Comprendre resultat test combofix
rototo66
Messages postés
70
Statut
Membre
-
plopus Messages postés 6113 Statut Contributeur sécurité -
plopus Messages postés 6113 Statut Contributeur sécurité -
Bonjour,
j'ai récuperé le virus "winupgro" apres renseignement pour s'en débarrassé c'est combofix, j'ai donc chargé et lancé combofix, qui sait lire les 32 Ko de texte. Merci d'avance.
ComboFix 09-01-13.04 - Dany 2009-01-14 20:10:07.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.2559.2237 [GMT 1:00]
Lancé depuis: c:\documents and settings\Dany\Bureau\recuppc.exe
AV: avast! antivirus 4.8.1296 [VPS 090113-1] *On-access scanning disabled* (Outdated)
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Dany\Application Data\drivers\downld
c:\documents and settings\Dany\Application Data\drivers\downld\1097157.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1097958.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1098159.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1129424.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1140650.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1141681.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1161510.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1185785.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1186506.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1269084.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1273110.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1273821.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1385652.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1455963.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1457235.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1457966.exe
c:\documents and settings\Dany\Application Data\drivers\downld\232604.exe
c:\documents and settings\Dany\Application Data\drivers\downld\261305.exe
c:\documents and settings\Dany\Application Data\drivers\downld\267955.exe
c:\documents and settings\Dany\Application Data\drivers\downld\267975.exe
c:\documents and settings\Dany\Application Data\drivers\downld\272101.exe
c:\documents and settings\Dany\Application Data\drivers\downld\280252.exe
c:\documents and settings\Dany\Application Data\drivers\downld\280313.exe
c:\documents and settings\Dany\Application Data\drivers\downld\288044.exe
c:\documents and settings\Dany\Application Data\drivers\downld\304918.exe
c:\documents and settings\Dany\Application Data\drivers\downld\304978.exe
c:\documents and settings\Dany\Application Data\drivers\downld\306290.exe
c:\documents and settings\Dany\Application Data\drivers\downld\306951.exe
c:\documents and settings\Dany\Application Data\drivers\downld\308683.exe
c:\documents and settings\Dany\Application Data\drivers\downld\308763.exe
c:\documents and settings\Dany\Application Data\drivers\downld\318487.exe
c:\documents and settings\Dany\Application Data\drivers\downld\325698.exe
c:\documents and settings\Dany\Application Data\drivers\downld\329193.exe
c:\documents and settings\Dany\Application Data\drivers\downld\330555.exe
c:\documents and settings\Dany\Application Data\drivers\downld\334360.exe
c:\documents and settings\Dany\Application Data\drivers\downld\356602.exe
c:\documents and settings\Dany\Application Data\drivers\downld\368620.exe
c:\documents and settings\Dany\Application Data\drivers\downld\372345.exe
c:\documents and settings\Dany\Application Data\drivers\downld\374017.exe
c:\documents and settings\Dany\Application Data\drivers\downld\375389.exe
c:\documents and settings\Dany\Application Data\drivers\downld\375770.exe
c:\documents and settings\Dany\Application Data\drivers\downld\417400.exe
c:\documents and settings\Dany\Application Data\drivers\downld\422287.exe
c:\documents and settings\Dany\Application Data\drivers\downld\423188.exe
c:\documents and settings\Dany\Application Data\drivers\downld\423308.exe
c:\documents and settings\Dany\Application Data\drivers\downld\433192.exe
c:\documents and settings\Dany\Application Data\drivers\downld\433903.exe
c:\documents and settings\Dany\Application Data\drivers\downld\434004.exe
c:\documents and settings\Dany\Application Data\drivers\downld\443227.exe
c:\documents and settings\Dany\Application Data\drivers\downld\445570.exe
c:\documents and settings\Dany\Application Data\drivers\downld\446532.exe
c:\documents and settings\Dany\Application Data\drivers\downld\447853.exe
c:\documents and settings\Dany\Application Data\drivers\downld\449215.exe
c:\documents and settings\Dany\Application Data\drivers\downld\449967.exe
c:\documents and settings\Dany\Application Data\drivers\downld\476364.exe
c:\documents and settings\Dany\Application Data\drivers\downld\478047.exe
c:\documents and settings\Dany\Application Data\drivers\downld\478758.exe
c:\documents and settings\Dany\Application Data\drivers\downld\488091.exe
c:\documents and settings\Dany\Application Data\drivers\downld\545504.exe
c:\documents and settings\Dany\Application Data\drivers\downld\547577.exe
c:\documents and settings\Dany\Application Data\drivers\downld\547947.exe
c:\documents and settings\Dany\Application Data\drivers\srosa.sys
c:\documents and settings\Dany\Application Data\drivers\srosa2.sys
c:\documents and settings\Dany\Application Data\drivers\winupgro.exe
c:\documents and settings\Dany\Application Data\m
c:\documents and settings\Dany\Application Data\m\data.oct
c:\documents and settings\Dany\Application Data\m\flec006.exe
c:\documents and settings\Dany\Application Data\m\list.oct
c:\documents and settings\Dany\Application Data\m\shared\(Testé.Ok.-.Plusieurs.Clés.Valides).Kapersky.Antivirus.5.0.227.Fr.zip
c:\documents and settings\Dany\Application Data\m\shared\650.1128.zip
c:\documents and settings\Dany\Application Data\m\shared\9Desks 1.6.2.zip
c:\documents and settings\Dany\Application Data\m\shared\A-PDF INFO Changer 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\ACID MP3 Player 5.0.zip
c:\documents and settings\Dany\Application Data\m\shared\AllDay DJ Mass Import Tool 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Aqua Data Studio 6.5.1.2.zip
c:\documents and settings\Dany\Application Data\m\shared\Architectural Wonders 4 Screensaver.zip
c:\documents and settings\Dany\Application Data\m\shared\ArgusLab 4.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Arial CD Ripper 1.9.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Arlington Security Manager 2.1.zip
c:\documents and settings\Dany\Application Data\m\shared\AtomicRobot FTP Professional Edition 2.0a.zip
c:\documents and settings\Dany\Application Data\m\shared\Audio Divider 1186.zip
c:\documents and settings\Dany\Application Data\m\shared\Autumn NetSpy 1.0.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Auvisoft MP3 Recorder 1.50.zip
c:\documents and settings\Dany\Application Data\m\shared\AVG.7.5.crackVersion.Fr.by.Altavista.zip
c:\documents and settings\Dany\Application Data\m\shared\Bagle.AA Remover 3.5.1.11.zip
c:\documents and settings\Dany\Application Data\m\shared\Batch Frame 3.40.zip
c:\documents and settings\Dany\Application Data\m\shared\bitdefender.cumulative.zip
c:\documents and settings\Dany\Application Data\m\shared\BitPal 3.7.9.zip
c:\documents and settings\Dany\Application Data\m\shared\BLZ Extractor 1.0.1.148.zip
c:\documents and settings\Dany\Application Data\m\shared\Burning Mill Advanced 0.44.1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Camtech Euro Converter 1.0.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Canadian Weather Radar 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\CC Print Monitor 1.6.zip
c:\documents and settings\Dany\Application Data\m\shared\CDFS.VXD.zip
c:\documents and settings\Dany\Application Data\m\shared\Celebrity Search 0.4.zip
c:\documents and settings\Dany\Application Data\m\shared\Clusty Search 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Code Keeper 1.01.zip
c:\documents and settings\Dany\Application Data\m\shared\ConceptDraw Office Pro 8.0.3.zip
c:\documents and settings\Dany\Application Data\m\shared\Cool Capture 1.25.zip
c:\documents and settings\Dany\Application Data\m\shared\Data Record Extractor 1.0.5.1134.zip
c:\documents and settings\Dany\Application Data\m\shared\DataBase VB Net Builder 1.zip
c:\documents and settings\Dany\Application Data\m\shared\Dcurrency 0.2.12.zip
