Virus (peut etre)
nicodu43000
Messages postés
88
Statut
Membre
-
Narco!4 Messages postés 2446 Statut Contributeur -
Narco!4 Messages postés 2446 Statut Contributeur -
Bonjour,
quand je vais dans msconfig il y a un processus qui n'a pas de nom et quand je prend celui de ccleaner il n'apparait pas je pense que c'est une espece de virus.voila un rappot hijackthis.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:33:17, on 01/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\HerculesWiFiService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\HP_Administrateur\Mes documents\Téléchargements\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/...
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: HerculesWiFi - Guillemot Corporation - C:\WINDOWS\system32\HerculesWiFiService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
quand je vais dans msconfig il y a un processus qui n'a pas de nom et quand je prend celui de ccleaner il n'apparait pas je pense que c'est une espece de virus.voila un rappot hijackthis.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:33:17, on 01/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\HerculesWiFiService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\HP_Administrateur\Mes documents\Téléchargements\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.redirect.hp.com/...
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/...
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: HerculesWiFi - Guillemot Corporation - C:\WINDOWS\system32\HerculesWiFiService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
A voir également:
- Virus (peut etre)
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
5 réponses
Bonjour,
télécharge GenProc http://www.genproc.com/GenProc.exe
double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
télécharge GenProc http://www.genproc.com/GenProc.exe
double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
Rapport GenProc 2.655 [1] - 01/12/2009 à 19:47:12
@ Windows XP Service Pack 3 - Mode normal
@ Mozilla Firefox 3.5.5 (fr) [Navigateur par défaut]
GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
Poste un rapport Nod32 https://www.eset.com/ (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
C:\Program Files\EsetOnlineScanner\log.txt
~~~~ INFORMATION COMPLEMENTAIRE ~~~~
Rapport de ZHPDiag v1.24.35 par Nicolas Coolman
Run by HP_Administrateur at 01/12/2009 19:48:10
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox (3.5.5)
Boot mode: Normal (Normal boot)
Total RAM: 1023 MB (48% free)
System drive C: has 283 GB (97%) free of 291 GB
---\\
C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\WINDOWS\SMINST\RECGUARD.EXE
C:\WINDOWS\system32\CTFMON.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\HerculesWiFiService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
---\\
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
---\\
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://fr.search.yahoo.com/?fr=cb-hp06
---\\
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll
---\\
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPBootOp] C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\policies\Explorer: [HonorAutoRunSetting] Data=1
O4 - HKLM\..\policies\Explorer: [NoCDBurning] Data=0
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
---\\
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\conn_support.ico
---\\
O10 - WLSP:\000000000001\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File - C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
---\\
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\SHELL32.dll
---\\
O20 - Winlogon Notify: dimsntfy - C:\WINDOWS\System32\dimsntfy.dll
---\\
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
---\\
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll
---\\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus (avast! Antivirus) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: Media Center Receiver Service (ehRecvr) - C:\WINDOWS\eHome\ehRecvr.exe
O23 - Service: Service de planification Media Center (ehSched) - C:\WINDOWS\eHome\ehSched.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: (HerculesWiFi) - C:\WINDOWS\system32\HerculesWiFiService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
O23 - Service: Media Center Extender Service (McrdSvc) - C:\WINDOWS\ehome\mcrdsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
---\\
O41 - Driver: AFD (AFD) - C:\WINDOWS\System32\drivers\afd.sys
O41 - Driver: Pilote de CD-ROM (Cdrom) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: EL hid Service (ELhid) - C:\WINDOWS\System32\Drivers\Elhid.sys
O41 - Driver: EL KB Service (ELkbd) - C:\WINDOWS\System32\Drivers\Elkbd.sys
O41 - Driver: EL Monitor Service (ELmon) - C:\WINDOWS\System32\Drivers\Elmon.sys
O41 - Driver: EL Mouse Service (ELmou) - C:\WINDOWS\System32\Drivers\Elmou.sys
O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: Pilote de filtre de gravure CD (Imapi) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: Pilote de processeur Intel (intelppm) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: Pilote IPSEC (IPSec) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: Pilote de la classe Clavier (Kbdclass) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: Pilote HID de clavier (kbdhid) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver: Pilote de la classe Souris (Mouclass) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (no object) (RDPCDD) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Pilote de périphérique terminal (TermDD) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys
O41 - Driver: (no object) (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys
---\\
O42 - Logiciel: Adobe Flash Player 10 ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin
O42 - Logiciel: Adobe Reader 9.2 - Français
O42 - Logiciel: CCleaner
O42 - Logiciel: DivX
O42 - Logiciel: Enhanced Multimedia Keyboard Solution
O42 - Logiciel: HP Boot Optimizer
O42 - Logiciel: HP DVD Play 2.1
O42 - Logiciel: HP DigitalMedia Archive
O42 - Logiciel: HP Update
O42 - Logiciel: Hercules WiFi Station N
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
O42 - Logiciel: Hotfix for Windows Media Player 10 (KB903157)
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5)
O42 - Logiciel: Installation Windows Live
O42 - Logiciel: Intel(R) Matrix Storage Manager
O42 - Logiciel: Intel(R) PRO Network Connections Drivers
O42 - Logiciel: Intel(R) Quick Resume Technology Drivers
O42 - Logiciel: Java(TM) 6 Update 17
O42 - Logiciel: Le logiciel Intel® Viiv™
O42 - Logiciel: Lecteur Windows Media 11
O42 - Logiciel: Logiciel d'archivage WinRAR
O42 - Logiciel: MSVCRT
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: MSXML 4.0 SP2 (KB973688)
O42 - Logiciel: MSXML 6.0 Parser (KB925673)
O42 - Logiciel: Microsoft .NET Framework 1.1
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297)
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft Choice Guard
O42 - Logiciel: Mozilla Firefox (3.5.5)
O42 - Logiciel: NVIDIA Drivers
