Sujet Précédent Sujet Suivant

Virus => les sites de GOOGLE sont redirigés

tino1963 -  
Cosmi10 Messages postés 930 Statut Membre -
Bonjour,
voila les liens bleu de google sont redirigés vers des sites bidons voila mn rapport rsit :

Logfile of random's system information tool 1.06 (written by random/random)
Run by User at 2009-12-21 23:29:16
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 648 MB (2%) free of 35 GB
Total RAM: 503 MB (26% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:29:47, on 21/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\ASWLSVC.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ASWL2K.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\User\Local Settings\Temporary Internet Files\Content.IE5\23DL2AAX\RSIT[1].exe
C:\Program Files\trend micro\User.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe /autorun
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe (User 'Default user')
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/...
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9563.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASWLSVC - Unknown owner - C:\WINDOWS\system32\ASWLSVC.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe

--
End of file - 9461 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Google Software Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-11-17 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-03-07 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-11-23 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-07 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-07 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-10-31 32768]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-10-11 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-10-11 118784]
"ISUSScheduler"=C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe [2005-02-16 81920]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-11-17 198160]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-07 136600]
"Samsung PanelMgr"=C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe [2008-08-08 524288]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-11-10 417792]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-11-12 141600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-03-21 68856]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-11-13 323392]

C:\Documents and Settings\User\Menu Démarrer\Programmes\Démarrage
OpenOffice.org 2.3.lnk - C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-10-11 344064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=128
"NoDriveAutoRun"=128
"HonorAutoRunSetting"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil_.exe:*:Enabled:BlueSoleil"
"C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe"="C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe:*:Disabled:MessengerDiscovery Live the Windows Live Messenger addon"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

