Ordinateur infecté par ma copine de chambre

Résolu

labelettedu93 -
Utilisateur anonyme - 11 févr. 2009 à 13:26

Bonjour a tous,
Ma copine de chambre a infecté mon pc portable en installant un fichier sans me demander. Et elle me l'a infecter. Je ne m'y connais pas trop mais j'ai fait un rapport hijack qqch et j'ai remarqué que vyro...dll été pas sur (selon le site de Hijackthis). Donc j'ai fait combo fix en précisant la suppresion de vyro. Mon pc est moins ralenti mais plus internet (en wifi) et pas sur d'avoir vraiement supprimer la menace.
QQun peut m'aider?

ComboFix 09-02-10.01 - Ophelie 2009-02-10 23:14:47.4 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.1.1036.18.1022.684 [GMT 1:00]
Lancé depuis: c:\documents and settings\Ophelie\Bureau\Combo-Fix.exe
Commutateurs utilisés :: c:\documents and settings\Ophelie\Bureau\CFScript.txt
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated)
* Un nouveau point de restauration a été créé

AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!

FILE ::
c:\windows\system32\vyrorwml.dll
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Ophelie\Application Data\drivers\downld
c:\documents and settings\Ophelie\Application Data\drivers\downld\117906.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\122531.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\1250609.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\1250843.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\1266250.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\131750.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\132765.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\133343.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\134078.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\135562.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\136015.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\144296.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\145140.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\145484.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\164687.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\181046.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\181328.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\217171.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\217890.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\217906.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\219968.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\220703.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\220718.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\231203.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\232718.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\233156.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\233906.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\234609.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\235046.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\253437.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\254156.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\254484.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\288031.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\288906.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\288953.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\298640.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\299265.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\299625.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\300234.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\301578.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\301953.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\311421.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\313125.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\313750.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\344421.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\356125.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\356390.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37675187.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37676843.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37676859.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37691515.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37692984.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37694078.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37695312.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37697625.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37698203.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37708062.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37708937.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37709484.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\37728468.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\386125.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\386750.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\451109.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\451859.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\451890.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\463453.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\465109.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\466156.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\468656.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\470015.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\470828.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\498234.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\500015.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\500984.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\909968.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\910187.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\910203.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\924859.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\926140.exe
c:\documents and settings\Ophelie\Application Data\drivers\downld\933281.exe
c:\documents and settings\Ophelie\Application Data\drivers\srosa2.sys
c:\documents and settings\Ophelie\Application Data\drivers\wfsintwq.sys
c:\documents and settings\Ophelie\Application Data\drivers\winupgro.exe
c:\documents and settings\Ophelie\Application Data\m
c:\documents and settings\Ophelie\Application Data\m\data.oct
c:\documents and settings\Ophelie\Application Data\m\flec006.exe
c:\documents and settings\Ophelie\Application Data\m\list.oct
c:\documents and settings\Ophelie\Application Data\m\shared\!.avira.antivir.personaledition.premium.seriennummer.crack.zip
c:\documents and settings\Ophelie\Application Data\m\shared\3D Frame Library 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\3D Titanic Screensaver 1.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\4Musics Protected WMA to MP3 Converter 4.5.zip
c:\documents and settings\Ophelie\Application Data\m\shared\AbRemote Basic 2.8.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Access 404 in Tunisia! 1.0.6.zip
c:\documents and settings\Ophelie\Application Data\m\shared\AgataSoft TimeLock 1.5.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Aimersoft DVD to iPhone Converter 2.0.1.12.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Alive! Jigsaw Producer 1.6.zip
c:\documents and settings\Ophelie\Application Data\m\shared\AoA DVD to iPod 2.0.5.zip
c:\documents and settings\Ophelie\Application Data\m\shared\aPrivacy 1.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Atrise Lutcurve 1.2.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Attachment Explorer 1.00.zip
c:\documents and settings\Ophelie\Application Data\m\shared\BioMolecula 3D ScreenSaver 1.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Blog Reader Screensaver 1.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Clinic Assistant 6.4.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Comfortable PDF to Text 1.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Convexsoft Video to FLV SWF GIF Converter 4.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Dailymotion Video Downloader 3.11.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Desktop Accelerator 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Disable Windows XP Firewall 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Diskeeper Pro Premier 2009 13.0.835.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Divx Avi Asf Wmv Wma Rm Rmvb Fix Joiner 3.23.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Dual DVD copy Platinum 3.25.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Excel-MySQL-Magic.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Flash Image Gallery 2.0.6.zip
c:\documents and settings\Ophelie\Application Data\m\shared\FreeLogger 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Imesh Acceleration Patch 5.9.6.zip
c:\documents and settings\Ophelie\Application Data\m\shared\In the News Gadget 1.0.0.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\InjectedDLL 1.00.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Internet Cell Boost 1.0.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Internet Secure Tunneling 2.0.0.244.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Jannisarys Word 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\KSEG 0.401.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Led Pointers.zip
c:\documents and settings\Ophelie\Application Data\m\shared\MÂ²Convert for iPod 2.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Math Mechanixs 1.4.0.2.zip
c:\documents and settings\Ophelie\Application Data\m\shared\mCPU Meter 0.10.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Mini Battery 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Moo!!Moo!!! 2.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\MultiZilla 1.8.2.0i.zip
c:\documents and settings\Ophelie\Application Data\m\shared\MySpace Booster 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\NetSend 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\nHancer 2.4.2.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Opera Widget Search 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Perl Scripting Tool 2.2.68.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Plato DVD Ripper Pro 6.68.16.zip
c:\documents and settings\Ophelie\Application Data\m\shared\PS DVD To MPEG Converter 1.10.zip
c:\documents and settings\Ophelie\Application Data\m\shared\PSP Video Converter 1.0.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\QE SuperResolution 0.1.0.550.zip
c:\documents and settings\Ophelie\Application Data\m\shared\quikSlip for BVCommerce 2004 1.7.2.zip
c:\documents and settings\Ophelie\Application Data\m\shared\RegexImporter 1.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\RTU result 1.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\SMWordPad 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Speaker Notification 0.1.2.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\SQueAl 3.0.2.zip
c:\documents and settings\Ophelie\Application Data\m\shared\SysImage HTML2Image 1.5.zip
c:\documents and settings\Ophelie\Application Data\m\shared\TagSifter 4.1.3.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Test Your Self 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\The New 7 Wonders of the World Free 3D Screensaver 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\TruckSaver 1.02.zip
c:\documents and settings\Ophelie\Application Data\m\shared\TrueClean 1.2.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Video Capturix Suite 2008 8.10.930.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Voice-Warper 1.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\WD Armed Forces Screensaver 1.02.zip
c:\documents and settings\Ophelie\Application Data\m\shared\WengoPhone 2.1.2.zip
c:\documents and settings\Ophelie\Application Data\m\shared\Wingrade 2.5.zip
c:\documents and settings\Ophelie\Application Data\m\shared\WormGuard 4.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\WTD Real Estate Agency 1.0.0.zip
c:\documents and settings\Ophelie\Application Data\m\shared\xNeat Pro 3.0.0.1.zip
c:\documents and settings\Ophelie\Application Data\m\shared\XSL Reference.zip
c:\documents and settings\Ophelie\Application Data\m\shared\YSlow 0.9.5b2.zip
c:\documents and settings\Ophelie\Application Data\m\srvlist.oct
c:\program files\Windows Live\Messenger\MsnMsgr.exe
c:\windows\a3kebook.ini
c:\windows\akebook.ini
c:\windows\ANS2000.INI
c:\windows\system32\drivers\down
c:\windows\system32\drivers\down\333203.exe
c:\windows\system32\drivers\down\466953.exe
c:\windows\system32\lmwroryv.ini
c:\windows\system32\pthreadGC2.dll
c:\windows\system32\tmp.reg