O42 - Logiciel: Package de pilotes Windows - Microsoft PCTV Remote infrared receiver/transmitter (08/10/2004 5.1.2600.2180)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 100e/320e Audio (08/03/2007 5.7.0803.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 100i,110i,300i,310i, MCE (11/22/2006 1.3.3.5)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 310ix, 710ix, 3010ix, 7010ix (07/17/2007 1.0.4.1)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 340e(SE), PCTV 801e(SE) (03/25/2008 2.3.3.26)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 70e/100e/160e/170e/320e/330e/800e/880e (08/03/2007 5.7.0803.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 71e (09/28/2006 6.9.28.4)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 800i (04/29/2008 3.1.1.49)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV Stick (06/14/2007 1.0.0.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems Pinnacle Systems PCTV 310c (03/21/2007 3.1.1.24)
O42 - Logiciel: Pinnacle PCTV MCE
O42 - Logiciel: Realtek High Definition Audio Driver
O42 - Logiciel: Security Update for CAPICOM (KB931906)
O42 - Logiciel: Total Video Converter 3.50
O42 - Logiciel: TuneUp Utilities
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130)
O42 - Logiciel: Windows Internet Explorer 8
O42 - Logiciel: Windows Live Communications Platform
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: Windows Media Format 11 runtime
O42 - Logiciel: Windows Media Player Firefox Plugin
O42 - Logiciel: Windows Presentation Foundation
O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0
O42 - Logiciel: avast! Antivirus
---\\
O44 - LFC:Last File Created 01/12/2009 - 18:25:59 -S-A- C:\WINDOWS\bootstat.dat
O44 - LFC:Last File Created 01/12/2009 - 18:26:03 ---A- C:\WINDOWS\System32\nvapps.xml
O44 - LFC:Last File Created 05/11/2009 - 09:36:22 ---A- C:\WINDOWS\System32\MRT.exe
O44 - LFC:Last File Created 13/11/2009 - 11:53:42 ---A- C:\WINDOWS\System32\uxtuneup.dll
O44 - LFC:Last File Created 13/11/2009 - 12:00:24 ---A- C:\WINDOWS\System32\TURegOpt.exe
O44 - LFC:Last File Created 16/11/2009 - 14:45:50 ---A- C:\WINDOWS\System32\drivers\rrnetcap.sys
O44 - LFC:Last File Created 16/11/2009 - 14:46:12 ---A- C:\WINDOWS\System32\drivers\tbhsd.sys
O44 - LFC:Last File Created 23/11/2009 - 16:41:24 RSHA- C:\BOOT.BAK
O44 - LFC:Last File Created 23/11/2009 - 16:41:45 ---A- C:\WINDOWS\System32\$winnt$.inf
O44 - LFC:Last File Created 23/11/2009 - 16:44:00 RSHA- C:\WINDOWS\System32\drivers\103C_HP_CPC_RF759AA-ABF s7640.fr_YC_0Pavi_QCNH643_E64FRemMPA3_48_ICalcite_SASUSTeK Computer INC._V1.xx_B3.07_T060915_WXP2_L40C_M1024_J320_7Intel_8T2050_91.6_#091123_N808627DC_Z_G10DE01DD_OTSSTcorp CD DVDW TS-H652L.MRK
O44 - LFC:Last File Created 23/11/2009 - 16:44:47 ---A- C:\WINDOWS\UPGRADE.TXT
O44 - LFC:Last File Created 23/11/2009 - 16:46:58 ---A- C:\WINDOWS\System32\LuResult.txt
O44 - LFC:Last File Created 23/11/2009 - 17:03:55 ---A- C:\WINDOWS\System32\drivers\AegisP.sys
O44 - LFC:Last File Created 23/11/2009 - 17:22:32 ---A- C:\WINDOWS\System32\CONFIG.NT
O44 - LFC:Last File Created 23/11/2009 - 17:36:03 ---A- C:\WINDOWS\nsreg.dat
O44 - LFC:Last File Created 23/11/2009 - 17:57:43 RSHA- C:\ntldr
O44 - LFC:Last File Created 23/11/2009 - 18:04:04 ---A- C:\WINDOWS\System32\mapisvc.inf
O44 - LFC:Last File Created 23/11/2009 - 18:11:57 ---A- C:\WINDOWS\System32\spupdwxp.log
O44 - LFC:Last File Created 24/11/2009 - 00:08:44 ---A- C:\WINDOWS\System32\deploytk.dll
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\java.exe
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javacpl.cpl
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javaw.exe
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javaws.exe
O44 - LFC:Last File Created 24/11/2009 - 00:10:26 ---A- C:\WINDOWS\System32\FLASH.OCX
O44 - LFC:Last File Created 24/11/2009 - 17:50:22 ---A- C:\WINDOWS\System32\Log_20091124_175022_774.txt
O44 - LFC:Last File Created 24/11/2009 - 17:53:48 ---A- C:\WINDOWS\System32\Log_20091124_175348_E0C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:55:28 ---A- C:\WINDOWS\System32\Log_20091124_175528_99C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:58:29 ---A- C:\WINDOWS\System32\Log_20091124_175829_46C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:58:30 ---A- C:\WINDOWS\System32\Log_20091124_175830_A14.txt
O44 - LFC:Last File Created 24/11/2009 - 18:01:54 ---A- C:\WINDOWS\System32\Log_20091124_180154_FB8.txt
O44 - LFC:Last File Created 24/11/2009 - 18:01:56 ---A- C:\WINDOWS\System32\Log_20091124_180156_C9C.txt
O44 - LFC:Last File Created 24/11/2009 - 18:04:37 ---A- C:\WINDOWS\System32\Log_20091124_180437_EDC.txt
O44 - LFC:Last File Created 24/11/2009 - 18:04:38 ---A- C:\WINDOWS\System32\Log_20091124_180438_89C.txt
O44 - LFC:Last File Created 24/11/2009 - 18:08:34 ---A- C:\WINDOWS\System32\Log_20091124_180834_7E4.txt
O44 - LFC:Last File Created 24/11/2009 - 18:13:16 ---A- C:\WINDOWS\WMSysPr9.prx
O44 - LFC:Last File Created 24/11/2009 - 18:40:43 ---A- C:\WINDOWS\System32\amcompat.tlb
O44 - LFC:Last File Created 24/11/2009 - 18:40:43 ---A- C:\WINDOWS\System32\nscompat.tlb
O44 - LFC:Last File Created 24/11/2009 - 19:18:23 ---A- C:\WINDOWS\System32\Log_20091124_191823_714.txt
O44 - LFC:Last File Created 24/11/2009 - 19:20:39 ---A- C:\WINDOWS\System32\Log_20091124_192039_ADC.txt
O44 - LFC:Last File Created 25/11/2009 - 04:24:19 ---A- C:\WINDOWS\System32\Log_20091125_042419_FB0.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:11 ---A- C:\WINDOWS\System32\Log_20091125_042811_B2C.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:13 ---A- C:\WINDOWS\System32\Log_20091125_042813_E88.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:14 ---A- C:\WINDOWS\System32\Log_20091125_042814_DB4.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:16 ---A- C:\WINDOWS\System32\Log_20091125_042816_B78.txt
O44 - LFC:Last File Created 25/11/2009 - 04:51:10 ---A- C:\WINDOWS\System32\Log_20091125_045110_F30.txt
O44 - LFC:Last File Created 25/11/2009 - 04:51:12 ---A- C:\WINDOWS\System32\Log_20091125_045112_984.txt
O44 - LFC:Last File Created 25/11/2009 - 04:59:36 ---A- C:\WINDOWS\System32\Log_20091125_045936_488.txt
O44 - LFC:Last File Created 25/11/2009 - 04:59:38 ---A- C:\WINDOWS\System32\Log_20091125_045938_918.txt
O44 - LFC:Last File Created 25/11/2009 - 05:10:45 ---A- C:\WINDOWS\System32\Log_20091125_051045_A1C.txt
O44 - LFC:Last File Created 25/11/2009 - 05:10:46 ---A- C:\WINDOWS\System32\Log_20091125_051046_2C8.txt
O44 - LFC:Last File Created 25/11/2009 - 05:24:56 ---A- C:\WINDOWS\System32\Log_20091125_052456_9D4.txt
O44 - LFC:Last File Created 25/11/2009 - 05:24:58 ---A- C:\WINDOWS\System32\Log_20091125_052458_63C.txt
O44 - LFC:Last File Created 25/11/2009 - 05:31:10 ---A- C:\WINDOWS\System32\Log_20091125_053110_760.txt
O44 - LFC:Last File Created 25/11/2009 - 05:31:11 ---A- C:\WINDOWS\System32\Log_20091125_053111_600.txt
O44 - LFC:Last File Created 25/11/2009 - 20:15:56 ---A- C:\WINDOWS\system.ini
O44 - LFC:Last File Created 25/11/2009 - 20:15:56 ---A- C:\WINDOWS\win.ini
O44 - LFC:Last File Created 26/11/2009 - 04:49:38 ---A- C:\WINDOWS\System32\TZLog.log
O44 - LFC:Last File Created 26/11/2009 - 20:04:48 ---A- C:\WINDOWS\RTacDbg.txt