c:\documents and settings\Dany\Application Data\m\shared\DeskSeal 3.5.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Duck0003 ScreenMate.zip
c:\documents and settings\Dany\Application Data\m\shared\EnvelopCopy 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\eReminder 4.4 Build 0.320.zip
c:\documents and settings\Dany\Application Data\m\shared\Explorer Context Menu 0.3.zip
c:\documents and settings\Dany\Application Data\m\shared\FLASH MP3 PLAYER 3.3.zip
c:\documents and settings\Dany\Application Data\m\shared\Fox Audio Converter 7.4.0.10.zip
c:\documents and settings\Dany\Application Data\m\shared\FreeMacroPlayer 7.1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\GasDandy METRIC 1.3.0c.zip
c:\documents and settings\Dany\Application Data\m\shared\GML GrowCut 2.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\GOGO Image to Video Converter(X'mas) 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Gold and Silver 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\HTTHost 1.8.5.zip
c:\documents and settings\Dany\Application Data\m\shared\Hyperlink OCX 1.0.2.zip
c:\documents and settings\Dany\Application Data\m\shared\Insight Connector 3.1.8.zip
c:\documents and settings\Dany\Application Data\m\shared\Internet Explorer Password Recovery Utility 5.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\JavaScript Library Archive 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\K's Sunflowers Screensaver.zip
c:\documents and settings\Dany\Application Data\m\shared\Kaspersky.chiave.di.registrazione.fino.al..2007.zip
c:\documents and settings\Dany\Application Data\m\shared\King of the CPU 1.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Knowbody Color Markup 4.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Knowbody X Connect 4.0.8.zip
c:\documents and settings\Dany\Application Data\m\shared\KnowHow 1.1.62.zip
c:\documents and settings\Dany\Application Data\m\shared\Least Squares Fitting Program 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Load Testing Tool Screensaver 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Locker from kids 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Loop-X 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Lynx Internet Radio Network toolbar for IE 4.5.139.0.zip
c:\documents and settings\Dany\Application Data\m\shared\MagicTracer [raster to vector converter] 2.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Mars 3D Space Tour 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Mathparser 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\MathsOwn Junior 1.2.1.zip
c:\documents and settings\Dany\Application Data\m\shared\MB3-230 Practice Exam Testing Engine Software 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\McAfee.PortalShield.for.Microsoft.SharePoint.v1.0.Retail-ROR.zip
c:\documents and settings\Dany\Application Data\m\shared\McAfee.VirusScan.Enterprise.v8.0i.With.Patch13.zip
c:\documents and settings\Dany\Application Data\m\shared\Men_in_Black_Nokia_240x320.zip
c:\documents and settings\Dany\Application Data\m\shared\Midi Power 1.24.zip
c:\documents and settings\Dany\Application Data\m\shared\MinhiAccess 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\MiTeC Data Editor 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Money 2.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Mouse Zoom 1.4.zip
c:\documents and settings\Dany\Application Data\m\shared\MouseClock 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\MouseZoom 0.4.3.zip
c:\documents and settings\Dany\Application Data\m\shared\MP3 Rectifier 1.7.58.zip
c:\documents and settings\Dany\Application Data\m\shared\mp3infp 2.53d.zip
c:\documents and settings\Dany\Application Data\m\shared\My Top Friends Notifier 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\ngrep 1.45.zip
c:\documents and settings\Dany\Application Data\m\shared\Nod32.2.12.4.ITA+crk.zip
c:\documents and settings\Dany\Application Data\m\shared\NOD32.Antivirus.2.51.20.spanish-español.+.crack.por.TuNeM.zip
c:\documents and settings\Dany\Application Data\m\shared\OfficeJunior 1.0.1918.zip
c:\documents and settings\Dany\Application Data\m\shared\Osmose 0.1.33.zip
c:\documents and settings\Dany\Application Data\m\shared\Panda.Antivirus.Titanium.v2.04.01.(12-08-2002).by.djmikel.zip
c:\documents and settings\Dany\Application Data\m\shared\PatchFactory 3.3 build 003.zip
c:\documents and settings\Dany\Application Data\m\shared\PatternExplorer for Amibroker 3.70.zip
c:\documents and settings\Dany\Application Data\m\shared\PDF to Text Batch Convert Multiple Files Software 7.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Photo Combiner 4.52.zip
c:\documents and settings\Dany\Application Data\m\shared\PHP Designer 6.1 Beta 3.zip
c:\documents and settings\Dany\Application Data\m\shared\PHP XMLMaker 1.0.0.2.zip
c:\documents and settings\Dany\Application Data\m\shared\PlainOldFavorites 1.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Portable Debrief 2.2.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Portable DelinvFile 3.03.zip
c:\documents and settings\Dany\Application Data\m\shared\Portable Visual CD 4.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Projectexplorer 2.3.zip
c:\documents and settings\Dany\Application Data\m\shared\Radio Pop 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\RapTier Lite 1.4.1501.zip
c:\documents and settings\Dany\Application Data\m\shared\Registry Help Pro 1.58.zip
c:\documents and settings\Dany\Application Data\m\shared\RPF Viewer 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\ScriptZIP 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\ServerMonitor Lite 3.3.2.8.zip
c:\documents and settings\Dany\Application Data\m\shared\Small Business Advantage 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Smart_Mobile_Dictionary.zip
c:\documents and settings\Dany\Application Data\m\shared\Snazzy Backup 0.9.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Sony Jam Trax XPress 2.0.zip
c:\documents and settings\Dany\Application Data\m\shared\split3pm 1.5.zip
c:\documents and settings\Dany\Application Data\m\shared\SS Silent Lagoon - Animated Desktop Screensaver 3.11.zip
c:\documents and settings\Dany\Application Data\m\shared\StartUpTuner
c:\documents and settings\Dany\Application Data\m\shared\stopwatch 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Stud PE 2.4.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Sun PDF Import Extension 0.3.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Superversion Portuguese PPC 3.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Symantec.Norton.Internet.Security.2006-Keygen.zip
c:\documents and settings\Dany\Application Data\m\shared\Temas.De.Séries.Infantis.Do.Canal.Panda.zip
c:\documents and settings\Dany\Application Data\m\shared\The Autumn Blues Screensaver 1.4a.zip
c:\documents and settings\Dany\Application Data\m\shared\TimerTime 1.2.zip
c:\documents and settings\Dany\Application Data\m\shared\Tinysoar DVD Ripper 1.6.2.zip
c:\documents and settings\Dany\Application Data\m\shared\torrenTools toolbar for IE 4.5.126.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Turbo Favorites Checker 3.0.zip
c:\documents and settings\Dany\Application Data\m\shared\TypeAndRun 4.7 Beta 6.zip
c:\documents and settings\Dany\Application Data\m\shared\VooDoo cIRCle 1.1 Beta 32.zip
c:\documents and settings\Dany\Application Data\m\shared\Wild forest 3D 1.zip
c:\documents and settings\Dany\Application Data\m\shared\XKat 2.02.zip
c:\documents and settings\Dany\Application Data\m\shared\XP Home User Manager 2.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Z-Maestro 0.13.0.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Zero Media Convertor Studio Pack 1.02.zip
c:\documents and settings\Dany\Application Data\m\srvlist.oct
c:\program files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
c:\windows\system32\ban_list.txt
c:\windows\system32\cfabbfedd2_r.dll
c:\windows\system32\mdelk.exe
c:\windows\system32\wintems.exe
H:\Autorun.inf
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_SROSA
-------\Legacy_SROSA
-------\Legacy_SK9OU0S
-------\Service_sK9Ou0s
((((((((((((((((((((((((((((( Fichiers créés du 2008-12-14 au 2009-01-14 ))))))))))))))))))))))))))))))))))))
.