.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_SROSA
-------\Legacy_SROSA
-------\Legacy_BOONTY_GAMES
-------\Service_Boonty Games

((((((((((((((((((((((((((((( Fichiers créés du 2009-01-10 au 2009-02-10 ))))))))))))))))))))))))))))))))))))
.

2009-02-10 21:49 . 2009-02-10 23:18 <REP> d--h----- c:\documents and settings\Ophelie\Application Data\drivers
2009-02-10 19:37 . 2008-12-20 23:46 6,066,688 --a------ c:\windows\system32\SET110.tmp
2009-02-10 19:37 . 2008-12-20 23:47 1,160,192 --a------ c:\windows\system32\SET101.tmp
2009-02-10 19:37 . 2008-12-20 23:47 826,368 --a------ c:\windows\system32\SETFF.tmp
2009-02-10 19:37 . 2008-12-20 23:47 477,696 --a------ c:\windows\system32\SET107.tmp
2009-02-10 19:37 . 2008-12-20 23:46 459,264 --a------ c:\windows\system32\SET10A.tmp
2009-02-10 19:37 . 2008-12-20 23:46 383,488 --a------ c:\windows\system32\SET112.tmp
2009-02-10 19:37 . 2008-12-20 23:46 267,776 --a------ c:\windows\system32\SET10E.tmp
2009-02-10 19:37 . 2008-12-20 23:47 233,472 --a------ c:\windows\system32\SET100.tmp
2009-02-10 19:37 . 2008-12-20 23:46 124,928 --a------ c:\windows\system32\SET11A.tmp
2009-02-10 19:37 . 2008-12-20 23:47 105,984 --a------ c:\windows\system32\SET102.tmp
2009-02-10 19:37 . 2008-12-20 23:46 63,488 --a------ c:\windows\system32\SET117.tmp
2009-02-10 19:37 . 2008-12-20 23:46 52,224 --a------ c:\windows\system32\SET109.tmp
2009-02-06 23:41 . 2009-02-06 23:41 <REP> d-------- c:\program files\ffdshow
2009-02-06 23:41 . 2007-07-10 17:10 547 --a------ c:\windows\system32\ff_vfw.dll.manifest
2009-02-06 23:08 . 2009-02-06 23:08 <REP> d-------- c:\program files\Haali
2009-02-03 23:31 . 2004-01-25 00:00 70,656 --a------ c:\windows\system32\yv12vfw.dll
2009-01-31 19:41 . 2004-02-22 10:11 719,872 --a------ c:\windows\system32\devil.dll
2009-01-31 19:41 . 2007-05-17 17:30 318,976 --a------ c:\windows\system32\avisynth.dll
2009-01-31 17:50 . 2009-01-31 17:49 410,984 --a------ c:\windows\system32\deploytk.dll
2009-01-31 17:50 . 2009-01-31 17:49 73,728 --a------ c:\windows\system32\javacpl.cpl
2009-01-31 17:48 . 2009-02-03 22:47 <REP> d-------- c:\program files\LimeWire
2009-01-29 18:31 . 2009-01-29 18:31 <REP> d-------- C:\Video
2009-01-17 14:20 . 2009-02-03 22:47 8,192 --ahs---- c:\windows\Thumbs.db
2009-01-17 14:20 . 2009-01-17 14:20 7,680 --ahs---- c:\documents and settings\Thumbs.db
2009-01-16 21:15 . 2009-01-16 21:15 3,594,752 --a------ c:\windows\system32\SET108.tmp
2009-01-15 10:55 . 2009-01-15 10:55 <REP> d-------- c:\program files\Boilsoft Video Joiner
2009-01-11 09:50 . 2009-01-11 09:50 <REP> d-------- c:\program files\eRightSoft
2009-01-11 09:50 . 2006-09-12 12:46 227,328 -r-hs---- c:\windows\system32\ac3DX.ax
2009-01-11 09:50 . 2008-03-16 14:30 216,064 -r-hs---- c:\windows\system32\nbDX.dll
2009-01-11 09:50 . 2006-03-10 22:48 169,472 -r-hs---- c:\windows\system32\MatroskaDX.ax
2009-01-11 09:50 . 2006-05-03 11:06 163,328 -r-hs---- c:\windows\system32\flvDX.dll
2009-01-11 09:50 . 2005-11-25 21:46 161,792 -r-hs---- c:\windows\system32\RealMediaDX.ax
2009-01-11 09:50 . 2006-01-13 00:23 123,904 -r-hs---- c:\windows\system32\AVCDX.ax
2009-01-11 09:50 . 2003-11-21 00:00 54,784 -r-hs---- c:\windows\system32\RLAPEDec.ax
2009-01-11 09:50 . 2004-04-27 00:00 37,888 -r-hs---- c:\windows\system32\RLMPCDec.ax
2009-01-11 09:50 . 2007-02-21 12:47 31,232 -r-hs---- c:\windows\system32\msfDX.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-10 21:42 --------- d-----w c:\program files\CCleaner
2009-02-10 20:56 --------- d-----w c:\program files\Hijackthis Version Française
2009-02-10 20:49 --------- d-----w c:\program files\eMule
2009-02-10 20:46 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP
2009-02-10 20:04 --------- d-----w c:\documents and settings\All Users\Application Data\Microsoft Help
2009-02-10 13:41 --------- d-----w c:\documents and settings\All Users\Application Data\Google Updater
2009-02-08 11:14 --------- d-----w c:\program files\DivX
2009-02-06 22:06 --------- d-----w c:\program files\K-Lite Codec Pack
2009-02-03 21:47 8,192 --sha-w c:\program files\Thumbs.db
2009-02-03 21:47 --------- d-----w c:\program files\vanBasco's Karaoke Player
2009-02-03 21:47 --------- d-----w c:\program files\QuickTime
2009-02-03 10:49 --------- d-----w c:\program files\Boilsoft Video Splitter
2009-02-03 08:36 --------- d-----w c:\program files\IncrediMail
2009-01-31 16:49 --------- d-----w c:\program files\Java
2009-01-29 17:28 --------- d-----w c:\program files\AviSynth 2.5
2009-01-05 21:42 --------- d-----w c:\program files\Microsoft Works
2008-12-19 12:06 --------- d-----w c:\program files\Bonjour
2008-12-11 10:57 333,952 ----a-w c:\windows\system32\drivers\srv.sys
2008-11-12 17:39 748 -c--a-w c:\documents and settings\Ophelie\Application Data\wklnhst.dat
2006-11-02 13:43 0 -c--a-w c:\documents and settings\Invité\Application Data\wklnhst.dat
