Attaque virale services NOD32 et AVG bloqués

Bonjour,

Je pense être à nouveau victime d'une attaque virale, Mon antivirus NOD32 refuse de démarrer : echec de démarrage service, vérifiez que vous avez les droits nécessaires.
J'ai tenté la désinstallation et la réinstallation mais impossible de réinstaller.

J'ai aussi désinstallé et réinstallé AVG antispyware pour la même raison, mais le service refuse de démarrer avec Windows.

"Echec de la connexion au service, Veuillez réinstaller AVG antispyware 7.5

j'ai lancé un scan avec Combofix, ensuite j'ai installé AVG AntiRootkit et lancé un scan, celui ci ne me trouve aucun Rootkit.

Je suis actuellement en cours de scan en ligne avec Bitdefender On line scanner.

Voici le rapport de Combofix :


ComboFix 08-08-14.03 - Nicolas 2008-08-15 15:26:22.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.118 [GMT 2:00]
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

F:\Documents and Settings\Nicolas\Application Data\m
F:\Documents and Settings\Nicolas\Application Data\m\data.oct
F:\Documents and Settings\Nicolas\Application Data\m\flec006.exe
F:\Documents and Settings\Nicolas\Application Data\m\list.oct
F:\Documents and Settings\Nicolas\Application Data\m\shared
F:\Documents and Settings\Nicolas\Application Data\m\shared\[HGame_XP][AVG][jpn_jpn][スクールデイズ][004].zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\3D_Live_Snooker_2.59.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\4S_Lock_1.09.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\50-676_-_Upgrading_to_Netware_6_Practice_Test_Questions_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Active_Delivery_3.00.01_(KeyGen).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\AddFlow_ActiveX_Control_5.4.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\AddressBook_7.01_Serial.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\AL_Screensaver_&_Slideshow_Builder_1.9.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Album_List_2.06.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\AlbumWeb_Pro_2.9.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Alien_Trilogy_version_2.0_patch.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Amond_3GP_Video_Converter_2.1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\AMS_Photo_Studio_2.17.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\AnalyzerXL_6.1.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Axosoft_OnTime_2006_Web_Edition_6.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\BBB_Bar_0.3.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\BeInSync_2.0.37.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Black_Dahlia_demo.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Block_Attribute_Modifier_2.2_(Serial).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Browse_Me_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Brute_Force_Uninstaller_(BFU)_1.00.9.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Candlechart_.NET_1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Canton_Mah_Jong_For_Windows_1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\CaterpillarSSA_3.3.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\CatFish_1.9.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Christmas_Theme_1.7.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Classic_Menu_for_Word_2007_3.00.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\ClikView_2.1_[Serial].zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Collage_Maker_2.05.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Combat_Pillows_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Contour_Cats_Screensaver_2.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Cool_MP3_Splitter_2.02_[With_Crack].zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Cover_Me_2.3.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Customize_Google_for_IE_0.11.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Digital_DBA_1.1.3_Cracked.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Downfall_2.6.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\DreamCoder_for_Oracle_Enterprise_Edition_2.1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Escape_Velocity_Override_1.0.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Etymonix_MPEG-2_Video_Codec_1.10.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Eurodict_Bulgarian_Italian_Dictionary_3.01_(KeyGen).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Exeba-ATS_4.0.8.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\EZ_FireFox_Backup_Pro_4.0_[Key+Serial].zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Ezy_Invoice_7_Build_4.6.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Fine_Arts_Business_Cards_3.0_(Serial).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\FireBurner_2.2.1_Cracked.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Framy_Bone_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Free_Whois_Anywhere_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\GMiF_4.1.1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Home_Loan_Interest_Manager_Pro_3.1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Hot_Screen_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\HTMLtoRTF_Converter_Pro_2.07.03.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Humvee_Assault.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\I+_Installer_Lite_1.10.0.3.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Icebreaker_demo.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Image_Editor_&_Screen_Capture_6.01_(Serial).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\ImageSorter_1.01.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\ImTOO_DVD_to_Apple_TV_Converter_4.0.75.0511.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\InstantCashBook_3.04.4.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Internet_Explorer_Toolbar_Maker_3.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\IP_Overtime_Tracker_1.02.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\John's_Bingo_1.88.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Kaspersky.Antivirus.Pro.5.Fr.-.Key.Anti.Blacklist.Explications.-.By.Dav'.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Math_ActivityMaker_Fractions_1.61.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\MID_Converter_4.2_[KeyGen].zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Miraplacid_Text_Driver_5.