2009-01-14 15:34 . 2009-01-14 16:18 <REP> d-------- c:\documents and settings\Dany\.housecall6.6
2009-01-14 14:35 . 2009-01-14 20:13 <REP> d--h----- c:\documents and settings\Dany\Application Data\drivers
2009-01-03 15:52 . 2008-04-13 19:45 32,128 --a------ c:\windows\system32\drivers\usbccgp.sys
2009-01-03 15:52 . 2008-04-13 19:45 32,128 --a--c--- c:\windows\system32\dllcache\usbccgp.sys
2009-01-03 15:51 . 2009-01-03 15:51 <REP> d-------- c:\windows\system32\SupportAppXL
2009-01-03 15:51 . 2009-01-06 11:57 <REP> d-------- c:\program files\Clé Internet de prêt
2009-01-03 15:51 . 2008-07-08 09:11 103,936 --a------ c:\windows\system32\drivers\ZTEusbser6k.sys
2009-01-03 15:51 . 2008-07-08 09:11 103,936 --a------ c:\windows\system32\drivers\ZTEusbnmeaext.sys
2009-01-03 15:51 . 2008-07-08 09:11 103,936 --a------ c:\windows\system32\drivers\ZTEusbnmea.sys
2009-01-03 15:51 . 2008-07-08 09:11 103,936 --a------ c:\windows\system32\drivers\ZTEusbmdm6k.sys
2008-12-26 16:52 . 2008-12-26 16:56 <REP> d-------- c:\program files\Lavasoft
2008-12-22 21:11 . 2008-12-22 21:11 <REP> d-------- c:\documents and settings\All Users.WINDOWS\Application Data\Messenger Plus!
2008-12-22 14:38 . 2008-12-22 14:38 <REP> d-------- c:\program files\MessengerPlus! 3
2008-12-22 14:38 . 2008-12-22 14:39 <REP> d-------- c:\program files\Adverts
2008-12-22 14:02 . 2008-12-22 15:01 <REP> d-------- c:\documents and settings\Dany\Application Data\MSNInstaller
2008-12-20 08:42 . 2008-12-26 16:51 <REP> d-------- c:\program files\Fichiers communs\Wise Installation Wizard
2008-12-20 08:42 . 2008-12-20 08:42 <REP> d-------- c:\documents and settings\All Users.WINDOWS\Application Data\TuneUp Software
2008-12-20 08:42 . 2008-12-20 08:42 306,432 --a------ c:\windows\system32\TuneUpDefragService.exe
2008-12-20 08:42 . 2007-12-20 10:41 29,440 --a------ c:\windows\system32\uxtuneup.dll
2008-12-17 17:16 . 2008-12-17 17:16 0 --a------ c:\windows\Videodeluxe.INI
2008-12-17 15:55 . 2009-01-08 18:22 <REP> d-------- c:\documents and settings\Dany\Application Data\MAGIX
2008-12-17 15:54 . 2008-12-17 15:54 0 --a------ c:\windows\musicmaker.INI
2008-12-17 15:52 . 2003-04-18 15:29 44,544 --a------ c:\windows\system32\msxml4a.dll
2008-12-17 15:51 . 2001-05-11 13:18 420,240 --a------ c:\windows\system32\mpg4c32.dll
2008-12-17 15:51 . 2001-05-16 17:54 309,616 --a------ c:\windows\system32\wmv8dmod.dll
2008-12-17 15:51 . 2001-03-26 04:41 245,760 --a------ c:\windows\system32\mp4sds32.ax
2008-12-17 15:37 . 2008-12-17 16:18 <REP> d-------- C:\MAGIX
2008-12-17 15:37 . 2002-09-20 23:33 1,089,536 --a------ c:\windows\system32\ROBOEX32.DLL
2008-12-17 15:37 . 2005-11-09 18:13 475,136 --a------ c:\windows\system32\mgxoschk.dll
2008-12-17 15:37 . 1998-10-15 16:28 85,504 --a------ c:\windows\system32\HtmlWH.dll
2008-12-17 15:37 . 2005-11-10 12:16 2,994 --a------ c:\windows\mgxoschk.ini
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-14 18:06 --------- d-----w c:\program files\Netcraft Toolbar
2009-01-14 13:34 --------- d-----w c:\program files\eMule
2009-01-09 15:45 --------- d-----w c:\documents and settings\Dany\Application Data\Skype
2009-01-09 15:43 --------- d-----w c:\documents and settings\Dany\Application Data\skypePM
2009-01-03 14:51 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-02 22:08 --------- d-----w c:\documents and settings\Dany\Application Data\SolSuite
2009-01-01 16:38 --------- d-----w c:\program files\TomTom HOME
2008-12-26 22:34 --------- d-----w c:\documents and settings\Dany\Application Data\LimeWire
2008-12-26 15:52 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft
2008-12-20 07:44 --------- d-----w c:\program files\TuneUp Utilities 2008
2008-12-17 16:18 --------- d-----w c:\documents and settings\Dany\Application Data\Desktopicon
2008-12-13 14:23 --------- d-----w c:\program files\adslTV
2008-12-12 20:30 --------- d-----w c:\documents and settings\Dany\Application Data\Vso
2008-12-12 20:24 3,532 ----a-w C:\drmHeader.bin
2008-12-11 10:57 333,952 ----a-w c:\windows\system32\drivers\srv.sys
2008-12-10 15:12 --------- d-----w c:\documents and settings\Dany\Application Data\uTorrent
2008-12-08 17:54 --------- d-----w c:\documents and settings\Dany\Application Data\dvdcss
2008-12-08 16:35 --------- d-----w c:\program files\Mp3tag
2008-12-08 16:34 --------- d-----w c:\documents and settings\Dany\Application Data\Mp3tag
2008-12-08 09:16 --------- d-----w c:\program files\uTorrent
2008-12-07 20:55 --------- d-----w c:\program files\Creative
2008-12-07 17:01 --------- d-----w c:\program files\IsoBuster
2008-12-06 14:09 --------- d-----w c:\program files\Java
2008-12-02 17:37 --------- d-----w c:\documents and settings\Dany\Application Data\XnView
2008-12-01 17:05 --------- d-----w c:\program files\hp deskjet 840c series
2008-11-30 20:40 --------- d-----w c:\program files\XnView
2008-11-30 17:42 --------- d-----w c:\program files\Diaporama
2008-11-30 16:33 --------- d-----w c:\program files\Photo Story 3 for Windows
2008-11-26 20:17 --------- d-----w c:\program files\Unlocker
2008-11-24 14:18 --------- d-----w c:\program files\jv16 PowerTools 2007
2008-11-24 13:59 --------- d-----w c:\documents and settings\Dany\Application Data\Nikon
2008-11-24 13:40 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Macrovision
2008-11-24 09:59 --------- d-----w c:\program files\Fichiers communs\Adobe
2008-11-24 09:58 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\NOS
2008-11-24 09:53 --------- d-----w c:\program files\INSPECTOR
2008-11-23 16:04 --------- d-----w c:\documents and settings\Dany\Application Data\DivX
2008-11-23 14:16 --------- d-----w c:\documents and settings\Dany\Application Data\vlc
2008-11-22 08:44 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\TomTom
2008-11-22 08:42 --------- d-----w c:\documents and settings\Dany\Application Data\InstallShield
2008-11-22 08:41 --------- d-----w c:\program files\TomTom DesktopSuite