2006-05-03 10:06 163,328 --sh--r c:\windows\system32\flvDX.dll
2007-02-21 11:47 31,232 --sh--r c:\windows\system32\msfDX.dll
2008-03-16 13:30 216,064 --sh--r c:\windows\system32\nbDX.dll
2008-09-18 09:31 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\Historique\History.IE5\MSHist012008091820080919\index.dat
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"<NO NAME>"="c:\program files\Internet Explorer\IEXPLORE.EXE" [2008-12-19 634024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EPSON Stylus Photo RX520 Series"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIAGE.EXE" [2005-04-07 98304]
"VAIOCameraUtility"="c:\program files\Sony\VAIO Camera Utility\VCUServe.exe" [2005-12-27 69632]
"Switcher.exe"="c:\program files\Sony\Wireless Switch Setting Utility\Switcher.exe" [2006-02-14 176128]
"SsAAD.exe"="c:\progra~1\Sony\SONICS~1\SsAAD.exe" [2006-01-07 81920]
"SonyPowerCfg"="c:\program files\Sony\VAIO Power Management\SPMgr.exe" [2006-01-26 212992]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-04-18 86016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-04-18 7561216]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2004-02-20 32768]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2004-11-17 118784]
"VAIO Update 3"="c:\program files\Sony\VAIO Update 3\VAIOUpdt.exe" [2007-01-25 546936]
"avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2009-02-10 266497]
"AppleSyncNotifier"="c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-11-07 111936]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 39792]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-11-04 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-11-20 290088]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-01-31 136600]
"Mouse Suite 98 Daemon"="ICO.EXE" [2002-03-14 c:\windows\system32\ico.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"Picasa Media Detector"="c:\program files\Picasa2\PicasaMediaDetector.exe" [2008-08-21 443968]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Audio Filter.lnk - c:\program files\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe [2006-04-29 5649408]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2006-03-09 13:51 73728 c:\windows\system32\VESWinlogon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.i420"= i420vfw.dll

[HKLM\~\startupfolder\C:^Documents and Settings^Ophelie^Menu Démarrer^Programmes^Démarrage^VAIOIFWakeup.lnk]
path=c:\documents and settings\Ophelie\Menu Démarrer\Programmes\Démarrage\VAIOIFWakeup.lnk
backup=c:\windows\pss\VAIOIFWakeup.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk
backup=c:\windows\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0]
--a------ 2005-03-03 20:47 483328 c:\program files\Adobe\Acrobat 7.0\Distillr\acrotray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a--c--- 2007-10-10 19:51 39792 c:\program files\Adobe\Reader 8.0\Reader\Reader_SL.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IncrediMail]
--a------ 2009-01-27 13:10 251264 c:\program files\IncrediMail\bin\IncMail.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-11-20 13:20 290088 c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDService.exe]
-ra--c--- 2004-07-06 13:15 40960 c:\program files\Utimaco\SafeGuard PrivateDisk\pdservice.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-11-04 10:30 413696 c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a--c--- 2005-11-10 12:03 36975 c:\program files\Java\jre1.5.0_06\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"iPod Service"=3 (0x3)
"Spooler"=2 (0x2)
"Norton Ghost"=2 (0x2)
"SSScsiSV"=3 (0x3)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\IncrediMail\\bin\\IMApp.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\svchost.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImLc.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Sony\\Click to DVD 2\\CtoDvd.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=

R1 PrivateDisk;PrivateDisk;c:\windows\system32\drivers\privatediskm.sys [2004-07-06 45627]
R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB;c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe -sVAIO_VEDB --> c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe -sVAIO_VEDB [?]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [2006-03-28 29184]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2006-03-28 226304]
S3 AVerM115S;AVerM115S service;c:\windows\system32\drivers\AVerM115S.sys [2006-03-28 741376]
S3 fbxusb;Carte réseau virtuelle FreeBox USB;c:\windows\system32\drivers\fbxusb32.sys [2004-10-20 21344]
S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB;c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE -i VAIO_VEDB --> c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE -i VAIO_VEDB [?]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fbfb4a2f-20ea-11dd-b28f-e0748146bc6a}]
\Shell\AutoRun\command - I:\LaunchU3.exe -a