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\myFMbutler_SHoebox_3.0_SDK_for_Lasso_(Key+Serial).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\MyMusicMachine_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Nature_in_Motion_1.1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Network_Management_Suite_6.1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\NOPAsp_Server_1.00b4_KeyGen.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Omni_Page_Professional_15.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Omniquad_Messenger_Chat_Recorder_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Open_Range_Trailer.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Opera_Customizer_&_Profile_Maker_3.12.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\OrangeCD_Record_Catalog_6.1.4_build_11304.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Orb_1.01.0693.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Panda.platinum.2006.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Panda.Titanium.Antivirus.20054.00.00.Multilingual.Retail.WinALL-F4CG.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Panda_Antivirus_Platinum_Titanium_2005_serials_cracks.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Pandora_Recovery_1.1.20.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\PasswordSpy_2.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\PC_Live_Player_3.2.3.6244_Patch.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\PDF417-ActiveX_1.9.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\PhotoBackPack_Portable_1.3.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\PictureStories_1.4.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Pop_PSP_Jukebox_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Print_Screen_3.0b_KeyGen.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Production_Mix_Model_Excel_20_(Key+Serial).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Protector_Plus_2007_8.0.A03_[Cracked].zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Pseudo_Random_Number_Generator_1.0.0.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Queuing_Model_Excel_2.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Recorder.xhead_4.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Recovery_Toolbox_for_Outlook_Express_Password_1.0.0.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\RenderDotC_3.4.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Right_Autorun_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\ScrambleIt_1.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Sinistar_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\SkyCar_3D_Desktop_Toy_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\SOC_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\SoftCopy_3.0.3_Serial.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Sothink_iPod_Video_Converter_3.1_build_70315.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\SoundWheel_1.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Space_Emoticons_Pro_3.01.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Spring_Fancies_Screensaver_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Squidsearch_build_02.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Surfer_8.06.39.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Symantec.Winfax.Pro.v10.Español.sin.errores.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\System101_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\The_Date_You_Were_Born_2006.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\The_Inspiring_10_Commandments_Screensaver_1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\The_Onion_Peeler_1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\TimeKeeper_1.5.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\TqcRunas_2004.3.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\TrayInfo_1.03_(Serial).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Ultra_Calendar_Reminder_2.4_build_185.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Ultralingua_French_Dictionary_of_Definitions_5.0.3.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Unreal_Tournament_2003_-_Asbestos_v1.01_map.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Warcraft_III_-_Wise_-_First_Shot_map.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\WebEQ_XP_1.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\WebWatchBot_Website_Monitoring_Software_5.0.7_Build_16838_(With_Crack).zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\WinAgents_RouterTweak_1.0_build_2.0.1.1526.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\WinASO_EasyTweak_2.1.3.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\WinDiff_5.1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Windows_XP_Pro_Startup_Disk_310994.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\WindowShade_1.2.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\Winm8_4.001.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\WordShuffle_1.2.1.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\World_of_Warcraft_v1.5_Korean_patch.zip
F:\Documents and Settings\Nicolas\Application Data\m\shared\YouTube_Widget_1.0.4.0.zip
F:\Documents and Settings\Nicolas\Application Data\m\srvlist.oct
F:\WINDOWS\system32\ban_list.txt
F:\WINDOWS\system32\drivers\downld
F:\WINDOWS\system32\drivers\downld\107584.exe
F:\WINDOWS\system32\drivers\downld\108906.exe
F:\WINDOWS\system32\drivers\downld\109086.exe
F:\WINDOWS\system32\drivers\downld\114955.exe
F:\WINDOWS\system32\drivers\downld\116938.exe
F:\WINDOWS\system32\drivers\downld\121995.exe
F:\WINDOWS\system32\drivers\downld\123928.exe
F:\WINDOWS\system32\drivers\downld\129185.exe
F:\WINDOWS\system32\drivers\downld\131489.exe
F:\WINDOWS\system32\drivers\downld\135074.exe
F:\WINDOWS\system32\drivers\downld\137037.exe
F:\WINDOWS\system32\drivers\downld\143486.exe
F:\WINDOWS\system32\drivers\downld\146610.exe
F:\WINDOWS\system32\drivers\downld\190974.exe
F:\WINDOWS\system32\drivers\downld\199907.exe
F:\WINDOWS\system32\drivers\downld\208549.exe
F:\WINDOWS\system32\drivers\downld\217312.exe
F:\WINDOWS\system32\drivers\downld\97840.exe
F:\WINDOWS\system32\drivers\hldrrr.exe
F:\WINDOWS\system32\drivers\mdelk.exe
F:\WINDOWS\system32\drivers\srosa.sys
F:\WINDOWS\system32\mdelk.exe
F:\WINDOWS\system32\wintems.exe