O44 - LFC:Last File Created 27/11/2009 - 21:05:45 ---A- C:\WINDOWS\System32\FNTCACHE.DAT
O44 - LFC:Last File Created 27/11/2009 - 21:30:36 ---A- C:\WINDOWS\wwwbatch.ini
O44 - LFC:Last File Created 28/11/2009 - 18:24:59 RSHA- C:\boot.ini
O44 - LFC:Last File Created 29/11/2009 - 00:22:32 ---A- C:\WINDOWS\System32\PerfStringBackup.INI
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfc009.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfc00C.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfh009.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfh00C.dat
O44 - LFC:Last File Created 29/11/2009 - 00:53:05 ---A- C:\WINDOWS\System32\sfc_os.dll
O44 - LFC:Last File Created 29/11/2009 - 03:36:53 ---A- C:\WINDOWS\System32\wpa.dbl
---\\
O51 - MPSK:{0a52185b-d846-11de-8e0c-806d6172696f}\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
---\\
O63 - Logiciel: HijackThis 2.0.2
O63 - Logiciel: GenProc
End of the scan: 284 lines
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
~~ Fin à 19:48:27 ~~
@ Windows XP Service Pack 3 - Mode normal
@ Mozilla Firefox 3.5.5 (fr) [Navigateur par défaut]
GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
Poste un rapport Nod32 https://www.eset.com/ (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
C:\Program Files\EsetOnlineScanner\log.txt
~~~~ INFORMATION COMPLEMENTAIRE ~~~~
Rapport de ZHPDiag v1.24.35 par Nicolas Coolman
Run by HP_Administrateur at 01/12/2009 19:48:10
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox (3.5.5)
Boot mode: Normal (Normal boot)
Total RAM: 1023 MB (48% free)
System drive C: has 283 GB (97%) free of 291 GB
---\\
C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\WINDOWS\SMINST\RECGUARD.EXE
C:\WINDOWS\system32\CTFMON.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\HerculesWiFiService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
---\\
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
---\\
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://fr.search.yahoo.com/?fr=cb-hp06
---\\
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll
---\\
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPBootOp] C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\policies\Explorer: [HonorAutoRunSetting] Data=1
O4 - HKLM\..\policies\Explorer: [NoCDBurning] Data=0
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
---\\
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\conn_support.ico
---\\
O10 - WLSP:\000000000001\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File - C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
---\\
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\SHELL32.dll
---\\
O20 - Winlogon Notify: dimsntfy - C:\WINDOWS\System32\dimsntfy.dll
---\\
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
---\\
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll
---\\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus (avast! Antivirus) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: Media Center Receiver Service (ehRecvr) - C:\WINDOWS\eHome\ehRecvr.exe
O23 - Service: Service de planification Media Center (ehSched) - C:\WINDOWS\eHome\ehSched.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: (HerculesWiFi) - C:\WINDOWS\system32\HerculesWiFiService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
O23 - Service: Media Center Extender Service (McrdSvc) - C:\WINDOWS\ehome\mcrdsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
---\\
O41 - Driver: AFD (AFD) - C:\WINDOWS\System32\drivers\afd.sys
O41 - Driver: Pilote de CD-ROM (Cdrom) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: EL hid Service (ELhid) - C:\WINDOWS\System32\Drivers\Elhid.sys
O41 - Driver: EL KB Service (ELkbd) - C:\WINDOWS\System32\Drivers\Elkbd.sys
O41 - Driver: EL Monitor Service (ELmon) - C:\WINDOWS\System32\Drivers\Elmon.sys
O41 - Driver: EL Mouse Service (ELmou) - C:\WINDOWS\System32\Drivers\Elmou.sys
O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: Pilote de filtre de gravure CD (Imapi) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: Pilote de processeur Intel (intelppm) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: Pilote IPSEC (IPSec) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: Pilote de la classe Clavier (Kbdclass) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: Pilote HID de clavier (kbdhid) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver: Pilote de la classe Souris (Mouclass) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (no object) (RDPCDD) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Pilote de périphérique terminal (TermDD) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys
O41 - Driver: (no object) (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys
---\\
O42 - Logiciel: Adobe Flash Player 10 ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin
O42 - Logiciel: Adobe Reader 9.2 - Français
O42 - Logiciel: CCleaner
O42 - Logiciel: DivX
O42 - Logiciel: Enhanced Multimedia Keyboard Solution
O42 - Logiciel: HP Boot Optimizer
O42 - Logiciel: HP DVD Play 2.1
O42 - Logiciel: HP DigitalMedia Archive
O42 - Logiciel: HP Update
O42 - Logiciel: Hercules WiFi Station N
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
O42 - Logiciel: Hotfix for Windows Media Player 10 (KB903157)
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5)
O42 - Logiciel: Installation Windows Live
O42 - Logiciel: Intel(R) Matrix Storage Manager
O42 - Logiciel: Intel(R) PRO Network Connections Drivers
O42 - Logiciel: Intel(R) Quick Resume Technology Drivers
O42 - Logiciel: Java(TM) 6 Update 17
O42 - Logiciel: Le logiciel Intel® Viiv™
O42 - Logiciel: Lecteur Windows Media 11
O42 - Logiciel: Logiciel d'archivage WinRAR
O42 - Logiciel: MSVCRT
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: MSXML 4.0 SP2 (KB973688)
O42 - Logiciel: MSXML 6.0 Parser (KB925673)
O42 - Logiciel: Microsoft .NET Framework 1.1
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297)
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft Choice Guard
O42 - Logiciel: Mozilla Firefox (3.5.5)
O42 - Logiciel: NVIDIA Drivers
O42 - Logiciel: Package de pilotes Windows - Microsoft PCTV Remote infrared receiver/transmitter (08/10/2004 5.1.2600.2180)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 100e/320e Audio (08/03/2007 5.7.0803.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 100i,110i,300i,310i, MCE (11/22/2006 1.3.3.5)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 310ix, 710ix, 3010ix, 7010ix (07/17/2007 1.0.4.1)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 340e(SE), PCTV 801e(SE) (03/25/2008 2.3.3.26)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 70e/100e/160e/170e/320e/330e/800e/880e (08/03/2007 5.7.0803.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 71e (09/28/2006 6.9.28.4)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 800i (04/29/2008 3.1.1.49)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV Stick (06/14/2007 1.0.0.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems Pinnacle Systems PCTV 310c (03/21/2007 3.1.1.24)
O42 - Logiciel: Pinnacle PCTV MCE
O42 - Logiciel: Realtek High Definition Audio Driver
O42 - Logiciel: Security Update for CAPICOM (KB931906)
