Mon pc ce bloque sans cesse
interceptor
-
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,
Je n'arrive pas à me débarrasser de ce problème. Mon pc ce bloque régulièrement (toutes les 10/15 minutes) pendant environs 1 minutes. Avast, antivir, spyboot, malwarebyte, ne voient rien. Avec ad-remover j'en ai désinstaller quelques un. Mais le problème persiste. merci à celle ou celui qui pourra m'aider. Je poste les rapports de Rsit.
Logfile of random's system information tool 1.06 (written by random/random)
Run by mathieu at 2010-01-12 15:51:53
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 876 GB (92%) free of 954 GB
Total RAM: 3326 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:52:02, on 12/01/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\program files\valve\steam\steam.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\mathieu\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\mathieu.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O2 - BHO: CStat - {DD92DE22-ED91-4560-B788-DEE2B26612E6} - C:\Program Files\DeviceVM\Browser Configuration Utility\IEHelper.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: Service Google Update (gupdate1ca5acc920c6216) (gupdate1ca5acc920c6216) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
Je n'arrive pas à me débarrasser de ce problème. Mon pc ce bloque régulièrement (toutes les 10/15 minutes) pendant environs 1 minutes. Avast, antivir, spyboot, malwarebyte, ne voient rien. Avec ad-remover j'en ai désinstaller quelques un. Mais le problème persiste. merci à celle ou celui qui pourra m'aider. Je poste les rapports de Rsit.
Logfile of random's system information tool 1.06 (written by random/random)
Run by mathieu at 2010-01-12 15:51:53
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 876 GB (92%) free of 954 GB
Total RAM: 3326 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:52:02, on 12/01/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\program files\valve\steam\steam.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\mathieu\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\mathieu.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O2 - BHO: CStat - {DD92DE22-ED91-4560-B788-DEE2B26612E6} - C:\Program Files\DeviceVM\Browser Configuration Utility\IEHelper.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: Service Google Update (gupdate1ca5acc920c6216) (gupdate1ca5acc920c6216) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
A voir également:
- Mon pc ce bloque sans cesse
- Mon pc est lent - Guide
- Reinitialiser pc - Guide
- Code puk bloqué - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Plus de son sur mon pc - Guide
7 réponses
sur un ordi un seul antivirus sinon cela plante!
vire avast comme ceci:
https://www.avast.com/fr-fr/uninstall-utility
si cela persiste cela peut venir d'un souci matos: voir la temperature du pc avec speedfan
et tester la memoire avec memtest
vire avast comme ceci:
https://www.avast.com/fr-fr/uninstall-utility
si cela persiste cela peut venir d'un souci matos: voir la temperature du pc avec speedfan
et tester la memoire avec memtest
bonjour,
Merci pour ta réponse. Je n'ai installer antivir et spyboot que depuis que j'ai ce problème, en désactivant avast les blocages persistent. Les scans de rsit ne révèle rien?
Lors de ces blocages le disque dur mouline beaucoup.
Un problème matériel? il est neuf, il fonctionne très bien depuis 2 mois et je n'ai rien rajouter depuis son achat.
j'ai tenter d'installer memtest mais je ne le retrouve pas sur mon ordi...
Merci pour ta réponse. Je n'ai installer antivir et spyboot que depuis que j'ai ce problème, en désactivant avast les blocages persistent. Les scans de rsit ne révèle rien?
Lors de ces blocages le disque dur mouline beaucoup.
Un problème matériel? il est neuf, il fonctionne très bien depuis 2 mois et je n'ai rien rajouter depuis son achat.
j'ai tenter d'installer memtest mais je ne le retrouve pas sur mon ordi...
télécharge combofix (par sUBs) ici :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
et enregistre le sur le bureau.
déconnecte toi d'internet et ferme toutes tes applications.
désactive tes protections (antivirus, parefeu, garde en temps réel de l'antispyware)
double-clique sur combofix.exe et suis les instructions
à la fin, il va produire un rapport C:\ComboFix.txt
réactive ton parefeu, ton antivirus, la garde de ton antispyware
copie/colle le rapport C:\ComboFix.txt dans ta prochaine réponse.
Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer l'ordi.
Tu as un tutoriel complet ici :
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
et enregistre le sur le bureau.
déconnecte toi d'internet et ferme toutes tes applications.
désactive tes protections (antivirus, parefeu, garde en temps réel de l'antispyware)
double-clique sur combofix.exe et suis les instructions
à la fin, il va produire un rapport C:\ComboFix.txt
réactive ton parefeu, ton antivirus, la garde de ton antispyware
copie/colle le rapport C:\ComboFix.txt dans ta prochaine réponse.
Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer l'ordi.
Tu as un tutoriel complet ici :
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
Voici le rapport de combofix.
merci.
ComboFix 10-01-13.07 - mathieu 14/01/2010 2:42.1.4 - x86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.3326.2777 [GMT 1:00]
Lancé depuis: c:\documents and settings\mathieu\Bureau\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
AV: avast! antivirus 4.8.1368 [VPS 100113-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\GBD
c:\windows\GBD\0Setup.exe
c:\windows\system32\_003750_.tmp.dll
.