======List of files/folders created in the last 1 months======

2009-12-20 10:25:02 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-12-20 10:22:14 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-12-19 15:53:47 ----D---- C:\Documents and Settings\User\Application Data\WinRAR
2009-12-19 15:52:58 ----RASHD---- C:\autorun.inf
2009-12-19 15:47:59 ----A---- C:\UsbFix.txt
2009-12-19 15:43:28 ----D---- C:\UsbFix
2009-12-19 15:33:59 ----A---- C:\WINDOWS\OEWABLog.txt
2009-12-19 15:32:08 ----D---- C:\WINDOWS\Prefetch
2009-12-19 15:02:38 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2009-12-19 15:02:26 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-12-19 15:02:17 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2009-12-19 15:02:05 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2009-12-19 15:01:57 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2009-12-19 15:01:49 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2009-12-19 15:01:40 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2009-12-19 15:01:27 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2009-12-19 15:01:16 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2009-12-19 15:01:05 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2009-12-19 15:00:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2009-12-19 15:00:39 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2009-12-19 15:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2009-12-19 15:00:22 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-12-19 15:00:12 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2009-12-19 14:59:57 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2009-12-19 14:59:38 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2009-12-19 14:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-12-19 14:59:19 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2009-12-19 14:59:00 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2009-12-19 14:57:02 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-12-19 14:55:02 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2009-12-19 14:52:48 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-12-19 14:50:02 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
2009-12-19 14:47:43 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-12-19 14:45:35 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2009-12-19 14:42:54 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2$
2009-12-19 14:40:10 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-12-19 14:38:07 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2009-12-19 14:35:23 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-12-19 14:33:20 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-12-19 14:31:15 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-12-19 14:28:33 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-12-19 14:26:40 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-12-19 14:24:34 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-12-19 14:22:00 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-12-19 14:20:10 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2009-12-19 14:18:06 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-12-19 14:15:38 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-12-19 14:12:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-12-19 14:10:43 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-12-19 14:06:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-12-19 14:01:38 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2009-12-19 13:58:25 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-12-19 13:49:08 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_1$
2009-12-19 13:43:16 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-12-19 13:40:44 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2009-12-19 13:38:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-12-19 13:36:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-12-19 13:33:07 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-12-19 13:30:19 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-12-19 13:27:41 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-12-19 13:25:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-12-19 13:22:33 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
2009-12-19 13:20:16 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-12-19 13:17:30 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-12-19 13:14:52 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-12-19 13:12:15 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-12-19 13:09:43 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2009-12-19 13:07:02 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-12-19 13:02:53 ----A---- C:\WINDOWS\setuplog.txt
2009-12-19 13:01:13 ----N---- C:\WINDOWS\system32\comsdupd.exe
2009-12-19 13:01:12 ----N---- C:\WINDOWS\system32\smtpapi.dll
2009-12-19 13:01:12 ----N---- C:\WINDOWS\system32\rwnh.dll
2009-12-19 13:00:37 ----N---- C:\WINDOWS\system32\aaclient.dll
2009-12-19 13:00:36 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2009-12-19 13:00:36 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2009-12-19 13:00:36 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2009-12-19 13:00:35 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2009-12-19 13:00:34 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2009-12-19 13:00:34 ----N---- C:\WINDOWS\system32\ati3duag.dll
2009-12-19 13:00:33 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2009-12-19 13:00:33 ----N---- C:\WINDOWS\system32\azroles.dll
2009-12-19 13:00:33 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2009-12-19 13:00:32 ----N---- C:\WINDOWS\system32\credssp.dll
2009-12-19 13:00:31 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2009-12-19 13:00:31 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2009-12-19 13:00:31 ----N---- C:\WINDOWS\system32\dot3api.dll