O42 - Logiciel: Total Video Converter 3.50
O42 - Logiciel: TuneUp Utilities
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130)
O42 - Logiciel: Windows Internet Explorer 8
O42 - Logiciel: Windows Live Communications Platform
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: Windows Media Format 11 runtime
O42 - Logiciel: Windows Media Player Firefox Plugin
O42 - Logiciel: Windows Presentation Foundation
O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0
O42 - Logiciel: avast! Antivirus
---\\
O44 - LFC:Last File Created 01/12/2009 - 18:25:59 -S-A- C:\WINDOWS\bootstat.dat
O44 - LFC:Last File Created 01/12/2009 - 18:26:03 ---A- C:\WINDOWS\System32\nvapps.xml
O44 - LFC:Last File Created 05/11/2009 - 09:36:22 ---A- C:\WINDOWS\System32\MRT.exe
O44 - LFC:Last File Created 13/11/2009 - 11:53:42 ---A- C:\WINDOWS\System32\uxtuneup.dll
O44 - LFC:Last File Created 13/11/2009 - 12:00:24 ---A- C:\WINDOWS\System32\TURegOpt.exe
O44 - LFC:Last File Created 16/11/2009 - 14:45:50 ---A- C:\WINDOWS\System32\drivers\rrnetcap.sys
O44 - LFC:Last File Created 16/11/2009 - 14:46:12 ---A- C:\WINDOWS\System32\drivers\tbhsd.sys
O44 - LFC:Last File Created 23/11/2009 - 16:41:24 RSHA- C:\BOOT.BAK
O44 - LFC:Last File Created 23/11/2009 - 16:41:45 ---A- C:\WINDOWS\System32\$winnt$.inf
O44 - LFC:Last File Created 23/11/2009 - 16:44:00 RSHA- C:\WINDOWS\System32\drivers\103C_HP_CPC_RF759AA-ABF s7640.fr_YC_0Pavi_QCNH643_E64FRemMPA3_48_ICalcite_SASUSTeK Computer INC._V1.xx_B3.07_T060915_WXP2_L40C_M1024_J320_7Intel_8T2050_91.6_#091123_N808627DC_Z_G10DE01DD_OTSSTcorp CD DVDW TS-H652L.MRK
O44 - LFC:Last File Created 23/11/2009 - 16:44:47 ---A- C:\WINDOWS\UPGRADE.TXT
O44 - LFC:Last File Created 23/11/2009 - 16:46:58 ---A- C:\WINDOWS\System32\LuResult.txt
O44 - LFC:Last File Created 23/11/2009 - 17:03:55 ---A- C:\WINDOWS\System32\drivers\AegisP.sys
O44 - LFC:Last File Created 23/11/2009 - 17:22:32 ---A- C:\WINDOWS\System32\CONFIG.NT
O44 - LFC:Last File Created 23/11/2009 - 17:36:03 ---A- C:\WINDOWS\nsreg.dat
O44 - LFC:Last File Created 23/11/2009 - 17:57:43 RSHA- C:\ntldr
O44 - LFC:Last File Created 23/11/2009 - 18:04:04 ---A- C:\WINDOWS\System32\mapisvc.inf
O44 - LFC:Last File Created 23/11/2009 - 18:11:57 ---A- C:\WINDOWS\System32\spupdwxp.log
O44 - LFC:Last File Created 24/11/2009 - 00:08:44 ---A- C:\WINDOWS\System32\deploytk.dll
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\java.exe
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javacpl.cpl
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javaw.exe
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javaws.exe
O44 - LFC:Last File Created 24/11/2009 - 00:10:26 ---A- C:\WINDOWS\System32\FLASH.OCX
O44 - LFC:Last File Created 24/11/2009 - 17:50:22 ---A- C:\WINDOWS\System32\Log_20091124_175022_774.txt
O44 - LFC:Last File Created 24/11/2009 - 17:53:48 ---A- C:\WINDOWS\System32\Log_20091124_175348_E0C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:55:28 ---A- C:\WINDOWS\System32\Log_20091124_175528_99C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:58:29 ---A- C:\WINDOWS\System32\Log_20091124_175829_46C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:58:30 ---A- C:\WINDOWS\System32\Log_20091124_175830_A14.txt
O44 - LFC:Last File Created 24/11/2009 - 18:01:54 ---A- C:\WINDOWS\System32\Log_20091124_180154_FB8.txt
O44 - LFC:Last File Created 24/11/2009 - 18:01:56 ---A- C:\WINDOWS\System32\Log_20091124_180156_C9C.txt
O44 - LFC:Last File Created 24/11/2009 - 18:04:37 ---A- C:\WINDOWS\System32\Log_20091124_180437_EDC.txt
O44 - LFC:Last File Created 24/11/2009 - 18:04:38 ---A- C:\WINDOWS\System32\Log_20091124_180438_89C.txt
O44 - LFC:Last File Created 24/11/2009 - 18:08:34 ---A- C:\WINDOWS\System32\Log_20091124_180834_7E4.txt
O44 - LFC:Last File Created 24/11/2009 - 18:13:16 ---A- C:\WINDOWS\WMSysPr9.prx
O44 - LFC:Last File Created 24/11/2009 - 18:40:43 ---A- C:\WINDOWS\System32\amcompat.tlb
O44 - LFC:Last File Created 24/11/2009 - 18:40:43 ---A- C:\WINDOWS\System32\nscompat.tlb
O44 - LFC:Last File Created 24/11/2009 - 19:18:23 ---A- C:\WINDOWS\System32\Log_20091124_191823_714.txt
O44 - LFC:Last File Created 24/11/2009 - 19:20:39 ---A- C:\WINDOWS\System32\Log_20091124_192039_ADC.txt
O44 - LFC:Last File Created 25/11/2009 - 04:24:19 ---A- C:\WINDOWS\System32\Log_20091125_042419_FB0.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:11 ---A- C:\WINDOWS\System32\Log_20091125_042811_B2C.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:13 ---A- C:\WINDOWS\System32\Log_20091125_042813_E88.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:14 ---A- C:\WINDOWS\System32\Log_20091125_042814_DB4.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:16 ---A- C:\WINDOWS\System32\Log_20091125_042816_B78.txt
O44 - LFC:Last File Created 25/11/2009 - 04:51:10 ---A- C:\WINDOWS\System32\Log_20091125_045110_F30.txt
O44 - LFC:Last File Created 25/11/2009 - 04:51:12 ---A- C:\WINDOWS\System32\Log_20091125_045112_984.txt
O44 - LFC:Last File Created 25/11/2009 - 04:59:36 ---A- C:\WINDOWS\System32\Log_20091125_045936_488.txt
O44 - LFC:Last File Created 25/11/2009 - 04:59:38 ---A- C:\WINDOWS\System32\Log_20091125_045938_918.txt
O44 - LFC:Last File Created 25/11/2009 - 05:10:45 ---A- C:\WINDOWS\System32\Log_20091125_051045_A1C.txt
O44 - LFC:Last File Created 25/11/2009 - 05:10:46 ---A- C:\WINDOWS\System32\Log_20091125_051046_2C8.txt
O44 - LFC:Last File Created 25/11/2009 - 05:24:56 ---A- C:\WINDOWS\System32\Log_20091125_052456_9D4.txt
O44 - LFC:Last File Created 25/11/2009 - 05:24:58 ---A- C:\WINDOWS\System32\Log_20091125_052458_63C.txt
O44 - LFC:Last File Created 25/11/2009 - 05:31:10 ---A- C:\WINDOWS\System32\Log_20091125_053110_760.txt
O44 - LFC:Last File Created 25/11/2009 - 05:31:11 ---A- C:\WINDOWS\System32\Log_20091125_053111_600.txt
O44 - LFC:Last File Created 25/11/2009 - 20:15:56 ---A- C:\WINDOWS\system.ini
O44 - LFC:Last File Created 25/11/2009 - 20:15:56 ---A- C:\WINDOWS\win.ini
O44 - LFC:Last File Created 26/11/2009 - 04:49:38 ---A- C:\WINDOWS\System32\TZLog.log
O44 - LFC:Last File Created 26/11/2009 - 20:04:48 ---A- C:\WINDOWS\RTacDbg.txt
O44 - LFC:Last File Created 27/11/2009 - 21:05:45 ---A- C:\WINDOWS\System32\FNTCACHE.DAT
O44 - LFC:Last File Created 27/11/2009 - 21:30:36 ---A- C:\WINDOWS\wwwbatch.ini
O44 - LFC:Last File Created 28/11/2009 - 18:24:59 RSHA- C:\boot.ini
O44 - LFC:Last File Created 29/11/2009 - 00:22:32 ---A- C:\WINDOWS\System32\PerfStringBackup.INI
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfc009.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfc00C.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfh009.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfh00C.dat
O44 - LFC:Last File Created 29/11/2009 - 00:53:05 ---A- C:\WINDOWS\System32\sfc_os.dll
O44 - LFC:Last File Created 29/11/2009 - 03:36:53 ---A- C:\WINDOWS\System32\wpa.dbl
---\\
O51 - MPSK:{0a52185b-d846-11de-8e0c-806d6172696f}\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
---\\
O63 - Logiciel: HijackThis 2.0.2
O63 - Logiciel: GenProc
End of the scan: 284 lines
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
~~ Fin à 19:48:27 ~~