((((((((((((((((((((((((((((( Fichiers créés du 2009-12-14 au 2010-01-14 ))))))))))))))))))))))))))))))))))))
.
2010-01-13 16:09 . 2010-01-13 16:09 -------- d-----w- c:\documents and settings\sophie\Application Data\Malwarebytes
2010-01-13 16:08 . 2010-01-13 16:08 -------- d-----w- C:\ad remover rapport
2010-01-12 16:21 . 2006-08-01 14:02 49152 ----a-w- c:\windows\system32\ChCfg.exe
2010-01-12 16:21 . 2006-07-22 06:40 143360 ----a-w- c:\windows\system32\RtlCPAPI.dll
2010-01-12 16:20 . 2005-05-03 17:43 69632 ----a-w- c:\windows\Alcmtr.exe
2010-01-12 15:42 . 2010-01-12 15:42 -------- d-----w- c:\program files\obj
2010-01-12 14:51 . 2010-01-12 14:52 -------- d-----w- C:\rsit
2010-01-11 16:38 . 2010-01-11 16:46 -------- d-----w- C:\UsbFix
2010-01-10 18:02 . 2010-01-13 16:22 -------- d-----w- c:\program files\Ad-Remover
2010-01-10 04:51 . 2010-01-10 04:51 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2010-01-09 23:36 . 2010-01-14 00:54 17488 ----a-w- c:\windows\gdrv.sys
2010-01-09 22:47 . 2010-01-09 22:47 -------- d-----w- c:\program files\ESET
2010-01-09 20:35 . 2009-02-16 05:59 28800 ----a-r- c:\windows\system32\drivers\RTLTEAMING.SYS
2010-01-09 20:35 . 2007-10-22 08:33 60416 ----a-r- c:\windows\system32\RTLTEAMING_NB.DLL
2010-01-09 20:35 . 2009-02-16 09:35 17536 ----a-r- c:\windows\system32\drivers\RTLVLAN.SYS
2010-01-09 20:34 . 2008-07-09 06:11 22016 ----a-r- c:\windows\system32\drivers\RtNdPt5x.sys
2010-01-09 14:41 . 2010-01-09 14:41 -------- d-----w- c:\program files\Trend Micro
2010-01-09 14:16 . 2010-01-09 14:16 -------- d-----w- c:\documents and settings\All Users\Application Data\ATI
2010-01-09 14:10 . 2010-01-09 14:10 -------- d-----w- c:\program files\Fichiers communs\ATI Technologies
2010-01-09 14:09 . 2009-08-19 12:05 100368 ----a-r- c:\windows\system32\drivers\AtiHdmi.sys
2010-01-09 14:09 . 2009-09-09 02:00 311296 ----a-r- c:\windows\system32\atiiiexx.dll
2010-01-09 14:09 . 2009-09-09 02:28 446464 ----a-r- c:\windows\system32\ATIDEMGX.dll
2010-01-09 14:09 . 2009-09-09 01:42 887724 ----a-r- c:\windows\system32\ativva6x.dat
2010-01-09 14:09 . 2009-09-09 01:42 3 ----a-r- c:\windows\system32\ativva5x.dat
2010-01-09 14:09 . 2009-09-01 19:55 195855 ----a-r- c:\windows\system32\atiicdxx.dat
2010-01-09 14:07 . 2010-01-09 14:11 -------- d-----w- c:\program files\ATI Technologies
2010-01-09 02:22 . 2010-01-09 02:22 -------- d-----w- c:\program files\CCleaner
2010-01-08 05:34 . 2010-01-08 05:34 5115824 ----a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
2010-01-08 05:34 . 2010-01-08 05:34 -------- d-----w- c:\documents and settings\mathieu\Application Data\Malwarebytes
2010-01-08 05:34 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-08 05:34 . 2010-01-08 05:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-08 05:34 . 2010-01-08 05:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-01-08 05:34 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-01-08 05:12 . 2010-01-08 05:34 -------- d-----w- c:\windows\system32\NtmsData
2010-01-07 04:50 . 2010-01-07 04:50 -------- d-----w- c:\documents and settings\mathieu\Local Settings\Application Data\Identities
2010-01-06 14:15 . 2010-01-06 14:25 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-01-06 14:15 . 2009-03-30 09:32 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys
2010-01-06 14:15 . 2009-02-13 11:28 22360 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2010-01-06 14:15 . 2009-02-13 11:17 45416 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2010-01-06 14:15 . 2010-01-06 14:15 -------- d-----w- c:\program files\Avira
2010-01-06 14:15 . 2010-01-06 14:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2010-01-05 18:31 . 2010-01-05 18:31 -------- d-----w- c:\documents and settings\capucine\Local Settings\Application Data\Adobe
2010-01-01 21:22 . 2010-01-01 21:22 79488 ----a-w- c:\documents and settings\sophie\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll
2009-12-21 05:02 . 2010-01-11 16:13 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-12-21 05:02 . 2009-12-21 05:04 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-12-20 23:02 . 2009-12-20 23:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Codemasters
2009-12-20 23:00 . 2009-11-18 17:11 1347584 ----a-w- c:\windows\system32\rapture3d_oal.dll
2009-12-20 23:00 . 2009-11-01 12:11 17686528 ----a-w- c:\windows\system32\mkl_blueripple.dll
2009-12-20 22:59 . 2009-12-20 23:00 -------- d-----w- c:\program files\BRS