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{621FCD24-4498-4324-A81E-07D331376EDF}]
c:\program files\PixiePack Codec Pack\InstallerHelper.exe
.
Contenu du dossier 'Tâches planifiées'

2009-01-30 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2009-02-10 c:\windows\Tasks\User_Feed_Synchronization-{B2170FEF-773F-4E05-87F8-90E138B5F3E6}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 11:58]
.
- - - - ORPHELINS SUPPRIMES - - - -

HKCU-Run-msnmsgr - c:\program files\Windows Live\Messenger\MsnMsgr.Exe
HKLM-Run-54a58e5f - c:\windows\system32\vyrorwml.dll
HKLM-Run-StarUpdater - (no file)
MSConfigStartUp-DAEMON Tools Lite - c:\program files\DAEMON Tools Lite\daemon.exe
MSConfigStartUp-MoneyAgent - c:\program files\Microsoft Money\System\mnyexpr.exe
MSConfigStartUp-MsnMsgr - c:\program files\MSN Messenger\msnmsgr.exe
MSConfigStartUp-Norton Ghost 10 - c:\program files\Norton Ghost\Agent\GhostTray.exe
MSConfigStartUp-Skype - c:\program files\Skype\Phone\Skype.exe
MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
MSConfigStartUp-Tunebite - c:\program files\RapidSolution\Tunebite\Tunebite.exe
MSConfigStartUp-Uniblue Registry Booster - c:\program files\Uniblue\Registry Booster\RegistryBooster.exe

.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/ig?hl=fr
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyOverride = *.local
IE: &Télécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddLink.html
IE: Add to AMV Converter... - c:\program files\MP3 Player Utilities 4.07\AMVConverter\grab.html
IE: Ajouter un site de support RSS à VAIO Information FLOW - c:\program files\Sony\VAIO Information FLOW\aiesc.html
IE: MediaManager tool grab multimedia file - c:\program files\MP3 Player Utilities 4.07\MediaManager\grab.html
IE: Tout t&élécharger avec NetTransport - c:\program files\Xi\NetTransport 2\NTAddList.html
IE: Transfert par Image Converter 2 Plus - c:\program files\Sony\Image Converter 2\menu.htm
TCP: {80B9D5E7-0BF1-4CDA-A12B-D563BAE94AE2} = 212.27.40.241,212.27.40.240
FF - ProfilePath - c:\documents and settings\Ophelie\Application Data\Mozilla\Firefox\Profiles\ggmtp1g1.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - plugin: c:\program files\Google\Google Updater\2.4.1399.3742\npCIDetect13.dll
FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava11.dll
FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava12.dll
FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava13.dll
FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava14.dll
FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJava32.dll
FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPJPI150_06.dll
FF - plugin: c:\program files\Java\jre1.5.0_06\bin\NPOJI610.dll
FF - plugin: c:\program files\Picasa2\npPicasa2.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-10 23:23:54
Windows 5.1.2600 Service Pack 3 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés:

**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_USERS\S-1-5-21-4077828292-1652331400-2663823044-1006\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_LOCAL_MACHINE\software\Intel\Wireless\Folders\¬ q*2*]
"Path"="c:\\WINDOWS\\system32\\config\\systemprofile\\Application Data\\Intel\\Wireless\\"
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(760)
c:\windows\system32\VESWinlogon.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\program files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
c:\windows\system32\nvsvc32.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\SigmaTel\C-Major Audio\WDM\stacsv.exe
c:\program files\Sony\VAIO Event Service\VESMgr.exe
c:\program files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
c:\program files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
c:\windows\ehome\mcrdsvc.exe
c:\program files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\program files\Apoint\ApntEx.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Heure de fin: 2009-02-10 23:32:47 - La machine a redémarré [Ophelie]
ComboFix-quarantined-files.txt 2009-02-10 22:32:43
ComboFix2.txt 2008-06-08 15:01:40

Avant-CF: 864,620,544 octets libres
Après-CF: 1,256,235,008 octets libres

Current=6 Default=6 Failed=5 LastKnownGood=7 Sets=1,2,3,4,5,6,7
451 --- E O F --- 2009-02-10 20:08:32

Afficher la suite

A voir également:

Ordinateur infecté par ma copine de chambre
Ordinateur - Guide
Ordinateur qui rame - Guide
Clavier de l'ordinateur - Guide
Réinitialiser ordinateur - Guide
Qu'est ce qui se lance au démarrage de l'ordinateur - Guide

11 réponses

Réponse 1 / 11

labelettedu93

Je souhaite préciser que depuis la manip plus de wifi sur mon ordi.
Merci

Réponse 2 / 11

Utilisateur anonyme

Salut ,

Telecharge FindyKill ici : FindyKill sur ton bureau :

# Lance l installation avec les parametres par default

# Double clic sur le raccourci FindyKill sur ton bureau

# Choisi la langue de ton choix

# Au menu principal,choisi l option 1 (Recherche)

# Post le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé a la racine du disque

Tuto : malekal
Tuto : 01net

labelettedu93

Bonjour,
Merci de m'aider.

J'ai lancé le programme et il m'a afficher ca après avoir scanner un peu :

Exception Processing Message c0000013 Parameters 75afbf7c 4 75afbf7c 75afx7c

J'abandonne ou je continue le scan (il est en pause)?