2008-11-21 20:23 --------- d-----w c:\program files\Fichiers communs\Nero
2008-11-21 20:23 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Nero
2008-11-21 16:30 --------- d-----w c:\documents and settings\Dany\Application Data\Nero
2008-11-21 15:01 --------- d-----w c:\program files\microsoft frontpage
2008-11-21 10:14 --------- d-----w c:\documents and settings\Dany\Application Data\ACD Systems
2008-11-21 10:12 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\ACD Systems
2008-11-21 09:31 --------- d-----w c:\program files\SolSuite
2008-11-20 23:05 --------- d-----w c:\program files\DivX
2008-11-20 22:49 --------- d-----w c:\program files\XviD
2008-11-20 22:35 --------- d-----w c:\program files\VideoLAN
2008-11-20 22:21 --------- d-----w c:\program files\SpywareBlaster
2008-11-20 22:21 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\TEMP
2008-11-20 22:16 --------- d-----w c:\program files\Skype
2008-11-20 21:59 --------- d-----w c:\documents and settings\Dany\Application Data\IcoFX
2008-11-20 17:43 --------- d-----w c:\program files\Neuf
2008-11-20 15:55 --------- d-----w c:\documents and settings\Dany\Application Data\ATI
2008-11-20 15:40 --------- d-----w c:\program files\ATI Technologies
2008-11-20 14:47 --------- d-----w c:\program files\Fichiers communs\Skype
2008-11-20 14:47 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Skype
2008-11-20 14:29 --------- d-----w c:\program files\Alwil Software
2008-11-20 10:38 --------- d-----w c:\documents and settings\Dany\Application Data\TuneUp Software
2008-11-20 10:03 --------- d-----w c:\program files\VIA Technologies, Inc
2008-11-20 09:06 --------- d-----w c:\documents and settings\Dany\Application Data\ArcSoft
2008-11-19 13:49 --------- d-----w c:\program files\PhotoFiltre Studio
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\NBHShellExt]
@="{8D2223A2-B3C6-4e32-B096-CDD11F628C60}"
[HKEY_CLASSES_ROOT\CLSID\{8D2223A2-B3C6-4e32-B096-CDD11F628C60}]
2008-06-10 12:29 97064 --a------ c:\program files\Nero\Nero8\InCD\NBHShx.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"TuneUp MemOptimizer"="c:\program files\TuneUp Utilities 2008\MemOptimizer.exe" [2007-12-21 197888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-01-14 81000]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-05-10 90112]
"NeroFilterCheck"="c:\program files\Fichiers communs\Nero\Lib\NeroCheck.exe" [2008-06-19 570664]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-08 2221352]
"SecurDisc"="c:\program files\Nero\Nero8\InCD\NBHGui.exe" [2008-06-10 2049320]
"InCD"="c:\program files\Nero\Nero8\InCD\InCD.exe" [2008-06-10 1083176]
"TomTomHOME.exe"="c:\program files\TomTom HOME\TomTomHOME.exe" [2008-02-14 3977128]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-11-15 196608]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-06 136600]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"Jet Detection"="c:\program files\Creative\SBLive\PROGRAM\ADGJDet.exe" [2001-11-29 28672]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-01-14 15872]
"MessengerPlus3"="c:\program files\MessengerPlus! 3\MsgPlus.exe" [2008-12-22 190024]
"WINDVDPatch"="CTHELPER.EXE" [2002-07-02 c:\windows\system32\CTHELPER.EXE]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users.WINDOWS\Menu D‚marrer\Programmes\D‚marrage\
Adobe Gamma Loader.lnk - c:\program files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2007-11-08 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.JPGL"= jpgl.dll
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
path=c:\documents and settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Fichiers communs\\Nero\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\adslTV\\adsltv.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"31336:UDP"= 31336:UDP:adsltv
R3 DCamUSBCompany;P35U Camera Capture;c:\windows\system32\drivers\p35u.sys [2006-07-10 98272]
R4 NeroRegInCDSrv;Nero Registry InCD Service;c:\program files\Nero\Nero8\InCD\NBHRegInCDSrv.exe [2008-06-10 53032]
S1 aswSP;avast! Self Protection; [x]
S3 getPlus(R) Helper;getPlus(R) Helper;c:\program files\NOS\bin\getPlus_HelperSvc.exe --> c:\program files\NOS\bin\getPlus_HelperSvc.exe [?]
S3 Usbiys;Usbiys; [x]
S4 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys --> c:\windows\system32\DRIVERS\aswFsBlk.sys [?]
--- Autres Services/Pilotes en mémoire ---
*Deregistered* - InCDRec
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ba95a981-b871-11dd-bb1d-000c76aeba04}]
\Shell\AutoRun\command - H:\InstallTomTomHOME.exe
.
Contenu du dossier 'Tâches planifiées'
2009-01-09 c:\windows\Tasks\Maintenance en 1 clic.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 15:39]
.
- - - - ORPHELINS SUPPRIMES - - - -
HKCU-Run-IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
MSConfigStartUp-Device Detector - DevDetect.exe
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://home.neuf.fr/
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-14 20:20:31
Windows 5.1.2600 Service Pack 3 NTFS
Recherche de processus cachés ...
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------
- - - - - - - > 'winlogon.exe'(656)
c:\windows\system32\Ati2evxx.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Nero\Nero8\InCD\InCDsrv.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\system32\IoctlSvc.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
.
**************************************************************************
.
Heure de fin: 2009-01-14 20:51:56 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-01-14 19:51:53
Avant-CF: 38,418,075,648 octets libres
Après-CF: 38,180,372,480 octets libres
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect
j'ai récuperé le virus "winupgro" apres renseignement pour s'en débarrassé c'est combofix, j'ai donc chargé et lancé combofix, qui sait lire les 32 Ko de texte. Merci d'avance.