2009-12-20 22:58 . 2009-12-20 22:59 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2009-12-20 22:58 . 2009-12-20 22:58 -------- d-----w- c:\windows\system32\xlive
2009-12-20 22:58 . 2009-12-20 22:58 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2009-12-20 22:58 . 2009-12-20 22:58 109144 ----a-w- c:\windows\system32\OpenAL32.dll
2009-12-20 22:58 . 2009-12-20 22:58 -------- d-----w- c:\program files\OpenAL
2009-12-19 11:36 . 2009-12-19 11:36 -------- d-----w- c:\documents and settings\camille\Application Data\MSN6
2009-12-19 11:35 . 2009-12-19 11:35 -------- d-----w- c:\documents and settings\camille\Local Settings\Application Data\Identities
2009-12-19 11:31 . 2009-12-19 11:31 -------- d-----w- c:\documents and settings\capucine\Local Settings\Application Data\Identities
2009-12-19 11:30 . 2009-12-19 11:39 -------- d-----w- c:\documents and settings\capucine\Application Data\MSN6
2009-12-19 11:30 . 2009-12-19 11:30 -------- d-----w- c:\documents and settings\All Users\Application Data\MSN6
2009-12-15 16:40 . 2009-12-15 16:40 -------- d-----w- c:\documents and settings\capucine\Local Settings\Application Data\Temp
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-13 21:11 . 2009-11-21 12:43 -------- d-----w- c:\documents and settings\sophie\Application Data\vlc
2010-01-13 00:29 . 2009-11-16 21:31 -------- d-----w- c:\documents and settings\mathieu\Application Data\vlc
2010-01-12 16:20 . 2009-10-29 03:24 -------- d-----w- c:\program files\Realtek
2010-01-10 03:48 . 2009-11-27 15:18 -------- d-----w- c:\documents and settings\All Users\Application Data\TmForever
2010-01-09 20:34 . 2009-10-29 03:23 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-04 19:43 . 2009-11-17 20:10 -------- d-----w- c:\documents and settings\sophie\Application Data\uTorrent
2010-01-04 03:15 . 2009-11-28 17:43 -------- d-----w- c:\documents and settings\mathieu\Application Data\uTorrent
2009-12-20 22:45 . 2009-11-21 20:57 -------- d-----w- c:\program files\Codemasters
2009-12-13 19:09 . 2009-11-19 13:03 17536 ----a-w- c:\documents and settings\camille\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-12 21:50 . 2009-12-12 21:49 -------- d-----w- c:\documents and settings\All Users\Application Data\WinZip
2009-12-10 06:04 . 2009-10-29 04:51 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS
2009-12-10 02:16 . 2009-12-10 02:16 1956528 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\install_flash_player_ax.exe
2009-12-09 13:21 . 2003-04-24 12:00 80712 ----a-w- c:\windows\system32\perfc00C.dat
2009-12-09 13:21 . 2003-04-24 12:00 500812 ----a-w- c:\windows\system32\perfh00C.dat
2009-12-09 13:20 . 2009-10-29 04:18 -------- d-----w- c:\program files\ATI
2009-12-09 13:07 . 2009-10-29 03:56 17536 ----a-w- c:\documents and settings\mathieu\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-09 08:09 . 2009-11-01 13:04 17536 ----a-w- c:\documents and settings\capucine\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-09 06:32 . 2009-10-31 18:39 17536 ----a-w- c:\documents and settings\sophie\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-09 03:53 . 2009-12-09 03:53 10134 ----a-r- c:\documents and settings\mathieu\Application Data\Microsoft\Installer\{20820A45-02A1-144C-21A3-A1812C5DDE23}\ARPPRODUCTICON.exe
2009-12-08 22:48 . 2009-12-08 22:48 -------- d-----w- c:\program files\Activision
2009-11-28 15:36 . 2009-11-28 13:07 -------- d-----w- c:\documents and settings\mathieu\Application Data\dvdcss
2009-11-28 12:47 . 2009-11-18 09:18 -------- d-----w- c:\documents and settings\capucine\Application Data\vlc
2009-11-27 15:17 . 2009-11-27 15:13 -------- d-----w- c:\program files\TmNationsForever
2009-11-24 23:54 . 2009-10-29 04:05 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-24 23:51 . 2009-10-29 04:05 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-11-24 23:49 . 2009-10-29 04:05 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-24 23:48 . 2009-10-29 04:05 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-11-24 23:47 . 2009-10-29 04:05 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-11-24 23:47 . 2009-10-29 04:05 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-21 19:55 . 2009-11-21 19:54 -------- d-----w- c:\program files\eMule
2009-11-21 15:58 . 2003-04-24 12:00 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-19 13:03 . 2009-11-19 13:03 -------- d-----w- c:\documents and settings\camille\Application Data\ATI