.
((((((((((((((((((((((((( Files Created from 2008-07-15 to 2008-08-15 )))))))))))))))))))))))))))))))
.

2008-10-08 18:24 . 2008-10-08 18:24 <REP> d-------- F:\Program Files\dscdisk
2008-10-04 22:53 . 2008-10-04 23:06 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\DeepBurner
2008-10-04 22:52 . 2008-10-04 22:52 <REP> d-------- F:\Program Files\Astonsoft
2008-10-04 22:46 . 2008-10-04 22:46 <REP> d-------- F:\WINDOWS\Sun
2008-10-04 22:39 . 2008-06-10 02:32 73,728 --a------ F:\WINDOWS\system32\javacpl.cpl
2008-10-04 22:38 . 2008-10-04 22:39 <REP> d-------- F:\Program Files\Java
2008-10-04 22:34 . 2008-10-04 22:34 <REP> d-------- F:\Program Files\Fichiers communs\Java
2008-10-04 21:59 . 2008-10-04 21:59 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\vlc
2008-10-04 21:56 . 2008-10-04 21:56 <REP> d-------- F:\Program Files\VideoLAN
2008-10-04 18:40 . 2008-10-04 18:40 159,922 --a------ F:\WINDOWS\Marsu-Fix 2.3 Uninstaller.exe
2008-10-04 18:37 . 2008-10-04 18:37 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\ESET
2008-10-04 18:34 . 2008-10-04 18:34 <REP> d-------- F:\Program Files\ESET
2008-10-04 16:37 . 2008-08-15 15:33 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\OpenOffice.org2
2008-10-04 16:27 . 2008-04-13 09:45 32,128 --a------ F:\WINDOWS\system32\drivers\usbccgp.sys
2008-10-04 16:27 . 2008-04-13 17:33 21,504 --a------ F:\WINDOWS\system32\hidserv.dll
2008-10-04 16:27 . 2008-04-13 17:05 14,720 --a------ F:\WINDOWS\system32\drivers\kbdhid.sys
2008-10-04 16:27 . 2008-04-13 09:45 10,368 --a------ F:\WINDOWS\system32\drivers\hidusb.sys
2008-10-04 07:24 . 2007-07-30 19:19 271,224 --a------ F:\WINDOWS\system32\mucltui.dll
2008-10-04 07:24 . 2007-07-30 19:19 207,736 --a------ F:\WINDOWS\system32\muweb.dll
2008-10-04 07:24 . 2007-07-30 19:18 30,072 --a------ F:\WINDOWS\system32\mucltui.dll.mui
2008-10-03 22:29 . 2008-10-03 22:33 <REP> d-------- F:\Program Files\Fichiers communs\Adobe
2008-10-03 22:18 . 2008-10-03 22:19 <REP> d-------- F:\Program Files\Picasa2
2008-10-03 22:14 . 2008-10-03 22:14 <REP> d-------- F:\Program Files\Google
2008-10-03 22:14 . 2008-08-14 22:31 <REP> d-------- F:\Documents and Settings\All Users\Application Data\Google Updater
2008-10-03 19:54 . 2008-10-03 19:55 <REP> d-------- F:\Program Files\OpenOffice.org 2.4
2008-10-03 18:56 . 2008-10-03 18:57 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\Media Player Classic
2008-10-03 18:02 . 2008-08-14 18:21 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\FileZilla
2008-10-03 17:50 . 2008-10-03 17:50 <REP> d-------- F:\Program Files\FileZilla FTP Client