ComboFix 09-01-13.04 - Dany 2009-01-14 20:10:07.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.2559.2237 [GMT 1:00]
Lancé depuis: c:\documents and settings\Dany\Bureau\recuppc.exe
AV: avast! antivirus 4.8.1296 [VPS 090113-1] *On-access scanning disabled* (Outdated)
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Dany\Application Data\drivers\downld
c:\documents and settings\Dany\Application Data\drivers\downld\1097157.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1097958.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1098159.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1129424.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1140650.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1141681.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1161510.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1185785.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1186506.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1269084.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1273110.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1273821.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1385652.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1455963.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1457235.exe
c:\documents and settings\Dany\Application Data\drivers\downld\1457966.exe
c:\documents and settings\Dany\Application Data\drivers\downld\232604.exe
c:\documents and settings\Dany\Application Data\drivers\downld\261305.exe
c:\documents and settings\Dany\Application Data\drivers\downld\267955.exe
c:\documents and settings\Dany\Application Data\drivers\downld\267975.exe
c:\documents and settings\Dany\Application Data\drivers\downld\272101.exe
c:\documents and settings\Dany\Application Data\drivers\downld\280252.exe
c:\documents and settings\Dany\Application Data\drivers\downld\280313.exe
c:\documents and settings\Dany\Application Data\drivers\downld\288044.exe
c:\documents and settings\Dany\Application Data\drivers\downld\304918.exe
c:\documents and settings\Dany\Application Data\drivers\downld\304978.exe
c:\documents and settings\Dany\Application Data\drivers\downld\306290.exe
c:\documents and settings\Dany\Application Data\drivers\downld\306951.exe
c:\documents and settings\Dany\Application Data\drivers\downld\308683.exe
c:\documents and settings\Dany\Application Data\drivers\downld\308763.exe
c:\documents and settings\Dany\Application Data\drivers\downld\318487.exe
c:\documents and settings\Dany\Application Data\drivers\downld\325698.exe
c:\documents and settings\Dany\Application Data\drivers\downld\329193.exe
c:\documents and settings\Dany\Application Data\drivers\downld\330555.exe
c:\documents and settings\Dany\Application Data\drivers\downld\334360.exe
c:\documents and settings\Dany\Application Data\drivers\downld\356602.exe
c:\documents and settings\Dany\Application Data\drivers\downld\368620.exe
c:\documents and settings\Dany\Application Data\drivers\downld\372345.exe
c:\documents and settings\Dany\Application Data\drivers\downld\374017.exe
c:\documents and settings\Dany\Application Data\drivers\downld\375389.exe
c:\documents and settings\Dany\Application Data\drivers\downld\375770.exe
c:\documents and settings\Dany\Application Data\drivers\downld\417400.exe
c:\documents and settings\Dany\Application Data\drivers\downld\422287.exe
c:\documents and settings\Dany\Application Data\drivers\downld\423188.exe
c:\documents and settings\Dany\Application Data\drivers\downld\423308.exe
c:\documents and settings\Dany\Application Data\drivers\downld\433192.exe
c:\documents and settings\Dany\Application Data\drivers\downld\433903.exe
c:\documents and settings\Dany\Application Data\drivers\downld\434004.exe
c:\documents and settings\Dany\Application Data\drivers\downld\443227.exe
c:\documents and settings\Dany\Application Data\drivers\downld\445570.exe
c:\documents and settings\Dany\Application Data\drivers\downld\446532.exe
c:\documents and settings\Dany\Application Data\drivers\downld\447853.exe
c:\documents and settings\Dany\Application Data\drivers\downld\449215.exe
c:\documents and settings\Dany\Application Data\drivers\downld\449967.exe
c:\documents and settings\Dany\Application Data\drivers\downld\476364.exe
c:\documents and settings\Dany\Application Data\drivers\downld\478047.exe
c:\documents and settings\Dany\Application Data\drivers\downld\478758.exe
c:\documents and settings\Dany\Application Data\drivers\downld\488091.exe
c:\documents and settings\Dany\Application Data\drivers\downld\545504.exe
c:\documents and settings\Dany\Application Data\drivers\downld\547577.exe
c:\documents and settings\Dany\Application Data\drivers\downld\547947.exe
c:\documents and settings\Dany\Application Data\drivers\srosa.sys
c:\documents and settings\Dany\Application Data\drivers\srosa2.sys
c:\documents and settings\Dany\Application Data\drivers\winupgro.exe
c:\documents and settings\Dany\Application Data\m
c:\documents and settings\Dany\Application Data\m\data.oct
c:\documents and settings\Dany\Application Data\m\flec006.exe
c:\documents and settings\Dany\Application Data\m\list.oct
c:\documents and settings\Dany\Application Data\m\shared\(Testé.Ok.-.Plusieurs.Clés.Valides).Kapersky.Antivirus.5.0.227.Fr.zip
c:\documents and settings\Dany\Application Data\m\shared\650.1128.zip
c:\documents and settings\Dany\Application Data\m\shared\9Desks 1.6.2.zip
c:\documents and settings\Dany\Application Data\m\shared\A-PDF INFO Changer 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\ACID MP3 Player 5.0.zip
c:\documents and settings\Dany\Application Data\m\shared\AllDay DJ Mass Import Tool 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Aqua Data Studio 6.5.1.2.zip
c:\documents and settings\Dany\Application Data\m\shared\Architectural Wonders 4 Screensaver.zip
c:\documents and settings\Dany\Application Data\m\shared\ArgusLab 4.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Arial CD Ripper 1.9.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Arlington Security Manager 2.1.zip
c:\documents and settings\Dany\Application Data\m\shared\AtomicRobot FTP Professional Edition 2.0a.zip
c:\documents and settings\Dany\Application Data\m\shared\Audio Divider 1186.zip
c:\documents and settings\Dany\Application Data\m\shared\Autumn NetSpy 1.0.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Auvisoft MP3 Recorder 1.50.zip
c:\documents and settings\Dany\Application Data\m\shared\AVG.7.5.crackVersion.Fr.by.Altavista.zip
c:\documents and settings\Dany\Application Data\m\shared\Bagle.AA Remover 3.5.1.11.zip
c:\documents and settings\Dany\Application Data\m\shared\Batch Frame 3.40.zip
c:\documents and settings\Dany\Application Data\m\shared\bitdefender.cumulative.zip
c:\documents and settings\Dany\Application Data\m\shared\BitPal 3.7.9.zip
c:\documents and settings\Dany\Application Data\m\shared\BLZ Extractor 1.0.1.148.zip
c:\documents and settings\Dany\Application Data\m\shared\Burning Mill Advanced 0.44.1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Camtech Euro Converter 1.0.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Canadian Weather Radar 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\CC Print Monitor 1.6.zip
c:\documents and settings\Dany\Application Data\m\shared\CDFS.VXD.zip
c:\documents and settings\Dany\Application Data\m\shared\Celebrity Search 0.4.zip
c:\documents and settings\Dany\Application Data\m\shared\Clusty Search 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Code Keeper 1.01.zip
c:\documents and settings\Dany\Application Data\m\shared\ConceptDraw Office Pro 8.0.3.zip
c:\documents and settings\Dany\Application Data\m\shared\Cool Capture 1.25.zip
c:\documents and settings\Dany\Application Data\m\shared\Data Record Extractor 1.0.5.1134.zip
c:\documents and settings\Dany\Application Data\m\shared\DataBase VB Net Builder 1.zip
c:\documents and settings\Dany\Application Data\m\shared\Dcurrency 0.2.12.zip
c:\documents and settings\Dany\Application Data\m\shared\DeskSeal 3.5.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Duck0003 ScreenMate.zip