2009-11-18 11:31 . 2009-11-18 11:31 152576 ----a-w- c:\documents and settings\sophie\Application Data\Sun\Java\jre1.6.0_16\lzma.dll
2009-11-16 21:27 . 2009-11-16 21:27 -------- d-----w- c:\program files\VideoLAN
2009-11-16 21:26 . 2009-11-16 21:26 -------- d-----w- c:\program files\Fichiers communs\Blizzard Entertainment
2009-11-04 16:15 . 2004-08-19 22:53 4423168 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2009-11-04 15:44 . 2004-08-19 23:09 300032 ----a-w- c:\windows\system32\ati2dvag.dll
2009-11-04 15:29 . 2009-10-29 04:21 204800 ----a-w- c:\windows\system32\atipdlxx.dll
2009-11-04 15:18 . 2004-08-19 23:09 3518304 ----a-w- c:\windows\system32\ati3duag.dll
2009-11-04 15:17 . 2009-10-29 04:21 13000704 ----a-w- c:\windows\system32\atioglxx.dll
2009-11-04 15:05 . 2004-08-19 23:09 2135680 ----a-w- c:\windows\system32\ativvaxx.dll
2009-11-04 14:47 . 2009-10-29 04:21 565248 ----a-w- c:\windows\system32\atikvmag.dll
2009-11-04 14:46 . 2009-10-29 04:21 45056 ----a-w- c:\windows\system32\aticalrt.dll
2009-11-04 14:46 . 2009-10-29 04:21 45056 ----a-w- c:\windows\system32\aticalcl.dll
2009-11-04 14:45 . 2009-10-29 04:21 172032 ----a-w- c:\windows\system32\atiadlxx.dll
2009-11-04 14:45 . 2009-10-29 04:21 3526656 ----a-w- c:\windows\system32\aticaldd.dll
2009-11-04 14:44 . 2009-10-29 04:21 397312 ----a-w- c:\windows\system32\atiok3x2.dll
2009-11-04 14:39 . 2004-08-19 23:09 638976 ----a-w- c:\windows\system32\ati2cqag.dll
2009-11-02 15:41 . 2009-11-02 15:41 15872 ----a-r- c:\documents and settings\mathieu\Application Data\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe
2009-10-29 23:49 . 2009-10-29 03:07 86327 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat
2009-10-29 07:42 . 2003-04-24 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2009-10-29 04:51 . 2009-10-29 04:51 1925024 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\install_flash_player.exe
2009-10-29 04:22 . 2009-10-29 04:22 0 -c--a-w- c:\windows\ativpsrm.bin
2009-10-29 04:10 . 2009-10-29 04:10 0 -c--a-w- c:\windows\nsreg.dat
2009-10-29 03:05 . 2009-10-29 03:05 21892 -c--a-w- c:\windows\system32\emptyregdb.dat
2009-10-28 10:32 . 2009-12-20 22:58 809560 ----a-r- c:\windows\system32\tmp1FB.tmp
2009-10-28 10:32 . 2009-12-20 22:58 809560 ----a-r- c:\windows\system32\tmp1FA.tmp
2009-10-21 05:39 . 2004-08-19 23:09 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-21 05:39 . 2004-08-19 23:09 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-20 16:20 . 2004-08-04 06:00 265728 ------w- c:\windows\system32\drivers\http.sys
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files\valve\steam\steam.exe" [2009-11-02 1217808]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-09-08 98304]
"RTHDCPL"="RTHDCPL.EXE" [2006-08-14 16050176]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Valve\\Steam\\Steam.exe"=
"c:\\Program Files\\Valve\\Steam\\SteamApps\\parlonsbienparlonsbeuh\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\Valve\\Steam\\SteamApps\\common\\left 4 dead 2 demo\\left4dead2.exe"=
"c:\\Program Files\\THQ\\Dawn of War - Dark Crusade\\DarkCrusade.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Codemasters\\OF Dragon Rising Demo\\OFDR Demo.exe"=
"c:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\Program Files\\Valve\\Steam\\SteamApps\\parlonsbienparlonsbeuh\\team fortress 2\\hl2.exe"=
"c:\\Program Files\\Codemasters\\DiRT2 Demo\\dirt2.exe"=
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [29/10/2009 05:05 114768]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [06/01/2010 15:15 108289]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [29/10/2009 05:05 20560]
R2 BCUService;Browser Configuration Utility Service;c:\program files\DeviceVM\Browser Configuration Utility\BCUService.exe [29/10/2009 04:23 212232]
R2 ES lite Service;ES lite Service for program management.;c:\program files\Gigabyte\EasySaver\essvr.exe [29/10/2009 04:23 68136]
R2 RtNdPt5x;Realtek NDIS Protocol Driver;c:\windows\system32\drivers\RtNdPt5x.sys [09/01/2010 21:34 22016]
S2 gupdate1ca5acc920c6216;Service Google Update (gupdate1ca5acc920c6216);c:\program files\Google\Update\GoogleUpdate.exe [01/11/2009 09:23 133104]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [29/10/2009 04:24 1684736]
S3 RTLTEAMING;Realtek Intermediate Driver for Ethernet Extended Features;c:\windows\system32\drivers\RTLTEAMING.SYS [09/01/2010 21:35 28800]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [09/01/2010 21:35 17536]
.