Réponse 3 / 11

Utilisateur anonyme

continue

labelettedu93

Re,
Voici le rapport.
----

############################## [ FindyKill V4.716 ]

# User : Ophelie (Administrateurs) # MYVAIO
# Update on 10/02/09 by Chiquitine29
# Start at: 11:27:50 | 11/02/2009

# Genuine Intel(R) CPU T2300 @ 1.66GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.11
# Windows Firewall Status : Enabled
# AV : Avira AntiVir PersonalEdition 8.0.1.30 [ Enabled | Updated ]

# C:\ # Disque fixe local (VAIO) # NTFS
# D:\ # Disque fixe local (VAIO) # NTFS
# E:\ # Disque amovible
# F:\ # Disque amovible
# G:\ # Disque amovible (AVD DRIVE) # FAT
# H:\ # Disque CD-ROM

############################## [ Processus actifs ]

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAGE.EXE
C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe
C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\WINDOWS\system32\ICO.EXE
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## [ Fichiers / Dossiers infectieux C:\ ]

################## [ C:\WINDOWS ]

################## [ C:\WINDOWS\Prefetch ]

################## [ C:\WINDOWS\system32 ]

################## [ C:\WINDOWS\system32\drivers ]

################## [ C:\Documents and Settings\Ophelie\Application Data ]

Found ! - "C:\Documents and Settings\Ophelie\Application Data\drivers"

################## [ C:\DOCUME~1\ALEXAN~1\LOCALS~1\Temp ]

################## [ Registre / Clés infectieuses ]

Found ! - HKEY_USERS\S-1-5-21-4077828292-1652331400-2663823044-1006\Software\Local AppWizard-Generated Applications\keygen
Found ! - HKEY_USERS\S-1-5-21-4077828292-1652331400-2663823044-1006\Software\Local AppWizard-Generated Applications\MsnMsgr
Found ! - HKEY_USERS\S-1-5-21-4077828292-1652331400-2663823044-1006\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\keygen
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\MsnMsgr
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa

################## [ Etat / Services ]

# Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

Ndisuio # Type de démarrage = 4

EapHost # Type de démarrage = 3

Ip6Fw # Type de démarrage = 4

SharedAccess # Type de démarrage = 2

wuauserv # Type de démarrage = 2

wscsvc # Type de démarrage = 2

################## [ Recherche dans supports amovibles]

# presence des fichiers :

Found ! [06/04/2008 08:46][drahs----] - C:\autorun.inf
C:\autorun.inf - This folder was created by flash disinfector !
Found ! [06/04/2008 08:46][drahs----] - D:\autorun.inf
D:\autorun.inf - This folder was created by flash disinfector !

################## [ Registre / Mountpoint2 ]

# -> Not found !

################## [ ! Fin du rapport # FindyKill V4.716 ! ]

Réponse 4 / 11

Utilisateur anonyme

--> Double clic sur le raccourci FindyKill sur ton bureau

--> Au menu principal,choisi l option 2 (Suppression)

/!\ Le pc va redémarrer, laisse travailler l outils jusqu a l apparition du message "Cleaning complete"

/!\ Ne te sert pas du pc durant la suppression , ton bureau ne sera pas accessible c est normal !

-------> ensuite post le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
Note : Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides

labelettedu93

Voila le nouveau rapport.
-----

############################## [ FindyKill V4.716 ]

# User : Ophelie (Administrateurs) # MYVAIO
# Update on 10/02/09 by Chiquitine29
# Start at: 11:50:11 | 11/02/2009

# Genuine Intel(R) CPU T2300 @ 1.66GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.11
# Windows Firewall Status : Enabled
# AV : Avira AntiVir PersonalEdition 8.0.1.30 [ Enabled | Updated ]

# C:\ # Disque fixe local (VAIO) # NTFS
# D:\ # Disque fixe local (VAIO) # NTFS
# E:\ # Disque amovible
# F:\ # Disque amovible
# H:\ # Disque CD-ROM

############################## [ Active Processes ]

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\logonui.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_Task.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\WgaTray.exe

################## [ Infected Files / Folders C:\ ]

################## [ C:\WINDOWS ]

################## [ C:\WINDOWS\Prefetch ]

Deleted ! - C:\WINDOWS\prefetch\WINUPGRO.EXE-3484E3B9.pf

################## [ C:\WINDOWS\system32 ]

################## [ C:\WINDOWS\system32\drivers ]

################## [ C:\Documents and Settings\Ophelie\Application Data ]

Deleted ! - "C:\Documents and Settings\Ophelie\Application Data\drivers"

################## [ Cleaning Temp Files... ]

################## [ Registry / Infected keys ]

Deleted ! - HKEY_USERS\S-1-5-21-4077828292-1652331400-2663823044-1006\Software\Local AppWizard-Generated Applications\keygen
Deleted ! - HKEY_USERS\S-1-5-21-4077828292-1652331400-2663823044-1006\Software\Local AppWizard-Generated Applications\MsnMsgr
Deleted ! - HKEY_USERS\S-1-5-21-4077828292-1652331400-2663823044-1006\Software\Local AppWizard-Generated Applications\winupgro

################## [ States / Restarting of services ]

# Services : [ Auto=2 / Request=3 / Disable=4 ]

Ndisuio # Type of startup = 3

EapHost # Type of startup = 2

Ip6Fw # Type of startup = 2

SharedAccess # Type of startup = 2

wuauserv # Type of startup = 2

wscsvc # Type of startup = 2

################## [ Cleaning Removable drives ]

# Deleting files :

Not deleted !! - C:\autorun.inf
Not deleted !! - D:\autorun.inf

################## [ Registry / Mountpoint2 ]

# -> Not found !

################## [ Searching Other Infections ]

# Références de comparaison Bagle MD5 :

9d5fb751 C:\Qoobox\Quarantine\C\Documents and Settings\Ophelie\Application Data\drivers\winupgro.exe.vir
ab934c2f0f137d57229ecb4de4b78d10 C:\Qoobox\Quarantine\C\Documents and Settings\Ophelie\Application Data\drivers\winupgro.exe.vir

################## [ ! End of Report # FindyKill V4.716 ! ]

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 5 / 11

Utilisateur anonyme

ok

t as retrouvé le wifi ?

Télécharge ici :

http://images.malwareremoval.com/random/RSIT.exe

random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Lis le contenu de l'écran Disclaimer puis clique sur Continue (si tu acceptes les conditions).