c:\documents and settings\Dany\Application Data\m\shared\EnvelopCopy 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\eReminder 4.4 Build 0.320.zip
c:\documents and settings\Dany\Application Data\m\shared\Explorer Context Menu 0.3.zip
c:\documents and settings\Dany\Application Data\m\shared\FLASH MP3 PLAYER 3.3.zip
c:\documents and settings\Dany\Application Data\m\shared\Fox Audio Converter 7.4.0.10.zip
c:\documents and settings\Dany\Application Data\m\shared\FreeMacroPlayer 7.1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\GasDandy METRIC 1.3.0c.zip
c:\documents and settings\Dany\Application Data\m\shared\GML GrowCut 2.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\GOGO Image to Video Converter(X'mas) 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Gold and Silver 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\HTTHost 1.8.5.zip
c:\documents and settings\Dany\Application Data\m\shared\Hyperlink OCX 1.0.2.zip
c:\documents and settings\Dany\Application Data\m\shared\Insight Connector 3.1.8.zip
c:\documents and settings\Dany\Application Data\m\shared\Internet Explorer Password Recovery Utility 5.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\JavaScript Library Archive 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\K's Sunflowers Screensaver.zip
c:\documents and settings\Dany\Application Data\m\shared\Kaspersky.chiave.di.registrazione.fino.al..2007.zip
c:\documents and settings\Dany\Application Data\m\shared\King of the CPU 1.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Knowbody Color Markup 4.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Knowbody X Connect 4.0.8.zip
c:\documents and settings\Dany\Application Data\m\shared\KnowHow 1.1.62.zip
c:\documents and settings\Dany\Application Data\m\shared\Least Squares Fitting Program 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Load Testing Tool Screensaver 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Locker from kids 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Loop-X 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Lynx Internet Radio Network toolbar for IE 4.5.139.0.zip
c:\documents and settings\Dany\Application Data\m\shared\MagicTracer [raster to vector converter] 2.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Mars 3D Space Tour 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Mathparser 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\MathsOwn Junior 1.2.1.zip
c:\documents and settings\Dany\Application Data\m\shared\MB3-230 Practice Exam Testing Engine Software 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\McAfee.PortalShield.for.Microsoft.SharePoint.v1.0.Retail-ROR.zip
c:\documents and settings\Dany\Application Data\m\shared\McAfee.VirusScan.Enterprise.v8.0i.With.Patch13.zip
c:\documents and settings\Dany\Application Data\m\shared\Men_in_Black_Nokia_240x320.zip
c:\documents and settings\Dany\Application Data\m\shared\Midi Power 1.24.zip
c:\documents and settings\Dany\Application Data\m\shared\MinhiAccess 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\MiTeC Data Editor 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Money 2.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Mouse Zoom 1.4.zip
c:\documents and settings\Dany\Application Data\m\shared\MouseClock 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\MouseZoom 0.4.3.zip
c:\documents and settings\Dany\Application Data\m\shared\MP3 Rectifier 1.7.58.zip
c:\documents and settings\Dany\Application Data\m\shared\mp3infp 2.53d.zip
c:\documents and settings\Dany\Application Data\m\shared\My Top Friends Notifier 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\ngrep 1.45.zip
c:\documents and settings\Dany\Application Data\m\shared\Nod32.2.12.4.ITA+crk.zip
c:\documents and settings\Dany\Application Data\m\shared\NOD32.Antivirus.2.51.20.spanish-español.+.crack.por.TuNeM.zip
c:\documents and settings\Dany\Application Data\m\shared\OfficeJunior 1.0.1918.zip
c:\documents and settings\Dany\Application Data\m\shared\Osmose 0.1.33.zip
c:\documents and settings\Dany\Application Data\m\shared\Panda.Antivirus.Titanium.v2.04.01.(12-08-2002).by.djmikel.zip
c:\documents and settings\Dany\Application Data\m\shared\PatchFactory 3.3 build 003.zip
c:\documents and settings\Dany\Application Data\m\shared\PatternExplorer for Amibroker 3.70.zip
c:\documents and settings\Dany\Application Data\m\shared\PDF to Text Batch Convert Multiple Files Software 7.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Photo Combiner 4.52.zip
c:\documents and settings\Dany\Application Data\m\shared\PHP Designer 6.1 Beta 3.zip
c:\documents and settings\Dany\Application Data\m\shared\PHP XMLMaker 1.0.0.2.zip
c:\documents and settings\Dany\Application Data\m\shared\PlainOldFavorites 1.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Portable Debrief 2.2.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Portable DelinvFile 3.03.zip
c:\documents and settings\Dany\Application Data\m\shared\Portable Visual CD 4.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Projectexplorer 2.3.zip
c:\documents and settings\Dany\Application Data\m\shared\Radio Pop 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\RapTier Lite 1.4.1501.zip
c:\documents and settings\Dany\Application Data\m\shared\Registry Help Pro 1.58.zip
c:\documents and settings\Dany\Application Data\m\shared\RPF Viewer 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\ScriptZIP 1.1.zip
c:\documents and settings\Dany\Application Data\m\shared\ServerMonitor Lite 3.3.2.8.zip
c:\documents and settings\Dany\Application Data\m\shared\Small Business Advantage 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Smart_Mobile_Dictionary.zip
c:\documents and settings\Dany\Application Data\m\shared\Snazzy Backup 0.9.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Sony Jam Trax XPress 2.0.zip
c:\documents and settings\Dany\Application Data\m\shared\split3pm 1.5.zip
c:\documents and settings\Dany\Application Data\m\shared\SS Silent Lagoon - Animated Desktop Screensaver 3.11.zip
c:\documents and settings\Dany\Application Data\m\shared\StartUpTuner
c:\documents and settings\Dany\Application Data\m\shared\stopwatch 1.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Stud PE 2.4.0.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Sun PDF Import Extension 0.3.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Superversion Portuguese PPC 3.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Symantec.Norton.Internet.Security.2006-Keygen.zip
c:\documents and settings\Dany\Application Data\m\shared\Temas.De.Séries.Infantis.Do.Canal.Panda.zip
c:\documents and settings\Dany\Application Data\m\shared\The Autumn Blues Screensaver 1.4a.zip
c:\documents and settings\Dany\Application Data\m\shared\TimerTime 1.2.zip
c:\documents and settings\Dany\Application Data\m\shared\Tinysoar DVD Ripper 1.6.2.zip
c:\documents and settings\Dany\Application Data\m\shared\torrenTools toolbar for IE 4.5.126.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Turbo Favorites Checker 3.0.zip
c:\documents and settings\Dany\Application Data\m\shared\TypeAndRun 4.7 Beta 6.zip
c:\documents and settings\Dany\Application Data\m\shared\VooDoo cIRCle 1.1 Beta 32.zip
c:\documents and settings\Dany\Application Data\m\shared\Wild forest 3D 1.zip
c:\documents and settings\Dany\Application Data\m\shared\XKat 2.02.zip
c:\documents and settings\Dany\Application Data\m\shared\XP Home User Manager 2.1.zip
c:\documents and settings\Dany\Application Data\m\shared\Z-Maestro 0.13.0.0.zip
c:\documents and settings\Dany\Application Data\m\shared\Zero Media Convertor Studio Pack 1.02.zip
c:\documents and settings\Dany\Application Data\m\srvlist.oct
c:\program files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
c:\windows\system32\ban_list.txt
c:\windows\system32\cfabbfedd2_r.dll
c:\windows\system32\mdelk.exe
c:\windows\system32\wintems.exe
H:\Autorun.inf
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_SROSA
-------\Legacy_SROSA
-------\Legacy_SK9OU0S
-------\Service_sK9Ou0s
((((((((((((((((((((((((((((( Fichiers créés du 2008-12-14 au 2009-01-14 ))))))))))))))))))))))))))))))))))))
.