Contenu du dossier 'Tâches planifiées'
2010-01-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-11-01 08:23]
2010-01-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-11-01 08:23]
.
.
------- Examen supplémentaire -------
.
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\mathieu\Application Data\Mozilla\Firefox\Profiles\27un7696.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/ig?hl=fr#restore
FF - plugin: c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHELINS SUPPRIMES - - - -
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-14 02:47
Windows 5.1.2600 Service Pack 3 NTFS
Recherche de processus cachés ...
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Reinstall\Zjôw*s]
"DisplayName"="???\16?\11\09"
"DeviceDesc"="???\16?\11\09"
"ProviderName"="???\11?\17?\11??"
"MFG"="???????"
"ReinstallString"=".10.1000.8"
"DeviceInstanceIds"=multi:"d:\\chipset\\7-ser\\xp\\sbdrv\\smbus\\smbusati.inf\00"
.
--------------------- DLLs chargées dans les processus actifs ---------------------
- - - - - - - > 'winlogon.exe'(632)
c:\windows\system32\Ati2evxx.dll
.
Heure de fin: 2010-01-14 02:50:19
ComboFix-quarantined-files.txt 2010-01-14 01:50
Avant-CF: 918 133 153 792 octets libres
Après-CF: 918 113 607 680 octets libres
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /fastdetect /NoExecute=OptIn
- - End Of File - - 5454D3DB444F6CD1EFAB13F3E4B554D1
merci.
ComboFix 10-01-13.07 - mathieu 14/01/2010 2:42.1.4 - x86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.3326.2777 [GMT 1:00]
Lancé depuis: c:\documents and settings\mathieu\Bureau\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
AV: avast! antivirus 4.8.1368 [VPS 100113-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\GBD
c:\windows\GBD\0Setup.exe
c:\windows\system32\_003750_.tmp.dll
.
((((((((((((((((((((((((((((( Fichiers créés du 2009-12-14 au 2010-01-14 ))))))))))))))))))))))))))))))))))))
.
2010-01-13 16:09 . 2010-01-13 16:09 -------- d-----w- c:\documents and settings\sophie\Application Data\Malwarebytes
2010-01-13 16:08 . 2010-01-13 16:08 -------- d-----w- C:\ad remover rapport
2010-01-12 16:21 . 2006-08-01 14:02 49152 ----a-w- c:\windows\system32\ChCfg.exe
2010-01-12 16:21 . 2006-07-22 06:40 143360 ----a-w- c:\windows\system32\RtlCPAPI.dll
2010-01-12 16:20 . 2005-05-03 17:43 69632 ----a-w- c:\windows\Alcmtr.exe
2010-01-12 15:42 . 2010-01-12 15:42 -------- d-----w- c:\program files\obj
2010-01-12 14:51 . 2010-01-12 14:52 -------- d-----w- C:\rsit
2010-01-11 16:38 . 2010-01-11 16:46 -------- d-----w- C:\UsbFix
2010-01-10 18:02 . 2010-01-13 16:22 -------- d-----w- c:\program files\Ad-Remover
2010-01-10 04:51 . 2010-01-10 04:51 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2010-01-09 23:36 . 2010-01-14 00:54 17488 ----a-w- c:\windows\gdrv.sys
2010-01-09 22:47 . 2010-01-09 22:47 -------- d-----w- c:\program files\ESET
2010-01-09 20:35 . 2009-02-16 05:59 28800 ----a-r- c:\windows\system32\drivers\RTLTEAMING.SYS
2010-01-09 20:35 . 2007-10-22 08:33 60416 ----a-r- c:\windows\system32\RTLTEAMING_NB.DLL
2010-01-09 20:35 . 2009-02-16 09:35 17536 ----a-r- c:\windows\system32\drivers\RTLVLAN.SYS
2010-01-09 20:34 . 2008-07-09 06:11 22016 ----a-r- c:\windows\system32\drivers\RtNdPt5x.sys
2010-01-09 14:41 . 2010-01-09 14:41 -------- d-----w- c:\program files\Trend Micro
2010-01-09 14:16 . 2010-01-09 14:16 -------- d-----w- c:\documents and settings\All Users\Application Data\ATI
2010-01-09 14:10 . 2010-01-09 14:10 -------- d-----w- c:\program files\Fichiers communs\ATI Technologies
2010-01-09 14:09 . 2009-08-19 12:05 100368 ----a-r- c:\windows\system32\drivers\AtiHdmi.sys
2010-01-09 14:09 . 2009-09-09 02:00 311296 ----a-r- c:\windows\system32\atiiiexx.dll
2010-01-09 14:09 . 2009-09-09 02:28 446464 ----a-r- c:\windows\system32\ATIDEMGX.dll
2010-01-09 14:09 . 2009-09-09 01:42 887724 ----a-r- c:\windows\system32\ativva6x.dat
2010-01-09 14:09 . 2009-09-09 01:42 3 ----a-r- c:\windows\system32\ativva5x.dat
2010-01-09 14:09 . 2009-09-01 19:55 195855 ----a-r- c:\windows\system32\atiicdxx.dat
2010-01-09 14:07 . 2010-01-09 14:11 -------- d-----w- c:\program files\ATI Technologies
2010-01-09 02:22 . 2010-01-09 02:22 -------- d-----w- c:\program files\CCleaner
2010-01-08 05:34 . 2010-01-08 05:34 5115824 ----a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