Rapport GenProc 2.655 [1] - 01/12/2009 à 19:47:12
@ Windows XP Service Pack 3 - Mode normal
@ Mozilla Firefox 3.5.5 (fr) [Navigateur par défaut]
GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
Poste un rapport Nod32 https://www.eset.com/ (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
C:\Program Files\EsetOnlineScanner\log.txt
~~~~ INFORMATION COMPLEMENTAIRE ~~~~
Rapport de ZHPDiag v1.24.35 par Nicolas Coolman
Run by HP_Administrateur at 01/12/2009 19:48:10
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox (3.5.5)
Boot mode: Normal (Normal boot)
Total RAM: 1023 MB (48% free)
System drive C: has 283 GB (97%) free of 291 GB
---\\
C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\WINDOWS\SMINST\RECGUARD.EXE
C:\WINDOWS\system32\CTFMON.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\HerculesWiFiService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
---\\
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
---\\
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://fr.search.yahoo.com/?fr=cb-hp06
---\\
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll
---\\
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPBootOp] C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\policies\Explorer: [HonorAutoRunSetting] Data=1
O4 - HKLM\..\policies\Explorer: [NoCDBurning] Data=0
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
---\\
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\conn_support.ico
---\\
O10 - WLSP:\000000000001\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File - C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
---\\
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\SHELL32.dll
---\\
O20 - Winlogon Notify: dimsntfy - C:\WINDOWS\System32\dimsntfy.dll
---\\
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
---\\
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll
---\\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus (avast! Antivirus) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: Media Center Receiver Service (ehRecvr) - C:\WINDOWS\eHome\ehRecvr.exe
O23 - Service: Service de planification Media Center (ehSched) - C:\WINDOWS\eHome\ehSched.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: (HerculesWiFi) - C:\WINDOWS\system32\HerculesWiFiService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
O23 - Service: Media Center Extender Service (McrdSvc) - C:\WINDOWS\ehome\mcrdsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
---\\
O41 - Driver: AFD (AFD) - C:\WINDOWS\System32\drivers\afd.sys
O41 - Driver: Pilote de CD-ROM (Cdrom) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: EL hid Service (ELhid) - C:\WINDOWS\System32\Drivers\Elhid.sys
O41 - Driver: EL KB Service (ELkbd) - C:\WINDOWS\System32\Drivers\Elkbd.sys
O41 - Driver: EL Monitor Service (ELmon) - C:\WINDOWS\System32\Drivers\Elmon.sys
O41 - Driver: EL Mouse Service (ELmou) - C:\WINDOWS\System32\Drivers\Elmou.sys
O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: Pilote de filtre de gravure CD (Imapi) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: Pilote de processeur Intel (intelppm) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: Pilote IPSEC (IPSec) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: Pilote de la classe Clavier (Kbdclass) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: Pilote HID de clavier (kbdhid) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver: Pilote de la classe Souris (Mouclass) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (no object) (RDPCDD) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Pilote de périphérique terminal (TermDD) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys
O41 - Driver: (no object) (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys
---\\
O42 - Logiciel: Adobe Flash Player 10 ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin
O42 - Logiciel: Adobe Reader 9.2 - Français
O42 - Logiciel: CCleaner
O42 - Logiciel: DivX
O42 - Logiciel: Enhanced Multimedia Keyboard Solution
O42 - Logiciel: HP Boot Optimizer
O42 - Logiciel: HP DVD Play 2.1
O42 - Logiciel: HP DigitalMedia Archive
O42 - Logiciel: HP Update
O42 - Logiciel: Hercules WiFi Station N
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
O42 - Logiciel: Hotfix for Windows Media Player 10 (KB903157)
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5)
O42 - Logiciel: Installation Windows Live
O42 - Logiciel: Intel(R) Matrix Storage Manager
O42 - Logiciel: Intel(R) PRO Network Connections Drivers
O42 - Logiciel: Intel(R) Quick Resume Technology Drivers
O42 - Logiciel: Java(TM) 6 Update 17
O42 - Logiciel: Le logiciel Intel® Viiv™
O42 - Logiciel: Lecteur Windows Media 11
O42 - Logiciel: Logiciel d'archivage WinRAR
O42 - Logiciel: MSVCRT
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: MSXML 4.0 SP2 (KB973688)
O42 - Logiciel: MSXML 6.0 Parser (KB925673)
O42 - Logiciel: Microsoft .NET Framework 1.1
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297)
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft Choice Guard
O42 - Logiciel: Mozilla Firefox (3.5.5)
O42 - Logiciel: NVIDIA Drivers
O42 - Logiciel: Package de pilotes Windows - Microsoft PCTV Remote infrared receiver/transmitter (08/10/2004 5.1.2600.2180)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 100e/320e Audio (08/03/2007 5.7.0803.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 100i,110i,300i,310i, MCE (11/22/2006 1.3.3.5)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 310ix, 710ix, 3010ix, 7010ix (07/17/2007 1.0.4.1)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 340e(SE), PCTV 801e(SE) (03/25/2008 2.3.3.26)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 70e/100e/160e/170e/320e/330e/800e/880e (08/03/2007 5.7.0803.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 71e (09/28/2006 6.9.28.4)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 800i (04/29/2008 3.1.1.49)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV Stick (06/14/2007 1.0.0.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems Pinnacle Systems PCTV 310c (03/21/2007 3.1.1.24)
O42 - Logiciel: Pinnacle PCTV MCE
O42 - Logiciel: Realtek High Definition Audio Driver
O42 - Logiciel: Security Update for CAPICOM (KB931906)
O42 - Logiciel: Total Video Converter 3.50
O42 - Logiciel: TuneUp Utilities
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130)
O42 - Logiciel: Windows Internet Explorer 8
O42 - Logiciel: Windows Live Communications Platform
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: Windows Media Format 11 runtime
O42 - Logiciel: Windows Media Player Firefox Plugin
O42 - Logiciel: Windows Presentation Foundation
O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0
O42 - Logiciel: avast! Antivirus
---\\
O44 - LFC:Last File Created 01/12/2009 - 18:25:59 -S-A- C:\WINDOWS\bootstat.dat
O44 - LFC:Last File Created 01/12/2009 - 18:26:03 ---A- C:\WINDOWS\System32\nvapps.xml
O44 - LFC:Last File Created 05/11/2009 - 09:36:22 ---A- C:\WINDOWS\System32\MRT.exe
O44 - LFC:Last File Created 13/11/2009 - 11:53:42 ---A- C:\WINDOWS\System32\uxtuneup.dll
O44 - LFC:Last File Created 13/11/2009 - 12:00:24 ---A- C:\WINDOWS\System32\TURegOpt.exe