2009-01-14 15:34 . 2009-01-14 16:18 <REP> d-------- c:\documents and settings\Dany\.housecall6.6
2009-01-14 14:35 . 2009-01-14 20:13 <REP> d--h----- c:\documents and settings\Dany\Application Data\drivers
2009-01-03 15:52 . 2008-04-13 19:45 32,128 --a------ c:\windows\system32\drivers\usbccgp.sys
2009-01-03 15:52 . 2008-04-13 19:45 32,128 --a--c--- c:\windows\system32\dllcache\usbccgp.sys
2009-01-03 15:51 . 2009-01-03 15:51 <REP> d-------- c:\windows\system32\SupportAppXL
2009-01-03 15:51 . 2009-01-06 11:57 <REP> d-------- c:\program files\Clé Internet de prêt
2009-01-03 15:51 . 2008-07-08 09:11 103,936 --a------ c:\windows\system32\drivers\ZTEusbser6k.sys
2009-01-03 15:51 . 2008-07-08 09:11 103,936 --a------ c:\windows\system32\drivers\ZTEusbnmeaext.sys
2009-01-03 15:51 . 2008-07-08 09:11 103,936 --a------ c:\windows\system32\drivers\ZTEusbnmea.sys
2009-01-03 15:51 . 2008-07-08 09:11 103,936 --a------ c:\windows\system32\drivers\ZTEusbmdm6k.sys
2008-12-26 16:52 . 2008-12-26 16:56 <REP> d-------- c:\program files\Lavasoft
2008-12-22 21:11 . 2008-12-22 21:11 <REP> d-------- c:\documents and settings\All Users.WINDOWS\Application Data\Messenger Plus!
2008-12-22 14:38 . 2008-12-22 14:38 <REP> d-------- c:\program files\MessengerPlus! 3
2008-12-22 14:38 . 2008-12-22 14:39 <REP> d-------- c:\program files\Adverts
2008-12-22 14:02 . 2008-12-22 15:01 <REP> d-------- c:\documents and settings\Dany\Application Data\MSNInstaller
2008-12-20 08:42 . 2008-12-26 16:51 <REP> d-------- c:\program files\Fichiers communs\Wise Installation Wizard
2008-12-20 08:42 . 2008-12-20 08:42 <REP> d-------- c:\documents and settings\All Users.WINDOWS\Application Data\TuneUp Software
2008-12-20 08:42 . 2008-12-20 08:42 306,432 --a------ c:\windows\system32\TuneUpDefragService.exe
2008-12-20 08:42 . 2007-12-20 10:41 29,440 --a------ c:\windows\system32\uxtuneup.dll
2008-12-17 17:16 . 2008-12-17 17:16 0 --a------ c:\windows\Videodeluxe.INI
2008-12-17 15:55 . 2009-01-08 18:22 <REP> d-------- c:\documents and settings\Dany\Application Data\MAGIX
2008-12-17 15:54 . 2008-12-17 15:54 0 --a------ c:\windows\musicmaker.INI
2008-12-17 15:52 . 2003-04-18 15:29 44,544 --a------ c:\windows\system32\msxml4a.dll
2008-12-17 15:51 . 2001-05-11 13:18 420,240 --a------ c:\windows\system32\mpg4c32.dll
2008-12-17 15:51 . 2001-05-16 17:54 309,616 --a------ c:\windows\system32\wmv8dmod.dll
2008-12-17 15:51 . 2001-03-26 04:41 245,760 --a------ c:\windows\system32\mp4sds32.ax
2008-12-17 15:37 . 2008-12-17 16:18 <REP> d-------- C:\MAGIX
2008-12-17 15:37 . 2002-09-20 23:33 1,089,536 --a------ c:\windows\system32\ROBOEX32.DLL
2008-12-17 15:37 . 2005-11-09 18:13 475,136 --a------ c:\windows\system32\mgxoschk.dll
2008-12-17 15:37 . 1998-10-15 16:28 85,504 --a------ c:\windows\system32\HtmlWH.dll
2008-12-17 15:37 . 2005-11-10 12:16 2,994 --a------ c:\windows\mgxoschk.ini
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-14 18:06 --------- d-----w c:\program files\Netcraft Toolbar
2009-01-14 13:34 --------- d-----w c:\program files\eMule
2009-01-09 15:45 --------- d-----w c:\documents and settings\Dany\Application Data\Skype
2009-01-09 15:43 --------- d-----w c:\documents and settings\Dany\Application Data\skypePM
2009-01-03 14:51 --------- d--h--w c:\program files\InstallShield Installation Information
2009-01-02 22:08 --------- d-----w c:\documents and settings\Dany\Application Data\SolSuite
2009-01-01 16:38 --------- d-----w c:\program files\TomTom HOME
2008-12-26 22:34 --------- d-----w c:\documents and settings\Dany\Application Data\LimeWire
2008-12-26 15:52 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Lavasoft
2008-12-20 07:44 --------- d-----w c:\program files\TuneUp Utilities 2008
2008-12-17 16:18 --------- d-----w c:\documents and settings\Dany\Application Data\Desktopicon
2008-12-13 14:23 --------- d-----w c:\program files\adslTV
2008-12-12 20:30 --------- d-----w c:\documents and settings\Dany\Application Data\Vso
2008-12-12 20:24 3,532 ----a-w C:\drmHeader.bin
2008-12-11 10:57 333,952 ----a-w c:\windows\system32\drivers\srv.sys
2008-12-10 15:12 --------- d-----w c:\documents and settings\Dany\Application Data\uTorrent
2008-12-08 17:54 --------- d-----w c:\documents and settings\Dany\Application Data\dvdcss
2008-12-08 16:35 --------- d-----w c:\program files\Mp3tag
2008-12-08 16:34 --------- d-----w c:\documents and settings\Dany\Application Data\Mp3tag
2008-12-08 09:16 --------- d-----w c:\program files\uTorrent
2008-12-07 20:55 --------- d-----w c:\program files\Creative
2008-12-07 17:01 --------- d-----w c:\program files\IsoBuster
2008-12-06 14:09 --------- d-----w c:\program files\Java
2008-12-02 17:37 --------- d-----w c:\documents and settings\Dany\Application Data\XnView
2008-12-01 17:05 --------- d-----w c:\program files\hp deskjet 840c series
2008-11-30 20:40 --------- d-----w c:\program files\XnView
2008-11-30 17:42 --------- d-----w c:\program files\Diaporama
2008-11-30 16:33 --------- d-----w c:\program files\Photo Story 3 for Windows
2008-11-26 20:17 --------- d-----w c:\program files\Unlocker
2008-11-24 14:18 --------- d-----w c:\program files\jv16 PowerTools 2007
2008-11-24 13:59 --------- d-----w c:\documents and settings\Dany\Application Data\Nikon
2008-11-24 13:40 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Macrovision
2008-11-24 09:59 --------- d-----w c:\program files\Fichiers communs\Adobe
2008-11-24 09:58 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\NOS
2008-11-24 09:53 --------- d-----w c:\program files\INSPECTOR
2008-11-23 16:04 --------- d-----w c:\documents and settings\Dany\Application Data\DivX
2008-11-23 14:16 --------- d-----w c:\documents and settings\Dany\Application Data\vlc
2008-11-22 08:44 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\TomTom
2008-11-22 08:42 --------- d-----w c:\documents and settings\Dany\Application Data\InstallShield
2008-11-22 08:41 --------- d-----w c:\program files\TomTom DesktopSuite
2008-11-21 20:23 --------- d-----w c:\program files\Fichiers communs\Nero
2008-11-21 20:23 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Nero
2008-11-21 16:30 --------- d-----w c:\documents and settings\Dany\Application Data\Nero