2010-01-08 05:34 . 2010-01-08 05:34 -------- d-----w- c:\documents and settings\mathieu\Application Data\Malwarebytes
2010-01-08 05:34 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-08 05:34 . 2010-01-08 05:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-08 05:34 . 2010-01-08 05:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-01-08 05:34 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-01-08 05:12 . 2010-01-08 05:34 -------- d-----w- c:\windows\system32\NtmsData
2010-01-07 04:50 . 2010-01-07 04:50 -------- d-----w- c:\documents and settings\mathieu\Local Settings\Application Data\Identities
2010-01-06 14:15 . 2010-01-06 14:25 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-01-06 14:15 . 2009-03-30 09:32 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys
2010-01-06 14:15 . 2009-02-13 11:28 22360 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2010-01-06 14:15 . 2009-02-13 11:17 45416 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2010-01-06 14:15 . 2010-01-06 14:15 -------- d-----w- c:\program files\Avira
2010-01-06 14:15 . 2010-01-06 14:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2010-01-05 18:31 . 2010-01-05 18:31 -------- d-----w- c:\documents and settings\capucine\Local Settings\Application Data\Adobe
2010-01-01 21:22 . 2010-01-01 21:22 79488 ----a-w- c:\documents and settings\sophie\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll
2009-12-21 05:02 . 2010-01-11 16:13 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-12-21 05:02 . 2009-12-21 05:04 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-12-20 23:02 . 2009-12-20 23:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Codemasters
2009-12-20 23:00 . 2009-11-18 17:11 1347584 ----a-w- c:\windows\system32\rapture3d_oal.dll
2009-12-20 23:00 . 2009-11-01 12:11 17686528 ----a-w- c:\windows\system32\mkl_blueripple.dll
2009-12-20 22:59 . 2009-12-20 23:00 -------- d-----w- c:\program files\BRS
2009-12-20 22:58 . 2009-12-20 22:59 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2009-12-20 22:58 . 2009-12-20 22:58 -------- d-----w- c:\windows\system32\xlive
2009-12-20 22:58 . 2009-12-20 22:58 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2009-12-20 22:58 . 2009-12-20 22:58 109144 ----a-w- c:\windows\system32\OpenAL32.dll
2009-12-20 22:58 . 2009-12-20 22:58 -------- d-----w- c:\program files\OpenAL
2009-12-19 11:36 . 2009-12-19 11:36 -------- d-----w- c:\documents and settings\camille\Application Data\MSN6
2009-12-19 11:35 . 2009-12-19 11:35 -------- d-----w- c:\documents and settings\camille\Local Settings\Application Data\Identities
2009-12-19 11:31 . 2009-12-19 11:31 -------- d-----w- c:\documents and settings\capucine\Local Settings\Application Data\Identities
2009-12-19 11:30 . 2009-12-19 11:39 -------- d-----w- c:\documents and settings\capucine\Application Data\MSN6
2009-12-19 11:30 . 2009-12-19 11:30 -------- d-----w- c:\documents and settings\All Users\Application Data\MSN6
2009-12-15 16:40 . 2009-12-15 16:40 -------- d-----w- c:\documents and settings\capucine\Local Settings\Application Data\Temp
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-13 21:11 . 2009-11-21 12:43 -------- d-----w- c:\documents and settings\sophie\Application Data\vlc
2010-01-13 00:29 . 2009-11-16 21:31 -------- d-----w- c:\documents and settings\mathieu\Application Data\vlc
2010-01-12 16:20 . 2009-10-29 03:24 -------- d-----w- c:\program files\Realtek
2010-01-10 03:48 . 2009-11-27 15:18 -------- d-----w- c:\documents and settings\All Users\Application Data\TmForever
2010-01-09 20:34 . 2009-10-29 03:23 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-04 19:43 . 2009-11-17 20:10 -------- d-----w- c:\documents and settings\sophie\Application Data\uTorrent
2010-01-04 03:15 . 2009-11-28 17:43 -------- d-----w- c:\documents and settings\mathieu\Application Data\uTorrent
2009-12-20 22:45 . 2009-11-21 20:57 -------- d-----w- c:\program files\Codemasters
2009-12-13 19:09 . 2009-11-19 13:03 17536 ----a-w- c:\documents and settings\camille\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-12 21:50 . 2009-12-12 21:49 -------- d-----w- c:\documents and settings\All Users\Application Data\WinZip
2009-12-10 06:04 . 2009-10-29 04:51 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS
2009-12-10 02:16 . 2009-12-10 02:16 1956528 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\install_flash_player_ax.exe
2009-12-09 13:21 . 2003-04-24 12:00 80712 ----a-w- c:\windows\system32\perfc00C.dat
2009-12-09 13:21 . 2003-04-24 12:00 500812 ----a-w- c:\windows\system32\perfh00C.dat
2009-12-09 13:20 . 2009-10-29 04:18 -------- d-----w- c:\program files\ATI
2009-12-09 13:07 . 2009-10-29 03:56 17536 ----a-w- c:\documents and settings\mathieu\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-09 08:09 . 2009-11-01 13:04 17536 ----a-w- c:\documents and settings\capucine\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-09 06:32 . 2009-10-31 18:39 17536 ----a-w- c:\documents and settings\sophie\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-09 03:53 . 2009-12-09 03:53 10134 ----a-r- c:\documents and settings\mathieu\Application Data\Microsoft\Installer\{20820A45-02A1-144C-21A3-A1812C5DDE23}\ARPPRODUCTICON.exe
2009-12-08 22:48 . 2009-12-08 22:48 -------- d-----w- c:\program files\Activision
2009-11-28 15:36 . 2009-11-28 13:07 -------- d-----w- c:\documents and settings\mathieu\Application Data\dvdcss
2009-11-28 12:47 . 2009-11-18 09:18 -------- d-----w- c:\documents and settings\capucine\Application Data\vlc
2009-11-27 15:17 . 2009-11-27 15:13 -------- d-----w- c:\program files\TmNationsForever
2009-11-24 23:54 . 2009-10-29 04:05 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-24 23:51 . 2009-10-29 04:05 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-11-24 23:49 . 2009-10-29 04:05 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-24 23:48 . 2009-10-29 04:05 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-11-24 23:47 . 2009-10-29 04:05 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-11-24 23:47 . 2009-10-29 04:05 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-21 19:55 . 2009-11-21 19:54 -------- d-----w- c:\program files\eMule
2009-11-21 15:58 . 2003-04-24 12:00 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-19 13:03 . 2009-11-19 13:03 -------- d-----w- c:\documents and settings\camille\Application Data\ATI
2009-11-18 11:31 . 2009-11-18 11:31 152576 ----a-w- c:\documents and settings\sophie\Application Data\Sun\Java\jre1.6.0_16\lzma.dll
2009-11-16 21:27 . 2009-11-16 21:27 -------- d-----w- c:\program files\VideoLAN
2009-11-16 21:26 . 2009-11-16 21:26 -------- d-----w- c:\program files\Fichiers communs\Blizzard Entertainment
2009-11-04 16:15 . 2004-08-19 22:53 4423168 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2009-11-04 15:44 . 2004-08-19 23:09 300032 ----a-w- c:\windows\system32\ati2dvag.dll
2009-11-04 15:29 . 2009-10-29 04:21 204800 ----a-w- c:\windows\system32\atipdlxx.dll
2009-11-04 15:18 . 2004-08-19 23:09 3518304 ----a-w- c:\windows\system32\ati3duag.dll
2009-11-04 15:17 . 2009-10-29 04:21 13000704 ----a-w- c:\windows\system32\atioglxx.dll
2009-11-04 15:05 . 2004-08-19 23:09 2135680 ----a-w- c:\windows\system32\ativvaxx.dll
2009-11-04 14:47 . 2009-10-29 04:21 565248 ----a-w- c:\windows\system32\atikvmag.dll
2009-11-04 14:46 . 2009-10-29 04:21 45056 ----a-w- c:\windows\system32\aticalrt.dll
2009-11-04 14:46 . 2009-10-29 04:21 45056 ----a-w- c:\windows\system32\aticalcl.dll
2009-11-04 14:45 . 2009-10-29 04:21 172032 ----a-w- c:\windows\system32\atiadlxx.dll
2009-11-04 14:45 . 2009-10-29 04:21 3526656 ----a-w- c:\windows\system32\aticaldd.dll
2009-11-04 14:44 . 2009-10-29 04:21 397312 ----a-w- c:\windows\system32\atiok3x2.dll
2009-11-04 14:39 . 2004-08-19 23:09 638976 ----a-w- c:\windows\system32\ati2cqag.dll
2009-11-02 15:41 . 2009-11-02 15:41 15872 ----a-r- c:\documents and settings\mathieu\Application Data\Microsoft\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.exe
2009-10-29 23:49 . 2009-10-29 03:07 86327 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat
2009-10-29 07:42 . 2003-04-24 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2009-10-29 04:51 . 2009-10-29 04:51 1925024 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\install_flash_player.exe
2009-10-29 04:22 . 2009-10-29 04:22 0 -c--a-w- c:\windows\ativpsrm.bin
2009-10-29 04:10 . 2009-10-29 04:10 0 -c--a-w- c:\windows\nsreg.dat
2009-10-29 03:05 . 2009-10-29 03:05 21892 -c--a-w- c:\windows\system32\emptyregdb.dat