2009-12-19 13:00:31 ----N---- C:\WINDOWS\system32\dimsroam.dll
2009-12-19 13:00:31 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2009-12-19 13:00:31 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2009-12-19 13:00:30 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2009-12-19 13:00:29 ----N---- C:\WINDOWS\system32\dot3ui.dll
2009-12-19 13:00:29 ----N---- C:\WINDOWS\system32\dot3svc.dll
2009-12-19 13:00:29 ----N---- C:\WINDOWS\system32\dot3msm.dll
2009-12-19 13:00:27 ----N---- C:\WINDOWS\system32\eapsvc.dll
2009-12-19 13:00:27 ----N---- C:\WINDOWS\system32\eapqec.dll
2009-12-19 13:00:27 ----N---- C:\WINDOWS\system32\eappprxy.dll
2009-12-19 13:00:27 ----N---- C:\WINDOWS\system32\eapphost.dll
2009-12-19 13:00:27 ----N---- C:\WINDOWS\system32\eappgnui.dll
2009-12-19 13:00:27 ----N---- C:\WINDOWS\system32\eappcfg.dll
2009-12-19 13:00:27 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2009-12-19 13:00:27 ----N---- C:\WINDOWS\system32\eapolqec.dll
2009-12-19 13:00:26 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2009-12-19 13:00:25 ----N---- C:\WINDOWS\system32\ieencode.dll
2009-12-19 13:00:22 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2009-12-19 13:00:22 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2009-12-19 13:00:21 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2009-12-19 13:00:21 ----N---- C:\WINDOWS\system32\kmsvc.dll
2009-12-19 13:00:21 ----N---- C:\WINDOWS\system32\kbdpash.dll
2009-12-19 13:00:21 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2009-12-19 13:00:18 ----N---- C:\WINDOWS\system32\mmcperf.exe
2009-12-19 13:00:18 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2009-12-19 13:00:18 ----N---- C:\WINDOWS\system32\mmcex.dll
2009-12-19 13:00:18 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2009-12-19 13:00:16 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2009-12-19 13:00:16 ----N---- C:\WINDOWS\system32\mssha.dll
2009-12-19 13:00:15 ----N---- C:\WINDOWS\system32\napstat.exe
2009-12-19 13:00:15 ----N---- C:\WINDOWS\system32\napmontr.dll
2009-12-19 13:00:15 ----N---- C:\WINDOWS\system32\napipsec.dll
2009-12-19 13:00:15 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2009-12-19 13:00:12 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2009-12-19 13:00:11 ----N---- C:\WINDOWS\system32\onex.dll
2009-12-19 13:00:10 ----N---- C:\WINDOWS\system32\qagent.dll
2009-12-19 13:00:09 ----N---- C:\WINDOWS\system32\s3gnb.dll
2009-12-19 13:00:09 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2009-12-19 13:00:09 ----N---- C:\WINDOWS\system32\rasqec.dll
2009-12-19 13:00:09 ----N---- C:\WINDOWS\system32\qutil.dll
2009-12-19 13:00:09 ----N---- C:\WINDOWS\system32\qcliprov.dll
2009-12-19 13:00:09 ----N---- C:\WINDOWS\system32\qagentrt.dll
2009-12-19 13:00:08 ----N---- C:\WINDOWS\system32\slgen.dll
2009-12-19 13:00:08 ----N---- C:\WINDOWS\system32\slextspk.dll
2009-12-19 13:00:08 ----N---- C:\WINDOWS\system32\slcoinst.dll
2009-12-19 13:00:08 ----N---- C:\WINDOWS\system32\setupn.exe
2009-12-19 13:00:07 ----N---- C:\WINDOWS\system32\slserv.exe
2009-12-19 13:00:07 ----N---- C:\WINDOWS\system32\slrundll.exe
2009-12-19 13:00:01 ----N---- C:\WINDOWS\system32\tspkg.dll
2009-12-19 13:00:01 ----N---- C:\WINDOWS\system32\tsgqec.dll
2009-12-19 12:59:58 ----N---- C:\WINDOWS\system32\wlanapi.dll
2009-12-19 12:59:53 ----N---- C:\WINDOWS\slrundll.exe
2009-12-19 12:59:49 ----D---- C:\WINDOWS\l2schemas
2009-12-19 12:59:48 ----D---- C:\WINDOWS\system32\fr
2009-12-19 12:59:48 ----D---- C:\WINDOWS\system32\bits
2009-12-19 12:42:57 ----A---- C:\WINDOWS\003036_.tmp
2009-12-19 12:35:07 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-12-17 19:18:09 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2009-12-17 19:16:26 ----D---- C:\Program Files\iPod
2009-12-17 19:15:30 ----D---- C:\Program Files\iTunes
2009-12-17 19:15:30 ----D---- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-12-17 19:14:33 ----D---- C:\Program Files\Bonjour
2009-12-17 19:09:01 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-12-17 19:08:52 ----A---- C:\WINDOWS\system32\usbaaplrc.dll
2009-12-16 17:52:59 ----HD---- C:\WINDOWS\msdownld.tmp
2009-12-16 17:48:55 ----D---- C:\WINDOWS\ie8updates
2009-12-16 17:43:12 ----A---- C:\WINDOWS\imsins.BAK
2009-12-16 17:35:43 ----HDC---- C:\WINDOWS\ie8
2009-12-16 17:14:20 ----D---- C:\WINDOWS\Minidump
2009-12-16 00:49:28 ----D---- C:\Program Files\trend micro
2009-12-16 00:49:23 ----D---- C:\rsit
2009-12-16 00:26:36 ----A---- C:\HijackThis.exe
2009-12-15 23:54:19 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-12-15 23:54:19 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-12-15 17:37:41 ----A---- C:\WINDOWS\ssndii.exe
2009-12-15 17:37:35 ----A---- C:\WINDOWS\system32\msxml2a.dll
2009-12-15 17:37:34 ----A---- C:\WINDOWS\system32\ssusbpn.dll
2009-12-15 17:37:34 ----A---- C:\WINDOWS\system32\ssdevm.dll
2009-12-15 17:37:34 ----A---- C:\WINDOWS\system32\msxml4a.dll
2009-12-15 17:37:32 ----D---- C:\WINDOWS\Samsung
2009-12-15 17:35:53 ----A---- C:\WINDOWS\system32\cl31cci.exe
2009-12-15 17:35:53 ----A---- C:\WINDOWS\system32\cl31cci.dll
2009-12-15 17:35:52 ----A---- C:\WINDOWS\system32\cl31cl3.dll
2009-12-15 17:32:27 ----D---- C:\Program Files\Samsung
2009-12-13 12:03:43 ----D---- C:\Documents and Settings\User\Application Data\Malwarebytes
2009-12-13 12:03:33 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-12-10 15:34:30 ----HDC---- C:\WINDOWS\$NtUninstallKB970430_0$
2009-12-10 15:33:16 ----HDC---- C:\WINDOWS\$NtUninstallKB974318_0$
2009-12-10 15:30:29 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2009-12-10 15:26:59 ----HDC---- C:\WINDOWS\$NtUninstallKB974392_0$
2009-12-10 15:19:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971737_0$
2009-11-26 13:54:59 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$
2009-11-26 13:51:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_0$