2008-10-03 15:58 . 2008-10-03 15:58 <REP> d-------- F:\Program Files\RocketDock
2008-10-03 15:45 . 2008-07-04 08:34 860,160 --a------ F:\WINDOWS\system32\lameACM.acm
2008-10-03 15:45 . 2008-01-10 14:15 755,027 --a------ F:\WINDOWS\system32\xvidcore.dll
2008-10-03 15:45 . 2004-01-25 18:18 217,088 --a------ F:\WINDOWS\system32\yv12vfw.dll
2008-10-03 15:45 . 2007-09-04 18:56 164,352 --a------ F:\WINDOWS\system32\unrar.dll
2008-10-03 15:45 . 2008-01-10 14:16 159,839 --a------ F:\WINDOWS\system32\xvidvfw.dll
2008-10-03 15:45 . 2007-09-21 02:52 118,784 --a------ F:\WINDOWS\system32\ac3acm.acm
2008-10-03 15:45 . 2007-10-03 17:03 414 --a------ F:\WINDOWS\system32\lame_acm.xml
2008-10-03 15:44 . 2008-10-03 15:45 <REP> d-------- F:\Program Files\K-Lite Codec Pack
2008-10-03 15:44 . 2008-05-23 00:22 3,596,288 --a------ F:\WINDOWS\system32\qt-dx331.dll
2008-10-03 15:44 . 2008-05-31 01:22 683,520 --a------ F:\WINDOWS\system32\divx.dll
2008-10-03 15:44 . 2008-05-23 00:19 81,920 --a------ F:\WINDOWS\system32\dpl100.dll
2008-10-03 15:44 . 2008-06-12 20:36 7,680 --a------ F:\WINDOWS\system32\ff_vfw.dll
2008-10-03 15:44 . 2007-07-10 18:10 547 --a------ F:\WINDOWS\system32\ff_vfw.dll.manifest
2008-10-03 14:41 . 2008-10-03 15:37 <REP> d-------- F:\Program Files\Winamp
2008-10-03 14:41 . 2008-10-03 15:01 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\Winamp
2008-10-03 13:08 . 2008-10-03 13:08 <REP> d-------- F:\Program Files\eMule
2008-10-03 13:08 . 2008-10-03 13:08 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\eMule
2008-10-03 12:42 . 2008-10-03 12:43 <REP> d-------- F:\Documents and Settings\Nicolas\Contacts
2008-10-03 12:41 . 2008-10-03 12:41 <REP> d----c--- F:\WINDOWS\system32\DRVSTORE
2008-10-03 10:25 . 2008-10-03 10:25 <REP> d-------- F:\Documents and Settings\All Users\Application Data\Grisoft
2008-10-03 10:25 . 2007-05-30 14:10 10,872 --a------ F:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-10-03 10:24 . 2003-03-18 22:20 1,060,864 --a------ F:\WINDOWS\system32\MFC71.dll
2008-10-03 10:24 . 2003-03-18 21:14 499,712 --a------ F:\WINDOWS\system32\MSVCP71.dll
2008-10-03 10:24 . 2003-02-21 05:42 348,160 --a------ F:\WINDOWS\system32\MSVCR71.dll
2008-10-03 10:17 . 2008-10-03 10:17 <REP> d---s---- F:\WINDOWS\system32\Microsoft
2008-10-03 10:17 . 2008-10-03 10:17 8,192 --a------ F:\WINDOWS\REGLOCS.OLD
2008-08-15 15:32 . 2008-08-15 15:32 <REP> d-------- F:\WINDOWS\system32\xircom
2008-08-15 15:32 . 2008-08-15 15:32 <REP> d-------- F:\WINDOWS\srchasst
2008-08-15 15:32 . 2008-08-15 15:32 <REP> d-------- F:\Program Files\microsoft frontpage
2008-08-15 10:12 . 2008-08-15 13:29 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\EBookSys