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt

labelettedu93

J'ai pas encore retrouvé le wifi. Je te poste les rapports tout de suite. Merci

labelettedu93

Voici le rapport log. Merci

Logfile of random's system information tool 1.05 (written by random/random)
Run by Ophelie at 2009-02-11 12:08:10
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 1 GB (3%) free of 48 GB
Total RAM: 1022 MB (62% free)

HijackThis download failed

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{B2170FEF-773F-4E05-87F8-90E138B5F3E6}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-31 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2008-11-02 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-31 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-31 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"EPSON Stylus Photo RX520 Series"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAGE.EXE [2005-04-07 98304]
"VAIOCameraUtility"=C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe [2005-12-27 69632]
"Switcher.exe"=C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2006-02-14 176128]
"SsAAD.exe"=C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe [2006-01-07 81920]
"SonyPowerCfg"=C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2006-01-26 212992]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-04-18 86016]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-04-18 7561216]
"Mouse Suite 98 Daemon"=C:\WINDOWS\system32\ICO.EXE [2002-03-14 45056]
"ISBMgr.exe"=C:\Program Files\Sony\ISB Utility\ISBMgr.exe [2004-02-20 32768]
"ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
"Apoint"=C:\Program Files\Apoint\Apoint.exe [2004-11-17 118784]
"VAIO Update 3"=C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe [2007-01-25 546936]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2009-02-10 266497]
"AppleSyncNotifier"=C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-11-07 111936]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-10-10 39792]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-11-04 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-31 136600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""=C:\Program Files\Internet Explorer\IEXPLORE.EXE [2008-12-19 634024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0]
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2005-03-03 483328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-10-10 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IncrediMail]
C:\Program Files\IncrediMail\bin\IncMail.exe [2009-01-27 251264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDService.exe]
C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe [2004-07-06 40960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2008-11-04 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe [2005-11-10 36975]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Ophelie^Menu Démarrer^Programmes^Démarrage^VAIOIFWakeup.lnk]
C:\PROGRA~1\Sony\VAIOIN~1\Wakeup.exe [2005-12-22 73728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk]
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"iPod Service"=3
"Spooler"=2
"Norton Ghost"=2
"SSScsiSV"=3

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Audio Filter.lnk - C:\Program Files\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
C:\WINDOWS\system32\VESWinlogon.dll [2006-03-09 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe"="C:\Program Files\Adobe\Photoshop Elements 4.0\AdobePhotoshopElementsMediaServer.exe:*:Disabled:Adobe Photoshop Elements Media Server"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\IncrediMail\bin\IMApp.exe"="C:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\svchost.exe"="C:\WINDOWS\system32\svchost.exe:*:Enabled:Microsoft Update"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\ImLc.exe"="C:\Program Files\IncrediMail\bin\ImLc.exe:*:Enabled:IncrediMail"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Sony\Click to DVD 2\CtoDvd.exe"="C:\Program Files\Sony\Click to DVD 2\CtoDvd.exe:*:Enabled:Click to DVD"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fbfb4a2f-20ea-11dd-b28f-e0748146bc6a}]
shell\AutoRun\command - I:\LaunchU3.exe -a

======List of files/folders created in the last 1 months======

2009-02-11 12:08:10 ----D---- C:\rsit
2009-02-11 12:08:10 ----D---- C:\Program Files\trend micro
2009-02-11 11:50:09 ----A---- C:\FindyKill.txt
2009-02-11 11:27:34 ----D---- C:\Program Files\FindyKill
2009-02-11 10:16:11 ----SHD---- C:\RECYCLER
2009-02-10 23:32:49 ----A---- C:\ComboFix.txt
2009-02-10 23:03:13 ----D---- C:\Qoobox
2009-02-10 21:03:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-02-10 19:37:54 ----A---- C:\WINDOWS\system32\SET10E.tmp
2009-02-10 19:37:53 ----A---- C:\WINDOWS\system32\SET10A.tmp
2009-02-10 19:37:53 ----A---- C:\WINDOWS\system32\SET109.tmp
2009-02-10 19:37:53 ----A---- C:\WINDOWS\system32\SET107.tmp
2009-02-10 19:37:52 ----A---- C:\WINDOWS\system32\SETFF.tmp
2009-02-10 19:37:50 ----A---- C:\WINDOWS\system32\SET11A.tmp
2009-02-10 19:37:49 ----A---- C:\WINDOWS\system32\SET102.tmp
2009-02-10 19:37:47 ----A---- C:\WINDOWS\system32\SET101.tmp
2009-02-10 19:37:45 ----A---- C:\WINDOWS\system32\SET112.tmp
2009-02-10 19:37:45 ----A---- C:\WINDOWS\system32\SET100.tmp
2009-02-10 19:37:42 ----A---- C:\WINDOWS\system32\SET117.tmp
2009-02-10 19:37:13 ----A---- C:\WINDOWS\system32\SET110.tmp
2009-02-06 23:41:27 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2009-02-06 23:41:25 ----D---- C:\Program Files\ffdshow
2009-02-06 23:08:59 ----D---- C:\Program Files\Haali
2009-02-03 23:31:22 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2009-02-03 22:45:27 ----A---- C:\mp4.txt
2009-01-31 19:41:43 ----A---- C:\WINDOWS\system32\devil.dll
2009-01-31 19:41:43 ----A---- C:\WINDOWS\system32\avisynth.dll
2009-01-31 17:50:25 ----A---- C:\WINDOWS\system32\javaws.exe
2009-01-31 17:50:25 ----A---- C:\WINDOWS\system32\javaw.exe
2009-01-31 17:50:25 ----A---- C:\WINDOWS\system32\java.exe
2009-01-31 17:50:25 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-01-31 17:48:16 ----D---- C:\Program Files\LimeWire
2009-01-29 18:31:24 ----D---- C:\Video
2009-01-16 21:15:42 ----A---- C:\WINDOWS\system32\SET108.tmp
2009-01-15 10:55:04 ----D---- C:\Program Files\Boilsoft Video Joiner
2009-01-14 15:56:05 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$

