8AB-2590-4157-8576-C0A270994A6B}\setup.exe -runfromtemp -l0x0409
World in Conflict-->C:\Program Files\InstallShield Installation Information\{F11ADC64-C89E-47F4-A0B3-3665FF859397}\setup.exe -runfromtemp -l0x040c -removeonly
World of Warcraft-->C:\Program Files\Fichiers communs\Blizzard Entertainment\World of Warcraft\Uninstall.exe
Wow Cartographe 1.09-->C:\Program Files\WowCartographe\uninst.exe
Xfire (remove only)-->"C:\Program Files\Xfire\uninst.exe"
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
Your Uninstaller! 2008 Version 6.0-->"C:\Program Files\Your Uninstaller 2008\unins000.exe"
YouTube Downloader Suite V2.1.1-->"C:\Program Files\Apowersoft\YouTube Downloader Suite\unins000.exe"
YouTube Music Converter V1.2.2-->"C:\Program Files\Apowersoft\YouTube Music Converter\unins000.exe"
Zeno Clash Demo-->"C:\Program Files\Steam\steam.exe" steam://uninstall/22220
Zombie Panic! Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/17500

=====HijackThis Backups=====

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-11-08]
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) [2009-11-08]

======Hosts File======

127.0.0.1 mpa.one.microsoft.com

======Security center information======

AV: avast! antivirus 4.8.1335 [VPS 091109-0]

======System event log======

Computer Name: ORDI-XPSP2
Event Code: 8033
Message: L'explorateur a forcé une élection sur le réseau \Device\NetBT_Tcpip_{48088733-B45B-4C8D-9523-016FE1FBEB0E} car un maître explorateur a été arrêté.

Record Number: 26618
Source Name: BROWSER
Time Written: 20091012182148.000000+120
Event Type: Informations
User:

Computer Name: ORDI-XPSP2
Event Code: 4202
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{48088733-B45B-4C8D-9523-016FE1FBEB0E} était déconnectée du réseau,
et la configuration réseau de la carte a été abandonnée. Si la carte
réseau n'était pas déconnectée, ceci peut indiquer un disfonctionnement.
Contactez le fabricant pour des pilotes mis à jour.

Record Number: 26617
Source Name: Tcpip
Time Written: 20091012182148.000000+120
Event Type: Informations
User:

Computer Name: ORDI-XPSP2
Event Code: 1003
Message: Votre ordinateur n'a pas pu renouveler son adresse à partir du réseau (à partir
du serveur DHCP) pour la carte réseau dont l'adresse réseau est 001CF0D7DEE1. Il s'est
produit l'erreur suivante :
L'opération a été annulée par l'utilisateur.
.
Votre ordinateur va continuer à essayer d'obtenir sa propre adresse auprès du
serveur d'adresse réseau (DHCP).

Record Number: 26616
Source Name: Dhcp
Time Written: 20091012182148.000000+120
Event Type: Avertissement
User:

Computer Name: ORDI-XPSP2
Event Code: 26
Message: Application popup : ArmA2Demo.exe - Composant introuvable : Cette application n'a pas pu démarrer car X3DAudio1_6.dll est introuvable. La réinstallation de cette application peut corriger ce problème.

Record Number: 26615
Source Name: Application Popup
Time Written: 20091012124358.000000+120
Event Type: Informations
User:

Computer Name: ORDI-XPSP2
Event Code: 26
Message: Application popup : ArmA2Demo.exe - Composant introuvable : Cette application n'a pas pu démarrer car X3DAudio1_6.dll est introuvable. La réinstallation de cette application peut corriger ce problème.

Record Number: 26614
Source Name: Application Popup
Time Written: 20091012124015.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: ORDI-XPSP2
Event Code: 0
Message:
Record Number: 5
Source Name: gusvc
Time Written: 20091106140214.000000+060
Event Type: Informations
User:

Computer Name: ORDI-XPSP2
Event Code: 0
Message:
Record Number: 4
Source Name: gupdate1c9edccdfe4afec
Time Written: 20091106140214.000000+060
Event Type: Informations
User:

Computer Name: ORDI-XPSP2
Event Code: 1
Message:
Record Number: 3
Source Name: Bonjour Service
Time Written: 20091106140213.000000+060
Event Type: Informations
User:

Computer Name: ORDI-XPSP2
Event Code: 1047
Message: Windows ne peut pas lire l'historique des objets de paramètre de groupe à partir du Registre. Le traitement de la stratégie de groupe continue.