2008-08-15 03:01 . 2008-04-14 01:33 221,184 --a------ F:\WINDOWS\system32\wmpns.dll
2008-08-14 22:18 . 2008-08-14 22:21 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\gtk-2.0
2008-08-14 22:18 . 2008-08-14 22:18 <REP> d-------- F:\Documents and Settings\Nicolas\.thumbnails
2008-08-14 22:12 . 2008-05-01 16:36 331,776 --------- F:\WINDOWS\system32\dllcache\msadce.dll
2008-08-14 22:09 . 2008-04-11 21:05 691,712 --------- F:\WINDOWS\system32\dllcache\inetcomm.dll
2008-08-14 21:36 . 2008-08-14 21:47 <REP> d-------- F:\Program Files\E-Book Systems
2008-08-14 21:21 . 2008-08-14 22:28 <REP> d-------- F:\Documents and Settings\Nicolas\.gimp-2.4
2008-08-14 19:50 . 2008-08-14 19:50 <REP> d-------- F:\Program Files\GIMP-2.0
2008-08-14 19:25 . 2008-08-14 19:27 <REP> d-------- F:\Program Files\QuickTime
2008-08-14 19:25 . 2008-08-14 19:25 <REP> d-------- F:\Documents and Settings\All Users\Application Data\Apple Computer
2008-08-14 19:23 . 2008-08-14 19:23 <REP> d-------- F:\Program Files\Apple Software Update
2008-08-14 19:23 . 2008-08-14 19:23 <REP> d-------- F:\Documents and Settings\All Users\Application Data\Apple
2008-08-14 18:54 . 2008-08-15 13:44 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\CoreFTP
2008-08-14 18:53 . 2008-08-14 18:53 <REP> d-------- F:\Program Files\CoreFTP
2008-08-13 21:28 . 2008-08-13 21:28 <REP> d--hs---- F:\WINDOWS\ftpcache
2008-08-13 21:28 . 2008-08-13 22:26 <REP> d-------- F:\Program Files\Didapages
2008-08-13 21:24 . 2008-08-13 21:24 361,600 --a------ F:\WINDOWS\system32\drivers\TCPIP.SYS.ORIGINAL
2008-08-09 22:15 . 2008-04-13 17:34 16,384 --a------ F:\WINDOWS\system32\ipsink.ax
2008-08-09 22:15 . 2008-04-13 09:46 15,232 --a------ F:\WINDOWS\system32\drivers\StreamIP.sys
2008-08-09 22:15 . 2008-04-13 09:46 10,880 --a------ F:\WINDOWS\system32\drivers\NdisIP.sys
2008-08-09 22:15 . 2008-04-13 09:39 5,504 --a------ F:\WINDOWS\system32\drivers\MSTEE.sys
2008-08-09 22:14 . 2008-04-13 09:46 85,248 --a------ F:\WINDOWS\system32\drivers\NABTSFEC.sys
2008-08-09 22:14 . 2008-04-13 09:46 19,200 --a------ F:\WINDOWS\system32\drivers\WSTCODEC.SYS
2008-08-09 22:14 . 2008-04-13 09:46 17,024 --a------ F:\WINDOWS\system32\drivers\CCDECODE.sys
2008-08-09 22:14 . 2008-04-13 09:46 11,136 --a------ F:\WINDOWS\system32\drivers\SLIP.sys
2008-08-09 22:13 . 2008-08-09 22:13 <REP> d-------- F:\Program Files\Webcam 1200
2008-08-09 22:12 . 2008-08-09 22:12 <REP> d--h----- F:\Program Files\InstallShield Installation Information
2008-08-09 22:04 . 2008-08-09 22:04 <REP> d-------- F:\Documents and Settings\Nicolas\Application Data\InstallShield