======List of files/folders modified in the last 1 months======

2009-12-21 23:21:30 ----D---- C:\Documents and Settings\User\Application Data\DNA
2009-12-21 23:17:54 ----D---- C:\WINDOWS\Temp
2009-12-21 23:13:21 ----D---- C:\Documents and Settings\User\Application Data\OpenOffice.org2
2009-12-21 23:12:11 ----D---- C:\WINDOWS\system32\CatRoot2
2009-12-21 23:11:28 ----D---- C:\Program Files\DNA
2009-12-21 23:11:22 ----SD---- C:\WINDOWS\Tasks
2009-12-21 11:38:12 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-12-21 10:57:52 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2009-12-21 10:56:21 ----SHD---- C:\WINDOWS\Installer
2009-12-21 10:56:21 ----RSD---- C:\WINDOWS\assembly
2009-12-21 10:54:05 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-12-20 12:17:11 ----D---- C:\WINDOWS\system32
2009-12-20 11:51:06 ----D---- C:\Documents and Settings\User\Application Data\vlc
2009-12-20 11:50:57 ----A---- C:\WINDOWS\NeroDigital.ini
2009-12-20 10:35:28 ----D---- C:\WINDOWS
2009-12-20 10:34:46 ----D---- C:\WINDOWS\system32\wbem
2009-12-20 10:25:14 ----HD---- C:\WINDOWS\inf
2009-12-20 10:25:06 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-12-20 10:23:43 ----D---- C:\WINDOWS\system32\CatRoot
2009-12-20 10:22:10 ----HD---- C:\WINDOWS\$hf_mig$
2009-12-19 15:52:46 ----SHD---- C:\RECYCLER
2009-12-19 15:36:18 ----D---- C:\WINDOWS\Debug
2009-12-19 15:30:47 ----D---- C:\WINDOWS\system32\Setup
2009-12-19 15:30:47 ----D---- C:\WINDOWS\AppPatch
2009-12-19 15:30:46 ----RSD---- C:\WINDOWS\Fonts
2009-12-19 15:30:44 ----D---- C:\WINDOWS\system32\drivers
2009-12-19 15:00:59 ----D---- C:\Program Files\Outlook Express
2009-12-19 13:13:20 ----D---- C:\Program Files\Messenger
2009-12-19 13:12:28 ----D---- C:\WINDOWS\security
2009-12-19 13:01:29 ----D---- C:\WINDOWS\WinSxS
2009-12-19 13:01:18 ----D---- C:\WINDOWS\ehome
2009-12-19 13:01:10 ----D---- C:\WINDOWS\system32\inetsrv
2009-12-19 13:01:09 ----D---- C:\WINDOWS\Help
2009-12-19 13:01:08 ----D---- C:\WINDOWS\network diagnostic
2009-12-19 13:01:07 ----D---- C:\WINDOWS\ime
2009-12-19 12:59:53 ----D---- C:\WINDOWS\system32\fr-fr
2009-12-19 12:59:52 ----D---- C:\WINDOWS\system32\usmt
2009-12-19 12:59:47 ----D---- C:\WINDOWS\PeerNet
2009-12-19 12:59:47 ----D---- C:\Program Files\Movie Maker
2009-12-19 12:51:47 ----D---- C:\WINDOWS\ServicePackFiles
2009-12-19 12:51:26 ----D---- C:\WINDOWS\system32\Restore
2009-12-19 12:51:25 ----D---- C:\WINDOWS\system32\npp
2009-12-19 12:51:24 ----D---- C:\WINDOWS\msagent
2009-12-19 12:51:21 ----D---- C:\WINDOWS\srchasst
2009-12-19 12:51:20 ----D---- C:\Program Files\NetMeeting
2009-12-19 12:51:17 ----D---- C:\WINDOWS\system32\Com
2009-12-19 12:51:13 ----D---- C:\Program Files\Windows Media Player
2009-12-19 12:51:11 ----D---- C:\Program Files\Windows NT
2009-12-19 12:51:03 ----D---- C:\Program Files\Fichiers communs\System
2009-12-19 12:50:23 ----D---- C:\WINDOWS\system32\oobe
2009-12-19 12:50:18 ----D---- C:\WINDOWS\system
2009-12-17 19:42:34 ----D---- C:\Documents and Settings\User\Application Data\Apple Computer
2009-12-17 19:30:57 ----SD---- C:\Documents and Settings\User\Application Data\Microsoft
2009-12-17 19:18:09 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-17 19:16:26 ----RD---- C:\Program Files
2009-12-17 19:16:23 ----D---- C:\Program Files\Fichiers communs\Apple
2009-12-17 19:13:54 ----D---- C:\Program Files\QuickTime
2009-12-16 18:19:38 ----D---- C:\WINDOWS\Media
2009-12-16 18:19:37 ----D---- C:\Program Files\Internet Explorer
2009-12-15 16:43:39 ----D---- C:\Documents and Settings
2009-12-13 16:34:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-12-13 16:07:18 ----HDC---- C:\WINDOWS\$NtUninstallKB942840$
2009-12-13 10:42:45 ----D---- C:\Documents and Settings\User\Application Data\dvdcss
2009-12-10 15:39:00 ----D---- C:\Program Files\Java
2009-12-10 15:29:11 ----D---- C:\WINDOWS\ie7updates
2009-12-07 23:41:35 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-12-01 21:06:19 ----A---- C:\WINDOWS\system32\MRT.exe
2009-11-25 00:54:29 ----A---- C:\WINDOWS\system32\aswBoot.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 40576]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14720]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2003-10-14 11043]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2004-02-24 4816]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2007-05-11 34704]
R3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [2007-03-05 27792]
R3 CmBatt;Pilote d'adaptateur secteur Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2003-10-14 1043072]
R3 HSFHWICH;HSFHWICH; C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys [2003-10-14 197504]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-10-11 724221]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ATKACPI.sys [2007-08-28 5760]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-09-28 5888]
R3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2004-02-24 612032]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2007-03-05 34448]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2007-03-05 44304]
R3 w70n51;Pilote des cartes réseau Intel(R) PRO/Wireless 7100 pour Windows XP; C:\WINDOWS\system32\DRIVERS\w70n51.sys [2006-08-02 674560]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2003-10-14 678400]
S2 DgiVecp;DgiVecp; \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys []
S2 SSPORT;SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2007-03-05 18320]
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [2007-05-09 36496]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]
S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WsAudioDevice_383;WsAudioDevice_383; C:\WINDOWS\system32\drivers\WsAudioDevice_383.sys [2008-11-19 16640]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 ASWLSVC;ASWLSVC; C:\WINDOWS\system32\ASWLSVC.exe [2004-05-06 496640]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-07 152984]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-24 183280]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2008-06-26 576680]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Configuration: Windows XP Internet Explorer 8.0
A voir également:

2 réponses

Réponse 1 / 2
tino1963
 
HELP PLEASE !
0
Réponse 2 / 2
Cosmi10 Messages postés 930 Statut Membre 89
 
bonjour,

Le rapport ne montre aucune infection.

Par contre, une des premère ligne du rapport montre :
System drive C: has 648 MB (2%) free of 35 GB
Ce qui est synonyme de ralentissement, messages d'erreurs etc..

Ont doit toujours, avoir au moins 10% d'espace libre(= 3.5Go) sur le disque/partition ou est installé Windows, pour qu'il fonctionne correctement. Ou au minimum 15%(= 5.2Go) si ont utilise la veille prolongée.

Donc, désinstaller déplacer des données sur un autre support ou désinstaller quelques logiciels que vous n'utilisez pas. >>>>>> 1 DVD = 4.5 Go

Il y a aussi les désinstallateurs de mises à jours de Windows qui peuvent être supprimer. Lorsqu'après 24-48hre l'installation d'une mise à jours fonctionne bien et ne cause aucun problème. Sont désinstallateur n'est plus nécessaire.
Avec ça c'est +-1.5Go d'espace de libérés.
Je vous laisserez cette procédure après, si vous le voulez.

Allez faire déplacer des données immédiatement.

Après vous supprimerez les lignes proposées avec hijackthis.
Ce qui permettra d'améliorer les performances de Windows.

Pour de suite commencez avec un scan préventif.
* Télécharger / installez la version gratuite de Malwarebyte's.
* Lancez la "Mise à jours",
* Dans "Recherche" sélectionnez un "Scan complet".
* Le scan complété, le rapport va s'ouvrir, sauvegarder le sur le bureau , et appuyer immédiatement sur "Supprimer la sélection".
* S'il est proposé de redémarrer le PC -> Valider par l'affirmative.
* Vous posterez le rapport de Malwarebytes, (aussi disponible dans "Rapports/Logs").

___________________________________________________________

* Télécharger CCleaner.
* Installer CCleaner en laissant seulement les options suivantes cochées :
o Ajouter un raccourci sur le Bureau
o Contrôler automatiquement les mises à jour de CCleaner
* Lancer CCleaner , Cliquer sur « Options » → « Avancé » et décocher la case « Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures ».
* Dans le menu « Nettoyeur » → « Analyse ».
* Ensuite cliquer sur le bouton « Lancer le nettoyage ».

Après aller Re-Cocher « Avancé » et décocher la case « Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures ».
___________________________________________________________

* Fermer Internet Explorer.

* Relancer HijackThis, (aussi ici C:\Program Files\trend micro\User.exe )
* Appuyer sur [Do a scan system only],
* Cocher les lignes suivantes et appuyer sur [Fix Checked] pour les supprimer.
***** Et redémarrer le PC. 

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens 
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) 
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file) 
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll     
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file) 
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"     
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe     
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe     
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start     
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot     
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"     
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"     
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe /autorun     
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime     
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"     
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe     
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"     
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"     
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')     
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')     
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')     
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')     
O4 - S-1-5-18 Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe (User 'SYSTEM')     
O4 - .DEFAULT Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe (User 'Default user')     
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe     
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe     
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe     
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe

___________________________________________________________

Aller désinstaller tout les objets de Google que vous n'utilisez pas.
Un ajout autant en performances que d'espace.
0