2008-11-21 15:01 --------- d-----w c:\program files\microsoft frontpage
2008-11-21 10:14 --------- d-----w c:\documents and settings\Dany\Application Data\ACD Systems
2008-11-21 10:12 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\ACD Systems
2008-11-21 09:31 --------- d-----w c:\program files\SolSuite
2008-11-20 23:05 --------- d-----w c:\program files\DivX
2008-11-20 22:49 --------- d-----w c:\program files\XviD
2008-11-20 22:35 --------- d-----w c:\program files\VideoLAN
2008-11-20 22:21 --------- d-----w c:\program files\SpywareBlaster
2008-11-20 22:21 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\TEMP
2008-11-20 22:16 --------- d-----w c:\program files\Skype
2008-11-20 21:59 --------- d-----w c:\documents and settings\Dany\Application Data\IcoFX
2008-11-20 17:43 --------- d-----w c:\program files\Neuf
2008-11-20 15:55 --------- d-----w c:\documents and settings\Dany\Application Data\ATI
2008-11-20 15:40 --------- d-----w c:\program files\ATI Technologies
2008-11-20 14:47 --------- d-----w c:\program files\Fichiers communs\Skype
2008-11-20 14:47 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Skype
2008-11-20 14:29 --------- d-----w c:\program files\Alwil Software
2008-11-20 10:38 --------- d-----w c:\documents and settings\Dany\Application Data\TuneUp Software
2008-11-20 10:03 --------- d-----w c:\program files\VIA Technologies, Inc
2008-11-20 09:06 --------- d-----w c:\documents and settings\Dany\Application Data\ArcSoft
2008-11-19 13:49 --------- d-----w c:\program files\PhotoFiltre Studio
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\NBHShellExt]
@="{8D2223A2-B3C6-4e32-B096-CDD11F628C60}"
[HKEY_CLASSES_ROOT\CLSID\{8D2223A2-B3C6-4e32-B096-CDD11F628C60}]
2008-06-10 12:29 97064 --a------ c:\program files\Nero\Nero8\InCD\NBHShx.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"TuneUp MemOptimizer"="c:\program files\TuneUp Utilities 2008\MemOptimizer.exe" [2007-12-21 197888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-01-14 81000]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe" [2006-05-10 90112]
"NeroFilterCheck"="c:\program files\Fichiers communs\Nero\Lib\NeroCheck.exe" [2008-06-19 570664]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-08 2221352]
"SecurDisc"="c:\program files\Nero\Nero8\InCD\NBHGui.exe" [2008-06-10 2049320]
"InCD"="c:\program files\Nero\Nero8\InCD\InCD.exe" [2008-06-10 1083176]
"TomTomHOME.exe"="c:\program files\TomTom HOME\TomTomHOME.exe" [2008-02-14 3977128]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-11-15 196608]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-06 136600]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"Jet Detection"="c:\program files\Creative\SBLive\PROGRAM\ADGJDet.exe" [2001-11-29 28672]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-01-14 15872]
"MessengerPlus3"="c:\program files\MessengerPlus! 3\MsgPlus.exe" [2008-12-22 190024]
"WINDVDPatch"="CTHELPER.EXE" [2002-07-02 c:\windows\system32\CTHELPER.EXE]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users.WINDOWS\Menu D‚marrer\Programmes\D‚marrage\
Adobe Gamma Loader.lnk - c:\program files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2007-11-08 113664]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.JPGL"= jpgl.dll
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
path=c:\documents and settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Fichiers communs\\Nero\\Nero Web\\SetupX.exe"=
"c:\\Program Files\\adslTV\\adsltv.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"31336:UDP"= 31336:UDP:adsltv
R3 DCamUSBCompany;P35U Camera Capture;c:\windows\system32\drivers\p35u.sys [2006-07-10 98272]
R4 NeroRegInCDSrv;Nero Registry InCD Service;c:\program files\Nero\Nero8\InCD\NBHRegInCDSrv.exe [2008-06-10 53032]
S1 aswSP;avast! Self Protection; [x]
S3 getPlus(R) Helper;getPlus(R) Helper;c:\program files\NOS\bin\getPlus_HelperSvc.exe --> c:\program files\NOS\bin\getPlus_HelperSvc.exe [?]
S3 Usbiys;Usbiys; [x]
S4 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys --> c:\windows\system32\DRIVERS\aswFsBlk.sys [?]
--- Autres Services/Pilotes en mémoire ---
*Deregistered* - InCDRec
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ba95a981-b871-11dd-bb1d-000c76aeba04}]
\Shell\AutoRun\command - H:\InstallTomTomHOME.exe
.
Contenu du dossier 'Tâches planifiées'
2009-01-09 c:\windows\Tasks\Maintenance en 1 clic.job
- c:\program files\TuneUp Utilities 2008\OneClick.exe [2007-12-21 15:39]
.
- - - - ORPHELINS SUPPRIMES - - - -
HKCU-Run-IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe
MSConfigStartUp-Device Detector - DevDetect.exe
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://home.neuf.fr/
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-14 20:20:31
Windows 5.1.2600 Service Pack 3 NTFS
Recherche de processus cachés ...
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------
- - - - - - - > 'winlogon.exe'(656)
c:\windows\system32\Ati2evxx.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Nero\Nero8\InCD\InCDsrv.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\system32\IoctlSvc.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
c:\program files\ATI Technologies\ATI.ACE\CLI.exe
.
**************************************************************************
.
Heure de fin: 2009-01-14 20:51:56 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-01-14 19:51:53
Avant-CF: 38,418,075,648 octets libres
Après-CF: 38,180,372,480 octets libres
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect
A voir également:
- Comprendre resultat test combofix
- Test performance pc - Guide
- Steam deck oled test - Guide
- Test disque dur - Télécharger - Informations & Diagnostic
- Resultat foot - Télécharger - Vie quotidienne
- Test composant pc - Guide
1 réponse
bonsoir,
sa as du te soulager la...mais vu la quantité il doit surement rester des choses
telecharge hijackthis
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html
choisit "do a scan and save the log" et poste le rapport
sa as du te soulager la...mais vu la quantité il doit surement rester des choses
telecharge hijackthis
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html
choisit "do a scan and save the log" et poste le rapport