Record Number: 2
Source Name: Userenv
Time Written: 20091106140000.000000+060
Event Type: erreur
User: AUTORITE NT\SYSTEM

Computer Name: ORDI-XPSP2
Event Code: 1047
Message: Windows ne peut pas lire l'historique des objets de paramètre de groupe à partir du Registre. Le traitement de la stratégie de groupe continue.

Record Number: 1
Source Name: Userenv
Time Written: 20091106140000.000000+060
Event Type: erreur
User: AUTORITE NT\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 11, GenuineIntel
"PROCESSOR_REVISION"=0f0b
"NUMBER_OF_PROCESSORS"=4
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"RGSCLauncher"=C:\Program Files\Rockstar Games\Rockstar Games Social Club
"RGSC"=C:\Program Files\Rockstar Games\Rockstar Games Social Club\1_0_0_0

-----------------EOF-----------------
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
Thaeter Messages postés 3 Date d'inscription lundi 9 novembre 2009 Statut Membre Dernière intervention 9 novembre 2009
9 nov. 2009 à 16:28
Et maintenant les trojans sont au nombre de trois !
Avast me les signale dès ma connection à internet. Si tu veux, je pourrai noter le nom et la cible du dossier où ils se trouvent.

Merci encore
0
Réponse 6 / 8
totobetourne Messages postés 5592 Date d'inscription dimanche 23 mars 2008 Statut Membre Dernière intervention 6 juin 2012 65
9 nov. 2009 à 16:55
colle les rapports de navilog etc......

1)--> Télécharge UsbFix (de Chiquitine29) sur ton Bureau.
http://pagesperso-orange.fr/NosTools/usbfix.html


--> Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.

--> Clique droit sur le raccourci UsbFix situé sur ton Bureau et choisis Exécuter en tant qu'administrateur.

--> Choisis l'option 1 (recherche).

--> Le PC va redémarrer.

--> Après redémarrage, poste le rapport UsbFix.txt

Note : le rapport UsbFix.txt est sauvegardé à la racine du disque.

(Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide)


refais pareil mais en option 2 apres colle le rapport que tu obtiens.




2)pour voir télécharge combofix (par sUBs) ici :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

et enregistre le sur le bureau.


déconnecte toi d'internet et ferme toutes tes applications.

désactive tes protections (antivirus, parefeu, garde en temps réel de l'antispyware)


double-clique sur combofix.exe et suis les instructions

à la fin, il va produire un rapport C:\ComboFix.txt

réactive ton parefeu, ton antivirus, la garde de ton antispyware

copie/colle le rapport C:\ComboFix.txt dans ta prochaine réponse.

Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer l'ordi.

Tu as un tutoriel complet ici :

https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
0
Réponse 7 / 8
Thaeter Messages postés 3 Date d'inscription lundi 9 novembre 2009 Statut Membre Dernière intervention 9 novembre 2009
9 nov. 2009 à 17:37
Pour le premier programme je n'utilise aucune clé USB ou de disque dur externe :/ Je n'ai donc rien à brancher, le programme ne se lance pas.

Et pour Combofix il y a un petit soucis ... Je le télécharge sur mon bureau, je coupe mes anti-virus, je le lance, et voilà qu'un message d'erreur s'affiche : https://www.hiboox.fr/

Je retente de télécharger une autre version, là même.

Voilà ...
0
Réponse 8 / 8
totobetourne Messages postés 5592 Date d'inscription dimanche 23 mars 2008 Statut Membre Dernière intervention 6 juin 2012 65
9 nov. 2009 à 20:57
pour une infection virut je ne connais pas , generalement c est difficile ou impossible.fait une recherche.
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Great Teacher Onizuka SAISON 2
remi1912 -
Firaz -

34 réponses
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses