Sujet Précédent Sujet Suivant

MALWARE DEFENSE

miloud -  
 patrice ou miloud -
Bonjour,
malware s'installe et ne se desisntalle pas help me please

patrice
A voir également:

3 réponses

Réponse 1 / 3
Utilisateur anonyme
 
Salut Patrice ,

▶ Télécharge random's system information tool (RSIT) et sauvegarde-le sur le Bureau.

• Double-clique sur RSIT.exe afin de lancer RSIT.

• Lis le contenu de l'écran Disclaimer puis clique sur Continue (si tu acceptes les conditions).

• Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

• Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt .

• Tuto : https://forum.pcastuces.com/randoms_system_information_tool_rsit-f31s31.htm
0
miloud ou patrice lol
 
bonjour

merci tout d"abord de m'occuper de mon cas merci


donc deja impossible de telecharger rsit ca me mets unvalide win 32

ca commence bien


patrice

jai deux moteurs de recherche mozilla qui ne demarre pas par contre msn tout seul fonctionne c'est de la que je peux t'envoyer ce message

ah j'ai installé free et apres tout s'est déclanché avec malwware
0
patrice ou miloud
 
voila ce que j'ai obtenu mais jai du prendre clé usb a mon boulot pour prendre le programme rsit



Logfile of random's system information tool 1.06 (written by random/random)
Run by Miloud at 2009-12-28 17:47:45
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 14 GB (14%) free of 100 GB
Total RAM: 503 MB (26% free)


======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Défragmenteur de disque.job
C:\WINDOWS\tasks\Google Software Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{E163E014-1A39-4EFC-9281-C10B13CC43B9}.job
C:\WINDOWS\tasks\WGASetup.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{57F9FEF0-6EAE-4030-A68A-30FDC38B1B13}]
TBSB09293 Class - C:\Program Files\DosPop Toolbar\tbu11\dospop.dll [2007-09-17 2158592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6a7400d6-6615-4a06-a4d1-48979fa6e868}]
iminent-en Toolbar - C:\Program Files\iminent-en\tbimi1.dll [2009-05-27 2094616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Iminent.BHO.NavigationError - C:\Program Files\Iminent\SearchTheWeb\Iminent.BHO.NavigationError.dll [2009-04-08 102912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2008-10-11 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-06-01 668656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
SearchSettings Class - C:\Program Files\Search Settings\kb127\SearchSettings.dll [2008-06-12 1111904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{6a7400d6-6615-4a06-a4d1-48979fa6e868} - iminent-en Toolbar - C:\Program Files\iminent-en\tbimi1.dll [2009-05-27 2094616]
{66886C4D-B307-4ECA-A228-52CA9B9851A4}
{BFB5F154-9212-46F3-B547-AC6106030A54} - SampleToolbar X - C:\Program Files\DosPop Toolbar\tbu11\dospop.dll [2007-09-17 2158592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\System32\igfxtray.exe [2007-01-13 131072]
"HotKeysCmds"=C:\WINDOWS\System32\hkcmd.exe [2007-01-13 163840]
"Persistence"=C:\WINDOWS\System32\igfxpers.exe [2007-01-13 135168]
"LXBUCATS"=rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBUtime.dll,_RunDLLEntry@16 []
"lxbumon.exe"=C:\Program Files\Lexmark 6200 Series\lxbumon.exe [2005-01-18 196608]
"EzPrint"=C:\Program Files\Lexmark 6200 Series\ezprint.exe [2004-09-17 61440]
"EoEngine"= []
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-10-28 17331200]
"SkyTel"=C:\WINDOWS\SkyTel.EXE [2007-11-20 1826816]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"SearchSettings"=C:\Program Files\Search Settings\SearchSettings.exe [2008-06-12 991584]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"Iminent.Notifier"=C:\Program Files\Iminent\SearchTheWeb\Iminent.Notifier.exe [2009-04-09 496640]
"IMBooster"=C:\Program Files\Iminent\IMBooster\IMBooster.exe /warmup []
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-10-12 68856]
"richtx64.exe"=C:\DOCUME~1\Miloud\LOCALS~1\Temp\richtx64.exe [2009-12-24 675840]
"Malware Defense"=C:\Program Files\Malware Defense\mdefense.exe [2009-12-26 1756088]

C:\Documents and Settings\Miloud\Menu Démarrer\Programmes\Démarrage
Notification de cadeaux MSN.lnk - C:\Documents and Settings\Miloud\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2007-01-13 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=95000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"D:\eMule\emule.exe"="D:\eMule\emule.exe:*:Enabled:eMule"
"C:\eMule\emule.exe"="C:\eMule\emule.exe:*:Enabled:eMule"
"C:\Documents and Settings\Miloud\Local Settings\Temp\ImInstaller\HiYo_Installer.exe"="C:\Documents and Settings\Miloud\Local Settings\Temp\ImInstaller\HiYo_Installer.exe:*:Enabled:IncrediMail Installer"
"D:\LA MUSIQUE\eMule\emule.exe"="D:\LA MUSIQUE\eMule\emule.exe:*:Enabled:eMule"
"C:\WINDOWS\system32\rtcshare.exe"="C:\WINDOWS\system32\rtcshare.exe:*:Enabled:Partage de l'application RTC"
"C:\Program Files\NetMeeting\conf.exe"="C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting®"
"C:\Documents and Settings\Miloud\Local Settings\Temp\ImInstaller\magentic_installer.exe"="C:\Documents and Settings\Miloud\Local Settings\Temp\ImInstaller\magentic_installer.exe:*:Enabled:IncrediMail Installer"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

======List of files/folders created in the last 1 months======

2009-12-28 17:45:28 ----D---- C:\rsit
2009-12-27 11:09:03 ----D---- C:\Program Files\Avira
2009-12-27 11:09:03 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-12-27 10:27:03 ----A---- C:\WINDOWS\zllsputility.exe
2009-12-27 10:26:15 ----A---- C:\WINDOWS\system32\vsregexp.dll
2009-12-27 10:26:12 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2009-12-27 10:26:12 ----A---- C:\WINDOWS\system32\zlcomm.dll
2009-12-27 10:25:57 ----A---- C:\WINDOWS\system32\vswmi.dll
2009-12-27 10:25:56 ----A---- C:\WINDOWS\system32\zpeng25.dll
2009-12-27 10:25:56 ----A---- C:\WINDOWS\system32\vsxml.dll
2009-12-27 10:25:55 ----D---- C:\WINDOWS\system32\ZoneLabs
2009-12-27 10:25:55 ----A---- C:\WINDOWS\system32\vspubapi.dll
2009-12-27 10:25:55 ----A---- C:\WINDOWS\system32\vsmonapi.dll
2009-12-27 10:25:50 ----D---- C:\Program Files\Zone Labs
2009-12-27 10:24:48 ----D---- C:\WINDOWS\Internet Logs
2009-12-27 10:24:47 ----A---- C:\WINDOWS\system32\vsutil.dll
2009-12-27 10:24:47 ----A---- C:\WINDOWS\system32\vsinit.dll
2009-12-27 10:24:47 ----A---- C:\WINDOWS\system32\vsdata.dll
2009-12-26 12:22:46 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-12-26 12:21:30 ----D---- C:\Program Files\Malware Defense
2009-12-26 11:01:27 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-12-25 11:12:18 ----D---- C:\0370d7b362427cc9857f6781
2009-12-25 11:03:01 ----D---- C:\ec5a2f3d451aecc6c3419133c7
2009-12-25 10:50:40 ----D---- C:\9a72131edcefc733a964e6
2009-12-25 10:50:34 ----D---- C:\ef87cc038ee68dd02a8e0e916249d54a
2009-12-25 10:39:53 ----D---- C:\Program Files\Astonsoft
2009-12-25 10:28:18 ----A---- C:\Documents and Settings\Miloud\Application Data\ezplay.ini
2009-12-25 09:54:28 ----D---- C:\163f505062806eba3a93fc8b3b4abe
2009-12-25 09:54:25 ----D---- C:\19143c7663f5c6cef8cf
2009-12-25 00:54:11 ----D---- C:\f0ce6dfdbe2dbbf086
2009-12-25 00:54:09 ----D---- C:\3bba2f02363394384a4c1dc5
2009-12-24 19:34:30 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2009-12-24 19:34:27 ----A---- C:\WINDOWS\imsins.BAK
2009-12-24 19:34:24 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2009-12-24 14:04:37 ----D---- C:\54108d839ea89b7d31a0046546
2009-12-24 14:04:35 ----D---- C:\c0429b467a3050161a
2009-12-24 12:33:45 ----A---- C:\WINDOWS\system32\krl32mainweq.dll
2009-12-24 12:31:15 ----A---- C:\Documents and Settings\All Users\Application Data\sysReserve.ini
2009-12-23 22:38:37 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2009-12-23 22:38:05 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2009-12-23 22:37:33 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$
2009-12-23 22:37:27 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2009-12-23 22:37:21 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2009-12-23 22:36:52 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-12-23 22:34:23 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2$
2009-12-23 22:34:15 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2009-12-23 22:34:08 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2009-12-23 22:33:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2009-12-23 22:33:52 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-12-23 22:33:42 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2009-12-23 22:33:03 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-12-23 22:32:29 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-12-23 22:32:20 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2009-12-23 22:32:11 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-12-23 22:32:03 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2009-12-23 22:31:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2009-12-23 22:31:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2009-12-23 22:30:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2009-12-23 22:30:35 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2009-12-23 22:27:56 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-12-23 22:27:36 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2009-12-23 22:27:04 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2009-12-23 22:26:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2009-12-23 22:26:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973525$
2009-12-23 22:24:15 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2009-12-23 22:24:07 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2009-12-23 22:23:55 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$

======List of files/folders modified in the last 1 months======

2009-12-28 17:47:45 ----D---- C:\Program Files\trend micro
2009-12-28 17:43:12 ----RD---- C:\Program Files
2009-12-28 17:43:11 ----HD---- C:\WINDOWS\system32\drivers
2009-12-28 15:26:35 ----D---- C:\WINDOWS\system32
2009-12-28 15:26:35 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-12-28 15:24:07 ----D---- C:\WINDOWS\Temp
2009-12-28 15:22:40 ----SD---- C:\WINDOWS\Tasks
2009-12-28 15:22:19 ----D---- C:\WINDOWS\system32\CatRoot2
2009-12-28 15:20:55 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-12-28 13:06:53 ----D---- C:\WINDOWS\Prefetch
2009-12-28 13:01:42 ----D---- C:\Program Files\Mozilla Firefox
2009-12-27 16:09:52 ----D---- C:\WINDOWS\Microsoft.NET
2009-12-27 11:36:13 ----D---- C:\WINDOWS
2009-12-27 11:35:03 ----HD---- C:\Config.Msi
2009-12-27 11:09:15 ----HD---- C:\WINDOWS\inf
2009-12-27 11:08:18 ----SHD---- C:\WINDOWS\Installer
2009-12-27 11:08:18 ----D---- C:\WINDOWS\WinSxS
2009-12-26 19:53:48 ----RSD---- C:\WINDOWS\assembly
2009-12-26 12:23:10 ----D---- C:\WINDOWS\system32\CatRoot
2009-12-26 12:22:59 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-12-26 11:18:18 ----D---- C:\Program Files\DosPop Toolbar
2009-12-26 11:17:05 ----D---- C:\musique pat
2009-12-26 10:44:04 ----D---- C:\Program Files\VSO
2009-12-26 10:43:42 ----D---- C:\Documents and Settings\Miloud\Application Data\Vso
2009-12-26 10:43:41 ----A---- C:\Documents and Settings\Miloud\Application Data\inst.exe
2009-12-26 10:42:54 ----SHD---- C:\RECYCLER
2009-12-26 10:38:36 ----D---- C:\Documents and Settings\All Users\Application Data\Vso
2009-12-26 09:38:19 ----D---- C:\Program Files\Elaborate Bytes
2009-12-25 11:03:56 ----D---- C:\WINDOWS\system32\XPSViewer
2009-12-25 11:03:53 ----D---- C:\WINDOWS\system32\en-us
2009-12-25 11:03:51 ----RSD---- C:\WINDOWS\Fonts
2009-12-25 10:59:26 ----D---- C:\Program Files\Internet Explorer
2009-12-25 10:34:15 ----D---- C:\Program Files\Free Easy Burner
2009-12-24 19:17:04 ----D---- C:\WINDOWS\Debug
2009-12-24 19:15:25 ----D---- C:\Program Files\fond-ecran-wallpaper
2009-12-24 18:51:50 ----HD---- C:\WINDOWS\$hf_mig$
2009-12-24 13:10:13 ----D---- C:\Program Files\Wanadoo
2009-12-24 12:23:35 ----D---- C:\Program Files\Microsoft Silverlight
2009-12-23 22:33:24 ----D---- C:\WINDOWS\ie8updates
2009-12-23 22:30:47 ----D---- C:\Program Files\Outlook Express
2009-12-23 19:30:37 ----D---- C:\Program Files\Microsoft
2009-12-23 19:29:06 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-23 19:28:25 ----D---- C:\Program Files\Windows Live
2009-12-23 19:26:49 ----D---- C:\WINDOWS\system32\DirectX
2009-12-23 19:03:18 ----D---- C:\WINDOWS\Help
2009-12-23 19:03:09 ----D---- C:\Program Files\iminent-en
2009-12-17 14:54:23 ----D---- C:\Documents and Settings\Miloud\Application Data\dvdcss
2009-12-01 12:06:20 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 40576]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2009-10-12 317072]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2009-04-15 5632]
R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\System32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-05-03 278728]
R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-03-24 55640]
R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys [2009-08-05 54752]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-05-03 25416]
R2 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys []
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-10-23 100384]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\System32\DRIVERS\b57xp32.sys [2007-11-29 163328]
R3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\igxpmp32.sys [2007-01-13 5672032]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2004-04-15 612416]
R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
S2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
S3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
S3 BTKRNL;Enumérateur de bus Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ezplay;VSO Software ezplay; C:\WINDOWS\System32\Drivers\ezplay.sys [2009-12-25 94208]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-31 4942336]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 ovt530;Webcam Deluxe; C:\WINDOWS\System32\Drivers\ov530vid.sys [2005-03-15 161792]
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-08-14 47360]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2007-05-02 83592]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2007-05-02 15112]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2007-05-02 109704]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 VIAudio;Contrôleur audio VIA AC'97 (WDM); C:\WINDOWS\system32\drivers\ac97via.sys [2004-08-03 84480]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2009-10-17 2384240]
R3 lxbu_device;lxbu_device; C:\WINDOWS\system32\lxbucoms.exe [2005-01-06 462848]
S2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
S2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
S2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
S2 gupdate1c9e2c4e84d6b28;Service Google Update (gupdate1c9e2c4e84d6b28); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-06-01 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-01 183280]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe [2008-12-01 33752]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
0
Réponse 2 / 3
fix200 Messages postés 3365 Statut Contributeur sécurité 158
 
Salut à vous deux,

DOUBLON
0
Réponse 3 / 3
Utilisateur anonyme
 
salut , je suppose que ta déja fait :

1ere s panneau de config / installer ou distallez programme / puis tu sélectionne le con cerné.

2e : en monde sans échec ,

en démarrent ton pc tu appuis plusieurs fois sur f5 ou f8 (ça dépend des pc)
un écran noir vas s'afficher est la tu choisis le mode sans échec ,

tu fait la même manipulation (1ere s )

@+ tien moi courant
0

Discussions similaires

supprimer tor.jack android
sabinelouisonbruno -
akaloupile -

4 réponses
Tor.Jack.Malware
Camille -
bazfile -

1 réponse
urldefense.com : Kézaco?
Tessel75 -
Tessel75 -

4 réponses
Win64 malware gen
jules555 -
bazfile -

1 réponse
je n'arrive pas a supprimer un virus sur mon téléphone
nath340 -
christou -

26 réponses