O44 - LFC:Last File Created 16/11/2009 - 14:45:50 ---A- C:\WINDOWS\System32\drivers\rrnetcap.sys
O44 - LFC:Last File Created 16/11/2009 - 14:46:12 ---A- C:\WINDOWS\System32\drivers\tbhsd.sys
O44 - LFC:Last File Created 23/11/2009 - 16:41:24 RSHA- C:\BOOT.BAK
O44 - LFC:Last File Created 23/11/2009 - 16:41:45 ---A- C:\WINDOWS\System32\$winnt$.inf
O44 - LFC:Last File Created 23/11/2009 - 16:44:00 RSHA- C:\WINDOWS\System32\drivers\103C_HP_CPC_RF759AA-ABF s7640.fr_YC_0Pavi_QCNH643_E64FRemMPA3_48_ICalcite_SASUSTeK Computer INC._V1.xx_B3.07_T060915_WXP2_L40C_M1024_J320_7Intel_8T2050_91.6_#091123_N808627DC_Z_G10DE01DD_OTSSTcorp CD DVDW TS-H652L.MRK
O44 - LFC:Last File Created 23/11/2009 - 16:44:47 ---A- C:\WINDOWS\UPGRADE.TXT
O44 - LFC:Last File Created 23/11/2009 - 16:46:58 ---A- C:\WINDOWS\System32\LuResult.txt
O44 - LFC:Last File Created 23/11/2009 - 17:03:55 ---A- C:\WINDOWS\System32\drivers\AegisP.sys
O44 - LFC:Last File Created 23/11/2009 - 17:22:32 ---A- C:\WINDOWS\System32\CONFIG.NT
O44 - LFC:Last File Created 23/11/2009 - 17:36:03 ---A- C:\WINDOWS\nsreg.dat
O44 - LFC:Last File Created 23/11/2009 - 17:57:43 RSHA- C:\ntldr
O44 - LFC:Last File Created 23/11/2009 - 18:04:04 ---A- C:\WINDOWS\System32\mapisvc.inf
O44 - LFC:Last File Created 23/11/2009 - 18:11:57 ---A- C:\WINDOWS\System32\spupdwxp.log
O44 - LFC:Last File Created 24/11/2009 - 00:08:44 ---A- C:\WINDOWS\System32\deploytk.dll
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\java.exe
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javacpl.cpl
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javaw.exe
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javaws.exe
O44 - LFC:Last File Created 24/11/2009 - 00:10:26 ---A- C:\WINDOWS\System32\FLASH.OCX
O44 - LFC:Last File Created 24/11/2009 - 17:50:22 ---A- C:\WINDOWS\System32\Log_20091124_175022_774.txt
O44 - LFC:Last File Created 24/11/2009 - 17:53:48 ---A- C:\WINDOWS\System32\Log_20091124_175348_E0C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:55:28 ---A- C:\WINDOWS\System32\Log_20091124_175528_99C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:58:29 ---A- C:\WINDOWS\System32\Log_20091124_175829_46C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:58:30 ---A- C:\WINDOWS\System32\Log_20091124_175830_A14.txt
O44 - LFC:Last File Created 24/11/2009 - 18:01:54 ---A- C:\WINDOWS\System32\Log_20091124_180154_FB8.txt
O44 - LFC:Last File Created 24/11/2009 - 18:01:56 ---A- C:\WINDOWS\System32\Log_20091124_180156_C9C.txt
O44 - LFC:Last File Created 24/11/2009 - 18:04:37 ---A- C:\WINDOWS\System32\Log_20091124_180437_EDC.txt
O44 - LFC:Last File Created 24/11/2009 - 18:04:38 ---A- C:\WINDOWS\System32\Log_20091124_180438_89C.txt
O44 - LFC:Last File Created 24/11/2009 - 18:08:34 ---A- C:\WINDOWS\System32\Log_20091124_180834_7E4.txt
O44 - LFC:Last File Created 24/11/2009 - 18:13:16 ---A- C:\WINDOWS\WMSysPr9.prx
O44 - LFC:Last File Created 24/11/2009 - 18:40:43 ---A- C:\WINDOWS\System32\amcompat.tlb
O44 - LFC:Last File Created 24/11/2009 - 18:40:43 ---A- C:\WINDOWS\System32\nscompat.tlb
O44 - LFC:Last File Created 24/11/2009 - 19:18:23 ---A- C:\WINDOWS\System32\Log_20091124_191823_714.txt
O44 - LFC:Last File Created 24/11/2009 - 19:20:39 ---A- C:\WINDOWS\System32\Log_20091124_192039_ADC.txt
O44 - LFC:Last File Created 25/11/2009 - 04:24:19 ---A- C:\WINDOWS\System32\Log_20091125_042419_FB0.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:11 ---A- C:\WINDOWS\System32\Log_20091125_042811_B2C.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:13 ---A- C:\WINDOWS\System32\Log_20091125_042813_E88.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:14 ---A- C:\WINDOWS\System32\Log_20091125_042814_DB4.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:16 ---A- C:\WINDOWS\System32\Log_20091125_042816_B78.txt
O44 - LFC:Last File Created 25/11/2009 - 04:51:10 ---A- C:\WINDOWS\System32\Log_20091125_045110_F30.txt
O44 - LFC:Last File Created 25/11/2009 - 04:51:12 ---A- C:\WINDOWS\System32\Log_20091125_045112_984.txt
O44 - LFC:Last File Created 25/11/2009 - 04:59:36 ---A- C:\WINDOWS\System32\Log_20091125_045936_488.txt
O44 - LFC:Last File Created 25/11/2009 - 04:59:38 ---A- C:\WINDOWS\System32\Log_20091125_045938_918.txt
O44 - LFC:Last File Created 25/11/2009 - 05:10:45 ---A- C:\WINDOWS\System32\Log_20091125_051045_A1C.txt
O44 - LFC:Last File Created 25/11/2009 - 05:10:46 ---A- C:\WINDOWS\System32\Log_20091125_051046_2C8.txt
O44 - LFC:Last File Created 25/11/2009 - 05:24:56 ---A- C:\WINDOWS\System32\Log_20091125_052456_9D4.txt
O44 - LFC:Last File Created 25/11/2009 - 05:24:58 ---A- C:\WINDOWS\System32\Log_20091125_052458_63C.txt
O44 - LFC:Last File Created 25/11/2009 - 05:31:10 ---A- C:\WINDOWS\System32\Log_20091125_053110_760.txt
O44 - LFC:Last File Created 25/11/2009 - 05:31:11 ---A- C:\WINDOWS\System32\Log_20091125_053111_600.txt
O44 - LFC:Last File Created 25/11/2009 - 20:15:56 ---A- C:\WINDOWS\system.ini
O44 - LFC:Last File Created 25/11/2009 - 20:15:56 ---A- C:\WINDOWS\win.ini
O44 - LFC:Last File Created 26/11/2009 - 04:49:38 ---A- C:\WINDOWS\System32\TZLog.log
O44 - LFC:Last File Created 26/11/2009 - 20:04:48 ---A- C:\WINDOWS\RTacDbg.txt
O44 - LFC:Last File Created 27/11/2009 - 21:05:45 ---A- C:\WINDOWS\System32\FNTCACHE.DAT
O44 - LFC:Last File Created 27/11/2009 - 21:30:36 ---A- C:\WINDOWS\wwwbatch.ini
O44 - LFC:Last File Created 28/11/2009 - 18:24:59 RSHA- C:\boot.ini
O44 - LFC:Last File Created 29/11/2009 - 00:22:32 ---A- C:\WINDOWS\System32\PerfStringBackup.INI
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfc009.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfc00C.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfh009.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfh00C.dat
O44 - LFC:Last File Created 29/11/2009 - 00:53:05 ---A- C:\WINDOWS\System32\sfc_os.dll
O44 - LFC:Last File Created 29/11/2009 - 03:36:53 ---A- C:\WINDOWS\System32\wpa.dbl
---\\
O51 - MPSK:{0a52185b-d846-11de-8e0c-806d6172696f}\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
---\\
O63 - Logiciel: HijackThis 2.0.2
O63 - Logiciel: GenProc
End of the scan: 284 lines
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
~~ Fin à 19:48:27 ~~
@ Windows XP Service Pack 3 - Mode normal
@ Mozilla Firefox 3.5.5 (fr) [Navigateur par défaut]
GenProc n'a détecté aucune infection caractéristique et suggère de suivre la procédure suivante :
Poste un rapport Nod32 https://www.eset.com/ (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
C:\Program Files\EsetOnlineScanner\log.txt
~~~~ INFORMATION COMPLEMENTAIRE ~~~~
Rapport de ZHPDiag v1.24.35 par Nicolas Coolman
Run by HP_Administrateur at 01/12/2009 19:48:10
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Platform : Microsoft Windows XP (5.1.2600) Service Pack 3
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox (3.5.5)
Boot mode: Normal (Normal boot)
Total RAM: 1023 MB (48% free)
System drive C: has 283 GB (97%) free of 291 GB
---\\
C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\WINDOWS\SMINST\RECGUARD.EXE
C:\WINDOWS\system32\CTFMON.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\HerculesWiFiService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