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-03 10:41 --------- d-----w F:\Program Files\Windows Live
2008-10-03 10:40 --------- d-----w F:\Documents and Settings\All Users\Application Data\WLInstaller
2008-10-03 10:25 --------- dcsh--w F:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-10-03 09:46 --------- d-----w F:\Program Files\uTorrent
2008-10-03 08:25 --------- d-----w F:\Documents and Settings\Administrateur\Application Data\Grisoft
2008-10-03 07:50 --------- d-----w F:\Program Files\Windows Media Connect 2
2008-08-15 13:24 --------- d-----w F:\Documents and Settings\Nicolas\Application Data\uTorrent
2008-08-13 19:24 361,600 ----a-w F:\WINDOWS\system32\drivers\TCPIP.SYS
2008-06-20 11:40 138,496 ----a-w F:\WINDOWS\system32\drivers\afd.sys
2008-06-20 11:08 225,856 ----a-w F:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-04 21:18 979,968 ----a-w F:\WINDOWS\explorer.exe
2008-06-04 21:18 156,672 ----a-w F:\WINDOWS\NOTEPAD.EXE
.

------- Sigcheck -------

2008-06-20 13:59 361600 ad978a1b783b5719720cff204b666c8e F:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
2008-04-29 06:12 361344 030dc4d48cc2b894fee2f390d8e66ad5 F:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
2008-06-20 13:51 361600 9aefa14bd6b182d61e3119fa5f436d3d F:\WINDOWS\SoftwareDistribution\Download\7b6e084e897a416dad6204fec54d1e00\sp3gdr\tcpip.sys
2008-06-20 13:59 361600 ad978a1b783b5719720cff204b666c8e F:\WINDOWS\SoftwareDistribution\Download\7b6e084e897a416dad6204fec54d1e00\sp3qfe\tcpip.sys
2008-08-13 21:24 361600 d24ea301e2b36c4e975fd216ca85d8e7 F:\WINDOWS\system32\dllcache\TCPIP.SYS
2008-08-13 21:24 361600 d24ea301e2b36c4e975fd216ca85d8e7 F:\WINDOWS\system32\drivers\TCPIP.SYS

2008-06-15 23:20 2207872 6a5f236cd5a33faa882592834056dca0 F:\WINDOWS\system32\ntkrnlpa.exe

2008-06-04 21:57 2331008 3ebd4417ca19355c7e095e915ef7c432 F:\WINDOWS\system32\ntoskrnl.exe

2008-06-04 23:18 979968 d1ea0a366973eca3e03f1acbefda8f43 F:\WINDOWS\explorer.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="F:\WINDOWS\system32\ctfmon.exe" [2008-04-14 01:34 15360]
"MsnMsgr"="F:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184]
"uTorrent"="F:\Program Files\uTorrent\uTorrent.exe" [2008-10-03 11:46 219952]
"RocketDock"="F:\Program Files\RocketDock\RocketDock.exe" [2007-09-02 13:58 495616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"="F:\Program Files\Winamp\winampa.exe" [2008-07-09 23:33 36352]
"Adobe Reader Speed Launcher"="F:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"TrialReset"="F:\WINDOWS\fix.exe" [2008-04-28 20:57 208353]
"SunJavaUpdateSched"="F:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 04:27 144784]
"Monitor"="F:\WINDOWS\PixArt\PAC207\Monitor.exe" [2008-08-15 14:38 319488]
"QuickTime Task"="F:\Program Files\QuickTime\qttask.exe" [2008-05-27 10:50 413696]
"FlipViewer Library"="F:\Program Files\E-Book Systems\FlipViewer\\FlipViewerLibrary.exe" [2008-08-15 11:06 390936]
"!AVG Anti-Spyware"="F:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 11:25 6731312]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="F:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 01:34 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"ForceClassicControlPanel"= 1 (0x1)
"NoSMBalloonTip"= 0 (0x0)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.YV12"= yv12vfw.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"F:\\Program Files\\uTorrent\\uTorrent.exe"=
"F:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"F:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"F:\\Program Files\\eMule\\emule.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1023:UDP"= 1023:UDP:utorrent UDP
"1023:TCP"= 1023:TCP:uTorrent TCP
"1234:TCP"= 1234:TCP:emule TCP 1234
"3333:UDP"= 3333:UDP:emule UDP 3333

S3 PAC207;Webcam 1200;F:\WINDOWS\system32\DRIVERS\PFC027.SYS [2007-06-29 16:32]

*Newly Created Service* - HELPSVC
.
Contents of the 'Scheduled Tasks' folder

2008-08-14 F:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- F:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
- - - - ORPHANS REMOVED - - - -

HKCU-Run-LClock - C:\Windows\LSD\LClock\lclock.exe


.
------- Supplementary Scan -------
.
FireFox -: Profile - F:\Documents and Settings\Nicolas\Application Data\Mozilla\Firefox\Profiles\jmzgulko.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.fr/
FF -: plugin - F:\Program Files\Google\Google Updater\2.2.1273.1045\npCIDetect12.dll


**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-15 15:33:39
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

PROCESS: F:\WINDOWS\explorer.exe
-> F:\Program Files\RocketDock\RocketDock.dll
.
------------------------ Other Running Processes ------------------------
.
F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
F:\Program Files\E-Book Systems\FlipViewer\FlipViewerLibrary.exe
F:\Program Files\OpenOffice.org 2.4\program\soffice.exe
F:\Program Files\OpenOffice.org 2.4\program\soffice.bin
.
**************************************************************************
.
Completion time: 2008-08-15 15:37:15 - machine was rebooted
ComboFix-quarantined-files.txt 2008-08-15 13:37:07

Pre-Run: 5,035,343,872 octets libres
Post-Run: 5,045,911,552 octets libres

372 --- E O F --- 2008-08-15 01:07:12