2009-10-28 10:32 . 2009-12-20 22:58 809560 ----a-r- c:\windows\system32\tmp1FB.tmp
2009-10-28 10:32 . 2009-12-20 22:58 809560 ----a-r- c:\windows\system32\tmp1FA.tmp
2009-10-21 05:39 . 2004-08-19 23:09 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-21 05:39 . 2004-08-19 23:09 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-20 16:20 . 2004-08-04 06:00 265728 ------w- c:\windows\system32\drivers\http.sys
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files\valve\steam\steam.exe" [2009-11-02 1217808]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-09-08 98304]
"RTHDCPL"="RTHDCPL.EXE" [2006-08-14 16050176]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"HonorAutoRunSetting"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Valve\\Steam\\Steam.exe"=
"c:\\Program Files\\Valve\\Steam\\SteamApps\\parlonsbienparlonsbeuh\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\Valve\\Steam\\SteamApps\\common\\left 4 dead 2 demo\\left4dead2.exe"=
"c:\\Program Files\\THQ\\Dawn of War - Dark Crusade\\DarkCrusade.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Codemasters\\OF Dragon Rising Demo\\OFDR Demo.exe"=
"c:\\Program Files\\TmNationsForever\\TmForever.exe"=
"c:\\Program Files\\Valve\\Steam\\SteamApps\\parlonsbienparlonsbeuh\\team fortress 2\\hl2.exe"=
"c:\\Program Files\\Codemasters\\DiRT2 Demo\\dirt2.exe"=
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [29/10/2009 05:05 114768]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [06/01/2010 15:15 108289]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [29/10/2009 05:05 20560]
R2 BCUService;Browser Configuration Utility Service;c:\program files\DeviceVM\Browser Configuration Utility\BCUService.exe [29/10/2009 04:23 212232]
R2 ES lite Service;ES lite Service for program management.;c:\program files\Gigabyte\EasySaver\essvr.exe [29/10/2009 04:23 68136]
R2 RtNdPt5x;Realtek NDIS Protocol Driver;c:\windows\system32\drivers\RtNdPt5x.sys [09/01/2010 21:34 22016]
S2 gupdate1ca5acc920c6216;Service Google Update (gupdate1ca5acc920c6216);c:\program files\Google\Update\GoogleUpdate.exe [01/11/2009 09:23 133104]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [29/10/2009 04:24 1684736]
S3 RTLTEAMING;Realtek Intermediate Driver for Ethernet Extended Features;c:\windows\system32\drivers\RTLTEAMING.SYS [09/01/2010 21:35 28800]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [09/01/2010 21:35 17536]
.
Contenu du dossier 'Tâches planifiées'
2010-01-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-11-01 08:23]
2010-01-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-11-01 08:23]
.
.
------- Examen supplémentaire -------
.
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\mathieu\Application Data\Mozilla\Firefox\Profiles\27un7696.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/ig?hl=fr#restore
FF - plugin: c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHELINS SUPPRIMES - - - -
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-14 02:47
Windows 5.1.2600 Service Pack 3 NTFS
Recherche de processus cachés ...
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Reinstall\Zjôw*s]
"DisplayName"="???\16?\11\09"
"DeviceDesc"="???\16?\11\09"
"ProviderName"="???\11?\17?\11??"
"MFG"="???????"
"ReinstallString"=".10.1000.8"
"DeviceInstanceIds"=multi:"d:\\chipset\\7-ser\\xp\\sbdrv\\smbus\\smbusati.inf\00"
.
--------------------- DLLs chargées dans les processus actifs ---------------------
- - - - - - - > 'winlogon.exe'(632)
c:\windows\system32\Ati2evxx.dll
.
Heure de fin: 2010-01-14 02:50:19
ComboFix-quarantined-files.txt 2010-01-14 01:50
Avant-CF: 918 133 153 792 octets libres
Après-CF: 918 113 607 680 octets libres
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /fastdetect /NoExecute=OptIn
- - End Of File - - 5454D3DB444F6CD1EFAB13F3E4B554D1
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
a mon avis cela fais penser a un souci matos
si cela persiste cela peut venir d'un souci matos: voir la temperature du pc avec speedfan
et tester la memoire avec memtest
manuel memtest
http://www.world-informatique.com/pasapas/faq/voir.html?qid=48
si cela persiste cela peut venir d'un souci matos: voir la temperature du pc avec speedfan
et tester la memoire avec memtest
manuel memtest
http://www.world-informatique.com/pasapas/faq/voir.html?qid=48