---\\
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
---\\
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://fr.search.yahoo.com/?fr=cb-hp06
---\\
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll
---\\
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
---\\
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [HPBootOp] C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\policies\Explorer: [HonorAutoRunSetting] Data=1
O4 - HKLM\..\policies\Explorer: [NoCDBurning] Data=0
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
---\\
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\conn_support.ico
---\\
O10 - WLSP:\000000000001\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000002\Winsock LSP File - C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000003\Winsock LSP File - C:\WINDOWS\system32\mswsock.dll
---\\
O14 - IERESET.INF: START_PAGE_URL=START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
---\\
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
---\\
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\system32\inetcomm.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\Windows\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\Windows\system32\SHELL32.dll
---\\
O20 - Winlogon Notify: dimsntfy - C:\WINDOWS\System32\dimsntfy.dll
---\\
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
---\\
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} - %SystemRoot%\system32\browseui.dll
---\\
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus (avast! Antivirus) - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: Media Center Receiver Service (ehRecvr) - C:\WINDOWS\eHome\ehRecvr.exe
O23 - Service: Service de planification Media Center (ehSched) - C:\WINDOWS\eHome\ehSched.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: (HerculesWiFi) - C:\WINDOWS\system32\HerculesWiFiService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
O23 - Service: Media Center Extender Service (McrdSvc) - C:\WINDOWS\ehome\mcrdsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
---\\
O41 - Driver: AFD (AFD) - C:\WINDOWS\System32\drivers\afd.sys
O41 - Driver: Pilote de CD-ROM (Cdrom) - C:\WINDOWS\system32\DRIVERS\cdrom.sys
O41 - Driver: EL hid Service (ELhid) - C:\WINDOWS\System32\Drivers\Elhid.sys
O41 - Driver: EL KB Service (ELkbd) - C:\WINDOWS\System32\Drivers\Elkbd.sys
O41 - Driver: EL Monitor Service (ELmon) - C:\WINDOWS\System32\Drivers\Elmon.sys
O41 - Driver: EL Mouse Service (ELmou) - C:\WINDOWS\System32\Drivers\Elmou.sys
O41 - Driver: Pilote pour clavier i8042 et souris sur port PS/2 (i8042prt) - C:\WINDOWS\system32\DRIVERS\i8042prt.sys
O41 - Driver: Pilote de filtre de gravure CD (Imapi) - C:\WINDOWS\system32\DRIVERS\imapi.sys
O41 - Driver: Pilote de processeur Intel (intelppm) - C:\WINDOWS\system32\DRIVERS\intelppm.sys
O41 - Driver: Pilote IPSEC (IPSec) - C:\WINDOWS\system32\DRIVERS\ipsec.sys
O41 - Driver: Pilote de la classe Clavier (Kbdclass) - C:\WINDOWS\system32\DRIVERS\kbdclass.sys
O41 - Driver: Pilote HID de clavier (kbdhid) - C:\WINDOWS\system32\DRIVERS\kbdhid.sys
O41 - Driver: Pilote de la classe Souris (Mouclass) - C:\WINDOWS\system32\DRIVERS\mouclass.sys
O41 - Driver: MRXSMB (MRxSmb) - C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
O41 - Driver: Interface NetBIOS (NetBIOS) - C:\WINDOWS\system32\DRIVERS\netbios.sys
O41 - Driver: NetBIOS sur TCP/IP (NetBT) - C:\WINDOWS\system32\DRIVERS\netbt.sys
O41 - Driver: Pilote de connexion automatique d'accès distant (RasAcd) - C:\WINDOWS\system32\DRIVERS\rasacd.sys
O41 - Driver: Rdbss (Rdbss) - C:\WINDOWS\system32\DRIVERS\rdbss.sys
O41 - Driver: (no object) (RDPCDD) - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
O41 - Driver: Pilote de filtre de lecture digitale de CD audio (redbook) - C:\WINDOWS\system32\DRIVERS\redbook.sys
O41 - Driver: Pilote du protocole TCP/IP (Tcpip) - C:\WINDOWS\system32\DRIVERS\tcpip.sys
O41 - Driver: Pilote de périphérique terminal (TermDD) - C:\WINDOWS\system32\DRIVERS\termdd.sys
O41 - Driver: Carte vidéo VGA. (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys
O41 - Driver: (no object) (VgaSave) - C:\WINDOWS\System32\drivers\vga.sys
---\\
O42 - Logiciel: Adobe Flash Player 10 ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin
O42 - Logiciel: Adobe Reader 9.2 - Français
O42 - Logiciel: CCleaner
O42 - Logiciel: DivX
O42 - Logiciel: Enhanced Multimedia Keyboard Solution
O42 - Logiciel: HP Boot Optimizer
O42 - Logiciel: HP DVD Play 2.1
O42 - Logiciel: HP DigitalMedia Archive
O42 - Logiciel: HP Update
O42 - Logiciel: Hercules WiFi Station N
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
O42 - Logiciel: Hotfix for Windows Media Player 10 (KB903157)
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5)
O42 - Logiciel: Installation Windows Live
O42 - Logiciel: Intel(R) Matrix Storage Manager
O42 - Logiciel: Intel(R) PRO Network Connections Drivers
O42 - Logiciel: Intel(R) Quick Resume Technology Drivers
O42 - Logiciel: Java(TM) 6 Update 17
O42 - Logiciel: Le logiciel Intel® Viiv™
O42 - Logiciel: Lecteur Windows Media 11
O42 - Logiciel: Logiciel d'archivage WinRAR
O42 - Logiciel: MSVCRT
O42 - Logiciel: MSXML 4.0 SP2 (KB954430)
O42 - Logiciel: MSXML 4.0 SP2 (KB973688)
O42 - Logiciel: MSXML 6.0 Parser (KB925673)
O42 - Logiciel: Microsoft .NET Framework 1.1
O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB953297)
O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft Choice Guard
O42 - Logiciel: Mozilla Firefox (3.5.5)
O42 - Logiciel: NVIDIA Drivers
O42 - Logiciel: Package de pilotes Windows - Microsoft PCTV Remote infrared receiver/transmitter (08/10/2004 5.1.2600.2180)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 100e/320e Audio (08/03/2007 5.7.0803.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 100i,110i,300i,310i, MCE (11/22/2006 1.3.3.5)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 310ix, 710ix, 3010ix, 7010ix (07/17/2007 1.0.4.1)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 340e(SE), PCTV 801e(SE) (03/25/2008 2.3.3.26)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 70e/100e/160e/170e/320e/330e/800e/880e (08/03/2007 5.7.0803.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 71e (09/28/2006 6.9.28.4)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV 800i (04/29/2008 3.1.1.49)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems PCTV Stick (06/14/2007 1.0.0.0)
O42 - Logiciel: Package de pilotes Windows - Pinnacle Systems Pinnacle Systems PCTV 310c (03/21/2007 3.1.1.24)
O42 - Logiciel: Pinnacle PCTV MCE
O42 - Logiciel: Realtek High Definition Audio Driver
O42 - Logiciel: Security Update for CAPICOM (KB931906)
O42 - Logiciel: Total Video Converter 3.50
O42 - Logiciel: TuneUp Utilities
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
O42 - Logiciel: Windows Genuine Advantage Validation Tool (KB892130)
O42 - Logiciel: Windows Internet Explorer 8
O42 - Logiciel: Windows Live Communications Platform
O42 - Logiciel: Windows Live Messenger
O42 - Logiciel: Windows Media Format 11 runtime
O42 - Logiciel: Windows Media Player Firefox Plugin