======List of files/folders modified in the last 1 months======

2009-02-11 12:08:10 ----RD---- C:\Program Files
2009-02-11 11:58:36 ----D---- C:\WINDOWS\Prefetch
2009-02-11 11:50:56 ----AD---- C:\autorun.inf
2009-02-11 11:50:10 ----D---- C:\WINDOWS\Temp
2009-02-11 11:48:25 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-02-11 11:06:38 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-02-10 23:32:55 ----HD---- C:\WINDOWS\system32\drivers
2009-02-10 23:32:55 ----D---- C:\WINDOWS\system32
2009-02-10 23:32:53 ----D---- C:\WINDOWS
2009-02-10 23:27:10 ----D---- C:\WINDOWS\system32\CatRoot2
2009-02-10 23:24:05 ----A---- C:\WINDOWS\system.ini
2009-02-10 23:21:06 ----D---- C:\WINDOWS\system32\config
2009-02-10 23:20:46 ----D---- C:\WINDOWS\erdnt
2009-02-10 23:19:12 ----D---- C:\WINDOWS\AppPatch
2009-02-10 23:19:12 ----D---- C:\Program Files\Fichiers communs
2009-02-10 22:42:36 ----D---- C:\Program Files\CCleaner
2009-02-10 21:56:59 ----D---- C:\Program Files\Hijackthis Version Française
2009-02-10 21:54:01 ----HD---- C:\WINDOWS\inf
2009-02-10 21:49:44 ----D---- C:\Program Files\eMule
2009-02-10 21:04:42 ----SHD---- C:\WINDOWS\Installer
2009-02-10 21:04:42 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-02-10 21:04:42 ----D---- C:\Config.Msi
2009-02-10 21:03:25 ----HD---- C:\WINDOWS\$hf_mig$
2009-02-10 21:03:21 ----A---- C:\WINDOWS\imsins.BAK
2009-02-10 21:02:19 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-02-10 21:02:17 ----D---- C:\Program Files\Internet Explorer
2009-02-10 21:01:35 ----D---- C:\WINDOWS\ie7updates
2009-02-10 14:41:51 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2009-02-08 12:14:50 ----D---- C:\Program Files\DivX
2009-02-06 23:06:14 ----D---- C:\Program Files\K-Lite Codec Pack
2009-02-04 00:21:12 ----A---- C:\WINDOWS\system32\MRT.exe
2009-02-03 22:47:31 ----D---- C:\Program Files\vanBasco's Karaoke Player
2009-02-03 22:47:30 ----D---- C:\Program Files\QuickTime
2009-02-03 22:46:22 ----A---- C:\mpeg.txt
2009-02-03 22:45:10 ----A---- C:\finfos.txt
2009-02-03 11:49:45 ----D---- C:\Program Files\Boilsoft Video Splitter
2009-02-03 09:36:07 ----D---- C:\Program Files\IncrediMail
2009-01-31 17:49:31 ----D---- C:\Program Files\Java
2009-01-31 14:56:36 ----A---- C:\WINDOWS\win.ini
2009-01-30 10:25:14 ----D---- C:\WINDOWS\Registration
2009-01-29 18:28:07 ----D---- C:\Program Files\AviSynth 2.5
2009-01-29 18:04:15 ----D---- C:\Program Files\Mozilla Firefox
2009-01-22 09:18:48 ----D---- C:\WINDOWS\system32\Macromed
2009-01-21 12:48:00 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-01-17 23:05:21 ----D---- C:\WINDOWS\Minidump
2009-01-17 14:20:17 ----D---- C:\Documents and Settings

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys [2006-09-05 3968]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-11-26 75072]
R1 DMICall;Sony DMI Call service; C:\WINDOWS\system32\DRIVERS\DMICall.sys [2000-12-05 3952]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 PrivateDisk;PrivateDisk; C:\WINDOWS\System32\Drivers\PrivateDiskM.sys [2004-07-06 45627]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.9.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2006-03-28 21275]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544]
R2 s24trans;Transport RLAN; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2005-11-28 13568]
R2 symlcbrd;symlcbrd; \??\C:\WINDOWS\system32\drivers\symlcbrd.sys []
R2 windrvNT;windrvNT; \??\C:\WINDOWS\system32\windrvNT.sys []
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2004-11-22 108767]
R3 CmBatt;Pilote pour Batterie à méthode de contrôle ACPI Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-10-18 998656]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2005-10-18 202112]
R3 Mvc25U870_VID_1262&PID_25FD;Sony Visual Communication Camera VGP-VCC2; C:\WINDOWS\System32\Drivers\Mvc25U870.sys [2006-04-05 52992]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-04-18 3661312]
R3 SNC;Sony Notebook Control Device; C:\WINDOWS\System32\Drivers\SonyNC.sys [2000-11-09 48896]
R3 SonyImgF;Sony Image Conversion Filter Driver; C:\WINDOWS\system32\DRIVERS\SonyImgF.sys [2005-12-27 29184]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-03-31 1155672]
R3 tbhsd;Tunebite High-Speed Dubbing; C:\WINDOWS\system32\drivers\tbhsd.sys [2007-11-16 26912]
R3 ti21sony;ti21sony; C:\WINDOWS\system32\drivers\ti21sony.sys [2006-02-21 226304]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2005-12-04 1428096]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-10-18 721280]
S1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 AVerM115S;AVerM115S service; C:\WINDOWS\system32\DRIVERS\AVerM115S.sys [2006-04-11 741376]
S3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2005-06-13 162816]
S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1e5132.sys [2005-07-06 176128]
S3 fbxusb;Carte réseau virtuelle FreeBox USB; C:\WINDOWS\system32\DRIVERS\fbxusb32.sys [2004-10-20 21344]
S3 HidIr;Pilote HID infrarouge Microsoft; C:\WINDOWS\system32\DRIVERS\hidir.sys [2008-04-13 19200]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 IrBus;Pilote de filtre de bus infrarouge pour les contrôles distants eHome; C:\WINDOWS\system32\DRIVERS\IrBus.sys [2008-04-13 46592]
S3 MHNDRV;Pilote MHN; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MPE;Filtre BDA MPE; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712]
S3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-11-24 47104]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2006-02-02 108928]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2005-12-14 37632]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2006-02-08 62848]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2005-11-11 52864]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2006-01-31 39808]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2008-10-01 32000]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor4.0;Adobe Active File Monitor V4; C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe [2005-09-09 102400]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2005-11-28 114753]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-02 168432]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-31 152984]
R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe [2002-12-17 7520337]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-04-18 143428]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2005-11-28 217164]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2005-11-28 540745]
R2 STacSV;SigmaTel Audio Service; C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe [2006-03-31 86016]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [2006-03-19 160256]
R2 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2005-11-28 167936]
R2 VzFw;VAIO Entertainment File Import Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [2005-11-28 135168]
R3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2005-11-28 270336]
S2 AntiVirScheduler;AntiVir PersonalEdition Classic Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2009-02-10 68865]
S2 AntiVirService;AntiVir PersonalEdition Classic Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2009-02-10 151297]
S2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe []
S2 VCI;VAIO Cooporated Initialisation; C:\Program Files\Sony\VAIO Cooperated Initialisation\VCI_SVC.exe [2005-01-04 398336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 Image Converter video recording monitor for VAIO Entertainment;Image Converter video recording monitor for VAIO Entertainment; C:\Program Files\Sony\Image Converter 2\IcVzMon.exe [2005-07-14 32768]
S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe [2005-11-24 53337]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe [2005-11-24 53337]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe [2005-11-24 69718]
S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB; C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE [2002-12-17 311872]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [2005-11-25 73728]
S3 VAIOMediaPlatform-IntegratedServer-AppServer;VAIO Media Integrated Server; C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe [2006-01-16 2084864]
S3 VAIOMediaPlatform-IntegratedServer-HTTP;VAIO Media Integrated Server (HTTP); C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [2005-10-11 57344]
S3 VAIOMediaPlatform-IntegratedServer-UPnP;VAIO Media Integrated Server (UPnP); C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [2005-10-11 770048]
S3 VAIOMediaPlatform-Mobile-Gateway;VAIO Media Gateway Server; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe [2005-12-21 155648]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 SSScsiSV;SonicStage SCSI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe [2006-01-06 69632]