O42 - Logiciel: Windows Presentation Foundation
O42 - Logiciel: XML Paper Specification Shared Components Pack 1.0
O42 - Logiciel: avast! Antivirus
---\\
O44 - LFC:Last File Created 01/12/2009 - 18:25:59 -S-A- C:\WINDOWS\bootstat.dat
O44 - LFC:Last File Created 01/12/2009 - 18:26:03 ---A- C:\WINDOWS\System32\nvapps.xml
O44 - LFC:Last File Created 05/11/2009 - 09:36:22 ---A- C:\WINDOWS\System32\MRT.exe
O44 - LFC:Last File Created 13/11/2009 - 11:53:42 ---A- C:\WINDOWS\System32\uxtuneup.dll
O44 - LFC:Last File Created 13/11/2009 - 12:00:24 ---A- C:\WINDOWS\System32\TURegOpt.exe
O44 - LFC:Last File Created 16/11/2009 - 14:45:50 ---A- C:\WINDOWS\System32\drivers\rrnetcap.sys
O44 - LFC:Last File Created 16/11/2009 - 14:46:12 ---A- C:\WINDOWS\System32\drivers\tbhsd.sys
O44 - LFC:Last File Created 23/11/2009 - 16:41:24 RSHA- C:\BOOT.BAK
O44 - LFC:Last File Created 23/11/2009 - 16:41:45 ---A- C:\WINDOWS\System32\$winnt$.inf
O44 - LFC:Last File Created 23/11/2009 - 16:44:00 RSHA- C:\WINDOWS\System32\drivers\103C_HP_CPC_RF759AA-ABF s7640.fr_YC_0Pavi_QCNH643_E64FRemMPA3_48_ICalcite_SASUSTeK Computer INC._V1.xx_B3.07_T060915_WXP2_L40C_M1024_J320_7Intel_8T2050_91.6_#091123_N808627DC_Z_G10DE01DD_OTSSTcorp CD DVDW TS-H652L.MRK
O44 - LFC:Last File Created 23/11/2009 - 16:44:47 ---A- C:\WINDOWS\UPGRADE.TXT
O44 - LFC:Last File Created 23/11/2009 - 16:46:58 ---A- C:\WINDOWS\System32\LuResult.txt
O44 - LFC:Last File Created 23/11/2009 - 17:03:55 ---A- C:\WINDOWS\System32\drivers\AegisP.sys
O44 - LFC:Last File Created 23/11/2009 - 17:22:32 ---A- C:\WINDOWS\System32\CONFIG.NT
O44 - LFC:Last File Created 23/11/2009 - 17:36:03 ---A- C:\WINDOWS\nsreg.dat
O44 - LFC:Last File Created 23/11/2009 - 17:57:43 RSHA- C:\ntldr
O44 - LFC:Last File Created 23/11/2009 - 18:04:04 ---A- C:\WINDOWS\System32\mapisvc.inf
O44 - LFC:Last File Created 23/11/2009 - 18:11:57 ---A- C:\WINDOWS\System32\spupdwxp.log
O44 - LFC:Last File Created 24/11/2009 - 00:08:44 ---A- C:\WINDOWS\System32\deploytk.dll
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\java.exe
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javacpl.cpl
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javaw.exe
O44 - LFC:Last File Created 24/11/2009 - 00:08:45 ---A- C:\WINDOWS\System32\javaws.exe
O44 - LFC:Last File Created 24/11/2009 - 00:10:26 ---A- C:\WINDOWS\System32\FLASH.OCX
O44 - LFC:Last File Created 24/11/2009 - 17:50:22 ---A- C:\WINDOWS\System32\Log_20091124_175022_774.txt
O44 - LFC:Last File Created 24/11/2009 - 17:53:48 ---A- C:\WINDOWS\System32\Log_20091124_175348_E0C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:55:28 ---A- C:\WINDOWS\System32\Log_20091124_175528_99C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:58:29 ---A- C:\WINDOWS\System32\Log_20091124_175829_46C.txt
O44 - LFC:Last File Created 24/11/2009 - 17:58:30 ---A- C:\WINDOWS\System32\Log_20091124_175830_A14.txt
O44 - LFC:Last File Created 24/11/2009 - 18:01:54 ---A- C:\WINDOWS\System32\Log_20091124_180154_FB8.txt
O44 - LFC:Last File Created 24/11/2009 - 18:01:56 ---A- C:\WINDOWS\System32\Log_20091124_180156_C9C.txt
O44 - LFC:Last File Created 24/11/2009 - 18:04:37 ---A- C:\WINDOWS\System32\Log_20091124_180437_EDC.txt
O44 - LFC:Last File Created 24/11/2009 - 18:04:38 ---A- C:\WINDOWS\System32\Log_20091124_180438_89C.txt
O44 - LFC:Last File Created 24/11/2009 - 18:08:34 ---A- C:\WINDOWS\System32\Log_20091124_180834_7E4.txt
O44 - LFC:Last File Created 24/11/2009 - 18:13:16 ---A- C:\WINDOWS\WMSysPr9.prx
O44 - LFC:Last File Created 24/11/2009 - 18:40:43 ---A- C:\WINDOWS\System32\amcompat.tlb
O44 - LFC:Last File Created 24/11/2009 - 18:40:43 ---A- C:\WINDOWS\System32\nscompat.tlb
O44 - LFC:Last File Created 24/11/2009 - 19:18:23 ---A- C:\WINDOWS\System32\Log_20091124_191823_714.txt
O44 - LFC:Last File Created 24/11/2009 - 19:20:39 ---A- C:\WINDOWS\System32\Log_20091124_192039_ADC.txt
O44 - LFC:Last File Created 25/11/2009 - 04:24:19 ---A- C:\WINDOWS\System32\Log_20091125_042419_FB0.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:11 ---A- C:\WINDOWS\System32\Log_20091125_042811_B2C.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:13 ---A- C:\WINDOWS\System32\Log_20091125_042813_E88.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:14 ---A- C:\WINDOWS\System32\Log_20091125_042814_DB4.txt
O44 - LFC:Last File Created 25/11/2009 - 04:28:16 ---A- C:\WINDOWS\System32\Log_20091125_042816_B78.txt
O44 - LFC:Last File Created 25/11/2009 - 04:51:10 ---A- C:\WINDOWS\System32\Log_20091125_045110_F30.txt
O44 - LFC:Last File Created 25/11/2009 - 04:51:12 ---A- C:\WINDOWS\System32\Log_20091125_045112_984.txt
O44 - LFC:Last File Created 25/11/2009 - 04:59:36 ---A- C:\WINDOWS\System32\Log_20091125_045936_488.txt
O44 - LFC:Last File Created 25/11/2009 - 04:59:38 ---A- C:\WINDOWS\System32\Log_20091125_045938_918.txt
O44 - LFC:Last File Created 25/11/2009 - 05:10:45 ---A- C:\WINDOWS\System32\Log_20091125_051045_A1C.txt
O44 - LFC:Last File Created 25/11/2009 - 05:10:46 ---A- C:\WINDOWS\System32\Log_20091125_051046_2C8.txt
O44 - LFC:Last File Created 25/11/2009 - 05:24:56 ---A- C:\WINDOWS\System32\Log_20091125_052456_9D4.txt
O44 - LFC:Last File Created 25/11/2009 - 05:24:58 ---A- C:\WINDOWS\System32\Log_20091125_052458_63C.txt
O44 - LFC:Last File Created 25/11/2009 - 05:31:10 ---A- C:\WINDOWS\System32\Log_20091125_053110_760.txt
O44 - LFC:Last File Created 25/11/2009 - 05:31:11 ---A- C:\WINDOWS\System32\Log_20091125_053111_600.txt
O44 - LFC:Last File Created 25/11/2009 - 20:15:56 ---A- C:\WINDOWS\system.ini
O44 - LFC:Last File Created 25/11/2009 - 20:15:56 ---A- C:\WINDOWS\win.ini
O44 - LFC:Last File Created 26/11/2009 - 04:49:38 ---A- C:\WINDOWS\System32\TZLog.log
O44 - LFC:Last File Created 26/11/2009 - 20:04:48 ---A- C:\WINDOWS\RTacDbg.txt
O44 - LFC:Last File Created 27/11/2009 - 21:05:45 ---A- C:\WINDOWS\System32\FNTCACHE.DAT
O44 - LFC:Last File Created 27/11/2009 - 21:30:36 ---A- C:\WINDOWS\wwwbatch.ini
O44 - LFC:Last File Created 28/11/2009 - 18:24:59 RSHA- C:\boot.ini
O44 - LFC:Last File Created 29/11/2009 - 00:22:32 ---A- C:\WINDOWS\System32\PerfStringBackup.INI
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfc009.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfc00C.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfh009.dat
O44 - LFC:Last File Created 29/11/2009 - 00:23:23 ---A- C:\WINDOWS\System32\perfh00C.dat
O44 - LFC:Last File Created 29/11/2009 - 00:53:05 ---A- C:\WINDOWS\System32\sfc_os.dll
O44 - LFC:Last File Created 29/11/2009 - 03:36:53 ---A- C:\WINDOWS\System32\wpa.dbl
---\\
O51 - MPSK:{0a52185b-d846-11de-8e0c-806d6172696f}\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
---\\
O63 - Logiciel: HijackThis 2.0.2
O63 - Logiciel: GenProc
End of the scan: 284 lines
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
~~ Fin à 19:48:27 ~~
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Poste un rapport Nod32 https://www.eset.com/ (il faut utiliser Internet Explorer)
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
C:\Program Files\EsetOnlineScanner\log.txt
- coche toutes les cases à chaque fois, et lorsque c'est terminé, colle le rapport :
C:\Program Files\EsetOnlineScanner\log.txt