-----------------EOF-----------------

Réponse 6 / 11

Utilisateur anonyme

tu as le cd pour le wifi ??

Télécharge ToolsCleaner sur ton bureau.
-->
http://pc-system.fr/
http://pc-system.fr/
http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner

# Clique sur Recherche et laisse le scan agir ...
# Clique sur Suppression pour finaliser.
# Tu peux, si tu le souhaites, te servir des Options facultatives.
# Clique sur Quitter pour obtenir le rapport.
# Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

ensuite

Telecharge malwarebytes
https://www.malwarebytes.com/

Tu l´instale; le programme va se mettre automatiquement a jour.

Une fois a jour, le programme va se lancer; click sur l´onglet parametre, et coche la case : "Arreter internet explorer pendant la suppression".

Click maintenant sur l´onglet recherche et coche la case : "executer un examen Rapide".

Puis click sur "rechercher".

Laisse le scanner le pc...

Si des elements on ete trouvés > click sur supprimer la selection.

si il t´es demandé de redemarrer > click sur "yes".

A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vu de le poster sur le forum.
Copie et colle le rapport stp.

PS : les rapport sont aussi rangé dans l onglet rapport/log

labelettedu93

Je ne crois pas avoir eu un CD avec mon pc portable pour le wifi.

Réponse 7 / 11

Utilisateur anonyme

NI avec le modem ?

labelettedu93

j'ai réussi a me reconnecter avec ethernet.
J'ai fait Tccleaner mais aucun rapport a l'horizon même dans C:

Réponse 8 / 11

Utilisateur anonyme

FINDYKILL , rsit ont disparu ?

PASSE malewarebyte

labelettedu93

Voici le pseudo rapport que j'ai copier coller.

-->- Suppression:

C:\Documents and Settings\Ophelie\Bureau\SdFix.exe: supprimé !
C:\Documents and Settings\All Users\Documents\SdFix.exe: supprimé !
C:\Combofix.txt: supprimé !
C:\FindyKill.txt: supprimé !
C:\Documents and Settings\Ophelie\Bureau\Combofix.txt: supprimé !
C:\Documents and Settings\Ophelie\Bureau\Rsit.exe: supprimé !
C:\Program Files\Hijackthis Version Française\hijackthis.log: supprimé !
C:\Qoobox: supprimé !
C:\Rsit: supprimé !
C:\Documents and Settings\Ophelie\Menu Démarrer\Programmes\FindyKill: supprimé !
C:\Program Files\FindyKill: ERREUR DE SUPPRESSION !!

labelettedu93

Voici le rapport. Merci.

Malwarebytes' Anti-Malware 1.33
Version de la base de données: 1747
Windows 5.1.2600 Service Pack 3

11/02/2009 13:04:38
mbam-log-2009-02-11 (13-04-38).txt

Type de recherche: Examen rapide
Eléments examinés: 62427
Temps écoulé: 6 minute(s), 13 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1a26f07f-0d60-4835-91cf-1e1766a0ec56} (Trojan.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\clkcnt.txt (Trojan.Vundo) -> Quarantined and deleted successfully.

Réponse 9 / 11

Utilisateur anonyme

réouvre malewarebyte
va sur quarantaine
supprime tout

Purge de la restauration système
*Désactive ta restauration :
Clique droit sur poste de travail/propriétés/Restauration système/coche la case désactiver la restauration, appliquer, OK
---> Redémarre ton PC ...

*Réactive ta restauration :
Clique droit sur poste de travail/propriétés/Restauration système/décoche la case désactiver la restauration, appliquer, OK
--->Redémarre ton PC ...

( Note : tu peux aussi y accéder via panneau de configuration->" système "->" restauration système " ).

pour le wifi c ok ?

Sinon jette un oeil ici : https://forum.malekal.com/viewtopic.php?f=60&t=7382

labelettedu93

Slt.
Je pense que le wifi est revenu. Sinon merci de ton aide. Ca me soulage beaucoup.
Comment savoir si le pc est maintenant au plus propre de sa capacité?
Merci et (bisous)

Réponse 10 / 11

Utilisateur anonyme

ok

le pc est propre , tu peux si tu veux finir avec un scan de ton antivirus

labelettedu93

Ok. Je vais en faire un. Ca n'a jamais embeter personne. Merci encore de ton aide. Ce super.

Réponse 11 / 11

Utilisateur anonyme

de rien

bonne semaine

Votre réponse